wylab/claude-hub
1
0
Fork 0
forked from claude-did-this/claude-hub
Code Issues 1 Pull Requests Activity

Compare commits

merge into: wylab:Cheffromspace-patch-1
Branches Tags
wylab:main wylab:dependabot/npm_and_yarn/types/node-24.9.1 wylab:dependabot/npm_and_yarn/typescript-eslint/parser-8.46.2 wylab:dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-8.46.2 wylab:dependabot/npm_and_yarn/types/express-5.0.4 wylab:dependabot/docker/node-25 wylab:dependabot/github_actions/actions/setup-node-6 wylab:dependabot/npm_and_yarn/eslint-9.38.0 wylab:dependabot/npm_and_yarn/ts-jest-29.4.5 wylab:dependabot/github_actions/peter-evans/dockerhub-description-5 wylab:dependabot/github_actions/hadolint/hadolint-action-3.3.0 wylab:dependabot/npm_and_yarn/axios-1.12.2 wylab:dependabot/github_actions/actions/github-script-8 wylab:dependabot/npm_and_yarn/express-rate-limit-8.1.0 wylab:dependabot/github_actions/actions/checkout-5 wylab:dependabot/npm_and_yarn/prettier-3.6.2 wylab:dependabot/npm_and_yarn/multi-8537485db5 wylab:fix/pr-review-markdown-formatting wylab:feat/claude-api-swagger-docs wylab:chore/codecov wylab:Cheffromspace-patch-1 wylab:feat/claude-orchestration-sessions wylab:fix-claude-integration-tests wylab:feature/configurable-claude-hub-dir wylab:fix/support-fine-grained-github-tokens wylab:remove-n8n-network-dependency wylab:feat/optimize-docker-cicd wylab:fix/consolidate-ci-cd-workflows wylab:develop
wylab:v0.1.1 wylab:v0.1.0 claude-did-this:v0.1.1 claude-did-this:v0.1.0
...
pull from: wylab:dependabot/github_actions/actions/setup-node-6
Branches Tags
wylab:main wylab:dependabot/npm_and_yarn/types/node-24.9.1 wylab:dependabot/npm_and_yarn/typescript-eslint/parser-8.46.2 wylab:dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-8.46.2 wylab:dependabot/npm_and_yarn/types/express-5.0.4 wylab:dependabot/docker/node-25 wylab:dependabot/github_actions/actions/setup-node-6 wylab:dependabot/npm_and_yarn/eslint-9.38.0 wylab:dependabot/npm_and_yarn/ts-jest-29.4.5 wylab:dependabot/github_actions/peter-evans/dockerhub-description-5 wylab:dependabot/github_actions/hadolint/hadolint-action-3.3.0 wylab:dependabot/npm_and_yarn/axios-1.12.2 wylab:dependabot/github_actions/actions/github-script-8 wylab:dependabot/npm_and_yarn/express-rate-limit-8.1.0 wylab:dependabot/github_actions/actions/checkout-5 wylab:dependabot/npm_and_yarn/prettier-3.6.2 wylab:dependabot/npm_and_yarn/multi-8537485db5 wylab:fix/pr-review-markdown-formatting wylab:feat/claude-api-swagger-docs wylab:chore/codecov wylab:Cheffromspace-patch-1 wylab:feat/claude-orchestration-sessions wylab:fix-claude-integration-tests wylab:feature/configurable-claude-hub-dir wylab:fix/support-fine-grained-github-tokens wylab:remove-n8n-network-dependency wylab:feat/optimize-docker-cicd wylab:fix/consolidate-ci-cd-workflows wylab:develop claude-did-this:dependabot/npm_and_yarn/types/node-24.9.1 claude-did-this:dependabot/npm_and_yarn/typescript-eslint/parser-8.46.2 claude-did-this:dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-8.46.2 claude-did-this:dependabot/npm_and_yarn/types/express-5.0.4 claude-did-this:dependabot/docker/node-25 claude-did-this:dependabot/github_actions/actions/setup-node-6 claude-did-this:dependabot/npm_and_yarn/eslint-9.38.0 claude-did-this:dependabot/npm_and_yarn/ts-jest-29.4.5 claude-did-this:dependabot/github_actions/peter-evans/dockerhub-description-5 claude-did-this:dependabot/github_actions/hadolint/hadolint-action-3.3.0 claude-did-this:dependabot/npm_and_yarn/axios-1.12.2 claude-did-this:dependabot/github_actions/actions/github-script-8 claude-did-this:dependabot/npm_and_yarn/express-rate-limit-8.1.0 claude-did-this:dependabot/github_actions/actions/checkout-5 claude-did-this:dependabot/npm_and_yarn/prettier-3.6.2 claude-did-this:dependabot/npm_and_yarn/multi-8537485db5 claude-did-this:main claude-did-this:fix/pr-review-markdown-formatting claude-did-this:feat/claude-api-swagger-docs claude-did-this:chore/codecov claude-did-this:Cheffromspace-patch-1 claude-did-this:feat/claude-orchestration-sessions claude-did-this:fix-claude-integration-tests claude-did-this:feature/configurable-claude-hub-dir claude-did-this:fix/support-fine-grained-github-tokens claude-did-this:remove-n8n-network-dependency claude-did-this:feat/optimize-docker-cicd claude-did-this:fix/consolidate-ci-cd-workflows claude-did-this:develop
wylab:v0.1.1 wylab:v0.1.0 claude-did-this:v0.1.1 claude-did-this:v0.1.0

6 Commits
Cheffromsp ... dependabot

Author SHA1 Message Date
dependabot[bot]
4a7768d6d0 chore(deps): bump actions/setup-node from 4 to 6 
Bumps [actions/setup-node](https://github.com/actions/setup-node) from 4 to 6.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v4...v6)

---
updated-dependencies:
- dependency-name: actions/setup-node
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-10-20 13:23:09 +00:00
dependabot[bot]
3c8aebced8 chore(deps-dev): bump @types/body-parser from 1.19.5 to 1.19.6 (#184) 
Bumps [@types/body-parser](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/body-parser) from 1.19.5 to 1.19.6.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/body-parser)

---
updated-dependencies:
- dependency-name: "@types/body-parser"
  dependency-version: 1.19.6
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-06-20 11:16:08 -05:00
dependabot[bot]
c067efa13e chore(deps-dev): bump @babel/core from 7.27.3 to 7.27.4 (#167) 
Bumps [@babel/core](https://github.com/babel/babel/tree/HEAD/packages/babel-core) from 7.27.3 to 7.27.4.
- [Release notes](https://github.com/babel/babel/releases)
- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md)
- [Commits](https://github.com/babel/babel/commits/v7.27.4/packages/babel-core)

---
updated-dependencies:
- dependency-name: "@babel/core"
  dependency-version: 7.27.4
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-06-20 11:15:52 -05:00
Cheffromspace
65a590784c feat: Add Claude API documentation and improve session validation (#181) 
* feat: Implement Claude orchestration with session management

- Add CLAUDE_WEBHOOK_SECRET for webhook authentication
- Fix Docker volume mounting for Claude credentials
- Capture Claude's internal session ID from stream-json output
- Update entrypoint script to support OUTPUT_FORMAT=stream-json
- Fix environment variable naming (REPOSITORY -> REPO_FULL_NAME)
- Enable parallel session execution with proper authentication
- Successfully tested creating PRs via orchestrated sessions

This enables the webhook to create and manage Claude Code sessions that can:
- Clone repositories
- Create feature branches
- Implement code changes
- Commit and push changes
- Create pull requests

All while capturing Claude's internal session ID for potential resumption.

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <noreply@anthropic.com>

* fix: Update SessionManager tests for new implementation

- Update test to expect docker volume create instead of docker create
- Add unref() method to mock process objects to fix test environment error
- Update spawn expectations to match new docker run implementation
- Fix tests for both startSession and queueSession methods

Tests now pass in CI environment.

* feat: Add Claude API documentation and improve session validation

- Add comprehensive Swagger/OpenAPI documentation for Claude webhook API
- Add improved validation for session dependencies to handle edge cases
- Add hackathon-specific Docker Compose configuration
- Update SessionHandler to validate dependency UUIDs and filter invalid values
- Update SessionManager to properly handle sessions without dependencies
- Add API endpoint documentation with examples and schemas

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <noreply@anthropic.com>

* test: Add comprehensive tests for SessionHandler dependency validation

Add test coverage for dependency validation logic in SessionHandler:
- Filter out invalid dependency values (empty strings, whitespace, "none")
- Validate UUID format for dependencies
- Handle mixed valid and invalid dependencies
- Support empty dependency arrays
- Handle arrays with only filtered values

This improves test coverage from ~91% to ~97% for SessionHandler.

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <noreply@anthropic.com>

* fix: Address PR #181 review comments

- Remove unused docker-compose.hackathon.yml file
- Extract UUID regex to constant for better maintainability
- Document breaking changes in BREAKING_CHANGES.md
- Add comprehensive examples to Swagger documentation

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <noreply@anthropic.com>

---------

Co-authored-by: Claude <noreply@anthropic.com>
 2025-06-05 00:45:52 -05:00
Cheffromspace
9a8187d72a add token to codecov yml (#180) 2025-06-04 08:44:42 -05:00
Cheffromspace
42201732c1 Update README.md (#179) 
Signed-off-by: Cheffromspace <jonflatt@gmail.com>
 2025-06-03 20:05:17 -05:00
15 changed files with 1747 additions and 37 deletions
Expand all files Collapse all files

3
.codecov.yml
View File

@@ -1,5 +1,6 @@
codecov:
require_ci_to_pass: false
token: ${{ secrets.CODECOV_TOKEN }}
coverage:
status:
@@ -25,4 +26,4 @@ comment:
github_checks:
# Disable check suites to prevent hanging on non-main branches
annotations: false
annotations: false

2
.github/workflows/cli-tests.yml vendored
View File

@@ -14,7 +14,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: actions/setup-node@v4
- uses: actions/setup-node@v6
with:
node-version: ${{ env.NODE_VERSION }}
cache: npm

2
.github/workflows/deploy.yml vendored
View File

@@ -27,7 +27,7 @@ jobs:
- uses: actions/checkout@v4
- name: Use Node.js ${{ matrix.node-version }}
uses: actions/setup-node@v4
uses: actions/setup-node@v6
with:
node-version: ${{ matrix.node-version }}
cache: 'npm'

2
.github/workflows/main.yml vendored
View File

@@ -16,7 +16,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: actions/setup-node@v4
- uses: actions/setup-node@v6
with:
node-version: ${{ env.NODE_VERSION }}
cache: npm

2
.github/workflows/pull-request.yml vendored
View File

@@ -12,7 +12,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: actions/setup-node@v4
- uses: actions/setup-node@v6
with:
node-version: ${{ env.NODE_VERSION }}
cache: npm

2
.github/workflows/security.yml vendored
View File

@@ -22,7 +22,7 @@ jobs:
uses: actions/checkout@v4
- name: Setup Node.js
uses: actions/setup-node@v4
uses: actions/setup-node@v6
with:
node-version: '20'
cache: 'npm'

20
BREAKING_CHANGES.md Normal file
View File

@@ -0,0 +1,20 @@
# Breaking Changes
## PR #181 - Enhanced Session Validation and API Documentation
### Event Pattern Change
- **Changed**: Session handler event pattern changed from `session` to `session*`
- **Impact**: Any integrations listening for specific session events may need to update their event filtering logic
- **Migration**: Update event listeners to use wildcard pattern matching or specific event names (e.g., `session.create`, `session.start`)
### Volume Naming Pattern
- **Changed**: Volume naming pattern in SessionManager changed to use a more consistent format
- **Previous**: Various inconsistent naming patterns
- **New**: Standardized naming with session ID prefixes
- **Impact**: Existing volumes created with old naming patterns may not be recognized
- **Migration**: Existing sessions may need to be recreated or volumes renamed to match new pattern
### API Validation
- **Added**: Strict UUID validation for session dependencies
- **Impact**: Sessions with invalid dependency IDs will now be rejected
- **Migration**: Ensure all dependency IDs are valid UUIDs before creating sessions

7
README.md
View File

@@ -77,13 +77,6 @@ That's it! Your bot is ready to use. See the **[complete quickstart guide](./QUI
- **Context-aware**: Claude understands your entire repository structure and development patterns
- **Stateless execution**: Each request runs in isolated Docker containers
### Claude Orchestration (NEW) 🎭
- **Parallel Claude Sessions**: Run multiple Claude containers concurrently for complex tasks
- **Smart Task Decomposition**: Automatically breaks down projects into parallel workstreams
- **Dependency Management**: Sessions wait for prerequisites before starting
- **MCP Integration**: Built for the MCP hackathon to showcase super-charged Claude capabilities
- **See [Claude Orchestration Documentation](./docs/claude-orchestration.md) for details**
### Performance Architecture ⚡
- Parallel test execution with strategic runner distribution
- Conditional Docker builds (only when code changes)

569
claude-api-swagger.yaml Normal file
View File

@@ -0,0 +1,569 @@
openapi: 3.0.3
info:
title: Claude Webhook API
description: |
API for creating and managing Claude Code sessions for automated code generation, analysis, and orchestration.
This API enables parallel execution of multiple Claude instances for complex software engineering tasks.
version: 1.0.0
contact:
name: Claude Hub Support
url: https://github.com/claude-hub/claude-hub
servers:
- url: https://your-domain.com
description: Production server
- url: http://localhost:3002
description: Local development server
security:
- bearerAuth: []
paths:
/health:
get:
summary: Health check
description: Check the health status of the API and its dependencies
tags:
- System
security: []
responses:
'200':
description: Service is healthy
content:
application/json:
schema:
$ref: '#/components/schemas/HealthCheckResponse'
/api/webhooks/health:
get:
summary: Webhook health check
description: Check the health status of webhook providers
tags:
- System
security: []
responses:
'200':
description: Webhook providers are healthy
content:
application/json:
schema:
type: object
properties:
status:
type: string
example: healthy
providers:
type: array
items:
type: object
properties:
name:
type: string
handlerCount:
type: integer
/api/webhooks/github:
post:
summary: GitHub webhook endpoint (legacy)
description: Legacy endpoint for GitHub webhooks. Use /api/webhooks/github instead.
deprecated: true
tags:
- Webhooks
security: []
requestBody:
required: true
content:
application/json:
schema:
type: object
responses:
'200':
description: Webhook processed successfully
'401':
description: Invalid webhook signature
'404':
description: Webhook event not handled
/api/webhooks/{provider}:
post:
summary: Generic webhook endpoint
description: Process webhooks from various providers (github, claude)
tags:
- Webhooks
security: []
parameters:
- name: provider
in: path
required: true
schema:
type: string
enum: [github, claude]
description: The webhook provider name
requestBody:
required: true
content:
application/json:
schema:
oneOf:
- $ref: '#/components/schemas/ClaudeWebhookRequest'
- $ref: '#/components/schemas/GitHubWebhookPayload'
examples:
createSession:
summary: Create a new Claude session
value:
type: session.create
session:
type: implementation
project:
repository: acme/webapp
branch: feature/user-auth
requirements: Implement JWT authentication middleware for Express.js with refresh token support
context: Use existing User model, bcrypt for passwords, and jsonwebtoken library
dependencies: []
createSessionWithDependencies:
summary: Create a session that depends on others
value:
type: session.create
session:
type: testing
project:
repository: acme/webapp
branch: feature/user-auth
requirements: Write comprehensive integration tests for the JWT authentication middleware
context: Test all edge cases including token expiration, invalid tokens, and refresh flow
dependencies:
- 550e8400-e29b-41d4-a716-446655440000
- 660e8400-e29b-41d4-a716-446655440001
startSession:
summary: Start an existing session
value:
type: session.start
sessionId: 550e8400-e29b-41d4-a716-446655440000
orchestrate:
summary: Create an orchestration with multiple sessions
value:
type: orchestrate
autoStart: true
project:
repository: acme/webapp
branch: feature/complete-auth
requirements: |
Implement a complete authentication system:
1. JWT middleware with refresh tokens
2. User registration and login endpoints
3. Password reset functionality
4. Integration tests for all auth endpoints
context: Use existing User model, PostgreSQL database, and follow REST API conventions
responses:
'200':
description: Webhook processed successfully
content:
application/json:
schema:
$ref: '#/components/schemas/WebhookResponse'
examples:
sessionCreated:
summary: Session created successfully
value:
success: true
message: Session created successfully
data:
session:
id: 550e8400-e29b-41d4-a716-446655440000
type: implementation
status: initializing
containerId: claude-session-550e8400
project:
repository: acme/webapp
branch: feature/user-auth
requirements: Implement JWT authentication middleware for Express.js with refresh token support
context: Use existing User model, bcrypt for passwords, and jsonwebtoken library
dependencies: []
sessionStarted:
summary: Session started with dependencies
value:
success: true
message: Session queued, waiting for dependencies
data:
session:
id: 660e8400-e29b-41d4-a716-446655440001
status: pending
waitingFor:
- 550e8400-e29b-41d4-a716-446655440000
'400':
description: Bad request
content:
application/json:
schema:
$ref: '#/components/schemas/ErrorResponse'
'401':
description: Unauthorized - Invalid token or signature
content:
application/json:
schema:
$ref: '#/components/schemas/ErrorResponse'
'404':
description: Provider not found or session not found
content:
application/json:
schema:
$ref: '#/components/schemas/ErrorResponse'
'409':
description: Conflict - Session already started
content:
application/json:
schema:
$ref: '#/components/schemas/ErrorResponse'
'429':
description: Too many requests
content:
application/json:
schema:
type: object
properties:
error:
type: string
example: Too many webhook requests
message:
type: string
example: Too many webhook requests from this IP, please try again later.
'500':
description: Internal server error
content:
application/json:
schema:
$ref: '#/components/schemas/ErrorResponse'
components:
securitySchemes:
bearerAuth:
type: http
scheme: bearer
description: Use CLAUDE_WEBHOOK_SECRET as the bearer token
schemas:
HealthCheckResponse:
type: object
properties:
status:
type: string
enum: [ok, degraded]
timestamp:
type: string
format: date-time
startup:
type: object
properties:
totalStartupTime:
type: integer
milestones:
type: array
items:
type: object
docker:
type: object
properties:
available:
type: boolean
error:
type: string
nullable: true
checkTime:
type: integer
nullable: true
claudeCodeImage:
type: object
properties:
available:
type: boolean
error:
type: string
nullable: true
checkTime:
type: integer
nullable: true
healthCheckDuration:
type: integer
ClaudeWebhookRequest:
oneOf:
- $ref: '#/components/schemas/SessionCreateRequest'
- $ref: '#/components/schemas/SessionStartRequest'
- $ref: '#/components/schemas/SessionGetRequest'
- $ref: '#/components/schemas/SessionOutputRequest'
- $ref: '#/components/schemas/SessionListRequest'
- $ref: '#/components/schemas/OrchestrateRequest'
discriminator:
propertyName: type
mapping:
session.create: '#/components/schemas/SessionCreateRequest'
session.start: '#/components/schemas/SessionStartRequest'
session.get: '#/components/schemas/SessionGetRequest'
session.output: '#/components/schemas/SessionOutputRequest'
session.list: '#/components/schemas/SessionListRequest'
orchestrate: '#/components/schemas/OrchestrateRequest'
SessionCreateRequest:
type: object
required:
- type
- session
properties:
type:
type: string
enum: [session.create]
session:
type: object
required:
- type
- project
properties:
type:
type: string
enum: [implementation, analysis, testing, review, coordination]
description: Type of Claude session
project:
type: object
required:
- repository
- requirements
properties:
repository:
type: string
pattern: '^[a-zA-Z0-9-]+/[a-zA-Z0-9-_.]+$'
example: acme/webapp
description: GitHub repository in owner/repo format
branch:
type: string
example: feature/user-auth
description: Target branch name
requirements:
type: string
example: Implement JWT authentication middleware for Express.js
description: Clear description of what Claude should do
context:
type: string
example: Use existing User model and bcrypt for password hashing
description: Additional context about the codebase or requirements
dependencies:
type: array
items:
type: string
format: uuid
description: Array of session IDs that must complete before this session starts
SessionStartRequest:
type: object
required:
- type
- sessionId
properties:
type:
type: string
enum: [session.start]
sessionId:
type: string
format: uuid
example: 550e8400-e29b-41d4-a716-446655440000
SessionGetRequest:
type: object
required:
- type
- sessionId
properties:
type:
type: string
enum: [session.get]
sessionId:
type: string
format: uuid
SessionOutputRequest:
type: object
required:
- type
- sessionId
properties:
type:
type: string
enum: [session.output]
sessionId:
type: string
format: uuid
SessionListRequest:
type: object
required:
- type
properties:
type:
type: string
enum: [session.list]
orchestrationId:
type: string
format: uuid
description: Filter sessions by orchestration ID
OrchestrateRequest:
type: object
required:
- type
- project
properties:
type:
type: string
enum: [orchestrate]
sessionType:
type: string
enum: [coordination]
default: coordination
autoStart:
type: boolean
default: false
description: Whether to start the session immediately
project:
type: object
required:
- repository
- requirements
properties:
repository:
type: string
pattern: '^[a-zA-Z0-9-]+/[a-zA-Z0-9-_.]+$'
branch:
type: string
requirements:
type: string
context:
type: string
WebhookResponse:
type: object
properties:
success:
type: boolean
message:
type: string
data:
type: object
additionalProperties: true
ErrorResponse:
type: object
properties:
success:
type: boolean
example: false
error:
type: string
example: Session not found
Session:
type: object
properties:
id:
type: string
format: uuid
type:
type: string
enum: [implementation, analysis, testing, review, coordination]
status:
type: string
enum: [pending, initializing, running, completed, failed, cancelled]
containerId:
type: string
nullable: true
claudeSessionId:
type: string
nullable: true
project:
type: object
properties:
repository:
type: string
branch:
type: string
requirements:
type: string
context:
type: string
dependencies:
type: array
items:
type: string
format: uuid
startedAt:
type: string
format: date-time
nullable: true
completedAt:
type: string
format: date-time
nullable: true
output:
type: object
nullable: true
error:
type: string
nullable: true
SessionOutput:
type: object
properties:
logs:
type: array
items:
type: string
artifacts:
type: array
items:
type: object
properties:
type:
type: string
enum: [file, commit, pr, issue, comment]
path:
type: string
content:
type: string
sha:
type: string
url:
type: string
metadata:
type: object
additionalProperties: true
summary:
type: string
example: Implemented JWT authentication middleware with refresh token support
nextSteps:
type: array
items:
type: string
example: [Add rate limiting, Implement password reset flow]
GitHubWebhookPayload:
type: object
description: GitHub webhook payload (simplified schema)
properties:
action:
type: string
repository:
type: object
properties:
full_name:
type: string
sender:
type: object
properties:
login:
type: string
tags:
- name: System
description: System health and status endpoints
- name: Webhooks
description: Webhook processing endpoints
- name: Sessions
description: Claude session management operations

941
docs/claude-webhook-api.md Normal file
View File

@@ -0,0 +1,941 @@
# Claude Webhook API Documentation
## Overview
The Claude Webhook API provides endpoints for creating and managing Claude Code sessions for automated code generation, analysis, and orchestration. This API is designed to enable parallel execution of multiple Claude instances for complex software engineering tasks.
## API Design Philosophy
This API follows a simple, focused design:
- **Single responsibility**: Each session handles one specific task
- **Orchestration via MCP/LLM agents**: Complex workflows are managed by the calling agent, not the API
- **Consistent response format**: All responses follow the same structure for predictable parsing
## Base Configuration
### Base URL
```
POST https://your-domain.com/api/webhooks/claude
```
### Authentication
All requests require Bearer token authentication:
```http
Authorization: Bearer <CLAUDE_WEBHOOK_SECRET>
Content-Type: application/json
```
### Response Format
All API responses follow this consistent structure:
```json
{
"success": boolean,
"message": "string", // Human-readable status message
"data": object, // Response data (when success=true)
"error": "string" // Error description (when success=false)
}
```
### Rate Limiting
- Currently not implemented (planned for future release)
- Recommended client-side rate limiting: 10 requests per minute
## Endpoints
### 1. Create Session
Creates a new Claude Code session. Sessions can be configured with dependencies, metadata, and execution options.
**Endpoint:** `POST /api/webhooks/claude`
**Type:** `session.create`
#### Request Body
```json
{
"type": "session.create",
"session": {
"type": "implementation | analysis | testing | review | coordination",
"project": {
"repository": "string", // Required: "owner/repo" format
"branch": "string", // Optional: target branch
"requirements": "string", // Required: task description
"context": "string" // Optional: additional context
},
"dependencies": ["string"], // Optional: array of session IDs to wait for
"metadata": { // Optional: custom metadata
"batchId": "string", // Group related sessions
"tags": ["string"], // Categorization tags
"priority": "string" // Priority level
}
},
"options": { // Optional: execution options
"autoStart": boolean, // Start when dependencies complete (default: false)
"timeout": number, // Custom timeout in seconds (default: 1800)
"notifyUrl": "string" // Webhook URL for completion notification
}
}
```
#### Parameters
| Parameter | Type | Required | Description |
|-----------|------|----------|-------------|
| `type` | string | Yes | Must be "session.create" |
| `session` | object | Yes | Session configuration object |
| `session.type` | string | Yes | Type of session: `implementation`, `analysis`, `testing`, `review`, or `coordination` |
| `session.project` | object | Yes | Project information |
| `session.project.repository` | string | Yes | GitHub repository in "owner/repo" format |
| `session.project.branch` | string | No | Target branch name (defaults to main/master) |
| `session.project.requirements` | string | Yes | Clear description of what Claude should do |
| `session.project.context` | string | No | Additional context about the codebase or requirements |
| `session.dependencies` | string[] | No | Array of valid UUID session IDs that must complete before this session starts (filters out "none", empty strings) |
| `session.metadata` | object | No | Custom metadata for organizing sessions |
| `session.metadata.batchId` | string | No | User-provided ID for grouping related sessions |
| `session.metadata.tags` | string[] | No | Tags for categorization |
| `session.metadata.priority` | string | No | Priority level (high, medium, low) |
| `options` | object | No | Execution options |
| `options.autoStart` | boolean | No | Automatically start when dependencies complete (default: false) |
| `options.timeout` | number | No | Custom timeout in seconds (default: 1800 = 30 minutes) |
| `options.notifyUrl` | string | No | Webhook URL to call on completion/failure |
#### Response
```json
{
"success": true,
"message": "Session created successfully",
"data": {
"session": {
"id": "550e8400-e29b-41d4-a716-446655440000",
"type": "implementation",
"status": "pending",
"project": {
"repository": "acme/webapp",
"branch": "feature/user-auth",
"requirements": "Implement JWT authentication middleware",
"context": "Use existing User model"
},
"dependencies": [],
"metadata": {
"batchId": "auth-feature-batch",
"tags": ["feature", "auth"],
"priority": "high"
},
"options": {
"autoStart": false,
"timeout": 1800,
"notifyUrl": null
},
"containerId": null,
"claudeSessionId": null,
"createdAt": "2024-01-06T10:00:00Z",
"startedAt": null,
"completedAt": null,
"output": null,
"error": null
}
}
}
```
#### Example
```bash
curl -X POST https://your-domain.com/api/webhooks/claude \
-H "Authorization: Bearer your-secret-token" \
-H "Content-Type: application/json" \
-d '{
"type": "session.create",
"session": {
"type": "implementation",
"project": {
"repository": "acme/webapp",
"branch": "feature/user-auth",
"requirements": "Implement JWT authentication middleware for Express.js",
"context": "Use existing User model and bcrypt for password hashing"
},
"dependencies": []
}
}'
```
---
### 2. Start Session
Starts a previously created session or queues it if dependencies aren't met.
**Endpoint:** `POST /api/webhooks/claude`
**Type:** `session.start`
#### Request Body
```json
{
"type": "session.start",
"sessionId": "string"
}
```
#### Parameters
| Parameter | Type | Required | Description |
|-----------|------|----------|-------------|
| `type` | string | Yes | Must be "session.start" |
| `sessionId` | string | Yes | UUID of the session to start |
#### Response
```json
{
"success": true,
"message": "Session started successfully",
"data": {
"session": {
"id": "550e8400-e29b-41d4-a716-446655440000",
"status": "initializing", // or "running" if started immediately
"containerId": "docker-container-id",
"claudeSessionId": "claude-internal-session-id",
// ... full session object
}
}
}
```
For queued sessions (waiting on dependencies):
```json
{
"success": true,
"message": "Session queued",
"data": {
"session": {
"id": "550e8400-e29b-41d4-a716-446655440000",
"status": "pending",
// ... full session object
},
"queueStatus": {
"waitingFor": ["dependency-session-id-1", "dependency-session-id-2"],
"estimatedStartTime": null
}
}
}
```
#### Example
```bash
curl -X POST https://your-domain.com/api/webhooks/claude \
-H "Authorization: Bearer your-secret-token" \
-H "Content-Type: application/json" \
-d '{
"type": "session.start",
"sessionId": "550e8400-e29b-41d4-a716-446655440000"
}'
```
---
### 3. Get Session Status
Retrieves the current status and details of a session.
**Endpoint:** `POST /api/webhooks/claude`
**Type:** `session.get`
#### Request Body
```json
{
"type": "session.get",
"sessionId": "string"
}
```
#### Parameters
| Parameter | Type | Required | Description |
|-----------|------|----------|-------------|
| `type` | string | Yes | Must be "session.get" |
| `sessionId` | string | Yes | UUID of the session to query |
#### Response
```json
{
"success": true,
"message": "Session found",
"data": {
"session": {
"id": "550e8400-e29b-41d4-a716-446655440000",
"type": "implementation",
"status": "running",
"containerId": "docker-container-id",
"claudeSessionId": "claude-internal-session-id",
"project": {
"repository": "acme/webapp",
"branch": "feature/user-auth",
"requirements": "Implement JWT authentication middleware",
"context": "Use existing User model"
},
"dependencies": [],
"metadata": {},
"options": {},
"createdAt": "2024-01-06T10:00:00Z",
"startedAt": "2024-01-06T10:30:00Z",
"completedAt": null,
"output": null,
"error": null
}
}
}
```
#### Session Status Values
- `pending` - Session created but not started
- `initializing` - Container is being created
- `running` - Session is actively executing
- `completed` - Session finished successfully
- `failed` - Session encountered an error
- `cancelled` - Session was manually cancelled
---
### 4. Get Session Output
Retrieves the output and artifacts from a completed session.
**Endpoint:** `POST /api/webhooks/claude`
**Type:** `session.output`
#### Request Body
```json
{
"type": "session.output",
"sessionId": "string"
}
```
#### Parameters
| Parameter | Type | Required | Description |
|-----------|------|----------|-------------|
| `type` | string | Yes | Must be "session.output" |
| `sessionId` | string | Yes | UUID of the session |
#### Response
```json
{
"success": true,
"message": "Session output retrieved",
"data": {
"output": {
"logs": ["Container started", "Running Claude command...", "Task completed"],
"artifacts": [
{
"type": "file",
"path": "src/middleware/auth.js",
"content": "// JWT authentication middleware\n...",
"sha": "abc123...",
"url": "https://github.com/acme/webapp/blob/feature/user-auth/src/middleware/auth.js",
"metadata": {
"linesAdded": 150,
"linesRemoved": 0
}
}
],
"summary": "Implemented JWT authentication middleware with refresh token support",
"nextSteps": ["Add rate limiting", "Implement password reset flow"],
"executionTime": 180, // seconds
"resourceUsage": {
"cpuTime": 45.2,
"memoryPeak": "512MB"
}
}
}
}
```
Note: The current implementation returns a simplified structure. Full artifact details and metadata are planned for future releases.
---
### 5. List Sessions
Lists all sessions, optionally filtered by orchestration ID.
**Endpoint:** `POST /api/webhooks/claude`
**Type:** `session.list`
#### Request Body
```json
{
"type": "session.list",
"orchestrationId": "string" // Optional
}
```
#### Parameters
| Parameter | Type | Required | Description |
|-----------|------|----------|-------------|
| `type` | string | Yes | Must be "session.list" |
| `orchestrationId` | string | No | Filter sessions by orchestration ID |
#### Response
```json
{
"success": true,
"message": "Sessions retrieved",
"data": {
"sessions": [
{
"id": "550e8400-e29b-41d4-a716-446655440000",
"type": "implementation",
"status": "completed",
"project": {
"repository": "acme/webapp",
"branch": "feature/user-auth",
"requirements": "Implement JWT authentication",
"context": null
},
"dependencies": [],
"metadata": {
"batchId": "auth-feature-batch",
"tags": ["feature", "auth"]
},
"createdAt": "2024-01-06T10:00:00Z",
"startedAt": "2024-01-06T10:30:00Z",
"completedAt": "2024-01-06T10:45:00Z",
"error": null
},
{
"id": "660e8400-e29b-41d4-a716-446655440001",
"type": "testing",
"status": "running",
"project": {
"repository": "acme/webapp",
"branch": "feature/user-auth",
"requirements": "Write tests for JWT middleware"
},
"dependencies": ["550e8400-e29b-41d4-a716-446655440000"],
"metadata": {
"batchId": "auth-feature-batch",
"tags": ["testing"]
},
"createdAt": "2024-01-06T10:46:00Z",
"startedAt": "2024-01-06T10:47:00Z",
"completedAt": null,
"error": null
}
]
}
}
```
## Session Types
### implementation
For implementing new features or functionality. Claude will:
- Analyze requirements
- Write production-ready code
- Follow existing patterns and conventions
- Create or modify files as needed
### analysis
For analyzing existing code. Claude will:
- Review code structure and patterns
- Identify potential issues
- Suggest improvements
- Document findings
### testing
For creating and running tests. Claude will:
- Write unit and integration tests
- Ensure code coverage
- Validate functionality
- Fix failing tests
### review
For code review tasks. Claude will:
- Review pull requests
- Check for security issues
- Validate best practices
- Provide feedback
### coordination
For orchestrating multiple sessions. Claude will:
- Break down complex tasks
- Create dependent sessions
- Monitor progress
- Coordinate results
## Dependency Management
Sessions can depend on other sessions using the `dependencies` parameter:
```json
{
"type": "session.create",
"session": {
"type": "testing",
"project": {
"repository": "acme/webapp",
"requirements": "Write tests for the JWT authentication middleware"
},
"dependencies": ["implementation-session-id"]
}
}
```
### Dependency Behavior
- Sessions with dependencies won't start until all dependencies are `completed`
- If any dependency fails, the dependent session will be marked as `failed`
- Circular dependencies are detected and rejected
- Maximum dependency depth is 10 levels
## Error Handling
### Error Response Format
```json
{
"success": false,
"error": "Error description"
}
```
### Common Error Codes
- `400` - Bad Request (invalid parameters)
- `401` - Unauthorized (invalid token)
- `404` - Not Found (session doesn't exist)
- `409` - Conflict (session already started)
- `429` - Too Many Requests (rate limit exceeded)
- `500` - Internal Server Error
### Example Error Response
```json
{
"success": false,
"error": "Session not found: 550e8400-e29b-41d4-a716-446655440000"
}
```
## Best Practices
### 1. Clear Requirements
Provide detailed, actionable requirements:
```json
{
"requirements": "Implement JWT authentication middleware with:\n- Access token (15min expiry)\n- Refresh token (7 days expiry)\n- Token blacklisting for logout\n- Rate limiting per user"
}
```
### 2. Use Dependencies Wisely
Chain related tasks:
```
analysis → implementation → testing → review
```
### 3. Provide Context
Include relevant context about your codebase:
```json
{
"context": "We use Express.js with TypeScript, Prisma ORM, and follow REST API conventions. Authentication should integrate with existing User model."
}
```
### 4. Monitor Session Status
Poll session status every 5-10 seconds:
```bash
while [ "$status" != "completed" ]; do
status=$(curl -s -X POST ... | jq -r '.data.status')
sleep 5
done
```
### 5. Handle Failures Gracefully
Check session status and error messages:
```javascript
if (response.data.status === 'failed') {
console.error('Session failed:', response.data.error);
// Implement retry logic or alternative approach
}
```
## Integration Examples
### Node.js/TypeScript
```typescript
import axios from 'axios';
const CLAUDE_API_URL = 'https://your-domain.com/api/webhooks/claude';
const AUTH_TOKEN = process.env.CLAUDE_WEBHOOK_SECRET;
async function createAndRunSession() {
// Create session
const createResponse = await axios.post(
CLAUDE_API_URL,
{
type: 'session.create',
session: {
type: 'implementation',
project: {
repository: 'acme/webapp',
requirements: 'Implement user profile API endpoints',
context: 'Use existing auth middleware'
}
}
},
{
headers: {
'Authorization': `Bearer ${AUTH_TOKEN}`,
'Content-Type': 'application/json'
}
}
);
const sessionId = createResponse.data.data.sessionId;
// Start session
await axios.post(
CLAUDE_API_URL,
{
type: 'session.start',
sessionId
},
{
headers: {
'Authorization': `Bearer ${AUTH_TOKEN}`,
'Content-Type': 'application/json'
}
}
);
// Poll for completion
let status = 'running';
while (status === 'running' || status === 'initializing') {
await new Promise(resolve => setTimeout(resolve, 5000));
const statusResponse = await axios.post(
CLAUDE_API_URL,
{
type: 'session.get',
sessionId
},
{
headers: {
'Authorization': `Bearer ${AUTH_TOKEN}`,
'Content-Type': 'application/json'
}
}
);
status = statusResponse.data.data.status;
}
// Get output
if (status === 'completed') {
const outputResponse = await axios.post(
CLAUDE_API_URL,
{
type: 'session.output',
sessionId
},
{
headers: {
'Authorization': `Bearer ${AUTH_TOKEN}`,
'Content-Type': 'application/json'
}
}
);
console.log('Session completed:', outputResponse.data.data.summary);
console.log('Artifacts:', outputResponse.data.data.artifacts);
}
}
```
### Python
```python
import requests
import time
import os
CLAUDE_API_URL = 'https://your-domain.com/api/webhooks/claude'
AUTH_TOKEN = os.environ['CLAUDE_WEBHOOK_SECRET']
headers = {
'Authorization': f'Bearer {AUTH_TOKEN}',
'Content-Type': 'application/json'
}
# Create session
create_response = requests.post(
CLAUDE_API_URL,
json={
'type': 'session.create',
'session': {
'type': 'implementation',
'project': {
'repository': 'acme/webapp',
'requirements': 'Implement user profile API endpoints'
}
}
},
headers=headers
)
session_id = create_response.json()['data']['sessionId']
# Start session
requests.post(
CLAUDE_API_URL,
json={
'type': 'session.start',
'sessionId': session_id
},
headers=headers
)
# Poll for completion
status = 'running'
while status in ['running', 'initializing']:
time.sleep(5)
status_response = requests.post(
CLAUDE_API_URL,
json={
'type': 'session.get',
'sessionId': session_id
},
headers=headers
)
status = status_response.json()['data']['status']
# Get output
if status == 'completed':
output_response = requests.post(
CLAUDE_API_URL,
json={
'type': 'session.output',
'sessionId': session_id
},
headers=headers
)
output = output_response.json()['data']
print(f"Summary: {output['summary']}")
print(f"Artifacts: {output['artifacts']}")
```
## LLM Agent Integration Guide
This section provides specific guidance for LLM agents (via MCP servers or other integrations) consuming this API.
### Response Parsing
All responses follow a consistent structure, making them easy to parse:
```typescript
interface ApiResponse<T> {
success: boolean;
message: string;
data?: T; // Present when success=true
error?: string; // Present when success=false
}
```
### Session Orchestration Pattern
Since this API focuses on single-session creation, orchestration should be handled by the LLM agent:
```python
# Example: LLM agent orchestrating a feature implementation
async def implement_feature(repo: str, feature_desc: str):
# 1. Create analysis session
analysis = await create_session(
type="analysis",
requirements=f"Analyze codebase for implementing: {feature_desc}"
)
# 2. Wait for analysis to complete
await wait_for_completion(analysis.id)
# 3. Create implementation session based on analysis
implementation = await create_session(
type="implementation",
requirements=f"Implement {feature_desc} based on analysis",
dependencies=[analysis.id]
)
# 4. Create testing session
testing = await create_session(
type="testing",
requirements=f"Write tests for {feature_desc}",
dependencies=[implementation.id],
options={"autoStart": true} # Auto-start when ready
)
return {
"analysis": analysis.id,
"implementation": implementation.id,
"testing": testing.id
}
```
### Polling Best Practices
```javascript
async function pollSession(sessionId, maxAttempts = 120) {
const pollInterval = 5000; // 5 seconds
let attempts = 0;
while (attempts < maxAttempts) {
const response = await getSession(sessionId);
const status = response.data.session.status;
if (['completed', 'failed', 'cancelled'].includes(status)) {
return response.data.session;
}
// Exponential backoff for long-running sessions
const delay = status === 'pending' ? pollInterval * 2 : pollInterval;
await sleep(delay);
attempts++;
}
throw new Error('Session polling timeout');
}
```
### Batch Processing Pattern
Use metadata to group related sessions:
```json
{
"type": "session.create",
"session": {
"type": "implementation",
"project": { ... },
"metadata": {
"batchId": "feature-xyz-batch",
"tags": ["feature", "priority-high"],
"priority": "high"
}
}
}
```
Then query all sessions in a batch:
```json
{
"type": "session.list",
"orchestrationId": "feature-xyz-batch"
}
```
### Error Handling
```python
def handle_api_response(response):
if response.status_code == 429:
# Rate limited - implement exponential backoff
retry_after = int(response.headers.get('Retry-After', 60))
time.sleep(retry_after)
return retry_request()
data = response.json()
if not data['success']:
error = data.get('error', 'Unknown error')
if 'not found' in error:
# Handle missing session
pass
elif 'already started' in error:
# Session already running - just poll for status
pass
else:
raise ApiError(error)
return data['data']
```
### Dependency Graph Building
```typescript
class SessionGraph {
private sessions: Map<string, Session> = new Map();
addSession(session: Session) {
this.sessions.set(session.id, session);
}
getExecutionOrder(): string[] {
// Topological sort to determine execution order
const visited = new Set<string>();
const order: string[] = [];
const visit = (id: string) => {
if (visited.has(id)) return;
visited.add(id);
const session = this.sessions.get(id);
if (session?.dependencies) {
session.dependencies.forEach(dep => visit(dep));
}
order.push(id);
};
this.sessions.forEach((_, id) => visit(id));
return order;
}
}
```
### Optimizing for Claude Code
When creating sessions for Claude Code:
1. **Clear Requirements**: Be specific and actionable
```json
{
"requirements": "Implement REST API endpoint POST /api/users with:\n- Request validation (email, password)\n- Password hashing with bcrypt\n- Store in PostgreSQL users table\n- Return JWT token\n- Handle duplicate email error",
"context": "Using Express.js, TypeScript, Prisma ORM. Follow existing auth patterns in src/middleware/auth.ts"
}
```
2. **Provide Context**: Reference existing code patterns
```json
{
"context": "Follow patterns in src/controllers/. Use existing error handling middleware. See src/types/user.ts for User interface."
}
```
3. **Use Session Types Effectively**:
- `analysis` - Before implementing, understand the codebase
- `implementation` - Write the actual code
- `testing` - Ensure code works and has coverage
- `review` - Final quality check
- `coordination` - For complex multi-part tasks
### Performance Tips
1. **Parallel Sessions**: Create independent sessions simultaneously
2. **Reuse Analysis**: Cache analysis results for similar tasks
3. **Smart Dependencies**: Only add dependencies when truly needed
4. **Batch Operations**: Group related sessions with metadata
## Troubleshooting
### Session Stuck in "pending"
- Check if dependencies are completed
- Verify Docker daemon is running
- Check system resources (CPU, memory)
- Use `session.get` to check dependency status
### Authentication Errors
- Verify Bearer token matches CLAUDE_WEBHOOK_SECRET
- Ensure Authorization header is properly formatted
- Check token hasn't been rotated
### Session Failures
- Review session output for error messages
- Check Docker container logs
- Verify repository access permissions
- Ensure Claude API credentials are valid
### Timeout Issues
- Default timeout is 30 minutes per session
- For longer tasks, break into smaller sessions
- Use custom timeout in options: `{"timeout": 3600}`
## Changelog
### v2.0.0 (2024-01-08)
- **BREAKING**: Removed orchestration endpoint (use session.create with type="coordination")
- **BREAKING**: Updated response structures (all data wrapped in `data.session` or `data.sessions`)
- Added enhanced session creation with metadata and options
- Added autoStart option for dependency-based execution
- Added timeout and notification options
- Improved dependency validation (filters invalid UUIDs)
### v1.0.0 (2024-01-06)
- Initial release with session management
- Support for 5 session types
- Dependency management
- Orchestration capabilities

50
package-lock.json generated
View File

@@ -9,7 +9,6 @@
"version": "0.1.1",
"dependencies": {
"@octokit/rest": "^22.0.0",
"@types/uuid": "^10.0.0",
"axios": "^1.6.2",
"body-parser": "^2.2.0",
"commander": "^14.0.0",
@@ -22,14 +21,15 @@
"uuid": "^11.1.0"
},
"devDependencies": {
"@babel/core": "^7.27.3",
"@babel/core": "^7.27.4",
"@babel/preset-env": "^7.27.2",
"@jest/globals": "^30.0.0-beta.3",
"@types/body-parser": "^1.19.5",
"@types/body-parser": "^1.19.6",
"@types/express": "^5.0.2",
"@types/jest": "^29.5.14",
"@types/node": "^22.15.23",
"@types/supertest": "^6.0.3",
"@types/uuid": "^10.0.0",
"@typescript-eslint/eslint-plugin": "^8.33.0",
"@typescript-eslint/parser": "^8.33.0",
"babel-jest": "^29.7.0",
@@ -86,20 +86,21 @@
}
},
"node_modules/@babel/core": {
"version": "7.27.3",
"resolved": "https://registry.npmjs.org/@babel/core/-/core-7.27.3.tgz",
"integrity": "sha512-hyrN8ivxfvJ4i0fIJuV4EOlV0WDMz5Ui4StRTgVaAvWeiRCilXgwVvxJKtFQ3TKtHgJscB2YiXKGNJuVwhQMtA==",
"version": "7.27.4",
"resolved": "https://registry.npmjs.org/@babel/core/-/core-7.27.4.tgz",
"integrity": "sha512-bXYxrXFubeYdvB0NhD/NBB3Qi6aZeV20GOWVI47t2dkecCEoneR4NPVcb7abpXDEvejgrUfFtG6vG/zxAKmg+g==",
"dev": true,
"license": "MIT",
"dependencies": {
"@ampproject/remapping": "^2.2.0",
"@babel/code-frame": "^7.27.1",
"@babel/generator": "^7.27.3",
"@babel/helper-compilation-targets": "^7.27.2",
"@babel/helper-module-transforms": "^7.27.3",
"@babel/helpers": "^7.27.3",
"@babel/parser": "^7.27.3",
"@babel/helpers": "^7.27.4",
"@babel/parser": "^7.27.4",
"@babel/template": "^7.27.2",
"@babel/traverse": "^7.27.3",
"@babel/traverse": "^7.27.4",
"@babel/types": "^7.27.3",
"convert-source-map": "^2.0.0",
"debug": "^4.1.0",
@@ -366,10 +367,11 @@
}
},
"node_modules/@babel/helpers": {
"version": "7.27.3",
"resolved": "https://registry.npmjs.org/@babel/helpers/-/helpers-7.27.3.tgz",
"integrity": "sha512-h/eKy9agOya1IGuLaZ9tEUgz+uIRXcbtOhRtUyyMf8JFmn1iT13vnl/IGVWSkdOCG/pC57U4S1jnAabAavTMwg==",
"version": "7.27.4",
"resolved": "https://registry.npmjs.org/@babel/helpers/-/helpers-7.27.4.tgz",
"integrity": "sha512-Y+bO6U+I7ZKaM5G5rDUZiYfUvQPUibYmAFe7EnKdnKBbVXDZxvp+MWOH5gYciY0EPk4EScsuFMQBbEfpdRKSCQ==",
"dev": true,
"license": "MIT",
"dependencies": {
"@babel/template": "^7.27.2",
"@babel/types": "^7.27.3"
@@ -379,10 +381,11 @@
}
},
"node_modules/@babel/parser": {
"version": "7.27.3",
"resolved": "https://registry.npmjs.org/@babel/parser/-/parser-7.27.3.tgz",
"integrity": "sha512-xyYxRj6+tLNDTWi0KCBcZ9V7yg3/lwL9DWh9Uwh/RIVlIfFidggcgxKX3GCXwCiswwcGRawBKbEg2LG/Y8eJhw==",
"version": "7.27.5",
"resolved": "https://registry.npmjs.org/@babel/parser/-/parser-7.27.5.tgz",
"integrity": "sha512-OsQd175SxWkGlzbny8J3K8TnnDD0N3lrIUtB92xwyRpzaenGZhxDvxN/JgU00U3CDZNj9tPuDJ5H0WS4Nt3vKg==",
"dev": true,
"license": "MIT",
"dependencies": {
"@babel/types": "^7.27.3"
},
@@ -1636,14 +1639,15 @@
}
},
"node_modules/@babel/traverse": {
"version": "7.27.3",
"resolved": "https://registry.npmjs.org/@babel/traverse/-/traverse-7.27.3.tgz",
"integrity": "sha512-lId/IfN/Ye1CIu8xG7oKBHXd2iNb2aW1ilPszzGcJug6M8RCKfVNcYhpI5+bMvFYjK7lXIM0R+a+6r8xhHp2FQ==",
"version": "7.27.4",
"resolved": "https://registry.npmjs.org/@babel/traverse/-/traverse-7.27.4.tgz",
"integrity": "sha512-oNcu2QbHqts9BtOWJosOVJapWjBDSxGCpFvikNR5TGDYDQf3JwpIoMzIKrvfoti93cLfPJEG4tH9SPVeyCGgdA==",
"dev": true,
"license": "MIT",
"dependencies": {
"@babel/code-frame": "^7.27.1",
"@babel/generator": "^7.27.3",
"@babel/parser": "^7.27.3",
"@babel/parser": "^7.27.4",
"@babel/template": "^7.27.2",
"@babel/types": "^7.27.3",
"debug": "^4.3.1",
@@ -3108,10 +3112,11 @@
}
},
"node_modules/@types/body-parser": {
"version": "1.19.5",
"resolved": "https://registry.npmjs.org/@types/body-parser/-/body-parser-1.19.5.tgz",
"integrity": "sha512-fB3Zu92ucau0iQ0JMCFQE7b/dv8Ot07NI3KaZIkIUNXq82k4eBAqUaneXfleGY9JWskeS9y+u0nXMyspcuQrCg==",
"version": "1.19.6",
"resolved": "https://registry.npmjs.org/@types/body-parser/-/body-parser-1.19.6.tgz",
"integrity": "sha512-HLFeCYgz89uk22N5Qg3dvGvsv46B8GLvKKo1zKG4NybA8U2DiEO3w9lqGg29t/tfLRJpJ6iQxnVw4OnB7MoM9g==",
"dev": true,
"license": "MIT",
"dependencies": {
"@types/connect": "*",
"@types/node": "*"
@@ -3315,6 +3320,7 @@
"version": "10.0.0",
"resolved": "https://registry.npmjs.org/@types/uuid/-/uuid-10.0.0.tgz",
"integrity": "sha512-7gqG38EyHgyP1S+7+xomFtL+ZNHcKv6DwNaCZmJmo1vgMugyF3TCnXVg4t1uk89mLNwnLtnY3TpOpCOyp1/xHQ==",
"dev": true,
"license": "MIT"
},
"node_modules/@types/yargs": {

4
package.json
View File

@@ -48,10 +48,10 @@
"uuid": "^11.1.0"
},
"devDependencies": {
"@babel/core": "^7.27.3",
"@babel/core": "^7.27.4",
"@babel/preset-env": "^7.27.2",
"@jest/globals": "^30.0.0-beta.3",
"@types/body-parser": "^1.19.5",
"@types/body-parser": "^1.19.6",
"@types/express": "^5.0.2",
"@types/jest": "^29.5.14",
"@types/node": "^22.15.23",

24
src/providers/claude/handlers/SessionHandler.ts
View File

@@ -11,6 +11,9 @@ import { randomUUID } from 'crypto';
const logger = createLogger('SessionHandler');
// UUID validation regex pattern
const UUID_REGEX = /^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$/i;
interface SessionCreatePayload {
type: 'session.create';
session: Partial<ClaudeSession>;
@@ -126,6 +129,27 @@ export class SessionHandler implements WebhookEventHandler<ClaudeWebhookPayload>
};
}
// Validate dependencies
if (partialSession.dependencies && partialSession.dependencies.length > 0) {
// Filter out invalid dependency values
const validDependencies = partialSession.dependencies.filter(dep => {
return dep && dep.trim() !== '' && dep.toLowerCase() !== 'none';
});
// Check that all remaining dependencies are valid UUIDs
const invalidDependencies = validDependencies.filter(dep => !UUID_REGEX.test(dep));
if (invalidDependencies.length > 0) {
return {
success: false,
error: `Invalid dependency IDs (not valid UUIDs): ${invalidDependencies.join(', ')}`
};
}
// Update dependencies to only include valid ones
partialSession.dependencies = validDependencies;
}
// Create full session object
const session: ClaudeSession = {
id: partialSession.id ?? randomUUID(),

6
src/providers/claude/services/SessionManager.ts
View File

@@ -181,6 +181,12 @@ export class SessionManager {
* Queue a session to start when dependencies are met
*/
async queueSession(session: ClaudeSession): Promise<void> {
// If session has no dependencies, start immediately
if (!session.dependencies || session.dependencies.length === 0) {
await this.startSession(session);
return;
}
// Check if all dependencies are completed
const allDependenciesMet = session.dependencies.every(depId => {
const dep = this.sessions.get(depId);

150
test/unit/providers/claude/handlers/SessionHandler.test.ts
View File

@@ -108,6 +108,156 @@ describe('SessionHandler', () => {
expect(response.success).toBe(false);
expect(response.error).toBe('Requirements are required for session creation');
});
it('should filter out invalid dependency values', async () => {
mockSessionManager.createContainer.mockResolvedValue('container-123');
const payload: ClaudeWebhookPayload = {
data: {
type: 'session.create',
session: {
project: {
repository: 'owner/repo',
requirements: 'Test requirements'
},
dependencies: ['', ' ', 'none', 'None', 'NONE', '550e8400-e29b-41d4-a716-446655440000']
}
},
metadata: {}
};
const response = await handler.handle(payload, mockContext);
expect(response.success).toBe(true);
// Only the valid UUID should remain
expect(response.data?.session.dependencies).toEqual(['550e8400-e29b-41d4-a716-446655440000']);
});
it('should fail with invalid UUID format in dependencies', async () => {
const payload: ClaudeWebhookPayload = {
data: {
type: 'session.create',
session: {
project: {
repository: 'owner/repo',
requirements: 'Test requirements'
},
dependencies: ['not-a-uuid', 'invalid-uuid-format', '12345']
}
},
metadata: {}
};
const response = await handler.handle(payload, mockContext);
expect(response.success).toBe(false);
expect(response.error).toBe(
'Invalid dependency IDs (not valid UUIDs): not-a-uuid, invalid-uuid-format, 12345'
);
});
it('should accept valid UUID dependencies', async () => {
mockSessionManager.createContainer.mockResolvedValue('container-123');
const validUUIDs = [
'550e8400-e29b-41d4-a716-446655440000',
'f47ac10b-58cc-4372-a567-0e02b2c3d479',
'6ba7b810-9dad-11d1-80b4-00c04fd430c8'
];
const payload: ClaudeWebhookPayload = {
data: {
type: 'session.create',
session: {
project: {
repository: 'owner/repo',
requirements: 'Test requirements'
},
dependencies: validUUIDs
}
},
metadata: {}
};
const response = await handler.handle(payload, mockContext);
expect(response.success).toBe(true);
expect(response.data?.session.dependencies).toEqual(validUUIDs);
});
it('should handle mixed valid and invalid dependencies', async () => {
const payload: ClaudeWebhookPayload = {
data: {
type: 'session.create',
session: {
project: {
repository: 'owner/repo',
requirements: 'Test requirements'
},
dependencies: [
'550e8400-e29b-41d4-a716-446655440000', // valid
'', // empty - filtered out
'none', // filtered out
'not-a-uuid', // invalid format
'f47ac10b-58cc-4372-a567-0e02b2c3d479' // valid
]
}
},
metadata: {}
};
const response = await handler.handle(payload, mockContext);
expect(response.success).toBe(false);
expect(response.error).toBe('Invalid dependency IDs (not valid UUIDs): not-a-uuid');
});
it('should handle empty dependencies array', async () => {
mockSessionManager.createContainer.mockResolvedValue('container-123');
const payload: ClaudeWebhookPayload = {
data: {
type: 'session.create',
session: {
project: {
repository: 'owner/repo',
requirements: 'Test requirements'
},
dependencies: []
}
},
metadata: {}
};
const response = await handler.handle(payload, mockContext);
expect(response.success).toBe(true);
expect(response.data?.session.dependencies).toEqual([]);
});
it('should handle dependencies with only filtered values', async () => {
mockSessionManager.createContainer.mockResolvedValue('container-123');
const payload: ClaudeWebhookPayload = {
data: {
type: 'session.create',
session: {
project: {
repository: 'owner/repo',
requirements: 'Test requirements'
},
dependencies: ['', ' ', 'none', 'None']
}
},
metadata: {}
};
const response = await handler.handle(payload, mockContext);
expect(response.success).toBe(true);
// All values filtered out, should result in empty array
expect(response.data?.session.dependencies).toEqual([]);
});
});
describe('session.get', () => {