feat(ao): land the end-to-end agent-spawn + SCM-observe chain#73
Closed
harshitsinghbhandari wants to merge 24 commits into
Closed
feat(ao): land the end-to-end agent-spawn + SCM-observe chain#73harshitsinghbhandari wants to merge 24 commits into
harshitsinghbhandari wants to merge 24 commits into
Conversation
Faithful copy of the agents plugin implementation from yyovil/better-ao (internal/plugin/ -> backend/internal/plugin/) plus its PRD (prds/plugins/agents/PRD.md), as a first-iteration proposal for review. Imports are left at their original github.com/yyovil/better-ao/... paths and are NOT yet reconciled to this repo's module; see PR description for the integration deltas (module path, missing internal/utils dependency). Co-authored-by: Claude <noreply@anthropic.com>
A fresh GitHub SCM provider adapter under
backend/internal/adapters/scm/github/ exposing one method:
(*Provider).Observe(ctx, prURL) (ports.PRObservation, error)
It performs a REST GET on /repos/{o}/{r}/pulls/{n} for the authoritative
draft/merged/closed/head-SHA, one GraphQL query for the reviewDecision +
mergeStateStatus + statusCheckRollup + unresolved review threads, and
(only for failure-class CheckRuns) a REST GET on
/actions/jobs/{job_id}/logs to splice the last 20 lines of the failed
job into the observation.
The package is the observation primitive; the polling loop, cadence
selection, daemon wiring, persistence and webhook receiver are all
intentionally out of scope (separate PRs / lanes).
Closes #27 — this supersedes PR #28's attempt, which targeted types
(domain.SCMProvider / SCMSnapshot / ports.SCMObserveRequest) that the
PR #62 simplification refactor has since removed. The GraphQL queries
and mergeability composition logic are credited to @whoisasx from
PR #28's provider.go; the package was re-implemented against the
current ports.PRObservation seam (post-#62) rather than rebased.
Bot-author detection uses ONLY GitHub's typed signal (__typename
"Bot" / User.Type "Bot"). The strings.Contains(login, "bot") fallback
from PR #28 was intentionally dropped — aa-18's review flagged it as
a false-positive magnet for logins like "robothon" / "lambot123".
46 table-driven tests against httptest.NewServer cover happy path,
draft, merged, closed (not merged), CI passing/failing/pending,
StatusContext legacy, log-tail extraction (and the best-effort
log-fetch failure case), mergeability mergeable/conflicting/blocked
(including ci-failing → blocked even when GitHub still says CLEAN —
the load-bearing aa-18 contract)/unstable/unknown, review
approved/changes-requested/required/none, bot-author filtering
(including the robothon false-positive guard), unresolved-only
threads, all-bots → empty Comments, ETag-304 cache hit, primary +
secondary rate-limit (with errors.As → *RateLimitError), 401 →
ErrAuthFailed, malformed JSON → Fetched:false, network error →
Fetched:false, Authorization Bearer header injection,
StaticTokenSource blank/whitespace rejection, GHTokenSource memoize
+ invalidate.
Verification:
- go build ./... clean
- go vet ./... clean
- gofmt -l backend/internal/adapters/scm/ clean
- golangci-lint run ./... (v2.12, repo .golangci.yml) 0 issues
- go test -race ./internal/adapters/scm/github/... 46/46 PASS
References:
- aa-18 review of PR #28: ~/.ao/agent-reports/aa-18.md
- aa-26 tracker adapter (sibling Go-adapter pattern): #36 / agent-reports/aa-26.md
Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
…x messenger PR #62 ("simplify session lifecycle and zellij runtime") deleted the Session Manager wiring from the daemon — every call to session.New() was removed and only the integration test still constructed one. This brings SM back, end to end: calling sm.Spawn() now launches a real Claude Code agent in a real git worktree in a real zellij session, and lifecycle nudges reach the agent via an inbox file. Four new pieces: - adapters/agent/portshim: bridges the richer adapters/agent.Agent interface (PR #65, @yyovil) onto the narrower ports.Agent the SM consumes. POSIX shell-quoting joins argv into the single string the zellij `sh -lc` wrapper expects. - adapters/workspace/gitworktree/projectresolver: gitworktree.RepoResolver backed by project.Manager. Lives in its own subpackage so gitworktree stays free of the project import (and the cycle that would create). - adapters/messenger/inbox: ports.AgentMessenger writing each message as <session-workspace>/.ao/inbox/<nano>_<hash>.md. Symlink-safe via os.Lstat on the .ao/inbox segments. - daemon/session_wiring.go: assembles claudecode → portshim, gitworktree over projectresolver, inbox messenger over the sqlite store, and the SM itself. Reuses the existing zellij runtime / project manager / lcm singletons rather than constructing parallel copies. Daemon-wide singleton sharing (the change of behavior under #62 / #65 + this PR): - One zellij.Runtime instance services both the terminal mux and SM.Spawn. Two adapters would race on the same socket. - One lifecycle.Manager instance services both the reaper (runtime liveness observations) and the SM (spawn/restore/kill writes). Two LCMs would split agent-nudge state. - One project.Manager instance services both httpd (/api/v1/projects) and the gitworktree RepoResolver. Two stores would diverge on cached reads. - One ports.AgentMessenger services both the LCM (PR-driven reactions: CI fail, review feedback, merge conflict) and the SM (Send). - One *sqlite.Store services CDC, lifecycle, SM, and the inbox workspace lookup. Already the case; preserved. Also promotes the duplicated "agentSessionId" metadata key literal in the claudecode and codex adapters to a single agent.MetadataKeyAgentSessionID constant in adapters/agent, which the portshim now uses to populate Session.Metadata for the underlying adapter's GetRestoreCommand. What this PR does NOT do (covered by follow-ups γ/δ): - No HTTP routes for SM (POST /sessions, etc.) — γ - No `ao session new` CLI — γ - No SCM poller — δ - No codex agent wiring (claude-code only) — later - No zellij send-keys pane-ping — the agent reads its inbox on demand Tests: - portshim: 15 table-driven cases (shell quoting, env, restore propagation, error fall-through, safe-string short-circuit). - projectresolver: 4 cases (interface satisfaction, happy path, unknown project, degraded project). - inbox: 9 cases (interface satisfaction, write, dir create, two-distinct, unknown session, empty workspace path, symlinked inbox refused, empty message, filename shape). - daemon/wiring_test: SM stack constructed + sharing singletons + messenger reaches the same store via SessionMetadata.WorkspacePath end to end. go test -race / go vet / gofmt clean. The pre-existing TestSessionStreamsRealZellijPane integration test fails on this host because \$TMPDIR > 103 chars (zellij IPC socket limit) — also fails on origin/staging without these changes. Branched from origin/staging (= main + #65) so claudecode is available; PR base must be staging. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
…ox messenger, aa-39) into staging
Wires the github.Provider (PR #69) into the daemon as a periodic poller on top of the SM/lifecycle stack (PR #70). Every 30s the loop lists alive sessions, branch-discovers each session's open PR, observes it through the Provider under a 15s per-call deadline, and hands the result to pr.Manager.ApplyObservation — which transactionally writes the row and forwards to lifecycle.ApplyPRObservation for CI-failure log-tail nudges, review-feedback nudges (capped at reviewMaxNudge=3), and merge-conflict rebase nudges. Branch discovery is the v1 fallback because sessions don't yet carry a PR URL field; adding that column is a separate session/sqlc PR. Until then the poller resolves owner/repo from project.Repo (currently RepoOriginURL) or git remote get-url origin, then asks GitHub for the open PR with head = owner:branch. Error classification follows the spec: - ErrRateLimited: short-circuit rest of tick (don't burn through remaining sessions while GitHub asks us to back off) - ErrAuthFailed: flip Healthy() to false (sticky — does NOT auto-recover, because a 304-cached success doesn't actually exercise the token) and continue - other: log warn, continue No-token environments degrade gracefully: startSCM logs an Info notice and returns a closed done-channel; Stop is a free call.
Review fixes (PR #71): - spawn CLI now uses a dedicated 90 s timeout (90 s > server's 60 s DefaultRequestTimeout) via context.WithTimeout, and stops sharing deps.HTTPClient — that client is sized for fast /healthz/shutdown probes (2 s) and was preempting the synchronous Spawn long before the daemon could finish provisioning a worktree + zellij pane + agent. - Harden writeSpawnError so a *project.Error with a non-client Kind ("internal", "not_implemented", or anything unknown) falls through to the generic 500 SPAWN_FAILED envelope instead of passing the project error's Code/Message verbatim to the client. Adds three subtests that pin down the opacity contract. Lint debt cleared (inherited from PRs #65/#70): - Add doc comments on every exported symbol in the agent / claudecode / codex / adapters-registry packages (revive: exported) - gosec G306/G301: inbox file/dir perms 0644→0600 and 0755→0750 - gosec G703 (path traversal via taint): excluded globally with the same rationale as G304 — adapter paths are daemon-config/worktree-derived, not user input - gocritic emptyStringTest: len(strings.TrimSpace(...)) > 0 → != "" - gocritic paramTypeCombine: combine adjacent same-type params - errcheck: wrap deferred os.Remove(tmpName) in a closure - prealloc: preallocate cmd slices on the resume paths
Inherited from PR #72 merging into staging after this branch opened. golangci-lint v2.12.2 → 0 issues.
* feat(ao): `ao spawn` CLI + POST /api/v1/sessions route * fix(ao): address PR γ review + clear inherited lint debt Review fixes (PR #71): - spawn CLI now uses a dedicated 90 s timeout (90 s > server's 60 s DefaultRequestTimeout) via context.WithTimeout, and stops sharing deps.HTTPClient — that client is sized for fast /healthz/shutdown probes (2 s) and was preempting the synchronous Spawn long before the daemon could finish provisioning a worktree + zellij pane + agent. - Harden writeSpawnError so a *project.Error with a non-client Kind ("internal", "not_implemented", or anything unknown) falls through to the generic 500 SPAWN_FAILED envelope instead of passing the project error's Code/Message verbatim to the client. Adds three subtests that pin down the opacity contract. Lint debt cleared (inherited from PRs #65/#70): - Add doc comments on every exported symbol in the agent / claudecode / codex / adapters-registry packages (revive: exported) - gosec G306/G301: inbox file/dir perms 0644→0600 and 0755→0750 - gosec G703 (path traversal via taint): excluded globally with the same rationale as G304 — adapter paths are daemon-config/worktree-derived, not user input - gocritic emptyStringTest: len(strings.TrimSpace(...)) > 0 → != "" - gocritic paramTypeCombine: combine adjacent same-type params - errcheck: wrap deferred os.Remove(tmpName) in a closure - prealloc: preallocate cmd slices on the resume paths * fix(lint): lift loop condition in scm poller test (staticcheck QF1006) Inherited from PR #72 merging into staging after this branch opened. golangci-lint v2.12.2 → 0 issues.
…a-40) into staging
Convenience script for the typical local-dev flow: cd into a git repo, run `scripts/ao-here.sh`, and the daemon starts (if not already up), the cwd is registered as an AO project, and the script prints the project ID along with a ready-to-run `ao spawn` command. Idempotent: 409 conflict on existing-path is handled by pulling the existingProjectId out of the response so re-running just re-uses the previous registration.
…TH lookup The PATH version collided with the TypeScript orchestrator CLI (same binary name 'ao', different commands). This version finds the repo via the script's own location, builds (or rebuilds when sources are newer) backend/cmd/ao into backend/bin/ao, and invokes that explicit binary for both 'start' and 'spawn'. No reliance on PATH; no ambiguity about which 'ao' is running. backend/bin/ is already gitignored.
…h is unset
The CLI/API does not expose a branch flag, but the gitworktree adapter
requires a non-empty branch (and cannot have two worktrees on the same
branch). Spawn forwarded cfg.Branch verbatim to workspace.Create, so the
first real `ao spawn` returned 500 with "workspace: gitworktree: branch
is required". The session id is assigned by the store inside Spawn, so
the SM is the only layer where a per-session default ref can be
computed. Explicit branches still win.
Also surface internal SPAWN_FAILED errors to the daemon log via
slog.Error in writeSpawnError. Response stays opaque
("Failed to spawn session") — TestSessionsAPI_Spawn_InternalKindIsOpaque
still passes — but operators get a real error in the log instead of a
713µs 500 with no trace.
Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
The envelope is flat — '.details.existingProjectId', not '.error.details.existingProjectId' (the 'error' field is a string kind, not an object). Re-running the script against an already-registered project now correctly extracts the project id from the conflict response instead of crashing the helper. Found by aa-46 while debugging the end-to-end spawn flow.
Contributor
Greptile SummaryThis PR lands the complete LCM↔SCM end-to-end chain: from
Confidence Score: 3/5Safe to merge the infra and wiring; spawned worker sessions will block on Claude Code's interactive approval prompts because Permissions is not threaded through the portshim, and a launch-command generation failure produces a bare shell pane with no diagnostic output. The portshim silently discards any error from the agent's GetLaunchCommand — no log, no propagation — so if command generation fails the runtime receives an empty string and either creates a bare shell pane (spawn looks like success, no agent runs) or returns an opaque error. Additionally, the portshim drops the Permissions field on every spawn, which is acknowledged in the PR description but means every worker session is immediately interactive-blocked in practice. Both issues touch the single most critical path in the new feature. backend/internal/adapters/agent/portshim/shim.go (silent error drop + missing Permissions propagation); backend/internal/observe/scm/poller.go (auth-failure should short-circuit the tick like rate-limit does). Important Files Changed
Reviews (1): Last reviewed commit: "fix(ao-here): correct jq path for 409 ex..." | Re-trigger Greptile |
![greptile-apps[bot]](https://avatars.githubusercontent.com/in/867647?s=60&v=4){kind=small}
Comment on lines
+32
to
+38
| func (s *Shim) GetLaunchCommand(cfg ports.AgentConfig) string { | ||
| argv, err := s.agent.GetLaunchCommand(context.Background(), launchConfigFor(cfg)) | ||
| if err != nil { | ||
| return "" | ||
| } | ||
| return joinShellArgv(argv) | ||
| } |
Contributor
There was a problem hiding this comment.
When agent.GetLaunchCommand returns an error, the shim silently returns "" with no log output. The Session Manager then passes LaunchCommand: "" to runtime.Create. If the runtime accepts an empty command it starts a bare shell pane and the spawn returns HTTP 201 — an agent was never launched, but the caller has no idea. If the runtime rejects it, the error surfaces as a generic spawn failure with no indication that the real failure was in command generation. Either outcome is observable only through the resulting session behaviour, not from logs or the HTTP response.
Suggested change
| func (s *Shim) GetLaunchCommand(cfg ports.AgentConfig) string { | |
| argv, err := s.agent.GetLaunchCommand(context.Background(), launchConfigFor(cfg)) | |
| if err != nil { | |
| return "" | |
| } | |
| return joinShellArgv(argv) | |
| } | |
| func (s *Shim) GetLaunchCommand(cfg ports.AgentConfig) string { | |
| argv, err := s.agent.GetLaunchCommand(context.Background(), launchConfigFor(cfg)) | |
| if err != nil { | |
| // Log the error so operators can diagnose a spawn that produces an | |
| // empty launch command. The ports.Agent contract has no error return, | |
| // so "" is the only channel for failure — make it at least visible. | |
| slog.Default().Error("portshim: agent.GetLaunchCommand failed, returning empty command", | |
| "session", cfg.SessionID, "err", err) | |
| return "" | |
| } | |
| return joinShellArgv(argv) | |
| } |
Comment on lines
+67
to
+73
| func launchConfigFor(cfg ports.AgentConfig) agent.LaunchConfig { | ||
| return agent.LaunchConfig{ | ||
| SessionID: string(cfg.SessionID), | ||
| WorkspacePath: cfg.WorkspacePath, | ||
| Prompt: cfg.Prompt, | ||
| } | ||
| } |
Contributor
There was a problem hiding this comment.
Permissions field is not propagated to the underlying adapter
launchConfigFor copies SessionID, WorkspacePath, and Prompt from ports.AgentConfig but silently drops cfg.Permissions. As a result every spawned session runs in PermissionModeDefault and the Claude Code adapter emits no --permission-mode flag, so Claude Code falls back to the user's settings.json. For KindWorker sessions this means the interactive "Do you want to create X?" prompt is shown and the agent blocks. The PR description notes this as a known follow-up, but it renders every spawned worker session non-functional until the user manually answers the prompt or it times out.
Comment on lines
+246
to
+250
| case errors.Is(err, scmgithub.ErrAuthFailed): | ||
| p.healthy.Store(false) | ||
| p.logger.Error("scm poller: auth failed, provider marked unhealthy", | ||
| "session", sid, "stage", stage, "err", err) | ||
| return false |
Contributor
There was a problem hiding this comment.
Suggested change
| case errors.Is(err, scmgithub.ErrAuthFailed): | |
| p.healthy.Store(false) | |
| p.logger.Error("scm poller: auth failed, provider marked unhealthy", | |
| "session", sid, "stage", stage, "err", err) | |
| return false | |
| case errors.Is(err, scmgithub.ErrAuthFailed): | |
| p.healthy.Store(false) | |
| p.logger.Error("scm poller: auth failed, skipping rest of tick", | |
| "session", sid, "stage", stage, "err", err) | |
| return true |
Note: If this suggestion doesn't match your team's coding style, reply to this and let me know. I'll remember it for next time!
…s wiring Main moved structurally via PR #67 (session→session_manager rename + service layer for read-model assembly). Staging had the live SM daemon wiring (PR #70) but for the old session package shape. This merge adopts main's shape and retargets staging's wiring on top. Structural decisions: - Keep main's httpd/api.go shape with controllers.SessionService (drop staging's session.Spawner). - Keep main's rich httpd/controllers/sessions.go (list/get/spawn/restore/kill/ send/rename/spawnOrchestrator) and its tests. - Keep main's SCM provider/client/test code: the pagination guard, the merge_state_status REST field, and the application/vnd.github+json Accept header are intentional safety + correctness fixes. Staging's text/plain Accept tweak would 406 the /actions/jobs/{id}/logs endpoint. - Delete session.Spawner: service.Session is the new controller contract and duck-types into controllers.SessionService. Wiring retarget (daemon/session_wiring.go, daemon/daemon.go): - buildSessionStack now constructs *session_manager.Manager and wraps it in service.NewSession(sm, store); the stack returns *service.Session instead of a bare *Manager. - daemon.Run passes ss.svc into httpd.APIDeps{Sessions: ...}. Preserved from staging: - aa-46 default-branch fix in session_manager/manager.go::Spawn (branch defaults to "ao/<sessionID>" when SpawnConfig.Branch is empty) plus its two pinning tests (TestSpawn_DefaultsBranchPerSession_WhenUnset, TestSpawn_HonorsExplicitBranch). - ao spawn CLI + POST /api/v1/sessions route, ao-here.sh helper, agent adapters (claudecode + portshim), inbox messenger, projectresolver, gitworktree daemon wiring, SCM poller, find_branch_pr, ao spawn route fix. Import migration: internal/session → internal/session_manager updated in daemon/session_wiring.go and adapters/agent/portshim/shim_test.go. Verification: go build, go vet, gofmt all clean. go test -race ./... reports 406 pass / 1 fail (TestSessionStreamsRealZellijPane — pre-existing macOS $TMPDIR > 103-char zellij IPC socket length issue, not introduced by merge). Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
Collaborator
Author
File-by-file tour (excluding @yyovil's agent adapters from #65)Skipping Bridge: rich
|
Collaborator
Author
|
Closing — yyovil's agent adapter (PR #65, the dependency for this PR's SM wiring) is stale. Staging will keep accumulating our integration work but won't be promoted to main wholesale. Pieces that don't depend on yyovil's adapter (SCM provider already on main via #69, SCM poller, ao spawn CLI/route) can be cherry-picked into main as separate PRs if/when desired. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Lands the full LCM↔SCM end-to-end chain on
main. After this merges,ao spawn --prompt "<task>" --project <id>boots a real Claude Code agent in a real git worktree inside a real zellij pane, and the daemon automatically observes the PR the agent opens — CI failures, merge conflicts, and unresolved review comments arrive in the agent's workspace as<workspace>/.ao/inbox/<timestamp>.mdfiles. The chain was verified end-to-end locally: registered project → spawned session → agent created a file on demand.mainalready has PR #69 (the SCM provider, squashed). This PR brings everything around it: the agent adapters, the SM wiring, the agent shim, the inbox messenger, the SCM poller, the HTTP route, theao spawnCLI, and the convenience helper script.What's in this PR
Agent adapters (was PR #65, @yyovil — superseded by this PR)
backend/internal/adapters/agent/— the richagent.Agentinterface, thePluginregistry, Claude Code and Codex implementations with native hooksdocs/agent/README.md,.envrc,flake.nix,flake.lock— design notes and the Nix dev shellBridge:
agent.Agent→ports.Agent(was part of PR #70)backend/internal/adapters/agent/portshim/— wraps the richer interface to satisfy the narrower one the SM expects. POSIX shell-quotes argv into the single-string the legacy port wants.Workspace repo resolution (was part of PR #70)
backend/internal/adapters/workspace/gitworktree/projectresolver/—gitworktree.RepoResolverbacked byproject.Manager.Get. Lives in its own subpackage to keep gitworktree free of the project import.Inbox-file messenger (was part of PR #70)
backend/internal/adapters/messenger/inbox/—ports.AgentMessengerwrites<workspace>/.ao/inbox/<rfc3339nano>_<hash>.md. Symlink-safe viaos.Lstat.Session Manager wired into the daemon (was part of PR #70)
backend/internal/daemon/session_wiring.go— assembles claudecode → portshim, gitworktree over projectresolver, inbox messenger over the sqlite store, and the SM. Reuses the existing zellij runtime, project.Manager, and lifecycle.Manager singletons (one of each, shared between SM and reaper/terminal/httpd).daemon.go,lifecycle_wiring.go,wiring_test.goto call into it and assert singleton sharing.ao spawnCLI +POST /api/v1/sessionsroute (was PR #71, squashed)backend/internal/httpd/controllers/sessions.go+ tests — the route. 503 if SM not wired, 400 for missing fields, 201 with{sessionId, workspacePath, runtimeHandle}on success.backend/internal/cli/spawn.go+ tests — the cobra subcommand. Reads the daemon's runfile, POSTs the spawn request, prints the result.backend/internal/session/spawner.go— narrowSpawnerinterface (justSpawn) so the controller can be tested without dragging the SM's collaborators.SCM poller (was PR #72)
backend/internal/observe/scm/poller.go+ tests — 30s ticker. Per session: derivesowner/repofrom project, callsProvider.FindOpenPRForBranch, thenProvider.Observe, then hands the result topr.Manager.ApplyObservation(which writes the PR row + forwards tolifecycle.ApplyPRObservation).backend/internal/daemon/scm_wiring.go— wires it next to the reaper. ReadsAO_GITHUB_TOKEN/GITHUB_TOKENat startup; missing token degrades gracefully (logs and noops).backend/internal/adapters/scm/github/find_branch_pr.go+ test —Provider.FindOpenPRForBranch(owner, repo, branch)overGET /pulls?head=…&state=open. Picks the most recently updated PR when multiple match.provider.go/client.go/provider_test.gofrom feat(scm): GitHub provider adapter — Observe(prURL) → PRObservation #69.backend/internal/integration/scm_poller_test.go— end-to-end through realpr.Manager+lifecycle.ApplyPRObservation+ capture messenger.Spawn correctness fix (commit b6c76b4, by aa-46)
backend/internal/session/manager.go— defaultscfg.Branchto"ao/" + sessionIDwhen unset. The CLI/API doesn't expose a--branchflag; the SM is the only layer where a per-session default ref can be computed (the session id is assigned by the store inside Spawn). Without this, gitworktree refused empty branches and every spawn returned 500.backend/internal/httpd/controllers/sessions.go—writeSpawnErrornowslog.Errors the internal error so future failures actually appear indaemon.loginstead of being silently dropped. Response body stays generic (no detail leak).backend/internal/session/manager_test.gopinning the default-branch behavior.Helper script
scripts/ao-here.sh— builds the daemon tobackend/bin/ao, starts it if not running, registers$PWDas a project, prints the ready-to-pasteao spawncommand. Idempotent on re-registration (handles 409 cleanly).End-to-end verification
Done locally on this branch (
baa386f):./scripts/ao-here.shfrom theagent-orchestratorrepo root — built the daemon, started it, registeredao-agentsas a project../backend/bin/ao spawn --project ao-agents --prompt "write a file at .../gotten.md acknowledging"— returned 201 with the session id, workspace path, runtime handle.zellij attach <handle>— live Claude Code session in the new worktree at<workspacePath>. Claude createdgotten.mdas instructed.Tests: 417/418 pass on the integrated tree. The one failure is
TestSessionStreamsRealZellijPane, a pre-existing local-env issue where macOS$TMPDIR > 103chars exceeds zellij's IPC socket limit. Independent of these changes; same failure shows onorigin/main.Known follow-ups (not in this PR)
Permissionsfromports.SpawnConfigto the claudecode adapter'sLaunchConfig. Two options to track separately: (a) hardcode--dangerously-skip-permissionsforKindWorkerin claudecode, or (b) properly threadPermissionsthroughports.SpawnConfig→portshim.AgentConfig→ claudecode'sLaunchConfigwithKindWorkerdefaulting to bypass. Recommended path is (b).gh /pulls?head=…. Once the session record grows a stored PR URL, the poller should prefer it. Intentionally deferred to a session/sqlc PR..ao/inbox/on demand today. A future PR can add a live ping so the agent notices new files faster.Origin trail (preserved on
staging)These were the sub-PRs that landed on staging in order; they're all here as one cumulative diff against main:
8417c6dMerge PR Add agent adapters and wire per-session agents into the session manager #65 — yyovil agent adapterse0b8ab0Merge PR feat(scm): GitHub provider adapter — Observe(prURL) → PRObservation #69 — SCM provider (already squashed to main asf9b08aa, replayed here via the staging merge — net-zero against main)82e9111Merge PR feat(daemon): wire Session Manager + agent shim + RepoResolver + inbox messenger #70 — SM wiring + portshim + projectresolver + inbox messengere72b5b9(squashed) —ao spawnCLI +POST /api/v1/sessionsroute (was PR feat(ao):ao spawnCLI + POST /api/v1/sessions route #71)63cf526Merge PR feat(observe): SCM poller — Observe → pr.Manager → lifecycle nudges #72 — SCM pollereb0ac00,0e14340— helper script v1, then rewrite to use the built backend binary explicitlyb6c76b4— spawn default-branch fix (aa-46)baa386f—ao-here.shjq path fix