molecule-ai-workspace-runtime

molecule-ai/molecule-ai-workspace-runtime

Fork 0

Commit Graph

Author	SHA1	Message	Date
rabbitblood	c43df7f947	fix(precommit): skip during rebase/cherry-pick/merge/revert — unblocks DIRTY PR rebase Trace from molecule-core cycle 107 (2026-04-24): 15 staging PRs stuck DIRTY (real merge conflicts) with 0 merges in 1+ hours. Authors couldn't rebase to fix the conflicts because the pre-commit hook (shipped in 0.1.11) refuses ANY commit that includes forbidden paths in the diff — including rebase replays of historical commits that pre-date the gate. Specifically, agents trying to `git rebase staging` on a PR like "docs(marketing): Phase 30 social copy" fail at the first commit replay because that commit added marketing/* files. The fix would require interactive rebase + manual file deletion + commit amend — agents don't do that, so the PR stays DIRTY indefinitely. Detection: check .git for rebase-merge/, rebase-apply/, CHERRY_PICK_HEAD, MERGE_HEAD, or REVERT_HEAD. These state markers exist only during the corresponding git operation. Skip the hook silently when present. The hook still blocks fresh `git commit` (the failure mode it was designed for). It just doesn't try to police what was already in git history. Bumped to 0.1.14. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-04-24 04:34:55 -07:00
rabbitblood	89739bf848	feat: pre-commit hook to block internal paths in public monorepo (A) Anti-leak proposal item A. Companion to D (decision tree in role prompts, separate PR on org-templates). Why a local pre-commit hook =========================== Agents try to `git add /research/foo.md` despite SHARED_RULES, the .gitignore patterns, and the CI gate. Each leak attempt costs ~5 cycles (PR opens, CI fails, agent retries with workaround) and pollutes git history with reverts. A pre-commit hook converts the failure from "PR opens then fails" → "commit refused immediately, with the recovery command printed in the same error message the agent reads." Agents act on what's in the current response context — putting the redirect command literally in the failure output is the highest-density feedback we can provide. What changes ============ - molecule_runtime/scripts/pre-commit-block-internal-paths.sh — bash hook. Checks `git remote get-url origin`, only enforces in Molecule-AI/molecule-monorepo + molecule-core. In every other repo (internal, plugins, templates, third-party) it's a no-op. When forbidden paths are staged, refuses the commit with the redirect recipe + the alternative public-facing paths + the workflow-edit path for legitimate exceptions. - molecule_runtime/precommit_hook.py — install_pre_commit_hook(): 1. Extracts bundled hook to ~/.molecule-runtime/git-hooks/pre-commit 2. chmod +x 3. Sets core.hooksPath globally — UNLESS already set by an operator (then logs a warning + skips, doesn't clobber) - molecule_runtime/main.py — calls install_pre_commit_hook() at step 0.2, right after install_credential_helper() - pyproject.toml bumped to 0.1.11 Both A and D together close the loop: D ensures the agent knows the right path before writing; A enforces it at the local git boundary if the agent forgets. CI gate remains the third backstop for anything that gets pushed. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-04-24 00:48:47 -07:00
rabbitblood	f1329fe230	feat: ship GitHub credential-helper inline in runtime (fixes #1933 class) Lifts the per-template wiring (Dockerfile COPY + entrypoint.sh git config + nohup daemon launch) into the Python runtime. Templates that depend on molecule-ai-workspace-runtime get the behavior automatically — they no longer need to maintain their own copy of the helper scripts or remember to write the right git config in their entrypoint. Background: - GitHub App installation tokens (ghs_…) expire ~60min after issue - claude-code-default template shipped without wiring → 39 workspaces lost their tokens, three PMs' A2A queues filled with retry-status messages, manual fleet restart required (cycle 62-66 incident) This commit: - Adds molecule_runtime/scripts/{molecule-git-token-helper.sh, molecule-gh-token-refresh.sh} as package data (copies from canonical workspace/scripts/ in molecule-monorepo) - Adds molecule_runtime/credential_helper.py with install_credential_helper() that: 1. Extracts bundled scripts to ~/.molecule-runtime/scripts/ 2. Configures git credential.helper for github.com 3. Creates ~/.molecule-token-cache/ mode 0700 4. Spawns refresh daemon under respawn loop (PID file dedup) 5. Runs initial gh auth login --with-token - Hooks call site early in main.py (step 0.1, before config load) - Fails-soft: each step independently fault-tolerant; missing git/gh binary doesn't block runtime startup Bumped to 0.1.10. Templates can drop their entrypoint.sh credential helper setup once they update the runtime pin (separate PRs per template). Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-04-24 00:41:32 -07:00

Author

SHA1

Message

Date

rabbitblood

c43df7f947

fix(precommit): skip during rebase/cherry-pick/merge/revert — unblocks DIRTY PR rebase

Trace from molecule-core cycle 107 (2026-04-24): 15 staging PRs stuck
DIRTY (real merge conflicts) with 0 merges in 1+ hours. Authors couldn't
rebase to fix the conflicts because the pre-commit hook (shipped in
0.1.11) refuses ANY commit that includes forbidden paths in the diff —
including rebase replays of historical commits that pre-date the gate.

Specifically, agents trying to `git rebase staging` on a PR like
"docs(marketing): Phase 30 social copy" fail at the first commit replay
because that commit added marketing/* files. The fix would require
interactive rebase + manual file deletion + commit amend — agents don't
do that, so the PR stays DIRTY indefinitely.

Detection: check .git for rebase-merge/, rebase-apply/, CHERRY_PICK_HEAD,
MERGE_HEAD, or REVERT_HEAD. These state markers exist only during the
corresponding git operation. Skip the hook silently when present.

The hook still blocks fresh `git commit` (the failure mode it was
designed for). It just doesn't try to police what was already in git
history.

Bumped to 0.1.14.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-04-24 04:34:55 -07:00

rabbitblood

89739bf848

feat: pre-commit hook to block internal paths in public monorepo (A)

Anti-leak proposal item A. Companion to D (decision tree in role
prompts, separate PR on org-templates).

Why a local pre-commit hook
===========================

Agents try to `git add /research/foo.md` despite SHARED_RULES, the
.gitignore patterns, and the CI gate. Each leak attempt costs ~5 cycles
(PR opens, CI fails, agent retries with workaround) and pollutes git
history with reverts.

A pre-commit hook converts the failure from "PR opens then fails" →
"commit refused immediately, with the recovery command printed in the
same error message the agent reads." Agents act on what's in the
current response context — putting the redirect command literally in
the failure output is the highest-density feedback we can provide.

What changes
============

- molecule_runtime/scripts/pre-commit-block-internal-paths.sh —
  bash hook. Checks `git remote get-url origin`, only enforces in
  Molecule-AI/molecule-monorepo + molecule-core. In every other repo
  (internal, plugins, templates, third-party) it's a no-op.

  When forbidden paths are staged, refuses the commit with the redirect
  recipe + the alternative public-facing paths + the workflow-edit path
  for legitimate exceptions.

- molecule_runtime/precommit_hook.py — install_pre_commit_hook():
  1. Extracts bundled hook to ~/.molecule-runtime/git-hooks/pre-commit
  2. chmod +x
  3. Sets core.hooksPath globally — UNLESS already set by an operator
     (then logs a warning + skips, doesn't clobber)

- molecule_runtime/main.py — calls install_pre_commit_hook() at
  step 0.2, right after install_credential_helper()

- pyproject.toml bumped to 0.1.11

Both A and D together close the loop: D ensures the agent knows the
right path before writing; A enforces it at the local git boundary if
the agent forgets. CI gate remains the third backstop for anything
that gets pushed.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-04-24 00:48:47 -07:00

rabbitblood

f1329fe230

feat: ship GitHub credential-helper inline in runtime (fixes #1933 class)

Lifts the per-template wiring (Dockerfile COPY + entrypoint.sh git config
+ nohup daemon launch) into the Python runtime. Templates that depend
on molecule-ai-workspace-runtime get the behavior automatically — they
no longer need to maintain their own copy of the helper scripts or
remember to write the right git config in their entrypoint.

Background:
- GitHub App installation tokens (ghs_…) expire ~60min after issue
- claude-code-default template shipped without wiring → 39 workspaces
  lost their tokens, three PMs' A2A queues filled with retry-status
  messages, manual fleet restart required (cycle 62-66 incident)

This commit:
- Adds molecule_runtime/scripts/{molecule-git-token-helper.sh,
  molecule-gh-token-refresh.sh} as package data (copies from canonical
  workspace/scripts/ in molecule-monorepo)
- Adds molecule_runtime/credential_helper.py with
  install_credential_helper() that:
    1. Extracts bundled scripts to ~/.molecule-runtime/scripts/
    2. Configures git credential.helper for github.com
    3. Creates ~/.molecule-token-cache/ mode 0700
    4. Spawns refresh daemon under respawn loop (PID file dedup)
    5. Runs initial gh auth login --with-token
- Hooks call site early in main.py (step 0.1, before config load)
- Fails-soft: each step independently fault-tolerant; missing git/gh
  binary doesn't block runtime startup

Bumped to 0.1.10. Templates can drop their entrypoint.sh credential
helper setup once they update the runtime pin (separate PRs per template).

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-04-24 00:41:32 -07:00

3 Commits