* 🔧 refactor: Update settings to use 'as const' for improved type safety and make gpt-4o-mini default model (cheapest)
* 📖 docs: Update README to reflect support for GPT-4.5 in image analysis feature
* 🔧 refactor: Update model handling to use default settings and improve encoding logic
* 🔧 refactor: Enhance model version extraction logic for improved compatibility with future GPT and omni models
* feat: GPT-4.5 tx/token update, vision support
* fix: $ref resolution logic in OpenAPI handling
* feat: add new 'anthropic-beta' header for Claude 3.7 to include token-efficient tools; ref: https://docs.anthropic.com/en/docs/build-with-claude/tool-use/token-efficient-tool-use
* fix: handling of top_k and top_p parameters for Claude-3.7 models (allowed without reasoning)
* feat: bump @librechat/agents for Anthropic Reasoning support
* fix: update reasoning handling for OpenRouter integration
* fix: enhance agent token spending logic to include cache creation and read details
* fix: update logic for thinking status in ContentParts component
* refactor: improve agent title handling
* chore: bump @librechat/agents to version 2.1.7 for parallel tool calling for Google models
* chore: include all assets for service worker, remove unused tsconfig.node.json, eslint ignore vite config
* chore: exclude image files from service worker caching
* refactor: simplify googleSchema transformation and error handling
* fix: max output tokens cap for 3.7 models
* fix: skip index fixing in CI, development, and test environments
* ci: add maxOutputTokens handling tests for Claude models
* refactor: drop top_k and top_p parameters for claude-3.7 in AnthropicClient and add tests for new behavior
* refactor: conditionally include top_k and top_p parameters for non-claude-3.7 models
* ci: add unit tests for getLLMConfig function with various model options
* chore: remove all OPENROUTER_API_KEY legacy logic
* refactor: optimize stream chunk handling
* feat: reset model parameters button
* refactor: remove unused examples field from convoSchema and presetSchema
* chore: update librechat-data-provider version to 0.7.6993
* refactor: move excludedKeys set to data-provider for better reusability
* feat: enhance saveMessageToDatabase to handle unset fields and fetched conversation state
* feat: add 'iconURL' and 'greeting' to excludedKeys in data provider config
* fix: add optional chaining to user ID retrieval in getConvo call
* chore: remove auto-focus for now
* refactor: move react-hook-form Controller Logic to AgentSelect from AgentPanel
* fix: a11y focus issue with AgentSelect by never replacing it in its component tree
* fix: maintain ComboBox focus and force re-render on agent ID change in AgentPanel
* chore: `gemini-2.0-flash-lite-preview-02-05` (deprecated)
* refactor: extract cache control logic and headers configuration to helper functions in AnthropicClient
* feat: anthropic agents prompt caching
* chore: bump @librechat/agents and related dependencies
* fix: typo
* refactor: Export AuthContext from AuthContextProvider
* refactor: Update useHasAccess to utilize useContext for AuthContext
* refactor: Enhance type definitions in useHasAccess for better type safety
* fix: missing console color methods for admin scripts
* feat: Anthropic Claude 3.7 Sonnet Support
* feat: update eventsource to version 3.0.2 and upgrade @modelcontextprotocol/sdk to 1.4.1
* fix: update DynamicInput to handle number type and improve initial value logic
* feat: first pass Anthropic Reasoning (Claude 3.7)
* feat: implement streaming support in AnthropicClient with reasoning UI handling
* feat: add missing xAI (grok) models
* feat: Add 'Run Code' and 'Temporary Chat' permissions to role management
* feat: Add NextFunction typedef to api/typedefs.js
* feat: Add temporary chat and run code permissions to role schema
* refactor: Enhance access check middleware with logging for permission errors and better typing
* refactor: Set default value of USE permission to true in multiConvoPermissionsSchema
* refactor: Implement checkAccess function for separation of permission validation logic from middleware
* feat: Integrate permission checks for tool execution and enhance Markdown code block with execution capability
* fix: Convert REDIS_MAX_LISTENERS to a number, closes#5979
* 🔈 fix: Refactor AudioRecorder to use button element for improved accessibility
* 🔈 fix: Update conversation menu button ID for improved accessibility
* 🔈 fix: Remove redundant role attribute from SidePanel for improved accessibility
* feat: Add robots.txt to manage web crawler access
* feat: Update index.html with meta description and remove legacy file
* fix: resolve merge conflicts.
* fix: resolve merge conflicts.
* fix: resolve merge conflicts.
* feat: Update index.html with meta description and remove legacy file
* 🔧 feat: Add legacy support and improve SidePanel accessibility
* 🔧 feat: Integrate express-static-gzip for improved static file serving and add new plugins for enhanced functionality
* 🔧 chore: Remove unused HTML ESLint plugin configurations and dependencies
---------
Co-authored-by: Ruben Talstra <RubenTalstra1211@outlook.com>
* fix: Add 192x192 icon to allow the PWA to install on Android devices using Chrome.
* fix: Use less whitespace on icon-192x192.png. Re-generate maskable-icon.png and apple-touch-icon-180x180.png to be higher quality, cripser and use less kilobytes.
The workflow now only runs on pull requests that modify:
- The root `package.json` or `package-lock.json` file
- Any file under the client folder
- Any file under the api folder
* style: Enhance ControlCombobox with Carat Display, ClassName, and Disabled State
* refactor(ModelPanel): replace SelectDropdown with ControlCombobox for improved accessibility
* style: Adjust padding and positioning in ModelPanel for improved layout
* style(ControlCombobox): add containerClassName and iconSide props for enhanced customization
* style(ControlCombobox): add iconClassName prop for customizable icon styling
* refactor(AgentPanel): enhance layout with new button for creating agents and adjust structure for better alignment
* refactor(AgentSelect): replace SelectDropDown with ControlCombobox for improved accessibility and layout
* feat(translation): add new translation key for improved UI clarity
* style(AgentSwitcher, AssistantSwitcher): add iconClassName prop for customizable icon styling
* refactor(AgentPanelSkeleton): improve layout of skeleton components to match new visual structure
* style(AgentPanel, AgentPanelSkeleton): add margin to flex container for improved layout consistency
* a11y(AgentSelect, ControlCombobox): add selectId prop for preventing focus going to start to page after agent selection
* fix(AgentSelect): update SELECT_ID constant for improved clarity in component identification
* fix(GoogleClient): update type annotation, add abort handling for content generation requests, catch "uncaught" abort errors and GoogleGenerativeAI errors from `@google/generative-ai`
* refactor: Improve MeiliSearch integration with environment-based configuration for running index sync
* chore: Remove Question issue template from GitHub repository
* feat: Enable indexing in MeiliSearch configuration and clean up error handling in indexSync
* feat: Update .env.example to include optional indexing configuration
* refactor: rename env var for disabling index sync to MEILI_NO_SYNC
* Added the option to change the default trusted proxy
* feat: Add TRUST_PROXY configuration to .env.example for reverse proxy settings
* feat: Enhance Redis support with cluster configuration and TLS options
* feat(redis): add cluster support, environment config and url mapping
- Add Redis cluster configuration with isEnabled flag
- Configure prefix and max listeners settings
- Improve code formatting and readability
- Fix URL vs host parameter handling
- Update environment variables and regex patterns
---------
Co-authored-by: Gil Assunção <gil.assuncao@parceiros.nos.pt>
Co-authored-by: Pedro Reis <pedro.malheiro@parceiros.nos.pt>
Co-authored-by: João Trigo Soares <joao.soares@parceiros.nos.pt>
* ✨ feat: Enhance UI Components with Shadows and Accessibility Improvements
* 🔧 fix: Correct Category Labels and Values in API Model & Adjust Button Class in Prompt List
* 🔧 refactor: handle full path for code env. file re-upload
* fix: update react-resizable-panels to version 2.1.7 to resolve error thrown on unmount of artifacts; ref: https://github.com/bvaughn/react-resizable-panels/issues/372
* refactor: replace promptPrefix with systemMessage in GoogleClient for improved clarity, and to prevent saving LibreChat feature-specific instructions to the user's custom instructions
* feat: started with automated CHANGELOG.md
* fix: no `configuration.json` found
* refactor: `configuration.json`
* fix: missing label `configuration.json`
* fix: missing label `configuration.json`
* fix: missing label `configuration.json`
* fix: missing label `configuration.json`
* fix: missing label `configuration.json`
* ci: test new workflow action
* ci: test new workflow action
* ci: test new workflow action
* feat: working CHANGELOG.md generation
* feat: working CHANGELOG.md generation
* feat: working CHANGELOG.md generation
* feat: working CHANGELOG.md generation
* feat: working CHANGELOG.md generation
* feat: working CHANGELOG.md generation
* feat: working CHANGELOG.md generation
* fix: separate release and Unreleased workflows CHANGELOG.md generation
* fix: separate release and Unreleased workflows CHANGELOG.md generation
* fix: separate release and Unreleased workflows CHANGELOG.md generation
* fix: separate release and Unreleased workflows CHANGELOG.md generation
* fix: separate release and Unreleased workflows CHANGELOG.md generation
* fix: separate release and Unreleased workflows CHANGELOG.md generation
* fix: separate release and Unreleased workflows CHANGELOG.md generation
* fix: separate release and Unreleased workflows CHANGELOG.md generation
* fix: separate release and Unreleased workflows CHANGELOG.md generation
* fix: separate release and Unreleased workflows CHANGELOG.md generation
* fix: separate release and Unreleased workflows CHANGELOG.md generation
* fix: separate release and Unreleased workflows CHANGELOG.md generation
* fix: separate release and Unreleased workflows CHANGELOG.md generation
* fix: separate release and Unreleased workflows CHANGELOG.md generation
* fix: separate release and Unreleased workflows CHANGELOG.md generation
* fix: separate release and Unreleased workflows CHANGELOG.md generation
* fix: separate release and Unreleased workflows CHANGELOG.md generation
* fix: separate release and Unreleased workflows CHANGELOG.md generation
* fix: separate release and Unreleased workflows CHANGELOG.md generation
* fix: separate release and Unreleased workflows CHANGELOG.md generation
* fix: separate release and Unreleased workflows CHANGELOG.md generation
* fix: separate release and Unreleased workflows CHANGELOG.md generation
* fix: separate release and Unreleased workflows CHANGELOG.md generation
* refactor: only trigger the `unreleased-changelog` action on push to `main`
and `generate-release-changelog` only when pushing a tag with `v*.*.*`
* refactor: Runs only every Monday at 00:00 UTC
* refactor: Improve error logging for file upload and processing functions to prevent verbosity
* refactor: Add uploads directory to Docker Compose to persist file uploads
* refactor: `addAgentResourceFile` to handle edge case of non-existing `tool_resource` array
* refactor: Remove version specification from deploy-compose.yml
* refactor: Prefix filenames with file_id to ensure uniqueness in file uploads
* refactor: Enhance error handling in deleteVectors to log warnings for non-404 errors
* refactor: Limit file search results to top 5 based on relevance score
* 🌍 i18n: Update translation.json with latest translations
---------
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
* 🔒 feat: add Two-Factor Authentication (2FA) with backup codes & QR support (#5684)
* working version for generating TOTP and authenticate.
* better looking UI
* refactored + better TOTP logic
* fixed issue with UI
* fixed issue: remove initial setup when closing window before completion.
* added: onKeyDown for verify and disable
* refactored some code and cleaned it up a bit.
* refactored some code and cleaned it up a bit.
* refactored some code and cleaned it up a bit.
* refactored some code and cleaned it up a bit.
* fixed issue after updating to new main branch
* updated example
* refactored controllers
* removed `passport-totp` not used.
* update the generateBackupCodes function to generate 10 codes by default:
* update the backup codes to an object.
* fixed issue with backup codes not working
* be able to disable 2FA with backup codes.
* removed new env. replaced with JWT_SECRET
* ✨ style: improved a11y and style for TwoFactorAuthentication
* 🔒 fix: small types checks
* ✨ feat: improve 2FA UI components
* fix: remove unnecessary console log
* add option to disable 2FA with backup codes
* - add option to refresh backup codes
- (optional) maybe show the user which backup codes have already been used?
* removed text to be able to merge the main.
* removed eng tx to be able to merge
* fix: migrated lang to new format.
* feat: rewrote whole 2FA UI + refactored 2FA backend
* chore: resolving conflicts
* chore: resolving conflicts
* fix: missing packages, because of resolving conflicts.
* fix: UI issue and improved a11y
* fix: 2FA backup code not working
* fix: update localization keys for UI consistency
* fix: update button label to use localized text
* fix: refactor backup codes regeneration and update localization keys
* fix: remove outdated translation for shared links management
* fix: remove outdated 2FA code prompts from translation.json
* fix: add cursor styles for backup codes item based on usage state
* fix: resolve conflict issue
* fix: resolve conflict issue
* fix: resolve conflict issue
* fix: missing packages in package-lock.json
* fix: add disabled opacity to the verify button in TwoFactorScreen
* ⚙ fix: update 2FA logic to rely on backup codes instead of TOTP status
* ⚙️ fix: Simplify user retrieval in 2FA logic by removing unnecessary TOTP secret query
* ⚙️ test: Add unit tests for TwoFactorAuthController and twoFactorControllers
* ⚙️ fix: Ensure backup codes are validated as an array before usage in 2FA components
* ⚙️ fix: Update module path mappings in tests to use relative paths
* ⚙️ fix: Update moduleNameMapper in jest.config.js to remove the caret from path mapping
* ⚙️ refactor: Simplify import paths in TwoFactorAuthController and twoFactorControllers test files
* ⚙️ test: Mock twoFactorService methods in twoFactorControllers tests
* ⚙️ refactor: Comment out unused imports and mock setups in test files for two-factor authentication
* ⚙️ refactor: removed files
* refactor: Exclude totpSecret from user data retrieval in AuthController, LoginController, and jwtStrategy
* refactor: Consolidate backup code verification to apply DRY and remove default array in user schema
* refactor: Enhance two-factor authentication ux/flow with improved error handling and loading state management, prevent redirect to /login
---------
Co-authored-by: Marco Beretta <81851188+berry-13@users.noreply.github.com>
Co-authored-by: Danny Avila <danny@librechat.ai>
* refactor: Ensure Axios Errors are less Verbose if No Response
* refactor: Improve error handling in logAxiosError function
* fix: Prevent ModelSelect from rendering for Agent Endpoints
* refactor: Enhance logging functions with type parameter for better clarity
* refactor: Update buildDefaultConvo function to use optional endpoint parameter since we pass a default value for undefined
* refactor: Replace console logs with logger warnings and errors in useNavigateToConvo hook, and handle removed endpoint edge case
* chore: import order
* chore: bump https-proxy-agent and @librechat/agents
* refactor: Improve error logging in OllamaClient for API fetch failures
* feat: Add DeepSeek provider support and enhance provider name handling
* refactor: Use Providers.OLLAMA constant for model name check in fetchModels function
* feat: Enhance formatAgentMessages to handle reasoning content type
* feat: OpenRouter Agent Reasoning
* hard work and dedicationgit add .env.example :)
* fix: Handle Google social login with missing last name
Social login with Google was previously displaying 'undefined' when
a user's last name was empty or not provided.
Changes:
- Conditionally render last name only if it exists
- Prevent displaying 'undefined' when last name is missing
* fix: add missing file endings for developers yml,yaml and log
---------
Co-authored-by: Mohamed Al-Duraji <mbalduraji@college.harvard.edu>
Co-authored-by: Deepak Kendole <deepakdpk101@gmail.com>
Co-authored-by: Peter Rothlaender <peter.rothlaender@ginkgo.com>
* fix: improve file handling by preventing memoization issues, providing config values at run time
* 🌍 i18n: Update translation.json with latest translations
* fix: Missing Translations in Prompt Filters in Prompt Library
* fix: fixed issue with `zh`
feat: added `Estonian` language option
* fix: test for `i18n.ts`
* refactor: `pt` --> `pt-BR` and `pt-PT`
* feat: request access to another language. default is only one language during invite.
Ariakit Combobox was not working well with several virtualization libraries as automated focus management was conflicting with scrolling/styling required of other virtualization methods. The entire strategy was replaced using experimental ariakit virtualization component `SelectRenderer`
Performance of component was also improved as a result of latest ariakit lib changes
* 📦 chore: Update @librechat/agents to version 2.0.5
* fix: Update error handling in AskController and EditController to include overrideParentMessageId when catching errors
* fix: Update parentMessageId assignment in AgentController to prioritize overrideParentMessageId
* 🌍 i18n: Update translation.json with latest translations
---------
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
* chore: enforcing language keys to adhere to the new standard.
* chore: enforcing i18n forbids to write plain text in JSX markup
* chore: enforcing i18n forbids to write plain text in JSX markup
* fix: ci with checkbox for unused keys :)
* refactor: removed all the unused `i18n` keys
* refactor: remove artifacts toggle
* refactor: allow hiding side panel while allowing artifacts view
* chore: rename SidePanelGroup to SidePanel for clarity
* Revert "refactor: remove artifacts toggle"
This reverts commit f884c2cfcd.
* feat: add artifacts capability to agent configuration
* refactor: conditionally set artifacts mode based on endpoint type
* feat: Artifacts Capability for Agents
* refactor: enhance getStreamText method to handle intermediate replies and add `stream_options` for openai/azure
* feat: localize progress text and improve UX in CodeAnalyze and ExecuteCode components for expanding analysis
* chore: started with updating packages to new version.
(a lot are outdated)
* fix: eslint to pass when no matching files changed.
* fix: eslint to pass when no matching files changed.
* fix: issue with strict in actions with the test
* chore: update more dependencies
* feat: scan for unused imported packages
* feat: scan for unused imported packages
* feat: scan for unused imported packages
* feat: scan for unused imported packages
* feat: scan for unused imported packages
* feat: scan for unused imported packages
* feat: scan for unused imported packages
* chore: removed Unused NPM Packages
* chore: removed Unused NPM Packages in `client/package.json`
* chore: removed Unused NPM Packages in `client/package.json`
* chore: Only comments when there are actual unused dependencies.
* chore: Only comments when there are actual unused dependencies.
* ci: test if it detects unused packages.
* ci: removed unused packages.
* ci: both static and dynamic i18n keys
* ci: revert back to no dynamic. use official nesting
* chore: remove override package: ajv
* feat: manage an 'x-strict': true attribute in openapi specs for assistants which generates function calls with stric attribute
* fix typo and lint errors
---------
Co-authored-by: Olivier Schiavo <olivier.schiavo@wengo.com>
* created: checks for unused i18n keys in codebase.
* updated the file to test this new check on this PR.
* updated the file to test this new check on this PR.
* updated the file to test this new check on this PR.
* updated the file to test this new check on this PR.
* updated the file to test this new check on this PR.
* removed the testing option. will now only run in `client/src/**`
* ✨feat: OAuth for Actions
* WIP: PoC flow state manager
* refactor: Add identifier field to token model from action schema
* chore: fix potential file type issues
* ci: fix type issue with action metadata auth
* fix: ensure FlowManagerOptions has a default ttl value
* WIP: OAUTH actions
* WIP: first pass OAuth Action
* fix: standardize identifier usage in OAuth flow handling
* fix: update token retrieval to include userId in query and use correct identifier
* refacotr: update token retrieval to use userId for OAuth token query
* feat: Tool Call Auth styling
* fix: streamline token creation and add type field to token schema
* refactor: cleanup OAuth flow by encrypting client credentials and ensuring oauth operations only run under condition
* refactor: use encrypted credentials in OAuth callback
* fix: update Token collection indexes to use expiresAt TTL index and not createdAt legacy index
* refactor: enhance Token index cleanup by improving logging and removing redundant index creation logic
* refactor: remove unused OAuth login route and related logic for improved clarity
* refactor: replace fetch with axios for OAuth token exchange and improve error handling
* refactor: better UX after authentication before oauth tool execution
* refactor: implement cleanup handlers for FlowStateManager intervals to enhance resource management
* refactor: encrypt OAuth tokens before storing and decrypt upon retrieval for enhanced security
* refactor: enhance authentication success page with improved styling and countdown feature
* refactor: add response_type parameter to OAuth redirect URI for improved compatibility
* chore: update translation.json new localizations
* chore: remove unused OGDialog import from OGDialogTemplate component
* refactor: Actions Auth using new Dialog styling, use same component with Agents/Assistants
* refactor: update removeNullishValues function to support removal of empty strings and adjust transform usage in schemas
* chore: bump version of librechat-data-provider to 0.7.6991
* refactor: integrate removeNullishValues function to clean metadata before encryption in agent and assistant routes
* refactor: update OAuth input fields to use 'password' type for better security
* refactor: update localization placeholders for sign-in message to use double curly braces
* refactor: add access_type parameter for offline access in createActionTool function
* refactor: implement handleOAuthToken function for token management and encryption
* feat: refresh token support
* refactor: add default expiration for access token and error handling for missing token
* feat: localizations for ActionAuth
* refactor: set refresh token expiration to null to not expire if expiry never given
* fix: prevent crash fromerror within async handleAbortError in AskController, EditController, and AgentController
* feat: Action Callback URL
* 🌍 i18n: Update translation.json with latest translations
* refactor: handle errors in flow state checking to prevent unhandled promise rejections
* fix: improve flow state concurrency to prevent multiple token creation calls
* refactor: RequestExecutor to use separate axios instance
* refactor: improve concurrency flows by keeping completed state until TTL expiry
* refactor: increase TTL for flow state management and adjust monitoring interval
* ci: mock axios instance creation in actions spec
* feat: add Babel and Jest configuration files; implement FlowStateManager tests with concurrency handling
* chore: add disableOAuth prop to ActionsAuth (not implemented for Assistants yet)
---------
Co-authored-by: Danny Avila <danny@librechat.ai>
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
