docs: Update dependencies for Rust, Ubuntu, Compose, and others

[yacosta738]

This pull request introduces significant improvements to the documentation for the Corvus agent runtime, especially around supported AI providers, and updates several dependencies across the codebase for better compatibility and security. The most impactful changes are the addition of comprehensive documentation (in both English and Spanish) for AI provider configuration, updates to Rust, Node, and Docker dependencies, and minor code and config cleanups.

Documentation enhancements:

• Added detailed documentation for supported AI providers in both English (clients/web/apps/docs/src/content/docs/clients/agent-runtime/providers/index.mdx) and Spanish (clients/web/apps/docs/src/content/docs/es/clients/agent-runtime/providers/index.mdx), including provider IDs, required environment variables, and credential resolution order. [1] [2]
• Updated the documentation navigation and index files to include links to the new AI Providers documentation in both languages (astro.config.mjs, index.mdx). [1] [2] [3]
• Added a scribe journal entry summarizing the documentation work and verification steps. (.agents/journal/scribe-journal.md)

Dependency and toolchain updates:

• Upgraded Rust toolchain and dependencies: Rust Docker image to 1.94, surrealdb to 3.0, and tempfile to 3.27.0 in relevant Cargo.toml files. [1] [2] [3] [4]
• Updated Node package versions for Corvus optional dependencies to 0.5.0 (package.json).
• Bumped @astrojs/check to 0.9.7 in pnpm workspace and lock files. [1] [2] [3] [4] [5]
• Updated Compose Multiplatform and several Gradle plugin versions in gradle/libs.versions.toml. [1] [2] [3]
• Updated base image for the sandbox Dockerfile from Ubuntu 22.04 to 24.04.

Minor code/configuration cleanups:

• Simplified and clarified environment variable usage and port resolution logic in astro.config.mjs and marketing/astro.config.mjs. [1] [2] [3]
• Removed an unused redirect in the English docs Astro page. (clients/web/apps/docs/src/pages/en/[...slug].astroL1-L7)

These changes collectively improve the onboarding and configuration experience for users of the Corvus agent runtime, keep dependencies up to date, and ensure better maintainability and clarity in both code and documentation.

[coderabbitai]

Note

Reviews paused

It looks like this branch is under active development. To avoid overwhelming you with review comments due to an influx of new commits, CodeRabbit has automatically paused this review. You can configure this behavior by changing the reviews.auto_review.auto_pause_after_reviewed_commits setting.

Use the following commands to manage reviews:

• @coderabbitai resume to resume automatic reviews.
• @coderabbitai review to trigger a single review.

Use the checkboxes below for quick actions:

• ▶️ Resume reviews
• 🔍 Trigger review

📝 Walkthrough

Walkthrough

Adds AI Providers documentation (English & Spanish) and a scribe journal entry; updates multiple dependency versions (Rust, Node, Gradle), refactors some frontend configs, adjusts docs navigation and routing, and updates several Docker base images and tsconfig entries.

Changes

Cohort / File(s)	Summary
Agent Runtime AI Providers docs & journal clients/web/apps/docs/src/content/docs/clients/agent-runtime/providers/index.mdx, clients/web/apps/docs/src/content/docs/es/clients/agent-runtime/providers/index.mdx, .agents/journal/scribe-journal.md	Added comprehensive AI Providers docs (supported/regional providers, custom endpoints, credential resolution) and a scribe journal entry.
Docs navigation & site config clients/web/apps/docs/src/content/docs/clients/agent-runtime/index.mdx, clients/web/apps/docs/src/content/docs/es/clients/agent-runtime/index.mdx, clients/web/apps/docs/astro.config.mjs	Inserted "Agent Runtime" sidebar section and added localized labels/slugs.
Docs routing clients/web/apps/docs/src/pages/en/[...slug].astro	Removed runtime redirect logic that computed a base URL and redirected based on slug.
Rust manifests & crates clients/agent-runtime/Cargo.toml, clients/agent-runtime/crates/robot-kit/Cargo.toml	Bumped surrealdb to 3.0 and dev-dep tempfile to 3.27.0.
Rust Docker build clients/agent-runtime/Dockerfile	Updated builder image from rust:1.93-slim-trixie → rust:1.94-slim-trixie.
Dev sandbox image dev/sandbox/Dockerfile	Updated base image ubuntu:22.04 → ubuntu:24.04.
Node / frontend deps clients/agent-runtime/npm/corvus/package.json, clients/web/pnpm-workspace.yaml	Bumped Corvus optional binaries to 0.5.0 and @astrojs/check to 0.9.7.
Frontend config & build files clients/web/apps/chat/vite.config.ts, clients/web/apps/chat/vite.config.js, clients/web/apps/chat/tsconfig.node.json, clients/web/apps/dashboard/tsconfig.node.json, clients/web/apps/marketing/astro.config.mjs	Refactored Vite config to use a named config const, added ESNext.Disposable to tsconfig.node libs, minor formatting/port computation refactors.
Gradle version catalog gradle/libs.versions.toml	Bumped versions: compose-multiplatform → 1.10.2, com.autonomousapps.dependency-analysis → 3.6.1, org.openrewrite.rewrite → 7.28.0.
CI / tooling .github/workflows/sonarqube-analysis.yml	Expanded SonarQube coverage exclusions to include several new paths (chat/vite config, tsconfig.node, agent-runtime examples/firmware, locales index).

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

Possibly related PRs

• feat(web): configure Codecov and Vitest coverage #133 — Vite config changes overlap with this PR's clients/web/apps/chat/vite.config.* edits.
• feat(web): root docs locale and portless dev flow #192 — Related changes to docs site configuration and routing for docs pages.
• docs: scribe agent #79 — Overlapping or duplicate edits to .agents/journal/scribe-journal.md.

Suggested labels

risk:high

Suggested reviewers

• yuniel-acosta

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Title check	✅ Passed	The PR title follows Conventional Commit style with 'docs:' prefix and clearly describes the main changes (dependency updates) within the 72-character limit.
Description check	✅ Passed	The PR description comprehensively covers all template sections: detailed summary of documentation enhancements and dependency updates, but lacks explicit Tested Information and Breaking Changes sections.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch docs/clean-docs-site

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[github-actions]

✅ Contributor Report

User: @yacosta738
Status: Passed (12/13 metrics passed)

Metric	Description	Value	Threshold	Status
PR Merge Rate	PRs merged vs closed	89%	>= 30%	✅
Repo Quality	Repos with ≥100 stars	0	>= 0	✅
Positive Reactions	Positive reactions received	9	>= 1	✅
Negative Reactions	Negative reactions received	0	<= 5	✅
Account Age	GitHub account age	3056 days	>= 30 days	✅
Activity Consistency	Regular activity over time	108%	>= 0%	✅
Issue Engagement	Issues with community engagement	0	>= 0	✅
Code Reviews	Code reviews given to others	398	>= 0	✅
Merger Diversity	Unique maintainers who merged PRs	2	>= 0	✅
Repo History Merge Rate	Merge rate in this repo	91%	>= 0%	✅
Repo History Min PRs	Previous PRs in this repo	148	>= 0	✅
Profile Completeness	Profile richness (bio, followers)	90	>= 0	✅
Suspicious Patterns	Spam-like activity detection	1	N/A	❌

---

_{Contributor Report evaluates based on public GitHub activity. Analysis period: 2025-03-11 to 2026-03-11}

[sentry]

Codecov Report

✅ All modified and coverable lines are covered by tests.

📢 Thoughts on this report? Let us know!

[coderabbitai]

Actionable comments posted: 6

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

clients/agent-runtime/npm/corvus/package.json (1)

3-3: ⚠️ Potential issue | 🟠 Major

Version mismatch: main package is 0.4.0 but optionalDependencies are 0.5.0.

Line 3 declares "version": "0.4.0" while all native binaries are bumped to 0.5.0. This inconsistency may cause user confusion and could indicate a missing version bump for the wrapper package.

Proposed fix

-  "version": "0.4.0",
+  "version": "0.5.0",

Also applies to: 18-24

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@clients/agent-runtime/npm/corvus/package.json` at line 3, The package.json
"version" field currently reads "0.4.0" while the native binaries listed under
"optionalDependencies" have been bumped to "0.5.0"; update the top-level
"version" value to "0.5.0" to match the native binary versions (or if
intentional, revert the native entries in "optionalDependencies" back to
"0.4.0"), ensuring the "version" field and the native binary entries under
"optionalDependencies" (the entries around lines 18-24) are consistent.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In @.agents/journal/scribe-journal.md:
- Line 3: The journal entry header "## 2025-05-15 - AI Providers Documentation -
In Progress" has the wrong date; update that header string to the correct PR
date (replace 2025-05-15 with 2026-03-11) so it reads "## 2026-03-11 - AI
Providers Documentation - In Progress" to match the PR creation date.

In `@clients/agent-runtime/Cargo.toml`:
- Line 98: The SurrealDB 3.0 upgrade breaks how query results are handled:
replace current Response::take() usages (where code expects Option<(Stats,
Result<R>)> and deserializes into Vec<EntryRow> or Vec<CountRow>) with the 3.0
API that returns Result<R> directly — either call .with_stats().await? to obtain
stats plus result or call .take()? and handle the returned Result<R> directly;
update the query result types (e.g., EntryRow, CountRow) to implement the
SurrealValue trait instead of only deriving Deserialize so they can be
deserialized by the 3.0 client; and ensure runtime checks or deployment docs
require a SurrealDB 3.x server (the crate will reject 2.x servers). Locate and
modify the handlers in clients/agent-runtime/src/memory/surreal.rs where
Response::take() is used and where Vec<EntryRow>/Vec<CountRow> are deserialized,
replace with the 3.0 call patterns (.with_stats().await? or direct .take()?
handling Result<R>), add SurrealValue impls for the row structs, and add a
runtime or startup check/documentation to require SurrealDB 3.x.

In
`@clients/web/apps/docs/src/content/docs/clients/agent-runtime/providers/index.mdx`:
- Line 15: The docs claim GEMINI_API_KEY is used but the runtime never reads it;
add handling for Gemini/Google in get_env_vars_for_provider() so the provider
returns the GEMINI_API_KEY env var (and any CLI auth fallback) instead of
falling through to the generic resolve_provider_credential() only, i.e., add a
branch matching "gemini"/"google" in get_env_vars_for_provider() to return the
explicit env var name and credential resolution logic (and update any unit tests
or comments), or alternatively update the docs table row for Google Gemini to
remove/clarify GEMINI_API_KEY if you prefer not to implement the runtime change.

In
`@clients/web/apps/docs/src/content/docs/es/clients/agent-runtime/providers/index.mdx`:
- Around line 2-8: The page mixes English "provider/providers" into Spanish;
choose a single Spanish glossary term ("proveedor" / "proveedores") and replace
all occurrences in the ES documentation title and body (e.g., the "Providers de
IA" title and any inline uses of "provider" or "providers") and update the
mirrored ES navigation labels and config entries that reference the same term
(the agent-runtime ES index nav label and the ES entry in astro.config.mjs) so
they are consistent; after replacing, run a quick EN/ES parity check or add an
explicit "traducción pendiente" note if some terms deliberately remain in
English.

In `@gradle/libs.versions.toml`:
- Line 20: Remove the unused Compose Hot Reload entries from the version
catalog: delete the compose-hot-reload = "1.0.0" version entry and the
org-jetbrains-compose-hot-reload plugin alias, since Compose Multiplatform
(compose-multiplatform = "1.10.2") now includes Hot Reload; ensure no build
files reference compose-hot-reload or org-jetbrains-compose-hot-reload before
removing.
- Line 77: You bumped the com-autonomousapps-dependency-analysis plugin version;
run the plugin's checks across the repo to ensure no new failures: execute the
dependency-analysis tasks (e.g., projectHealth and buildHealth) for all Android
and Kotlin Multiplatform modules (the convention plugin under gradle/build-logic
applies it) on CI or locally and fix any reported issues so the plugin's onAny {
... } fail-on-issues behavior does not break CI; if problems appear, update or
suppress specific reports per the plugin docs and re-run until
projectHealth/buildHealth complete cleanly.

---

Outside diff comments:
In `@clients/agent-runtime/npm/corvus/package.json`:
- Line 3: The package.json "version" field currently reads "0.4.0" while the
native binaries listed under "optionalDependencies" have been bumped to "0.5.0";
update the top-level "version" value to "0.5.0" to match the native binary
versions (or if intentional, revert the native entries in "optionalDependencies"
back to "0.4.0"), ensuring the "version" field and the native binary entries
under "optionalDependencies" (the entries around lines 18-24) are consistent.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: ASSERTIVE

Plan: Pro

Run ID: 2d9cb5e5-651d-4d54-b260-52dae34fbd44

📥 Commits

Reviewing files that changed from the base of the PR and between f6beff6 and 0a30335.

⛔ Files ignored due to path filters (2)

• clients/agent-runtime/Cargo.lock is excluded by !**/*.lock
• clients/web/pnpm-lock.yaml is excluded by !**/pnpm-lock.yaml

📒 Files selected for processing (15)

• .agents/journal/scribe-journal.md
• clients/agent-runtime/Cargo.toml
• clients/agent-runtime/Dockerfile
• clients/agent-runtime/crates/robot-kit/Cargo.toml
• clients/agent-runtime/npm/corvus/package.json
• clients/web/apps/docs/astro.config.mjs
• clients/web/apps/docs/src/content/docs/clients/agent-runtime/index.mdx
• clients/web/apps/docs/src/content/docs/clients/agent-runtime/providers/index.mdx
• clients/web/apps/docs/src/content/docs/es/clients/agent-runtime/index.mdx
• clients/web/apps/docs/src/content/docs/es/clients/agent-runtime/providers/index.mdx
• clients/web/apps/docs/src/pages/en/[...slug].astro
• clients/web/apps/marketing/astro.config.mjs
• clients/web/pnpm-workspace.yaml
• dev/sandbox/Dockerfile
• gradle/libs.versions.toml

💤 Files with no reviewable changes (1)

• clients/web/apps/docs/src/pages/en/[...slug].astro

📜 Review details

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (7)

• GitHub Check: pr-checks-build-logic
• GitHub Check: pr-checks
• GitHub Check: core-checks
• GitHub Check: sonar
• GitHub Check: pr-checks-build-logic
• GitHub Check: pr-checks
• GitHub Check: Cloudflare Pages

🧰 Additional context used

📓 Path-based instructions (3)

**/*.{md,mdx}

⚙️ CodeRabbit configuration file

**/*.{md,mdx}: Verify technical accuracy and that docs stay aligned with code changes.
For user-facing docs, check EN/ES parity or explicitly note pending translation gaps.

Files:

• clients/web/apps/docs/src/content/docs/es/clients/agent-runtime/index.mdx
• clients/web/apps/docs/src/content/docs/clients/agent-runtime/index.mdx
• clients/web/apps/docs/src/content/docs/es/clients/agent-runtime/providers/index.mdx
• clients/web/apps/docs/src/content/docs/clients/agent-runtime/providers/index.mdx

**/*

⚙️ CodeRabbit configuration file

**/*: Security first, performance second.
Validate input boundaries, auth/authz implications, and secret management.
Look for behavioral regressions, missing tests, and contract breaks across modules.

Files:

• clients/web/apps/docs/src/content/docs/es/clients/agent-runtime/index.mdx
• clients/agent-runtime/npm/corvus/package.json
• clients/agent-runtime/crates/robot-kit/Cargo.toml
• clients/web/apps/docs/src/content/docs/clients/agent-runtime/index.mdx
• clients/agent-runtime/Cargo.toml
• clients/web/apps/docs/src/content/docs/es/clients/agent-runtime/providers/index.mdx
• clients/web/apps/docs/astro.config.mjs
• gradle/libs.versions.toml
• clients/web/apps/docs/src/content/docs/clients/agent-runtime/providers/index.mdx
• clients/web/apps/marketing/astro.config.mjs
• clients/agent-runtime/Dockerfile
• clients/web/pnpm-workspace.yaml
• dev/sandbox/Dockerfile

clients/agent-runtime/**/Cargo.toml

📄 CodeRabbit inference engine (clients/agent-runtime/AGENTS.md)

clients/agent-runtime/**/Cargo.toml: Preserve release-size profile assumptions in Cargo.toml and avoid adding heavy dependencies unless clearly justified
Do not add heavy dependencies for minor convenience; justify new crate additions

Files:

• clients/agent-runtime/crates/robot-kit/Cargo.toml
• clients/agent-runtime/Cargo.toml

🧠 Learnings (11)

📚 Learning: 2026-02-17T07:28:38.934Z

Learnt from: CR
Repo: dallay/corvus PR: 0
File: AGENTS.md:0-0
Timestamp: 2026-02-17T07:28:38.934Z
Learning: Applies to .agents/AGENTS.md : Document agent configurations and capabilities in AGENTS.md

Applied to files:

• clients/web/apps/docs/src/content/docs/es/clients/agent-runtime/index.mdx
• clients/web/apps/docs/src/content/docs/clients/agent-runtime/index.mdx
• clients/web/apps/docs/src/content/docs/es/clients/agent-runtime/providers/index.mdx
• clients/web/apps/docs/astro.config.mjs
• clients/web/apps/docs/src/content/docs/clients/agent-runtime/providers/index.mdx
• .agents/journal/scribe-journal.md

📚 Learning: 2026-02-17T07:28:38.934Z

Learnt from: CR
Repo: dallay/corvus PR: 0
File: AGENTS.md:0-0
Timestamp: 2026-02-17T07:28:38.934Z
Learning: Applies to .agents/AGENTS.md : Include version information and compatibility details for agents

Applied to files:

• clients/web/apps/docs/src/content/docs/es/clients/agent-runtime/index.mdx
• clients/web/apps/docs/src/content/docs/clients/agent-runtime/index.mdx
• clients/web/apps/docs/src/content/docs/clients/agent-runtime/providers/index.mdx

📚 Learning: 2026-02-17T07:28:38.934Z

Learnt from: CR
Repo: dallay/corvus PR: 0
File: AGENTS.md:0-0
Timestamp: 2026-02-17T07:28:38.934Z
Learning: Applies to .agents/AGENTS.md : Maintain comprehensive agent metadata including name, description, purpose, and capabilities

Applied to files:

• clients/web/apps/docs/src/content/docs/es/clients/agent-runtime/index.mdx
• clients/web/apps/docs/src/content/docs/clients/agent-runtime/providers/index.mdx
• .agents/journal/scribe-journal.md

📚 Learning: 2026-02-17T12:31:17.076Z

Learnt from: CR
Repo: dallay/corvus PR: 0
File: clients/agent-runtime/AGENTS.md:0-0
Timestamp: 2026-02-17T12:31:17.076Z
Learning: Applies to clients/agent-runtime/**/Cargo.toml : Do not add heavy dependencies for minor convenience; justify new crate additions

Applied to files:

• clients/agent-runtime/crates/robot-kit/Cargo.toml
• clients/agent-runtime/Cargo.toml
• clients/agent-runtime/Dockerfile

📚 Learning: 2026-02-17T12:31:17.076Z

Learnt from: CR
Repo: dallay/corvus PR: 0
File: clients/agent-runtime/AGENTS.md:0-0
Timestamp: 2026-02-17T12:31:17.076Z
Learning: Applies to clients/agent-runtime/**/Cargo.toml : Preserve release-size profile assumptions in `Cargo.toml` and avoid adding heavy dependencies unless clearly justified

Applied to files:

• clients/agent-runtime/crates/robot-kit/Cargo.toml
• clients/agent-runtime/Cargo.toml
• clients/agent-runtime/Dockerfile

📚 Learning: 2026-02-17T12:31:17.076Z

Learnt from: CR
Repo: dallay/corvus PR: 0
File: clients/agent-runtime/AGENTS.md:0-0
Timestamp: 2026-02-17T12:31:17.076Z
Learning: Applies to clients/agent-runtime/**/*.rs : Run `cargo fmt --all -- --check`, `cargo clippy --all-targets -- -D warnings`, and `cargo test` for code validation, or document which checks were skipped and why

Applied to files:

• clients/agent-runtime/crates/robot-kit/Cargo.toml
• clients/agent-runtime/Cargo.toml
• clients/agent-runtime/Dockerfile

📚 Learning: 2026-02-17T12:31:17.076Z

Learnt from: CR
Repo: dallay/corvus PR: 0
File: clients/agent-runtime/AGENTS.md:0-0
Timestamp: 2026-02-17T12:31:17.076Z
Learning: Applies to clients/agent-runtime/src/providers/**/*.rs : Implement `Provider` trait in `src/providers/` and register in `src/providers/mod.rs` factory when adding a new provider

Applied to files:

• clients/web/apps/docs/src/content/docs/es/clients/agent-runtime/providers/index.mdx
• clients/web/apps/docs/src/content/docs/clients/agent-runtime/providers/index.mdx
• .agents/journal/scribe-journal.md

📚 Learning: 2026-02-17T12:31:17.076Z

Learnt from: CR
Repo: dallay/corvus PR: 0
File: clients/agent-runtime/AGENTS.md:0-0
Timestamp: 2026-02-17T12:31:17.076Z
Learning: Applies to clients/agent-runtime/src/main.rs : Preserve CLI contract unless change is intentional and documented; prefer explicit errors over silent fallback for unsupported critical paths

Applied to files:

• clients/agent-runtime/Dockerfile

📚 Learning: 2026-02-17T12:31:17.076Z

Learnt from: CR
Repo: dallay/corvus PR: 0
File: clients/agent-runtime/AGENTS.md:0-0
Timestamp: 2026-02-17T12:31:17.076Z
Learning: Applies to clients/agent-runtime/src/**/*.rs : Avoid unnecessary allocations, clones, and blocking operations to maintain performance and efficiency

Applied to files:

• clients/agent-runtime/Dockerfile

📚 Learning: 2026-02-17T12:31:17.076Z

Learnt from: CR
Repo: dallay/corvus PR: 0
File: clients/agent-runtime/AGENTS.md:0-0
Timestamp: 2026-02-17T12:31:17.076Z
Learning: Applies to clients/agent-runtime/src/{security,gateway,tools,config}/**/*.rs : Do not silently weaken security policy or access constraints; keep default behavior secure-by-default with deny-by-default where applicable

Applied to files:

• clients/agent-runtime/Dockerfile

📚 Learning: 2026-02-21T09:07:52.298Z

Learnt from: yacosta738
Repo: dallay/corvus PR: 62
File: .agents/journal/sentinnel-journal.md:1-1
Timestamp: 2026-02-21T09:07:52.298Z
Learning: Branding guideline: The intentional brand name for the security-first agent in the dallay/corvus repository is 'Sentinnel' (with double n). Do not treat it as a typo of 'Sentinel'. Ensure all agent-related docs and journals under .agents/journal consistently use 'Sentinnel' with double n.

Applied to files:

• .agents/journal/scribe-journal.md

🪛 Checkov (3.2.334)

dev/sandbox/Dockerfile

[low] 1-39: Ensure that HEALTHCHECK instructions have been added to container images

(CKV_DOCKER_2)

🪛 LanguageTool

clients/web/apps/docs/src/content/docs/es/clients/agent-runtime/index.mdx

[grammar] ~12-~12: Cambia la palabra o signo.
Context: ...ders de IA soportados y su configuración - PR Workflow - Proceso d...

(QB_NEW_ES_OTHER_ERROR_IDS_REPLACEMENT_OTHER)

clients/web/apps/docs/src/content/docs/es/clients/agent-runtime/providers/index.mdx

[grammar] ~6-~6: Corrige el error ortográfico.
Context: ...nube como locales. Puedes configurar tu provider preferido durante el proceso inicial de...

(QB_NEW_ES_OTHER_ERROR_IDS_REPLACEMENT_ORTHOGRAPHY_SPELLING)

---

[grammar] ~6-~6: Aquí puede haber un error.
Context: ...ión o editando tu archivo config.toml. ## Providers Soportados | Provider | ID (para confi...

(QB_NEW_ES)

---

[grammar] ~8-~8: Aquí puede haber un error.
Context: ...tu archivo config.toml. ## Providers Soportados | Provider | ID (para config) | Variable...

(QB_NEW_ES)

---

[grammar] ~12-~12: Aquí puede haber un error.
Context: ...omendado. Acceso a más de 200 modelos. | | Anthropic | anthropic | `ANTHROPI...

(QB_NEW_ES)

---

[grammar] ~13-~13: Aquí puede haber un error.
Context: ...EY| Acceso directo a modelos Claude. | | **OpenAI** |openai|OPENAI_API_KEY...

(QB_NEW_ES)

---

[grammar] ~14-~14: Aquí puede haber un error.
Context: ...I_KEY| Acceso directo a modelos GPT. | | **Google Gemini** |gemini|GEMINI_...

(QB_NEW_ES)

---

[grammar] ~15-~15: Aquí puede haber un error.
Context: ...oporta autenticación CLI con gcloud. | | Ollama | ollama | `OLLAMA_API_KEY...

(QB_NEW_ES)

---

[grammar] ~16-~16: Aquí puede haber un error.
Context: ...PI_KEY| Modelos locales por defecto. | | **Venice AI** |venice|VENICE_API_...

(QB_NEW_ES)

---

[grammar] ~17-~17: Corrige el error ortográfico.
Context: ...ce AI** | venice | VENICE_API_KEY | Provider enfocado en la privacidad. | | Groq...

(QB_NEW_ES_OTHER_ERROR_IDS_REPLACEMENT_ORTHOGRAPHY_SPELLING)

---

[grammar] ~17-~17: Aquí puede haber un error.
Context: ... | Provider enfocado en la privacidad. | | Groq | groq | GROQ_API_KEY | In...

(QB_NEW_ES)

---

[grammar] ~18-~18: Aquí puede haber un error.
Context: ...I_KEY| Inferencia de alta velocidad. | | **Mistral** |mistral|MISTRAL_API_...

(QB_NEW_ES)

---

[grammar] ~19-~19: Aquí puede haber un error.
Context: ...Y| Acceso directo a modelos Mistral. | | **DeepSeek** |deepseek|DEEPSEEK_A...

(QB_NEW_ES)

---

[grammar] ~20-~20: Aquí puede haber un error.
Context: ... de alta calidad a precios asequibles. | | xAI (Grok) | xai | XAI_API_KEY ...

(QB_NEW_ES)

---

[grammar] ~21-~21: Aquí puede haber un error.
Context: ..._KEY| Acceso directo a modelos Grok. | | **Together AI** |together|TOGETHE...

(QB_NEW_ES)

---

[grammar] ~22-~22: Aquí puede haber un error.
Context: ... | Alojamiento de modelos open-source. | | Fireworks AI | fireworks | `FIREW...

(QB_NEW_ES)

---

[grammar] ~23-~23: Aquí puede haber un error.
Context: ...erencia rápida de modelos open-source. | | Perplexity | perplexity | `PERPLE...

(QB_NEW_ES)

---

[grammar] ~24-~24: Aquí puede haber un error.
Context: ..._API_KEY| IA aumentada con búsqueda. | | **Cohere** |cohere|COHERE_API_KEY...

(QB_NEW_ES)

---

[grammar] ~25-~25: Aquí puede haber un error.
Context: ...I_KEY| Modelos de grado empresarial. | | **GitHub Copilot** |copilot|GITHU...

(QB_NEW_ES)

---

[grammar] ~26-~26: Aquí puede haber un error.
Context: ...TOKEN| Usa tu suscripción de GitHub. | | **NVIDIA NIM** |nvidia|NVIDIA_API...

(QB_NEW_ES)

---

[grammar] ~27-~27: Aquí puede haber un error.
Context: ...KEY| Inferencia de alto rendimiento. | | **Vercel AI** |vercel|VERCEL_API_...

(QB_NEW_ES)

---

[grammar] ~28-~28: Aquí puede haber un error.
Context: ...l|VERCEL_API_KEY| Gateway de IA. | | **Cloudflare AI** |cloudflare|CLO...

(QB_NEW_ES)

---

[grammar] ~29-~29: Aquí puede haber un error.
Context: ... CLOUDFLARE_API_KEY | Gateway de IA. | | Astrai | astrai | `ASTRAI_API_KEY...

(QB_NEW_ES)

---

[grammar] ~32-~32: Oración con errores
Context: ...Y` | Enrutamiento de IA conforme. | ## Providers Regionales y Especializados Corvus tam...

(QB_NEW_ES_OTHER_ERROR_IDS_REPLACEMENT_MULTITOKEN)

---

[grammar] ~32-~32: Oración con errores
Context: ...amiento de IA conforme. | ## Providers Regionales y Especializados Corvus también soport...

(QB_NEW_ES_OTHER_ERROR_IDS_REPLACEMENT_MULTITOKEN)

---

[grammar] ~32-~32: Corrige la mayúscula.
Context: ... conforme. | ## Providers Regionales y Especializados Corvus también soporta varios providers ...

(QB_NEW_ES_OTHER_ERROR_IDS_REPLACEMENT_ORTHOGRAPHY_UPPERCASE)

---

[grammar] ~36-~36: Cambia la palabra o signo.
Context: ...t, moonshot-intl (MOONSHOT_API_KEY) - **GLM (Zhipu)**: glm, glm-cn (GLM_API...

(QB_NEW_ES_OTHER_ERROR_IDS_REPLACEMENT_SPACE)

---

[grammar] ~37-~37: Cambia la palabra o signo.
Context: ...hipu)**: glm, glm-cn (GLM_API_KEY) - MiniMax: minimax, minimax-cn (`MIN...

(QB_NEW_ES_OTHER_ERROR_IDS_REPLACEMENT_SPACE)

---

[grammar] ~38-~38: Cambia la palabra o signo.
Context: ...nimax, minimax-cn (MINIMAX_API_KEY) - **Qwen (DashScope)**: qwen, qwen-intl`,...

(QB_NEW_ES_OTHER_ERROR_IDS_REPLACEMENT_SPACE)

---

[grammar] ~39-~39: Cambia la palabra o signo.
Context: ...n-intl, qwen-us (DASHSCOPE_API_KEY) - **Qianfan (Baidu)**: qianfan (QIANFAN_API_KEY) - **Z.AI**: zai, zai-cn (ZAI_API_KEY`) ## Endpoints Personalizados Si tienes una ...

(QB_NEW_ES_OTHER_ERROR_IDS_REPLACEMENT_OTHER)

---

[grammar] ~43-~43: Corrige la mayúscula.
Context: ... zai-cn (ZAI_API_KEY) ## Endpoints Personalizados Si tienes una API alojada por ti mismo o...

(QB_NEW_ES_OTHER_ERROR_IDS_REPLACEMENT_ORTHOGRAPHY_UPPERCASE)

---

[grammar] ~55-~55: Corrige la mayúscula.
Context: ...pi-key "tu-clave" ``` ## Resolución de Credenciales Corvus resuelve las credenciales en el s...

(QB_NEW_ES_OTHER_ERROR_IDS_REPLACEMENT_ORTHOGRAPHY_UPPERCASE)

🔇 Additional comments (2)

.agents/journal/scribe-journal.md (1)

1-16: LGTM on the documentation content.

The journal entry properly documents supported providers and their credential environment variables. No secrets are exposed—only env var names are listed, which is appropriate.

gradle/libs.versions.toml (1)

86-86: Catalog bump is safe and exercised in the build.

org.openrewrite.rewrite 7.28.0 is applied at gradle/build-logic/build.gradle.kts line 67, so the version change is covered by CI. No compatibility issues detected with this plugin version.

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

Incorrect date in journal entry.

The date 2025-05-15 predates the PR (created 2026-03-11). Should this be 2026-03-11?

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In @.agents/journal/scribe-journal.md at line 3, The journal entry header "##
2025-05-15 - AI Providers Documentation - In Progress" has the wrong date;
update that header string to the correct PR date (replace 2025-05-15 with
2026-03-11) so it reads "## 2026-03-11 - AI Providers Documentation - In
Progress" to match the PR creation date.

[coderabbitai]

⚠️ Potential issue | 🔴 Critical

🧩 Analysis chain

🌐 Web query:

For the Rust surrealdbcrate 3.0.0, what breaking changes or migration notes affectSurreal::new::(...), authenticate(...), use_ns(...).use_db(...), Response::take(...), and multi-statement .query(...).await handling compared with 2.3.x?

💡 Result:

Surreal::new::<Ws>(...)

• Now enforces server compatibility with SurrealDB 3.x via an internal supported-version range (>=3.0.0-alpha.1, <4.0.0). So code that previously used the surrealdb 2.3.x crate against a 2.x server can fail after upgrading the crate to 3.0.0 if the server isn’t 3.x. (docs.rs)
• .new::<Ws>(...) still returns a connect future, but that future now exposes connection capacity tuning (.with_capacity(...)) before .await. (docs.rs)

authenticate(...)

• In 2.3.x, authenticate(...) is a future that resolves to Result<()> (it just “sets auth on the session”). (docs.rs)
• In 3.0.0, authenticate(...) resolves to Result<Token> and also supports token refresh via .refresh().await. This is a breaking change both in return type and token model. (docs.rs)

use_ns(...).use_db(...)

• The call pattern db.use_ns("ns").use_db("db").await? remains the expected way to select NS/DB (i.e., still chainable in that order). (No specific 3.0.0-breaking signature change surfaced for these compared to 2.3.x in the checked sources.)

Response::take(...) (and response type)

• In 2.3.x, the query response type is Response, and Response::take(...) returns Option<(Stats, Result<R>)> (i.e., missing index returns None, and you get stats + a per-statement result). (docs.rs)
• In 3.0.0, the response type for Surreal::query is IndexedResults (not Response), and take(...) returns Result<R> directly (missing index is an error, not None). (docs.rs)
• Deserialization model change: in 2.3.x take is R: DeserializeOwned; in 3.0.0 it’s R: SurrealValue (from the new shared type system). (docs.rs)
• If you still want the old “optional + stats” shape, 3.0.0 provides it via query(...).with_stats().await? and then WithStats<IndexedResults>::take(...) -> Option<(Stats, Result<R>)>. (docs.rs)

Multi-statement .query(...).await handling

• In 2.3.x, you can build a multi-statement request by chaining multiple .query(...) calls before .await (there is Query::query(self, ...) -> Self). (docs.rs)
• In 3.0.0, that builder-side .query(...) chaining method is gone from the Query type (you typically send multi-statement SurrealQL as a single string with ; separators, then index into IndexedResults). (docs.rs)

Citations:

• 1: https://docs.rs/crate/surrealdb/3.0.0/source/src/lib.rs
• 2: https://docs.rs/crate/surrealdb/3.0.0/source/src/lib.rs
• 3: https://docs.rs/crate/surrealdb/2.3.9/source/src/api/method/authenticate.rs
• 4: https://docs.rs/crate/surrealdb/3.0.0/source/src/method/authenticate.rs
• 5: https://docs.rs/crate/surrealdb/2.3.9/source/src/api/method/query.rs
• 6: https://docs.rs/crate/surrealdb/3.0.0/source/src/method/query.rs
• 7: https://docs.rs/crate/surrealdb/3.0.0/source/src/method/query.rs
• 8: https://docs.rs/crate/surrealdb/3.0.0/source/src/method/query.rs
• 9: https://docs.rs/crate/surrealdb/2.3.9/source/src/api/method/query.rs
• 10: https://docs.rs/crate/surrealdb/3.0.0/source/src/method/query.rs

---

🏁 Script executed:

find clients/agent-runtime/src -name "surreal.rs" -type f -exec wc -l {} \;

Repository: dallay/corvus

Length of output: 104

---

🏁 Script executed:

cat -n clients/agent-runtime/src/memory/surreal.rs | head -100

Repository: dallay/corvus

Length of output: 3685

---

🏁 Script executed:

cat -n clients/agent-runtime/src/memory/surreal.rs | sed -n '100,150p'

Repository: dallay/corvus

Length of output: 2636

---

🏁 Script executed:

cat -n clients/agent-runtime/src/memory/surreal.rs | sed -n '200,250p'

Repository: dallay/corvus

Length of output: 2115

---

🏁 Script executed:

cat -n clients/agent-runtime/src/memory/surreal.rs | sed -n '520,590p'

Repository: dallay/corvus

Length of output: 3411

---

🏁 Script executed:

grep -n "\.take(" clients/agent-runtime/src/memory/surreal.rs

Repository: dallay/corvus

Length of output: 131

---

🏁 Script executed:

grep -n "\.with_stats()" clients/agent-runtime/src/memory/surreal.rs

Repository: dallay/corvus

Length of output: 39

---

🏁 Script executed:

grep -n "Response::" clients/agent-runtime/src/memory/surreal.rs

Repository: dallay/corvus

Length of output: 39

---

🏁 Script executed:

find clients/agent-runtime/src -name "*.rs" -type f -exec grep -l "surreal\|SurrealMemory" {} \;

Repository: dallay/corvus

Length of output: 515

---

🏁 Script executed:

cat -n clients/agent-runtime/src/memory/surreal.rs | sed -n '255,290p'

Repository: dallay/corvus

Length of output: 1466

---

🏁 Script executed:

cat -n clients/agent-runtime/src/memory/surreal.rs | sed -n '155,175p'

Repository: dallay/corvus

Length of output: 1047

---

🏁 Script executed:

grep -A 2 "surrealdb = " clients/agent-runtime/Cargo.toml | head -5

Repository: dallay/corvus

Length of output: 281

---

🏁 Script executed:

cat -n clients/agent-runtime/Cargo.toml | sed -n '95,105p'

Repository: dallay/corvus

Length of output: 558

---

🏁 Script executed:

cat -n clients/agent-runtime/src/memory/surreal.rs | sed -n '33,57p'

Repository: dallay/corvus

Length of output: 792

---

Fix SurrealDB 3.0 API incompatibilities before shipping this upgrade.

The upgrade to surrealdb 3.0 introduces breaking changes that break the code as written:

• Response::take() incompatibility (lines 234, 262, 279): In 3.0.0, take() returns Result<R> directly, not Option<(Stats, Result<R>)>. Calls attempting to deserialize into Vec<EntryRow> or Vec<CountRow> will fail.
• Deserialization trait mismatch: Data structures derive Deserialize but 3.0.0 requires SurrealValue implementation for query result types.
• Server version enforcement: The 3.0.0 crate enforces server compatibility with 3.x only; it will fail against 2.x deployments.

Update clients/agent-runtime/src/memory/surreal.rs to adapt query handling to 3.0.0 APIs (e.g., .with_stats().await? if stats are needed, or drop to bare .take() for direct Result<R>), ensure result types implement SurrealValue, and verify deployment uses SurrealDB 3.x server.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@clients/agent-runtime/Cargo.toml` at line 98, The SurrealDB 3.0 upgrade
breaks how query results are handled: replace current Response::take() usages
(where code expects Option<(Stats, Result<R>)> and deserializes into
Vec<EntryRow> or Vec<CountRow>) with the 3.0 API that returns Result<R> directly
— either call .with_stats().await? to obtain stats plus result or call .take()?
and handle the returned Result<R> directly; update the query result types (e.g.,
EntryRow, CountRow) to implement the SurrealValue trait instead of only deriving
Deserialize so they can be deserialized by the 3.0 client; and ensure runtime
checks or deployment docs require a SurrealDB 3.x server (the crate will reject
2.x servers). Locate and modify the handlers in
clients/agent-runtime/src/memory/surreal.rs where Response::take() is used and
where Vec<EntryRow>/Vec<CountRow> are deserialized, replace with the 3.0 call
patterns (.with_stats().await? or direct .take()? handling Result<R>), add
SurrealValue impls for the row structs, and add a runtime or startup
check/documentation to require SurrealDB 3.x.

[coderabbitai]

⚠️ Potential issue | 🟠 Major

GEMINI_API_KEY is not wired into the runtime.

Users following this row with GEMINI_API_KEY will not authenticate today. clients/agent-runtime/src/providers/mod.rs:315-343 has no gemini/google branch in get_env_vars_for_provider(), so Gemini never reads that variable and only reaches the generic fallback vars from resolve_provider_credential(). Either add Gemini env-var support in the resolver or update this row — and the mirrored ES row — to document the current behavior.

As per coding guidelines, "Verify technical accuracy and that docs stay aligned with code changes."

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@clients/web/apps/docs/src/content/docs/clients/agent-runtime/providers/index.mdx`
at line 15, The docs claim GEMINI_API_KEY is used but the runtime never reads
it; add handling for Gemini/Google in get_env_vars_for_provider() so the
provider returns the GEMINI_API_KEY env var (and any CLI auth fallback) instead
of falling through to the generic resolve_provider_credential() only, i.e., add
a branch matching "gemini"/"google" in get_env_vars_for_provider() to return the
explicit env var name and credential resolution logic (and update any unit tests
or comments), or alternatively update the docs table row for Google Gemini to
remove/clarify GEMINI_API_KEY if you prefer not to implement the runtime change.

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

Pick a single glossary term for ES and use it consistently.

Right now this page mixes English provider/providers into otherwise Spanish copy, which makes the locale look partially untranslated. If the English term is intentional, call it out once; otherwise switch to proveedor/proveedores here and in the mirrored ES nav labels in clients/web/apps/docs/src/content/docs/es/clients/agent-runtime/index.mdx and clients/web/apps/docs/astro.config.mjs.

Suggested wording

-title: Providers de IA
-description: Providers de IA soportados y su configuración.
+title: Proveedores de IA
+description: Proveedores de IA soportados y su configuración.

-Corvus soporta una amplia gama de providers de IA, incluyendo tanto opciones basadas en la nube como locales. Puedes configurar tu provider preferido durante el proceso inicial de configuración o editando tu archivo `config.toml`.
+Corvus soporta una amplia gama de proveedores de IA, incluyendo tanto opciones basadas en la nube como locales. Puedes configurar tu proveedor preferido durante el proceso inicial de configuración o editando tu archivo `config.toml`.

-## Providers Soportados
+## Proveedores soportados

As per coding guidelines, "For user-facing docs, check EN/ES parity or explicitly note pending translation gaps."

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	title: Providers de IA
	description: Providers de IA soportados y su configuración.
	---
	Corvus soporta una amplia gama de providers de IA, incluyendo tanto opciones basadas en la nube como locales. Puedes configurar tu provider preferido durante el proceso inicial de configuración o editando tu archivo `config.toml`.
	## Providers Soportados
	title: Proveedores de IA
	description: Proveedores de IA soportados y su configuración.
	---
	Corvus soporta una amplia gama de proveedores de IA, incluyendo tanto opciones basadas en la nube como locales. Puedes configurar tu proveedor preferido durante el proceso inicial de configuración o editando tu archivo `config.toml`.
	## Proveedores soportados

🧰 Tools

🪛 LanguageTool

[grammar] ~6-~6: Corrige el error ortográfico.
Context: ...nube como locales. Puedes configurar tu provider preferido durante el proceso inicial de...

(QB_NEW_ES_OTHER_ERROR_IDS_REPLACEMENT_ORTHOGRAPHY_SPELLING)

---

[grammar] ~6-~6: Aquí puede haber un error.
Context: ...ión o editando tu archivo config.toml. ## Providers Soportados | Provider | ID (para confi...

(QB_NEW_ES)

---

[grammar] ~8-~8: Aquí puede haber un error.
Context: ...tu archivo config.toml. ## Providers Soportados | Provider | ID (para config) | Variable...

(QB_NEW_ES)

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@clients/web/apps/docs/src/content/docs/es/clients/agent-runtime/providers/index.mdx`
around lines 2 - 8, The page mixes English "provider/providers" into Spanish;
choose a single Spanish glossary term ("proveedor" / "proveedores") and replace
all occurrences in the ES documentation title and body (e.g., the "Providers de
IA" title and any inline uses of "provider" or "providers") and update the
mirrored ES navigation labels and config entries that reference the same term
(the agent-runtime ES index nav label and the ES entry in astro.config.mjs) so
they are consistent; after replacing, run a quick EN/ES parity check or add an
explicit "traducción pendiente" note if some terms deliberately remain in
English.

[coderabbitai]

🧹 Nitpick | 🔵 Trivial

🧩 Analysis chain

🏁 Script executed:

#!/bin/bash
# Verify whether the standalone Compose Hot Reload plugin is still referenced anywhere.
fd 'build\.gradle(\.kts)?$|libs\.versions\.toml$' -x sh -c '
  if rg -n -C2 "org\.jetbrains\.compose\.hot-reload|compose-hot-reload" "$1" >/dev/null; then
    echo "### $1"
    rg -n -C2 "org\.jetbrains\.compose\.hot-reload|compose-hot-reload" "$1"
    echo
  fi
' sh {}

Repository: dallay/corvus

Length of output: 736

---

🏁 Script executed:

#!/bin/bash
# Check if compose-hot-reload or org.jetbrains.compose.hot-reload is applied in build files
echo "=== Searching for plugin applications ==="
fd 'build\.gradle(\.kts)?$' -x sh -c '
  echo "### File: $1"
  # Search for plugin declarations/applications
  rg -n "plugins\s*\{|apply\s+plugin|org\.jetbrains\.compose\.hot-reload|compose-hot-reload" "$1" || echo "  (no matches)"
' sh {}

echo ""
echo "=== Checking if any build file references the plugin alias ==="
fd 'build\.gradle(\.kts)?$' -x rg -l 'org-jetbrains-compose-hot-reload'

Repository: dallay/corvus

Length of output: 655

---

Remove unused Compose Hot Reload entries.

The compose-hot-reload = "1.0.0" version and org-jetbrains-compose-hot-reload plugin alias are defined in the catalog but not applied in any build files. With Compose Multiplatform 1.10.2 now bundling Compose Hot Reload, these unused entries should be removed to keep the version catalog clean.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@gradle/libs.versions.toml` at line 20, Remove the unused Compose Hot Reload
entries from the version catalog: delete the compose-hot-reload = "1.0.0"
version entry and the org-jetbrains-compose-hot-reload plugin alias, since
Compose Multiplatform (compose-multiplatform = "1.10.2") now includes Hot
Reload; ensure no build files reference compose-hot-reload or
org-jetbrains-compose-hot-reload before removing.

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

🧩 Analysis chain

🏁 Script executed:

#!/bin/bash
# Scope where dependency-analysis is used alongside Android/KMP plugins and related tasks.
fd 'build\.gradle(\.kts)?$|settings\.gradle(\.kts)?$' -x sh -c '
  if rg -n -C2 "com\.autonomousapps\.dependency-analysis|com\.android\.(application|library|kotlin\.multiplatform\.library)|org\.jetbrains\.kotlin\.(android|multiplatform)|projectHealth|buildHealth" "$1" >/dev/null; then
    echo "### $1"
    rg -n -C2 "com\.autonomousapps\.dependency-analysis|com\.android\.(application|library|kotlin\.multiplatform\.library)|org\.jetbrains\.kotlin\.(android|multiplatform)|projectHealth|buildHealth" "$1"
    echo
  fi
' sh {}

Repository: dallay/corvus

Length of output: 872

---

🏁 Script executed:

# Check root-level build files and convention plugins for dependency-analysis
cat gradle/libs.versions.toml | grep -A2 -B2 "dependency-analysis"

Repository: dallay/corvus

Length of output: 531

---

🏁 Script executed:

# Search entire repo for any application of dependency-analysis plugin
rg "com\.autonomousapps\.dependency-analysis|dependency.analysis" --type gradle --type kotlin

Repository: dallay/corvus

Length of output: 1562

---

🏁 Script executed:

# Check if there's a root build.gradle.kts that applies it globally
find . -maxdepth 2 -name "build.gradle.kts" -o -name "settings.gradle.kts" | head -5 | xargs cat 2>/dev/null | head -100

Repository: dallay/corvus

Length of output: 659

---

Run dependency analysis checks on CI after this bump to catch any behavioral regressions.

The com.autonomousapps.dependency-analysis plugin is applied repo-wide via convention plugins in gradle/build-logic/, affecting Android and Kotlin Multiplatform modules. The plugin is configured to fail the build on detected issues (onAny { ... }). Since your Gradle version (9.5.0-milestone-1) and AGP (8.12.0) exceed the plugin's stated baselines, the bump should be compatible, but given the fail-on-issues configuration, verify that projectHealth and buildHealth tasks complete cleanly across all Android/KMP modules before merging.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@gradle/libs.versions.toml` at line 77, You bumped the
com-autonomousapps-dependency-analysis plugin version; run the plugin's checks
across the repo to ensure no new failures: execute the dependency-analysis tasks
(e.g., projectHealth and buildHealth) for all Android and Kotlin Multiplatform
modules (the convention plugin under gradle/build-logic applies it) on CI or
locally and fix any reported issues so the plugin's onAny { ... } fail-on-issues
behavior does not break CI; if problems appear, update or suppress specific
reports per the plugin docs and re-run until projectHealth/buildHealth complete
cleanly.

[cloudflare-workers-and-pages]

Deploying corvus with    Cloudflare Pages

Latest commit:	23ead10
Status:	✅  Deploy successful!
Preview URL:	https://418a6866.corvus-42x.pages.dev
Branch Preview URL:	https://docs-clean-docs-site.corvus-42x.pages.dev

View logs

[coderabbitai]

Actionable comments posted: 2

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

clients/web/apps/chat/vite.config.ts (1)

6-30: 🧹 Nitpick | 🔵 Trivial

Extracting the config to a const is fine, but note the .js file is stale.

The structural refactor (extracting to const config then exporting via defineConfig(config)) is a reasonable pattern. However, the context shows vite.config.js still contains the old import—if this compiled artifact is committed, it should be regenerated or removed to avoid confusion.

Also applies to: 32-32

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@clients/web/apps/chat/vite.config.ts` around lines 6 - 30, The repo contains
a new Vite config exported via the const config and defineConfig(config) pattern
in vite.config.ts but the compiled vite.config.js artifact is stale and still
has the old import; remove or regenerate the stale vite.config.js so it matches
the TS source (either delete the committed compiled file or re-run the TS build
to produce an up-to-date vite.config.js), ensuring the exported symbols (const
config and defineConfig(config)) are reflected and no conflicting old imports
remain.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@clients/web/apps/chat/vite.config.ts`:
- Line 4: The import currently uses defineConfig from "vite" which loses Vitest
type augmentation for the test block; change the import source to
"vitest/config" so defineConfig comes from vitest/config and restores type-safe
validation for the test property referenced in the vite.config.ts test block
(lines ~13-19).

In `@clients/web/apps/dashboard/tsconfig.node.json`:
- Line 8: The tsconfig node override currently replaces the Node 22 baseline by
setting "lib": ["ESNext", "ESNext.Disposable"]; remove this "lib" entry or
change it to preserve es2023 (e.g., use ["es2023","ESNext.Disposable"]) so the
project keeps the Node 22 runtime contract; update the tsconfig.node.json "lib"
key accordingly (or delete it to match clients/web/apps/chat/tsconfig.node.json)
to ensure only supported runtime APIs are exposed.

---

Outside diff comments:
In `@clients/web/apps/chat/vite.config.ts`:
- Around line 6-30: The repo contains a new Vite config exported via the const
config and defineConfig(config) pattern in vite.config.ts but the compiled
vite.config.js artifact is stale and still has the old import; remove or
regenerate the stale vite.config.js so it matches the TS source (either delete
the committed compiled file or re-run the TS build to produce an up-to-date
vite.config.js), ensuring the exported symbols (const config and
defineConfig(config)) are reflected and no conflicting old imports remain.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: ASSERTIVE

Plan: Pro

Run ID: 99cfa735-dc8e-455a-ad14-91c78344f448

📥 Commits

Reviewing files that changed from the base of the PR and between 0a30335 and c9e41ce.

📒 Files selected for processing (2)

• clients/web/apps/chat/vite.config.ts
• clients/web/apps/dashboard/tsconfig.node.json

📜 Review details

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (5)

• GitHub Check: sonar
• GitHub Check: pr-checks-build-logic
• GitHub Check: pr-checks
• GitHub Check: pr-checks
• GitHub Check: Cloudflare Pages

🧰 Additional context used

📓 Path-based instructions (1)

**/*

⚙️ CodeRabbit configuration file

**/*: Security first, performance second.
Validate input boundaries, auth/authz implications, and secret management.
Look for behavioral regressions, missing tests, and contract breaks across modules.

Files:

• clients/web/apps/dashboard/tsconfig.node.json
• clients/web/apps/chat/vite.config.ts

[coderabbitai]

⚠️ Potential issue | 🟠 Major

🧩 Analysis chain

🏁 Script executed:

#!/bin/bash
set -euo pipefail

echo "TypeScript version declarations:"
rg -n --glob 'package.json' '"typescript"\s*:' .

echo
echo "Configs extending `@tsconfig/node22`:"
rg -n --glob 'tsconfig*.json' '"extends"\s*:\s*"@tsconfig/node22/tsconfig.json"' -C2

echo
echo "Explicit lib overrides in tsconfig files:"
rg -n --glob 'tsconfig*.json' '"lib"\s*:' -C1

Repository: dallay/corvus

Length of output: 1432

---

🏁 Script executed:

#!/bin/bash
set -euo pipefail

# Check if `@tsconfig/node22` exists locally
if [ -d node_modules/@tsconfig/node22 ]; then
  echo "=== `@tsconfig/node22` location ==="
  find node_modules/@tsconfig/node22 -name "tsconfig.json" -type f | head -5
  echo
  echo "=== `@tsconfig/node22/tsconfig.json` content ==="
  cat node_modules/@tsconfig/node22/tsconfig.json
fi

echo
echo "=== vite.config.ts in dashboard ==="
if [ -f clients/web/apps/dashboard/vite.config.ts ]; then
  head -30 clients/web/apps/dashboard/vite.config.ts
fi

echo
echo "=== Current dashboard tsconfig.node.json ==="
cat clients/web/apps/dashboard/tsconfig.node.json

echo
echo "=== Check if chat app has lib override (full file) ==="
cat clients/web/apps/chat/tsconfig.node.json

Repository: dallay/corvus

Length of output: 1236

---

🌐 Web query:

@tsconfig/node22 tsconfig.json lib compiler option

💡 Result:

In @tsconfig/node22/tsconfig.json, the compilerOptions.lib is set to:

"lib": ["es2023"]

This means it includes TypeScript’s ES2023 built-in library typings (and does not include DOM libs unless you add them yourself). [1]

Source(s)
[1] (app.unpkg.com)

Citations:

• 1: https://app.unpkg.com/%40tsconfig/node22%4022.0.0/files/tsconfig.json

---

Remove or replace the lib override to keep the Node 22 runtime baseline.

The lib setting completely replaces the inherited ["es2023"] from @tsconfig/node22, widening the type surface to include future ESNext APIs that the Node 22 runtime does not provide. Since vite.config.ts uses only standard Node.js APIs, the override is unnecessary. Either remove the "lib" setting entirely (matching the approach in clients/web/apps/chat/tsconfig.node.json) or, if ESNext.Disposable is required, use ["es2023", "ESNext.Disposable"] to preserve the runtime contract.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@clients/web/apps/dashboard/tsconfig.node.json` at line 8, The tsconfig node
override currently replaces the Node 22 baseline by setting "lib": ["ESNext",
"ESNext.Disposable"]; remove this "lib" entry or change it to preserve es2023
(e.g., use ["es2023","ESNext.Disposable"]) so the project keeps the Node 22
runtime contract; update the tsconfig.node.json "lib" key accordingly (or delete
it to match clients/web/apps/chat/tsconfig.node.json) to ensure only supported
runtime APIs are exposed.

[coderabbitai]

♻️ Duplicate comments (1)

clients/web/apps/chat/vite.config.ts (1)

4-5: ⚠️ Potential issue | 🟠 Major

Restore a typed Vitest config path.

Lines 4-5 and 7-33 move this file off Vitest’s documented typed setups (defineConfig from vitest/config, or /// <reference types="vitest/config" /> with defineConfig from vite). Because the config now flows through an untyped const, TypeScript also skips the fresh object-literal excess-property check that catches misspelled test keys. Please keep defineConfig from vitest/config, or type the intermediate object with satisfies if you need the split. (vitest.dev)

Suggested fix

-import "vitest/config";
-import { defineConfig } from "vite";
+import { defineConfig } from "vitest/config";
 
-const config = {
+export default defineConfig({
   plugins: [vue()],
@@
-};
-
-export default defineConfig(config);
+});

Also applies to: 7-33

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@clients/web/apps/chat/vite.config.ts` around lines 4 - 5, The config was
detached from Vitest’s typed entry so TypeScript no longer enforces Vitest
config keys; restore typing by importing defineConfig from "vitest/config"
(instead of untyped Vite) or keep the current split but apply a type via the
satisfies operator with the Vitest Config type; locate the config object in
vite.config.ts and either change the import to use defineConfig from
"vitest/config" or annotate the intermediate object with the Vitest config type
(e.g., satisfies Config) so misspelled test keys are caught.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Duplicate comments:
In `@clients/web/apps/chat/vite.config.ts`:
- Around line 4-5: The config was detached from Vitest’s typed entry so
TypeScript no longer enforces Vitest config keys; restore typing by importing
defineConfig from "vitest/config" (instead of untyped Vite) or keep the current
split but apply a type via the satisfies operator with the Vitest Config type;
locate the config object in vite.config.ts and either change the import to use
defineConfig from "vitest/config" or annotate the intermediate object with the
Vitest config type (e.g., satisfies Config) so misspelled test keys are caught.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: ASSERTIVE

Plan: Pro

Run ID: 0c2cc677-4890-498c-bedf-d404ec6c53aa

📥 Commits

Reviewing files that changed from the base of the PR and between c9e41ce and 1ae2e51.

📒 Files selected for processing (4)

• .github/workflows/sonarqube-analysis.yml
• clients/web/apps/chat/tsconfig.node.json
• clients/web/apps/chat/vite.config.js
• clients/web/apps/chat/vite.config.ts

📜 Review details

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (4)

• GitHub Check: sonar
• GitHub Check: pr-checks-build-logic
• GitHub Check: pr-checks
• GitHub Check: Cloudflare Pages

🧰 Additional context used

📓 Path-based instructions (1)

**/*

⚙️ CodeRabbit configuration file

**/*: Security first, performance second.
Validate input boundaries, auth/authz implications, and secret management.
Look for behavioral regressions, missing tests, and contract breaks across modules.

Files:

• clients/web/apps/chat/tsconfig.node.json
• clients/web/apps/chat/vite.config.ts
• clients/web/apps/chat/vite.config.js

🧠 Learnings (1)

📚 Learning: 2026-02-17T12:31:17.076Z

Learnt from: CR
Repo: dallay/corvus PR: 0
File: clients/agent-runtime/AGENTS.md:0-0
Timestamp: 2026-02-17T12:31:17.076Z
Learning: Applies to clients/agent-runtime/.github/**/*.{yml,yaml} : For workflow/template-only changes, ensure YAML/template syntax validity

Applied to files:

• .github/workflows/sonarqube-analysis.yml

🔇 Additional comments (1)

.github/workflows/sonarqube-analysis.yml (1)

111-111: Coverage exclusions look consistent.

These added paths fit the existing strategy of excluding config/bootstrap/example surfaces from Sonar coverage, and the updated property formatting remains valid. Based on learnings: For workflow/template-only changes, ensure YAML/template syntax validity.

[sonarqubecloud]

Quality Gate failed

Failed conditions
0.0% Coverage on New Code (required ≥ 80%)
10.9% Duplication on New Code (required ≤ 3%)

See analysis details on SonarQube Cloud