sequenceDiagram
  participant User as Slack/Feishu User
  participant WebhookEndpoint as POST /channels/{id}/webhook
  participant ChannelInstance as Running Channel
  participant Dialog as Assistant/Dialog
  participant ProviderAPI as Provider HTTP API

  User->>WebhookEndpoint: Sends message to bot
  WebhookEndpoint->>ChannelInstance: payload -> handle_webhook()
  ChannelInstance->>ChannelInstance: parse IncomingMessage
  ChannelInstance->>Dialog: _dispatch(incoming) with dialog_id
  Dialog-->>ChannelInstance: completion chunks (answer, session_id)
  ChannelInstance->>ChannelInstance: update session_id, build OutgoingMessage
  ChannelInstance->>ProviderAPI: send reply via provider API
  ProviderAPI-->>User: delivered reply

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

@KevinHuSh @xugangqiang This PR is ready for review. Thank you for your time and for maintaining such a great project! I’m happy to make any changes or improvements you suggest. Please let me know what you think.

Actionable comments posted: 4

Note

Due to the large number of review comments, Critical severity comments were prioritized as inline comments.

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (5)

api/apps/services/provider_api_service.py (1)> 382-503: ⚠️ Potential issue | 🟡 Minor | ⚡ Quick win

Add explicit logs for the newly introduced verification branches.
Line 382 onward introduces new control paths (VLLM base URL normalization effects, BaiduYiyan key coercion, OCR verification). Failures are logged, but branch decisions/success-path observability is still missing, which makes production troubleshooting harder.
As per coding guidelines, “**/*.py: Add logging for new flows”.

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@api/apps/services/provider_api_service.py` around lines 382 - 503, The new
verification flow lacks informative info-level logs: add logging calls after
base_url is set (via _normalize_provider_base_url) and when target_factory_name
is chosen, log when factory_llms is built from FACTORY_LLM_INFOS or from
model_info, and log BaiduYiyan API key coercion (showing masked/summary
api_key_str) inside the BaiduYiyan branch; also add info/debug logs on each
verification branch success/failure (embedding via EmbeddingModel.encode, chat
via ChatModel.async_chat_streamly, rerank via RerankModel.similarity, ocr via
OcrModel.check_available) indicating provider_name, llm['llm_name'], model_type
and result so callers can observe which path passed or failed before returning.
Ensure logs avoid printing secrets (mask api keys) and use existing logger
variable (e.g., logging) and messages consistent with surrounding logs.

Source: Coding guidelines

internal/entity/models/model.go (1)> 516-523: ⚠️ Potential issue | 🟠 Major | ⚡ Quick win

Guard optional MaxTokens before dereferencing.
Model.MaxTokens is now nullable, but this branch still dereferences it unconditionally and then formats the pointer itself in the error message. A max_tokens filter against a model without that field will panic instead of returning a 4xx response.

Suggested fix

 		case "max_tokens":
 			if maxVal, ok := filterValue.(int); ok {
-				if *model.MaxTokens < maxVal {
+				if model.MaxTokens == nil {
+					matchFilter = false
+					resp.Code = 400
+					resp.Message = "Model does not define max_tokens"
+					break
+				}
+				if *model.MaxTokens < maxVal {
 					matchFilter = false
 					resp.Code = 400
 					resp.Message = fmt.Sprintf("Model does not meet filter criteria: max_tokens (%d) < %d",
-						model.MaxTokens, maxVal)
+						*model.MaxTokens, maxVal)
 				}
 			}

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@internal/entity/models/model.go` around lines 516 - 523, In the "max_tokens"
filter branch, avoid unguarded dereference of the nullable Model.MaxTokens
pointer: first assert filterValue is an int, then check if model.MaxTokens ==
nil and if so set matchFilter = false and resp.Code/resp.Message to a 4xx error
indicating the model has no max_tokens (do not dereference); only when
model.MaxTokens != nil perform the comparison using *model.MaxTokens and format
the error message with the dereferenced value. Ensure you reference the "case
\"max_tokens\"" branch, the model.MaxTokens field, matchFilter, resp.Code and
resp.Message when applying this guard and updating messages.

internal/entity/models/deepinfra.go (1)> 843-867: ⚠️ Potential issue | 🟠 Major | ⚡ Quick win

Restore credential validation in ListModels.
CheckConnection on Line 954 delegates to this method, but this implementation skips APIConfigCheck and never sends the Bearer token. That makes the health check unauthenticated: a public /models endpoint can incorrectly accept missing/invalid keys, and an authenticated one will fail even with a valid key.

Suggested fix

 func (d *DeepInfraModel) ListModels(apiConfig *APIConfig) ([]ListModelResponse, error) {
+	if err := d.baseModel.APIConfigCheck(apiConfig); err != nil {
+		return nil, err
+	}
 
 	resolvedBaseURL, err := d.baseModel.GetBaseURL(apiConfig)
 	if err != nil {
 		return nil, err
@@
-	req, err := http.NewRequestWithContext(ctx, "GET", url, bytes.NewBuffer(jsonData))
+	req, err := http.NewRequestWithContext(ctx, "GET", url, nil)
 	if err != nil {
 		return nil, fmt.Errorf("failed to create request: %w", err)
 	}
 
 	req.Header.Set("Content-Type", "application/json")
+	req.Header.Set("Authorization", fmt.Sprintf("Bearer %s", *apiConfig.ApiKey))

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@internal/entity/models/deepinfra.go` around lines 843 - 867, The ListModels
method in DeepInfraModel skips APIConfig validation and never sets the
Authorization header, causing unauthenticated or failed health checks; restore
the APIConfigCheck call (use the existing APIConfigCheck /
d.baseModel.APIConfigCheck utility used elsewhere) at the start of ListModels to
validate apiConfig and extract the token, and set the Bearer token on the
http.Request (Authorization: Bearer <token>) before sending; also remove or
avoid sending an unnecessary JSON body for the GET (use nil body) so the request
matches the service expectation and CheckConnection (which calls ListModels)
performs an authenticated health check.

internal/entity/models/jina.go (1)> 321-335: ⚠️ Potential issue | 🟠 Major | ⚡ Quick win

Authenticate ListModels the same way as the other Jina calls.
CheckConnection on Line 372 uses this method, but ListModels no longer validates apiConfig and never sends the Bearer token. That disconnects verification from the supplied credentials, so a public /models endpoint can falsely pass bad keys and an authenticated one will fail even when chat/embedding requests succeed.

Suggested fix

 func (j *JinaModel) ListModels(apiConfig *APIConfig) ([]ListModelResponse, error) {
+	if err := j.baseModel.APIConfigCheck(apiConfig); err != nil {
+		return nil, err
+	}
 
 	resolvedBaseURL, err := j.baseModel.GetBaseURL(apiConfig)
 	if err != nil {
 		return nil, err
@@
 	req.Header.Set("Content-Type", "application/json")
+	req.Header.Set("Authorization", fmt.Sprintf("Bearer %s", *apiConfig.ApiKey))

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@internal/entity/models/jina.go` around lines 321 - 335, The ListModels method
(JinaModel.ListModels) currently skips validating apiConfig and does not set the
Authorization header, unlike other Jina calls such as CheckConnection; update
ListModels to validate the provided apiConfig the same way other methods do and
add the Bearer token to the request headers (e.g., set "Authorization: Bearer
<token>" from apiConfig) before sending the GET to j.baseModel.GetBaseURL(...) +
j.baseModel.URLSuffix.Models so the call is authenticated consistently with
chat/embedding requests.

web/src/components/ui/toggle-list.tsx (1)> 1-343: ⚠️ Potential issue | 🟠 Major | ⚡ Quick win

Modifications to src/components/ui/ require explicit approval.
This file is under src/components/ui/, which is protected by coding guidelines. All modifications—including the new footer prop, search filter changes, styling updates, and footer rendering logic—require explicit user approval before merge.
As per coding guidelines, if ToggleList doesn't meet requirements, wrap or compose it in a new component outside src/components/ui/ instead.

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@web/src/components/ui/toggle-list.tsx` around lines 1 - 343, The PR modifies
a protected UI file (ToggleList) under src/components/ui/ without explicit
approval; either revert those edits or move the new behavior into a new
component outside that folder and leave ToggleList untouched. Specifically,
remove the newly added footer prop/logic (footer, footerClassName, footerNode
rendering) and any search/filter styling changes in ToggleList, or create a
composed wrapper component (e.g., NewToggleListWrapper) outside
src/components/ui/ that imports the original ToggleList and implements the
footer, API search (onSearch), and loadMore behaviors there; ensure references
to ToggleList, footer/footerNode, onSearch, and filteredOptions are adjusted
accordingly and get explicit approval before modifying files under
src/components/ui/.

Source: Coding guidelines

🟡 Minor comments (9)

internal/handler/document.go-1013-1016 (1)> 1013-1016: ⚠️ Potential issue | 🟡 Minor | ⚡ Quick win

Normalize doc_ids query tokens before calling the service.
Raw strings.Split can pass whitespace/empty IDs (e.g., trailing commas), which causes avoidable lookup mismatches downstream.

Proposed fix

 	var docIDS []string
 	if docIDsParam := c.Query("doc_ids"); docIDsParam != "" {
-		docIDS = strings.Split(docIDsParam, ",")
+		for _, id := range strings.Split(docIDsParam, ",") {
+			id = strings.TrimSpace(id)
+			if id != "" {
+				docIDS = append(docIDS, id)
+			}
+		}
 	}

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@internal/handler/document.go` around lines 1013 - 1016, The code reading the
doc_ids query uses strings.Split directly into docIDS (variable) which can leave
whitespace and empty tokens; update the parsing so that after c.Query("doc_ids")
is non-empty you split, then for each token apply strings.TrimSpace and only
append non-empty values to docIDS (thus removing tokens from trailing/leading
commas and whitespace) before passing docIDS to the downstream service (refer to
the docIDS variable, the c.Query("doc_ids") call, and the current strings.Split
usage).

rag/graphrag/utils.py-707-721 (1)> 707-721: ⚠️ Potential issue | 🟡 Minor | ⚡ Quick win

Handle non-positive n_hop explicitly.
With n_hop=0 (or negative), this function still emits 1-hop paths. Add an early return to keep behavior consistent with the documented contract.

💡 Suggested fix

 def n_neighbor(graph: nx.Graph, node, n_hop: int = 2):
+    if n_hop <= 0:
+        return []
+
     """Enumerate paths of up to ``n_hop`` edges starting at ``node`` together

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@rag/graphrag/utils.py` around lines 707 - 721, The n_neighbor function
currently emits 1-hop paths even when n_hop is 0 or negative; add an explicit
early return in n_neighbor to handle non-positive n_hop (e.g., if n_hop <= 0:
return []), so the function honors the documented "up to n_hop edges" contract;
locate the function n_neighbor in rag/graphrag/utils.py and add the check before
any graph.edges/node traversal and counting logic.

internal/entity/models/gitee.go-902-917 (1)> 902-917: ⚠️ Potential issue | 🟡 Minor | ⚡ Quick win

Resolve model metadata lookup after final name normalization.
GetModelByNameOrAlias runs before the @OwnedBy suffix is applied. For provider-qualified models, this can attach incorrect (or empty) metadata in the returned ListModelResponse.

Suggested fix

-	for _, model := range modelList.Models {
-		modelName := model.ID
-		var modelResponse ListModelResponse
-		pm := GetProviderManager()
-		modelEntity := pm.GetModelByNameOrAlias(modelName)
-		if model.OwnedBy != "" {
-			modelName = model.ID + "@" + model.OwnedBy
-		}
-		modelResponse.Name = modelName
+	for _, model := range modelList.Models {
+		rawName := model.ID
+		modelName := rawName
+		if model.OwnedBy != "" {
+			modelName = model.ID + "@" + model.OwnedBy
+		}
+		modelResponse := ListModelResponse{Name: modelName}
+		pm := GetProviderManager()
+		var modelEntity *Model
+		if pm != nil {
+			modelEntity = pm.GetModelByNameOrAlias(modelName)
+			if modelEntity == nil && modelName != rawName {
+				modelEntity = pm.GetModelByNameOrAlias(rawName)
+			}
+		}
 		if modelEntity != nil {
 			modelResponse.Dimension = modelEntity.Dimension
 			modelResponse.MaxTokens = modelEntity.MaxTokens
 			modelResponse.ModelTypes = modelEntity.ModelTypes
 			modelResponse.Thinking = modelEntity.Thinking
 		}
 
 		models = append(models, modelResponse)
 	}

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@internal/entity/models/gitee.go` around lines 902 - 917, The code calls
GetProviderManager().GetModelByNameOrAlias using modelName before the
provider-qualified suffix is appended, causing wrong metadata; update the logic
in the loop so that the modelName is normalized first (append "@" +
model.OwnedBy when model.OwnedBy != "") and then call GetModelByNameOrAlias with
the final modelName to populate ListModelResponse fields (Dimension, MaxTokens,
ModelTypes, Thinking) from modelEntity; adjust references in the loop around
modelName, model.OwnedBy, GetProviderManager(), GetModelByNameOrAlias and
ListModelResponse accordingly.

web/src/locales/en.ts-1559-1561 (1)> 1559-1561: ⚠️ Potential issue | 🟡 Minor | ⚡ Quick win

Use sentence case for the new English locale strings.
Several new en.ts labels are Title Case ("AI Studio Access Token", "Chat Channels", "Add Channel", "Bot Token", etc.), which conflicts with the repo’s sentence-case rule for en.ts.

Suggested copy updates

-      paddleocrAccessToken: 'AI Studio Access Token',
+      paddleocrAccessToken: 'AI Studio access token',
@@
-      channels: 'Chat Channels',
-      chatChannels: 'Chat Channels',
-      addChannel: 'Add Channel',
-      editChannel: 'Edit Channel',
+      channels: 'Chat channels',
+      chatChannels: 'Chat channels',
+      addChannel: 'Add channel',
+      editChannel: 'Edit channel',
@@
-        bot_token: 'Bot Token',
-        app_token: 'App Token',
+        bot_token: 'Bot token',
+        app_token: 'App token',
         app_id: 'App ID',
-        app_secret: 'App Secret',
-        encrypt_key: 'Encryption Key',
+        app_secret: 'App secret',
+        encrypt_key: 'Encryption key',

As per coding guidelines, web/src/locales/en.ts should use sentence case for English locale values.
Also applies to: 1792-1807

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@web/src/locales/en.ts` around lines 1559 - 1561, The locale values use Title
Case instead of the repo-standard sentence case; update the English strings for
keys like paddleocrAccessToken, paddleocrAccessTokenMessage,
paddleocrAccessTokenPlaceholder (and the other keys around lines ~1792-1807 such
as Chat Channels/Add Channel/Bot Token) to sentence case (e.g., "AI Studio
access token", "Access token for PaddleOCR API (optional)", "Your AI Studio
token (optional)") so all en.ts values follow the sentence-case guideline.

Source: Coding guidelines

api/channels/slack.py-37-50 (1)> 37-50: ⚠️ Potential issue | 🟡 Minor | ⚡ Quick win

Validate required dialog_id field.
The dialog_id is required for dispatching messages but defaults to an empty string (line 42). Add validation in __init__ or start:

if not self._dialog_id:
    raise ValueError("SlackChannel requires non-empty dialog_id in config")

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@api/channels/slack.py` around lines 37 - 50, The SlackChannel currently
allows an empty dialog_id which is required for message dispatch; update the
constructor (__init__) or the start method to validate self._dialog_id and raise
a ValueError when it's falsy (e.g., if not self._dialog_id: raise
ValueError("SlackChannel requires non-empty dialog_id in config")), so locate
the dialog initialization in __init__ (self._dialog_id) and add this guard
before using it in start or any other method that relies on it.

api/channels/feishu.py-44-50 (1)> 44-50: ⚠️ Potential issue | 🟡 Minor | ⚡ Quick win

Validate required dialog_id field.
The dialog_id is required for dispatching messages but defaults to an empty string (line 50). If a channel is created without a valid dialog_id, messages will fail silently or with obscure errors during dispatch.
Add validation in __init__ or start:

if not self._dialog_id:
    raise ValueError("FeishuChannel requires non-empty dialog_id in config")

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@api/channels/feishu.py` around lines 44 - 50, Validate that self._dialog_id
is non-empty in the Feishu channel initialization (either in __init__ or in
start) and raise a clear error if missing: check self._dialog_id (from
config.get("dialog_id")) and if falsy raise ValueError("FeishuChannel requires
non-empty dialog_id in config") so the class (e.g., FeishuChannel.__init__ or
FeishuChannel.start) fails fast instead of allowing silent failures when
dispatching.

api/channels/slack.py-61-84 (1)> 61-84: ⚠️ Potential issue | 🟡 Minor

Slack bot message filter should also ignore app_id (not just bot_id)
api/channels/slack.py currently drops bot messages only when bot_id is absent, but the repo’s Slack filtering logic (common/data_source/slack_connector.py) treats messages with bot_id or app_id as bot-origin. Update the handler condition to match that behavior (optionally also considering bot_profile).

if event.get("type") == "message" and not (event.get("bot_id") or event.get("app_id") or event.get("bot_profile")):
    ...

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@api/channels/slack.py` around lines 61 - 84, Update the message-filtering
condition in the async handler _handle_event so it ignores messages originating
from bots/apps the same way as common/data_source/slack_connector.py; replace
the current check that only looks for bot_id with a predicate that skips
messages when event has bot_id or app_id or bot_profile. Locate the block that
constructs IncomingMessage and calls self._dispatch/send and modify the if
guarding that block to use not (event.get("bot_id") or event.get("app_id") or
event.get("bot_profile")) to prevent bot/app echoes from being processed.

web/src/pages/user-setting/channels/index.tsx-148-149 (1)> 148-149: ⚠️ Potential issue | 🟡 Minor | ⚡ Quick win

Localize credential labels/placeholders instead of hardcoded English.
Several user-facing strings bypass i18n and will render untranslated in non-English locales.
As per coding guidelines, "Use react-i18next for internationalization supporting 17 languages."
Also applies to: 155-160, 164-170, 178-179, 185-186, 193-194

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@web/src/pages/user-setting/channels/index.tsx` around lines 148 - 149,
Replace hardcoded English UI strings (e.g., placeholder="dialog ID" and other
input labels/placeholders around the same block) with react-i18next
translations: import and call useTranslation() to get t and replace literal
strings passed to placeholder/label props with t('key') entries (e.g.,
placeholder={t('channels.dialogId')}). Update all occurrences mentioned in the
review (the placeholder/label props near the demonstrated placeholder and the
other noted string sites) and add appropriate i18n keys in your translation
resource files so the same keys are available in supported languages.

Source: Coding guidelines

web/src/services/channel.ts-5-10 (1)> 5-10: ⚠️ Potential issue | 🟡 Minor | ⚡ Quick win

Only set Authorization when a token exists.
Sending Authorization: '' is avoidable and can cause inconsistent auth behavior through proxies/gateways.

Suggested fix

 function authHeaders(): HeadersInit {
+  const token = authorizationUtil.getAuthorization();
   return {
     'Content-Type': 'application/json',
-    Authorization: authorizationUtil.getAuthorization() ?? '',
+    ...(token ? { Authorization: token } : {}),
   };
 }

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@web/src/services/channel.ts` around lines 5 - 10, The authHeaders function
currently always sets an Authorization header (possibly to an empty string);
change authHeaders so it only adds the Authorization header when
authorizationUtil.getAuthorization() returns a non-empty value — call
authorizationUtil.getAuthorization(), check for a truthy/non-empty token, and
only include Authorization in the returned HeadersInit when present (leave
Content-Type always set). Refer to the authHeaders function and
authorizationUtil.getAuthorization() when making the change.

🧹 Nitpick comments (7)

test/unit_test/rag/svr/task_executor_refactor/test_chunk_post_processor.py (1)> 198-263: ⚡ Quick win

Add required pytest priority markers to the newly added tests.
The new async test cases are missing p1/p2/p3 markers required by the repo testing convention.
As per coding guidelines, test/**/*.py: "Use pytest with priority markers (p1/p2/p3) for Python testing."

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@test/unit_test/rag/svr/task_executor_refactor/test_chunk_post_processor.py`
around lines 198 - 263, Each new async test
(test_generate_metadata_empty_config_does_not_crash,
test_generate_metadata_enum_none_accepted,
test_generate_metadata_description_none_accepted,
test_generate_metadata_built_in_with_enum_none) must include the repo's pytest
priority marker; add the appropriate marker decorator (e.g., `@pytest.mark.p1`)
above each test in addition to `@pytest.mark.asyncio` so they follow the p1/p2/p3
convention used for tests that exercise generate_metadata in
chunk_post_processor; ensure the decorator is imported/available in the test
module.

Source: Coding guidelines

internal/entity/models/model.go (1)> 394-401: Normalize alias2ModelIndex keys to lowercase to match GetModelByNameOrAlias (lines ~312-318, ~395-402).

GetModelByNameOrAlias lowercases the lookup key (strings.ToLower(modelName)), but alias2ModelIndex is built with raw model.Name/alias (no lowercasing on insertion). The current conf/all_models.json has no mixed-case name/alias entries (mixed_case_entries=0), so it works today; normalizing keys during map construction makes the behavior robust if config ever changes.

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@internal/entity/models/model.go` around lines 394 - 401,
GetModelByNameOrAlias lowercases the incoming modelName but Alias2ModelIndex
keys are stored as raw model.Name/alias, causing case-mismatch bugs; when
building/populating ProviderManager.Alias2ModelIndex (the code that inserts into
Alias2ModelIndex for each Model in ProviderManager.AllModels), normalize keys to
lowercase (use strings.ToLower on model.Name and each alias) so lookups in
GetModelByNameOrAlias succeed regardless of case; update the map-insertion logic
that currently writes to Alias2ModelIndex to insert lowercase keys.

web/src/pages/user-setting/setting-model/modal/verify-button/index.tsx (1)> 70-88: 💤 Low value

Redundant error handling in outer catch block.
The outer catch block at lines 78-88 is likely unreachable. onHandleVerify already catches all errors internally (lines 49-68) and calls verifyCallback in its own catch block (lines 62-65). Unless onHandleVerify itself throws during setup, the outer catch won't execute.
Consider removing the outer try-catch or documenting why both layers are needed.

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@web/src/pages/user-setting/setting-model/modal/verify-button/index.tsx`
around lines 70 - 88, The outer try-catch in handleVerify is redundant because
onHandleVerify already catches errors and calls verifyCallback; remove the outer
catch and only await onHandleVerify inside handleVerify while still setting
initial state via setVerifyResult and wrapping the setIsVerifying(false) in
finally to ensure the loading state is cleared; keep references to handleVerify,
onHandleVerify, verifyCallback, setVerifyResult, and setIsVerifying so the
caller flow and error reporting remain handled by onHandleVerify.

api/channels/feishu.py (2)> 106-136: ⚖️ Poor tradeoff

Non-streaming dispatch may timeout on long-running queries.
The _dispatch method uses stream: False (line 118), which waits for the complete answer before returning. For complex queries that require extensive RAG retrieval or long LLM generation, this can exceed HTTP or application timeouts, causing the webhook to fail.
Consider enabling streaming and aggregating the response incrementally, or make streaming configurable per channel based on expected query complexity.

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@api/channels/feishu.py` around lines 106 - 136, The _dispatch method
currently calls async_iframe_completion with "stream": False which can cause
timeouts for long RAG/LLM runs; change to streaming by passing "stream": True to
async_iframe_completion (or make a channel/tenant flag like
self._enable_streaming) and iterate the yielded chunks to incrementally build
answer_text, update session id from each chunk, and only return an
OutgoingMessage after aggregation completes (or send partial messages if
configured); modify _dispatch, the async_iframe_completion call, and the chunk
handling logic to support both streaming and non-streaming modes while
preserving session updates in self._sessions for incoming.sender_id.

86-90: ⚡ Quick win
Log JSON decode errors instead of silent failure.
When the Feishu message content fails to parse (lines 86-90), the handler returns {} silently. This makes debugging difficult when Feishu sends malformed payloads.
Add logging:

except (json.JSONDecodeError, AttributeError) as e:
    logger.warning("FeishuChannel: failed to parse message content: %s", e)
    return {}

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@api/channels/feishu.py` around lines 86 - 90, The exception handler around
json.loads of msg.get("content", "{}") currently swallows
JSONDecodeError/AttributeError; modify the except block in the Feishu message
parsing (the code that builds content_json and text) to log the failure before
returning: catch the exception as e and call logger.warning (or the module
logger) with a descriptive message like "FeishuChannel: failed to parse message
content" including the exception e, then return {}; update the except clause
that currently does "except (json.JSONDecodeError, AttributeError): return {}"
to "except (json.JSONDecodeError, AttributeError) as e: logger.warning(...);
return {}".

Source: Coding guidelines

api/apps/restful_apis/channel_api.py (2)> 91-110: ⚖️ Poor tradeoff

Consider Pydantic request validation for consistency.
As per coding guidelines, newer RESTful APIs under api/apps/restful_apis/ should use Pydantic for request validation. This endpoint uses manual validation (lines 98-110), which is functional but less maintainable and more error-prone than a declarative Pydantic schema.
Consider defining a CreateChannelRequest Pydantic model with field validators (e.g., channel: Literal["slack", "feishu"], name: str, etc.) to replace the manual checks.

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@api/apps/restful_apis/channel_api.py` around lines 91 - 110, Replace the
manual request validation in create_channel by defining a Pydantic model (e.g.,
CreateChannelRequest) with fields name: str, channel: Literal[...] (or
constraining via Enum/typing) dialog_id: str and config: dict, add any
validators for trimming/required checks, then parse/validate the request payload
instead of using get_request_json and the manual checks; after validation, use
the parsed model instance and keep the existing channel-type lookup against
CHANNEL_REGISTRY and _CHANNEL_INFO and error responses via get_error_data_result
for backward-compatible error handling.

Source: Coding guidelines

40-50: ⚖️ Poor tradeoff
Consider deriving channel schemas from the registry.
The hardcoded _CHANNEL_INFO dictionary creates tight coupling and duplication. If a new channel type is registered, this dictionary must be manually updated in lockstep. More critically, the validation at line 109 checks both CHANNEL_REGISTRY and _CHANNEL_INFO, allowing a mismatch where a channel type could be created via the API but not instantiable at runtime.
Consider adding a class method to the Channel base class (e.g., get_credential_schema()) that returns the required fields, and derive _CHANNEL_INFO dynamically from CHANNEL_REGISTRY.

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@api/apps/restful_apis/channel_api.py` around lines 40 - 50, The hardcoded
_CHANNEL_INFO dict is duplicated with CHANNEL_REGISTRY and can drift; change the
implementation to derive the credential schema from each registered Channel
class by adding a class method on Channel (e.g., get_credential_schema()) that
returns the list/dict of required fields, then replace _CHANNEL_INFO usage with
a dynamic build that iterates CHANNEL_REGISTRY and calls
ChannelClass.get_credential_schema() for each key, and update the API validation
logic (the code that currently checks CHANNEL_REGISTRY and _CHANNEL_INFO) to
only consult CHANNEL_REGISTRY and the new get_credential_schema() results so
creation and instantiation remain consistent.

ℹ️ Review info

@coderabbitai Thank you for the detailed review. The critical issues (credential nesting, Feishu token expiry, Go test compilation) were fixed in commit 425908ab2. Optional improvements (dialog validation, sentence case, Slack bot filter) were added in 470142872. I believe the PR is now ready for human review. Your feedback is much appreciated.

@zaviermeekz-cpu Thank you for the thorough follow-up! Great to hear both the critical fixes and the optional improvements have been committed. The work done looks solid:

• Critical fixes (425908ab2): credential nesting, Feishu token expiry handling, Go test compilation — these were the most important to land before maintainer review.
• Optional improvements (470142872): dialog_id validation in both SlackChannel and FeishuChannel, sentence-case locale strings, and the expanded Slack bot-message filter (bot_id + app_id + bot_profile) — nice to have these in too.

The remaining open items from the review (Pydantic validation for create_channel, deriving _CHANNEL_INFO dynamically from CHANNEL_REGISTRY, streaming dispatch for Feishu, i18n for hardcoded placeholders in channels/index.tsx) are all marked as "poor tradeoff" or "nitpick" quality, so they're safe to defer to a follow-up PR once the maintainers weigh in on the overall design.

Good luck with the human review — the PR is in good shape! 🐇✨

@zaviermeekz-cpu
Could you pls help to:

1. resolve conflict
2. add unit test/integration test
3. conduct real testing and share testing evidence?
   Thank you.

@xugangqiang The PR is ready for review. I have resolved all conflicts and added unit tests. Live testing with a real Slack bot was partially successful (channel starts, logs confirm). Due to Slack API setup complexity, I could not complete the full message round‑trip, but the framework is fully implemented and follows the same pattern as Feishu. If possible, please help verify the final Slack integration. Thank you.