Merge remote-tracking branch 'origin/main' into jamadeo/dedupe-sources

Author: jamadeo

.agents/skills/code-review/SKILL.md

@@ -92,6 +92,16 @@ You are a senior engineer conducting a thorough code review. Review **only the l
 - **AnimatePresence**: Is it used properly with unique keys for dialog/modal transitions?
 - **Reduced Motion**: Is `useReducedMotion()` respected for accessibility?
 
+### Async State, Defaults & Persistence
+- **Async Source of Truth**: During async provider/model/session mutations, does UI/session/localStorage state update only after the backend accepts the change? If the UI updates optimistically, is there an explicit rollback path?
+- **UI/Backend Drift**: Could the UI show provider/model/project/persona X while the backend is still on Y after a failed mutation, delayed prepare, or pending-to-real session handoff?
+- **Requested vs Fallback Authority**: Do explicit user or caller selections stay authoritative over sticky defaults, saved preferences, aliases, or fallback resolution?
+- **Dependent State Invalidation**: When a parent selection changes (provider/project/persona/workspace/etc.), are dependent values like `modelId`, `modelName`, defaults, or cached labels cleared or recomputed so stale state does not linger?
+- **Persisted Preference Validation**: Are stored selections validated against current inventory/capabilities before reuse, and do stale values fail soft instead of breaking creation flows?
+- **Compatibility of Fallbacks**: Are default or sticky selections guaranteed to remain compatible with the active concrete provider/backend, instead of leaking across providers?
+- **Best-Effort Lookups**: Do inventory/config/default-resolution lookups degrade gracefully on transient failure, or can they incorrectly block a primary flow that should still work with a safe fallback?
+- **Draft/Home/Handoff Paths**: If the product has draft, Home, pending, or pre-created sessions, did you review those handoff paths separately from the already-active session path?
+
 ### General Code Quality
 - **Error Handling**: Are errors handled gracefully with user-friendly messages?
 - **Loading States**: Are loading states shown during async operations?
@@ -104,13 +114,18 @@ You are a senior engineer conducting a thorough code review. Review **only the l
 
 ### Step 0: Run Quality Checks
 
-Before reading any code, run the project's CI gate to establish a baseline:
+Before reading any code, run the project's CI gate to establish a baseline. Use **check-only** commands so the baseline never mutates the working tree — otherwise auto-formatters can introduce unstaged diffs and you'll end up reviewing formatter output instead of the author's actual changes.
+
+Avoid `just check-everything` as the baseline in this repo: that recipe runs `cargo fmt --all` in write mode and will modify the working tree. Run the non-mutating equivalents instead:
 
 ```bash
-just ci
+cargo fmt --all -- --check
+cargo clippy --all-targets -- -D warnings
+(cd ui/desktop && pnpm run lint:check)
+./scripts/check-openapi-schema.sh
 ```
 
-This runs: `pnpm check` (Biome lint/format + file sizes), `pnpm typecheck`, `just clippy` (Rust linting), `pnpm test`, `pnpm build`, and `just tauri-check` (Rust type checking).
+If the project has a stronger pre-push or CI gate than this helper set, run that fuller gate when the review is meant to be PR-ready, but only after confirming it is also non-mutating (or run it from a clean stash). In this repo, targeted tests for the changed area plus the pre-push checks are often the practical follow-up.
 
 Report the results as pass/fail. Any failures are automatically **P0** issues and should appear at the top of the findings list. Do not skip this step even if the user only wants a quick review.
 
@@ -120,7 +135,8 @@ For each file in the list:
 
 1. Run `git diff main...HEAD -- <file>` to get the exact lines that changed
 2. Review **only those changed lines** against the Review Checklist — do not flag issues in unchanged code
-3. Note the file path and line numbers from the diff output for each issue found
+3. For stateful UI or async flow changes, trace the full path end to end: user selection -> local/session state update -> persistence -> backend prepare/set/update call -> failure/rollback path
+4. Note the file path and line numbers from the diff output for each issue found
 
 ### Step 2: Categorize Issues
 
@@ -152,16 +168,17 @@ After reviewing all files, provide:
 
 ### Step 3b: Self-Check
 
-Before presenting findings to the user, silently review the issue list two more times:
+Before presenting findings to the user, silently review the issue list three times:
 
 1. **Pass 1**: For each issue, ask — is this genuinely a problem, or could it be intentional/acceptable? Remove false positives.
 2. **Pass 2**: For each remaining issue, ask — does the recommended fix actually improve the code, or is it a matter of preference?
+3. **Pass 3**: For async state/default-resolution issues, ask — can the UI, persisted state, and backend ever disagree after a failure, fallback, or session handoff?
 
-After both passes, tag each surviving issue as one of:
+After these passes, tag each surviving issue as one of:
 - **[Must Fix]** — clear violation, will likely get flagged in PR review
 - **[Your Call]** — valid concern but may be intentional or a reasonable tradeoff (e.g. stepping outside the design system for a specific reason). Present it but let the user decide.
 
-Only present issues that survived both passes.
+Only present issues that survived these passes.
 
 ### Step 4: Fix Issues
 
@@ -189,7 +206,7 @@ Once all issues are fixed, display:
 
 **✅ Code review complete! All issues have been addressed.**
 
-Your code is ready to commit and push. Lefthook will run the full CI gate (`just ci`) automatically when you push.
+Your code is ready to commit and push. Lefthook and CI will run the repo's configured gates when you push.
 
 Next steps: generate a PR summary that explains the intent of this change, what files were modified and why, and how to verify the changes work.
 

Cargo.lock

@@ -9,7 +9,7 @@ resolver = "2"
 
 [workspace.package]
 edition = "2021"
-version = "1.31.0"
+version = "1.32.0"
 rust-version = "1.91.1"
 authors = ["AAIF <ai-oss-tools@block.xyz>"]
 license = "Apache-2.0"

Cargo.toml

@@ -709,6 +709,8 @@ enum Command {
         /// Show verbose information including current configuration
         #[arg(short, long, help = "Show verbose information including config.yaml")]
         verbose: bool,
+        #[arg(long, help = "Test provider connection and show status")]
+        check: bool,
     },
 
     #[command(about = "Check that your Goose setup is working")]
@@ -1765,7 +1767,7 @@ pub async fn cli() -> anyhow::Result<()> {
         }
         Some(Command::Configure {}) => handle_configure().await,
         Some(Command::Doctor {}) => crate::commands::doctor::handle_doctor().await,
-        Some(Command::Info { verbose }) => handle_info(verbose),
+        Some(Command::Info { verbose, check }) => handle_info(verbose, check).await,
         Some(Command::Mcp { server }) => handle_mcp_command(server).await,
         Some(Command::Acp { builtins }) => goose::acp::server::run(builtins).await,
         Some(Command::Serve {

crates/goose-cli/src/cli.rs

@@ -1,9 +1,12 @@
-use anyhow::Result;
+use anyhow::{anyhow, Result};
 use console::style;
 use goose::config::paths::Paths;
 use goose::config::Config;
+use goose::conversation::message::Message;
+use goose::providers::errors::ProviderError;
 use goose::session::session_manager::{DB_NAME, SESSIONS_FOLDER};
 use serde_yaml;
+use std::time::Duration;
 
 fn print_aligned(label: &str, value: &str, width: usize) {
     println!("  {:<width$} {}", label, value, width = width);
@@ -32,7 +35,74 @@ fn check_path_status(path: &Path) -> String {
     }
 }
 
-pub fn handle_info(verbose: bool) -> Result<()> {
+struct ProviderCheckSuccess {
+    provider: String,
+    model: String,
+    elapsed: Duration,
+}
+
+enum ProviderCheckError {
+    NotConfigured {
+        label: &'static str,
+        error: String,
+    },
+    InvalidModel(String),
+    ProviderCreate {
+        error: String,
+        show_api_key_hint: bool,
+    },
+    ProviderRequest(ProviderError),
+}
+
+async fn check_provider(
+    config: &Config,
+) -> std::result::Result<ProviderCheckSuccess, ProviderCheckError> {
+    let (provider, model) = match (config.get_goose_provider(), config.get_goose_model()) {
+        (Ok(provider), Ok(model)) => (provider, model),
+        (Err(e), _) => {
+            return Err(ProviderCheckError::NotConfigured {
+                label: "Provider:",
+                error: e.to_string(),
+            });
+        }
+        (_, Err(e)) => {
+            return Err(ProviderCheckError::NotConfigured {
+                label: "Model:",
+                error: e.to_string(),
+            });
+        }
+    };
+
+    let model_config = goose::model::ModelConfig::new(&model)
+        .map_err(|e| ProviderCheckError::InvalidModel(e.to_string()))?
+        .with_canonical_limits(&provider);
+
+    let provider_client = goose::providers::create(&provider, model_config, Vec::new())
+        .await
+        .map_err(|e| {
+            let error = e.to_string();
+            ProviderCheckError::ProviderCreate {
+                show_api_key_hint: error.contains("not found") || error.contains("API_KEY"),
+                error,
+            }
+        })?;
+
+    let test_msg = Message::user().with_text("Say 'ok'");
+    let model_config = provider_client.get_model_config();
+    let start = std::time::Instant::now();
+    provider_client
+        .complete(&model_config, "check", "", &[test_msg], &[])
+        .await
+        .map_err(ProviderCheckError::ProviderRequest)?;
+
+    Ok(ProviderCheckSuccess {
+        provider,
+        model,
+        elapsed: start.elapsed(),
+    })
+}
+
+pub async fn handle_info(verbose: bool, check: bool) -> Result<()> {
     let logs_dir = Paths::in_state_dir("logs");
     let sessions_dir = Paths::in_data_dir(SESSIONS_FOLDER);
     let sessions_db = sessions_dir.join(DB_NAME);
@@ -90,5 +160,115 @@ pub fn handle_info(verbose: bool) -> Result<()> {
         }
     }
 
+    if check {
+        println!("\n{}", style("Provider Check:").cyan().bold());
+
+        let result = check_provider(config).await;
+        match &result {
+            Ok(success) => {
+                print_aligned("Provider:", &success.provider, label_padding);
+                print_aligned("Model:", &success.model, label_padding);
+                print_aligned("Auth:", &style("ok").green().to_string(), label_padding);
+                print_aligned(
+                    "Connection:",
+                    &format!(
+                        "{} (verified in {:.1}s)",
+                        style("ok").green(),
+                        success.elapsed.as_secs_f64()
+                    ),
+                    label_padding,
+                );
+            }
+            Err(ProviderCheckError::NotConfigured { label, error }) => {
+                print_aligned(
+                    label,
+                    &format!("{} {}", style("not configured:").red(), error),
+                    label_padding,
+                );
+                print_aligned(
+                    "Hint:",
+                    &format!("Run '{}'", style("goose configure").cyan()),
+                    label_padding,
+                );
+            }
+            Err(ProviderCheckError::InvalidModel(error)) => {
+                print_aligned(
+                    "Model:",
+                    &format!("{} {}", style("invalid:").red(), error),
+                    label_padding,
+                );
+            }
+            Err(ProviderCheckError::ProviderCreate {
+                error,
+                show_api_key_hint,
+            }) => {
+                // Split auth failures (missing/invalid credential) from provider
+                // construction failures (unknown provider, malformed provider
+                // config). Labeling the latter as "Auth: FAILED" misdirects
+                // troubleshooting toward rotating API keys.
+                if *show_api_key_hint {
+                    print_aligned(
+                        "Auth:",
+                        &format!("{} {}", style("FAILED").red().bold(), error),
+                        label_padding,
+                    );
+                    print_aligned(
+                        "Hint:",
+                        &format!(
+                            "Set the API key in your environment or run '{}'",
+                            style("goose configure").cyan()
+                        ),
+                        label_padding,
+                    );
+                } else {
+                    print_aligned(
+                        "Provider:",
+                        &format!("{} {}", style("FAILED").red().bold(), error),
+                        label_padding,
+                    );
+                    print_aligned(
+                        "Hint:",
+                        &format!(
+                            "Check the provider name and config, or run '{}'",
+                            style("goose configure").cyan()
+                        ),
+                        label_padding,
+                    );
+                }
+            }
+            Err(ProviderCheckError::ProviderRequest(error)) => match error {
+                ProviderError::Authentication(_) => {
+                    print_aligned(
+                        "Auth:",
+                        &format!("{} {}", style("FAILED").red().bold(), error),
+                        label_padding,
+                    );
+                    print_aligned(
+                        "Hint:",
+                        &format!(
+                            "Check your API key or run '{}'",
+                            style("goose configure").cyan()
+                        ),
+                        label_padding,
+                    );
+                }
+                _ => {
+                    print_aligned(
+                        "Check:",
+                        &format!("{} {}", style("FAILED").red().bold(), error),
+                        label_padding,
+                    );
+                }
+            },
+        }
+
+        // Propagate non-zero exit status so automation (CI scripts, install
+        // checks, health probes) can rely on `goose info --check` as a
+        // pre-flight verifier.
+        if result.is_err() {
+            return Err(anyhow!("provider check failed"));
+        }
+    }
+
     Ok(())
 }