import { BaseExecutor } from "./base.js"; import { PROVIDERS } from "../config/providers.js"; import { OAUTH_ENDPOINTS, GITHUB_COPILOT } from "../config/appConstants.js"; import { HTTP_STATUS } from "../config/runtimeConfig.js"; import { openaiToOpenAIResponsesRequest } from "../translator/request/openai-responses.js"; import { openaiResponsesToOpenAIResponse } from "../translator/response/openai-responses.js"; import { initState } from "../translator/index.js"; import { parseSSELine, formatSSE } from "../utils/streamHelpers.js"; import { proxyAwareFetch } from "../utils/proxyFetch.js"; import crypto from "crypto"; export class GithubExecutor extends BaseExecutor { constructor() { super("github", PROVIDERS.github); this.knownCodexModels = new Set(); } buildUrl(model, stream, urlIndex = 0) { return this.config.baseUrl; } buildHeaders(credentials, stream = true) { const token = credentials.copilotToken || credentials.accessToken; return { "Authorization": `Bearer ${token}`, "Content-Type": "application/json", "copilot-integration-id": "vscode-chat", "editor-version": `vscode/${GITHUB_COPILOT.VSCODE_VERSION}`, "editor-plugin-version": `copilot-chat/${GITHUB_COPILOT.COPILOT_CHAT_VERSION}`, "user-agent": GITHUB_COPILOT.USER_AGENT, "openai-intent": "conversation-panel", "x-github-api-version": GITHUB_COPILOT.API_VERSION, "x-request-id": crypto.randomUUID?.() || `${Date.now()}-${Math.random().toString(36).slice(2)}`, "x-vscode-user-agent-library-version": "electron-fetch", "X-Initiator": "user", "Accept": stream ? "text/event-stream" : "application/json" }; } // Sanitize messages for GitHub Copilot /chat/completions endpoint. // The endpoint only accepts 'text' and 'image_url' content part types. // Tool-related content (tool_use, tool_result, thinking) must be serialized as text. sanitizeMessagesForChatCompletions(body) { if (!body?.messages) return body; const sanitized = { ...body }; // Handle response_format for Claude models via GitHub // GitHub's internal translation doesn't respect response_format, so we inject it as a system prompt // AND prepend a reminder to the last user message for maximum effectiveness if (body.response_format && body.model?.includes('claude')) { const responseFormat = body.response_format; let systemInstruction = ''; if (responseFormat.type === 'json_schema' && responseFormat.json_schema?.schema) { systemInstruction = 'CRITICAL: You must ONLY output raw JSON. Never use markdown code blocks. Never use backticks. Never wrap JSON in triple backticks. Output ONLY the raw JSON object.'; } else if (responseFormat.type === 'json_object') { systemInstruction = 'CRITICAL: You must ONLY output raw JSON. Never use markdown code blocks. Never use backticks.'; } if (systemInstruction) { // Add to system message const systemIdx = body.messages.findIndex(m => m.role === 'system'); if (systemIdx >= 0) { body.messages[systemIdx].content = systemInstruction + '\n\n' + body.messages[systemIdx].content; } else { body.messages.unshift({ role: 'system', content: systemInstruction }); } // Also prepend to the last user message as a reminder const lastUserIdx = body.messages.map((m, i) => m.role === 'user' ? i : -1).filter(i => i >= 0).pop(); if (lastUserIdx >= 0) { const userMsg = body.messages[lastUserIdx]; const userContent = typeof userMsg.content === 'string' ? userMsg.content : JSON.stringify(userMsg.content); userMsg.content = 'Respond with ONLY raw JSON (no markdown, no backticks, no code blocks): ' + userContent; } } } sanitized.messages = body.messages.map(msg => { // assistant messages with only tool_calls have content: null — leave as-is if (!msg.content) return msg; // String content is always fine if (typeof msg.content === "string") return msg; // Array content: filter/convert unsupported part types if (Array.isArray(msg.content)) { const cleanContent = msg.content .map(part => { if (part.type === "text") return part; if (part.type === "image_url") return part; // Serialize tool_use, tool_result, thinking, etc. as text const text = part.text || part.content || JSON.stringify(part); return { type: "text", text: typeof text === "string" ? text : JSON.stringify(text) }; }) .filter(part => part.text !== ""); // remove empty text parts // If all content was stripped (e.g. only tool_result with no text), drop content return { ...msg, content: cleanContent.length > 0 ? cleanContent : null }; } return msg; }); return sanitized; } // Newer OpenAI models (gpt-5+, o1, o3, o4) require max_completion_tokens instead of max_tokens requiresMaxCompletionTokens(model) { return /gpt-5|o[134]-/i.test(model); } // Some models (like gpt-5.4) don't support the temperature parameter supportsTemperature(model) { // gpt-5.4 and similar newer models don't support temperature return !/gpt-5\.4/i.test(model); } // GitHub Copilot /chat/completions rejects Claude-style thinking payloads // (OpenClaw sends thinking: { type: "enabled" } → upstream 400). // GPT-5 family on Copilot DOES honor reasoning_effort, so only strip for Claude. (#713) supportsThinking(model) { return !/claude/i.test(model); } // reasoning_effort works for GPT-5 family AND Claude Opus 4.6 / Sonnet 4.6 // on GitHub Copilot. Only strip for models that don't support it: // Claude Haiku 4.5, Claude Opus 4.7 (rejected upstream). supportsReasoningEffort(model) { const m = model.toLowerCase(); // Claude models that DO support reasoning_effort if (/claude.*opus.*4\.6/i.test(m) || /claude.*sonnet.*4\.6/i.test(m)) return true; // All other Claude models: strip if (/claude/i.test(model)) return false; // GPT-5 family, Gemini, etc.: keep return true; } transformRequest(model, body, stream, credentials) { const transformed = { ...body }; if (this.requiresMaxCompletionTokens(model) && transformed.max_tokens !== undefined) { transformed.max_completion_tokens = transformed.max_tokens; delete transformed.max_tokens; } // Strip temperature for models that don't support it if (!this.supportsTemperature(model) && transformed.temperature !== undefined) { delete transformed.temperature; } // Always strip Claude-style thinking payload (Copilot doesn't understand it) if (!this.supportsThinking(model)) { delete transformed.thinking; } // "none" means no thinking — strip it so models that don't support "none" don't 400 if (transformed.reasoning_effort === "none") { delete transformed.reasoning_effort; } // Strip reasoning_effort only for models that reject it if (!this.supportsReasoningEffort(model) && transformed.reasoning_effort !== undefined) { delete transformed.reasoning_effort; } return transformed; } async execute(options) { const { model, log } = options; // Only use /responses for models that are explicitly known to need it (e.g. gpt codex models) if (this.knownCodexModels.has(model)) { log?.debug("GITHUB", `Using cached /responses route for ${model}`); return this.executeWithResponsesEndpoint(options); } // Sanitize messages before sending to /chat/completions // This handles Claude models on GitHub Copilot which reject non-text/image_url content types const sanitizedOptions = { ...options, body: this.sanitizeMessagesForChatCompletions(options.body) }; const result = await super.execute({ ...sanitizedOptions, proxyOptions: options.proxyOptions || null }); if (result.response.status === HTTP_STATUS.BAD_REQUEST) { const errorBody = await result.response.clone().text(); if (errorBody.includes("not accessible via the /chat/completions endpoint") || errorBody.includes("The requested model is not supported")) { log?.warn("GITHUB", `Model ${model} requires /responses. Switching...`); this.knownCodexModels.add(model); return this.executeWithResponsesEndpoint(options); } } return result; } async executeWithResponsesEndpoint({ model, body, stream, credentials, signal, log, proxyOptions = null }) { const url = this.config.responsesUrl; const headers = this.buildHeaders(credentials, stream); const transformedBody = openaiToOpenAIResponsesRequest(model, body, stream, credentials); log?.debug("GITHUB", "Sending translated request to /responses"); const response = await proxyAwareFetch(url, { method: "POST", headers, body: JSON.stringify(transformedBody), signal }, proxyOptions); if (!response.ok) { return { response, url, headers, transformedBody }; } const state = initState("openai-responses"); state.model = model; const decoder = new TextDecoder(); let buffer = ""; const transformStream = new TransformStream({ async transform(chunk, controller) { buffer += decoder.decode(chunk, { stream: true }); const lines = buffer.split("\n"); buffer = lines.pop() || ""; for (const line of lines) { const trimmed = line.trim(); if (!trimmed) continue; const parsed = parseSSELine(trimmed); if (!parsed) continue; if (parsed.done && stream === true) { controller.enqueue(new TextEncoder().encode("data: [DONE]\n\n")); continue; } const converted = openaiResponsesToOpenAIResponse(parsed, state); if (converted) { const sseString = formatSSE(converted, "openai"); controller.enqueue(new TextEncoder().encode(sseString)); } } }, flush(controller) { if (buffer.trim()) { const parsed = parseSSELine(buffer.trim()); if (parsed && !parsed.done) { const converted = openaiResponsesToOpenAIResponse(parsed, state); if (converted) { controller.enqueue(new TextEncoder().encode(formatSSE(converted, "openai"))); } } } } }); if (!response.body) { return { response: new Response("", { status: response.status, headers: response.headers }), url, headers, transformedBody }; } const convertedStream = response.body.pipeThrough(transformStream); return { response: new Response(convertedStream, { status: response.status, statusText: response.statusText, headers: response.headers }), url, headers, transformedBody }; } async refreshCopilotToken(githubAccessToken, log, proxyOptions = null) { try { const response = await proxyAwareFetch("https://api.github.com/copilot_internal/v2/token", { headers: { "Authorization": `token ${githubAccessToken}`, "User-Agent": GITHUB_COPILOT.USER_AGENT, "Editor-Version": `vscode/${GITHUB_COPILOT.VSCODE_VERSION}`, "Editor-Plugin-Version": `copilot-chat/${GITHUB_COPILOT.COPILOT_CHAT_VERSION}`, "Accept": "application/json", "x-github-api-version": GITHUB_COPILOT.API_VERSION } }, proxyOptions); if (!response.ok) { const errorText = await response.text(); log?.error?.("TOKEN", `Copilot token refresh failed: ${response.status} ${errorText}`); return null; } const data = await response.json(); log?.info?.("TOKEN", "Copilot token refreshed"); return { token: data.token, expiresAt: data.expires_at }; } catch (error) { log?.error?.("TOKEN", `Copilot refresh error: ${error.message}`); return null; } } async refreshGitHubToken(refreshToken, log, proxyOptions = null) { try { const params = { grant_type: "refresh_token", refresh_token: refreshToken, client_id: this.config.clientId, }; if (this.config.clientSecret) { params.client_secret = this.config.clientSecret; } const response = await proxyAwareFetch(OAUTH_ENDPOINTS.github.token, { method: "POST", headers: { "Content-Type": "application/x-www-form-urlencoded", "Accept": "application/json" }, body: new URLSearchParams(params) }, proxyOptions); if (!response.ok) return null; const tokens = await response.json(); log?.info?.("TOKEN", "GitHub token refreshed"); return { accessToken: tokens.access_token, refreshToken: tokens.refresh_token || refreshToken, expiresIn: tokens.expires_in }; } catch (error) { log?.error?.("TOKEN", `GitHub refresh error: ${error.message}`); return null; } } async refreshCredentials(credentials, log, proxyOptions = null) { let copilotResult = await this.refreshCopilotToken(credentials.accessToken, log, proxyOptions); if (!copilotResult && credentials.refreshToken) { const githubTokens = await this.refreshGitHubToken(credentials.refreshToken, log, proxyOptions); if (githubTokens?.accessToken) { copilotResult = await this.refreshCopilotToken(githubTokens.accessToken, log, proxyOptions); if (copilotResult) { return { ...githubTokens, copilotToken: copilotResult.token, copilotTokenExpiresAt: copilotResult.expiresAt }; } return githubTokens; } } if (copilotResult) { return { accessToken: credentials.accessToken, refreshToken: credentials.refreshToken, copilotToken: copilotResult.token, copilotTokenExpiresAt: copilotResult.expiresAt }; } return null; } needsRefresh(credentials) { // Always refresh if no copilotToken if (!credentials.copilotToken) return true; if (credentials.copilotTokenExpiresAt) { // Handle both Unix timestamp (seconds) and ISO string let expiresAtMs = credentials.copilotTokenExpiresAt; if (typeof expiresAtMs === "number" && expiresAtMs < 1e12) { expiresAtMs = expiresAtMs * 1000; // Convert seconds to ms } else if (typeof expiresAtMs === "string") { expiresAtMs = new Date(expiresAtMs).getTime(); } if (expiresAtMs - Date.now() < 5 * 60 * 1000) return true; } return super.needsRefresh(credentials); } } export default GithubExecutor;