feat(loopover): flip site-identity domain to loopover.ai#5580
Conversation
|
Superagent didn't find any vulnerabilities or security issues in this PR. |
Codecov Report✅ All modified and coverable lines are covered by tests. Additional details and impacted files@@ Coverage Diff @@
## main #5580 +/- ##
=======================================
Coverage 94.99% 94.99%
=======================================
Files 573 573
Lines 45490 45490
Branches 14680 14680
=======================================
Hits 43212 43212
Misses 1527 1527
Partials 751 751
Flags with carried forward coverage won't be shown. Click here to find out more.
🚀 New features to boost your workflow:
|
|
Caution 🟥🟥🟥🟥🟥🟥🟥🟥🟥🟥🟥🟥 🛑 Gittensory review result - fixes requiredReview updated: 2026-07-13 07:20:04 UTC
🛑 Suggested Action - Manual Review Review summary Blockers
Nits — 5 non-blocking
Why this is blocked
📋 Copy for AI agents — paste into your coding agentCI checks failing
Review context
Contributor next steps
Signal definitions
[BETA] Chat with GittensoryAsk Gittensory a question about this PR directly in a comment — grounded only in the same cached, public-safe facts shown above, never a new claim.
Full command reference: https://gittensory.aethereal.dev/docs/gittensory-commands Visual preview
Click any thumbnail to open the full-size screenshot. Before = production · After = this PR's preview deploy. 🟩 Safe / merged · 🟦 Advisory · 🟨 Held for review · 🟥 Blocked / closed 💰 Earn for open-source contributions like this. Gittensor lets GitHub contributors earn for the work they already do — register to start earning →. Checked by Gittensory, a quiet PR intelligence layer for OSS maintainers.
|
Advances #4765. Flips PUBLIC_SITE_ORIGIN (+ CORS, OAuth returnTo fallback, UI-facing links/docs/sitemap, ORB broker/collector defaults, OpenAPI server URL) from gittensory.aethereal.dev / gittensory-api.aethereal.dev to loopover.ai / api.loopover.ai as the new default identity. PUBLIC_API_ORIGIN is intentionally left unchanged: flipping it would send a new redirect_uri during GitHub OAuth, which requires the GitHub App's registered callback URL to be updated first. That flip lands separately once the callback URL is confirmed. The old gittensory.aethereal.dev domain stays live (CORS allowlist, Worker route, and PUBLIC_SITE_ORIGIN_ALIASES) as a backward-compatible alias, not a hard cutover.
393b1d1 to
496448a
Compare
Deploying with
|
| Status | Name | Latest Commit | Preview URL | Updated (UTC) |
|---|---|---|---|---|
| ✅ Deployment successful! View logs |
loopover-ui | 496448a | Commit Preview URL Branch Preview URL |
Jul 13 2026, 07:26 AM |
Summary
PUBLIC_SITE_ORIGIN(+ CORS allowlist, GitHub OAuthreturnTofallback, UI-facing links/docs/sitemap, ORB broker/collector defaults, OpenAPI server URL) fromgittensory.aethereal.dev/gittensory-api.aethereal.devtoloopover.ai/api.loopover.aias the new default site identity.PUBLIC_API_ORIGINis intentionally left unchanged in this PR: flipping it changes theredirect_urisent during GitHub OAuth, which requires the GitHub App's registered callback URL to include the new domain first. That flip lands separately once the callback URL is confirmed.gittensory.aethereal.devdomain stays live (CORS allowlist, Worker route, and the newPUBLIC_SITE_ORIGIN_ALIASESvar) as a backward-compatible alias, not a hard cutover — existing bookmarks/links keep working.Test plan
test/helpers/d1.ts's sharedPUBLIC_SITE_ORIGINtest fixture default and fixed the resulting assertions acrosstest/unit/auth.test.ts,test/unit/github-app.test.ts,test/unit/github-commands.test.ts,test/unit/orb-broker-client.test.ts,test/unit/queue-4.test.ts,test/integration/orb-oauth.test.ts,test/integration/routes-errors.test.ts.npm run test:ci+npm audit --audit-level=moderate) green.