npm - thepopebot - Versions diffs - 1.2.18 → 1.2.20 - Mend

thepopebot 1.2.18 → 1.2.20

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/package.json +1 -1
package/setup/lib/auth.mjs +2 -1
package/setup/setup.mjs +1 -0
package/templates/.env.example +3 -0
package/templates/docker/event-handler/Dockerfile +2 -1
package/templates/docker-compose.yml +14 -15

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "thepopebot",
-  "version": "1.2.18",
+  "version": "1.2.20",
   "type": "module",
   "description": "Create autonomous AI agents with a two-layer architecture: Next.js Event Handler + Docker Agent.",
   "bin": {

package/setup/lib/auth.mjs CHANGED Viewed

@@ -129,8 +129,9 @@ export function writeEnvFile(config) {
 # Auth.js secret (used for session encryption)
 AUTH_SECRET=${authSecret}
+AUTH_TRUST_HOST=true
-# GitHub Personal Access Token (fine-grained: Actions, Contents, Metadata, Pull requests)
+# GitHub Personal Access Token (fine-grained: Actions, Administration, Contents, Metadata, Pull requests)
 GH_TOKEN=${githubToken}
 # Repository info

package/setup/setup.mjs CHANGED Viewed

@@ -285,6 +285,7 @@ async function main() {
   console.log(chalk.dim(`  Create a fine-grained PAT scoped to ${chalk.bold(`${owner}/${repo}`)} only:\n`));
   console.log(chalk.dim('    \u2022 Repository access: Only select repositories \u2192 ') + chalk.bold(`${owner}/${repo}`));
   console.log(chalk.dim('    \u2022 Actions: Read and write'));
+  console.log(chalk.dim('    \u2022 Administration: Read and write (required for self-hosted runners)'));
   console.log(chalk.dim('    \u2022 Contents: Read and write'));
   console.log(chalk.dim('    \u2022 Metadata: Read-only (required, auto-selected)'));
   console.log(chalk.dim('    \u2022 Pull requests: Read and write'));

package/templates/.env.example CHANGED Viewed

@@ -6,6 +6,9 @@
 # To generate manually: openssl rand -base64 32
 AUTH_SECRET=
+# Trust the host header when behind a reverse proxy (Traefik, ngrok, etc.)
+AUTH_TRUST_HOST=true
 # Public URL for webhooks, Telegram, and Traefik hostname
 APP_URL=

package/templates/docker/event-handler/Dockerfile CHANGED Viewed

@@ -4,7 +4,8 @@ RUN apt-get update && apt-get install -y curl python3 make g++ && rm -rf /var/li
 WORKDIR /app
 COPY package.json package-lock.json* ./
-RUN npm install --omit=dev
+RUN npm install --omit=dev && \
+    npm install --no-save thepopebot@$(node -p "require('./package.json').version")
 EXPOSE 80
 CMD ["node_modules/.bin/next", "start", "-p", "80"]

package/templates/docker-compose.yml CHANGED Viewed

@@ -6,11 +6,13 @@ services:
       - --providers.docker.exposedByDefault=false
       - --entrypoints.web.address=:80
       - --entrypoints.websecure.address=:443
-      - --entrypoints.web.http.redirections.entrypoint.to=websecure
-      - --entrypoints.web.http.redirections.entrypoint.scheme=https
-      - --certificatesresolvers.letsencrypt.acme.email=${LETSENCRYPT_EMAIL:-}
-      - --certificatesresolvers.letsencrypt.acme.storage=/letsencrypt/acme.json
-      - --certificatesresolvers.letsencrypt.acme.httpchallenge.entrypoint=web
+      ## Uncomment the following lines to enable TLS via Let's Encrypt
+      ## (requires LETSENCRYPT_EMAIL in .env):
+      # - --entrypoints.web.http.redirections.entrypoint.to=websecure
+      # - --entrypoints.web.http.redirections.entrypoint.scheme=https
+      # - --certificatesresolvers.letsencrypt.acme.email=${LETSENCRYPT_EMAIL}
+      # - --certificatesresolvers.letsencrypt.acme.storage=/letsencrypt/acme.json
+      # - --certificatesresolvers.letsencrypt.acme.httpchallenge.entrypoint=web
     ports:
       - "80:80"
       - "443:443"
@@ -22,20 +24,17 @@ services:
   event_handler:
     image: ${EVENT_HANDLER_IMAGE_URL:-stephengpope/thepopebot:event-handler-${THEPOPEBOT_VERSION:-latest}}
     volumes:
-      - ./.next:/app/.next:ro
-      - ./config:/app/config:ro
-      - ./data:/app/data
-      - ./.env:/app/.env:ro
-      - ./cron:/app/cron
-      - ./triggers:/app/triggers
-      - ./logs:/app/logs:ro
+      - .:/app
+      - /app/node_modules
     labels:
       - traefik.enable=true
       # Set APP_HOSTNAME in .env to the domain from APP_URL (e.g., mybot.example.com)
       - traefik.http.routers.event_handler.rule=Host(`${APP_HOSTNAME}`)
-      - traefik.http.routers.event_handler.entrypoints=websecure
-      - traefik.http.routers.event_handler.tls.certresolver=letsencrypt
+      - traefik.http.routers.event_handler.entrypoints=web
       - traefik.http.services.event_handler.loadbalancer.server.port=80
+      ## Uncomment the following lines to enable TLS via Let's Encrypt:
+      # - traefik.http.routers.event_handler.entrypoints=websecure
+      # - traefik.http.routers.event_handler.tls.certresolver=letsencrypt
     restart: unless-stopped
   runner:
@@ -44,7 +43,7 @@ services:
       REPO_URL: https://github.com/${GH_OWNER}/${GH_REPO}
       ACCESS_TOKEN: ${GH_TOKEN}
       RUNNER_SCOPE: repo
-      LABELS: self-hosted,thepopebot
+      LABELS: self-hosted
     volumes:
       - /var/run/docker.sock:/var/run/docker.sock
     restart: unless-stopped