Daily Digest
Daily Digest – 3 July 2026
2026 Capabilities Progress
- Page generation — AI context integration advanced with fixes ensuring required component properties are correctly flagged for AI [43][59], while work on content entity reference selection heuristics [29][50] is in progress to help AI select appropriate content when building pages. Translation support for code components is in development [55].
- Context management — Significant progress on the Context Control Center with work underway on security fixes addressing unauthorized content exposure [69][82], performance improvements preventing unnecessary catalog loading [75][86], and accessibility enhancements for screen readers [73][84]. The integration with CKEditor to inject context into editor requests is advancing [2][14][64].
- Background agents — A recipe for automated comment spam scoring and auto-unpublish is in planning [16], demonstrating trigger-based AI workflows. Agent reliability improved with fixes for forced parameter values [11][20][24] and ongoing work on execution ordering constraints [23][25] and tool execution limits [22].
- Design system integration — Canvas merged fixes ensuring AI can properly validate component properties [43][59], with work in progress on validating additional properties [42] and support for content entity references [29][50], strengthening the foundation for AI to work with design system components. Translation capabilities for code components are in development [55].
- Content creation and discovery — The CKEditor AI integration has work in progress on language-handling fixes to preserve original text language during summarization [1][13] and progress on context injection [2][14] to incorporate site-specific guidelines. The AI Related Content module fixed a bug preventing proper content filtering [89].
- Advanced governance — Canvas has work in progress on conflict resolution with API support and UI development [33][52][58], and improved autosave access controls [38][57]. A new agent skill for automated guardrail configuration is in development [4][15]. Translation workflow improvements are being explored, including preventing translation before source publication [30] and exploring automated TMGMT integration [40].
- Intelligent website improvements — No direct progress today.
- Multi-channel campaigns — Translation caching and cross-field deduplication is proposed [87] to reduce costs when translating content across channels, though implementation has not yet begun.
Shipped
- AI Agents parameter validation fixed — Resolved an issue where forced parameter values were not being applied at tool execution time, restoring functionality for AI search assistants [11][20][24].
- Canvas performance and reliability improvements — Fixed validation failures on long text content, corrected access control blocking legitimate auto-save publishing, ensured AI component properties are properly flagged as required, and improved test reporting when failures occur [31][38][43][53][56][57][59].
- AI Related Content filtering corrected — Fixed bug where current page could incorrectly appear in its own related content recommendations [89].
Ongoing
- AI CKEditor language handling fix under review — Addressing issue where summarization generates output in wrong language instead of preserving original text language [1][13].
- Canvas Drupal 11.4 compatibility in progress — Work underway to ensure compatibility with newly in progress Drupal 11.4 and drop support for unsecured 11.2 version [36][51].
- Context injection for AI editor tools advancing — Development continuing on capability to provide entity-specific context to AI-powered editor features [2][64].
- Canvas conflict resolution capabilities under development — Progress on allowing editors to choose between competing changes when multiple people edit same content [33][52][58].
- Context Control Center performance optimization under review — Fix proposed for issue causing unnecessary database queries when agents have no scope subscriptions [75][86].
- Context Control Center security and access improvements under review — Addressing data exposure where users could view unpublished content without proper access checks, and improving handling of disabled conditional context [69][82].
- Context Control Center usability and documentation cleanup under review — Working on accessibility improvements for screen readers, correcting documentation inconsistencies, and addressing test reliability issues [70][73][74][76][77][83][84][85].
AI (Artificial Intelligence)
Activity this period centered on expanding the module's architecture to connect its AI-powered editor tools with broader site context, fixing language-handling defects, and improving configuration workflows.
A solution is under review for AI CKEditor Summarize generates summaries in a different language than the selected text, where the summarization feature was producing output in unintended languages rather than preserving the original. A fix has been proposed that adjusts how the prompt is constructed.
Work advanced on Add event hook to ai_ckeditor to allow context injection, which will enable AI editor actions to draw on entity-specific information—such as content type or bundle—when generating suggestions. This integration addresses a gap that has prevented the editor from incorporating site-specific writing guidelines or tone rules available elsewhere in the system.
A new capability is in development through Add a setup-guardrails agent skill to configure guardrails, guardrail sets, and global guardrails. This will allow automated or assisted configuration of content safety and policy rules, reducing manual setup for site operators.
Several usability and stability issues remain open, including an error when clicking AI Assistant in CKEditor during content creation and a configuration bug where forced parameter values are not injected at tool execution time (now closed).
How can I help on this project?
Consider prioritizing user testing resources for the CKEditor integration to validate language-handling and error-handling fixes before the next release. If automated guardrail configuration is strategic, allocate time for stakeholder alignment on policy defaults and workflow requirements.
Contributors: Alphons Jaimon (AJV009), Ann Mary Sruthy (annmarysruthy), Ricardo Castañeda (cadence96)Drupal AI Initiative
Activity this period was limited to planning work. A new feature proposal was opened for a Recipe: AI Automators comment-spam scoring and auto-unpublish, which aims to provide a ready-to-use configuration that automatically scores comments for spam and unpublishes those likely to be problematic. This would reduce the implementation barrier for site owners wanting to use AI-powered moderation, turning what is currently a manual setup process into a packaged solution. The work is assigned and in the planning stage. No code was merged or committed during this period.
How can I help on this project?
- Prioritize resourcing for the comment spam recipe feature to accelerate delivery of a practical use case that demonstrates value to site owners.
- Connect the team with community stakeholders or pilot sites willing to test AI moderation workflows in production environments.
AI Integration - ECA
No development activity was recorded during this period. A new support request was opened regarding an AI Chat action fails with "Unknown parameter: 'system_name'" when using "Specific configuration for the model". Users are encountering errors when attempting to customize model behavior through the configuration interface, which may limit their ability to tailor AI responses to specific business needs. The issue has been accepted and is awaiting investigation.
This module enables workflow automation with AI capabilities, allowing organizations to integrate intelligent processing into their content and business logic flows without custom development.
How can I help on this project?
- Consider allocating developer time to diagnose and resolve the configuration issue, as it currently blocks users from customizing AI behavior for their use cases.
- Evaluate whether this integration aligns with strategic automation priorities and whether additional resourcing would accelerate delivery of stable features.
OpenAI Provider
Work is underway to migrate the module's chat functionality to OpenAI's newer Responses API, ahead of the eventual deprecation of the older Chat Completions interface. The Route the OpenAI chat operation through the Responses API merge request was opened this period. This work ensures the module will continue to function reliably as OpenAI phases out legacy interfaces, reducing the risk of future service disruption. The refactoring maintains compatibility with other providers while adopting OpenAI's recommended approach, positioning the module for long-term maintainability.
The work is currently in review and represents proactive technical debt management rather than a user-facing feature.
How can I help on this project?
- Prioritize review and testing resources to accelerate the API migration merge request, reducing exposure to future deprecation.
- Confirm roadmap alignment: whether maintaining parity with OpenAI's evolving platform remains a strategic priority for the organization.
Contributors: Ahmad Khalil (ahmad-khalil-imagex)
MCP Client
A merge request to fix tool bug was opened during the reporting period. This work addresses a defect in the module's tool functionality that was impacting proper operation. The fix is currently under review and has not yet been merged into the codebase.
No other development activity or issue updates occurred during this 24-hour window. The module continues its early-stage development with steady progress on core functionality improvements.
How can I help on this project?
- Ensure the team has sufficient reviewer capacity to evaluate and merge pending fixes in a timely manner.
- Confirm the project roadmap and priorities are clearly defined to guide where effort should be focused next.
Contributors: Christian Fritsch (chr.fritsch)
AI Agents
The AI Agents module saw focused progress on reliability and control features over the past 24 hours. A significant bug affecting forced parameter values in tools was resolved and merged, addressing a validation error that prevented AI search assistants from functioning when certain configuration options were enabled together. This fix restores the ability to pre-configure tool parameters while keeping them hidden from users.
Several feature requests are advancing to give administrators more control over agent behavior. Work continues on tool execution ordering constraints, which will prevent agents from running tools in illogical sequences. Two other features remain open: the ability to limit how many times a tool can run to prevent infinite loops, and support for role-based tool execution to enable autonomous agents that don't require active user sessions. Additionally, work is underway to improve error handling when tools fail, ensuring users receive clearer feedback rather than encountering broken interfaces.
These developments strengthen the module's enterprise readiness by adding guardrails that prevent runaway agent behavior and improve the user experience when problems occur.
How can I help on this project?
- Prioritize testing and feedback on the execution ordering feature currently under review, as it addresses agent reliability concerns.
- Clarify business requirements for autonomous agent use cases to guide the role-based execution work.
Contributors: AKHIL BABU (AkhilBabu) [1], Joshua Fernandes (joshua1234511), Jürgen Haas (jurgenhaas)
Tool API
No development activity was recorded during this period. However, a serialization compatibility issue affecting REST API integrations was confirmed as ready for commit. The MapDefinitionNormalizer and ContextDefinitionNormalizer break REST serialization issue has reached "ready to be committed" status. This issue prevents REST endpoints from correctly serializing content when the Tool module is enabled, which could block production deployments for organizations relying on REST-based integrations or headless architectures.
The module remains in beta, and this type of integration issue is typical at this stage. Resolution of this issue will improve compatibility with standard Drupal patterns and reduce friction for teams building API-driven applications.
How can I help on this project?
- Prioritize maintainer review and commit of the ready-to-commit REST serialization fix to unblock teams dependent on API functionality.
- Ensure adequate testing resources are available to validate the fix across different REST configuration scenarios before stable release.
Drupal Canvas
Over the past 24 hours, four important fixes were merged to improve reliability and developer experience. A performance issue that caused failures when validating long text entries has been resolved, preventing "JIT stack limit reached" errors on pages with substantial content. The testing workflow was improved so that diagnostic reports are now generated even when automated tests fail, making it easier to troubleshoot problems. An access control bug that incorrectly blocked users from publishing certain auto-saved changes has been fixed. Additionally, a data accuracy issue affecting AI-assisted page building has been corrected, ensuring that required component properties are properly flagged in the AI context.
Work continues on several strategic fronts. Progress is being made on conflict resolution capabilities, allowing editors to choose between competing changes when multiple people edit the same content. Effort is underway to ensure compatibility with Drupal 11.4, which was released this week, and to drop support for the now-unsecured 11.2 version. A new feature is in development to help code component developers more easily select which content fields should populate component properties, filtering out internal metadata that should not be exposed. Translation capabilities are also being enhanced, with work to decouple core translation logic from a specific third-party module and to add translation support for code components.
How can I help on this project?
- Prioritize completion of the Drupal 11.4 compatibility update to ensure the project remains secure and supported.
- Allocate design or product resources to finalize the conflict resolution user experience, as technical work is underway but user-facing design may need validation.
Contributors: **** (project_19391_bot_cb443e60680723bba08a5351bf595251), Ben Mullins (bnjmnm), Christian López Espínola (penyaskito), Feliksas Mazeikis (f.mazeikis) [1], Lauri Timmanee (lauriii), Matt Glaman (mglaman) [1], Prabhavathi Vanipenta (prabha1997) [1], Ravi Maniyar (ravi.maniyar.123), Sally Young (justafish) [1], Wim Leers (wimleers)
Context Control Center (CCC)
Over the past 24 hours, the project focused on closing API and quality gaps identified in the recent code review, preparing the module for a release candidate. Two significant architectural planning issues were closed: a gap analysis that examined what the module needs to support before reaching 1.0, and a security-focused analysis that surfaced access control and performance risks.
Several improvements are now in review. Usage record page renders context item content without an entity access check addresses a data exposure issue where users could see unpublished content they shouldn't have access to. Selector loads the entire catalog when an agent has no scope subscriptions fixes a performance bottleneck that could cause thousands of unnecessary database queries on every AI request. Both issues have proposed solutions under review.
Additional quality improvements are in progress across accessibility (better screen reader support and keyboard navigation), documentation accuracy, and test reliability. One issue was closed to ensure future compatibility with Drupal 12's testing requirements.
The project also opened two strategic planning discussions: one exploring whether to rearchitect how modules request context (moving beyond an agent-specific model), and another examining whether the "subscription" terminology clearly communicates how context is matched and delivered to users.
How can I help on this project?
- Prioritize review capacity for the access control and performance fixes currently awaiting code review, as both address risks that could affect production deployments.
- Commission decision-making time on the two architectural planning discussions to resolve open questions before the API is locked at 1.0.
Contributors: Joshua Fernandes (joshua1234511), Juan Correa (jucs7), Kristen Pol (kepol), Pravesh Poonia (Pravesh_Poonia), Tamas Balog (tbalog)
AI translate
The AI translate module enables automated translation of Drupal content using large language models. During this period, a new feature proposal was accepted to introduce Translation result caching and cross-field deduplication. This capability would reduce translation costs by avoiding redundant API calls when content hasn't changed and by reusing translations of identical text that appears in multiple fields.
Currently, the module resends all content to translation services on every run, even when only minor edits have been made. For organizations translating content frequently or working with complex page layouts containing repeated elements, this generates unnecessary expense. The proposed caching system would make the module more cost-effective for production use, particularly for sites with paragraph-heavy structures or Layout Builder implementations.
No code changes were merged during this period. The feature remains in planning stage.
How can I help on this project?
- Allocate development resources to implement the caching feature, which would deliver measurable cost savings for translation-heavy workflows.
- Provide input on translation budget priorities to help the team optimize where cost reduction would have greatest business impact.
References
[1] AI CKEditor Summarize generates summaries in a different language than the selected text
[2] Add event hook to ai_ckeditor to allow context injection
[4] Add a setup-guardrails agent skill to configure guardrails, guardrail sets, and global guardrails
[11] force_value + hide_property in tool_usage_limits does not inject value at tool execution time
[13] Issue #3586580: Fix summarize prompt translating text instead of preserving original language
[14] 3581952 add free-form metadata bag on InputInterface; seed pre/post/streaming...
[15] task: #3586561 Add a setup-guardrails agent skill to configure guardrails,...
[16] Recipe: AI Automators comment-spam scoring and auto-unpublish
[20] force_value + hide_property in tool_usage_limits does not inject value at tool execution time
[22] Add limits on how often a tool can run
[23] Make it possible to restrict the order of tools during agent executions
[24] fix: #3586044 Apply forced tool argument values at execution time
[25] Issue #3560681: Add per-tool execution ordering constraints for agent loops.
[29] Add heuristics for exposing fields/props to the content-entity-reference selection UI
[30] Prevent translation before page is published in source language
[33] Rudimentary conflict resolution UI
[36] Make Canvas test suite pass on 11.4; drop support for 11.2
[40] Spike: TMGMT Auto-job creation for Canvas' translatable content & config entities
[42] Canvas AI: Drupal\canvas_ai\AiResponseValidator fails to validate non-existent props
[43] Canvas AI: Component context required props missing required flag
[50] feat(Internal HTTP API): #3591669 Heuristics for the content-entity-reference selection UI
[51] #3591764: Make Canvas test suite pass on 11.4; drop support for 11.2
[53] Issue #3591332: [CI] Playwright Report job skipped when Playwright test fails
[55] #3591738 add translation data to code component provider
[57] #3591736 "Access check in ApiAutoSaveController::post() should be performed earlier"
[58] feat(conflict): Add conflict resolution UI with viewport selection and route integration
[59] Fix required prop flag dropped in processSdc() and missing in processCodeComponents().
[64] Inject context into ai_ckeditor requests
[69] Usage record page renders context item content without an entity access check
[70] Clean up CCC form and table accessibility cleanup
[73] Clean up CCC JavaScript filter feedback
[74] Clean up CCC test and documentation consistency before rc1
[75] Selector loads the entire catalog when an agent has no scope subscriptions
[76] Issue #3586305: Fix context prefix default alignment and stale getManageUrl docs.
[77] Issue #3586271: Clean up CCC inconsistencies and DX issues before rc1 (part 3)
[82] Issue #3586311: Gate context item render on access('view') in usage record page.
[83] Issue #3586301: Clean up CCC accessible interactive links and external links.
[84] Issue #3586303: Announce filtered row counts to screen readers in JS filter behaviors.
[85] Issue #3586299: Fix test and documentation consistency before rc1.
[86] Issue #3586315: Avoid full catalog scan when agent has no scope subscriptions.
[87] Feature: Translation result caching and cross-field deduplication
Shipped
- AI Agents: Tool execution forced values now injected correctly — The force_value + hide_property bug in tool_usage_limits was fixed, resolving validation errors that prevented AI Search assistants from functioning [11][20][24].
- Canvas: Critical regex bug causing JIT stack errors fixed — Removed problematic regex constraint on string_long fields that caused "JIT stack limit reached" errors on long content [31][56].
- Canvas: Playwright CI report generation fixed — Updated GitLab CI configuration to ensure Playwright test reports are generated even when tests fail [32][53].
- Canvas: Auto-save access control bug resolved — Moved access check earlier in ApiAutoSaveController to prevent incorrect 409 responses when publishing auto-saves [38][57].
- Canvas AI: Required props flag now correctly set — Fixed processSdc() and processCodeComponents() to properly flag required props in component context [43][59].
Ongoing
- AI: CKEditor summarize translates instead of preserving language — MR open to fix summarize prompt that incorrectly translates content rather than preserving original language [1][13].
- AI: Context injection event hook for CKEditor under review — Large MR adds metadata bag to InputInterface and pre/post/streaming events from ProviderProxy [2][14].
- OpenAI Provider: Migration to Responses API in progress — Major refactor routing chat operations through newer Responses API instead of legacy Chat Completions API [18].
- Canvas: Drupal 11.4 compatibility work underway — Test suite being updated to pass on 11.4 while dropping support for 11.2 [36][51].
- CCC: Security fix for usage record page access control — MR gates context item rendering on proper entity access checks to prevent unauthorized content viewing [69][82].
AI (Artificial Intelligence)
The AI module saw continued activity around CKEditor integration issues and API extension work during the reporting period. Two bugs in AI CKEditor were confirmed: AI CKEditor Summarize generates summaries in a different language than the selected text, where the summarize prompt incorrectly translates content rather than preserving the original language, and Issue when creating content and click on AI Assistant on Ckeditor, which triggers a null pointer error in AiCKEditorPluginBase::buildCkEditorModalForm() at line 214.
A major bug affecting AI Search was closed: force_value + hide_property in tool_usage_limits does not inject value at tool execution time, which prevented search assistants from functioning due to forced values not being injected during tool execution, resulting in validation errors.
Development continued on the Add event hook to ai_ckeditor to allow context injection issue, with MR !1469 adding a metadata bag to InputInterface and seeding pre/post/streaming events from ProviderProxy. A large MR !1724 for the setup-guardrails agent skill remained under review.
How can I help on this project?
- Review MR !1738 for the summarize language bug to validate the prompt fix preserves original language.
- Investigate and patch the null pointer error in AiCKEditorPluginBase, which has no MR yet.
- Review MR !1724 for the setup-guardrails skill (1799 lines).
Drupal AI Initiative
Activity was light over the last 24 hours, with no merge requests merged or commits pushed. One issue saw updates: Recipe: AI Automators comment-spam scoring and auto-unpublish, which tracks the creation of a Drupal recipe to wire AI Automators onto the core Comment entity for spam scoring and automatic unpublishing. The recipe would include a custom field for spam scores, auto-unpublish logic for comments scoring 8 or higher, and a triage View. This issue remains in an opened state and is currently assigned.
No API changes, bug fixes, or completed work was recorded during this period. The module appears to be in a planning or early development phase for this feature.
How can I help on this project?
Review the AI Automators recipe specification and contribute feedback on the proposed comment spam scoring workflow. If you have experience with Drupal recipes or AI Automators, consider helping design the field schema and auto-unpublish logic.
AI Integration - ECA
No code was merged or shipped during this period. Activity focused on issue triage and support.
A new support issue was accepted regarding the AI Chat action fails with "Unknown parameter: 'system_name'" when using "Specific configuration for the model" functionality. The issue describes a failure when attempting to pass model-specific configuration through the AI Chat action, with the system rejecting the system_name parameter despite documentation suggesting this pattern should work. This appears to be blocking users who need to customize system prompts and other model configuration options within ECA workflows.
No merge requests were opened or merged, and no commits were pushed during this period. The module remains in a maintenance state with no active development blocking issues identified.
How can I help on this project?
- Investigate the AI Chat action parameter handling issue to determine whether this is a documentation error or a bug in parameter validation.
- Review the AI Chat action plugin code to verify how model-specific configuration is passed to the underlying AI provider API.
OpenAI Provider
A major refactor is in progress to migrate the module's chat operation from OpenAI's legacy Chat Completions API to the newer Responses API. The Route the OpenAI chat operation through the Responses API merge request was opened during the reporting period. This MR replaces the previous approach of exposing responses as a separate operation type, instead routing all chat operations through the Responses API while maintaining backward compatibility. OpenAI plans to eventually deprecate Chat Completions in favor of Responses. The merge request touches 1,410 lines across the provider implementation. No merges or commits landed in the past 24 hours.
How can I help on this project?
- Review the open Responses API refactor merge request, focusing on backward compatibility and edge cases in the migration from Chat Completions.
- Test the branch against existing chat implementations to verify the API transition does not break existing functionality.
Contributors: Ahmad Khalil (ahmad-khalil-imagex)
MCP Client
A new merge request was opened during this period addressing a tool-related bug. The fix tool bug branch contains 136 lines of changes and is awaiting review.
No merges or commits were pushed to the project in the last 24 hours, and no blocking issues were reported.
How can I help on this project?
- Review the open fix tool bug merge request to help move it toward merge.
- Test the MCP Client module with edge cases to identify unreported bugs or compatibility issues.
Contributors: Christian Fritsch (chr.fritsch)
AI Agents
A critical bug affecting AI Search integration was resolved during this period. The force_value + hide_property in tool_usage_limits does not inject value at tool execution time issue was closed after MR !292 was merged. This fix ensures that when both force_value and hide_property are enabled in tool configuration, forced values are now correctly injected at execution time rather than failing with validation errors.
Several feature requests saw activity. Discussion continued on Let an agent use a role when running a tool, which addresses autonomous agent execution in cron jobs and queues where no user session exists. Work progressed on Add limits on how often a tool can run, which aims to prevent infinite loops through deterministic tool execution counts. The Make it possible to restrict the order of tools during agent executions feature has an open MR (!252) awaiting review, offering execution ordering constraints to prevent illogical tool sequences.
How can I help on this project?
- Review MR !252 for tool execution ordering constraints and provide feedback on the API design.
- Review MR !163 which addresses exception handling in tool execution to improve UI stability.
- Pick up role-based tool execution, which has no MR yet and needs implementation for autonomous agents.
Contributors: AKHIL BABU (AkhilBabu) [1], Joshua Fernandes (joshua1234511), Jürgen Haas (jurgenhaas)
Tool API
Activity this period centered on a critical RTBC issue affecting REST serialization. The MapDefinitionNormalizer and ContextDefinitionNormalizer break REST serialization issue has reached the "Reviewed & Tested by the Community" state. The problem occurs when Tool module is enabled alongside REST module: the normalizers registered by Tool interfere with entity serialization, causing REST endpoints to return malformed JSON that includes internal ContextDefinition and MapDefinition objects instead of properly normalized entity data. This affects any REST resource that serializes entities to JSON, breaking API responses that previously worked correctly before Tool module installation.
No merge requests were opened, merged, or updated during this period, and no commits were pushed to the repository. The RTBC issue remains the primary blocking concern for production deployments using REST APIs.
How can I help on this project?
- Review the RTBC REST serialization issue and validate the proposed fix or help move it toward commit.
- Test the Tool module with REST-enabled sites to identify additional edge cases in serialization behavior.
Drupal Canvas
Four merge requests landed during this period, addressing critical bugs and developer experience improvements. The `Regex` constraint on `string_long` field type intended to convey semantics causes "JIT stack limit reached" on long strings; make this pattern a no-op since it allows _anything_ was resolved by removing a problematic regex pattern that caused PCRE JIT stack errors on large text fields. The [CI] Playwright Report job skipped when Playwright test fails issue was closed by updating GitLab CI configuration to ensure test reports are generated even when tests fail. An auto-save access control bug was fixed in Access check when publishing auto-save items was incorrectly returning a 409 when attempting to publish auto-saves not returned by `GET`, moving the access check earlier in `ApiAutoSaveController::post()`. The Canvas AI module saw a fix for Canvas AI: Component context required props missing required flag, correcting `CanvasAiPageBuilderHelper::processSdc()` and `processCodeComponents()` to properly flag required props.
Work continued on translating code components and conflict resolution UI, while Make Canvas test suite pass on 11.4; drop support for 11.2 remained in progress to align with Drupal 11.4's release and the end of 11.2 security support. Several new bugs were reported, including `PageRegion::createFromBlockLayout()` fatals with an `assert()` failure for any block carrying a `context_mapping` setting (e.g. Views blocks with a contextual filter) and Publishing a page without a URL alias fails with 500: AssertionError in PageHooks::ensurePathautoSkipped().
How can I help on this project?
Help diagnose the `PageRegion::createFromBlockLayout()` fatal affecting Views blocks with contextual filters — no MR exists yet. Review the open MR for heuristics in the content-entity-reference selection UI. Investigate and propose a fix for the Pathauto assertion error when publishing pages without URL aliases.
Contributors: **** (project_19391_bot_cb443e60680723bba08a5351bf595251), Ben Mullins (bnjmnm), Christian López Espínola (penyaskito), Feliksas Mazeikis (f.mazeikis) [1], Lauri Timmanee (lauriii), Matt Glaman (mglaman) [1], Prabhavathi Vanipenta (prabha1997) [1], Ravi Maniyar (ravi.maniyar.123), Sally Young (justafish) [1], Wim Leers (wimleers)
Context Control Center (CCC)
The Context Control Center made progress on accessibility, security, and API consistency ahead of rc1. Five merge requests addressing code review findings were opened during the period.
A critical security issue was identified and patched: Usage record page renders context item content without an entity access check. The usage record controller was rendering context item content without verifying access('view'), allowing users with only view ai context usage permission to read unpublished content. MR !208 gates the render on proper access checks.
A performance issue was also addressed: Selector loads the entire catalog when an agent has no scope subscriptions. The AiContextSelector::getPrefilteredPublishedItemIds() method was loading every published context item for agents with empty scope subscriptions (the common "global items only" configuration). MR !210 avoids the full catalog scan.
Accessibility improvements are underway in Clean up CCC accessible interactive links and external links (MR !200) and Clean up CCC JavaScript filter feedback (MR !206), adding screen reader announcements and proper rel attributes. Documentation consistency fixes are in MR !202.
Two issues were closed: Add #[RunTestsInSeparateProcesses] attribute to all kernel test classes and Beta vs 1.1 CCC API gap analysis, which spawned the new Move from agent-specific to generic context consumer API issue, tagged as a stable blocker.
How can I help on this project?
Review the open merge requests for security (!208) and performance (!210) fixes. Test Clean up CCC documentation and API consistency, which has no related MR yet and addresses config defaults and stale documentation. Review accessibility improvements in MR !200 and !206.
Contributors: Joshua Fernandes (joshua1234511), Juan Correa (jucs7), Kristen Pol (kepol), Pravesh Poonia (Pravesh_Poonia), Tamas Balog (tbalog)
AI translate
The AI translate module saw one new feature proposal added during the period. The Translation result caching and cross-field deduplication issue was opened and marked as accepted. The proposal addresses unnecessary LLM API costs by introducing caching for previously translated content and deduplication of identical strings across multiple fields within the same entity. This would benefit sites with paragraph-heavy entities or Layout Builder pages where the same short strings (CTAs, navigation titles) appear in multiple components.
No merge requests were merged and no commits were pushed during this period. The module remains quiet on the development front while the caching feature proposal awaits implementation work.
How can I help on this project?
- Pick up the Translation result caching and cross-field deduplication feature. It is accepted and unassigned with no related MR yet.
- Review the module's open issues to identify other bugs or feature requests that need attention.
References
[1] AI CKEditor Summarize generates summaries in a different language than the selected text
[2] Add event hook to ai_ckeditor to allow context injection
[11] force_value + hide_property in tool_usage_limits does not inject value at tool execution time
[13] Issue #3586580: Fix summarize prompt translating text instead of preserving original language
[14] 3581952 add free-form metadata bag on InputInterface; seed pre/post/streaming...
[18] Issue #3558801: Route the OpenAI chat operation through the Responses API...
[20] force_value + hide_property in tool_usage_limits does not inject value at tool execution time
[24] fix: #3586044 Apply forced tool argument values at execution time
[32] [CI] Playwright Report job skipped when Playwright test fails
[36] Make Canvas test suite pass on 11.4; drop support for 11.2
[43] Canvas AI: Component context required props missing required flag
[51] #3591764: Make Canvas test suite pass on 11.4; drop support for 11.2
[53] Issue #3591332: [CI] Playwright Report job skipped when Playwright test fails
[57] #3591736 "Access check in ApiAutoSaveController::post() should be performed earlier"
[59] Fix required prop flag dropped in processSdc() and missing in processCodeComponents().
[69] Usage record page renders context item content without an entity access check
[82] Issue #3586311: Gate context item render on access('view') in usage record page.