feat(agent-orchestrator): lock down bridge and normalize audit logs#56
Closed
Coldaine wants to merge 1 commit intostack/adb-vision-audit-hardeningfrom
Closed
feat(agent-orchestrator): lock down bridge and normalize audit logs#56Coldaine wants to merge 1 commit intostack/adb-vision-audit-hardeningfrom
Coldaine wants to merge 1 commit intostack/adb-vision-audit-hardeningfrom
Conversation
Loading
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
alas_call_tool(...)behind an allowlist plus explicitALAS_ALLOW_UNSAFE_STATE_MACHINE_CALLS=1overrideadb_tapcontract and the blocked-by-default bridge policyWhy
The deprecated
agent_orchestratorsurface was still too open and its logs were flatter than the canonicaladb_visionsurface. This makes the deprecated path explicit, constrained, and reviewable instead of a generic remote tool trampoline.Validation
cd agent_orchestrator && uv run pytest test_alas_mcp.py test_mcp_audit.py test_integration_mcp.py -qcd adb_vision && uv run pytest test_server.py test_tool_audit.py -qStack
feat(adb-vision): restore live piloting and audit backend helpers