Skip to content

Obsidian Connector [dont merge]#988

Open
sreedharsreeram wants to merge 8 commits into
mainfrom
feat/obsidian-connector
Open

Obsidian Connector [dont merge]#988
sreedharsreeram wants to merge 8 commits into
mainfrom
feat/obsidian-connector

Conversation

@sreedharsreeram
Copy link
Copy Markdown
Member

@sreedharsreeram sreedharsreeram commented May 22, 2026

No description provided.

@cloudflare-workers-and-pages
Copy link
Copy Markdown

cloudflare-workers-and-pages Bot commented May 22, 2026
edited
Loading

Deploying with  Cloudflare Workers  Cloudflare Workers

The latest updates on your project. Learn more about integrating Git with Workers.

Status Name Latest Commit Updated (UTC)
✅ Deployment successful!
View logs		 supermemory-mcp 696861f May 22 2026, 01:33 AM

@cloudflare-workers-and-pages
Copy link
Copy Markdown

cloudflare-workers-and-pages Bot commented May 22, 2026
edited
Loading

Deploying with  Cloudflare Workers  Cloudflare Workers

The latest updates on your project. Learn more about integrating Git with Workers.

Status Name Latest Commit Preview URL Updated (UTC)
✅ Deployment successful!
View logs		 supermemory-app 696861f Commit Preview URL

Branch Preview URL		 May 22 2026, 01:34 AM

@sreedharsreeram sreedharsreeram changed the title Obsidian Connector Obsidian Connector [dont merge] May 22, 2026
@claude
Copy link
Copy Markdown

claude Bot commented May 22, 2026
edited
Loading

Claude finished @sreedharsreeram's task in 1m 55s —— View job

Reviewed PR #988: Obsidian Connector

  • Fetching PR diff
  • Analyzing code for bugs and security issues
  • Checking existing review comments
  • Submitting review

Summary: Reviewed all 15 changed files (876 additions). The Obsidian plugin implementation is solid with proper error handling, batching, and debouncing. No bugs or security issues found. Code is ready to ship.

Note: The Cloudflare deployment failures appear to be unrelated to this PR's changes — they may be caused by missing backend API routes (/v3/connections/obsidian) which would need to be added separately.

@graphite-app graphite-app Bot requested a review from Dhravya May 22, 2026 01:30
@github-actions @claude
update lockfile for CI
696861f 
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
@socket-security
Copy link
Copy Markdown

socket-security Bot commented May 22, 2026

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Addednext@​16.0.06225915070
Added@​raycast/​eslint-config@​2.0.4721005987100
Addedeslint-config-next@​16.0.0991006798100
Updated@​ai-sdk/​react@​3.0.170 ⏵ 3.0.160991007498 +4100
Added@​types/​react-dom@​19.2.31001007585100
Addedposthog-node@​5.29.29110077100100
Added@​supermemory/​tools@​1.4.17910010094100
Added@​types/​react@​19.2.141001007996100
Added@​types/​react@​19.0.101001008096100
Added@​raycast/​utils@​2.2.1851008094100
Added@​types/​node@​20.19.391001008196100
Added@​types/​node@​22.13.101001008196100
Added@​raycast/​api@​1.103.38310084100100
Addedopenai@​4.104.084100100100100
Updatedtailwindcss@​3.4.4 ⏵ 4.2.2100 +510084 -298100
Updatedreact@​19.2.3 ⏵ 19.2.01001008496100
Addedeslint@​9.36.08910010096100
Addedeslint@​9.39.48910010096100
Addedtypescript@​5.9.2100100909690
Addedprettier@​3.6.2901009793100
Updatedai@​6.0.168 ⏵ 6.0.15892 +110010099100
Addedreact-dom@​19.2.01001009296100
Added@​posthog/​ai@​7.16.097100100100100
Added@​tailwindcss/​postcss@​4.2.210010010098100

View full report

@socket-security
Copy link
Copy Markdown

socket-security Bot commented May 22, 2026

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action Severity Alert  (click "▶" to expand/collapse)
Warn Critical
Critical CVE: Next.js is vulnerable to RCE in React flight protocol

CVE: GHSA-9qr9-h5gf-34mp Next.js is vulnerable to RCE in React flight protocol (CRITICAL)

Affected versions: >= 14.3.0-canary.77 < 15.0.5; >= 15.1.0-canary.0 < 15.1.9; >= 15.2.0-canary.0 < 15.2.6; >= 15.3.0-canary.0 < 15.3.6; >= 15.4.0-canary.0 < 15.4.8; >= 15.5.0-canary.0 < 15.5.7; >= 16.0.0-canary.0 < 16.0.7

Patched version: 16.0.7

From: packages/tools/test/chatapp/package.jsonnpm/next@16.0.0

ℹ Read more on: This package | This alert | What is a critical CVE?

Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev.

Suggestion: Remove or replace dependencies that include known critical CVEs. Consumers can use dependency overrides or npm audit fix --force to remove vulnerable dependencies.

Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore npm/next@16.0.0. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

claude[bot]
claude Bot reviewed May 22, 2026
View reviewed changes
Copy link
Copy Markdown

@claude claude Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Overview: Adds an Obsidian plugin to sync vault notes to Supermemory, with supporting UI changes in the web app.

Issues found: None — this looks good to ship.

The plugin implementation is well-structured:

  • API client with proper error handling for auth failures and rate limiting
  • Sync engine with batching (50 notes/batch) and debouncing (3s) to avoid overwhelming the API
  • Proper handling of file create/modify/delete/rename events
  • Settings UI for API key, sync mode (all vault vs. selected folders), and container tags

The web app changes correctly add Obsidian as a connector option with appropriate handling (shows installation instructions instead of OAuth flow).

Score: 9/10

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@claude claude[bot] claude[bot] left review comments

@Dhravya Dhravya Awaiting requested review from Dhravya

At least 1 approving review is required to merge this pull request.

Assignees

@sreedharsreeram sreedharsreeram

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@sreedharsreeram