Add 5 robustness & UX improvements: timeouts, color, push errors, doctor, completion

- Federation subprocess timeouts: replace bare exec.Command with
  exec.CommandContext across all execDoltCLI methods (10m clone,
  60s push, 30s SQL/checkout, 15s remote ops)
- NO_COLOR / --color flag: add SetColorMode to style package,
  --color persistent flag on root (always/auto/never)
- Surface push errors: PushWithSync and PushBranch now return errors,
  Push() returns error, all 10 callers warn on failure instead of
  silently swallowing
- wl doctor: diagnostic command checking dolt install, credentials,
  env vars, joined wastelands, and functional GPG signing verification
- Shell completion: enable Cobra completion subcommand, add
  ValidArgsFunction for wanted-ID and branch commands, flag completion
  for --type/--effort/--status/--severity, config key/value completion,
  ListWantedIDs helper in commons

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

Author: julianknutsen

README.md

@@ -50,6 +50,26 @@ Requires [Go 1.24+](https://go.dev/dl/).
 
 [Dolt](https://docs.dolthub.com/introduction/installation) must be installed and in your PATH.
 
+### Shell Completion (optional)
+
+Enable tab completion for commands, wanted IDs, branch names, and flag values:
+
+```bash
+# Bash (add to ~/.bashrc)
+source <(wl completion bash)
+
+# Zsh (add to ~/.zshrc)
+source <(wl completion zsh)
+
+# Fish
+wl completion fish | source
+
+# PowerShell
+wl completion powershell | Out-String | Invoke-Expression
+```
+
+After sourcing, `wl claim <Tab>` completes open wanted IDs, `wl merge <Tab>` completes branch names, and flags like `--type` and `--effort` complete their valid values.
+
 ## Join a Wasteland
 
 1. [Install dolt](https://docs.dolthub.com/introduction/installation) and run `dolt login`
@@ -345,11 +365,13 @@ Config and data follow XDG conventions:
 | `wl merge <branch>` | Merge a reviewed branch | `--keep-branch`, `--no-push` |
 | `wl config get\|set` | Read or write configuration | |
 | `wl verify` | Check GPG signatures | `--last` |
+| `wl doctor` | Check setup for common issues | |
+| `wl completion <shell>` | Generate shell completion script | `bash`, `zsh`, `fish`, `powershell` |
 | `wl list` | List joined wastelands | |
 | `wl leave [upstream]` | Leave a wasteland | |
-| `wl version` | Print version info | |
+| `wl version` | Print version info | `--color` |
 
-All commands accept `--wasteland <org/db>` when multiple wastelands are joined.
+All commands accept `--wasteland <org/db>` when multiple wastelands are joined and `--color <always|auto|never>` to control colored output.
 
 ## Environment Variables
 

cmd/wl/branch_helpers.go

@@ -58,13 +58,12 @@ func (m *mutationContext) Setup() (cleanup func(), err error) {
 // Push pushes changes to the appropriate remote(s).
 // In wild-west mode: PushWithSync (upstream + origin).
 // In PR mode: PushBranch (origin only).
-func (m *mutationContext) Push() {
+func (m *mutationContext) Push() error {
 	if m.noPush {
-		return
+		return nil
 	}
 	if m.branch != "" {
-		_ = commons.PushBranch(m.cfg.LocalDir, m.branch, m.stdout)
-	} else {
-		_ = commons.PushWithSync(m.cfg.LocalDir, m.stdout)
+		return commons.PushBranch(m.cfg.LocalDir, m.branch, m.stdout)
 	}
+	return commons.PushWithSync(m.cfg.LocalDir, m.stdout)
 }

cmd/wl/cmd_accept.go

@@ -50,6 +50,10 @@ Examples:
 	cmd.Flags().StringVar(&message, "message", "", "Freeform message")
 	cmd.Flags().BoolVar(&noPush, "no-push", false, "Skip pushing to remotes (offline work)")
 	_ = cmd.MarkFlagRequired("quality")
+	cmd.ValidArgsFunction = completeWantedIDs("in_review")
+	_ = cmd.RegisterFlagCompletionFunc("severity", func(_ *cobra.Command, _ []string, _ string) ([]string, cobra.ShellCompDirective) {
+		return []string{"leaf", "branch", "root"}, cobra.ShellCompDirectiveNoFileComp
+	})
 
 	return cmd
 }
@@ -108,7 +112,10 @@ func runAccept(cmd *cobra.Command, stdout, _ io.Writer, wantedID string, quality
 		fmt.Fprintf(stdout, "  Branch: %s\n", mc.BranchName())
 	}
 
-	mc.Push()
+	if err := mc.Push(); err != nil {
+		fmt.Fprintf(stdout, "\n  %s %s\n", style.Warning.Render(style.IconWarn),
+			"Push failed — changes saved locally. Run 'wl sync' to retry.")
+	}
 
 	return nil
 }

cmd/wl/cmd_approve.go

@@ -29,6 +29,7 @@ Examples:
 	}
 
 	cmd.Flags().StringVar(&comment, "comment", "", "Review comment")
+	cmd.ValidArgsFunction = completeBranchNames
 
 	return cmd
 }

cmd/wl/cmd_browse.go

@@ -54,6 +54,12 @@ EXAMPLES:
 	cmd.Flags().IntVar(&priority, "priority", -1, "Filter by priority (0=critical, 2=medium, 4=backlog)")
 	cmd.Flags().IntVar(&limit, "limit", 50, "Maximum items to display")
 	cmd.Flags().BoolVar(&jsonOut, "json", false, "Output as JSON")
+	_ = cmd.RegisterFlagCompletionFunc("status", func(_ *cobra.Command, _ []string, _ string) ([]string, cobra.ShellCompDirective) {
+		return []string{"open", "claimed", "in_review", "completed", "withdrawn"}, cobra.ShellCompDirectiveNoFileComp
+	})
+	_ = cmd.RegisterFlagCompletionFunc("type", func(_ *cobra.Command, _ []string, _ string) ([]string, cobra.ShellCompDirective) {
+		return []string{"feature", "bug", "design", "rfc", "docs"}, cobra.ShellCompDirectiveNoFileComp
+	})
 
 	return cmd
 }

cmd/wl/cmd_claim.go

@@ -33,6 +33,7 @@ Examples:
 	}
 
 	cmd.Flags().BoolVar(&noPush, "no-push", false, "Skip pushing to remotes (offline work)")
+	cmd.ValidArgsFunction = completeWantedIDs("open")
 
 	return cmd
 }
@@ -64,7 +65,10 @@ func runClaim(cmd *cobra.Command, stdout, _ io.Writer, wantedID string, noPush b
 		fmt.Fprintf(stdout, "  Branch: %s\n", mc.BranchName())
 	}
 
-	mc.Push()
+	if err := mc.Push(); err != nil {
+		fmt.Fprintf(stdout, "\n  %s %s\n", style.Warning.Render(style.IconWarn),
+			"Push failed — changes saved locally. Run 'wl sync' to retry.")
+	}
 
 	return nil
 }

cmd/wl/cmd_close.go

@@ -33,6 +33,7 @@ Examples:
 	}
 
 	cmd.Flags().BoolVar(&noPush, "no-push", false, "Skip pushing to remotes (offline work)")
+	cmd.ValidArgsFunction = completeWantedIDs("in_review")
 
 	return cmd
 }
@@ -63,7 +64,10 @@ func runClose(cmd *cobra.Command, stdout, _ io.Writer, wantedID string, noPush b
 		fmt.Fprintf(stdout, "  Branch: %s\n", mc.BranchName())
 	}
 
-	mc.Push()
+	if err := mc.Push(); err != nil {
+		fmt.Fprintf(stdout, "\n  %s %s\n", style.Warning.Render(style.IconWarn),
+			"Push failed — changes saved locally. Run 'wl sync' to retry.")
+	}
 
 	return nil
 }

cmd/wl/cmd_config.go

@@ -42,6 +42,12 @@ func newConfigGetCmd(stdout, stderr io.Writer) *cobra.Command {
 		Use:   "get <key>",
 		Short: "Get a configuration value",
 		Args:  cobra.ExactArgs(1),
+		ValidArgsFunction: func(_ *cobra.Command, args []string, _ string) ([]string, cobra.ShellCompDirective) {
+			if len(args) > 0 {
+				return nil, cobra.ShellCompDirectiveNoFileComp
+			}
+			return []string{"mode", "signing", "provider-type", "github-repo"}, cobra.ShellCompDirectiveNoFileComp
+		},
 		RunE: func(cmd *cobra.Command, args []string) error {
 			return runConfigGet(cmd, stdout, stderr, args[0])
 		},
@@ -53,6 +59,20 @@ func newConfigSetCmd(stdout, stderr io.Writer) *cobra.Command {
 		Use:   "set <key> <value>",
 		Short: "Set a configuration value",
 		Args:  cobra.ExactArgs(2),
+		ValidArgsFunction: func(_ *cobra.Command, args []string, _ string) ([]string, cobra.ShellCompDirective) {
+			switch len(args) {
+			case 0:
+				return []string{"mode", "signing", "github-repo"}, cobra.ShellCompDirectiveNoFileComp
+			case 1:
+				switch args[0] {
+				case "mode":
+					return []string{"wild-west", "pr"}, cobra.ShellCompDirectiveNoFileComp
+				case "signing":
+					return []string{"true", "false"}, cobra.ShellCompDirectiveNoFileComp
+				}
+			}
+			return nil, cobra.ShellCompDirectiveNoFileComp
+		},
 		RunE: func(cmd *cobra.Command, args []string) error {
 			return runConfigSet(cmd, stdout, stderr, args[0], args[1])
 		},

cmd/wl/cmd_delete.go

@@ -35,6 +35,7 @@ Examples:
 	}
 
 	cmd.Flags().BoolVar(&noPush, "no-push", false, "Skip pushing to remotes (offline work)")
+	cmd.ValidArgsFunction = completeWantedIDs("open")
 
 	return cmd
 }
@@ -64,7 +65,10 @@ func runDelete(cmd *cobra.Command, stdout, _ io.Writer, wantedID string, noPush
 		fmt.Fprintf(stdout, "  Branch: %s\n", mc.BranchName())
 	}
 
-	mc.Push()
+	if err := mc.Push(); err != nil {
+		fmt.Fprintf(stdout, "\n  %s %s\n", style.Warning.Render(style.IconWarn),
+			"Push failed — changes saved locally. Run 'wl sync' to retry.")
+	}
 
 	return nil
 }

cmd/wl/cmd_doctor.go

@@ -0,0 +1,187 @@
+package main
+
+import (
+	"fmt"
+	"io"
+	"os"
+	"os/exec"
+	"path/filepath"
+	"strings"
+
+	"github.com/julianknutsen/wasteland/internal/federation"
+	"github.com/julianknutsen/wasteland/internal/style"
+	"github.com/spf13/cobra"
+)
+
+func newDoctorCmd(stdout, stderr io.Writer) *cobra.Command {
+	return &cobra.Command{
+		Use:   "doctor",
+		Short: "Check your wasteland setup for common issues",
+		Long: `Run diagnostic checks on your wasteland setup.
+
+Verifies dolt installation, credentials, environment variables,
+and per-wasteland configuration.
+
+Examples:
+  wl doctor`,
+		Args: cobra.NoArgs,
+		RunE: func(_ *cobra.Command, _ []string) error {
+			return runDoctor(stdout, stderr, exec.LookPath, os.Getenv, federation.NewConfigStore())
+		},
+	}
+}
+
+// doctorDeps holds injectable dependencies for testing.
+type doctorDeps struct {
+	lookPath func(string) (string, error)
+	getenv   func(string) string
+	store    federation.ConfigStore
+}
+
+func runDoctor(stdout, _ io.Writer, lookPath func(string) (string, error), getenv func(string) string, store federation.ConfigStore) error {
+	deps := &doctorDeps{lookPath: lookPath, getenv: getenv, store: store}
+	runDoctorChecks(stdout, deps)
+	return nil
+}
+
+func runDoctorChecks(stdout io.Writer, deps *doctorDeps) {
+	// 1. dolt installed
+	checkDolt(stdout, deps)
+
+	// 2. dolt credentials
+	checkDoltCreds(stdout)
+
+	// 3. DOLTHUB_TOKEN
+	checkEnvVar(stdout, deps, "DOLTHUB_TOKEN")
+
+	// 4. DOLTHUB_ORG
+	checkEnvVar(stdout, deps, "DOLTHUB_ORG")
+
+	// 5. Wastelands joined
+	checkWastelands(stdout, deps)
+}
+
+func checkDolt(stdout io.Writer, deps *doctorDeps) {
+	doltPath, err := deps.lookPath("dolt")
+	if err != nil {
+		fmt.Fprintf(stdout, "  %s dolt: not found in PATH\n", style.Error.Render(style.IconFail))
+		return
+	}
+
+	cmd := exec.Command(doltPath, "version")
+	output, err := cmd.Output()
+	if err != nil {
+		fmt.Fprintf(stdout, "  %s dolt: found but 'dolt version' failed: %v\n", style.Warning.Render(style.IconWarn), err)
+		return
+	}
+	ver := strings.TrimSpace(string(output))
+	fmt.Fprintf(stdout, "  %s dolt: %s\n", style.Success.Render(style.IconPass), ver)
+}
+
+func checkDoltCreds(stdout io.Writer) {
+	home, err := os.UserHomeDir()
+	if err != nil {
+		fmt.Fprintf(stdout, "  %s dolt credentials: cannot determine home directory\n", style.Warning.Render(style.IconWarn))
+		return
+	}
+	credsDir := filepath.Join(home, ".dolt", "creds")
+	entries, err := os.ReadDir(credsDir)
+	if err != nil {
+		fmt.Fprintf(stdout, "  %s dolt credentials: no credentials directory found (%s)\n", style.Warning.Render(style.IconWarn), credsDir)
+		return
+	}
+	var keyCount int
+	for _, e := range entries {
+		if !e.IsDir() && strings.HasSuffix(e.Name(), ".jwk") {
+			keyCount++
+		}
+	}
+	if keyCount == 0 {
+		fmt.Fprintf(stdout, "  %s dolt credentials: no key files found in %s\n", style.Warning.Render(style.IconWarn), credsDir)
+	} else {
+		fmt.Fprintf(stdout, "  %s dolt credentials: %d key(s) found\n", style.Success.Render(style.IconPass), keyCount)
+	}
+}
+
+func checkEnvVar(stdout io.Writer, deps *doctorDeps, name string) {
+	val := deps.getenv(name)
+	if val == "" {
+		fmt.Fprintf(stdout, "  %s %s: not set\n", style.Warning.Render(style.IconWarn), name)
+	} else {
+		// Show partial value for ORG, hide TOKEN
+		if name == "DOLTHUB_ORG" {
+			fmt.Fprintf(stdout, "  %s %s: set (%s)\n", style.Success.Render(style.IconPass), name, val)
+		} else {
+			fmt.Fprintf(stdout, "  %s %s: set\n", style.Success.Render(style.IconPass), name)
+		}
+	}
+}
+
+func checkWastelands(stdout io.Writer, deps *doctorDeps) {
+	upstreams, err := deps.store.List()
+	if err != nil {
+		fmt.Fprintf(stdout, "  %s wastelands: error listing: %v\n", style.Error.Render(style.IconFail), err)
+		return
+	}
+	if len(upstreams) == 0 {
+		fmt.Fprintf(stdout, "  %s wastelands: none joined (run 'wl join <upstream>')\n", style.Warning.Render(style.IconWarn))
+		return
+	}
+	fmt.Fprintf(stdout, "  %s %d wasteland(s) joined\n", style.Success.Render(style.IconPass), len(upstreams))
+
+	for _, upstream := range upstreams {
+		cfg, err := deps.store.Load(upstream)
+		if err != nil {
+			fmt.Fprintf(stdout, "\n  %s:\n", upstream)
+			fmt.Fprintf(stdout, "    %s config: failed to load: %v\n", style.Error.Render(style.IconFail), err)
+			continue
+		}
+		fmt.Fprintf(stdout, "\n  %s:\n", upstream)
+
+		// Local clone exists
+		if _, err := os.Stat(cfg.LocalDir); err != nil {
+			fmt.Fprintf(stdout, "    %s Local clone: missing (%s)\n", style.Error.Render(style.IconFail), cfg.LocalDir)
+		} else {
+			fmt.Fprintf(stdout, "    %s Local clone: %s\n", style.Success.Render(style.IconPass), cfg.LocalDir)
+		}
+
+		// Mode
+		fmt.Fprintf(stdout, "    %s Mode: %s\n", style.Success.Render(style.IconPass), cfg.ResolveMode())
+
+		// GPG signing
+		checkGPGSigning(stdout, cfg, deps)
+	}
+}
+
+func checkGPGSigning(stdout io.Writer, cfg *federation.Config, deps *doctorDeps) {
+	if !cfg.Signing {
+		fmt.Fprintf(stdout, "    %s GPG signing: disabled\n", style.Warning.Render(style.IconWarn))
+		return
+	}
+
+	// Check that dolt has a signing key configured.
+	doltPath, err := deps.lookPath("dolt")
+	if err != nil {
+		fmt.Fprintf(stdout, "    %s GPG signing: enabled but dolt not found\n", style.Warning.Render(style.IconWarn))
+		return
+	}
+
+	cmd := exec.Command(doltPath, "config", "--global", "--get", "sqlserver.global.signingkey")
+	keyOut, err := cmd.Output()
+	keyID := strings.TrimSpace(string(keyOut))
+	if err != nil || keyID == "" {
+		fmt.Fprintf(stdout, "    %s GPG signing: enabled but no signing key configured in dolt\n", style.Error.Render(style.IconFail))
+		fmt.Fprintf(stdout, "      Run: dolt config --global --add sqlserver.global.signingkey <your-gpg-key-id>\n")
+		return
+	}
+
+	// Check that the GPG key actually exists locally.
+	gpgCmd := exec.Command("gpg", "--list-secret-keys", keyID)
+	if err := gpgCmd.Run(); err != nil {
+		fmt.Fprintf(stdout, "    %s GPG signing: key %s not found in GPG keyring\n", style.Error.Render(style.IconFail), keyID)
+		fmt.Fprintf(stdout, "      Run: gpg --list-secret-keys --keyid-format long\n")
+		return
+	}
+
+	fmt.Fprintf(stdout, "    %s GPG signing: enabled (key %s)\n", style.Success.Render(style.IconPass), keyID)
+}