Feedback Automation API

Feedback endpoints collect user reports, expose triage exports, and integrate with external work trackers.

Submission endpoints

• POST /api/feedback-submissions create feedback submission (multipart form)
• GET /api/feedback/agents list VM agents the user can attach to a report

POST /api/feedback-submissions expects:

• payload (JSON string, validated by Zod discriminated schema)
• optional screenshot file (used by global overlay feature_request / bug_report; workflow issue reports submit without screenshot upload)

Submission types:

• feature_request
• bug_report
• workflow_issue_report

Organization scoping:

• Submission ownership uses the effective org ID for the request context.
• Super-admin submissions follow the active org override when it is set; otherwise they use the user-linked org ID.

Admin export endpoint

• GET /api/admin/feedback/export export filtered submissions as CSV

Super-admin only. Supports query filters:

• type
• status
• organization
• vm
• from
• to

Webhook consumers

• POST /api/webhooks/github/feedback
• POST /api/webhooks/clickup/feedback

Behavior:

• Verify signature first.
• Accept only supported action/event types.
• Resolve linked feedback work item by external issue/task reference.
• Rearm outbox status-sync event for async processing.

Security model

• User endpoints require authenticated session.
• Admin export requires super_admin.
• Webhook signature verification uses configured secrets; invalid signatures return 401.

Environment configuration

Feedback automation runtime is controlled by:

• FEEDBACK_AUTOMATION_ENABLED
• FEEDBACK_AUTOMATION_WORKER_INTERVAL_MS
• FEEDBACK_AUTOMATION_BASE_BRANCH
• GitHub and ClickUp credential/webhook env variables
• OpenAI enrichment model env variables