npm - ltcai - Versions diffs - 5.5.0 → 6.0.0 - Mend

ltcai 5.5.0 → 6.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (44) hide show

package/README.md +43 -24
package/docs/CHANGELOG.md +69 -0
package/frontend/openapi.json +716 -3
package/frontend/src/api/client.ts +119 -2
package/frontend/src/api/openapi.ts +621 -4
package/frontend/src/components/FirstRunGuide.tsx +3 -3
package/frontend/src/features/review/ReviewCard.tsx +91 -0
package/frontend/src/features/review/ReviewInbox.tsx +112 -0
package/frontend/src/features/review/reviewHelpers.ts +69 -0
package/frontend/src/i18n.ts +8 -8
package/frontend/src/pages/Act.tsx +28 -3
package/frontend/src/routes.ts +2 -0
package/lattice_brain/__init__.py +1 -1
package/lattice_brain/runtime/multi_agent.py +1 -1
package/latticeai/__init__.py +1 -1
package/latticeai/api/review_queue.py +162 -0
package/latticeai/app_factory.py +235 -456
package/latticeai/core/marketplace.py +1 -1
package/latticeai/core/workspace_os.py +86 -1
package/latticeai/runtime/app_context_runtime.py +13 -0
package/latticeai/runtime/automation_runtime.py +64 -0
package/latticeai/runtime/bootstrap.py +48 -0
package/latticeai/runtime/context_runtime.py +43 -0
package/latticeai/runtime/hooks_runtime.py +77 -0
package/latticeai/runtime/lifespan_runtime.py +138 -0
package/latticeai/runtime/persistence_runtime.py +87 -0
package/latticeai/runtime/platform_services_runtime.py +39 -0
package/latticeai/runtime/router_registration.py +570 -0
package/latticeai/runtime/web_runtime.py +65 -0
package/latticeai/services/review_queue.py +271 -0
package/latticeai/services/run_executor.py +33 -0
package/latticeai/services/triggers.py +30 -1
package/package.json +1 -1
package/src-tauri/Cargo.lock +1 -1
package/src-tauri/Cargo.toml +1 -1
package/src-tauri/tauri.conf.json +1 -1
package/static/app/asset-manifest.json +5 -5
package/static/app/assets/index-D2zafMYb.js +16 -0
package/static/app/assets/index-D2zafMYb.js.map +1 -0
package/static/app/assets/index-xRn29gI8.css +2 -0
package/static/app/index.html +2 -2
package/static/app/assets/index-C7vzwUjU.js +0 -16
package/static/app/assets/index-C7vzwUjU.js.map +0 -1
package/static/app/assets/index-HN4f2wbe.css +0 -2

package/latticeai/runtime/router_registration.py ADDED Viewed

@@ -0,0 +1,570 @@
+"""Router registration helpers for app-factory decomposition.
+The first router extraction step keeps router construction at the existing
+call sites and centralizes only the registration operation. This preserves the
+exact include order while creating a narrow seam for the later
+``register_routers(app, deps)`` extraction.
+"""
+from __future__ import annotations
+from typing import Any
+def build_static_routes_bundle(
+    *,
+    create_static_routes_router: Any,
+    static_dir: Any,
+    invite_gate_enabled: bool,
+    invite_code: str,
+    app_mode: str,
+    model_router: Any,
+    require_user: Any,
+) -> dict[str, Any]:
+    """Build static route support while preserving the legacy exported names."""
+    static_routes = create_static_routes_router(
+        static_dir=static_dir,
+        invite_gate_enabled=invite_gate_enabled,
+        invite_code=invite_code,
+        app_mode=app_mode,
+        model_router=model_router,
+        require_user=require_user,
+    )
+    return {
+        "STATIC_ROUTES": static_routes,
+        "ui_file_response": static_routes.ui_file_response,
+        "local_sysinfo": static_routes.local_sysinfo,
+    }
+def build_auth_admin_security_router_bundle(
+    *,
+    create_auth_router: Any,
+    load_users: Any,
+    save_users: Any,
+    hash_password: Any,
+    verify_and_migrate_password: Any,
+    create_session: Any,
+    get_session_email: Any,
+    invalidate_session: Any,
+    extract_bearer_token: Any,
+    get_user_role: Any,
+    require_user: Any,
+    check_ip_rate_limit: Any,
+    client_ip: Any,
+    get_sso_settings: Any,
+    get_sso_discovery: Any,
+    public_sso_config: Any,
+    open_registration: bool,
+    session_ttl: int,
+    require_auth: bool,
+    ensure_identity: Any,
+    create_admin_router: Any,
+    require_admin: Any,
+    get_history: Any,
+    get_audit_log: Any,
+    audit_file: Any,
+    public_user: Any,
+    load_vpc_config: Any,
+    save_vpc_config: Any,
+    build_admin_audit_report: Any,
+    build_sensitivity_report: Any,
+    append_audit_event: Any,
+    save_sso_config: Any,
+    knowledge_graph: Any,
+    enable_graph: bool,
+    logger: Any,
+    invite_code: str,
+    invite_gate_enabled: bool,
+    default_port: int,
+    policy_matrix: Any,
+    build_product_hardening_status: Any,
+    config: Any,
+    kg_portability: Any,
+    device_identity: Any,
+    create_invitations_router: Any,
+    invitation_store: Any,
+    workspace_service: Any,
+    user_id_for_email: Any,
+    create_security_router: Any,
+    classify_sensitive_message: Any,
+) -> dict[str, Any]:
+    """Build auth/admin/security routers and their legacy helper closures."""
+    auth_router = create_auth_router(
+        load_users=load_users,
+        save_users=save_users,
+        hash_password=hash_password,
+        verify_and_migrate=verify_and_migrate_password,
+        create_session=create_session,
+        get_session_email=get_session_email,
+        invalidate_session=invalidate_session,
+        extract_bearer_token=extract_bearer_token,
+        get_user_role=get_user_role,
+        require_user=require_user,
+        check_ip_rate_limit=check_ip_rate_limit,
+        client_ip=client_ip,
+        get_sso_settings=get_sso_settings,
+        get_sso_discovery=get_sso_discovery,
+        public_sso_config=public_sso_config,
+        open_registration=open_registration,
+        session_ttl=session_ttl,
+        require_auth=require_auth,
+        ensure_identity=ensure_identity,
+    )
+    def graph_stats_safe() -> dict[str, Any]:
+        try:
+            return knowledge_graph.stats() if (enable_graph and knowledge_graph) else {"disabled": True}
+        except Exception as exc:  # pragma: no cover - defensive legacy behavior
+            return {"error": str(exc)}
+    def product_hardening_status() -> Any:
+        return build_product_hardening_status(
+            config=config,
+            portability=kg_portability,
+            device_identity=device_identity,
+        )
+    admin_router = create_admin_router(
+        require_admin=require_admin,
+        require_user=require_user,
+        load_users=load_users,
+        save_users=save_users,
+        get_user_role=get_user_role,
+        get_history=get_history,
+        get_audit_log=get_audit_log,
+        public_user=public_user,
+        load_vpc_config=load_vpc_config,
+        save_vpc_config=save_vpc_config,
+        build_admin_audit_report=build_admin_audit_report,
+        build_sensitivity_report=build_sensitivity_report,
+        append_audit_event=append_audit_event,
+        public_sso_config=public_sso_config,
+        save_sso_config=save_sso_config,
+        get_graph_stats=graph_stats_safe,
+        enable_graph=enable_graph,
+        invite_code=invite_code,
+        invite_gate_enabled=invite_gate_enabled,
+        default_port=default_port,
+        policy_matrix=policy_matrix,
+        product_hardening_status=product_hardening_status,
+    )
+    invitations_router = create_invitations_router(
+        invitation_store=invitation_store,
+        workspace_service=workspace_service,
+        require_admin=require_admin,
+        require_user=require_user,
+        user_id_for_email=user_id_for_email,
+        append_audit_event=append_audit_event,
+    )
+    def security_audit_events_safe() -> list[dict[str, Any]]:
+        try:
+            return get_audit_log(audit_file)
+        except Exception as exc:  # pragma: no cover - defensive legacy behavior
+            logger.warning("security audit events load failed: %s", exc)
+            return []
+    def security_list_uploaded_files() -> list[dict[str, Any]]:
+        files: list[dict[str, Any]] = []
+        for idx, event in enumerate(security_audit_events_safe()):
+            if event.get("event_type") != "document_upload":
+                continue
+            files.append({
+                "file_id": str(event.get("filename") or idx),
+                "filename": event.get("filename"),
+                "user_email": event.get("user_email"),
+                "user_nickname": event.get("user_nickname"),
+                "uploaded_at": event.get("timestamp"),
+                "ext": event.get("ext"),
+                "bytes": event.get("bytes"),
+                "sensitivity": event.get("sensitivity") or "none",
+                "sensitive_labels": event.get("sensitive_labels") or [],
+                "content_preview": event.get("content_preview"),
+            })
+        return files
+    security_router = create_security_router(
+        require_admin=require_admin,
+        get_history=get_history,
+        get_audit_events=security_audit_events_safe,
+        classify_sensitive_message=classify_sensitive_message,
+        build_sensitivity_report=build_sensitivity_report,
+        list_uploaded_files=security_list_uploaded_files,
+        append_audit_event=append_audit_event,
+    )
+    return {
+        "auth_router": auth_router,
+        "admin_router": admin_router,
+        "invitations_router": invitations_router,
+        "security_router": security_router,
+        "_graph_stats_safe": graph_stats_safe,
+        "_product_hardening_status": product_hardening_status,
+        "_security_audit_events_safe": security_audit_events_safe,
+        "_security_list_uploaded_files": security_list_uploaded_files,
+    }
+def register_router(app: Any, router: Any) -> Any:
+    """Include one router and return it for optional caller-side bookkeeping."""
+    app.include_router(router)
+    return router
+def register_routers(app: Any, *routers: Any) -> tuple[Any, ...]:
+    """Include routers in the given order and return them unchanged."""
+    for router in routers:
+        register_router(app, router)
+    return routers
+def register_foundation_routers(
+    app: Any,
+    *,
+    static_router: Any,
+    auth_router: Any,
+    admin_router: Any,
+    invitations_router: Any,
+    security_router: Any,
+    create_workspace_router: Any,
+    context: Any,
+) -> tuple[Any, ...]:
+    """Register early static/auth/admin/security/workspace routers in order."""
+    workspace_router = create_workspace_router(context)
+    return register_routers(
+        app,
+        static_router,
+        auth_router,
+        admin_router,
+        invitations_router,
+        security_router,
+        workspace_router,
+    )
+def register_platform_feature_routers(
+    app: Any,
+    *,
+    create_plugins_router: Any,
+    plugin_registry: Any,
+    require_user: Any,
+    require_admin: Any,
+    append_audit_event: Any,
+    platform: Any,
+    ui_file_response: Any,
+    static_dir: Any,
+    create_workflow_designer_router: Any,
+    store: Any,
+    get_current_user: Any,
+    workspace_graph: Any,
+    hooks: Any,
+    run_executor: Any,
+    trigger_service: Any,
+    create_agents_router: Any,
+    agent_runtime: Any,
+    create_marketplace_router: Any,
+    template_catalog: Any,
+    create_realtime_router: Any,
+    realtime_bus: Any,
+) -> tuple[Any, ...]:
+    """Register plugin/workflow/agent/marketplace/realtime routes in order."""
+    return register_routers(
+        app,
+        create_plugins_router(
+            registry=plugin_registry,
+            require_user=require_user,
+            require_admin=require_admin,
+            append_audit_event=append_audit_event,
+            register_skill=platform.register_plugin_skill,
+            plugin_runners_factory=lambda: platform.plugin_capability_runners(None, None),
+            ui_file_response=ui_file_response,
+            static_dir=static_dir,
+        ),
+        create_workflow_designer_router(
+            store=store,
+            require_user=require_user,
+            get_current_user=get_current_user,
+            gate_read=platform.gate_read,
+            gate_write=platform.gate_write,
+            workspace_graph=workspace_graph,
+            build_runners=platform.build_workflow_runners,
+            append_audit_event=append_audit_event,
+            ui_file_response=ui_file_response,
+            static_dir=static_dir,
+            hooks=hooks,
+            run_executor=run_executor,
+            trigger_service=trigger_service,
+        ),
+        create_agents_router(
+            store=store,
+            orchestrator_factory=platform.build_orchestrator,
+            require_user=require_user,
+            get_current_user=get_current_user,
+            gate_read=platform.gate_read,
+            gate_write=platform.gate_write,
+            workspace_graph=workspace_graph,
+            append_audit_event=append_audit_event,
+            ui_file_response=ui_file_response,
+            static_dir=static_dir,
+            agent_runtime=agent_runtime,
+            run_executor=run_executor,
+        ),
+        create_marketplace_router(
+            store=store,
+            catalog=template_catalog,
+            require_user=require_user,
+            gate_read=platform.gate_read,
+            gate_write=platform.gate_write,
+            workspace_graph=workspace_graph,
+        ),
+        create_realtime_router(
+            bus=realtime_bus,
+            require_user=require_user,
+            get_current_user=get_current_user,
+            allowed_scopes=platform.allowed_scopes,
+            ui_file_response=ui_file_response,
+            static_dir=static_dir,
+        ),
+    )
+def register_health_and_model_routers(
+    app: Any,
+    *,
+    create_health_router: Any,
+    model_service: Any,
+    engine_status: Any,
+    get_current_user: Any,
+    require_auth: bool,
+    app_version: str,
+    app_mode: str,
+    create_models_router: Any,
+    model_router: Any,
+    require_user: Any,
+    load_users: Any,
+    get_user_role: Any,
+    install_engine: Any,
+    verify_cloud_models: Any,
+    normalize_local_model_request: Any,
+    download_hf_model: Any,
+    prepare_and_load_model: Any,
+    prepare_and_load_model_stream: Any,
+    sse_event: Any,
+    ensure_ollama_server: Any,
+    local_binary: Any,
+    filter_lower_family_versions: Any,
+    list_compat_profiles: Any,
+    set_user_api_key: Any,
+    engine_model_catalog: Any,
+    model_engine_aliases: Any,
+    cloud_verify_ttl_seconds: int,
+    is_public_mode: bool,
+    allow_local_models: bool,
+) -> tuple[Any, ...]:
+    """Register health and model management routes in legacy order."""
+    return register_routers(
+        app,
+        create_health_router(
+            model_service=model_service,
+            engine_status=engine_status,
+            get_current_user=get_current_user,
+            require_auth=require_auth,
+            app_version=app_version,
+            app_mode=app_mode,
+        ),
+        create_models_router(
+            model_router=model_router,
+            require_user=require_user,
+            get_current_user=get_current_user,
+            load_users=load_users,
+            get_user_role=get_user_role,
+            install_engine=install_engine,
+            verify_cloud_models=verify_cloud_models,
+            normalize_local_model_request=normalize_local_model_request,
+            download_hf_model=download_hf_model,
+            prepare_and_load_model=prepare_and_load_model,
+            prepare_and_load_model_stream=prepare_and_load_model_stream,
+            sse_event=sse_event,
+            ensure_ollama_server=ensure_ollama_server,
+            local_binary=local_binary,
+            engine_status=engine_status,
+            filter_lower_family_versions=filter_lower_family_versions,
+            list_compat_profiles=list_compat_profiles,
+            set_user_api_key=set_user_api_key,
+            engine_model_catalog=engine_model_catalog,
+            model_engine_aliases=model_engine_aliases,
+            cloud_verify_ttl_seconds=cloud_verify_ttl_seconds,
+            is_public_mode=is_public_mode,
+            allow_local_models=allow_local_models,
+            require_auth=require_auth,
+        ),
+    )
+def register_interaction_routers(
+    app: Any,
+    *,
+    create_chat_router: Any,
+    context: Any,
+    create_search_router: Any,
+    search_service: Any,
+    allowed_workspaces_for: Any,
+    require_user: Any,
+    embedding_info: Any,
+    create_tools_router: Any,
+    ingestion_pipeline: Any,
+    config: Any,
+    data_dir: Any,
+    static_dir: Any,
+    model_router: Any,
+    require_admin: Any,
+    get_current_user: Any,
+    clear_history: Any,
+    append_audit_event: Any,
+    enforce_rate_limit: Any,
+    bytes_match_extension: Any,
+    classify_sensitive_message: Any,
+    save_to_history: Any,
+    enable_graph: bool,
+    knowledge_graph: Any,
+    require_graph: Any,
+    local_kg_watcher: Any,
+    load_mcp_installs: Any,
+    recommend_mcps: Any,
+    install_mcp: Any,
+    mcp_public_item: Any,
+    hooks: Any,
+    create_hooks_router: Any,
+    create_agent_registry_router: Any,
+    agent_registry: Any,
+    create_memory_router: Any,
+    memory_service: Any,
+    platform: Any,
+) -> tuple[Any, ...]:
+    """Register chat/search/tools/hooks/registry/memory routes in order."""
+    return register_routers(
+        app,
+        create_chat_router(context),
+        create_search_router(
+            service=search_service,
+            allowed_workspaces_for=allowed_workspaces_for,
+            require_user=require_user,
+            embedding_info=embedding_info,
+        ),
+        create_tools_router(
+            ingestion_pipeline=ingestion_pipeline,
+            config=config,
+            data_dir=data_dir,
+            static_dir=static_dir,
+            model_router=model_router,
+            require_user=require_user,
+            require_admin=require_admin,
+            get_current_user=get_current_user,
+            clear_history=clear_history,
+            append_audit_event=append_audit_event,
+            enforce_rate_limit=enforce_rate_limit,
+            bytes_match_extension=bytes_match_extension,
+            classify_sensitive_message=classify_sensitive_message,
+            save_to_history=save_to_history,
+            enable_graph=enable_graph,
+            knowledge_graph=knowledge_graph,
+            require_graph=require_graph,
+            local_kg_watcher=local_kg_watcher,
+            load_mcp_installs=load_mcp_installs,
+            recommend_mcps=recommend_mcps,
+            install_mcp=install_mcp,
+            mcp_public_item=mcp_public_item,
+            hooks=hooks,
+        ),
+        create_hooks_router(
+            registry=hooks,
+            require_user=require_user,
+            append_audit_event=append_audit_event,
+        ),
+        create_agent_registry_router(
+            registry=agent_registry,
+            require_user=require_user,
+            append_audit_event=append_audit_event,
+        ),
+        create_memory_router(
+            service=memory_service,
+            require_user=require_user,
+            get_current_user=get_current_user,
+            gate_read=platform.gate_read,
+            gate_write=platform.gate_write,
+            append_audit_event=append_audit_event,
+        ),
+    )
+def register_review_and_brain_tail_routers(
+    app: Any,
+    *,
+    create_review_queue_router: Any,
+    review_queue: Any,
+    require_user: Any,
+    gate_read: Any,
+    gate_write: Any,
+    run_review_item: Any,
+    append_audit_event: Any,
+    create_browser_router: Any,
+    ingestion_pipeline: Any,
+    create_portability_router: Any,
+    kg_portability: Any,
+    require_admin: Any,
+    build_brain_network: Any,
+    device_identity: Any,
+    data_dir: Any,
+    create_network_router: Any,
+    create_garden_router: Any,
+    gardener: Any,
+    create_setup_router: Any,
+    model_router: Any,
+) -> Any:
+    """Register the final review/browser/brain tail routes in legacy order."""
+    register_routers(
+        app,
+        create_review_queue_router(
+            service=review_queue,
+            require_user=require_user,
+            gate_read=gate_read,
+            gate_write=gate_write,
+            run_review_item=run_review_item,
+            append_audit_event=append_audit_event,
+        ),
+        create_browser_router(
+            pipeline=ingestion_pipeline,
+            require_user=require_user,
+        ),
+        create_portability_router(
+            service=kg_portability,
+            require_user=require_user,
+            require_admin=require_admin,
+        ),
+    )
+    brain_network = build_brain_network(
+        identity=device_identity,
+        portability=kg_portability,
+        data_dir=data_dir,
+    )
+    register_routers(
+        app,
+        create_network_router(
+            network=brain_network,
+            identity=device_identity,
+            require_user=require_user,
+        ),
+        create_garden_router(gardener=gardener, require_user=require_user),
+        create_setup_router(model_router=model_router, require_user=require_user),
+    )
+    return brain_network

package/latticeai/runtime/web_runtime.py ADDED Viewed

@@ -0,0 +1,65 @@
+"""FastAPI shell assembly for the application factory.
+This seam owns only the outer web shell: app construction, CORS middleware,
+and static asset mounts. Router registration stays in ``app_factory`` until
+the route snapshot/reorder step is reviewed.
+"""
+from __future__ import annotations
+from pathlib import Path
+from typing import Any, Dict, Iterable
+def build_web_runtime(
+    *,
+    app_mode: str,
+    app_version: str,
+    lifespan: Any,
+    default_host: str,
+    default_port: int,
+    cors_extra_origins: Iterable[str],
+    cors_allow_network: bool,
+    static_dir: Path,
+) -> Dict[str, Any]:
+    """Create the FastAPI shell and mount static assets in legacy order."""
+    from fastapi import FastAPI
+    from fastapi.middleware.cors import CORSMiddleware
+    from fastapi.staticfiles import StaticFiles
+    app = FastAPI(
+        title=f"Lattice AI Server ({app_mode})",
+        version=app_version,
+        lifespan=lifespan,
+    )
+    cors_allowed_origins = [
+        f"http://localhost:{default_port}",
+        f"http://127.0.0.1:{default_port}",
+        *cors_extra_origins,
+    ]
+    if cors_allow_network:
+        cors_allowed_origins = cors_allowed_origins + [
+            f"http://{default_host}:{default_port}",
+            f"https://{default_host}:{default_port}",
+        ]
+    app.add_middleware(
+        CORSMiddleware,
+        allow_origins=cors_allowed_origins,
+        allow_methods=["*"],
+        allow_headers=["*"],
+        allow_credentials=True,
+    )
+    static_dir.mkdir(parents=True, exist_ok=True)
+    app.mount("/static", StaticFiles(directory=str(static_dir)), name="static")
+    icons_dir = static_dir / "icons"
+    if icons_dir.exists():
+        app.mount("/icons", StaticFiles(directory=str(icons_dir)), name="icons")
+    return {
+        "app": app,
+        "CORS_ALLOWED_ORIGINS": cors_allowed_origins,
+    }