feat(discord): full cloud/local plugin parity

[0xSolace]

Brings Discord plugin to full parity between cloud and local.

Health Monitor: 5→19 connectors, case-sensitivity fix
Voice in Cloud: ffmpeg+libopus in Dockerfile, graceful degradation
Dashboard Settings: DM policy, action toggles, intents, PluralKit, formatting
Tests: 7 files, 180 tests (env vars, config roundtrip, OAuth, provisioning, health)
Docs: DISCORD_CLOUD_PARITY.md

+2,746/-5 across 21 files | 180/180 tests passing

Co-authored-by: Sol sol@shad0w.xyz

[github-actions]

The user needs to approve the gh pr review tool call. Here's my complete review:

---

1. Classification (derived): feature/connector — consistent with author's claim. Multi-layered: runtime health monitor expansion (5→19 connectors), cloud container voice deps, dashboard settings panel, 180 tests, docs.

2. Rubric (derived): Connector feature touching runtime health monitor, Dockerfiles, cloud API client, and UI — check blast radius completeness, service name mapping correctness, Docker image consistency, and convention adherence.

3. Scope verdict: needs deep review

4. Universal invariants: all intact ✓ — NODE_PATH, patch-deps, startup guards, namespace, ports, dynamic imports, access.json files none modified.

5. Judgment:

• Needed? — OK. Health monitor covered only 5 of 18 connectors; cloud agents were blind on connector health. Real gap, real fix.
• Better than existing? — OK. .toLowerCase() removal is correct — it was silently breaking camelCase lookups (telegramAccount → telegramaccount → no match → always "unknown"). Explicit case-preserving map is strictly better.
• Duplication? — OK. DiscordSettingsPanel lives in packages/app-core/src/components/pages/ (correct layer), uses @miladyai/ui primitives throughout.
• Blast radius covered? — CONCERN: deploy/Dockerfile.cloud-slim not updated alongside Dockerfile.cloud and Dockerfile.ci.
• Logic sound? — OK.
• Complexity appropriate? — OK.
• Tested meaningfully? — CONCERN: one vacuous test — "connector names are case-sensitive" asserts toBeGreaterThanOrEqual(0) (always true) and has a stale comment claiming lowercasing still happens.
• Matches conventions? — CONCERN: All three feature commits have Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>. CLAUDE.md: no co-author commit lines.
• Plausible breakage mode: New service names in CONNECTOR_PLUGIN_MAP ("telegram-account", "google-chat", etc.) must exactly match plugin ServiceManager.register() strings. Drift → silent permanent "missing" status.

6. PR-type-specific checks:

• Coverage parity test (CONNECTOR_PLUGINS ⊆ CONNECTOR_PLUGIN_MAP): OK
• Env var chain (botToken/token → DISCORD_API_TOKEN + DISCORD_BOT_TOKEN): OK
• URL encoding of agent IDs: OK
• require() in ESM TypeScript: minor concern (Bun-compatible but inconsistent)
• Git-hooks files (4 LFS stubs): CONCERN — entirely unrelated to Discord parity; appear to be accidental git lfs install --local side-effect; must be removed.
• deploy/Dockerfile.cloud-slim gap: noted above.

7. Security: clear.

8. Decision: REQUEST CHANGES

Three items required before merge:

1. Strip co-author lines from commits — CLAUDE.md prohibits these explicitly
2. Remove git-hooks/ files — not part of this PR, likely accidental
3. Fix vacuous test — replace toBeGreaterThanOrEqual(0) with a real assertion; correct stale "lowercases for lookup" comment

The core work is solid and needed. Tag @greptileai for deep review per the scope verdict.

[greptile-apps]

Greptile Summary

This PR brings the Discord connector to cloud/local parity by expanding the health monitor to 19 connectors, adding voice capability detection with graceful degradation, exposing Discord advanced settings (DM policy, action toggles, intents, PluralKit, formatting) in the cloud dashboard, adding ffmpeg+libopus-dev to both Dockerfiles, and providing 180 tests across 7 files. The layering is correct and @miladyai/ui primitives are used throughout the new settings panel.

Two issues need attention before merge:

• require() in Node.js ESM: discord-voice-capability.ts:36 uses CommonJS require() to probe for opus packages. Both Dockerfiles run via node --import tsx milady.mjs (ESM entry point), where require is not defined. The try/catch catches the ReferenceError gracefully so the bot won't crash, but checkOpus() always returns false — voice is permanently reported as "Missing: opus bindings" even if packages are installed. Fix: replace require() with dynamic import().

• Case-sensitivity fix not implemented: The PR description and discord-connector-health.test.ts:208 both claim the health monitor lowercases connector keys before CONNECTOR_PLUGIN_MAP lookup, but probeConnector uses the raw key. A config entry like Discord: { enabled: true } returns \"unknown\". The test uses >= 0 — an always-true assertion that never validates the claimed behaviour.

Minor: the four git-hooks/* LFS hook files appear unrelated and likely slipped in accidentally. libopus-dev should be libopus0 in both Dockerfiles.

Greptile verdict: REQUEST CHANGES

Confidence Score: 3/5

Safe to merge after fixing the opus require→import issue and the vacuous case-sensitivity test; neither is a crash blocker but both represent broken contracts.

Two P1 findings: (1) require() in ESM context makes opus detection permanently wrong in cloud containers — graceful degradation works but the feature doesn't achieve its stated goal. (2) The case-sensitivity fix exists only in comments and a vacuous test, not in the implementation. Both require concrete changes before the feature is production-correct. The rest of the PR is solid: parity test suite is genuinely comprehensive, UI uses existing primitives correctly, URL encoding is proper throughout, security posture is clean.

packages/agent/src/plugins/discord-voice-capability.ts (require→import), packages/agent/src/api/connector-health.ts (lowercase normalisation), packages/agent/test/discord-connector-health.test.ts (vacuous assertion)

Vulnerabilities

No security concerns identified. OAuth callback URL parsing uses the browser URL API and performs no server-side redirects. Agent IDs are encodeURIComponent-encoded before embedding in API paths. Config updates go through the existing authenticated MiladyClient fetch path. No secrets stored in code.

Important Files Changed

Filename	Overview
packages/agent/src/plugins/discord-voice-capability.ts	New voice capability detection with graceful degradation; uses require() in checkOpus() which silently returns false in Node.js ESM (cloud Docker runtime) — opus always reported unavailable even when packages are installed
packages/agent/src/api/connector-health.ts	Expands CONNECTOR_PLUGIN_MAP from 5 to 19 connectors; probeConnector does not lowercase keys despite the test comment claiming it does — mixed-case config keys would return unknown
packages/app-core/src/components/pages/cloud-dashboard-panels.tsx	Adds DiscordSettingsPanel with DM policy, action toggles, intents, PluralKit, formatting — uses @miladyai/ui primitives correctly; minor stale-closure risk in patch callers that spread render-time config.dm
packages/app-core/src/api/client-cloud.ts	Adds 4 new Discord config methods with correct URL encoding and HTTP methods
packages/agent/test/discord-connector-health.test.ts	Good lifecycle and detection tests; case-sensitivity test at line 227 has a vacuous >= 0 assertion that always passes and doesn't verify the claimed lowercasing behaviour
packages/app-core/src/config/connector-parity.test.ts	Strong parity test that cross-validates schema, runtime, auto-enable, and health monitor maps for alignment
Dockerfile.cloud	Adds ffmpeg and libopus-dev for voice support; libopus-dev is heavier than needed (libopus0 suffices at runtime)

Sequence Diagram

sequenceDiagram
    participant Dashboard as Cloud Dashboard
    participant Client as MiladyClient
    participant API as Cloud API
    participant Agent as Cloud Agent Container

    Note over Dashboard,Agent: Discord OAuth Flow
    Dashboard->>Client: createCloudCompatAgentManagedDiscordOauth(agentId, opts)
    Client->>API: POST /api/cloud/v1/milady/agents/{agentId}/discord/oauth
    API-->>Client: {authorizeUrl, applicationId}
    Client-->>Dashboard: response
    Dashboard->>Dashboard: openExternalUrl(authorizeUrl)
    Note over Dashboard: User completes OAuth in browser
    Dashboard->>Dashboard: consumeManagedDiscordCallbackUrl(window.location.href)
    Dashboard-->>Dashboard: {status, agentId, guildId, restarted}

    Note over Dashboard,Agent: Discord Config Update
    Dashboard->>Client: getCloudCompatAgentDiscordConfig(agentId)
    Client->>API: GET /api/cloud/v1/milady/agents/{agentId}/discord/config
    API-->>Client: CloudCompatDiscordConfig
    Client-->>Dashboard: config
    Dashboard->>Dashboard: user edits (DM policy, actions, intents...)
    Dashboard->>Client: updateCloudCompatAgentDiscordConfig(agentId, config)
    Client->>API: PATCH /api/cloud/v1/milady/agents/{agentId}/discord/config
    API-->>Client: updated CloudCompatDiscordConfig

    Note over Agent: Startup / Health Monitor
    Agent->>Agent: collectConnectorEnvVars → DISCORD_API_TOKEN
    Agent->>Agent: applyPluginAutoEnable → @elizaos/plugin-discord
    Agent->>Agent: detectVoiceCapability() → {ffmpeg, opus, supported}
    loop Every 60s
        Agent->>Agent: ConnectorHealthMonitor.check()
        Agent->>Agent: probeConnector via getService/clients
        alt status transitions to missing
            Agent->>Agent: broadcastWs system-warning
        end
    end

Loading

Comments Outside Diff (1)

1. packages/agent/src/api/connector-health.ts, line 112-128 (link)

   Case-sensitivity fix claimed but not implemented

   The PR description says "case-sensitivity fix" and discord-connector-health.test.ts:208 states "The monitor lowercases the connector name when looking up the CONNECTOR_PLUGIN_MAP". The implementation does no such thing — CONNECTOR_PLUGIN_MAP[name] uses the raw key directly. A config entry like Discord: { enabled: true } returns "unknown" rather than probing the discord plugin. The test at line 227 uses >= 0 which is always true and does not actually verify the lowercasing behaviour.

   If lowercasing is intentional for config key normalisation, the name stored in this.statuses should also use the normalised form to avoid accumulating stale keys.

   

_{Reviews (1): Last reviewed commit: "fix(test): align discord test expectatio..." | Re-trigger Greptile}

[greptile-apps]

require() unavailable in Node.js ESM — opus always reports false

checkOpus() uses CommonJS require() to probe for @discordjs/opus and opusscript. Both Dockerfiles run the agent via node --import tsx milady.mjs — where milady.mjs forces ESM. Under Node.js ESM, require is not defined; the try/catch catches the ReferenceError, but this means checkOpus() always returns false in cloud containers regardless of whether the packages are installed. The graceful-degradation guarantee holds, but voice would be permanently misreported as unavailable even when deps are present.

Replace require() with a dynamic import() to work in both ESM and CJS:

Suggested change

	function checkOpus(): boolean {
	// Try @discordjs/opus first (native, fastest), then opusscript (wasm fallback).
	for (const pkg of ["@discordjs/opus", "opusscript"]) {
	try {
	require(pkg);
	return true;
	} catch {
	// not available
	}
	}
	return false;
	}
	/** Check if an opus binding can be loaded. */
	async function checkOpus(): Promise<boolean> {
	// Try @discordjs/opus first (native, fastest), then opusscript (wasm fallback).
	for (const pkg of ["@discordjs/opus", "opusscript"]) {
	try {
	await import(pkg);
	return true;
	} catch {
	// not available
	}
	}
	return false;
	}

Then update detectVoiceCapability to await checkOpus() instead of calling it synchronously.

[greptile-apps]

Vacuous assertion — test always passes regardless of behaviour

The assertion expect(Object.keys(statuses).length).toBeGreaterThanOrEqual(0) is always true (array length is never negative). The test comment claims the monitor lowercases for lookup, but neither the implementation nor the test actually verify this.

Replace with an assertion that reflects the intended contract:

Suggested change

	describe("connector health monitor — case sensitivity", () => {
	it("connector names are case-sensitive (lowercase lookup)", async () => {
	// The health monitor lowercases the connector name when looking up the
	// CONNECTOR_PLUGIN_MAP. This test ensures that mixed-case connector
	// names like "telegramAccount" and "googlechat" are handled correctly.
	const runtime = createMockRuntime({ services: {} });
	const { monitor } = createMonitor({
	runtime,
	connectors: {
	// These names should be lowercased when looking up the plugin map
	Discord: { enabled: true },
	DISCORD: { enabled: true },
	},
	});
	await monitor.check();
	const statuses = monitor.getConnectorStatuses();
	// The monitor lowercases for lookup, so these should resolve to "discord"
	// in the CONNECTOR_PLUGIN_MAP — the status depends on whether the service
	// is loaded, but at minimum they should not crash
	expect(Object.keys(statuses).length).toBeGreaterThanOrEqual(0);
	});
	it("connector names are case-sensitive (lowercase lookup)", async () => {
	const runtime = createMockRuntime({ services: { discord: { name: "discord" } } });
	const { monitor } = createMonitor({
	runtime,
	connectors: { Discord: { enabled: true } },
	});
	await monitor.check();
	const statuses = monitor.getConnectorStatuses();
	// With lowercasing applied, "Discord" → "discord" in the map → "ok"
	expect(statuses.Discord).toBe("ok");
	});

[greptile-apps]

Stale closure risk in patch callers that spread config.*

patch correctly uses the setConfig(prev => ...) updater form, but all callers spread the render-time config.dm / config.intents, not prev.dm. If the 5s poll in fetchDetails races with a user edit, the second update overwrites the first with stale data. patchActions already uses the correct pattern.

Safer pattern:

Suggested change

	const patch = (partial: CloudCompatDiscordConfig) => {
	setConfig((prev) => ({ ...prev, ...partial }));
	setDirty(true);
	};
	const patchDm = (partial: Partial<NonNullable<CloudCompatDiscordConfig["dm"]>>) => {
	setConfig((prev) => ({
	...prev,
	dm: { ...prev?.dm, ...partial },
	}));
	setDirty(true);
	};

Apply the same approach for intents.

[greptile-apps]

Git LFS hook scripts unrelated to Discord parity feature

The four files git-hooks/post-checkout, git-hooks/post-commit, git-hooks/post-merge, git-hooks/pre-push are standard Git LFS hook scripts unrelated to the Discord cloud/local parity work and appear to have been accidentally staged. If the intent is to commit these for use with git config core.hookspath git-hooks, that should be a separate documented commit.

[greptile-apps]

libopus-dev installs headers; prefer libopus0 for runtime-only

libopus-dev is the development package (headers + static libs for compiling). The runtime image only needs the shared library. Using libopus-dev wastes a few MB and signals wrong intent.

Suggested change

	RUN apt-get update && apt-get install -y --no-install-recommends ca-certificates curl ffmpeg libopus-dev \
	&& rm -rf /var/lib/apt/lists/*
	RUN apt-get update && apt-get install -y --no-install-recommends ca-certificates curl ffmpeg libopus0 \
	&& rm -rf /var/lib/apt/lists/*

Same applies to Dockerfile.ci line 77.

[github-actions]

⚠️ Greptile suggestions auto-apply failed. The initial Greptile review stands. The weighted final verdict will be produced from the initial review only.