@link-assistant/hive-mind 1.28.0 → 1.30.0

package/CHANGELOG.md

@@ -1,5 +1,33 @@
 # @link-assistant/hive-mind
 
+## 1.30.0
+
+### Minor Changes
+
+- ee6233a: Optimize Docker build by using pinned konard/sandbox version as base image
+  - Docker image now inherits from `konard/sandbox:1.3.16` (pinned) instead of building from scratch
+  - Significantly faster build times (2-3 min vs 10-15+ min) as general-purpose tools are pre-installed
+  - Reduced timeout risk since heavy installations (Homebrew, PHP, etc.) are handled by base image
+  - Removed `scripts/ubuntu-24-server-install.sh` (functionality now provided by sandbox)
+  - User renamed from `sandbox` to `hive` for backward compatibility
+  - Sandbox version is pinned to `1.3.16` for stable, reproducible builds (instead of `latest`)
+  - Docker image is versioned to match the published npm package version
+  - Docker builds are triggered only after npm package availability is confirmed
+
+  This change implements the separation of concerns described in link-foundation/sandbox#65:
+  - sandbox: Universal development environment with all general-purpose tools
+  - hive-mind: AI-specific tools (Claude CLI, Playwright MCP, etc.) built on top of sandbox
+
+## 1.29.0
+
+### Minor Changes
+
+- 161b595: feat: add --auto-accept-invite option to solve command
+
+  Adds a new `--auto-accept-invite` boolean option to the `solve` command that automatically accepts the pending GitHub repository or organization invitation for the specific repository/organization being solved, before checking write access.
+
+  Unlike the `/accept_invites` Telegram command (which accepts ALL pending invitations), this option is scoped to the target repo/org only, making it safer and more targeted. Useful when you've just been invited to a repository and want to run `solve` without manually accepting the invitation first.
+
 ## 1.28.0
 
 ### Minor Changes

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@link-assistant/hive-mind",
-  "version": "1.28.0",
+  "version": "1.30.0",
   "description": "AI-powered issue solver and hive mind for collaborative problem solving",
   "main": "src/hive.mjs",
   "type": "module",

package/src/solve.accept-invite.lib.mjs

@@ -0,0 +1,89 @@
+/**
+ * Auto-accept GitHub invitation for a specific repository/organization.
+ *
+ * Unlike the /accept_invites Telegram command (which accepts ALL pending invitations),
+ * this module only accepts the invitation for the specific repository or organization
+ * that is being solved. This is safer and more targeted.
+ *
+ * @see https://docs.github.com/en/rest/collaborators/invitations
+ * @see https://docs.github.com/en/rest/orgs/members
+ * @see https://github.com/link-assistant/hive-mind/issues/1373
+ */
+
+import { promisify } from 'util';
+import { exec as execCallback } from 'child_process';
+
+const exec = promisify(execCallback);
+
+/**
+ * Accepts pending GitHub repository or organization invitation for a specific target.
+ *
+ * Checks for a pending repository invitation matching `owner/repo` and/or a pending
+ * organization membership for `owner`. Accepts only the matching invitation(s).
+ *
+ * @param {string} owner - Repository owner (user or organization login)
+ * @param {string} repo - Repository name
+ * @param {Function} log - Logging function
+ * @param {boolean} verbose - Whether verbose logging is enabled
+ * @returns {Promise<{acceptedRepo: boolean, acceptedOrg: boolean}>} Result of acceptance attempts
+ */
+export async function autoAcceptInviteForRepo(owner, repo, log, verbose) {
+  const result = { acceptedRepo: false, acceptedOrg: false };
+  const fullName = `${owner}/${repo}`;
+
+  await log(`🔍 --auto-accept-invite: Checking for pending invitation to ${fullName}...`);
+
+  // Check for pending repository invitation
+  try {
+    const { stdout: repoInvJson } = await exec('gh api /user/repository_invitations 2>/dev/null || echo "[]"');
+    const repoInvitations = JSON.parse(repoInvJson.trim() || '[]');
+    verbose && (await log(`   Found ${repoInvitations.length} total pending repo invitation(s)`, { verbose: true }));
+
+    const matchingInv = repoInvitations.find(inv => inv.repository?.full_name?.toLowerCase() === fullName.toLowerCase());
+
+    if (matchingInv) {
+      try {
+        await exec(`gh api -X PATCH /user/repository_invitations/${matchingInv.id}`);
+        await log(`✅ --auto-accept-invite: Accepted repository invitation for ${fullName}`);
+        result.acceptedRepo = true;
+      } catch (e) {
+        await log(`⚠️  --auto-accept-invite: Failed to accept repository invitation for ${fullName}: ${e.message}`, { level: 'warning' });
+      }
+    } else {
+      verbose && (await log(`   No pending repository invitation found for ${fullName}`, { verbose: true }));
+    }
+  } catch (e) {
+    verbose && (await log(`   Could not fetch repository invitations: ${e.message}`, { verbose: true }));
+  }
+
+  // Check for pending organization membership
+  try {
+    const { stdout: orgMemJson } = await exec('gh api /user/memberships/orgs 2>/dev/null || echo "[]"');
+    const orgMemberships = JSON.parse(orgMemJson.trim() || '[]');
+    const pendingOrgs = orgMemberships.filter(m => m.state === 'pending');
+    verbose && (await log(`   Found ${pendingOrgs.length} total pending org invitation(s)`, { verbose: true }));
+
+    const matchingOrg = pendingOrgs.find(m => m.organization?.login?.toLowerCase() === owner.toLowerCase());
+
+    if (matchingOrg) {
+      const orgName = matchingOrg.organization.login;
+      try {
+        await exec(`gh api -X PATCH /user/memberships/orgs/${orgName} -f state=active`);
+        await log(`✅ --auto-accept-invite: Accepted organization invitation for ${orgName}`);
+        result.acceptedOrg = true;
+      } catch (e) {
+        await log(`⚠️  --auto-accept-invite: Failed to accept organization invitation for ${orgName}: ${e.message}`, { level: 'warning' });
+      }
+    } else {
+      verbose && (await log(`   No pending organization invitation found for ${owner}`, { verbose: true }));
+    }
+  } catch (e) {
+    verbose && (await log(`   Could not fetch organization memberships: ${e.message}`, { verbose: true }));
+  }
+
+  if (!result.acceptedRepo && !result.acceptedOrg) {
+    await log(`ℹ️  --auto-accept-invite: No pending invitation found for ${fullName} or organization ${owner}`);
+  }
+
+  return result;
+}

package/src/solve.config.lib.mjs

@@ -369,6 +369,11 @@ export const SOLVE_OPTION_DEFINITIONS = {
     description: 'Automatically attach solution summary only if the AI did not create any comments during the session. This provides visible feedback when the AI completes silently.',
     default: false,
   },
+  'auto-accept-invite': {
+    type: 'boolean',
+    description: 'Automatically accept the pending GitHub repository or organization invitation for the specific repository/organization being solved, before checking write access. Unlike /accept_invites which accepts all pending invitations, this only accepts the invite for the target repo/org.',
+    default: false,
+  },
 };
 
 // Function to create yargs configuration - avoids duplication

package/src/solve.mjs

@@ -94,6 +94,8 @@ const { prepareFeedbackAndTimestamps, checkUncommittedChanges, checkForkActions
 // Import model validation library
 const modelValidation = await import('./model-validation.lib.mjs');
 const { validateAndExitOnInvalidModel } = modelValidation;
+const acceptInviteLib = await import('./solve.accept-invite.lib.mjs');
+const { autoAcceptInviteForRepo } = acceptInviteLib;
 
 // Initialize log file EARLY to capture all output including version and command
 // Use default directory (cwd) initially, will be set from argv.logDir after parsing
@@ -313,6 +315,11 @@ if (argv.autoFork && !argv.fork) {
   }
 }
 
+// Accept pending GitHub invitation for the specific repo/org before checking write access
+if (argv.autoAcceptInvite) {
+  await autoAcceptInviteForRepo(owner, repo, log, argv.verbose);
+}
+
 // Early check: Verify repository write permissions BEFORE doing any work
 // This prevents wasting AI tokens when user doesn't have access and --fork is not used
 const { checkRepositoryWritePermission } = githubLib;