feat: add Orgo provider#458
Conversation
|
Codex review: needs real behavior proof before merge. Reviewed July 5, 2026, 7:55 AM ET / 11:55 UTC. Summary Reproducibility: yes. for the review blockers by source inspection: the branch creates the remote computer before a durable claim, surfaces raw Orgo error bodies, and modifies Review metrics: 3 noteworthy metrics.
Root-cause cluster Members:
Proposal only: this assessment does not dispatch repair, suppress jobs, mutate sibling items, close, or merge anything. Merge readiness Overall follows the weaker of proof and patch quality, so missing proof can cap an otherwise strong patch. Rank-up moves:
Proof guidance:
Risk before merge
Maintainer options:
Next step before merge
Maintainer decision needed
Security Review findings
Review detailsBest possible solution: Land Orgo only after durable pre-create recovery or an approved equivalent cleanup contract exists, Orgo HTTP errors redact secrets, release notes move out of Do we have a high-confidence way to reproduce the issue? Yes for the review blockers by source inspection: the branch creates the remote computer before a durable claim, surfaces raw Orgo error bodies, and modifies Is this the best way to solve the issue? No. A built-in Orgo provider may be useful, but this branch is not the safest merge path until the recovery contract, redaction, release-note ownership, and live proof gaps are resolved. Full review comments:
Overall correctness: patch is incorrect AGENTS.md: found and applied where relevant. Codex review notes: model internal, reasoning high; reviewed against 8b1242493774. Label changesLabel justifications:
Evidence reviewedSecurity concerns:
What I checked:
Likely related people:
What the crustacean ranks mean
Shiny media proof means a screenshot, video, or linked artifact directly shows the changed behavior. Runtime, network, CSP, and security claims still need visible diagnostics. How this review workflow works
Review history (3 earlier review cycles)
|
d9aab2f to
482bc1b
Compare
8f551f1 to
6709b30
Compare
6709b30 to
7e56248
Compare
|
@clawsweeper re-review Rebased onto current main and fixed the review findings: provider and live-smoke readiness polling now wait for running state, terminal startup failures clean up resources, and provider capabilities satisfy current registry conformance. Exact head: |
|
🦞🧹 I asked ClawSweeper to review this item again. |
|
@clawsweeper re-review |
7e56248 to
5c9ff32
Compare
|
@clawsweeper re-review Updated #458 to current Validation now completed:
I am not merging this yet while |
|
🦞🧹 I asked ClawSweeper to review this item again. |
|
@clawsweeper re-review Pushed maintainer fixes for the concrete security/release findings. Head: Changes made:
Local validation passed on this head: Still not merging: hosted Orgo lifecycle proof remains blocked on paid-plan authorization, and |
|
🦞🧹 I asked ClawSweeper to review this item again. |
|
Public CI is now green on current head Still not merging: hosted Orgo lifecycle proof remains blocked on paid-plan authorization, and |
|
@clawsweeper re-review Updated the PR body with the canonical summary, validation evidence, and remaining merge gate for current head. No code changes in this update. Still not merging unless the live proof labels clear and the provider-specific proof/contract gate is satisfied. |
3de3cb8 to
a13a41a
Compare
|
@clawsweeper re-review Rebased Orgo onto current Head: Change made:
Local validation passed: Public CI is green on this head: https://github.com/openclaw/crabbox/actions/runs/28103708184 Still not merging: hosted Orgo lifecycle proof remains blocked on paid-plan authorization, and |
|
🦞🧹 I asked ClawSweeper to review this item again. |
a13a41a to
8cb00c2
Compare
|
@clawsweeper re-review Rebased Orgo onto current Head: Change made:
Validation passed on the rebased head: Still not merging: hosted Orgo lifecycle proof remains blocked on paid-plan authorization, and |
|
🦞🧹 I asked ClawSweeper to review this item again. |
|
@clawsweeper re-review Updated the PR body to current head No code changes in this update. The remaining gate is still hosted Orgo lifecycle proof with real credentials; there are no Orgo API credentials in this environment. |
|
@clawsweeper re-review Current head Additional local reproduction while checking the earlier pending jobs:
Still not merging: hosted Orgo lifecycle proof remains blocked by missing real Orgo credentials, and |
8cb00c2 to
23b6847
Compare
|
🦞🧹 I asked ClawSweeper to review this item again. |
Drives the real *orgoHTTPClient through the delegated-run backend against a fake Orgo REST API (httptest), covering the full lifecycle: create workspace, create computer, run bash, delete computer, delete workspace. Asserts the Bearer auth header, exit code, SyncDelegated, stdout, and that every expected API endpoint is hit. No real secrets: the API key is a dummy value via CRABBOX_ORGO_API_KEY and the base URL is the in-process test server via CRABBOX_ORGO_API_BASE, so the test never reaches the live Orgo API. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
23b6847 to
7bc64fd
Compare
Summary
Adds a delegated-run Orgo provider for Linux cloud computers.
provider: orgowith aliasorgo-ai.--no-sync.Maintainer hardening
success: trueand the expected marker.Verification
Exact candidate:
7bc64fd2b085869a3d132ee13655261e44972b9dgo test -race ./internal/providers/orgo -count=1go test -race ./internal/cli -run '^TestControllerGetReconcilesProviderExpiry$' -count=10go vet ./...go test -race ./internal/providers/orgo ./internal/providers/all ./internal/cli -run 'Orgo|orgo|TestController(GetReconcilesProviderExpiry|RestartDoesNotReacquireMissingKnownLease)' -count=1node --test scripts/live-smoke.test.js(59/59)bash -n scripts/live-smoke.shnode scripts/build-docs-site.mjsgo build -trimpath -o bin/crabbox ./cmd/crabboxRemaining live gate
Do not merge yet.
CRABBOX_LIVE=1 CRABBOX_LIVE_PROVIDERS=orgo scripts/live-smoke.shis ready to prove create, command execution, and successful resource deletion on this exact candidate, but no Orgo credential is currently available for the canary.