@chrysb/alphaclaw 0.9.0 → 0.9.1-beta.0

package/lib/public/js/components/welcome/use-welcome.js

@@ -18,6 +18,7 @@ import {
   getInitialOnboardingModelKey,
   getModelCatalogModels,
   kModelCatalogCacheKey,
+  preloadModelCatalog,
 } from "../../lib/model-catalog.js";
 import {
   kWelcomeGroups,
@@ -129,6 +130,11 @@ export const useWelcome = ({ onComplete }) => {
     maxAgeMs: 30000,
   });
 
+  useEffect(() => {
+    // Warm the real catalog immediately so the AI step usually opens ready.
+    preloadModelCatalog().catch(() => {});
+  }, []);
+
   const setValue = (key, value) => {
     if (formError) setFormError(null);
     setStoredValue(key, value);

package/lib/public/js/lib/model-catalog.js

@@ -1,3 +1,5 @@
+import { fetchModels } from "./api.js";
+import { cachedFetch } from "./api-cache.js";
 import { getFeaturedModels } from "./model-config.js";
 
 export const kModelCatalogCacheKey = "/api/models";
@@ -9,6 +11,15 @@ export const getModelCatalogModels = (payload) =>
 export const isModelCatalogRefreshing = (payload) =>
   Boolean(payload?.refreshing);
 
+export const preloadModelCatalog = ({
+  force = true,
+  maxAgeMs = 30000,
+} = {}) =>
+  cachedFetch(kModelCatalogCacheKey, fetchModels, {
+    force,
+    maxAgeMs,
+  });
+
 export const getInitialOnboardingModelKey = ({
   catalog = [],
   currentModelKey = "",

package/lib/scripts/git

@@ -6,21 +6,6 @@ REAL_GIT_HINT="@@REAL_GIT@@"
 OPENCLAW_REPO_ROOT="@@OPENCLAW_REPO_ROOT@@"
 ASKPASS_PATH="/tmp/alphaclaw-git-askpass.sh"
 
-SUBCMD=""
-for arg in "$@"; do
-  case "$arg" in
-    -*) ;;
-    *) SUBCMD="$arg"; break ;;
-  esac
-done
-
-needs_auth() {
-  case "$SUBCMD" in
-    push|pull|fetch|clone|ls-remote) return 0 ;;
-    *) return 1 ;;
-  esac
-}
-
 same_path() {
   local left_path right_path
   left_path="$(readlink -f "$1" 2>/dev/null || printf '%s' "$1")"
@@ -61,12 +46,73 @@ EOF
   return 1
 }
 
+canonicalize_path() {
+  local target_path resolved_path
+  target_path="$1"
+  [ -n "$target_path" ] || return 1
+
+  if [ -d "$target_path" ]; then
+    resolved_path="$(cd "$target_path" 2>/dev/null && pwd -P)" || resolved_path=""
+    if [ -n "$resolved_path" ]; then
+      printf '%s\n' "$resolved_path"
+      return 0
+    fi
+  fi
+
+  resolved_path="$(readlink -f "$target_path" 2>/dev/null || true)"
+  if [ -n "$resolved_path" ]; then
+    printf '%s\n' "$resolved_path"
+    return 0
+  fi
+
+  printf '%s\n' "$target_path"
+}
+
+resolve_effective_pwd() {
+  local effective_pwd
+  effective_pwd="$(pwd)"
+
+  while [ "$#" -gt 0 ]; do
+    case "$1" in
+      -C)
+        shift
+        [ "$#" -gt 0 ] || break
+        case "$1" in
+          /*) effective_pwd="$1" ;;
+          *) effective_pwd="$effective_pwd/$1" ;;
+        esac
+        ;;
+      -c|--exec-path|--git-dir|--work-tree|--namespace|--config-env|--super-prefix|--list-cmds|--attr-source)
+        shift
+        [ "$#" -gt 0 ] || break
+        ;;
+      --exec-path=*|--git-dir=*|--work-tree=*|--namespace=*|--config-env=*|--super-prefix=*|--list-cmds=*|--attr-source=*)
+        ;;
+      --)
+        break
+        ;;
+      -*)
+        ;;
+      *)
+        break
+        ;;
+    esac
+    shift
+  done
+
+  canonicalize_path "$effective_pwd"
+}
+
 in_openclaw_root() {
+  local candidate_path resolved_repo_root resolved_candidate_path
+  candidate_path="$1"
   if [ -z "$OPENCLAW_REPO_ROOT" ]; then
     return 1
   fi
-  case "$(pwd)" in
-    "$OPENCLAW_REPO_ROOT"|"${OPENCLAW_REPO_ROOT}"/*) return 0 ;;
+  resolved_repo_root="$(canonicalize_path "$OPENCLAW_REPO_ROOT")"
+  resolved_candidate_path="$(canonicalize_path "$candidate_path")"
+  case "$resolved_candidate_path" in
+    "$resolved_repo_root"|"${resolved_repo_root}"/*) return 0 ;;
     *) return 1 ;;
   esac
 }
@@ -77,7 +123,9 @@ if [ -z "$REAL_GIT" ]; then
   exit 127
 fi
 
-if [ "${ALPHACLAW_GIT_NO_AUTH:-}" = "1" ] || [ -z "${GITHUB_TOKEN:-}" ] || ! needs_auth || ! in_openclaw_root; then
+EFFECTIVE_PWD="$(resolve_effective_pwd "$@")"
+
+if [ "${ALPHACLAW_GIT_NO_AUTH:-}" = "1" ] || [ -z "${GITHUB_TOKEN:-}" ] || ! in_openclaw_root "$EFFECTIVE_PWD"; then
   exec "$REAL_GIT" "$@"
 fi
 

package/lib/server/gateway.js

@@ -45,6 +45,7 @@ const gatewayEnv = () => ({
   ...process.env,
   OPENCLAW_HOME: kRootDir,
   OPENCLAW_CONFIG_PATH: `${OPENCLAW_DIR}/openclaw.json`,
+  OPENCLAW_STATE_DIR: OPENCLAW_DIR,
   XDG_CONFIG_HOME: OPENCLAW_DIR,
 });
 

package/lib/server/model-catalog-cache.js

@@ -123,7 +123,7 @@ const createModelCatalogCache = ({
   const loadFreshCatalog = async () => {
     const output = await shellCmd("openclaw models list --all --json", {
       env: gatewayEnv(),
-      timeout: 20000,
+      timeout: 30000,
     });
     const parsed = parseJsonFromNoisyOutput(output);
     const models = normalizeOnboardingModels(parsed?.models || []);

package/lib/server/onboarding/github.js

@@ -63,6 +63,56 @@ const repoContainsOnlyBoilerplate = async (repoUrl, ghHeaders) => {
   }
 };
 
+const getNextGithubPageUrl = (linkHeader = "") => {
+  const nextLink = String(linkHeader || "")
+    .split(",")
+    .map((entry) => entry.trim())
+    .find((entry) => entry.endsWith('rel="next"'));
+  const match = nextLink?.match(/<([^>]+)>/);
+  return match?.[1] || "";
+};
+
+const findOwnedRepoByName = async ({
+  repoUrl,
+  repoOwner,
+  repoName,
+  viewerLogin,
+  ghHeaders,
+}) => {
+  if (
+    !repoOwner ||
+    !repoName ||
+    !viewerLogin ||
+    repoOwner.toLowerCase() !== viewerLogin.toLowerCase()
+  ) {
+    return null;
+  }
+
+  let nextUrl =
+    "https://api.github.com/user/repos?affiliation=owner&per_page=100&page=1";
+  const normalizedRepoUrl = String(repoUrl || "").trim().toLowerCase();
+  const normalizedRepoName = String(repoName || "").trim().toLowerCase();
+
+  while (nextUrl) {
+    const res = await fetch(nextUrl, { headers: ghHeaders });
+    if (!res.ok) return null;
+
+    const repos = await res.json();
+    if (!Array.isArray(repos)) return null;
+
+    const existingRepo = repos.find((repo) => {
+      const fullName = String(repo?.full_name || "").trim().toLowerCase();
+      const name = String(repo?.name || "").trim().toLowerCase();
+      return fullName === normalizedRepoUrl || name === normalizedRepoName;
+    });
+    if (existingRepo) return existingRepo;
+
+    nextUrl = getNextGithubPageUrl(res.headers?.get?.("link"));
+  }
+
+  return null;
+};
+
 const isClassicPat = (token) => String(token || "").startsWith("ghp_");
 const isFineGrainedPat = (token) =>
   String(token || "").startsWith("github_pat_");
@@ -73,8 +123,9 @@ const verifyGithubRepoForOnboarding = async ({
   mode = "new",
 }) => {
   const ghHeaders = buildGithubHeaders(githubToken);
-  const [repoOwner] = String(repoUrl || "").split("/", 1);
+  const [repoOwner = "", repoName = ""] = String(repoUrl || "").split("/");
   const isExisting = mode === "existing";
+  let viewerLogin = "";
 
   try {
     const userRes = await fetch("https://api.github.com/user", {
@@ -106,12 +157,29 @@ const verifyGithubRepoForOnboarding = async ({
         };
       }
     }
-    await userRes.json().catch(() => ({}));
+    const userPayload = await userRes.json().catch(() => ({}));
+    viewerLogin = String(userPayload?.login || "").trim();
 
     const checkRes = await fetch(`https://api.github.com/repos/${repoUrl}`, {
       headers: ghHeaders,
     });
     if (checkRes.status === 404) {
+      const hiddenOwnedRepo = await findOwnedRepoByName({
+        repoUrl,
+        repoOwner,
+        repoName,
+        viewerLogin,
+        ghHeaders,
+      });
+      if (hiddenOwnedRepo) {
+        return {
+          ok: false,
+          status: 400,
+          error:
+            `Repository "${repoUrl}" already exists, but this token cannot inspect it. ` +
+            "Choose a different repo name or use a token that can access that repo.",
+        };
+      }
       if (isExisting) {
         return {
           ok: false,
@@ -205,6 +273,19 @@ const ensureGithubRepoAccessible = async ({
     });
     if (!createRes.ok) {
       const details = await parseGithubErrorMessage(createRes);
+      if (
+        String(details || "")
+          .toLowerCase()
+          .includes("name already exists on this account")
+      ) {
+        return {
+          ok: false,
+          status: 400,
+          error:
+            `Repository "${repoUrl}" already exists. ` +
+            "Choose a different repo name or use a token that can access that repo.",
+        };
+      }
       const hint =
         createRes.status === 404 || createRes.status === 403
           ? ' Ensure your token is a classic PAT with the "repo" scope.'

package/lib/server/onboarding/index.js

@@ -495,6 +495,8 @@ const createOnboardingService = ({
             ...process.env,
             OPENCLAW_HOME: kRootDir,
             OPENCLAW_CONFIG_PATH: `${OPENCLAW_DIR}/openclaw.json`,
+            OPENCLAW_STATE_DIR: OPENCLAW_DIR,
+            XDG_CONFIG_HOME: OPENCLAW_DIR,
           },
           timeout: 120000,
         },

package/lib/setup/core-prompts/AGENTS.md

@@ -25,6 +25,18 @@ If any of these apply, outline your approach first — what you intend to do, in
 
 Your `.openclaw` directory is version-controlled and this is how work survives container restarts.
 
+### Persistent Storage Rules
+
+This deployment runs in an ephemeral container. `/tmp`, other temp directories, and files outside `/data` can disappear on restart or redeploy.
+
+Anything that must survive redeploys must live under `/data/.openclaw`.
+
+For plugins and other durable artifacts:
+
+- Prefer normal `openclaw plugins install <spec>` flows for persistent installs.
+- If you must stage or unpack a local plugin first, stage it under `/data/.openclaw/...`, not `/tmp/...`.
+- Never persist `plugins.load.paths` entries that point at temp directories.
+
 Anytime you add, edit, or remove workspace files, openclaw.json, cron.json, skills, or external resources (third-party pages, databases, integrations), **commit and push your changes to git**. Never force push; always pull first if there might be remote changes.
 
 Whenever you do this, end your message with a **Changes committed** summary. Use workspace-relative paths for local files.

package/lib/setup/core-prompts/TOOLS.md

@@ -21,6 +21,18 @@ Do not deflect actionable requests to the Setup UI. If a command or tool is avai
 
 Changes to env vars are made through the **Envars** tab (`{{SETUP_UI_URL}}#envars`). After saving, a gateway restart may be required to pick up the changes — the UI prompts for this automatically. Do not edit `/data/.env` directly; use the Setup UI so changes are validated and the gateway restart is handled.
 
+### Persistent storage
+
+This deployment runs in an ephemeral container. `/tmp` and other temp locations do not survive redeploys.
+
+Anything persistent must live under `/data/.openclaw`.
+
+For plugins and local tooling:
+
+- Prefer normal `openclaw plugins install <spec>` flows for durable installs.
+- If you need to stage a local plugin or helper files first, put them under `/data/.openclaw/...`, not `/tmp/...`.
+- Do not leave durable `plugins.load.paths` entries pointing at temp directories.
+
 ### Google Workspace
 
 Google Workspace is connected via the **General** tab (`{{SETUP_UI_URL}}#general`). The user provides OAuth client credentials from Google Cloud Console, then authorizes access to the services they need (Gmail, Calendar, Drive, Sheets, Docs, Tasks, Contacts, Meet). Connected accounts and `gog` CLI usage are covered by the gog-cli skill.

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@chrysb/alphaclaw",
-  "version": "0.9.0",
+  "version": "0.9.1-beta.0",
   "publishConfig": {
     "access": "public"
   },
@@ -36,7 +36,7 @@
   "dependencies": {
     "express": "^4.21.0",
     "http-proxy": "^1.18.1",
-    "openclaw": "2026.4.9",
+    "openclaw": "2026.4.10",
     "patch-package": "^8.0.1",
     "ws": "^8.19.0"
   },