You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Implements all six AGI follow-up items from the orientation plan: SSE stream compatibility, persistence defaults, LM Studio routing verification, a new infrastructure specialist agent, CI hardening, and Aria provider wiring.
Changes
Stream fix: Add _materialize_sse_body() / _make_sse_response() in function_app.py so /api/agi/stream (and other SSE routes) work with azure-functions 1.x, which only accepts str/bytes bodies.
Persistence: Default JSONL audit path to data_out/agi_reasoning.jsonl; enable writes when QAI_AGI_PERSIST defaults to true; /api/agi/persistence returns JSONL metadata instead of 404 when unconfigured.
LM Studio: Add routing regression test in tests/test_lmstudio_agi_integration.py.
New agent: Register infrastructure-specialist with domain detection for deploy/CI/CD/DevOps queries.
CI hardening: Extend agi-smoke.yml with stream materialization and LM Studio routing tests.
Aria integration: Accept agi / agi-reasoning provider aliases in /api/aria/command; expose agi in health payload supported_providers.
@Bryan-Roe Thanks for sending me some feedback. Unfortunately, I hit an error while trying to use the custom Copilot setup steps configured for this repository. The error I am seeing is:
no `copilot-setup-steps` job found in your `copilot-setup-steps.yml` workflow file. Please ensure you have a single job named `copilot-setup-steps`. For more details, see https://gh.io/copilot/actions-setup-steps
Once you or someone with the necessary access fixes the problem, please let me know in a comment and I'll try again. Thanks!
Adds a shared SSE response helper compatible with azure-functions 1.x, introduces default JSONL persistence behavior and richer metadata for the AGI persistence endpoint, wires a new infrastructure-specialist agent and infrastructure domain routing, extends Aria to recognize AGI provider aliases and expose AGI support in health checks, and hardens CI/tests for AGI streaming and LM Studio routing.
Make AGI JSONL persistence enabled by default with a stable default path and richer endpoint metadata.
Add _default_agi_persist_jsonl_path helper to define a canonical data_out/agi_reasoning.jsonl location.
Update agi_persistence endpoint to use the default JSONL path, treat JSONL as the backend when no SQLite config exists, and always return backend/path/configured metadata instead of 404.
Add tests to verify default JSONL behavior and returned metadata structure.
Change AGI CLI persistence wiring so QAI_AGI_PERSIST defaults to true unless explicitly disabled.
Trigger a new review: Comment @sourcery-ai review on the pull request.
Continue discussions: Reply directly to Sourcery's review comments.
Generate a GitHub issue from a review comment: Ask Sourcery to create an
issue from a review comment by replying to it. You can also reply to a
review comment with @sourcery-ai issue to create an issue from it.
Generate a pull request title: Write @sourcery-ai anywhere in the pull
request title to generate a title at any time. You can also comment @sourcery-ai title on the pull request to (re-)generate the title at any time.
Generate a pull request summary: Write @sourcery-ai summary anywhere in
the pull request body to generate a PR summary at any time exactly where you
want it. You can also comment @sourcery-ai summary on the pull request to
(re-)generate the summary at any time.
Generate reviewer's guide: Comment @sourcery-ai guide on the pull
request to (re-)generate the reviewer's guide at any time.
Resolve all Sourcery comments: Comment @sourcery-ai resolve on the
pull request to resolve all Sourcery comments. Useful if you've already
addressed all the comments and don't want to see them anymore.
Dismiss all Sourcery reviews: Comment @sourcery-ai dismiss on the pull
request to dismiss all existing Sourcery reviews. Especially useful if you
want to start fresh with a new review - don't forget to comment @sourcery-ai review to trigger a new review!
The reason will be displayed to describe this comment to others. Learn more.
Pull request overview
This PR implements a batch of AGI follow-up items: it centralizes Server-Sent Events (SSE) response handling in function_app.py to work around azure-functions 1.x not accepting generator bodies, makes AGI JSONL persistence enabled-by-default with a stable path (and returns JSONL metadata instead of a 404 when unconfigured), adds an infrastructure-specialist agent with an infrastructure domain to the AGI router, and wires the agi/agi-reasoning provider aliases plus a supported_providers health field into the Aria server. It fits into the Functions integration layer and the AGI provider that powers /api/agi/* and Aria command parsing.
Changes:
Add _materialize_sse_body() / _make_sse_response() helpers and route all SSE endpoints through them; default AGI persistence to data_out/agi_reasoning.jsonl and enable it by default.
Register infrastructure-specialist agent and add infrastructure domain keyword detection in _analyze_query.
Expose agi in the Aria health payload's supported_providers and accept agi/agi-reasoning aliases; extend tests and the agi-smoke CI workflow.
Reviewed changes
Copilot reviewed 11 out of 11 changed files in this pull request and generated 3 comments.
Show a summary per file
File
Description
function_app.py
Adds SSE materialization helpers, routes all stream endpoints through them, and reworks the persistence endpoint to default to JSONL metadata.
ai-projects/chat-cli/src/agi_provider.py
Adds infrastructure-specialist agent, infrastructure domain detection, and defaults QAI_AGI_PERSIST to enabled.
apps/aria/server.py
Adds agi_provider_supported/supported_providers to the health payload and agi/agi-reasoning alias mapping.
local.settings.json.example
Documents agi provider option and new QAI_AGI_PERSIST* defaults.
.github/workflows/agi-smoke.yml
Runs LM Studio routing and AGI stream sentinel tests in CI.
tests/test_function_app_endpoints.py
Simplifies the stream test to read the materialized response body directly.
tests/test_agi_smoke.py
Adds a test for _materialize_sse_body joining generator chunks.
tests/test_agi_provider.py
Adds infrastructure domain detection and infrastructure-specialist routing tests.
tests/test_agi_persistence_endpoint.py
Adds a default-JSONL-path persistence test.
tests/test_lmstudio_agi_integration.py
Adds an LM Studio specialist routing test.
tests/test_aria_server.py
Adds AGI alias parsing and health-payload AGI-support tests.
…dies
Update TestPostValidation chat_stream tests to read SSE via resp.get_body()
after _make_sse_response materializes generators. Fix yamllint bracket and
comment spacing in agi-smoke.yml.
Co-authored-by: Bryan <bryan@users.noreply.github.com>
- Add AGI mode toggle and SSE streaming in chat.js and index.html
- Serve agi_stream_utils.js via /api/chat-web/static/agi_stream_utils.js
- Add agi_analyze and agi_reason MCP tools with import-safe server boot
- Fix devcontainer LM Studio URL test isolation and add MCP/endpoint tests
Co-authored-by: Bryan <bryan@users.noreply.github.com>
The reason will be displayed to describe this comment to others. Learn more.
Semgrep identified an issue in your code:
User controlled data in methods like innerHTML, outerHTML or document.write is an anti-pattern that can lead to XSS vulnerabilities
To resolve this comment:
🔧 No guidance has been designated for this issue. Fix according to your organization's approved methods.
💬 Ignore this finding
Reply with Semgrep commands to ignore this finding.
The reason will be displayed to describe this comment to others. Learn more.
Semgrep identified an issue in your code:
User controlled data in methods like innerHTML, outerHTML or document.write is an anti-pattern that can lead to XSS vulnerabilities
To resolve this comment:
🔧 No guidance has been designated for this issue. Fix according to your organization's approved methods.
💬 Ignore this finding
Reply with Semgrep commands to ignore this finding.
Detected the use of an inner/outerHTML assignment. This can introduce a Cross-Site-Scripting (XSS) vulnerability if this comes from user-provided input. If you have to use a dangerous web API, consider using a sanitization library such as DOMPurify to sanitize the HTML before it is assigned.
The reason will be displayed to describe this comment to others. Learn more.
Using variable interpolation ${{...}} with github context data in a run: step could allow an attacker to inject their own code into the runner. This would allow them to steal secrets and code. github context data can have arbitrary user input and should be treated as untrusted. Instead, use an intermediate environment variable with env: to store the data and use the environment variable in the run: script. Be sure to use double-quotes the environment variable, like this: "$ENVVAR".
The reason will be displayed to describe this comment to others. Learn more.
Stale comment
Not approving: Cursor Bugbot is still pending after the 8-minute polling window and no Bugbot review comment (<!-- BUGBOT_REVIEW -->) was posted, so the required automated review signal is missing. Human review is needed before merge; no reviewers were assigned because Bryan-Roe is the sole code owner and PR author.
Sent by Cursor Approval Agent: Pull Request Approver
…icts
Take main's local_dev_adapter CI path and _sse_response helpers while
keeping PR AGI persistence defaults and strict-mode endpoint gating.
Co-authored-by: Bryan <bryan@users.noreply.github.com>
The reason will be displayed to describe this comment to others. Learn more.
Not approving: Cursor Bugbot is still pending after the 8-minute polling window and no Bugbot review comment (<!-- BUGBOT_REVIEW -->) was posted for the current head, so the required automated review signal is missing. Human review is needed before merge; no reviewers were assigned because Bryan-Roe is the sole code owner and PR author.
Sent by Cursor Approval Agent: Pull Request Approver
- Add _materialize_sse_body alias for _sse_body_bytes
- Use resp.get_body() in SSE stream endpoint tests
- Pin LMSTUDIO_MODEL in provider detection test
- Use hmac.compare_digest for AGI persistence token check
- Fix MD060 compact table formatting in docs
Co-authored-by: Bryan <bryan@users.noreply.github.com>
- Use libasound2t64 on Ubuntu 24.04 for Pyppeteer Chromium deps
- Bind Aria server to 0.0.0.0 and point remote Chrome at host.docker.internal
- Grant workflows: write to CodeQL autofix job for workflow YAML pushes
Co-authored-by: Bryan <bryan@users.noreply.github.com>
- Keep set -e-safe retry increment in contract gate loop
- Keep resp.get_body() SSE assertions from PR branch (drop unused capture helper)
- Align quantum integration test job name with main (smoke)
Co-authored-by: Bryan <bryan@users.noreply.github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
![bryan-roe-bot[bot]](https://avatars.githubusercontent.com/in/1073263?s=60&v=4){kind=small}
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
![cursor[bot]](https://avatars.githubusercontent.com/in/1210556?s=60&v=4){kind=small}
Summary
Implements all six AGI follow-up items from the orientation plan: SSE stream compatibility, persistence defaults, LM Studio routing verification, a new infrastructure specialist agent, CI hardening, and Aria provider wiring.
Changes
_materialize_sse_body()/_make_sse_response()infunction_app.pyso/api/agi/stream(and other SSE routes) work with azure-functions 1.x, which only acceptsstr/bytesbodies.data_out/agi_reasoning.jsonl; enable writes whenQAI_AGI_PERSISTdefaults totrue;/api/agi/persistencereturns JSONL metadata instead of 404 when unconfigured.tests/test_lmstudio_agi_integration.py.infrastructure-specialistwith domain detection for deploy/CI/CD/DevOps queries.agi-smoke.ymlwith stream materialization and LM Studio routing tests.agi/agi-reasoningprovider aliases in/api/aria/command; exposeagiin health payloadsupported_providers.Verification
pytest tests/test_agi_smoke.py tests/test_agi_provider.py tests/test_agi_persistence_endpoint.py tests/test_agi_persistence_auth.py tests/test_lmstudio_agi_integration.py tests/test_function_app_endpoints.py::TestAgiEndpoints tests/test_aria_server.py::test_parse_accepts_agi_provider_alias tests/test_aria_server.py::test_health_payload_includes_agi_provider_support -q→ 122 passedPOST /api/agi/streamreturns SSEevent: meta+data: {"delta": ...}+[DONE]GET /api/agi/persistence?limit=3returnsbackend: jsonlwith entriesSummary by Sourcery
Ensure AGI streaming, persistence, routing, and Aria integration behave consistently across environments and providers.
New Features:
Enhancements:
CI:
Tests: