2026-02-20 12:50:23 -06:00
import type {
AdapterEnvironmentCheck ,
AdapterEnvironmentTestContext ,
AdapterEnvironmentTestResult ,
2026-03-03 08:45:26 -06:00
} from "@paperclipai/adapter-utils" ;
2026-02-20 12:50:23 -06:00
import {
asString ,
parseObject ,
ensurePathInEnv ,
2026-03-03 08:45:26 -06:00
} from "@paperclipai/adapter-utils/server-utils" ;
Add dedicated environment settings page and test-in-environment (#4798)
## Thinking Path
> - Paperclip orchestrates AI agents for zero-human companies
> - Agents run inside environments (local, SSH, E2B sandbox)
> - Operators need to configure and manage these environments
> - But environment settings were buried inside the general company
settings page, making them hard to find
> - Additionally, when testing an agent from the configuration form, the
test always ran locally regardless of which environment was selected
> - This PR moves environments into a dedicated top-level company
settings section and wires the "Test Environment" button to run inside
the selected environment
> - The benefit is operators can find and manage environments more
easily, and the test button now validates the actual environment the
agent will use
## What Changed
- Added a dedicated `CompanyEnvironments` settings page with its own
route and sidebar entry
- Updated `CompanySettingsSidebar` and `CompanySettingsNav` to include
the new environments section
- Modified the agent test route (`POST /agents/:id/test`) to accept an
optional `environmentId` parameter
- Updated all adapter `test.ts` handlers to resolve and use the
specified execution target environment
- Added `resolveTestExecutionTarget` to `execution-target.ts` for remote
environment test resolution with cwd fallback
- Moved the "Test Environment" button and its feedback display into the
`NewAgent` page footer for better UX flow
## Verification
- `pnpm test` — all existing and new tests pass
- `pnpm typecheck` — clean
- Manual: navigate to Company Settings, confirm "Environments" appears
as a top-level section
- Manual: configure an agent with a non-local environment, click "Test
Environment", confirm the test runs inside that environment
## Risks
- Low risk. UI-only routing change for the settings page. The
test-in-environment change adds an optional parameter with a local
fallback, so existing behavior is preserved when no environment is
specified.
## Model Used
Codex GPT 5.4 high via Paperclip.
## Checklist
- [x] I have included a thinking path that traces from project context
to this change
- [x] I have specified the model used (with version and capability
details)
- [x] I have checked ROADMAP.md and confirmed this PR does not duplicate
planned core work
- [x] I have run tests locally and they pass
- [x] I have added or updated tests where applicable
- [x] If this change affects the UI, I have included before/after
screenshots
- [x] I have updated relevant documentation to reflect my changes
- [x] I have considered and documented any risks above
- [x] I will address all Greptile and reviewer comments before
requesting merge
2026-04-29 15:56:13 -07:00
import {
ensureAdapterExecutionTargetCommandResolvable ,
ensureAdapterExecutionTargetDirectory ,
runAdapterExecutionTargetProcess ,
describeAdapterExecutionTarget ,
resolveAdapterExecutionTargetCwd ,
} from "@paperclipai/adapter-utils/execution-target" ;
2026-03-03 12:51:42 -06:00
import path from "node:path" ;
2026-05-05 08:00:27 -07:00
import os from "node:os" ;
2026-03-03 12:51:42 -06:00
import { parseCodexJsonl } from "./parse.js" ;
2026-03-24 12:46:16 -07:00
import { codexHomeDir , readCodexAuthInfo } from "./quota.js" ;
2026-04-11 07:36:42 -05:00
import { buildCodexExecArgs } from "./codex-args.js" ;
2026-02-20 12:50:23 -06:00
function summarizeStatus ( checks : AdapterEnvironmentCheck [ ] ) : AdapterEnvironmentTestResult [ "status" ] {
if ( checks . some ( ( check ) = > check . level === "error" ) ) return "fail" ;
if ( checks . some ( ( check ) = > check . level === "warn" ) ) return "warn" ;
return "pass" ;
}
function isNonEmpty ( value : unknown ) : value is string {
return typeof value === "string" && value . trim ( ) . length > 0 ;
}
2026-03-03 12:51:42 -06:00
function firstNonEmptyLine ( text : string ) : string {
return (
text
. split ( /\r?\n/ )
. map ( ( line ) = > line . trim ( ) )
. find ( Boolean ) ? ? ""
) ;
}
function commandLooksLike ( command : string , expected : string ) : boolean {
const base = path . basename ( command ) . toLowerCase ( ) ;
return base === expected || base === ` ${ expected } .cmd ` || base === ` ${ expected } .exe ` ;
}
function summarizeProbeDetail ( stdout : string , stderr : string , parsedError : string | null ) : string | null {
const raw = parsedError ? . trim ( ) || firstNonEmptyLine ( stderr ) || firstNonEmptyLine ( stdout ) ;
if ( ! raw ) return null ;
const clean = raw . replace ( /\s+/g , " " ) . trim ( ) ;
const max = 240 ;
return clean . length > max ? ` ${ clean . slice ( 0 , max - 1 ) } … ` : clean ;
}
const CODEX_AUTH_REQUIRED_RE =
/(?:not\s+logged\s+in|login\s+required|authentication\s+required|unauthorized|invalid(?:\s+or\s+missing)?\s+api(?:[_\s-]?key)?|openai[_\s-]?api[_\s-]?key|api[_\s-]?key.*required|please\s+run\s+`?codex\s+login`?)/i ;
2026-02-20 12:50:23 -06:00
export async function testEnvironment (
ctx : AdapterEnvironmentTestContext ,
) : Promise < AdapterEnvironmentTestResult > {
const checks : AdapterEnvironmentCheck [ ] = [ ] ;
const config = parseObject ( ctx . config ) ;
const command = asString ( config . command , "codex" ) ;
Add dedicated environment settings page and test-in-environment (#4798)
## Thinking Path
> - Paperclip orchestrates AI agents for zero-human companies
> - Agents run inside environments (local, SSH, E2B sandbox)
> - Operators need to configure and manage these environments
> - But environment settings were buried inside the general company
settings page, making them hard to find
> - Additionally, when testing an agent from the configuration form, the
test always ran locally regardless of which environment was selected
> - This PR moves environments into a dedicated top-level company
settings section and wires the "Test Environment" button to run inside
the selected environment
> - The benefit is operators can find and manage environments more
easily, and the test button now validates the actual environment the
agent will use
## What Changed
- Added a dedicated `CompanyEnvironments` settings page with its own
route and sidebar entry
- Updated `CompanySettingsSidebar` and `CompanySettingsNav` to include
the new environments section
- Modified the agent test route (`POST /agents/:id/test`) to accept an
optional `environmentId` parameter
- Updated all adapter `test.ts` handlers to resolve and use the
specified execution target environment
- Added `resolveTestExecutionTarget` to `execution-target.ts` for remote
environment test resolution with cwd fallback
- Moved the "Test Environment" button and its feedback display into the
`NewAgent` page footer for better UX flow
## Verification
- `pnpm test` — all existing and new tests pass
- `pnpm typecheck` — clean
- Manual: navigate to Company Settings, confirm "Environments" appears
as a top-level section
- Manual: configure an agent with a non-local environment, click "Test
Environment", confirm the test runs inside that environment
## Risks
- Low risk. UI-only routing change for the settings page. The
test-in-environment change adds an optional parameter with a local
fallback, so existing behavior is preserved when no environment is
specified.
## Model Used
Codex GPT 5.4 high via Paperclip.
## Checklist
- [x] I have included a thinking path that traces from project context
to this change
- [x] I have specified the model used (with version and capability
details)
- [x] I have checked ROADMAP.md and confirmed this PR does not duplicate
planned core work
- [x] I have run tests locally and they pass
- [x] I have added or updated tests where applicable
- [x] If this change affects the UI, I have included before/after
screenshots
- [x] I have updated relevant documentation to reflect my changes
- [x] I have considered and documented any risks above
- [x] I will address all Greptile and reviewer comments before
requesting merge
2026-04-29 15:56:13 -07:00
const target = ctx . executionTarget ? ? null ;
const targetIsRemote = target ? . kind === "remote" ;
const cwd = resolveAdapterExecutionTargetCwd ( target , asString ( config . cwd , "" ) , process . cwd ( ) ) ;
const targetLabel = targetIsRemote
Add cursor sandbox support and fix SSH workspace sync (#4803)
## Thinking Path
> - Paperclip orchestrates AI agents for zero-human companies
> - Agents can run inside sandboxed environments like E2B, or on remote
hosts via SSH
> - The cursor adapter needs to resolve `cursor-agent` inside sandbox
environments where it's installed in `~/.local/bin`
> - But when using the default `agent` command on a sandbox target, the
adapter didn't know to look in `~/.local/bin/cursor-agent`, causing
"command not found" failures
> - Additionally, repeated SSH runs failed because `git checkout` during
workspace sync conflicted with leftover `.paperclip-runtime` files from
previous runs
> - This PR adds sandbox-aware command resolution for cursor and fixes
the SSH workspace sync conflict
> - The benefit is cursor works in E2B sandboxes out of the box, and
repeated SSH runs don't fail on workspace sync
## What Changed
- `cursor-local`: Added `prepareCursorSandboxCommand` — on sandbox
targets, reads the remote `$HOME`, prepends `~/.local/bin` to PATH, and
prefers `~/.local/bin/cursor-agent` when the default command is
requested; tightened the sandbox command probe to validate the binary
exists before launching; preserves explicit custom command overrides
- `adapter-utils/ssh.ts`: Added `--force` to git checkout in SSH
workspace sync to handle `.paperclip-runtime` untracked file conflicts
from previous runs
## Verification
- `pnpm test` — all existing and new tests pass, including cursor
sandbox probe, sandbox execution, and custom command override tests
- `pnpm typecheck` — clean
- Manual: configure an E2B environment, run a cursor-local task, verify
it resolves cursor-agent from the sandbox install path
## Risks
- Low-medium. The `--force` flag on git checkout could discard
uncommitted changes in the remote workspace, but the workspace is
managed by Paperclip and should not contain user edits.
## Model Used
Codex GPT 5.4 high via Paperclip.
## Checklist
- [x] I have included a thinking path that traces from project context
to this change
- [x] I have specified the model used (with version and capability
details)
- [x] I have checked ROADMAP.md and confirmed this PR does not duplicate
planned core work
- [x] I have run tests locally and they pass
- [x] I have added or updated tests where applicable
- [ ] If this change affects the UI, I have included before/after
screenshots
- [x] I have updated relevant documentation to reflect my changes
- [x] I have considered and documented any risks above
- [x] I will address all Greptile and reviewer comments before
requesting merge
2026-04-29 16:12:06 -07:00
? ctx . environmentName ? ? describeAdapterExecutionTarget ( target )
Add dedicated environment settings page and test-in-environment (#4798)
## Thinking Path
> - Paperclip orchestrates AI agents for zero-human companies
> - Agents run inside environments (local, SSH, E2B sandbox)
> - Operators need to configure and manage these environments
> - But environment settings were buried inside the general company
settings page, making them hard to find
> - Additionally, when testing an agent from the configuration form, the
test always ran locally regardless of which environment was selected
> - This PR moves environments into a dedicated top-level company
settings section and wires the "Test Environment" button to run inside
the selected environment
> - The benefit is operators can find and manage environments more
easily, and the test button now validates the actual environment the
agent will use
## What Changed
- Added a dedicated `CompanyEnvironments` settings page with its own
route and sidebar entry
- Updated `CompanySettingsSidebar` and `CompanySettingsNav` to include
the new environments section
- Modified the agent test route (`POST /agents/:id/test`) to accept an
optional `environmentId` parameter
- Updated all adapter `test.ts` handlers to resolve and use the
specified execution target environment
- Added `resolveTestExecutionTarget` to `execution-target.ts` for remote
environment test resolution with cwd fallback
- Moved the "Test Environment" button and its feedback display into the
`NewAgent` page footer for better UX flow
## Verification
- `pnpm test` — all existing and new tests pass
- `pnpm typecheck` — clean
- Manual: navigate to Company Settings, confirm "Environments" appears
as a top-level section
- Manual: configure an agent with a non-local environment, click "Test
Environment", confirm the test runs inside that environment
## Risks
- Low risk. UI-only routing change for the settings page. The
test-in-environment change adds an optional parameter with a local
fallback, so existing behavior is preserved when no environment is
specified.
## Model Used
Codex GPT 5.4 high via Paperclip.
## Checklist
- [x] I have included a thinking path that traces from project context
to this change
- [x] I have specified the model used (with version and capability
details)
- [x] I have checked ROADMAP.md and confirmed this PR does not duplicate
planned core work
- [x] I have run tests locally and they pass
- [x] I have added or updated tests where applicable
- [x] If this change affects the UI, I have included before/after
screenshots
- [x] I have updated relevant documentation to reflect my changes
- [x] I have considered and documented any risks above
- [x] I will address all Greptile and reviewer comments before
requesting merge
2026-04-29 15:56:13 -07:00
: null ;
const runId = ` codex-envtest- ${ Date . now ( ) } - ${ Math . random ( ) . toString ( 16 ) . slice ( 2 ) } ` ;
if ( targetLabel ) {
checks . push ( {
code : "codex_environment_target" ,
level : "info" ,
message : ` Probing inside environment: ${ targetLabel } ` ,
} ) ;
}
2026-02-20 12:50:23 -06:00
try {
Add dedicated environment settings page and test-in-environment (#4798)
## Thinking Path
> - Paperclip orchestrates AI agents for zero-human companies
> - Agents run inside environments (local, SSH, E2B sandbox)
> - Operators need to configure and manage these environments
> - But environment settings were buried inside the general company
settings page, making them hard to find
> - Additionally, when testing an agent from the configuration form, the
test always ran locally regardless of which environment was selected
> - This PR moves environments into a dedicated top-level company
settings section and wires the "Test Environment" button to run inside
the selected environment
> - The benefit is operators can find and manage environments more
easily, and the test button now validates the actual environment the
agent will use
## What Changed
- Added a dedicated `CompanyEnvironments` settings page with its own
route and sidebar entry
- Updated `CompanySettingsSidebar` and `CompanySettingsNav` to include
the new environments section
- Modified the agent test route (`POST /agents/:id/test`) to accept an
optional `environmentId` parameter
- Updated all adapter `test.ts` handlers to resolve and use the
specified execution target environment
- Added `resolveTestExecutionTarget` to `execution-target.ts` for remote
environment test resolution with cwd fallback
- Moved the "Test Environment" button and its feedback display into the
`NewAgent` page footer for better UX flow
## Verification
- `pnpm test` — all existing and new tests pass
- `pnpm typecheck` — clean
- Manual: navigate to Company Settings, confirm "Environments" appears
as a top-level section
- Manual: configure an agent with a non-local environment, click "Test
Environment", confirm the test runs inside that environment
## Risks
- Low risk. UI-only routing change for the settings page. The
test-in-environment change adds an optional parameter with a local
fallback, so existing behavior is preserved when no environment is
specified.
## Model Used
Codex GPT 5.4 high via Paperclip.
## Checklist
- [x] I have included a thinking path that traces from project context
to this change
- [x] I have specified the model used (with version and capability
details)
- [x] I have checked ROADMAP.md and confirmed this PR does not duplicate
planned core work
- [x] I have run tests locally and they pass
- [x] I have added or updated tests where applicable
- [x] If this change affects the UI, I have included before/after
screenshots
- [x] I have updated relevant documentation to reflect my changes
- [x] I have considered and documented any risks above
- [x] I will address all Greptile and reviewer comments before
requesting merge
2026-04-29 15:56:13 -07:00
await ensureAdapterExecutionTargetDirectory ( runId , target , cwd , {
cwd ,
env : { } ,
createIfMissing : true ,
} ) ;
2026-02-20 12:50:23 -06:00
checks . push ( {
code : "codex_cwd_valid" ,
level : "info" ,
message : ` Working directory is valid: ${ cwd } ` ,
} ) ;
} catch ( err ) {
checks . push ( {
code : "codex_cwd_invalid" ,
level : "error" ,
message : err instanceof Error ? err . message : "Invalid working directory" ,
detail : cwd ,
} ) ;
}
const envConfig = parseObject ( config . env ) ;
const env : Record < string , string > = { } ;
for ( const [ key , value ] of Object . entries ( envConfig ) ) {
if ( typeof value === "string" ) env [ key ] = value ;
}
const runtimeEnv = ensurePathInEnv ( { . . . process . env , . . . env } ) ;
try {
Add dedicated environment settings page and test-in-environment (#4798)
## Thinking Path
> - Paperclip orchestrates AI agents for zero-human companies
> - Agents run inside environments (local, SSH, E2B sandbox)
> - Operators need to configure and manage these environments
> - But environment settings were buried inside the general company
settings page, making them hard to find
> - Additionally, when testing an agent from the configuration form, the
test always ran locally regardless of which environment was selected
> - This PR moves environments into a dedicated top-level company
settings section and wires the "Test Environment" button to run inside
the selected environment
> - The benefit is operators can find and manage environments more
easily, and the test button now validates the actual environment the
agent will use
## What Changed
- Added a dedicated `CompanyEnvironments` settings page with its own
route and sidebar entry
- Updated `CompanySettingsSidebar` and `CompanySettingsNav` to include
the new environments section
- Modified the agent test route (`POST /agents/:id/test`) to accept an
optional `environmentId` parameter
- Updated all adapter `test.ts` handlers to resolve and use the
specified execution target environment
- Added `resolveTestExecutionTarget` to `execution-target.ts` for remote
environment test resolution with cwd fallback
- Moved the "Test Environment" button and its feedback display into the
`NewAgent` page footer for better UX flow
## Verification
- `pnpm test` — all existing and new tests pass
- `pnpm typecheck` — clean
- Manual: navigate to Company Settings, confirm "Environments" appears
as a top-level section
- Manual: configure an agent with a non-local environment, click "Test
Environment", confirm the test runs inside that environment
## Risks
- Low risk. UI-only routing change for the settings page. The
test-in-environment change adds an optional parameter with a local
fallback, so existing behavior is preserved when no environment is
specified.
## Model Used
Codex GPT 5.4 high via Paperclip.
## Checklist
- [x] I have included a thinking path that traces from project context
to this change
- [x] I have specified the model used (with version and capability
details)
- [x] I have checked ROADMAP.md and confirmed this PR does not duplicate
planned core work
- [x] I have run tests locally and they pass
- [x] I have added or updated tests where applicable
- [x] If this change affects the UI, I have included before/after
screenshots
- [x] I have updated relevant documentation to reflect my changes
- [x] I have considered and documented any risks above
- [x] I will address all Greptile and reviewer comments before
requesting merge
2026-04-29 15:56:13 -07:00
await ensureAdapterExecutionTargetCommandResolvable ( command , target , cwd , runtimeEnv ) ;
2026-02-20 12:50:23 -06:00
checks . push ( {
code : "codex_command_resolvable" ,
level : "info" ,
message : ` Command is executable: ${ command } ` ,
} ) ;
} catch ( err ) {
checks . push ( {
code : "codex_command_unresolvable" ,
level : "error" ,
message : err instanceof Error ? err . message : "Command is not executable" ,
detail : command ,
} ) ;
}
const configOpenAiKey = env . OPENAI_API_KEY ;
Add dedicated environment settings page and test-in-environment (#4798)
## Thinking Path
> - Paperclip orchestrates AI agents for zero-human companies
> - Agents run inside environments (local, SSH, E2B sandbox)
> - Operators need to configure and manage these environments
> - But environment settings were buried inside the general company
settings page, making them hard to find
> - Additionally, when testing an agent from the configuration form, the
test always ran locally regardless of which environment was selected
> - This PR moves environments into a dedicated top-level company
settings section and wires the "Test Environment" button to run inside
the selected environment
> - The benefit is operators can find and manage environments more
easily, and the test button now validates the actual environment the
agent will use
## What Changed
- Added a dedicated `CompanyEnvironments` settings page with its own
route and sidebar entry
- Updated `CompanySettingsSidebar` and `CompanySettingsNav` to include
the new environments section
- Modified the agent test route (`POST /agents/:id/test`) to accept an
optional `environmentId` parameter
- Updated all adapter `test.ts` handlers to resolve and use the
specified execution target environment
- Added `resolveTestExecutionTarget` to `execution-target.ts` for remote
environment test resolution with cwd fallback
- Moved the "Test Environment" button and its feedback display into the
`NewAgent` page footer for better UX flow
## Verification
- `pnpm test` — all existing and new tests pass
- `pnpm typecheck` — clean
- Manual: navigate to Company Settings, confirm "Environments" appears
as a top-level section
- Manual: configure an agent with a non-local environment, click "Test
Environment", confirm the test runs inside that environment
## Risks
- Low risk. UI-only routing change for the settings page. The
test-in-environment change adds an optional parameter with a local
fallback, so existing behavior is preserved when no environment is
specified.
## Model Used
Codex GPT 5.4 high via Paperclip.
## Checklist
- [x] I have included a thinking path that traces from project context
to this change
- [x] I have specified the model used (with version and capability
details)
- [x] I have checked ROADMAP.md and confirmed this PR does not duplicate
planned core work
- [x] I have run tests locally and they pass
- [x] I have added or updated tests where applicable
- [x] If this change affects the UI, I have included before/after
screenshots
- [x] I have updated relevant documentation to reflect my changes
- [x] I have considered and documented any risks above
- [x] I will address all Greptile and reviewer comments before
requesting merge
2026-04-29 15:56:13 -07:00
const hostOpenAiKey = targetIsRemote ? undefined : process . env . OPENAI_API_KEY ;
2026-02-20 12:50:23 -06:00
if ( isNonEmpty ( configOpenAiKey ) || isNonEmpty ( hostOpenAiKey ) ) {
const source = isNonEmpty ( configOpenAiKey ) ? "adapter config env" : "server environment" ;
checks . push ( {
code : "codex_openai_api_key_present" ,
level : "info" ,
message : "OPENAI_API_KEY is set for Codex authentication." ,
detail : ` Detected in ${ source } . ` ,
} ) ;
Add dedicated environment settings page and test-in-environment (#4798)
## Thinking Path
> - Paperclip orchestrates AI agents for zero-human companies
> - Agents run inside environments (local, SSH, E2B sandbox)
> - Operators need to configure and manage these environments
> - But environment settings were buried inside the general company
settings page, making them hard to find
> - Additionally, when testing an agent from the configuration form, the
test always ran locally regardless of which environment was selected
> - This PR moves environments into a dedicated top-level company
settings section and wires the "Test Environment" button to run inside
the selected environment
> - The benefit is operators can find and manage environments more
easily, and the test button now validates the actual environment the
agent will use
## What Changed
- Added a dedicated `CompanyEnvironments` settings page with its own
route and sidebar entry
- Updated `CompanySettingsSidebar` and `CompanySettingsNav` to include
the new environments section
- Modified the agent test route (`POST /agents/:id/test`) to accept an
optional `environmentId` parameter
- Updated all adapter `test.ts` handlers to resolve and use the
specified execution target environment
- Added `resolveTestExecutionTarget` to `execution-target.ts` for remote
environment test resolution with cwd fallback
- Moved the "Test Environment" button and its feedback display into the
`NewAgent` page footer for better UX flow
## Verification
- `pnpm test` — all existing and new tests pass
- `pnpm typecheck` — clean
- Manual: navigate to Company Settings, confirm "Environments" appears
as a top-level section
- Manual: configure an agent with a non-local environment, click "Test
Environment", confirm the test runs inside that environment
## Risks
- Low risk. UI-only routing change for the settings page. The
test-in-environment change adds an optional parameter with a local
fallback, so existing behavior is preserved when no environment is
specified.
## Model Used
Codex GPT 5.4 high via Paperclip.
## Checklist
- [x] I have included a thinking path that traces from project context
to this change
- [x] I have specified the model used (with version and capability
details)
- [x] I have checked ROADMAP.md and confirmed this PR does not duplicate
planned core work
- [x] I have run tests locally and they pass
- [x] I have added or updated tests where applicable
- [x] If this change affects the UI, I have included before/after
screenshots
- [x] I have updated relevant documentation to reflect my changes
- [x] I have considered and documented any risks above
- [x] I will address all Greptile and reviewer comments before
requesting merge
2026-04-29 15:56:13 -07:00
} else if ( ! targetIsRemote ) {
// Local-only auth file check. On remote targets, the probe will surface
// any missing-auth errors directly from the remote `codex` invocation.
2026-03-24 09:51:44 -07:00
const codexHome = isNonEmpty ( env . CODEX_HOME ) ? env.CODEX_HOME : undefined ;
const codexAuth = await readCodexAuthInfo ( codexHome ) . catch ( ( ) = > null ) ;
2026-03-24 09:47:48 -07:00
if ( codexAuth ) {
checks . push ( {
code : "codex_native_auth_present" ,
level : "info" ,
message : "Codex is authenticated via its own auth configuration." ,
2026-03-24 15:27:32 -07:00
detail : codexAuth.email ? ` Logged in as ${ codexAuth . email } . ` : ` Credentials found in ${ path . join ( codexHome ? ? codexHomeDir ( ) , "auth.json" ) } . ` ,
2026-03-24 09:47:48 -07:00
} ) ;
} else {
checks . push ( {
code : "codex_openai_api_key_missing" ,
level : "warn" ,
message : "OPENAI_API_KEY is not set. Codex runs may fail until authentication is configured." ,
hint : "Set OPENAI_API_KEY in adapter env, shell environment, or run `codex auth` to log in." ,
} ) ;
}
2026-02-20 12:50:23 -06:00
}
2026-03-03 12:51:42 -06:00
const canRunProbe =
checks . every ( ( check ) = > check . code !== "codex_cwd_invalid" && check . code !== "codex_command_unresolvable" ) ;
if ( canRunProbe ) {
if ( ! commandLooksLike ( command , "codex" ) ) {
checks . push ( {
code : "codex_hello_probe_skipped_custom_command" ,
level : "info" ,
message : "Skipped hello probe because command is not `codex`." ,
detail : command ,
hint : "Use the `codex` CLI command to run the automatic login and installation probe." ,
} ) ;
} else {
2026-04-11 08:33:18 -05:00
const execArgs = buildCodexExecArgs ( { . . . config , fastMode : false } ) ;
2026-04-11 07:36:42 -05:00
const args = execArgs . args ;
if ( execArgs . fastModeIgnoredReason ) {
checks . push ( {
code : "codex_fast_mode_unsupported_model" ,
level : "warn" ,
message : execArgs.fastModeIgnoredReason ,
[codex] Stabilize tests and local maintenance assets (#4423)
## Thinking Path
> - Paperclip orchestrates AI agents for zero-human companies
> - A fast-moving control plane needs stable local tests and repeatable
local maintenance tools so contributors can safely split and review work
> - Several route suites needed stronger isolation, Codex manual model
selection needed a faster-mode option, and local browser cleanup missed
Playwright's headless shell binary
> - Storybook static output also needed to be preserved as a generated
review artifact from the working branch
> - This pull request groups the test/local-dev maintenance pieces so
they can be reviewed separately from product runtime changes
> - The benefit is more predictable contributor verification and cleaner
local maintenance without mixing these changes into feature PRs
## What Changed
- Added stable Vitest runner support and serialized route/authz test
isolation.
- Fixed workspace runtime authz route mocks and stabilized
Claude/company-import related assertions.
- Allowed Codex fast mode for manually selected models.
- Broadened the agent browser cleanup script to detect
`chrome-headless-shell` as well as Chrome for Testing.
- Preserved generated Storybook static output from the source branch.
## Verification
- `pnpm exec vitest run
src/__tests__/workspace-runtime-routes-authz.test.ts
src/__tests__/claude-local-execute.test.ts --config vitest.config.ts`
from `server/` passed: 2 files, 19 tests.
- `pnpm exec vitest run src/server/codex-args.test.ts --config
vitest.config.ts` from `packages/adapters/codex-local/` passed: 1 file,
3 tests.
- `bash -n scripts/kill-agent-browsers.sh &&
scripts/kill-agent-browsers.sh --dry` passed; dry-run detected
`chrome-headless-shell` processes without killing them.
- `test -f ui/storybook-static/index.html && test -f
ui/storybook-static/assets/forms-editors.stories-Dry7qwx2.js` passed.
- `git diff --check public-gh/master..pap-2228-test-local-maintenance --
. ':(exclude)ui/storybook-static'` passed.
- `pnpm exec vitest run
cli/src/__tests__/company-import-export-e2e.test.ts --config
cli/vitest.config.ts` did not complete in the isolated split worktree
because `paperclipai run` exited during build prep with `TS2688: Cannot
find type definition file for 'react'`; this appears to be caused by the
worktree dependency symlink setup, not the code under test.
- Confirmed this PR does not include `pnpm-lock.yaml`.
## Risks
- Medium risk: the stable Vitest runner changes how route/authz tests
are scheduled.
- Generated `ui/storybook-static` files are large and contain minified
third-party output; `git diff --check` reports whitespace inside those
generated assets, so reviewers may choose to drop or regenerate that
artifact before merge.
- No database migrations.
> For core feature work, check [`ROADMAP.md`](ROADMAP.md) first and
discuss it in `#dev` before opening the PR. Feature PRs that overlap
with planned core work may need to be redirected — check the roadmap
first. See `CONTRIBUTING.md`.
## Model Used
- OpenAI Codex coding agent based on GPT-5, with shell, git, Paperclip
API, and GitHub CLI tool use in the local Paperclip workspace.
## Checklist
- [x] I have included a thinking path that traces from project context
to this change
- [x] I have specified the model used (with version and capability
details)
- [x] I have checked ROADMAP.md and confirmed this PR does not duplicate
planned core work
- [x] I have run tests locally and they pass
- [x] I have added or updated tests where applicable
- [x] If this change affects the UI, I have included before/after
screenshots
- [x] I have updated relevant documentation to reflect my changes
- [x] I have considered and documented any risks above
- [x] I will address all Greptile and reviewer comments before
requesting merge
Note: screenshot checklist item is not applicable to source UI behavior;
the included Storybook static output is generated artifact preservation
from the source branch.
---------
Co-authored-by: Paperclip <noreply@paperclip.ing>
2026-04-24 15:11:42 -05:00
hint : "Switch the agent model to GPT-5.4 or enter a manual model ID to enable Codex Fast mode." ,
2026-04-11 07:36:42 -05:00
} ) ;
2026-03-03 12:51:42 -06:00
}
2026-05-05 08:00:27 -07:00
// Codex CLI (>= 0.122) ignores the OPENAI_API_KEY env var and only reads
// credentials from $CODEX_HOME/auth.json. When we have a key available,
// wrap the probe with a shell that materializes a per-run auth.json so
// the CLI can authenticate. The key content is passed via env (not on
// the command line) to avoid leaking it into process listings.
const probeApiKey = isNonEmpty ( configOpenAiKey )
? configOpenAiKey
: isNonEmpty ( hostOpenAiKey )
? hostOpenAiKey
: null ;
let probeCommand = command ;
let probeArgs = args ;
const probeEnv : Record < string , string > = { . . . env } ;
if ( probeApiKey ) {
const probeHome = targetIsRemote
? ` /tmp/paperclip-codex-probe- ${ runId } `
: path . join ( os . tmpdir ( ) , ` paperclip-codex-probe- ${ runId } ` ) ;
probeEnv . CODEX_HOME = probeHome ;
probeEnv . _PAPERCLIP_CODEX_AUTH_JSON = JSON . stringify ( { OPENAI_API_KEY : probeApiKey } ) ;
probeCommand = "sh" ;
// Trap on EXIT removes the probe home (with the API-key auth.json) on
// any exit path; we drop `exec` so the wrapper shell stays alive long
// enough for the trap to fire after the child returns.
probeArgs = [
"-c" ,
'set -e; mkdir -p "$CODEX_HOME"; umask 077; printf "%s" "$_PAPERCLIP_CODEX_AUTH_JSON" > "$CODEX_HOME/auth.json"; unset _PAPERCLIP_CODEX_AUTH_JSON; trap \'rm -rf "$CODEX_HOME"\' EXIT INT TERM; "$0" "$@"' ,
command ,
. . . args ,
] ;
}
Add dedicated environment settings page and test-in-environment (#4798)
## Thinking Path
> - Paperclip orchestrates AI agents for zero-human companies
> - Agents run inside environments (local, SSH, E2B sandbox)
> - Operators need to configure and manage these environments
> - But environment settings were buried inside the general company
settings page, making them hard to find
> - Additionally, when testing an agent from the configuration form, the
test always ran locally regardless of which environment was selected
> - This PR moves environments into a dedicated top-level company
settings section and wires the "Test Environment" button to run inside
the selected environment
> - The benefit is operators can find and manage environments more
easily, and the test button now validates the actual environment the
agent will use
## What Changed
- Added a dedicated `CompanyEnvironments` settings page with its own
route and sidebar entry
- Updated `CompanySettingsSidebar` and `CompanySettingsNav` to include
the new environments section
- Modified the agent test route (`POST /agents/:id/test`) to accept an
optional `environmentId` parameter
- Updated all adapter `test.ts` handlers to resolve and use the
specified execution target environment
- Added `resolveTestExecutionTarget` to `execution-target.ts` for remote
environment test resolution with cwd fallback
- Moved the "Test Environment" button and its feedback display into the
`NewAgent` page footer for better UX flow
## Verification
- `pnpm test` — all existing and new tests pass
- `pnpm typecheck` — clean
- Manual: navigate to Company Settings, confirm "Environments" appears
as a top-level section
- Manual: configure an agent with a non-local environment, click "Test
Environment", confirm the test runs inside that environment
## Risks
- Low risk. UI-only routing change for the settings page. The
test-in-environment change adds an optional parameter with a local
fallback, so existing behavior is preserved when no environment is
specified.
## Model Used
Codex GPT 5.4 high via Paperclip.
## Checklist
- [x] I have included a thinking path that traces from project context
to this change
- [x] I have specified the model used (with version and capability
details)
- [x] I have checked ROADMAP.md and confirmed this PR does not duplicate
planned core work
- [x] I have run tests locally and they pass
- [x] I have added or updated tests where applicable
- [x] If this change affects the UI, I have included before/after
screenshots
- [x] I have updated relevant documentation to reflect my changes
- [x] I have considered and documented any risks above
- [x] I will address all Greptile and reviewer comments before
requesting merge
2026-04-29 15:56:13 -07:00
const probe = await runAdapterExecutionTargetProcess (
runId ,
target ,
2026-05-05 08:00:27 -07:00
probeCommand ,
probeArgs ,
2026-03-03 12:51:42 -06:00
{
cwd ,
2026-05-05 08:00:27 -07:00
env : probeEnv ,
2026-03-03 12:51:42 -06:00
timeoutSec : 45 ,
graceSec : 5 ,
stdin : "Respond with hello." ,
onLog : async ( ) = > { } ,
} ,
) ;
const parsed = parseCodexJsonl ( probe . stdout ) ;
const detail = summarizeProbeDetail ( probe . stdout , probe . stderr , parsed . errorMessage ) ;
const authEvidence = ` ${ parsed . errorMessage ? ? "" } \ n ${ probe . stdout } \ n ${ probe . stderr } ` . trim ( ) ;
if ( probe . timedOut ) {
checks . push ( {
code : "codex_hello_probe_timed_out" ,
level : "warn" ,
message : "Codex hello probe timed out." ,
hint : "Retry the probe. If this persists, verify Codex can run `Respond with hello` from this directory manually." ,
} ) ;
} else if ( ( probe . exitCode ? ? 1 ) === 0 ) {
const summary = parsed . summary . trim ( ) ;
const hasHello = /\bhello\b/i . test ( summary ) ;
checks . push ( {
code : hasHello ? "codex_hello_probe_passed" : "codex_hello_probe_unexpected_output" ,
level : hasHello ? "info" : "warn" ,
message : hasHello
? "Codex hello probe succeeded."
: "Codex probe ran but did not return `hello` as expected." ,
. . . ( summary ? { detail : summary.replace ( /\s+/g , " " ) . trim ( ) . slice ( 0 , 240 ) } : { } ) ,
. . . ( hasHello
? { }
: {
hint : "Try the probe manually (`codex exec --json -` then prompt: Respond with hello) to inspect full output." ,
} ) ,
} ) ;
} else if ( CODEX_AUTH_REQUIRED_RE . test ( authEvidence ) ) {
checks . push ( {
code : "codex_hello_probe_auth_required" ,
level : "warn" ,
message : "Codex CLI is installed, but authentication is not ready." ,
. . . ( detail ? { detail } : { } ) ,
2026-05-05 08:00:27 -07:00
hint : probeApiKey
? "OPENAI_API_KEY was provided but Codex still rejected the request. Verify the key is valid for the OpenAI Responses API (e.g. `curl -H \"Authorization: Bearer $OPENAI_API_KEY\" https://api.openai.com/v1/models`), or run `codex login` and seed `~/.codex/auth.json`."
: "Codex CLI does not read OPENAI_API_KEY from the environment; set OPENAI_API_KEY in this adapter's config (so Paperclip writes it to `$CODEX_HOME/auth.json`) or run `codex login` on the host first." ,
2026-03-03 12:51:42 -06:00
} ) ;
} else {
checks . push ( {
code : "codex_hello_probe_failed" ,
level : "error" ,
message : "Codex hello probe failed." ,
. . . ( detail ? { detail } : { } ) ,
hint : "Run `codex exec --json -` manually in this working directory and prompt `Respond with hello` to debug." ,
} ) ;
}
}
}
2026-02-20 12:50:23 -06:00
return {
adapterType : ctx.adapterType ,
status : summarizeStatus ( checks ) ,
checks ,
testedAt : new Date ( ) . toISOString ( ) ,
} ;
}
