chore: promote staging to staging-promote/336bdb1e-24684983862 (2026-04-21 02:12 UTC)

[ironclaw-ci]

Auto-promotion from staging CI

Batch range: 7fb41555a9e55677d1aaea29ca567a5b369c2b05..6d4935a617d89c6ee6d0a032d1e36f48c704fb9a
Promotion branch: staging-promote/6d4935a6-24700448305
Base: staging-promote/336bdb1e-24684983862
Triggered by: Staging CI batch at 2026-04-21 02:12 UTC

Commits in this batch (56):

• 77c3821 feat(common): apply ExtensionName newtype to fan-out sites (PR 2/2) (feat(common): apply ExtensionName newtype to fan-out sites (PR 2/2) #2617)
• 3d51423 fix(llm): default missing OpenAI image detail to auto (fix(llm): default missing OpenAI image detail to auto #1940)
• 0af0267 feat(engine-v2): per-project sandbox (Phases 1–7) (feat(engine-v2): per-project sandbox (Phases 1–7) #2211)
• 4104e87 fix(secrets): TOCTOU-safe auto-generate, lazy keychain probe, fail-loud on stale DB (fix(secrets): TOCTOU-safe auto-generate, lazy keychain probe, fail-loud on stale DB #2653)
• 43d6fc1 feat(engine-v2): Phase 4 cost tracking + Phase 6 mission lifecycle acceptance (feat(engine-v2): Phase 4 cost tracking + Phase 6 mission lifecycle acceptance #2660)
• 08693aa feat(skills): activation feedback pipeline + install idempotence (feat(skills): activation feedback pipeline + install idempotence #2530)
• 81aec81 fix(gateway): v2 engine tool_calls persistence + e2e test coverage (fix(gateway): v2 engine tool_calls persistence + e2e test coverage #2452)
• a524bf8 refactor(gateway): stage 4b slices + empty allowlist — ironclaw#2599 (refactor(gateway): stage 4b slices + empty allowlist — ironclaw#2599 #2665)
• 14333e4 fix(wasm): run leak scan on pre-injection headers in channel callbacks (fix(wasm): run leak scan on pre-injection headers in channel callbacks #1377)
• c854a21 fix(cli): suppress non-CLI listeners under --cli-only (--cli-only still starts webhook server and ignores HTTP_HOST/HTTP_PORT #1840) (fix(cli): suppress non-CLI listeners under --cli-only (#1840) #1869)
• 90a6dad fix(cli): prevent UTF-8 panic in MCP tool description truncation (fixes bug(cli): MCP test-server tool description truncation panics on multi-byte UTF-8 #1947) (fix(cli): prevent UTF-8 panic in MCP tool description truncation (fixes #1947) #2008)
• 5fe3be8 refactor(gateway): extract features/chat/ — ironclaw#2599 stage 4c (refactor(gateway): extract features/chat/ — ironclaw#2599 stage 4c #2680)
• e8ae948 fix(telegram): unblock e2e activation flow (fix(telegram): unblock e2e activation flow #2652)
• a35f9d9 refactor(gateway): split monolithic style.css and app.js into per-surface modules (refactor(gateway): split monolithic style.css and app.js into per-surface modules #2683)
• cad5e50 feat(llm): hot-reload provider chain from settings (supersedes feat(llm): hot-reload provider chain from settings (#1350) #2059) (feat(llm): hot-reload provider chain from settings (supersedes #2059) #2673)
• 6419347 Preserve paused leases across engine auth resume (Preserve paused leases across engine auth resume #2631)
• 4ab8e43 fix(gateway): unify v2 extension auth resume flow (fix(gateway): unify v2 extension auth resume flow #2622)
• 3c1f37b fix(slack): remember thread participation across replies (fix(slack): remember thread participation across replies #1540)
• 737029d fix(ci): target promotion PR for Claude review comments (fix(ci): target promotion PR for Claude review comments #2576)
• fddf56b docs(engine): clarify ENGINE_V2 opt-in startup (docs(engine): clarify ENGINE_V2 opt-in startup #2694)
• e2544ed feat(engine): add mission_get action for retrieving mission results (feat(engine): add mission_get action for retrieving mission results #2549)
• 544a893 refactor(gateway): extract extensions + jobs + settings + routines — ironclaw#2599 stages 4d + 5 (refactor(gateway): extract extensions + jobs + settings + routines — ironclaw#2599 stages 4d + 5 #2687)
• fb4fc82 refactor(ownership): collapse OwnerId+Identity into UserId with role variants (refactor(ownership): collapse OwnerId+Identity into UserId with role variants #2677)
• fdaba10 feat(gateway): add attachment flows, v2 skill install coverage, and e2e stabilization (feat(gateway): add attachment flows, v2 skill install coverage, and e2e stabilization #2385)
• e88236a refactor(events): replace JobResult.status String with JobResultStatus enum (refactor(events): replace JobResult.status String with JobResultStatus enum #2678)
• 010bb70 refactor(gateway): promote cross-slice GatewayState builders to test_helpers — ironclaw#2599 stage-6 prereq (refactor(gateway): promote cross-slice GatewayState test builders — ironclaw#2599 stage-6 prereq #2704)
• 141435e feat(gateway): expose engine v2 threads in chat history and sidebar (feat(gateway): expose engine v2 threads in chat history and sidebar #2532)
• d30c76d feat: add debug inspector panel for web gateway (feat: add debug inspector panel for web gateway #1873)
• b5dde50 fix(gateway): address PR fix(gateway): unify v2 extension auth resume flow #2622 review feedback (follow-up) (fix(gateway): address PR #2622 review feedback (follow-up) #2701)
• 3c7925c refactor(gateway): delete server.rs shim + relocate tests to slices — ironclaw#2599 stage 6 (refactor(gateway): delete server.rs shim + relocate tests to slices — ironclaw#2599 stage 6 #2706)
• 0a8428f fix(telegram): handle 'message is too long' with retry splitting (fix(telegram): handle 'message is too long' with retry splitting #1943)
• 77e746f feat(portfolio): complete tool, tests, widget, and share-gains flow (feat(portfolio): complete tool, tests, widget, and share-gains flow #2368)
• 8bf25bc fix(setup): run migrations during onboard when DATABASE_URL preset (onboard fails with "Failed to save settings to database", but ironclaw starts successfully and applies migrations #846) (fix(setup): run migrations during onboard when DATABASE_URL preset (#846) #2309)
• f2c4c25 docs(skills): clarify /search/issues returns issues and PRs (docs(skills): clarify /search/issues returns issues and PRs #2713)
• 0476a3d fix(gateway): Settings extension button label reflects auth state ([QA] Activate button shows credential popup for already-installed tools #2235) (fix(gateway): Settings extension button label reflects auth state (#2235) #2709)
• 833cb48 refactor(channels): introduce ExternalThreadId newtype at channel boundary (refactor(channels): introduce ExternalThreadId newtype at channel boundary #2685)
• d8802e6 fix(wasm): gate websocket runtime on auth and stop reconnect loop on fatal closes (WASM channel runtime: stop websocket/poll reconnect loops when auth is missing or rejected #2557) (fix(wasm): gate websocket runtime on auth and stop reconnect loop on fatal closes (#2557) #2707)
• a69aa54 refactor(gateway): hygiene batch — delete dead handler, tighten boundaries, add caller-level chat tests (refactor(gateway): hygiene batch — delete dead handler, tighten boundaries, add caller-level chat tests #2712)
• 862ac13 feat(memory): configurable insights interval, session summary hook, reasoning-augmented recall (feat(memory): configurable insights interval, session summary hook, reasoning-augmented recall #2336)
• 532e07f fix: prevent immediate requests creating missions (fix: prevent immediate requests creating missions #2328)
• c8f8753 fix(gateway): remove v2 active-work pills from web ui (fix(gateway): remove v2 active-work pills from web ui #2671)
• 038853f refactor(types): adopt MissionId in router + introduce McpServerName (refactor(types): adopt MissionId in router + introduce McpServerName #2681)
• ab38a0b feat(bridge): workspace-backed project registration + adapter improvements (feat(bridge): workspace-backed project registration + adapter improvements #2533)
• 5d99d55 fix(gate): handle orphaned approval gates when thread deleted (fix(gate): handle orphaned approval gates when thread deleted #2347)
• c725366 docs(rules): add review-driven guidance for Claude Code (docs(rules): add review-driven guidance for Claude Code #2714)
• e0c029c ci: validate Cargo.toml version before use in Docker workflows ([CRITICAL] Command injection vulnerability: extracted VERSION from Cargo.toml is used in sh #1901) (ci: validate Cargo.toml version before use in Docker workflows (#1901) #2742)
• 4577d0e fix(gateway): wire standalone missions tab (load, back, refresh) (fix(gateway): wire standalone missions tab (load, back, refresh) #2745)
• 392a33a feat(tui): support multiline message drafting (feat(tui): support multiline message drafting #2462)
• ae9b179 fix(channel): feishu pairing (fix(channel): feishu pairing #2454)
• e35099d [codex] Support web document uploads ([codex] Support web document uploads #2332)
• ... and 6 more (see compare view)

Current commits in this promotion (4)

Current base: staging-promote/336bdb1e-24684983862
Current head: staging-promote/6d4935a6-24700448305
Current range: origin/staging-promote/336bdb1e-24684983862..origin/staging-promote/6d4935a6-24700448305

• a4966c6 [codex] Fix gateway slash autocomplete and attachment rendering ([codex] Fix gateway slash autocomplete and attachment rendering #2763)
• 8b12764 [codex] Refresh skill tool ZIP extraction test fixtures ([codex] Refresh skill tool ZIP extraction test fixtures #2764)
• 714cc41 [codex] fix(gateway): make multi-tenant mode config-driven ([codex] fix(gateway): make multi-tenant mode config-driven #2762)
• 6d4935a [codex] Stabilize web settings LLM hot reload ([codex] Stabilize web settings LLM hot reload #2765)

Auto-updated by staging promotion metadata workflow

Waiting for gates:

• Tests: pending
• E2E: pending
• Claude Code review: pending (will post comments on this PR)

---

Auto-created by staging-ci workflow

[claude]

Code Review

Found 5 issues across the JS and Rust changes:

HIGH severity

1. [HIGH:85] Pending message deduplication logic bug—potential duplicate renders

   • File: crates/ironclaw_gateway/static/js/core/history.js
   • Lines 40–164 (full loadHistory function)
   • Issue: After rendering pending messages during the turn loop (lines 68–89) with .shift() calls to consume queued items, the final "render remaining pending" block (lines 150–164) reconstructs the array by flattening pendingByContent.values(). The shifted (empty or partially-consumed) queues still exist in the map, causing the reconstruct to collect items that were already rendered during the turn iteration. If a user sends the same message multiple times with attachments, some instances will render twice.
   • Example flow:
     1. User sends "hello" 3 times, last two are pending (in queue)
     2. First "hello" is in DB (database turn), gets rendered at line 77
     3. Second "hello" (pending with images) matches at line 71, renders at line 89, queue gets shift()
     4. Final Array.from(pendingByContent.values()).flat() at line 151 still includes the queue (now with remaining pending), renders duplicate
   • Fix: Track consumed pending IDs or use a consumed set to skip already-rendered messages

2. [HIGH:75] File input reset removed, breaking UX for duplicate file selection

   • File: crates/ironclaw_gateway/static/js/surfaces/chat.js
   • Lines ~226–229
   • Issue: Removed e.target.value = '' reset after calling handleImageFiles(). This prevents users from selecting the same file twice (browser caches the last selected file path and won't trigger change event on repeat). While the Array.from() refactor is good, the value reset is essential for UX.
   • Fix: Restore e.target.value = ''; after the handleImageFiles call

MEDIUM severity

3. [MEDIUM:75] Missing optional chaining in parseUserMessageContent() call

   • File: crates/ironclaw_gateway/static/js/core/history.js
   • Line 76
   • Issue: parseUserMessageContent(turn.user_input).attachments assumes the function always returns an object. If it returns null/undefined, this throws. The typeof check on line 75 doesn't guarantee a truthy return.
   • Fix: Use optional chaining: parseUserMessageContent(turn.user_input)?.attachments ?? []

4. [MEDIUM:68] ZIP extraction test refactoring reflects security policy change without explanation

   • File: src/tools/builtin/skill_tools.rs
   • Lines affected: Test test_zip_extract_nested_single_skill_supported()
   • Issue: Test comment changed from "must NOT match nested paths" to "should still extract nested SKILL.md". This inverts a security assumption. The refactor from manual ZIP construction to build_zip_archive() helper is good (DRY), but the test behavior change (now accepting nested SKILL.md instead of rejecting) is a security policy change that deserves a dedicated commit or comment explaining why nested paths are now safe.
   • Fix: Add a docstring to test explaining the security rationale, or move to separate commit with security review

5. [MEDIUM:75] Inefficient pending message deduplication rebuilt on every history load

   • File: crates/ironclaw_gateway/static/js/core/history.js
   • Lines 40–56
   • Issue: The pendingByContent map is built with nested .forEach() calls on every loadHistory() invocation. For chats with many duplicate pending messages, this is O(n) overhead that repeats across page loads, pagination, and in-progress refreshes.
   • Performance: One iteration filters, another builds map (two passes). Could use .reduce() in single pass.
   • Fix: Optimize map construction to single-pass reduce, or lazy-build only if visuals detected

LOW severity

6. [LOW:50] N+1 DOM reflows when rendering pending messages
   • File: crates/ironclaw_gateway/static/js/core/history.js
   • Lines 46–53, 115–122, 137–143 (pattern repeated 3×)
   • Issue: Code calls addMessage() then conditionally calls appendImagesToMessage() separately. Each call triggers DOM reflow. Should batch by passing images to addMessage() once.
   • Example: const div = addMessage(...); if (images) appendImagesToMessage(div, images); → creates element, then modifies it (2 reflows)
   • Fix: Refactor addMessage() to accept optional images/attachments parameter

---

Summary: 2 bugs blocking production (HIGH), 4 issues requiring attention (MEDIUM–LOW). The pending message logic requires careful review to prevent duplicate renders in cases where multiple identical messages are sent with attachments.