Stabilize dev identity paths#933
Conversation
Co-authored-by: Copilot App <223556219+Copilot@users.noreply.github.com>
|
Codex review: needs maintainer review before merge. Reviewed July 6, 2026, 8:59 PM ET / 00:59 UTC. Summary Reproducibility: not applicable. as a PR review rather than a standalone bug report; the branch includes a CLI identity override repro, source contracts, and UI validation for the changed behavior. Review metrics: 2 noteworthy metrics.
Merge readiness Overall follows the weaker of proof and patch quality, so missing proof can cap an otherwise strong patch. Rank-up moves:
Risk before merge
Maintainer options:
Next step before merge
Security Review detailsBest possible solution: Land the stabilization after normal CI and maintainer review, preserving release identity as the default and using explicit Do we have a high-confidence way to reproduce the issue? Not applicable as a PR review rather than a standalone bug report; the branch includes a CLI identity override repro, source contracts, and UI validation for the changed behavior. Is this the best way to solve the issue? Yes; centralizing path rules in AGENTS.md: found and applied where relevant. Codex review notes: model internal, reasoning high; reviewed against af9edc74bf04. Label changesLabel changes:
Label justifications:
Evidence reviewedWhat I checked:
Likely related people:
What the crustacean ranks mean
Shiny media proof means a screenshot, video, or linked artifact directly shows the changed behavior. Runtime, network, CSP, and security claims still need visible diagnostics. How this review workflow works
|
Summary
OpenClaw.Shared.--identity release|devtoopenclawandwinnode, withOPENCLAW_TRAY_DATA_DIRstill taking precedence for isolated runs.winnodeskill docs and add regression coverage for identity/path precedence plus source contracts for the stabilization fixes.Validation
dotnet test .\tests\OpenClaw.Tray.Tests\OpenClaw.Tray.Tests.csproj --no-restore --filter "FullyQualifiedName~OperatorCli_DefersIdentityDefaultsUntilAfterArgumentParsing|FullyQualifiedName~GatewayClient_PairingRequiredFlag_UsesVolatileAccess|FullyQualifiedName~PermissionsPage_ExecPolicyRemoveButtons_HaveAccessibleNames|FullyQualifiedName~PairingRequiredDisconnectGuard_RunsInsideTransitionSemaphore|FullyQualifiedName~SetupKeepalive_DisposesProcessWrapperAfterWritingMarker"— 5 passed.dotnet test .\tests\OpenClaw.Shared.Tests\OpenClaw.Shared.Tests.csproj --no-restore --filter "FullyQualifiedName~OpenClawAppIdentityTests"— 6 passed.dotnet test .\tests\OpenClaw.WinNode.Cli.Tests\OpenClaw.WinNode.Cli.Tests.csproj --no-restore --filter "FullyQualifiedName~AuthTokenTests"— 29 passed..\build.ps1— passed.dotnet test .\tests\OpenClaw.Shared.Tests\OpenClaw.Shared.Tests.csproj --no-restore— 2703 passed / 31 skipped.dotnet test .\tests\OpenClaw.Tray.Tests\OpenClaw.Tray.Tests.csproj --no-restore— 1584 passed.dotnet test .\tests\OpenClaw.WinNode.Cli.Tests\OpenClaw.WinNode.Cli.Tests.csproj --no-restore— 126 passed.dotnet test .\tests\OpenClaw.Connection.Tests\OpenClaw.Connection.Tests.csproj --no-restore— 399 passed.dotnet test .\tests\OpenClaw.SetupEngine.Tests\OpenClaw.SetupEngine.Tests.csproj --no-restore— 423 passed.dotnet test .\tests\OpenClaw.Tray.UITests\OpenClaw.Tray.UITests.csproj -r win-x64 --no-restore— 96 passed after one unrelated smoke-test flake reran clean.dotnet build .\src\OpenClaw.Tray.WinUI -c Debug -r win-x64 -p:DevBuild=true --no-restoreplus marker check —app-identity.txt: dev.git --no-pager diff --check— passed.Real behavior proof
OPENCLAW_APP_IDENTITY=staging,openclaw --identity release --url ws://127.0.0.1:1 --token test-token --connect-timeout-ms 1000reached runtime connection handling and did not fail argument parsing; it printedSettings file: ...\OpenClawTray\settings.jsonand failed only because the test URL was intentionally unreachable.OpenClaw.Tray.UITestspassed 96/96 with-r win-x64, covering the prior PermissionsPage accessibility failure.DevBuild=trueproducedsrc\OpenClaw.Tray.WinUI\bin\Debug\net10.0-windows10.0.22621.0\win-x64\app-identity.txtcontainingdev.Rubber-duck / review notes
openclaw --identityordering bug and a pairing request-id publication-order risk.Not verified / blocked
workflowscope. I removed the workflow edit from this PR; that lane should be added in a follow-up using credentials with workflow permission.