feat: harden security, improve error handling, add integration tests

- agent: proper error propagation in loop, remove unwrap calls
- channels: lark/signal/whatsapp input validation and error handling
- config/schema: major refactor for type-safe configuration parsing
- gateway: API config endpoint, improved module initialization
- memory: markdown/snapshot/traits safety improvements
- providers: add Codex provider, fix OpenAI error handling
- security: audit/detect/secrets hardening with input validation
- tools: browser/shell/gateway/web_fetch security boundaries
- tests: add 5 cross-module integration tests
- docs: consolidate RUN_TESTS.md, remove obsolete docs

Author: g1e2x87

.gitignore

@@ -4,7 +4,6 @@ firmware/*/target
 *.db-journal
 .DS_Store
 ._*
-.wt-pr37/
 __pycache__/
 *.pyc
 docker-compose.override.yml
@@ -30,7 +29,6 @@ venv/
 credentials.json
 .worktrees/
 
-# Web console
-web/node_modules/
-web/.svelte-kit/
+# Console UI build output
+console/dist/
 pdk/rust/examples/voice-talk-realtime/target/

RUN_TESTS.md

@@ -1,111 +1,40 @@
-# 🧪 Test Execution Guide
+# Test Execution Guide
 
 ## Quick Reference
 
 ```bash
-# Full automated test suite (~2 min)
-./test_telegram_integration.sh
+# Unit tests (~30 sec)
+cargo test --lib
 
-# Quick smoke test (~10 sec)
-./quick_test.sh
-
-# Just compile and unit test (~30 sec)
+# Telegram-specific unit tests
 cargo test telegram --lib
-```
-
-## 📝 What Was Created For You
-
-### 1. **test_telegram_integration.sh** (Main Test Suite)
-   - **20+ automated tests** covering all fixes
-   - **6 test phases**: Code quality, build, config, health, features, manual
-   - **Colored output** with pass/fail indicators
-   - **Detailed summary** at the end
-
-   ```bash
-   ./test_telegram_integration.sh
-   ```
-
-### 2. **quick_test.sh** (Fast Validation)
-   - **4 essential tests** for quick feedback
-   - **<10 second** execution time
-   - Perfect for **pre-commit** checks
 
-   ```bash
-   ./quick_test.sh
-   ```
+# Full test suite
+cargo test --all-features
 
-### 3. **generate_test_messages.py** (Test Helper)
-   - Generates test messages of various lengths
-   - Tests message splitting functionality
-   - 8 different message types
-
-   ```bash
-   # Generate a long message (>4096 chars)
-   python3 test_helpers/generate_test_messages.py long
-
-   # Show all message types
-   python3 test_helpers/generate_test_messages.py all
-   ```
-
-### 4. **TESTING_TELEGRAM.md** (Complete Guide)
-   - Comprehensive testing documentation
-   - Troubleshooting guide
-   - Performance benchmarks
-   - CI/CD integration examples
+# Quick compile check
+cargo check --all-features
+```
 
-## 🚀 Step-by-Step: First Run
+## Step-by-Step: First Run
 
-### Step 1: Run Automated Tests
+### Step 1: Run Unit Tests
 
 ```bash
-cd /Users/abdzsam/zeroclaw
-
-# Make scripts executable (already done)
-chmod +x test_telegram_integration.sh quick_test.sh
+cd /path/to/prx
 
 # Run the full test suite
-./test_telegram_integration.sh
-```
-
-**Expected output:**
-```
-⚡⚡⚡⚡⚡⚡⚡⚡⚡⚡⚡⚡⚡⚡⚡⚡⚡⚡⚡⚡⚡⚡⚡⚡⚡⚡⚡⚡⚡⚡
-
-███████╗███████╗██████╗  ██████╗  ██████╗██╗      █████╗ ██╗    ██╗
-...
-
-🧪 TELEGRAM INTEGRATION TEST SUITE 🧪
-
-Phase 1: Code Quality Tests
-━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
-
-Test 1: Compiling test suite
-✓ PASS: Test suite compiles successfully
-
-Test 2: Running Telegram unit tests
-✓ PASS: All Telegram unit tests passed (24 tests)
-...
-
-Test Summary
-━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
-Total Tests:   20
-Passed:        20
-Failed:        0
-Warnings:      0
-
-Pass Rate:     100%
-
-✓ ALL AUTOMATED TESTS PASSED! 🎉
+cargo test --all-features
 ```
 
 ### Step 2: Configure Telegram (if not done)
 
 ```bash
 # Interactive setup
-zeroclaw onboard --interactive
+prx onboard --interactive
 
 # Or channels-only setup
-zeroclaw onboard --channels-only
+prx onboard --channels-only
 ```
 
 When prompted:
@@ -116,14 +45,14 @@ When prompted:
 ### Step 3: Verify Health
 
 ```bash
-zeroclaw channel doctor
+prx channel doctor
 ```
 
 **Expected output:**
 ```
-🩺 ZeroClaw Channel Doctor
+OpenPRX Channel Doctor
 
-  ✅ Telegram  healthy
+  Telegram  healthy
 
 Summary: 1 healthy, 0 unhealthy, 0 timed out
 ```
@@ -134,7 +63,7 @@ Summary: 1 healthy, 0 unhealthy, 0 timed out
 
 ```bash
 # Terminal 1: Start the channel
-zeroclaw channel start
+prx channel start
 ```
 
 **In Telegram:**
@@ -144,55 +73,31 @@ zeroclaw channel start
 
 #### Test 2: Long Message (Split Test)
 
-```bash
-# Generate a long message
-python3 test_helpers/generate_test_messages.py long
-```
-
-- **Copy the output**
-- **Paste into Telegram** to your bot
+- Send a message longer than 4096 characters to your bot
 - **Verify**:
   - Message is split into 2+ chunks
-  - First chunk ends with `(continues...)`
-  - Middle chunks have `(continued)` and `(continues...)`
-  - Last chunk starts with `(continued)`
   - All chunks arrive in order
 
-#### Test 3: Word Boundary Splitting
-
-```bash
-python3 test_helpers/generate_test_messages.py word
-```
-
-- Send to bot
-- **Verify**: Splits at word boundaries (not mid-word)
-
-## 🎯 Test Results Checklist
+## Test Results Checklist
 
 After running all tests, verify:
 
 ### Automated Tests
-- [ ] ✅ All 20 automated tests passed
-- [ ] ✅ Build completed successfully
-- [ ] ✅ Binary size <10MB
-- [ ] ✅ Health check completes in <5s
-- [ ] ✅ No clippy warnings
+- [ ] All unit tests pass
+- [ ] Build completed successfully
+- [ ] No clippy warnings
 
 ### Manual Tests
-- [ ] ✅ Bot responds to basic messages
-- [ ] ✅ Long messages split correctly
-- [ ] ✅ Continuation markers appear
-- [ ] ✅ Word boundaries respected
-- [ ] ✅ Allowlist blocks unauthorized users
-- [ ] ✅ No errors in logs
+- [ ] Bot responds to basic messages
+- [ ] Long messages split correctly
+- [ ] Allowlist blocks unauthorized users
+- [ ] No errors in logs
 
 ### Performance
-- [ ] ✅ Response time <3 seconds
-- [ ] ✅ Memory usage <10MB
-- [ ] ✅ No message loss
-- [ ] ✅ Rate limiting works (100ms delays)
+- [ ] Response time <3 seconds
+- [ ] No message loss
 
-## 🐛 Troubleshooting
+## Troubleshooting
 
 ### Issue: Tests fail to compile
 
@@ -209,10 +114,10 @@ cargo update
 
 ```bash
 # Check config
-cat ~/.zeroclaw/config.toml | grep -A 5 telegram
+cat ~/.openprx/config.toml | grep -A 5 telegram
 
 # Reconfigure
-zeroclaw onboard --channels-only
+prx onboard --channels-only
 ```
 
 ### Issue: Health check fails
@@ -228,76 +133,35 @@ curl "https://api.telegram.org/bot<YOUR_TOKEN>/getMe"
 
 ```bash
 # Enable debug logging
-RUST_LOG=debug zeroclaw channel start
+RUST_LOG=debug prx channel start
 
 # Look for:
 # - "Telegram channel listening for messages..."
 # - "ignoring message from unauthorized user" (if allowlist issue)
 # - Any error messages
 ```
 
-## 📊 Performance Benchmarks
-
-After all fixes, you should see:
+## Performance Benchmarks
 
 | Metric | Target | Command |
 |--------|--------|---------|
-| Unit test pass | 24/24 | `cargo test telegram --lib` |
+| Unit test pass | all pass | `cargo test --lib` |
 | Build time | <30s | `time cargo build --release` |
-| Binary size | ~3-4MB | `ls -lh target/release/zeroclaw` |
-| Health check | <5s | `time zeroclaw channel doctor` |
+| Health check | <5s | `time prx channel doctor` |
 | First response | <3s | Manual test in Telegram |
-| Message split | <50ms | Check debug logs |
-| Memory usage | <10MB | `ps aux \| grep zeroclaw` |
 
-## 🔄 CI/CD Integration
+## CI/CD Integration
 
 Add to your workflow:
 
 ```bash
-# Pre-commit hook
-#!/bin/bash
-./quick_test.sh
-
 # CI pipeline
-./test_telegram_integration.sh
+cargo fmt --all -- --check
+cargo clippy --all-targets --all-features -- -D warnings
+cargo test --all-features
 ```
 
-## 📚 Next Steps
-
-1. **Run the tests:**
-   ```bash
-   ./test_telegram_integration.sh
-   ```
-
-2. **Fix any failures** using the troubleshooting guide
-
-3. **Complete manual tests** using the checklist
-
-4. **Deploy to production** when all tests pass
-
-5. **Monitor logs** for any issues:
-   ```bash
-   zeroclaw daemon
-   # or
-   RUST_LOG=info zeroclaw channel start
-   ```
-
-## 🎉 Success!
-
-If all tests pass:
-- ✅ Message splitting works (4096 char limit)
-- ✅ Health check has 5s timeout
-- ✅ Empty chat_id is handled safely
-- ✅ All 24 unit tests pass
-- ✅ Code is production-ready
-
-**Your Telegram integration is ready to go!** 🚀
-
----
-
-## 📞 Support
+## Support
 
-- Issues: https://github.com/theonlyhennygod/zeroclaw/issues
-- Docs: `./TESTING_TELEGRAM.md`
-- Help: `zeroclaw --help`
+- Issues: https://github.com/openprx/prx/issues
+- Help: `prx --help`

SECURITY.md

@@ -13,7 +13,7 @@
 Instead, please report them responsibly:
 
 1. **Email**: Send details to the maintainers via GitHub private vulnerability reporting
-2. **GitHub**: Use [GitHub Security Advisories](https://github.com/theonlyhennygod/openprx/security/advisories/new)
+2. **GitHub**: Use [GitHub Security Advisories](https://github.com/openprx/prx/security/advisories/new)
 
 ### What to Include