feat(runner): upgrade to UBI 10, add glab CLI, pin versions, add freshness workflow

[jeremyeder]

Summary

Combines PR #845 and PR #1045 into a single PR, with improvements from code review.

Runner / Dockerfile

• Upgrades base image from UBI 9 / Python 3.11 to UBI 10 / Python 3.12
• Adds glab (GitLab CLI) via pinned binary download
• Pins all runner tools with explicit ARG versions: gh, glab, uv, pre-commit, gemini-cli
• Merges gh + glab installs into a single RUN layer (single ARCH computation)
• Bumps Node.js 20 → 22, updates dnf usage for RHEL 10

Dependencies

• Bumps claude-agent-sdk, anthropic, mcp, pydantic, ag-ui-protocol, pytest, ruff, mcp-atlassian, workspace-mcp
• Regenerated uv.lock against current main

Frontend

• Adds ClaudeAgentOptions form (Zod schema + React form) behind advanced-agent-options Unleash flag
• Integrates agent options into the create-session dialog

Freshness workflow

• New weekly CI workflow (runner-tool-versions.yml) that checks all runner components for updates
• Fetches versions concurrently (background curl processes)
• Applies updates and opens a single PR when any component is outdated
• Simplified from original: 5 fetch steps → 1, 6 update steps → 1, removed eval usage

Version table

Component	Before	After
Base image	UBI 9 / python-311	UBI 10 / ubi
Python	3.11	3.12
Node.js	20	22
gh (GitHub CLI)	Unpinned (dnf)	ARG GH_VERSION=2.74.0
glab (GitLab CLI)	Not installed	ARG GLAB_VERSION=1.52.0
uv	Unpinned	ARG UV_VERSION=0.7.8
pre-commit	Unpinned	ARG PRE_COMMIT_VERSION=4.2.0
gemini-cli	Unpinned	ARG GEMINI_CLI_VERSION=0.1.17

Test plan

• Runner container image builds successfully with UBI 10
• python3 --version shows 3.12, node --version shows v22
• gh version, glab version, uv --version, gemini --version all work inside the container
• CI unit tests pass (Python 3.12)
• Workflow YAML passes actionlint / GitHub Actions validation
• Frontend builds with agent options schema changes
• Agent options form renders when advanced-agent-options flag is enabled
• Form is hidden when flag is off (default)

Supersedes #845 and #1045.

---

🤖 Generated with Claude Code

[coderabbitai]

Note

Reviews paused

It looks like this branch is under active development. To avoid overwhelming you with review comments due to an influx of new commits, CodeRabbit has automatically paused this review. You can configure this behavior by changing the reviews.auto_review.auto_pause_after_reviewed_commits setting.

Use the following commands to manage reviews:

• @coderabbitai resume to resume automatic reviews.
• @coderabbitai review to trigger a single review.

Use the checkboxes below for quick actions:

• ▶️ Resume reviews
• 🔍 Trigger review

📝 Walkthrough

Walkthrough

Adds an advanced Agent Options UI and Zod-backed form, propagates agentOptions in session creation, modernizes Python typing across ambient-runner, updates Dockerfiles and pinned tools (including a weekly runner-image freshness workflow), adds SDD preflight and runner constitution/spec files, bumps runner to Python 3.12, and updates tests and docs.

Changes

Cohort / File(s)	Summary
CI Workflows .github/workflows/runner-tool-versions.yml, .github/workflows/sdd-preflight.yml, .github/workflows/unit-tests.yml	New weekly/manual Runner Image Freshness Check; new SDD Preflight PR validator; unit-tests workflow switched to Python 3.12 and installs .[all].
Frontend — Agent Options UI & Barrel components/frontend/src/components/claude-agent-options/_components/*, components/frontend/src/components/claude-agent-options/index.ts	Added many editor components (AgentsEditor, HooksEditor, KeyValueEditor, McpServersEditor, OutputFormatField, PluginsEditor, SandboxField, Section, StringListEditor, SystemPromptField, ThinkingField) and barrel exports; components use stable row keys and controlled onChange behavior.
Frontend — Schema & Form components/frontend/src/components/claude-agent-options/schema.ts, .../options-form.tsx	Introduced Zod schemas, defaults, types, and AgentOptionsFields form glue composing the new editors.
Frontend — Session Creation & Types components/frontend/src/components/create-session-dialog.tsx, components/frontend/src/types/agentic-session.ts, components/frontend/src/types/api/sessions.ts	Feature-flagged advanced options UI; validates agentOptions on submit and includes agentOptions?: Record<string, unknown> in create-session requests.
Runner — Dockerfiles & MCP components/runners/ambient-runner/Dockerfile, components/runners/state-sync/Dockerfile, components/runners/ambient-runner/.mcp.json	Base images changed (ambient → ubi10, state-sync → alpine:3.21); reworked system/tool install steps, pinned tool ARG usage, and bumped an MCP server command version.
Runner — Packaging & Docs components/runners/ambient-runner/pyproject.toml, components/runners/ambient-runner/docs/UPDATE_PROCEDURE.md	Bumped Python requirement to >=3.12, updated dependency minimums and dev dependency groups, enabled pytest asyncio auto mode; added update procedure documentation.
Runner — Type Modernization (PEP 604/585) components/runners/ambient-runner/... (many files: ag_ui_claude_sdk/*, ag_ui_gemini_cli/*, ambient_runner/bridge.py, bridges/..., endpoints/*, platform/*, observability_models.py, middleware/*, etc.)	Widespread modernization of type annotations from typing.Optional/Union/List/Dict to built-in `T
Tests components/runners/ambient-runner/tests/*	Adjusted tests for observability import, relaxed one E2E error-string assertion, moved credential setup to tmp_path, and skipped/simplified a placeholder Google Drive e2e test.
Spec & Governance .specify/* (.specify/sdd-manifest.yaml, .specify/constitutions/runner.md, .specify/specs/runner.md)	Added SDD manifest, runner constitution, and runner component spec documenting governance, enforcement, and maintenance workflows.
Docs / Misc components/runners/ambient-runner/docs/UPDATE_PROCEDURE.md	Added detailed Ambient Runner update procedure and automation roadmap.

Sequence Diagram(s)

sequenceDiagram
    participant User as Frontend User
    participant Dialog as Create Session Dialog
    participant Form as AgentOptionsForm (Zod)
    participant API as Backend Sessions API

    User->>Dialog: Open dialog, enable advanced options
    Dialog->>Form: Render AgentOptionsFields (editors)
    User->>Form: Edit agentOptions fields
    Form->>Form: onChange updates internal state
    User->>Dialog: Submit
    Dialog->>Form: trigger() validate agentOptions
    Form-->>Dialog: valid / invalid
    alt valid
        Dialog->>API: POST /sessions { ..., agentOptions }
        API-->>Dialog: 201 Created
        Dialog->>User: Success
    else invalid
        Dialog->>User: Show validation errors
    end

Loading

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~60 minutes

🚥 Pre-merge checks | ✅ 2 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 75.95% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Title check	✅ Passed	The PR title 'feat(runner): upgrade to UBI 10, add glab CLI, pin versions, add freshness workflow' directly and clearly describes the main changes: upgrading the runner base image, adding a new tool (glab), pinning tool versions, and introducing a new workflow.
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

📝 Generate docstrings

• Create stacked PR
• Commit on current branch

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch feat/combined-runner-upgrade

✨ Simplify code

• Create PR with simplified code
• Commit simplified code in branch feat/combined-runner-upgrade

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 15

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (10)

components/runners/ambient-runner/ag_ui_claude_sdk/adapter.py (1)

430-443: ⚠️ Potential issue | 🟠 Major

build_options() accepts thread_id but never uses it.

The parameter is documented as "for session resumption lookup" (line 441) but is never referenced in the method body. Callers like bridge.py:157-158 pass it expecting thread-based resumption behavior, but only resume_from is actually used (line 544). This API contract mismatch creates misleading caller expectations.

Either implement thread-based session lookup or remove thread_id from the signature and docstring.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@components/runners/ambient-runner/ag_ui_claude_sdk/adapter.py` around lines
430 - 443, The build_options method declares and documents a thread_id parameter
for session resumption but never uses it; update the implementation so
thread-based lookup is actually performed or remove the parameter and docs to
match behavior. Locate build_options in ag_ui_claude_sdk.adapter (the function
that currently accepts input_data, thread_id, resume_from) and either: (A)
implement thread lookup by using thread_id to resolve the session/thread (same
lookup path used for resume_from/session id resolution) and feed the resolved
session history into the existing resume logic, ensuring callers like bridge.py
that pass thread_id get the expected resumption, or (B) remove thread_id from
the signature and the docstring (and update any callers such as bridge.py to
stop passing thread_id) so the API contract matches the actual resume_from-based
behavior.

components/runners/ambient-runner/ag_ui_claude_sdk/handlers.py (1)

137-151: 🛠️ Refactor suggestion | 🟠 Major

parent_tool_use_id parameter is accepted but unused in emitted events.

The function receives this parameter and documents it for nested results, but never includes it in the ToolCallEndEvent or ToolCallResultEvent payloads. This differs from handle_tool_use_block, which preserves parent linkage via parent_message_id. Either remove the parameter or include it in emitted events to maintain parent-child relationships explicitly.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@components/runners/ambient-runner/ag_ui_claude_sdk/handlers.py` around lines
137 - 151, The handler for ToolResultBlock currently accepts parent_tool_use_id
but never attaches it to emitted events; either remove the parameter or,
preferably, mirror handle_tool_use_block by including parent linkage: when
constructing ToolCallEndEvent and ToolCallResultEvent add a parent_message_id or
parent_tool_use_id field populated from the parent_tool_use_id parameter (or map
parent_tool_use_id -> parent_message_id if events expect that name) so nested
tool results preserve parent-child relationships; update all places in this
function where ToolCallEndEvent and ToolCallResultEvent are instantiated to pass
the parent id.

components/runners/state-sync/Dockerfile (1)

1-14: ⚠️ Potential issue | 🔴 Critical

The Alpine migration is incomplete; this image will neither build nor start.

dnf/git-core are Fedora-RHEL specific, so the build breaks as soon as this Dockerfile runs on Alpine. On top of that, components/runners/state-sync/sync.sh still uses #!/bin/bash, but Alpine does not ship bash by default, so the ENTRYPOINT fails even if the package install is fixed. Both .github/workflows/components-build-deploy.yml and .github/workflows/prod-release-deploy.yaml build this Dockerfile, so this blocks CI and release images.

Proposed fix

 FROM alpine:3.21

-RUN dnf install -y rclone git-core jq && \
-    dnf clean all
+RUN apk add --no-cache bash rclone git jq

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@components/runners/state-sync/Dockerfile` around lines 1 - 14, The Dockerfile
uses Fedora tools (dnf, git-core) and the container lacks bash, causing builds
and ENTRYPOINT (/usr/local/bin/sync.sh) to fail; replace the install step to use
Alpine's package manager (apk add --no-cache rclone git jq bash) and/or remove
bash dependency by changing the scripts (sync.sh and hydrate.sh) shebangs to
/bin/sh and ensuring they are POSIX-compliant; keep the COPY of hydrate.sh and
sync.sh and the chmod +x step, and verify ENTRYPOINT still points to
/usr/local/bin/sync.sh after you either install bash or update the script
shebangs.

components/runners/ambient-runner/ambient_runner/bridge.py (1)

155-157: ⚠️ Potential issue | 🟠 Major

Return the stored context from the base accessor.

Line 157 persists self._context, but the base context property still hardcodes None. Any code using the PlatformBridge interface will never see the initialized context, which breaks the contract this property documents.

Proposed fix

     `@property`
     def context(self) -> RunnerContext | None:
         """The current ``RunnerContext``, or ``None`` before ``set_context()``."""
-        return None
+        return self._context

Also applies to: 234-237

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@components/runners/ambient-runner/ambient_runner/bridge.py` around lines 155
- 157, The base context property currently returns None instead of the stored
value, so update the property getter(s) to return self._context (with the
correct Optional[RunnerContext] typing) rather than None; locate the context
property in bridge.py and replace the hardcoded None return with return
self._context, and apply the same change to the other context accessor instance
referenced around lines 234-237 so both PlatformBridge implementations expose
the initialized _context set by set_context.

components/runners/ambient-runner/ambient_runner/bridges/langgraph/bridge.py (1)

87-95: ⚠️ Potential issue | 🟠 Major

Don’t silently ignore thread_id.

The base interface now exposes thread-scoped interruption, but this implementation always calls interrupt() without using the supplied ID. That gives callers the wrong contract and can cancel the wrong run once multiple threads are active. If LangGraph cannot target a specific thread yet, reject non-None IDs explicitly instead of ignoring them.

Proposed fix

     async def interrupt(self, thread_id: str | None = None) -> None:
         """Interrupt the current LangGraph execution."""
         if self._adapter is None:
             raise RuntimeError("LangGraphBridge: no adapter to interrupt")
+        if thread_id is not None:
+            raise NotImplementedError(
+                "LangGraphBridge.interrupt() does not support thread_id"
+            )
 
         if hasattr(self._adapter, "interrupt"):
             await self._adapter.interrupt()

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@components/runners/ambient-runner/ambient_runner/bridges/langgraph/bridge.py`
around lines 87 - 95, The interrupt method on LangGraphBridge currently ignores
the thread_id parameter; update ambient_runner/bridges/langgraph/bridge.py so
interrupt(self, thread_id: str | None = None) rejects non-None thread_id when
the underlying adapter does not support thread-scoped interruption instead of
silently ignoring it: check if thread_id is not None and if self._adapter has an
interrupt callable that accepts a thread_id argument (or otherwise supports
thread-scoped cancelation), call that with the id; if the adapter only supports
global interrupt (self._adapter.interrupt without args) raise a clear exception
(e.g., ValueError or NotImplementedError) indicating thread-scoped interrupt is
unsupported; keep the existing behavior of calling self._adapter.interrupt()
when thread_id is None and the adapter only supports global interrupt.

components/runners/ambient-runner/ambient_runner/bridges/gemini_cli/mcp.py (1)

140-159: 🛠️ Refactor suggestion | 🟠 Major

setup_gemini_mcp() return type should be str, not str | None.

Line 153 always provides a fallback empty dict, line 157 unconditionally injects ambient-feedback, and line 159 calls write_gemini_settings() which returns str. The function never returns None, making the str | None annotation and docstring claim incorrect. This misleads callers and violates the type contract.

Proposed fix

 def setup_gemini_mcp(
     context: RunnerContext,
     cwd_path: str,
-) -> str | None:
+) -> str:
     """End-to-end MCP setup: load config, write settings file, write commands.
 
     Args:
         context: Runner context.
         cwd_path: Working directory.
 
     Returns:
-        Path to the written settings file, or None if no MCP servers.
+        Path to the written settings file.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@components/runners/ambient-runner/ambient_runner/bridges/gemini_cli/mcp.py`
around lines 140 - 159, The function setup_gemini_mcp always constructs a
settings dict (via build_gemini_mcp_settings with a fallback), injects an
ambient-feedback entry (_build_feedback_server_entry), and calls
write_gemini_settings which returns a string, so update setup_gemini_mcp to
reflect a non-optional return: change the type annotation from str | None to
str, adjust the docstring return description to state it always returns the
settings file path (str), and ensure any callers relying on None are updated if
needed; locate setup_gemini_mcp, build_gemini_mcp_settings,
_build_feedback_server_entry, and write_gemini_settings to make these edits.

components/runners/ambient-runner/Dockerfile (1)

42-46: ⚠️ Potential issue | 🟠 Major

Use the pinned uv.lock instead of resolving from pyproject.toml constraints.

pip3 install '/app/ambient-runner[all]' resolves dependencies from pyproject.toml version constraints (e.g., fastapi>=0.135.1), which allows transitive dependencies to drift between builds. Since uv.lock is checked in and uv is already installed in the image, use uv pip install --locked '/app/ambient-runner[all]' to ensure reproducible builds with pinned transitive dependencies.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@components/runners/ambient-runner/Dockerfile` around lines 42 - 46, Replace
the current unpinned install command that runs pip3 install
'/app/ambient-runner[all]' with a locked install using uv so transitive
dependencies are pinned; specifically, when installing the ambient-runner
package (the RUN pip3 install line in the Dockerfile) switch to using uv pip
install --locked '/app/ambient-runner[all]' so the checked-in uv.lock is honored
and builds are reproducible.

components/frontend/src/types/agentic-session.ts (1)

228-250: 🛠️ Refactor suggestion | 🟠 Major

Consolidate duplicated CreateAgenticSessionRequest type definitions.

This file and components/frontend/src/types/api/sessions.ts both define CreateAgenticSessionRequest. Keeping two request contracts will drift and cause subtle API mismatches over time (especially around evolving fields like agentOptions).

Recommend extracting one canonical type and reusing it in both call-site and API layers.

As per coding guidelines, "Focus on major issues impacting performance, readability, maintainability and security. Avoid nitpicks and avoid verbosity."

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@components/frontend/src/types/agentic-session.ts` around lines 228 - 250, The
CreateAgenticSessionRequest type is duplicated between this file and
components/frontend/src/types/api/sessions.ts; extract a single canonical
definition (e.g., export type CreateAgenticSessionRequest = { ... }) into a
shared types module (for example components/frontend/src/types/session-types.ts
or add to an existing central types barrel), update both this file and
components/frontend/src/types/api/sessions.ts to import and re-export/use that
single type, and ensure all fields (including agentOptions, repos,
activeWorkflow, environmentVariables, etc.) are preserved so callers and API
layers reference the exact same symbol.

components/runners/ambient-runner/tests/test_e2e_api.py (1)

397-403: ⚠️ Potential issue | 🟡 Minor

Keep a minimal semantic check on detail, not just key presence.

Right now this passes even if detail is empty or non-string. Strengthen it to assert a non-empty string while staying message-agnostic.

Proposed fix

         data = resp.json()
         assert "detail" in data
+        assert isinstance(data["detail"], str)
+        assert data["detail"].strip() != ""

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@components/runners/ambient-runner/tests/test_e2e_api.py` around lines 397 -
403, The test test_interrupt_returns_structured_error currently only checks that
"detail" exists; change it to assert that data["detail"] is a non-empty string
(e.g., use isinstance(data.get("detail"), str) and assert data["detail"].strip()
!= "") so the error detail is semantically useful while remaining
message-agnostic; update the assertions in that test to perform these two checks
instead of only key presence.

components/runners/ambient-runner/ambient_runner/endpoints/run.py (1)

31-40: ⚠️ Potential issue | 🟠 Major

Do not silently drop object-shaped context.

Line 31 accepts dict for context, but Line 40 drops it by coercing non-lists to []. This can lose caller-provided context without any error.

💡 Proposed fix

-        context_list = self.context if isinstance(self.context, list) else []
+        if isinstance(self.context, list):
+            context_list = self.context
+        elif isinstance(self.context, dict):
+            context_list = [self.context]
+        else:
+            context_list = []

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@components/runners/ambient-runner/ambient_runner/endpoints/run.py` around
lines 31 - 40, The to_run_agent_input method currently discards object-shaped
context by coercing non-lists to an empty list; update the logic so that
self.context is preserved: if self.context is a list use it, if it's a dict wrap
it into a single-element list (e.g., context_list = [self.context]), and if None
default to []; ensure this change is applied where context_list is constructed
in to_run_agent_input so callers' dict contexts are not lost when building the
RunAgentInput.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In @.github/workflows/runner-tool-versions.yml:
- Around line 57-97: The background fetches launched with fetch_version ... &
should capture each child PID and wait on them individually so a single failed
fetch causes the job to fail deterministically; modify the section that starts
the concurrent fetches to save each background PID (e.g. pids+=( $! ) after each
fetch_version invocation), then loop over the pids array and run wait "$pid" for
each, checking the exit status and echoing which fetch (use the corresponding
tool name tracked alongside the PID) failed and exit 1 if any wait returns
non‑zero; use the existing fetch_version function name and the PIDs to map
failures back to specific tools so the workflow fails fast and prints which API
call failed.

In
`@components/frontend/src/components/claude-agent-options/_components/agents-editor.tsx`:
- Around line 24-26: addAgent currently builds keys as `agent-${entries.length +
1}`, which can collide after deletions; change addAgent to generate a truly
unique key instead (e.g. use crypto.randomUUID() when available or fall back to
a timestamp or an incrementing counter held in component state/closure) and use
that key when calling onChange({ ...value, [newKey]: { description: "", prompt:
"" } }); keep removeAgent and onChange usage the same but ensure the newKey is
unique (reference: addAgent, removeAgent, value, onChange).

In
`@components/frontend/src/components/claude-agent-options/_components/key-value-editor.tsx`:
- Around line 54-61: The delete Button rendering an icon-only control (Button
with Trash2) lacks an accessible name; update the Button in key-value-editor.tsx
to include an accessible label (e.g., aria-label or aria-labelledby) that
describes the action and target (for example "Remove entry" or `Remove ${k}` if
`k` is the key), or add visually-hidden text inside the button, and ensure the
onClick handler (removeEntry) remains unchanged; locate the Button element and
Trash2 icon in the component and add the aria attribute or hidden label
accordingly.
- Around line 19-20: The component currently treats object keys as row
identifiers which causes addEntry/no-op, key-collision overwrites, remounts on
edits, nullable env values, and an inaccessible delete button; refactor to use
stable row IDs (e.g., maintain an array of {id, key, value} or a parallel id
map) so entries (derived from value) are rendered with id as React key (not the
editable key), change addEntry to append a new unique id entry instead of adding
an empty string key, update onChange handlers for key edits to rename safely
(detect collisions and either prevent/merge or disallow duplicate keys) and emit
non-null empty strings for the env field (never null) to match schema, and make
the delete control accessible by adding an aria-label or visible label to the
delete button.

In
`@components/frontend/src/components/claude-agent-options/_components/mcp-servers-editor.tsx`:
- Around line 33-45: The addServer function currently uses
server-${entries.length + 1} which can collide after deletions and
updateServerName will silently overwrite an existing key; change addServer to
compute the next unused default key by scanning Object.keys(value) for existing
server-N names and incrementing N until an unused name is found, then call
onChange with that unique key and a McpFormServer default; modify
updateServerName to check if newName already exists in value and, if so, do not
overwrite (either return early or surface an error/validation) instead of
clobbering the entry, otherwise perform the rename by copying entries into next
and calling onChange(next).

In
`@components/frontend/src/components/claude-agent-options/_components/output-format-field.tsx`:
- Around line 23-38: The textarea's local rawJson state and jsonError are out of
sync with external form value and don't propagate parse failures to the form;
add a useEffect that watches the value prop and updates rawJson = value ?
JSON.stringify(value, null, 2) : "" so external resets/defaults refresh the
editor, and modify handleChange so that when JSON.parse(text) throws you
setJsonError(...) AND call onChange(undefined) (or a provided onInvalid callback
if available) to clear the form value and surface the validation error to the
form instead of silently keeping the last good object; keep the successful parse
path calling onChange(parsed) and setJsonError(null).

In
`@components/frontend/src/components/claude-agent-options/_components/string-list-editor.tsx`:
- Around line 48-55: The delete button in string-list-editor.tsx is icon-only
and lacks an accessible name; update the Button (the one rendering <Trash2 />
with onClick={() => removeItem(i)}) to provide an accessible label (e.g.,
aria-label or aria-labelledby, or include a visually hidden span with the row
index or value) that describes the action and which item will be removed so
screen readers can identify the button's purpose and target.

In `@components/frontend/src/components/claude-agent-options/options-form.tsx`:
- Around line 119-145: The number inputs for the form fields (e.g., the
FormField for "max_budget_usd" and the other optional numeric field using
field.onChange) need guarding against NaN: replace the direct
Number(e.target.value) usage with reading e.target.valueAsNumber and check
Number.isNaN(valueAsNumber) before calling field.onChange; if it is NaN, call
field.onChange(undefined) (or the empty state) otherwise pass the valid number,
and ensure the controlled value uses field.value ?? "" so the input never
receives NaN.

In `@components/frontend/src/components/claude-agent-options/schema.ts`:
- Around line 149-152: The outputFormatSchema currently allows partial objects
because both fields are optional; update outputFormatSchema so that both
properties are required by removing .optional() from the type and schema entries
(i.e., make type: z.literal("json_schema") and schema: z.record(z.unknown())
required on the z.object) so any provided output_format must include both
fields; adjust any related validators that construct or validate output_format
to expect both fields accordingly.

In `@components/frontend/src/types/api/sessions.ts`:
- Around line 143-148: The agentOptions field is currently dropped by the
backend; update the frontend to avoid sending agentOptions unless the backend
supports it: detect the backend capability (e.g., via a feature flag check for
advanced-agent-options or a capability API) and only include agentOptions in the
request payload when that support is present, otherwise omit agentOptions or
surface a validation error to the user (using ClaudeAgentOptionsForm validation
path) so submissions aren’t silently accepted; also add explicit client-side
rejection or UX feedback when agentOptions is present but backend support is
absent to prevent false-success behavior and ensure the backend handler that
writes into the AgenticSession CR spec will actually receive the field.

In `@components/runners/ambient-runner/ambient_runner/bridges/claude/bridge.py`:
- Line 15: The code imports Any and AsyncIterator but removed Optional, yet the
stop_task method signature still uses Optional[str]; update the stop_task
annotation (the stop_task method in the Claude bridge) to use the modern union
syntax str | None instead of Optional[str] so the type name resolves without
importing Optional, and ensure any other occurrences in the same file use str |
None consistently.

In `@components/runners/ambient-runner/Dockerfile`:
- Around line 16-22: The Dockerfile RUN block that downloads and extracts gh and
glab (using GH_VERSION and GLAB_VERSION) should download each archive to a
temporary file, fetch the corresponding published checksum file (or release
signature), verify the archive with sha256sum -c (or use gh release verify for
gh when available for v2.74.0+), and only extract to /usr/local/bin if
verification succeeds; then set executable bits and remove temp files. Update
the RUN sequence that currently pipes directly into tar to instead perform: curl
-o /tmp/gh.tar.gz and curl -o /tmp/gh.sha256 (or signature), verify, extract gh
to /usr/local/bin, repeat for glab, handle verification failures by failing the
build, and keep the existing chmod step after successful extraction.

In `@components/runners/ambient-runner/tests/test_gemini_auth.py`:
- Around line 141-145: The test has two problems: the ctx = _make_context(...)
call is mis-indented outside the async test function and must be moved inside
the async test block so the test can be collected, and the environment dict used
to build contexts contains a duplicate key GOOGLE_APPLICATION_CREDENTIALS (the
second entry overrides the first) — remove the duplicate entry or rename/merge
the intended values so only one GOOGLE_APPLICATION_CREDENTIALS is present;
update the usages around _make_context and setup_gemini_cli_auth to reference
the single correct key so the test logic behaves as intended.

In `@components/runners/ambient-runner/tests/test_git_identity.py`:
- Around line 17-23: Remove the obsolete migration block: delete the
sys.path.insert(0, str(Path(__file__).parent.parent)) line and the pytestmark =
pytest.mark.skip(...) statement (and any unused references to sys or Path in
that top-of-file block); the tests already import ambient_runner.platform.auth
so the sys.path hack and skip marker are unnecessary—remove the entire block
containing sys.path.insert and pytestmark to allow normal test collection.

---

Outside diff comments:
In `@components/frontend/src/types/agentic-session.ts`:
- Around line 228-250: The CreateAgenticSessionRequest type is duplicated
between this file and components/frontend/src/types/api/sessions.ts; extract a
single canonical definition (e.g., export type CreateAgenticSessionRequest = {
... }) into a shared types module (for example
components/frontend/src/types/session-types.ts or add to an existing central
types barrel), update both this file and
components/frontend/src/types/api/sessions.ts to import and re-export/use that
single type, and ensure all fields (including agentOptions, repos,
activeWorkflow, environmentVariables, etc.) are preserved so callers and API
layers reference the exact same symbol.

In `@components/runners/ambient-runner/ag_ui_claude_sdk/adapter.py`:
- Around line 430-443: The build_options method declares and documents a
thread_id parameter for session resumption but never uses it; update the
implementation so thread-based lookup is actually performed or remove the
parameter and docs to match behavior. Locate build_options in
ag_ui_claude_sdk.adapter (the function that currently accepts input_data,
thread_id, resume_from) and either: (A) implement thread lookup by using
thread_id to resolve the session/thread (same lookup path used for
resume_from/session id resolution) and feed the resolved session history into
the existing resume logic, ensuring callers like bridge.py that pass thread_id
get the expected resumption, or (B) remove thread_id from the signature and the
docstring (and update any callers such as bridge.py to stop passing thread_id)
so the API contract matches the actual resume_from-based behavior.

In `@components/runners/ambient-runner/ag_ui_claude_sdk/handlers.py`:
- Around line 137-151: The handler for ToolResultBlock currently accepts
parent_tool_use_id but never attaches it to emitted events; either remove the
parameter or, preferably, mirror handle_tool_use_block by including parent
linkage: when constructing ToolCallEndEvent and ToolCallResultEvent add a
parent_message_id or parent_tool_use_id field populated from the
parent_tool_use_id parameter (or map parent_tool_use_id -> parent_message_id if
events expect that name) so nested tool results preserve parent-child
relationships; update all places in this function where ToolCallEndEvent and
ToolCallResultEvent are instantiated to pass the parent id.

In `@components/runners/ambient-runner/ambient_runner/bridge.py`:
- Around line 155-157: The base context property currently returns None instead
of the stored value, so update the property getter(s) to return self._context
(with the correct Optional[RunnerContext] typing) rather than None; locate the
context property in bridge.py and replace the hardcoded None return with return
self._context, and apply the same change to the other context accessor instance
referenced around lines 234-237 so both PlatformBridge implementations expose
the initialized _context set by set_context.

In `@components/runners/ambient-runner/ambient_runner/bridges/gemini_cli/mcp.py`:
- Around line 140-159: The function setup_gemini_mcp always constructs a
settings dict (via build_gemini_mcp_settings with a fallback), injects an
ambient-feedback entry (_build_feedback_server_entry), and calls
write_gemini_settings which returns a string, so update setup_gemini_mcp to
reflect a non-optional return: change the type annotation from str | None to
str, adjust the docstring return description to state it always returns the
settings file path (str), and ensure any callers relying on None are updated if
needed; locate setup_gemini_mcp, build_gemini_mcp_settings,
_build_feedback_server_entry, and write_gemini_settings to make these edits.

In
`@components/runners/ambient-runner/ambient_runner/bridges/langgraph/bridge.py`:
- Around line 87-95: The interrupt method on LangGraphBridge currently ignores
the thread_id parameter; update ambient_runner/bridges/langgraph/bridge.py so
interrupt(self, thread_id: str | None = None) rejects non-None thread_id when
the underlying adapter does not support thread-scoped interruption instead of
silently ignoring it: check if thread_id is not None and if self._adapter has an
interrupt callable that accepts a thread_id argument (or otherwise supports
thread-scoped cancelation), call that with the id; if the adapter only supports
global interrupt (self._adapter.interrupt without args) raise a clear exception
(e.g., ValueError or NotImplementedError) indicating thread-scoped interrupt is
unsupported; keep the existing behavior of calling self._adapter.interrupt()
when thread_id is None and the adapter only supports global interrupt.

In `@components/runners/ambient-runner/ambient_runner/endpoints/run.py`:
- Around line 31-40: The to_run_agent_input method currently discards
object-shaped context by coercing non-lists to an empty list; update the logic
so that self.context is preserved: if self.context is a list use it, if it's a
dict wrap it into a single-element list (e.g., context_list = [self.context]),
and if None default to []; ensure this change is applied where context_list is
constructed in to_run_agent_input so callers' dict contexts are not lost when
building the RunAgentInput.

In `@components/runners/ambient-runner/Dockerfile`:
- Around line 42-46: Replace the current unpinned install command that runs pip3
install '/app/ambient-runner[all]' with a locked install using uv so transitive
dependencies are pinned; specifically, when installing the ambient-runner
package (the RUN pip3 install line in the Dockerfile) switch to using uv pip
install --locked '/app/ambient-runner[all]' so the checked-in uv.lock is honored
and builds are reproducible.

In `@components/runners/ambient-runner/tests/test_e2e_api.py`:
- Around line 397-403: The test test_interrupt_returns_structured_error
currently only checks that "detail" exists; change it to assert that
data["detail"] is a non-empty string (e.g., use isinstance(data.get("detail"),
str) and assert data["detail"].strip() != "") so the error detail is
semantically useful while remaining message-agnostic; update the assertions in
that test to perform these two checks instead of only key presence.

In `@components/runners/state-sync/Dockerfile`:
- Around line 1-14: The Dockerfile uses Fedora tools (dnf, git-core) and the
container lacks bash, causing builds and ENTRYPOINT (/usr/local/bin/sync.sh) to
fail; replace the install step to use Alpine's package manager (apk add
--no-cache rclone git jq bash) and/or remove bash dependency by changing the
scripts (sync.sh and hydrate.sh) shebangs to /bin/sh and ensuring they are
POSIX-compliant; keep the COPY of hydrate.sh and sync.sh and the chmod +x step,
and verify ENTRYPOINT still points to /usr/local/bin/sync.sh after you either
install bash or update the script shebangs.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: ASSERTIVE

Plan: Pro

Run ID: fb3cd08a-783a-4e66-a813-b87ddcb8135d

📥 Commits

Reviewing files that changed from the base of the PR and between 8ac0f85 and 0099035.

⛔ Files ignored due to path filters (1)

• components/runners/ambient-runner/uv.lock is excluded by !**/*.lock

📒 Files selected for processing (50)

• .github/workflows/runner-tool-versions.yml
• .github/workflows/unit-tests.yml
• components/frontend/src/components/claude-agent-options/_components/agents-editor.tsx
• components/frontend/src/components/claude-agent-options/_components/hooks-editor.tsx
• components/frontend/src/components/claude-agent-options/_components/key-value-editor.tsx
• components/frontend/src/components/claude-agent-options/_components/mcp-servers-editor.tsx
• components/frontend/src/components/claude-agent-options/_components/output-format-field.tsx
• components/frontend/src/components/claude-agent-options/_components/plugins-editor.tsx
• components/frontend/src/components/claude-agent-options/_components/sandbox-field.tsx
• components/frontend/src/components/claude-agent-options/_components/section.tsx
• components/frontend/src/components/claude-agent-options/_components/string-list-editor.tsx
• components/frontend/src/components/claude-agent-options/_components/system-prompt-field.tsx
• components/frontend/src/components/claude-agent-options/_components/thinking-field.tsx
• components/frontend/src/components/claude-agent-options/index.ts
• components/frontend/src/components/claude-agent-options/options-form.tsx
• components/frontend/src/components/claude-agent-options/schema.ts
• components/frontend/src/components/create-session-dialog.tsx
• components/frontend/src/types/agentic-session.ts
• components/frontend/src/types/api/sessions.ts
• components/runners/ambient-runner/.mcp.json
• components/runners/ambient-runner/Dockerfile
• components/runners/ambient-runner/ag_ui_claude_sdk/adapter.py
• components/runners/ambient-runner/ag_ui_claude_sdk/handlers.py
• components/runners/ambient-runner/ag_ui_claude_sdk/reasoning_events.py
• components/runners/ambient-runner/ag_ui_claude_sdk/utils.py
• components/runners/ambient-runner/ag_ui_gemini_cli/adapter.py
• components/runners/ambient-runner/ag_ui_gemini_cli/types.py
• components/runners/ambient-runner/ambient_runner/bridge.py
• components/runners/ambient-runner/ambient_runner/bridges/claude/bridge.py
• components/runners/ambient-runner/ambient_runner/bridges/claude/mcp.py
• components/runners/ambient-runner/ambient_runner/bridges/claude/session.py
• components/runners/ambient-runner/ambient_runner/bridges/gemini_cli/bridge.py
• components/runners/ambient-runner/ambient_runner/bridges/gemini_cli/mcp.py
• components/runners/ambient-runner/ambient_runner/bridges/gemini_cli/session.py
• components/runners/ambient-runner/ambient_runner/bridges/langgraph/bridge.py
• components/runners/ambient-runner/ambient_runner/endpoints/feedback.py
• components/runners/ambient-runner/ambient_runner/endpoints/run.py
• components/runners/ambient-runner/ambient_runner/middleware/tracing.py
• components/runners/ambient-runner/ambient_runner/observability_models.py
• components/runners/ambient-runner/ambient_runner/platform/config.py
• components/runners/ambient-runner/ambient_runner/platform/context.py
• components/runners/ambient-runner/ambient_runner/platform/utils.py
• components/runners/ambient-runner/docs/UPDATE_PROCEDURE.md
• components/runners/ambient-runner/pyproject.toml
• components/runners/ambient-runner/tests/test_bridge_claude.py
• components/runners/ambient-runner/tests/test_e2e_api.py
• components/runners/ambient-runner/tests/test_gemini_auth.py
• components/runners/ambient-runner/tests/test_git_identity.py
• components/runners/ambient-runner/tests/test_google_drive_e2e.py
• components/runners/state-sync/Dockerfile

[coderabbitai]

Actionable comments posted: 2

♻️ Duplicate comments (4)

components/frontend/src/components/claude-agent-options/_components/key-value-editor.tsx (3)

77-85: ⚠️ Potential issue | 🟠 Major

Add an accessible name to the delete button.

The icon-only destructive control is unlabeled for assistive technologies.

Proposed fix

           <Button
             type="button"
             variant="ghost"
             size="icon"
             className="h-8 w-8 shrink-0"
+            aria-label={`Remove ${k || "entry"}`}
             onClick={() => removeEntry(i)}
           >

As per coding guidelines, "Focus on major issues impacting performance, readability, maintainability and security. Avoid nitpicks and avoid verbosity."

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@components/frontend/src/components/claude-agent-options/_components/key-value-editor.tsx`
around lines 77 - 85, The delete Button rendering the Trash2 icon in
key-value-editor.tsx is missing an accessible name; update the Button (the one
calling removeEntry(i)) to provide an accessible label by adding an aria-label
(e.g., aria-label="Remove entry") or include visually hidden text/Tooltip tied
to the Button so screen readers can announce it; ensure the label is descriptive
and kept in sync with removeEntry semantics and the destructive nature of the
control.

---

75-75: ⚠️ Potential issue | 🟠 Major

Avoid emitting null for cleared values in this shared editor path.

Converting empty input to null breaks downstream env/headers contracts (Record<string, string>) and can cause validation failures.

Proposed fix

-            onChange={(e) => updateEntry(i, k, e.target.value || null)}
+            onChange={(e) => updateEntry(i, k, e.target.value)}

As per coding guidelines, "Focus on major issues impacting performance, readability, maintainability and security. Avoid nitpicks and avoid verbosity."

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@components/frontend/src/components/claude-agent-options/_components/key-value-editor.tsx`
at line 75, The onChange currently converts empty inputs to null (onChange={(e)
=> updateEntry(i, k, e.target.value || null)}), which violates the
Record<string,string> contract; change it to pass an empty string instead of
null (e.g., onChange={(e) => updateEntry(i, k, e.target.value)} or explicitly
map empty value to ""), so updateEntry (and any consumers expecting headers/env)
always receives a string and no nulls are emitted.

---

49-58: ⚠️ Potential issue | 🟠 Major

Prevent silent overwrite when renaming to an existing key.

updateEntry can clobber another entry when newKey already exists, causing data loss.

Proposed fix

   const updateEntry = (index: number, newKey: string, newVal: string | null) => {
+    const oldKey = entries[index][0];
+    if (newKey !== oldKey && newKey in value) return;
     const next: Record<string, string | null> = {};
     for (let i = 0; i < entries.length; i++) {
       if (i === index) {
         next[newKey] = newVal;
       } else {
         next[entries[i][0]] = entries[i][1];
       }
     }
     onChange(next);
   };

As per coding guidelines, "Focus on major issues impacting performance, readability, maintainability and security. Avoid nitpicks and avoid verbosity."

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@components/frontend/src/components/claude-agent-options/_components/key-value-editor.tsx`
around lines 49 - 58, The updateEntry function can silently overwrite an
existing entry when newKey equals an existing key; modify updateEntry to detect
if newKey already exists (by scanning entries or checking entries.some(e => e[0]
=== newKey)) and handle it explicitly—either prevent the rename and bail out
(e.g., return without calling onChange or surface an error/validation callback)
or merge/replace intentionally (e.g., preserve both values or prompt). Update
references in updateEntry (which builds next and calls onChange) so you don't
blindly set next[newKey] when that key already exists; choose and implement one
clear behavior (prevent rename or handle merge) and ensure onChange receives the
correct resulting map.

components/frontend/src/components/claude-agent-options/_components/mcp-servers-editor.tsx (1)

60-65: ⚠️ Potential issue | 🟠 Major

Guard against duplicate server names during rename.

Renaming to an existing key silently overwrites another server entry.

Proposed fix

   const updateServerName = (index: number, newName: string) => {
+    const oldName = entries[index][0];
+    if (newName !== oldName && newName in value) return;
     const next: Record<string, McpFormServer> = {};
     for (let i = 0; i < entries.length; i++) {
       next[i === index ? newName : entries[i][0]] = entries[i][1];
     }
     onChange(next);
   };

As per coding guidelines, "Focus on major issues impacting performance, readability, maintainability and security. Avoid nitpicks and avoid verbosity."

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@components/frontend/src/components/claude-agent-options/_components/mcp-servers-editor.tsx`
around lines 60 - 65, The rename logic in updateServerName allows silently
overwriting an existing server when newName matches another entry key; update
updateServerName to detect if newName already exists in entries (except the
current index) and abort or surface an error instead of building next and
calling onChange; use entries and McpFormServer to check keys, and only proceed
to construct the next Record<string, McpFormServer> and call onChange when the
newName is unique (or provide a clear validation callback/return value to the
caller).

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In @.github/workflows/runner-tool-versions.yml:
- Around line 218-301: The workflow currently skips the entire "Create branch,
commit, and open PR" step when an automation PR already exists
(steps.existing_pr.outputs.pr_exists), so subsequent runs never update the
branch; change the logic to always update/push the auto/update-runner-image
branch when changes exist and only conditionally create a PR: keep the
BRANCH/Git commands (git checkout -b "$BRANCH", git add "$DOCKERFILE", git
commit, git push -u origin "$BRANCH") and remove or relax the if-condition that
prevents the step from running when a PR exists, and replace the unconditional
gh pr create call with conditional behavior that uses gh pr create only when
steps.existing_pr.outputs.pr_exists == 'false' and uses gh pr edit (or gh pr
reopen/patch) to update the existing PR when it is 'true', referencing BRANCH
and the gh pr create/gh pr edit commands to locate the change.

In
`@components/frontend/src/components/claude-agent-options/_components/mcp-servers-editor.tsx`:
- Around line 86-88: The delete Button rendering the Trash2 icon is missing an
accessible name; update the Button in mcp-servers-editor.tsx (the Button that
calls removeServer(i) and renders <Trash2 />) to include an explicit accessible
label (e.g., aria-label or aria-labelledby) that describes the action,
preferably including the server identity (like aria-label={`Remove server
${server.name ?? i + 1}`}), or add visually hidden text inside the button;
ensure the label is unique/meaningful for screen readers and retains the
existing onClick that calls removeServer(i).

---

Duplicate comments:
In
`@components/frontend/src/components/claude-agent-options/_components/key-value-editor.tsx`:
- Around line 77-85: The delete Button rendering the Trash2 icon in
key-value-editor.tsx is missing an accessible name; update the Button (the one
calling removeEntry(i)) to provide an accessible label by adding an aria-label
(e.g., aria-label="Remove entry") or include visually hidden text/Tooltip tied
to the Button so screen readers can announce it; ensure the label is descriptive
and kept in sync with removeEntry semantics and the destructive nature of the
control.
- Line 75: The onChange currently converts empty inputs to null (onChange={(e)
=> updateEntry(i, k, e.target.value || null)}), which violates the
Record<string,string> contract; change it to pass an empty string instead of
null (e.g., onChange={(e) => updateEntry(i, k, e.target.value)} or explicitly
map empty value to ""), so updateEntry (and any consumers expecting headers/env)
always receives a string and no nulls are emitted.
- Around line 49-58: The updateEntry function can silently overwrite an existing
entry when newKey equals an existing key; modify updateEntry to detect if newKey
already exists (by scanning entries or checking entries.some(e => e[0] ===
newKey)) and handle it explicitly—either prevent the rename and bail out (e.g.,
return without calling onChange or surface an error/validation callback) or
merge/replace intentionally (e.g., preserve both values or prompt). Update
references in updateEntry (which builds next and calls onChange) so you don't
blindly set next[newKey] when that key already exists; choose and implement one
clear behavior (prevent rename or handle merge) and ensure onChange receives the
correct resulting map.

In
`@components/frontend/src/components/claude-agent-options/_components/mcp-servers-editor.tsx`:
- Around line 60-65: The rename logic in updateServerName allows silently
overwriting an existing server when newName matches another entry key; update
updateServerName to detect if newName already exists in entries (except the
current index) and abort or surface an error instead of building next and
calling onChange; use entries and McpFormServer to check keys, and only proceed
to construct the next Record<string, McpFormServer> and call onChange when the
newName is unique (or provide a clear validation callback/return value to the
caller).

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: ASSERTIVE

Plan: Pro

Run ID: c4cf0ebb-0fac-4c31-a2c4-fbb990099c25

📥 Commits

Reviewing files that changed from the base of the PR and between 0099035 and 92e49ac.

📒 Files selected for processing (4)

• .github/workflows/runner-tool-versions.yml
• components/frontend/src/components/claude-agent-options/_components/key-value-editor.tsx
• components/frontend/src/components/claude-agent-options/_components/mcp-servers-editor.tsx
• components/runners/ambient-runner/Dockerfile

[coderabbitai]

Actionable comments posted: 5

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

components/runners/ambient-runner/tests/test_gemini_auth.py (1)

220-224: ⚠️ Potential issue | 🟠 Major

Use the existing tmp_path credential file instead of creating a second unmanaged temp file.

This test now mixes two credential paths (creds_file and cred_path) and leaves a delete=False temp file behind. Reuse creds_file for the context to keep setup deterministic and avoid file leakage in CI runs.

Suggested fix

-        with tempfile.NamedTemporaryFile(suffix=".json", delete=False) as f:
-            cred_path = f.name
         ctx = _make_context(
             USE_VERTEX="1",
-            GOOGLE_APPLICATION_CREDENTIALS=cred_path,
+            GOOGLE_APPLICATION_CREDENTIALS=str(creds_file),
             GOOGLE_CLOUD_PROJECT="my-project",
             GOOGLE_CLOUD_LOCATION="us-central1",
         )

As per coding guidelines, "`**`: Focus on major issues impacting performance, readability, maintainability and security. Avoid nitpicks and avoid verbosity."

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@components/runners/ambient-runner/tests/test_gemini_auth.py` around lines 220
- 224, The test currently creates an extra unmanaged temp file (cred_path) and
sets GOOGLE_APPLICATION_CREDENTIALS to it; instead reuse the existing tmp_path
credential file variable (creds_file) when calling _make_context so the context
uses creds_file for GOOGLE_APPLICATION_CREDENTIALS and avoid creating a second
tempfile with delete=False; update the variables passed to _make_context (the
USE_VERTEX and GOOGLE_APPLICATION_CREDENTIALS entries) to reference creds_file
instead of cred_path and remove the tempfile creation logic.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In @.github/workflows/runner-tool-versions.yml:
- Around line 262-279: The workflow fails with --force-with-lease because there
is no remote-tracking ref to validate; before creating/checking out and pushing
the branch (around git checkout -B "$BRANCH" and git push -u --force-with-lease
origin "$BRANCH"), fetch the remote branch to establish a remote-tracking ref
(e.g., run a git fetch origin "$BRANCH" or git fetch origin) and then base the
local branch off origin/"$BRANCH" if it exists so --force-with-lease can verify
the lease; add that fetch step immediately prior to git checkout -B "$BRANCH"
and ensure the subsequent git push uses the fetched remote-tracking ref.

In
`@components/frontend/src/components/claude-agent-options/_components/agents-editor.tsx`:
- Around line 41-42: The agent list is using the editable agent "name" as the
React key in entries.map(([name, agent]) => ...) which causes the agent card to
remount on every rename; change the key to a stable, non-editable id (the same
stable-ID pattern used in KeyValueEditor and StringListEditor) so UI elements
keep focus during edits. Locate the map in agents-editor.tsx (entries.map ...)
and replace the key usage with the agent's stable id (e.g., agent.id or the
stable-id field generated where agents are created/loaded) or wire in the same
stable-id generation helper used by KeyValueEditor/StringListEditor, ensuring
all references to the unique identifier are preserved and not the mutable name.

In
`@components/frontend/src/components/claude-agent-options/_components/mcp-servers-editor.tsx`:
- Line 99: The KeyValueEditor onChange currently casts its output to
Record<string,string> which may hide nulls and cause mcpServerFormConfigSchema
(which expects z.string()) to reject the env record; change the update path
(where KeyValueEditor value is passed into updateServer/updateEntry) to sanitize
the incoming e (from KeyValueEditor) by filtering out any keys whose values are
null or undefined and only pass a Record<string,string> with string values to
updateServer (and ensure the env property on the server object is set to that
sanitized record before calling updateServer).

In `@components/runners/ambient-runner/ambient_runner/bridges/claude/bridge.py`:
- Line 15: Replace the deprecated typing.AsyncIterator import with the modern
collections.abc.AsyncIterator: update the import statement that currently uses
"from typing import Any, AsyncIterator" in the Claude bridge (symbol: file-level
import in bridge.py) to import Any from typing and AsyncIterator from
collections.abc; apply the same change wherever typing.AsyncIterator is used
across the codebase so all async iterator type hints reference
collections.abc.AsyncIterator instead of typing.AsyncIterator.

In `@components/runners/state-sync/Dockerfile`:
- Around line 1-3: The Dockerfile currently installs rclone, git and jq but
omits bash and sqlite3 which are required by the ENTRYPOINT script sync.sh (uses
bash-specific syntax and calls sqlite3 for WAL checkpointing); update the RUN
apk add --no-cache command to include bash and sqlite (sqlite-dev is not
necessary unless building) so sync.sh can run correctly and the WAL checkpoint
step (sqlite3) executes as expected.

---

Outside diff comments:
In `@components/runners/ambient-runner/tests/test_gemini_auth.py`:
- Around line 220-224: The test currently creates an extra unmanaged temp file
(cred_path) and sets GOOGLE_APPLICATION_CREDENTIALS to it; instead reuse the
existing tmp_path credential file variable (creds_file) when calling
_make_context so the context uses creds_file for GOOGLE_APPLICATION_CREDENTIALS
and avoid creating a second tempfile with delete=False; update the variables
passed to _make_context (the USE_VERTEX and GOOGLE_APPLICATION_CREDENTIALS
entries) to reference creds_file instead of cred_path and remove the tempfile
creation logic.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: ASSERTIVE

Plan: Pro

Run ID: 858939e6-c72b-4094-ab05-cf88444fc405

📥 Commits

Reviewing files that changed from the base of the PR and between 92e49ac and 2d1c700.

📒 Files selected for processing (12)

• .github/workflows/runner-tool-versions.yml
• components/frontend/src/components/claude-agent-options/_components/agents-editor.tsx
• components/frontend/src/components/claude-agent-options/_components/key-value-editor.tsx
• components/frontend/src/components/claude-agent-options/_components/mcp-servers-editor.tsx
• components/frontend/src/components/claude-agent-options/_components/output-format-field.tsx
• components/frontend/src/components/claude-agent-options/_components/string-list-editor.tsx
• components/frontend/src/components/claude-agent-options/_components/thinking-field.tsx
• components/frontend/src/components/claude-agent-options/options-form.tsx
• components/frontend/src/components/claude-agent-options/schema.ts
• components/runners/ambient-runner/ambient_runner/bridges/claude/bridge.py
• components/runners/ambient-runner/tests/test_gemini_auth.py
• components/runners/state-sync/Dockerfile

[coderabbitai]

Actionable comments posted: 5

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In @.github/workflows/sdd-preflight.yml:
- Around line 69-75: The globstar conversion is being overwritten by the
single-star conversion when building the regex in the regex variable; update the
conversion order in the code that builds regex (the pipeline that processes
"$pattern" before appending to "$PATTERN_FILE") so that '**' is preserved and
translated to '.*' before you translate single '*' to '[^/]*' (e.g., convert
'**' to a temporary placeholder, run the single-star sed, then replace the
placeholder with '.*'), ensuring patterns like
components/runners/ambient-runner/** correctly match nested files.
- Around line 84-93: The loop currently breaks on the first matching pattern
which can misclassify files when multiple patterns match; instead, iterate all
patterns without breaking, record matches for the current changed_file, track
whether any matching mode is "enforce" (e.g., set a flag enforce_found), and
after the loop append a single row for that file to VIOLATIONS if enforce_found
is true otherwise to WARNINGS; reference the existing loop (while IFS=$'\t' read
-r regex comp mode; do), the variables changed_file, mode, VIOLATIONS, and
WARNINGS, and remove the break so all regex matches are evaluated and
enforcement takes precedence.

In @.specify/sdd-manifest.yaml:
- Around line 27-30: The SDD manifest's paths list omits the session-dialog
integration file, so changes to create-session-dialog.tsx can bypass SDD checks;
update the paths array (next to existing entries like
components/frontend/src/components/claude-agent-options/** and
components/runners/ambient-runner/**) to include
components/frontend/src/components/create-session-dialog.tsx (or a glob covering
that file) so agentOptions wiring changes are covered by the manifest.

In @.specify/specs/runner.md:
- Around line 55-83: Normalize blank lines around the Markdown headings and
tables to satisfy MD022/MD058: ensure there is exactly one blank line before and
after each top-level heading (e.g., "Base Image", "Maintenance Workflows") and
before/after each table (the "Pinned Tools" and "Key Dependencies" tables) and
subheadings like "Weekly: Tool Freshness (`runner-tool-versions.yml`)" and
"Monthly: Dependency Bump (`UPDATE_PROCEDURE.md`)"; update the runner.md content
so headings and tables have a single blank line separation from surrounding
paragraphs/lists to pass the markdownlint rules.
- Around line 18-51: The markdown uses fenced code blocks for two directory
trees without a language, triggering MD040; update the two blocks that start
with "components/runners/ambient-runner/" and
"components/frontend/src/components/claude-agent-options/" in
.specify/specs/runner.md to add a language token (e.g., text) after the opening
``` so each becomes ```text; ensure both opening fences are changed and no other
content is modified.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: ASSERTIVE

Plan: Pro

Run ID: dd586722-1e75-4dba-b2f7-ff194842fa9a

📥 Commits

Reviewing files that changed from the base of the PR and between e3ce13d and 797f29c.

📒 Files selected for processing (4)

• .github/workflows/sdd-preflight.yml
• .specify/constitutions/runner.md
• .specify/sdd-manifest.yaml
• .specify/specs/runner.md

[coderabbitai]

⚠️ Potential issue | 🟠 Major

🧩 Analysis chain

🏁 Script executed:

#!/bin/bash
set -euo pipefail

changed_file='components/frontend/src/components/create-session-dialog.tsx'
patterns=$'components/frontend/src/components/.*\trunner\twarn\ncomponents/frontend/src/components/create-session-dialog\\.tsx\trunner\tenforce'

# Current behavior (first match wins)
current_mode=""
while IFS=$'\t' read -r regex comp mode; do
  if printf '%s' "$changed_file" | grep -qE "^${regex}$"; then
    current_mode="$mode"
    break
  fi
done <<< "$patterns"

# Desired behavior (enforce wins)
desired_mode=""
while IFS=$'\t' read -r regex comp mode; do
  if printf '%s' "$changed_file" | grep -qE "^${regex}$"; then
    if [ "$mode" = "enforce" ]; then
      desired_mode="enforce"
      break
    elif [ -z "$desired_mode" ]; then
      desired_mode="$mode"
    fi
  fi
done <<< "$patterns"

printf 'current=%s\ndesired=%s\n' "$current_mode" "$desired_mode"

Repository: ambient-code/platform

Length of output: 93

---

🏁 Script executed:

# First, let's verify the file exists and check the actual code at lines 84-93
cat -n .github/workflows/sdd-preflight.yml | sed -n '80,100p'

Repository: ambient-code/platform

Length of output: 938

---

🏁 Script executed:

# Find where PATTERN_FILE is created/populated
cat -n .github/workflows/sdd-preflight.yml | grep -B5 -A5 "PATTERN_FILE"

Repository: ambient-code/platform

Length of output: 1363

---

🏁 Script executed:

# Find where COMPONENT_PATHS is defined
cat -n .github/workflows/sdd-preflight.yml | head -80

Repository: ambient-code/platform

Length of output: 3375

---

🏁 Script executed:

# Let's check if the sdd-manifest.yaml file exists and look at its structure
if [ -f ".specify/sdd-manifest.yaml" ]; then
  cat ".specify/sdd-manifest.yaml"
else
  echo "File not found, checking for manifest files"
  find . -name "*sdd-manifest*" -o -name "*manifest*" | head -20
fi

Repository: ambient-code/platform

Length of output: 1844

---

🏁 Script executed:

# Let's verify if there are any overlapping patterns in the current manifest
# by checking if any file would match multiple patterns

cat > /tmp/check_overlap.sh << 'EOF'
#!/bin/bash

# Sample files that might exist
test_files=(
  "components/runners/ambient-runner/README.md"
  "components/frontend/src/components/claude-agent-options/index.ts"
  ".github/workflows/runner-tool-versions.yml"
  "components/frontend/src/components/some-other-file.tsx"
)

# Current patterns from the manifest (converted to regex format)
patterns=(
  "components/runners/ambient-runner/.*\trunner\twarn"
  "components/frontend/src/components/claude-agent-options/.*\trunner\twarn"
  "\\.github/workflows/runner-tool-versions\\.yml\trunner\twarn"
)

echo "=== Checking for pattern overlaps ==="
for file in "${test_files[@]}"; do
  echo ""
  echo "File: $file"
  match_count=0
  while IFS=$'\t' read -r regex comp mode; do
    if printf '%s' "$file" | grep -qE "^${regex}$"; then
      echo "  ✓ Matches: regex=$regex, comp=$comp, mode=$mode"
      ((match_count++))
    fi
  done <<< "$(printf '%s\n' "${patterns[@]}")"
  if [ $match_count -eq 0 ]; then
    echo "  ✗ No matches"
  elif [ $match_count -gt 1 ]; then
    echo "  ⚠ WARNING: Multiple matches!"
  fi
done
EOF

bash /tmp/check_overlap.sh

Repository: ambient-code/platform

Length of output: 397

---

🏁 Script executed:

# Let me check the actual pattern conversion to understand overlap better
# Simulate what the workflow does with the actual manifest patterns

cat > /tmp/test_patterns.sh << 'EOF'
#!/bin/bash
set -euo pipefail

MANIFEST=".specify/sdd-manifest.yaml"
DEFAULT_MODE=$(yq '.default-mode // "warn"' "$MANIFEST")

echo "Default mode: $DEFAULT_MODE"
echo ""
echo "=== Extracting COMPONENT_PATHS ==="

COMPONENT_PATHS=$(yq -r '
  .managed-components | to_entries[] |
  .key as $comp |
  (.value.mode // "'"$DEFAULT_MODE"'") as $mode |
  .value.paths[] |
  $comp + "\t" + $mode + "\t" + .
' "$MANIFEST")

echo "$COMPONENT_PATHS"
echo ""
echo "=== Converting to regex patterns ==="

while IFS=$'\t' read -r comp mode pattern; do
  regex=$(printf '%s' "$pattern" \
    | sed 's/[.+^${}()|[\]]/\\&/g' \
    | sed 's/\*\*/.*/g' \
    | sed 's/\*/[^\/]*/g')
  printf 'Regex: %-60s | Comp: %-10s | Mode: %s\n' "$regex" "$comp" "$mode"
done <<< "$COMPONENT_PATHS"

echo ""
echo "=== Checking for overlapping patterns ==="
# Check if any two patterns could match the same file
regex_array=()
comp_array=()
mode_array=()

while IFS=$'\t' read -r comp mode pattern; do
  regex=$(printf '%s' "$pattern" \
    | sed 's/[.+^${}()|[\]]/\\&/g' \
    | sed 's/\*\*/.*/g' \
    | sed 's/\*/[^\/]*/g')
  regex_array+=("$regex")
  comp_array+=("$comp")
  mode_array+=("$mode")
done <<< "$COMPONENT_PATHS"

# Check if any patterns have different modes
echo "Number of patterns: ${`#regex_array`[@]}"
unique_modes=$(printf '%s\n' "${mode_array[@]}" | sort -u)
echo "Unique modes: $unique_modes"

# Check if there are overlaps and different modes
if [ "${`#regex_array`[@]}" -gt 1 ]; then
  mode_count=$(printf '%s\n' "${mode_array[@]}" | sort -u | wc -l)
  if [ "$mode_count" -gt 1 ]; then
    echo "⚠ MIXED MODES DETECTED - potential precedence issue"
  else
    echo "✓ All patterns have same mode - no precedence risk"
  fi
fi
EOF

bash /tmp/test_patterns.sh

Repository: ambient-code/platform

Length of output: 119

---

🏁 Script executed:

# Let's parse the manifest directly without yq
cat > /tmp/parse_manifest.py << 'EOF'
import yaml

with open('.specify/sdd-manifest.yaml', 'r') as f:
    manifest = yaml.safe_load(f)

default_mode = manifest.get('default-mode', 'warn')
print(f"Default mode: {default_mode}\n")

print("=== Managed Components and Paths ===")
for comp, comp_data in manifest.get('managed-components', {}).items():
    mode = comp_data.get('mode', default_mode)
    paths = comp_data.get('paths', [])
    print(f"\nComponent: {comp}")
    print(f"  Mode: {mode}")
    print(f"  Paths:")
    for path in paths:
        print(f"    - {path}")

print("\n=== Pattern Analysis ===")
all_patterns = []
for comp, comp_data in manifest.get('managed-components', {}).items():
    mode = comp_data.get('mode', default_mode)
    paths = comp_data.get('paths', [])
    for path in paths:
        all_patterns.append((comp, mode, path))

print(f"Total patterns: {len(all_patterns)}")
unique_modes = set(m for _, m, _ in all_patterns)
print(f"Unique modes: {unique_modes}")

if len(unique_modes) > 1:
    print("\n⚠ MIXED MODES DETECTED - potential precedence issue if patterns overlap")
else:
    print("\n✓ All patterns have the same mode - no precedence risk with current data")

# Check for potential overlaps (patterns where one is a prefix of another)
print("\n=== Checking for pattern overlaps ===")
overlap_found = False
for i, (comp1, mode1, path1) in enumerate(all_patterns):
    for j, (comp2, mode2, path2) in enumerate(all_patterns):
        if i < j:
            # Check if path1 could match path2 (considering globs)
            path1_simple = path1.replace('**', '*')
            path2_simple = path2.replace('**', '*')
            if path1_simple != path2_simple:
                # Check if they could conceptually overlap
                if path1.startswith(path2.split('*')[0]) or path2.startswith(path1.split('*')[0]):
                    print(f"Potential overlap:")
                    print(f"  Pattern 1: {path1} (mode: {mode1})")
                    print(f"  Pattern 2: {path2} (mode: {mode2})")
                    overlap_found = True

if not overlap_found:
    print("No obvious overlaps in current patterns")
EOF

python3 << 'PYSCRIPT'
import yaml

with open('.specify/sdd-manifest.yaml', 'r') as f:
    manifest = yaml.safe_load(f)

default_mode = manifest.get('default-mode', 'warn')
print(f"Default mode: {default_mode}\n")

print("=== Managed Components and Paths ===")
for comp, comp_data in manifest.get('managed-components', {}).items():
    mode = comp_data.get('mode', default_mode)
    paths = comp_data.get('paths', [])
    print(f"\nComponent: {comp}")
    print(f"  Mode: {mode}")
    print(f"  Paths:")
    for path in paths:
        print(f"    - {path}")

print("\n=== Pattern Analysis ===")
all_patterns = []
for comp, comp_data in manifest.get('managed-components', {}).items():
    mode = comp_data.get('mode', default_mode)
    paths = comp_data.get('paths', [])
    for path in paths:
        all_patterns.append((comp, mode, path))

print(f"Total patterns: {len(all_patterns)}")
unique_modes = set(m for _, m, _ in all_patterns)
print(f"Unique modes: {unique_modes}")

if len(unique_modes) > 1:
    print("\n⚠ MIXED MODES DETECTED - potential precedence issue if patterns overlap")
else:
    print("\n✓ All patterns have the same mode - no precedence risk with current data")
PYSCRIPT

Repository: ambient-code/platform

Length of output: 460

---

🏁 Script executed:

# Let's verify the reproduction case is actually applicable by understanding 
# how patterns would be ordered if we had overlapping modes

cat > /tmp/test_precedence.sh << 'EOF'
#!/bin/bash
set -euo pipefail

# Simulate what would happen if we had overlapping patterns with different modes
# This mirrors a realistic scenario where multiple components are enabled

# Scenario: Both runner (warn) and a hypothetical component (enforce) patterns
patterns=$(cat <<'PATTERNS'
components/frontend/src/components/.*	runner	warn
components/frontend/src/components/create-session-dialog\.tsx	backend	enforce
PATTERNS
)

test_file="components/frontend/src/components/create-session-dialog.tsx"

echo "=== Testing file: $test_file ==="
echo ""
echo "Patterns (in order):"
echo "$patterns"
echo ""

# Current behavior (first match wins)
echo "=== Current behavior (first match wins) ==="
current_result=""
while IFS=$'\t' read -r regex comp mode; do
  if printf '%s' "$test_file" | grep -qE "^${regex}$"; then
    current_result="$mode (from $comp)"
    echo "Pattern: $regex"
    echo "  Matches: YES"
    echo "  Result: $mode (from $comp)"
    echo "  Action: BREAK"
    break
  else
    echo "Pattern: $regex"
    echo "  Matches: NO"
  fi
done <<< "$patterns"
echo ""
echo "Final result: $current_result"
echo ""

# Desired behavior (enforce takes precedence)
echo "=== Desired behavior (enforce wins) ==="
desired_result=""
while IFS=$'\t' read -r regex comp mode; do
  if printf '%s' "$test_file" | grep -qE "^${regex}$"; then
    echo "Pattern: $regex"
    echo "  Matches: YES"
    if [ "$mode" = "enforce" ]; then
      desired_result="enforce (from $comp)"
      echo "  Mode is enforce: breaking with result=$mode"
      break
    elif [ -z "$desired_result" ]; then
      desired_result="$mode (from $comp)"
      echo "  Storing: $mode, continuing..."
    else
      echo "  Already have result, skipping"
    fi
  else
    echo "Pattern: $regex"
    echo "  Matches: NO"
  fi
done <<< "$patterns"
echo ""
echo "Final result: $desired_result"
echo ""
echo "=== Impact ==="
echo "Current:  $current_result"
echo "Desired:  $desired_result"
if [ "$current_result" != "$desired_result" ]; then
  echo "⚠ PRECEDENCE BUG: Enforcement would be incorrectly downgraded"
fi
EOF

bash /tmp/test_precedence.sh

Repository: ambient-code/platform

Length of output: 929

---

First-match break can downgrade an enforce hit to warn.

When patterns overlap across components with different enforcement modes, breaking on the first match makes violations order-dependent. A file matching both a broader "warn" pattern and a more specific "enforce" pattern will be incorrectly classified as a warning. As more components are onboarded with mixed modes, this latent bug will cause enforcement boundaries to be unexpectedly downgraded.

The proposed fix correctly evaluates all matching patterns and prioritizes "enforce" results, ensuring enforcement takes precedence regardless of pattern order.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In @.github/workflows/sdd-preflight.yml around lines 84 - 93, The loop currently
breaks on the first matching pattern which can misclassify files when multiple
patterns match; instead, iterate all patterns without breaking, record matches
for the current changed_file, track whether any matching mode is "enforce"
(e.g., set a flag enforce_found), and after the loop append a single row for
that file to VIOLATIONS if enforce_found is true otherwise to WARNINGS;
reference the existing loop (while IFS=$'\t' read -r regex comp mode; do), the
variables changed_file, mode, VIOLATIONS, and WARNINGS, and remove the break so
all regex matches are evaluated and enforcement takes precedence.

[ambient-code]

Review Feedback Addressed (Third Round)

Pushed commit a81c0ea addressing non-workflow CodeRabbit review comments:

Python Runner

• Removed unused thread_id param from build_options() (adapter.py)
• Removed unused parent_tool_use_id param from handle_tool_result_block() (handlers.py)
• Fixed base PlatformBridge.context property to return self._context instead of None (bridge.py)
• Added NotImplementedError guard for thread_id in LangGraphBridge.interrupt()
• Updated from typing import AsyncIterator → from collections.abc import AsyncIterator in Claude bridge
• Reused creds_file fixture in test_gemini_auth instead of creating leaked tempfile

Frontend

• Added duplicate key/name collision guards in KeyValueEditor.updateEntry(), McpServersEditor.updateServerName(), and AgentsEditor.updateAgentName()
• Sanitized null values from KeyValueEditor before passing to MCP server env/headers (prevents Record<string, string> contract violations)

SDD / Specs

• Added create-session-dialog.tsx to SDD manifest managed paths
• Fixed runner spec markdown: added text language to fenced code blocks, blank lines around tables

⚠️ Workflow Fixes (Need Manual Push)

The following fixes were prepared but cannot be pushed — the GitHub App token lacks the workflows permission scope required to modify .github/workflows/ files:

1. runner-tool-versions.yml: Fetch remote branch before --force-with-lease; update existing PRs instead of skipping
2. sdd-preflight.yml: Use placeholder for globstar conversion order (prevents ** → .* → .[^/]* corruption); evaluate all patterns instead of breaking on first match

These workflow fixes should be applied manually or via a token with workflows scope.

Merge Conflicts

The branch has merge conflicts with main (primarily uv.lock). These cannot be resolved via merge commit due to the same workflows permission restriction (main contains workflow file changes that the token can't push). A maintainer will need to merge main or the branch will need to be rebased with a PAT that has workflows scope.

[github-actions]

⚠️ SDD Preflight — Managed Paths Modified

This PR modifies files in SDD-managed component(s). These components are migrating to Spec-Driven Development.

File	Component	Mode
.github/workflows/runner-tool-versions.yml	runner	warn
components/frontend/src/components/claude-agent-options/index.ts	runner	warn
components/frontend/src/components/claude-agent-options/options-form.tsx	runner	warn
components/frontend/src/components/claude-agent-options/schema.ts	runner	warn
components/frontend/src/components/create-session-dialog.tsx	runner	warn
components/runners/ambient-runner/.mcp.json	runner	warn
components/runners/ambient-runner/Dockerfile	runner	warn
components/runners/ambient-runner/pyproject.toml	runner	warn
components/runners/ambient-runner/uv.lock	runner	warn

No action required — these components are in warn mode. Consider using the component's agent workflow for future changes.

📖 Specs: Runner Spec · Runner Constitution