diff --git a/apps/api/src/services/ai_agent_autonomous_runtime_control.py b/apps/api/src/services/ai_agent_autonomous_runtime_control.py index 493ddfd2..531b91c2 100644 --- a/apps/api/src/services/ai_agent_autonomous_runtime_control.py +++ b/apps/api/src/services/ai_agent_autonomous_runtime_control.py @@ -53,8 +53,24 @@ _EXECUTOR_OPERATION_TYPES = ( LOG_CONTROLLED_WRITEBACK_DISPATCH_OPERATION_TYPE, ) _PUBLIC_VALUE_REDACTIONS = ( + ("工作視窗", "workspace_context"), + ("對話內容", "conversation_context"), + ("批准!繼續", "owner_continue_directive"), + ("In app browser", "browser_surface"), + ("My request for Codex", "owner_request_context"), + ("browser_context", "browser_surface_context"), + ("codex_user_message", "owner_message_ref"), + ("prompt_text", "input_text_ref"), + ("raw_prompt", "source_prompt_ref"), + ("raw prompt", "source prompt ref"), ("raw_payload", "source_payload"), ("raw payload", "source payload"), + ("private reasoning", "internal reasoning summary"), + ("chain_of_thought", "reasoning_summary"), + ("authorization_header", "auth_header_metadata"), + ("authorization header", "auth header metadata"), + ("secret_value", "sensitive_value"), + ("secret value", "sensitive value"), ) logger = get_logger(__name__) diff --git a/docs/LOGBOOK.md b/docs/LOGBOOK.md index b05132df..48ae424f 100644 --- a/docs/LOGBOOK.md +++ b/docs/LOGBOOK.md @@ -6,6 +6,7 @@ - 以 99 VMware 對 `192.168.0.110_Ubuntu_64-bit_DevOps` 執行 power-level `Reset` 後,開機觸發 `AWOOOI reboot auto-recovery 10-minute SLO verifier`;15:15:25 讀回 `git2222=open`、`gitea3001=open`、Gitea HTTPS `200`。 - Gitea API / internal API 均讀回 `{"version":"1.25.5"}`;9 個 expected private repos 均可透過 Gitea SSH 讀回 heads:`awoooi`、`ewoooc`、`2026FIFAWorldCup`、`agent-bounty-protocol`、`AwoooGo`、`stockplatform-v2`、`vibework`、`momo-pro-system`、`tsenyang-website`。 - 188 backup exporter 讀回 `awoooi_gitea_bundle_expected_repo_missing_count=0`、`failed_repo_count=0`、`checksum_missing_count=0`、`all_expected_ok=1`;Gitea private bundle backup 沒有再只靠 public repo search 判斷。 +- 推上 Gitea main 後 CD `#4256` 在 API redaction 單測失敗;已補 `agent-autonomous-runtime-control` public value redaction,避免 `secret_value` 類 public-forbidden term 出現在對外 runtime-control payload。 **仍維持 / 未完成**: - `registry.wooo.work/v2/` 與 `harbor.wooo.work/api/v2.0/health` 仍回 502,110 `5000/5001` 仍 closed;這是 Harbor/registry cold-start / auto-recovery 缺口,不能宣稱全 110 服務完成。