[comp] Production Deploy #1879

github-actions · 2025-12-09T21:10:16Z

This is an automated pull request to release the candidate branch into production, which will trigger a deployment.
It was created by the [Production PR] action.

* feat: working version of integrations framework * feat: make integrations more robust * feat(google-workspace): add integration manifest and checks for Google Workspace * feat(integration-platform): add custom settings to OAuth app and platform credential models * feat(integration-platform): add Google Workspace sync functionality and update integration manifest * feat(integration-platform): add scheduled task for syncing employees from integrations * feat(integration-platform): add AWS SDK clients and update integration manifest * refactor(integration-platform): integrate AWS Security Hub and update cloud tests * feat(integration-platform): add Rippling integration for employee sync and update manifest * feat(integration-platform): implement employee sync provider management and update related APIs * feat(integration-platform): add employee access review check for Google Workspace * feat(gcp): add GCP integration with IAM access and monitoring checks * feat(gcp): add GCP integration with IAM access and monitoring checks * feat: working version of integrations framework * feat: make integrations more robust * feat(google-workspace): add integration manifest and checks for Google Workspace * feat(integration-platform): add custom settings to OAuth app and platform credential models * feat(integration-platform): add Google Workspace sync functionality and update integration manifest * feat(integration-platform): add scheduled task for syncing employees from integrations * feat(integration-platform): add AWS SDK clients and update integration manifest * refactor(integration-platform): integrate AWS Security Hub and update cloud tests * feat(integration-platform): add Rippling integration for employee sync and update manifest * feat(integration-platform): implement employee sync provider management and update related APIs * feat(integration-platform): add employee access review check for Google Workspace * chore: remove deprecated vector tasks and update openapi.json * feat(integration-platform): add Azure integration with credential management and checks * feat(integrations): unify integrations list and add task card component * feat(integration-platform): add auto-check runner service and related tasks * feat(integration-platform): implement GCP OAuth integration with credential management and checks * feat(integrations): add combobox support for credential fields and update AWS region type * refactor(db): fix integrations order * feat(integration-platform): add validation for API key and basic auth credentials in checks * refactor(api): add throttling and security headers with helmet integration * chore(cloud-security): add cloud security module with scanning capabilities * chore(dependencies): update next and react versions to 16.0.8 and 19.2.1 * refactor(proxy): add proxy function with request matcher configuration * chore(dependencies): update react and next versions to 19.1.1 and 16.0.8 * refactor(people): allow selectedProvider to be undefined and simplify date handling * chore(dependencies): update @ai-sdk/openai and ai package versions * refactor(onboarding): remove redundant mode parameter from generateObject calls * refactor(api): update content security policy for improved security --------- Co-authored-by: Mariano Fuentes <marfuen98@gmail.com>

vercel · 2025-12-09T21:10:20Z

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Preview	Comments	Updated (UTC)
app (staging)	Ready	Preview	Comment	Dec 12, 2025 0:15am
portal (staging)	Ready	Preview	Comment	Dec 12, 2025 0:15am

cursor · 2025-12-09T21:10:23Z

PR Summary

Adds a full integration platform (schemas, API, manifests, runtime) with OAuth/admin flows and docs; updates Prisma/tooling, exposes org primaryColor, and tweaks UI badges/styles.

Integrations Platform (new package packages/integration-platform):
- Runtime, registry, validators, and type-safe APIs (src/runtime, src/registry, src/types).
- Provider manifests and checks for github, google-workspace, aws, azure, gcp, rippling, vercel.
- Task mapping generator and API response types.
Database (Prisma):
- New models/tables: IntegrationProvider, IntegrationConnection, IntegrationCredentialVersion, IntegrationRun, IntegrationPlatformFinding, IntegrationOAuthState, IntegrationOAuthApp, IntegrationPlatformCredential, IntegrationCheckRun, IntegrationCheckResult (+ indexes/FKs).
- Schema updates: User.isPlatformAdmin, Organization.employeeSyncProvider, Organization.primaryColor, Questionnaire.source.
- Config/seeding: enable earlyAccess, set migrate URL, seed/client use DATABASE_URL; add db:migrate:reset.
API (OpenAPI + endpoints):
- Extensive new routes under /v1/integrations/* for OAuth (availability/start/callback), providers, connections (CRUD/pause/resume/test), checks (list/run), variables (CRUD/options), webhooks, sync (Google Workspace/Rippling, employee sync provider), and cloud security scan.
- New GET /v1/organization/primary-color and related schema changes; export generator note update.
Docs:
- New Integrations tab with guides: platform overview, writing integrations, authentication, variables, contributing, self-hosting OAuth.
Tooling:
- Add root db:generate and Turbo db:generate task.
UI:
- Badge variants (warning, success) and CSS theme vars for warning colors.

^{Written by Cursor Bugbot for commit 8d2a811. This will update automatically on new commits. Configure here.}

CLAassistant · 2025-12-09T21:10:23Z

Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you all sign our Contributor License Agreement before we can accept your contribution.
1 out of 2 committers have signed the CLA.

✅ Marfuen
❌ github-actions[bot]
_{You have signed the CLA already but the status is still pending? Let us recheck it.}

packages/integration-platform/scripts/generate-task-types.ts

+      .substring(0, 100); // Truncate for readability
+
+    lines.push(`  '${task.id}': {`);
+    lines.push(`    name: '${task.name.replace(/'/g, "\\'")}',`);


To fix the problem, we must ensure that all backslashes in task.name are escaped, followed by escaping single quotes. This is because single-quoted JavaScript/TypeScript string literals require backslashes and single quotes within them to be properly escaped (\' and \\). The best way is to process the string with .replace(/\\/g, "\\\\") before .replace(/'/g, "\\'").

Alternatively, we could use a well-tested library (e.g., js-string-escape) for robust escaping, but per instructions to minimize dependencies and only use well-known packages if necessary, and to edit only the shown code, we should perform the sequential replacements.

Edit only line 99 to sequentially escape backslashes then single quotes.

graphite-app · 2025-12-09T21:15:35Z

Graphite Automations

"Auto-assign PRs to Author" took an action on this PR • (12/09/25)

1 reviewer was added to this PR based on Mariano Fuentes's automation.

* feat: working version of integrations framework * feat: make integrations more robust * feat(google-workspace): add integration manifest and checks for Google Workspace * feat(integration-platform): add custom settings to OAuth app and platform credential models * feat(integration-platform): add Google Workspace sync functionality and update integration manifest * feat(integration-platform): add scheduled task for syncing employees from integrations * feat(integration-platform): add AWS SDK clients and update integration manifest * refactor(integration-platform): integrate AWS Security Hub and update cloud tests * feat(integration-platform): add Rippling integration for employee sync and update manifest * feat(integration-platform): implement employee sync provider management and update related APIs * feat(integration-platform): add employee access review check for Google Workspace * feat(gcp): add GCP integration with IAM access and monitoring checks * feat(gcp): add GCP integration with IAM access and monitoring checks * feat: working version of integrations framework * feat: make integrations more robust * feat(google-workspace): add integration manifest and checks for Google Workspace * feat(integration-platform): add custom settings to OAuth app and platform credential models * feat(integration-platform): add Google Workspace sync functionality and update integration manifest * feat(integration-platform): add scheduled task for syncing employees from integrations * feat(integration-platform): add AWS SDK clients and update integration manifest * refactor(integration-platform): integrate AWS Security Hub and update cloud tests * feat(integration-platform): add Rippling integration for employee sync and update manifest * feat(integration-platform): implement employee sync provider management and update related APIs * feat(integration-platform): add employee access review check for Google Workspace * chore: remove deprecated vector tasks and update openapi.json * feat(integration-platform): add Azure integration with credential management and checks * feat(integrations): unify integrations list and add task card component * feat(integration-platform): add auto-check runner service and related tasks * feat(integration-platform): implement GCP OAuth integration with credential management and checks * feat(integrations): add combobox support for credential fields and update AWS region type * refactor(db): fix integrations order * feat(integration-platform): add validation for API key and basic auth credentials in checks * refactor(api): add throttling and security headers with helmet integration * chore(cloud-security): add cloud security module with scanning capabilities * chore(dependencies): update next and react versions to 16.0.8 and 19.2.1 * refactor(proxy): add proxy function with request matcher configuration * chore(dependencies): update react and next versions to 19.1.1 and 16.0.8 * refactor(people): allow selectedProvider to be undefined and simplify date handling * chore(dependencies): update @ai-sdk/openai and ai package versions * refactor(onboarding): remove redundant mode parameter from generateObject calls * refactor(api): update content security policy for improved security * chore(api): build integration-platform package and update docker build process

* refactor(api): remove redundant mode parameter from content extractor

* chore(api): modify package.json to remove workspace dependencies

* feat: working version of integrations framework * feat: make integrations more robust * feat(google-workspace): add integration manifest and checks for Google Workspace * feat(integration-platform): add custom settings to OAuth app and platform credential models * feat(integration-platform): add Google Workspace sync functionality and update integration manifest * feat(integration-platform): add scheduled task for syncing employees from integrations * feat(integration-platform): add AWS SDK clients and update integration manifest * refactor(integration-platform): integrate AWS Security Hub and update cloud tests * feat(integration-platform): add Rippling integration for employee sync and update manifest * feat(integration-platform): implement employee sync provider management and update related APIs * feat(integration-platform): add employee access review check for Google Workspace * feat(gcp): add GCP integration with IAM access and monitoring checks * feat(gcp): add GCP integration with IAM access and monitoring checks * feat: working version of integrations framework * feat: make integrations more robust * feat(google-workspace): add integration manifest and checks for Google Workspace * feat(integration-platform): add custom settings to OAuth app and platform credential models * feat(integration-platform): add Google Workspace sync functionality and update integration manifest * feat(integration-platform): add scheduled task for syncing employees from integrations * feat(integration-platform): add AWS SDK clients and update integration manifest * refactor(integration-platform): integrate AWS Security Hub and update cloud tests * feat(integration-platform): add Rippling integration for employee sync and update manifest * feat(integration-platform): implement employee sync provider management and update related APIs * feat(integration-platform): add employee access review check for Google Workspace * chore: remove deprecated vector tasks and update openapi.json * feat(integration-platform): add Azure integration with credential management and checks * feat(integrations): unify integrations list and add task card component * feat(integration-platform): add auto-check runner service and related tasks * feat(integration-platform): implement GCP OAuth integration with credential management and checks * feat(integrations): add combobox support for credential fields and update AWS region type * refactor(db): fix integrations order * feat(integration-platform): add validation for API key and basic auth credentials in checks * refactor(api): add throttling and security headers with helmet integration * chore(cloud-security): add cloud security module with scanning capabilities * chore(dependencies): update next and react versions to 16.0.8 and 19.2.1 * refactor(proxy): add proxy function with request matcher configuration * chore(dependencies): update react and next versions to 19.1.1 and 16.0.8 * refactor(people): allow selectedProvider to be undefined and simplify date handling * chore(dependencies): update @ai-sdk/openai and ai package versions * refactor(onboarding): remove redundant mode parameter from generateObject calls * refactor(api): update content security policy for improved security * chore(api): build integration-platform package and update docker build process * refactor(api): remove redundant mode parameter from content extractor * chore(api): modify package.json to remove workspace dependencies --------- Co-authored-by: Mariano Fuentes <marfuen98@gmail.com>

* chore(api): add @aws-sdk/client-sts dependency and update related configurations

* refactor(api): update Dockerfile and buildspec to streamline node_modules handling

apps/api/buildspec.yml

* refactor(api): enhance variable handling in VariablesController

* refactor(api): improve handling of required variables in connections and auto-check services

* refactor(integration): add support for additional OAuth settings in integrations

…1905) Co-authored-by: Mariano Fuentes <marfuen98@gmail.com>

* feat(organization): add primary color field, update ui, set up trust portal settings * fix(questionnaire): adjust minimum width for answered questions display * fix(questionnaire): update minimum width class for questionnaire history * feat(questionnaire): add animations to results cards, header, and table in security questionnaire * chore(db): update version to 1.3.19 in package.json --------- Co-authored-by: Tofik Hasanov <annexcies@gmail.com> Co-authored-by: Mariano Fuentes <marfuen98@gmail.com>

…json (#1907)

…1908)

…e.json (#1909)

Co-authored-by: Tofik Hasanov <annexcies@gmail.com>

claudfuen · 2025-12-12T00:17:33Z

🎉 This PR is included in version 1.70.0 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀

github-actions bot added prod-deploy automated-pr labels Dec 9, 2025

graphite-app bot requested a review from Marfuen December 9, 2025 21:10

github-advanced-security bot found potential problems Dec 9, 2025

View reviewed changes

vercel bot deployed to staging – portal December 9, 2025 21:11 View deployment

vercel bot deployed to staging – app December 9, 2025 21:11 View deployment

vercel bot temporarily deployed to staging – portal December 9, 2025 21:26 Inactive

vercel bot temporarily deployed to staging – app December 9, 2025 21:26 Inactive

Mariano/integrations architecture (#1881)

fdf952e

* refactor(api): remove redundant mode parameter from content extractor

vercel bot temporarily deployed to staging – portal December 9, 2025 21:30 Inactive

vercel bot temporarily deployed to staging – app December 9, 2025 21:30 Inactive

Mariano/integrations architecture (#1882)

84f0305

* chore(api): modify package.json to remove workspace dependencies

vercel bot temporarily deployed to staging – portal December 9, 2025 21:35 Inactive

vercel bot temporarily deployed to staging – app December 9, 2025 21:35 Inactive

vercel bot temporarily deployed to staging – portal December 9, 2025 21:35 Inactive

Mariano/integrations architecture (#1884)

6086d45

* chore(api): add @aws-sdk/client-sts dependency and update related configurations

vercel bot deployed to staging – app December 9, 2025 21:45 View deployment

vercel bot deployed to staging – portal December 9, 2025 21:46 View deployment

Mariano/integrations architecture (#1885)

05a645f

* refactor(api): update Dockerfile and buildspec to streamline node_modules handling

vercel bot temporarily deployed to staging – portal December 9, 2025 21:54 Inactive

vercel bot temporarily deployed to staging – app December 9, 2025 21:54 Inactive

cursor bot reviewed Dec 9, 2025

View reviewed changes

apps/api/buildspec.yml Show resolved Hide resolved

Mariano/fix 11 (#1898)

00a835b

* refactor(api): enhance variable handling in VariablesController

vercel bot temporarily deployed to staging – portal December 10, 2025 17:49 Inactive

vercel bot deployed to staging – app December 10, 2025 17:51 View deployment

Mariano/fix 12 (#1899)

60a1e60

* refactor(api): improve handling of required variables in connections and auto-check services

vercel bot temporarily deployed to staging – portal December 10, 2025 18:07 Inactive

vercel bot deployed to staging – app December 10, 2025 18:09 View deployment

Mariano/fix 13 (#1900)

e84e4b0

* refactor(integration): add support for additional OAuth settings in integrations

vercel bot temporarily deployed to staging – portal December 10, 2025 19:06 Inactive

vercel bot deployed to staging – app December 10, 2025 19:08 View deployment

chore(dependencies): update next and react versions in package.json (#…

cbe83b5

…1905) Co-authored-by: Mariano Fuentes <marfuen98@gmail.com>

vercel bot deployed to staging – portal December 11, 2025 23:23 View deployment

vercel bot deployed to staging – app December 11, 2025 23:23 View deployment

mintlify bot deployed to staging - packages/docs December 11, 2025 23:46 View deployment

vercel bot deployed to staging – app December 11, 2025 23:47 View deployment

vercel bot deployed to staging – portal December 11, 2025 23:47 View deployment

chore(dependencies): update package versions in bun.lock and package.…

95b268b

…json (#1907)

vercel bot deployed to staging – portal December 11, 2025 23:53 View deployment

vercel bot deployed to staging – app December 11, 2025 23:53 View deployment

chore(api): add path mappings for integration platform in tsconfig (#…

8960ea6

…1908)

vercel bot temporarily deployed to staging – portal December 12, 2025 00:01 Inactive

vercel bot temporarily deployed to staging – app December 12, 2025 00:01 Inactive

Marfuen and others added 2 commits December 11, 2025 19:13

chore(dependencies): update @trycompai/db version to 1.3.19 in packag…

9d73855

…e.json (#1909)

feat(api): add access request notification email functionality (#1910)

8d2a811

Co-authored-by: Tofik Hasanov <annexcies@gmail.com>

vercel bot temporarily deployed to staging – portal December 12, 2025 00:15 Inactive

vercel bot temporarily deployed to staging – app December 12, 2025 00:15 Inactive

Marfuen merged commit 31628ca into release Dec 12, 2025
12 of 14 checks passed

claudfuen added the released label Dec 12, 2025

@@ -96,7 +96,7 @@
                   .substring(0, 100); // Truncate for readability
                 lines.push(`  '${task.id}': {`);
-                lines.push(`    name: '${task.name.replace(/'/g, "\\'")}',`);
+                lines.push(`    name: '${task.name.replace(/\\/g, '\\\\').replace(/'/g, "\\'")}',`);
                 lines.push(`    description: \`${escapedDesc}...\`,`);
                 lines.push(`    department: '${task.department}',`);
                 lines.push(`    frequency: '${task.frequency}',`);

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

[comp] Production Deploy #1879

[comp] Production Deploy #1879

Uh oh!

github-actions bot commented Dec 9, 2025

Uh oh!

vercel bot commented Dec 9, 2025 •

edited

Loading

Uh oh!

cursor bot commented Dec 9, 2025 •

edited

Loading

Uh oh!

CLAassistant commented Dec 9, 2025 •

edited

Loading

Uh oh!

Check failure

Copilot Autofix

graphite-app bot commented Dec 9, 2025

Uh oh!

Uh oh!

Uh oh!

claudfuen commented Dec 12, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

[comp] Production Deploy #1879

[comp] Production Deploy #1879

Uh oh!

Conversation

github-actions bot commented Dec 9, 2025

Uh oh!

vercel bot commented Dec 9, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

cursor bot commented Dec 9, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

PR Summary

Uh oh!

CLAassistant commented Dec 9, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Check failure

Copilot Autofix

graphite-app bot commented Dec 9, 2025

Graphite Automations

Uh oh!

Uh oh!

Uh oh!

claudfuen commented Dec 12, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

vercel bot commented Dec 9, 2025 •

edited

Loading

cursor bot commented Dec 9, 2025 •

edited

Loading

CLAassistant commented Dec 9, 2025 •

edited

Loading