npm - @elvatis_com/openclaw-cli-bridge-elvatis - Versions diffs - 0.2.22 → 0.2.25 - Mend

@elvatis_com/openclaw-cli-bridge-elvatis 0.2.22 → 0.2.25

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (14) hide show

package/.ai/handoff/DASHBOARD.md +32 -19
package/.ai/handoff/LOG.md +111 -38
package/.ai/handoff/MANIFEST.json +49 -126
package/.ai/handoff/NEXT_ACTIONS.md +21 -22
package/.ai/handoff/STATUS.md +76 -48
package/.ai/handoff/TRUST.md +40 -51
package/README.md +15 -1
package/SKILL.md +1 -1
package/index.ts +165 -10
package/openclaw.plugin.json +1 -1
package/package.json +2 -2
package/src/claude-auth.ts +247 -0
package/src/cli-runner.ts +21 -6
package/src/proxy-server.ts +9 -0

package/.ai/handoff/DASHBOARD.md CHANGED Viewed

@@ -1,37 +1,50 @@
 # DASHBOARD.md — openclaw-cli-bridge-elvatis
-_Last updated: 2026-03-07_
+_Last updated: 2026-03-11_
+<!-- SECTION: plugin_status -->
 ## 🏗️ Plugin Status
 | Component | Version | Build | Tests | Status |
 |-----------|---------|-------|-------|--------|
-| openclaw-cli-bridge-elvatis | 0.2.9 | ✅ | 5/5 ✅ | ✅ Stable |
+| openclaw-cli-bridge-elvatis | 0.2.25 | ✅ | ✅ 51/51 | ✅ Stable |
+<!-- /SECTION: plugin_status -->
+<!-- SECTION: release_state -->
 ## 🚀 Release State
-| Platform | Version | Status |
-|----------|---------|--------|
-| GitHub | v0.2.9 | ✅ Tagged + Release |
-| npm | 0.2.9 | ✅ Published |
-| ClawHub | 0.2.9 | ✅ Published |
+| Platform | Published Version | Status |
+|----------|------------------|--------|
+| GitHub | v0.2.23 | ✅ Tagged + Release |
+| npm | 0.2.23 | ✅ Published |
+| ClawHub | 0.2.23 | ✅ Published |
+| Local | 0.2.25 | ⏳ Built + tested, pending publish |
+<!-- /SECTION: release_state -->
+<!-- SECTION: open_tasks -->
 ## 📋 Open Tasks
-| ID | Task | Priority | Status |
-|----|------|----------|--------|
-| T-101 | Unit tests for prompt formatter + model router | 🟡 MEDIUM | Ready |
-| T-102 | Proxy auth key rotation via config | 🟢 LOW | Ready |
-| T-103 | Explicit model allowlist for CLI execution | 🟢 LOW | Ready |
+| ID | Task | Priority | Blocked by | Ready? |
+|----|------|----------|-----------|--------|
+| T-010 | Publish v0.2.25 to GitHub + npm + ClawHub | 🟡 MEDIUM | — | ✅ Ready |
+<!-- /SECTION: open_tasks -->
+<!-- SECTION: completed_tasks -->
 ## ✅ Completed Tasks
 | Task | Title | Version |
 |------|-------|---------|
-| T-007 | Critical: remove fuser -k, replace with safe health probe | 0.2.9 |
-| T-006 | Fix port leak: registerService stop() hook + closeAllConnections | 0.2.7 |
-| T-005 | Add openclaw.extensions to package.json | 0.2.6 |
-| T-004 | /cli-codex + /cli-codex-mini slash commands | 0.2.5 |
-| T-003 | /cli-back restore + /cli-test health check | 0.2.3 |
-| T-002 | /cli-* model switch slash commands (Phase 3) | 0.2.2 |
-| T-001 | Phase 1+2: auth bridge + local proxy + config patcher | 0.2.0 |
+| T-011 | Session-safe staged model switching (/cli-apply, /cli-pending, --now) | 0.2.25 |
+| T-009 | Stability: sleep-resilient token refresh + stopTokenRefresh cleanup | 0.2.25 |
+| T-103 | Explicit model allowlist for CLI execution | 0.2.23 |
+| T-102 | Proxy auth key rotation via config | 0.2.23 |
+| T-101 | Unit tests for prompt formatter + model router | 0.2.23 |
+| T-008 | Validate proxy endpoints + vllm model calls end-to-end | 0.2.21 |
+| T-007 | Create GitHub repo and push initial code | 0.2.5 |
+| T-006 | Implement Claude Code CLI request bridge | 0.2.5 |
+| T-005 | Implement Gemini CLI request bridge | 0.2.5 |
+| T-004 | Verify model call: gpt-5.2 / gpt-5.3-codex responds | 0.2.5 |
+| T-003 | Test auth flow: openclaw models auth login --provider openai-codex | 0.2.5 |
+| T-002 | Implement openai-codex provider (Codex CLI auth bridge) | 0.2.5 |
+| T-001 | Scaffold plugin structure + AAHP handoff | 0.2.5 |
+<!-- /SECTION: completed_tasks -->

package/.ai/handoff/LOG.md CHANGED Viewed

@@ -1,26 +1,116 @@
 # LOG.md — openclaw-cli-bridge-elvatis
+_Last 10 sessions. Older entries in LOG-ARCHIVE.md._
+---
+## 2026-03-11 — Session 6 (Akido / claude-sonnet-4-6)
+> **Agent:** claude-sonnet-4-6
+> **Phase:** implementation
+> **Commit before:** (unpublished local, v0.2.24 base)
+> **Commit after:** pending (v0.2.25)
+**T-011: Session-safe staged model switching**
+### Problem
+`/cli-*` commands called `openclaw models set <model>` immediately — a global, instantaneous
+switch. If a conversation was in progress, the running agent lost its context mid-task:
+tool calls failed silently, plan files weren't written, no error feedback. Session had to
+be abandoned. Root cause: no API exists in the plugin SDK to detect if a session is active;
+the switch always went through regardless.
+### Fix (index.ts)
+**New state file:** `~/.openclaw/cli-bridge-pending.json` — stores a staged switch
+(`{ model, label, requestedAt }`).
+**`switchModel()` refactored into two paths:**
+- `applyModelSwitch()` — runs `openclaw models set` immediately (extracted helper)
+- `switchModel(forceNow=false)` — stages by default, calls `applyModelSwitch` only with `--now`
+**New commands registered:**
+- `/cli-apply` — apply staged switch; safe to run after finishing the current task
+- `/cli-pending` — show current staged switch state
+- `/cli-back` — now also calls `clearPending()` to discard any staged switch
+**All `/cli-*` switch commands updated:**
+- `acceptsArgs: true` — passes `--now` flag through
+- Default: stages + shows warning with instructions
+- `--now`: immediate (explicit user choice)
+**`/cli-list` updated** to show pending state inline and switching instructions.
+### Build + Tests
+- `npm run build` — ✅ clean
+- `npm test` — ✅ 51/51 (no test changes needed; new code is command-handler logic)
+### Version
+0.2.24 → 0.2.25 (feature bump: staged switching is new behavior, not just a fix)
+---
+## 2026-03-11 — Session 5 (Akido / claude-sonnet-4-6)
+> **Agent:** claude-sonnet-4-6
+> **Phase:** fix
+> **Commit before:** (unpublished local, v0.2.23 base)
+> **Commit after:** pending (v0.2.24, not yet committed)
+**T-009: Stability — sleep-resilient token refresh + timer cleanup**
+### Problem
+`scheduleTokenRefresh()` in `claude-auth.ts` used a single long `setTimeout` (potentially hours).
+Three issues:
+1. **Sleep-miss:** If the server went to sleep/hibernate during the timeout window, the timer fired late or not at all. Token expired silently.
+2. **Timer-leak:** Repeated calls to `scheduleTokenRefresh()` (e.g., after a refresh) didn't reliably clear the old timer. Duplicate intervals could accumulate.
+3. **No cleanup hook:** The `setInterval`/`setTimeout` was never stopped when the proxy server closed, leaving orphaned timers after plugin teardown.
+### Fix (3 files)
+**`src/claude-auth.ts`:**
+- Replaced `refreshTimer: ReturnType<typeof setTimeout>` with `refreshTimer: ReturnType<typeof setInterval>`
+- Added `nextRefreshAt: number` state variable — tracks when the next refresh is due (epoch ms)
+- Replaced `setTimeout(msUntilRefresh)` with `setInterval(10 * 60 * 1000)` — polls every 10 min, checks `Date.now() >= nextRefreshAt`
+- Exported `stopTokenRefresh()` — clears the interval and resets state; safe to call multiple times
+- `stopTokenRefresh()` called at top of `scheduleTokenRefresh()` — guarantees no duplicate intervals
+- `doRefresh()` no longer calls `scheduleTokenRefresh()` recursively — updates `nextRefreshAt` in-place instead
+**`src/proxy-server.ts`:**
+- Imported `stopTokenRefresh` from `claude-auth.js`
+- Added `server.on("close", () => { stopTokenRefresh(); })` — interval is cleaned up automatically when the server closes
+**`openclaw.plugin.json` + `index.ts` + `package.json`:**
+- Version bumped 0.2.23 → 0.2.24
+### Build
+`npm run build` — ✅ clean, no TypeScript errors
+### Not yet done
+- `npm test` not run (no logic changes to model routing/proxy; assumed passing)
+- Not published to GitHub/npm/ClawHub yet → T-010
+---
+## 2026-03-11 — Session 4 (Akido / claude-sonnet-4-6)
+> **Agent:** claude-sonnet-4-6
+> **Phase:** review + analysis
+> **Note:** Planning session. Code analysis of proxy/auth architecture. Plan written to `/home/chef-linux/.claude/plans/buzzing-honking-corbato.md`. Implementation deferred to Session 5.
+---
 ## 2026-03-08 — Session 3 (Akido / claude-sonnet-4-6)
 **Critical bug: Gateway SIGKILL via fuser (fixed in v0.2.9)**
-Root cause: `fuser -k 31337/tcp` (added in v0.2.8) sent SIGKILL to the gateway
-process itself during in-process hot-reloads. In hybrid reload mode, the same gateway
-process reloads the plugin. At that point, the gateway holds port 31337 (via the proxy
-it spawned earlier). `fuser -k` found the current gateway process as the port owner and
-killed it with SIGKILL — visible in systemd journal as `code=killed, status=9/KILL` with
-a 1.9G memory peak.
+Root cause: `fuser -k 31337/tcp` (added in v0.2.8) sent SIGKILL to the gateway process itself during in-process hot-reloads. The same gateway process holds port 31337 after spawning the proxy. `fuser -k` found it as the port owner and killed it → `code=killed, status=9/KILL` in systemd journal, 1.9G memory peak at death.
-Fix: replaced `fuser -k` with a safe health probe. Before binding, `GET /v1/models` is
-sent to the existing proxy. If it responds with 200, the proxy is reused silently
-(`[cli-bridge] proxy already running on :31337 — reusing`). If EADDRINUSE but no
-response (genuinely stale process), wait 1s and retry once. No process killing.
+Fix: replaced `fuser -k` with a safe health probe. Before binding, `GET /v1/models` is sent to the existing proxy. If 200 → reuse silently. If EADDRINUSE + no response → wait 1s and retry once. No process killing.
 **Release pipeline:**
-- v0.2.9 committed, tagged, pushed to GitHub
-- GitHub release: https://github.com/elvatis/openclaw-cli-bridge-elvatis/releases/tag/v0.2.9
-- npm: `@elvatis_com/openclaw-cli-bridge-elvatis@0.2.9`
-- ClawHub: `openclaw-cli-bridge-elvatis@0.2.9`
+- v0.2.9 → v0.2.21 (incremental fixes: requireAuth, vllm prefix, XDG env vars, model allowlist, tests)
+- All published to GitHub, npm, ClawHub
 ---
@@ -28,26 +118,11 @@ response (genuinely stale process), wait 1s and retry once. No process killing.
 **Bug: Port leak on gateway hot-reload (fixed in v0.2.6)**
-Root cause: HTTP proxy server on port 31337 had no cleanup handler. On hot-reloads
-or gateway restarts, the old server instance kept the port bound. New plugin instance
-couldn't bind → EADDRINUSE → proxy failed silently.
-Fix: added `api.registerService({ id: "cli-bridge-proxy", stop: async () => server.close() })`
-so OpenClaw calls `stop()` on plugin teardown.
+Root cause: HTTP proxy server on port 31337 had no cleanup handler. On hot-reloads, old server kept port bound. Fix: `api.registerService({ stop: async () => server.close() })` + `closeAllConnections()`.
-Also added missing `openclaw.extensions` field to `package.json` (required for `openclaw plugins install --link`).
-Added `.clawhubignore` and documented rsync workaround in CONVENTIONS.md (clawhub publish ignores .clawhubignore).
+Also fixed: `openclaw.extensions` missing from `package.json`; `.clawhubignore` documented with rsync workaround.
-**Root conflict with openclaw-self-healing-elvatis:**
-The infinite restart loop was caused by self-healing's `lastRestartAt` being saved after
-`openclaw gateway restart` (which kills the process). Fixed in self-healing v0.2.8.
-Both plugins now stable together.
-**Release pipeline:**
-- v0.2.6 committed, tagged, pushed to GitHub
-- GitHub release: https://github.com/elvatis/openclaw-cli-bridge-elvatis/releases/tag/v0.2.6
-- npm published: `@elvatis_com/openclaw-cli-bridge-elvatis@0.2.6`
-- ClawHub published: `openclaw-cli-bridge-elvatis@0.2.6`
+**Root conflict with openclaw-self-healing-elvatis** resolved: self-healing's `lastRestartAt` was saved after `openclaw gateway restart` (kills process). Fixed in self-healing v0.2.8.
 ---
@@ -57,12 +132,10 @@ Both plugins now stable together.
 - Phase 1: `openai-codex` auth bridge via `~/.codex/auth.json`
 - Phase 2: local OpenAI-compatible proxy (`src/proxy-server.ts`, `src/cli-runner.ts`, `src/config-patcher.ts`)
-  - Gemini CLI → `cli-gemini/*` models
-  - Claude Code CLI → `cli-claude/*` models
-  - Prompt delivery via stdin (avoids E2BIG + Gemini agentic mode)
+  - Gemini CLI → `cli-gemini/*` models (prompt via stdin, cwd=tmpdir)
+  - Claude Code CLI → `cli-claude/*` models (prompt via stdin, --permission-mode plan)
 - Phase 3: `/cli-sonnet`, `/cli-opus`, `/cli-haiku`, `/cli-gemini`, `/cli-gemini-flash`, `/cli-gemini3`, `/cli-codex`, `/cli-codex-mini`, `/cli-back`, `/cli-test`
-- Published to GitHub, npm, ClawHub at v0.2.5
+Published to GitHub, npm, ClawHub at v0.2.5.
-**Known issue at time of session:**
-- `openai-codex/gpt-5.4` → 401 missing scope `model.request` (external, OpenAI account limitation)
+Known issue: `openai-codex/gpt-5.4` → 401 missing scope `model.request` (OpenAI account limitation, not a bug).

package/.ai/handoff/MANIFEST.json CHANGED Viewed

@@ -2,152 +2,75 @@
   "aahp_version": "3.0",
   "project": "openclaw-cli-bridge-elvatis",
   "last_session": {
-    "agent": "claude-code",
-    "session_id": "main",
-    "timestamp": "2026-03-08T08:08:44.175Z",
-    "commit": "30be8ae",
-    "phase": "integration",
-    "duration_minutes": 2
+    "agent": "claude-sonnet-4-6",
+    "session_id": "akido-2026-03-11-v0.2.25",
+    "timestamp": "2026-03-11T17:39:00Z",
+    "commit": "pending (v0.2.25 not yet committed)",
+    "phase": "implementation",
+    "duration_minutes": 70
   },
   "files": {
     "STATUS.md": {
-      "checksum": "sha256:tbd",
-      "updated": "2026-03-07T21:29:00Z",
-      "lines": 0,
-      "summary": "Auth bridge done; request bridge implemented; pending runtime validation."
+      "checksum": "sha256:8b5d260441611e95f20818e51c1f6dba775deee32187162e3f4dfe89905c67d8",
+      "updated": "2026-03-11T17:39:00Z",
+      "lines": 78,
+      "summary": "v0.2.25 built + 51/51 tests pass. Staged switching + token stability. Ready to publish. Last published: v0.2.23."
     },
     "NEXT_ACTIONS.md": {
-      "checksum": "sha256:tbd",
-      "updated": "2026-03-07T21:29:00Z",
-      "lines": 0,
-      "summary": "Top priority: validate proxy + vllm model calls, then release pipeline."
+      "checksum": "sha256:2a2c1696de45106e01063afa35859955f0d8827c1ea3bbc117d7b46769f89a6c",
+      "updated": "2026-03-11T17:39:00Z",
+      "lines": 48,
+      "summary": "1 task ready: T-010 — Publish v0.2.25. No blockers."
     },
     "LOG.md": {
-      "checksum": "sha256:tbd",
-      "updated": "2026-03-07T21:29:00Z",
-      "lines": 0,
-      "summary": "Repo created, provider fixed, proxy architecture added."
+      "checksum": "sha256:b23892518fd5a5faa0b402bd2553d1d1cbca7b46675ba6dd4d413e1cbf03e19d",
+      "updated": "2026-03-11T17:39:00Z",
+      "lines": 141,
+      "summary": "Session 6: staged switch impl (T-011). Session 5: token refresh stability (T-009). Sessions 1-4: initial build, bugs, planning."
     },
     "DASHBOARD.md": {
-      "checksum": "sha256:tbd",
-      "updated": "2026-03-07T21:29:00Z",
-      "lines": 0,
-      "summary": "2 bridge phases implemented; validation pending."
+      "checksum": "sha256:cf1c47a18f52e0b94b932177d4e9b455a0e3ae7f29b1a34802088ffa7ad98cef",
+      "updated": "2026-03-11T17:39:00Z",
+      "lines": 50,
+      "summary": "Build ✅ Tests 51/51 ✅. Local v0.2.25, last published v0.2.23. T-010 (publish) ready."
     },
     "TRUST.md": {
-      "checksum": "sha256:tbd",
-      "updated": "2026-03-07T21:29:00Z",
-      "lines": 0,
-      "summary": "No secret output, local-only proxy, explicit scope constraints."
+      "checksum": "sha256:cbfc8dcc17c00f8da8e220eba106aac56c63782caac655c30ba60c463994adc1",
+      "updated": "2026-03-11T16:30:00Z",
+      "lines": 58,
+      "summary": "Build verified. Runtime verified at v0.2.21. stopTokenRefresh assumed. Security verified."
     },
     "CONVENTIONS.md": {
-      "checksum": "sha256:tbd",
-      "updated": "2026-03-07T21:29:00Z",
-      "lines": 0,
-      "summary": "TypeScript strict + AAHP v3 + multi-platform release discipline."
+      "checksum": "sha256:2ba10012e05f7a64850b4b41ae35723f9677c0a5a0a78b76e3f74bf430f2d048",
+      "updated": "2026-03-08T00:00:00Z",
+      "lines": 101,
+      "summary": "TypeScript strict ESM, 3-platform release checklist, ClawHub rsync workaround, secrets policy."
     },
     "WORKFLOW.md": {
-      "checksum": "sha256:tbd",
-      "updated": "2026-03-07T21:29:00Z",
-      "lines": 0,
-      "summary": "Validate → harden → publish (GitHub, npm, ClawHub)."
+      "checksum": "sha256:f9224bf9e993863b2b9e17f36ee605950359ba43d420fa7b4c829a6fbdc92482",
+      "updated": "2026-03-07T00:00:00Z",
+      "lines": 152,
+      "summary": "4-phase AAHP pipeline: Research → Architecture → Implementation → Review → Handoff."
     }
   },
-  "quick_context": "All providers validated end-to-end. 28 automated tests (unit + e2e proxy) pass. Proxy endpoints, vllm/ prefix stripping, auth, streaming, error handling all verified. Next: publish to npm + ClawHub.",
+  "quick_context": "v0.2.25 built + 51/51 tests pass. Key changes: (1) staged model switching — /cli-* now stages by default, /cli-apply to execute after session, --now for immediate; (2) sleep-resilient token refresh via setInterval; (3) stopTokenRefresh cleanup. Last published: v0.2.23. Next: T-010 — publish to GitHub/npm/ClawHub.",
   "token_budget": {
     "manifest_only": 90,
-    "manifest_plus_core": 350,
-    "full_read": 700
+    "manifest_plus_core": 380,
+    "full_read": 850
   },
-  "next_task_id": 9,
+  "next_task_id": 12,
   "tasks": {
-    "T-001": {
-      "title": "Scaffold plugin structure + AAHP handoff",
-      "status": "done",
-      "priority": "high",
-      "depends_on": [],
-      "created": "2026-03-07T20:40:00Z",
-      "completed": "2026-03-07T20:56:00Z"
-    },
-    "T-002": {
-      "title": "Implement openai-codex provider (Codex CLI auth bridge)",
-      "status": "done",
-      "priority": "high",
-      "depends_on": [
-        "T-001"
-      ],
-      "created": "2026-03-07T20:40:00Z",
-      "completed": "2026-03-07T20:56:00Z"
-    },
-    "T-003": {
-      "title": "Test auth flow: openclaw models auth login --provider openai-codex",
-      "status": "done",
-      "priority": "high",
-      "depends_on": [
-        "T-002"
-      ],
-      "created": "2026-03-07T20:56:00Z",
-      "completed": "2026-03-07T21:01:00Z"
-    },
-    "T-004": {
-      "title": "Verify model call: test gpt-5.2 or gpt-5.3-codex responds",
-      "status": "done",
-      "priority": "high",
-      "depends_on": [
-        "T-003"
-      ],
-      "created": "2026-03-07T20:56:00Z",
-      "completed": "2026-03-07T21:27:00Z"
-    },
-    "T-005": {
-      "title": "Implement Gemini CLI request bridge",
-      "status": "done",
-      "priority": "medium",
-      "depends_on": [
-        "T-003"
-      ],
-      "created": "2026-03-07T20:56:00Z",
-      "completed": "2026-03-07T21:23:00Z"
-    },
-    "T-006": {
-      "title": "Implement Claude Code CLI request bridge",
-      "status": "done",
-      "priority": "medium",
-      "depends_on": [
-        "T-003"
-      ],
-      "created": "2026-03-07T20:56:00Z",
-      "completed": "2026-03-07T21:23:00Z"
-    },
-    "T-007": {
-      "title": "Create GitHub repo and push initial code",
-      "status": "done",
-      "priority": "high",
-      "depends_on": [
-        "T-004"
-      ],
-      "created": "2026-03-07T21:20:00Z",
-      "completed": "2026-03-07T21:24:00Z"
-    },
-    "T-008": {
-      "title": "Validate proxy endpoints + vllm model calls end-to-end",
-      "status": "done",
-      "priority": "high",
-      "depends_on": [
-        "T-005",
-        "T-006"
-      ],
-      "created": "2026-03-07T21:29:00Z",
-      "completed": "2026-03-08T08:08:44.175Z"
-    },
-    "T-009": {
-      "title": "Publish to npm + ClawHub",
-      "status": "ready",
-      "priority": "medium",
-      "depends_on": [
-        "T-008"
-      ],
-      "created": "2026-03-07T21:29:00Z"
-    }
+    "T-001": { "title": "Scaffold plugin structure + AAHP handoff", "status": "done", "priority": "high", "depends_on": [], "created": "2026-03-07T20:40:00Z", "completed": "2026-03-07T20:56:00Z" },
+    "T-002": { "title": "Implement openai-codex provider (Codex CLI auth bridge)", "status": "done", "priority": "high", "depends_on": ["T-001"], "created": "2026-03-07T20:40:00Z", "completed": "2026-03-07T20:56:00Z" },
+    "T-003": { "title": "Test auth flow: openclaw models auth login --provider openai-codex", "status": "done", "priority": "high", "depends_on": ["T-002"], "created": "2026-03-07T20:56:00Z", "completed": "2026-03-07T21:01:00Z" },
+    "T-004": { "title": "Verify model call: test gpt-5.2 or gpt-5.3-codex responds", "status": "done", "priority": "high", "depends_on": ["T-003"], "created": "2026-03-07T20:56:00Z", "completed": "2026-03-07T21:27:00Z" },
+    "T-005": { "title": "Implement Gemini CLI request bridge", "status": "done", "priority": "medium", "depends_on": ["T-003"], "created": "2026-03-07T20:56:00Z", "completed": "2026-03-07T21:23:00Z" },
+    "T-006": { "title": "Implement Claude Code CLI request bridge", "status": "done", "priority": "medium", "depends_on": ["T-003"], "created": "2026-03-07T20:56:00Z", "completed": "2026-03-07T21:23:00Z" },
+    "T-007": { "title": "Create GitHub repo and push initial code", "status": "done", "priority": "high", "depends_on": ["T-004"], "created": "2026-03-07T21:20:00Z", "completed": "2026-03-07T21:24:00Z" },
+    "T-008": { "title": "Validate proxy endpoints + vllm model calls end-to-end", "status": "done", "priority": "high", "depends_on": ["T-005", "T-006"], "created": "2026-03-07T21:29:00Z", "completed": "2026-03-08T08:08:44Z" },
+    "T-009": { "title": "Stability: sleep-resilient token refresh + stopTokenRefresh cleanup", "status": "done", "priority": "high", "depends_on": ["T-008"], "created": "2026-03-11T15:00:00Z", "completed": "2026-03-11T16:30:00Z" },
+    "T-010": { "title": "Publish v0.2.25 to GitHub + npm + ClawHub", "status": "ready", "priority": "medium", "depends_on": ["T-011"], "created": "2026-03-11T16:30:00Z" },
+    "T-011": { "title": "Session-safe staged model switching (/cli-apply, /cli-pending, --now)", "status": "done", "priority": "high", "depends_on": ["T-009"], "created": "2026-03-11T17:00:00Z", "completed": "2026-03-11T17:39:00Z" }
   }
 }

package/.ai/handoff/NEXT_ACTIONS.md CHANGED Viewed

@@ -1,34 +1,33 @@
 # NEXT_ACTIONS.md — openclaw-cli-bridge-elvatis
-_Last updated: 2026-03-08_
+_Last updated: 2026-03-11_
+<!-- SECTION: summary -->
 ## Status Summary
 | Status  | Count |
 |---------|-------|
-| Done    | 8     |
+| Done    | 11    |
 | Ready   | 1     |
 | Blocked | 0     |
+<!-- /SECTION: summary -->
 ---
 ## ⚡ Ready — Work These Next
-### T-009: [medium] — Publish to npm + ClawHub
+### T-010: [medium] — Publish v0.2.25 to all platforms
-- **Goal:** Publish the next release to all distribution channels (GitHub, npm, ClawHub).
-- **Context:** All providers are validated end-to-end. 28 automated tests pass (unit + e2e proxy). The codebase is stable at v0.2.15. If changes were made since the last publish, bump the version first.
+- **Goal:** Publish v0.2.25 to GitHub, npm, and ClawHub.
+- **Context:** v0.2.25 built + 51/51 tests pass. Changes: staged model switching (session-safe /cli-*), sleep-resilient token refresh, stopTokenRefresh cleanup.
 - **What to do:**
-  1. Check if any code changes since v0.2.15 warrant a version bump
-  2. If bumping: update version in `package.json`, `openclaw.plugin.json`, `README.md`, `SKILL.md`, `STATUS.md` (see CONVENTIONS.md release checklist)
-  3. Run `npm run typecheck && npm test` — must pass
-  4. `git tag vX.Y.Z && git push origin main && git push origin vX.Y.Z`
-  5. `gh release create vX.Y.Z --title "..." --notes "..."`
-  6. `npm publish --access public`
-  7. ClawHub publish via rsync workaround (see CONVENTIONS.md)
-  8. Update all handoff docs (STATUS.md, DASHBOARD.md, LOG.md, NEXT_ACTIONS.md, README.md, SKILL.md)
-- **Files:** `package.json`, `openclaw.plugin.json`, `README.md`, `SKILL.md`, `.ai/handoff/STATUS.md`, `.ai/handoff/CONVENTIONS.md`
-- **Definition of done:** Package published on npm + ClawHub at matching version. GitHub release created. All docs updated.
+  1. `git add -u && git commit -m "feat(cli): staged switch + token refresh stability (v0.2.25)"`
+  2. `git tag v0.2.25 && git push origin main && git push origin v0.2.25`
+  3. `gh release create v0.2.25 --title "v0.2.25 — Session-safe model switching" --notes "..."`
+  4. `npm publish --access public`
+  5. ClawHub publish via rsync workaround (see CONVENTIONS.md)
+  6. Update STATUS.md platform table after publish
+- **Definition of done:** v0.2.25 live on GitHub + npm + ClawHub.
 ---
@@ -40,10 +39,10 @@ _No blocked tasks._
 ## ✅ Recently Completed
-| Task  | Title                                                        | Date       |
-|-------|--------------------------------------------------------------|------------|
-| T-008 | Validate proxy endpoints + vllm model calls end-to-end       | 2026-03-08 |
-| T-007 | Create GitHub repo and push initial code                     | 2026-03-07 |
-| T-006 | Implement Claude Code CLI request bridge                     | 2026-03-07 |
-| T-005 | Implement Gemini CLI request bridge                          | 2026-03-07 |
-| T-004 | Verify model call: test gpt-5.2 or gpt-5.3-codex responds   | 2026-03-07 |
+| Task  | Title                                                              | Date       |
+|-------|--------------------------------------------------------------------|------------|
+| T-011 | Session-safe staged model switching (/cli-apply, /cli-pending)     | 2026-03-11 |
+| T-009 | Stability: sleep-resilient token refresh + stopTokenRefresh cleanup | 2026-03-11 |
+| T-008 | Validate proxy endpoints + vllm model calls end-to-end            | 2026-03-08 |
+| T-007 | Create GitHub repo and push initial code                          | 2026-03-07 |
+| T-006 | Implement Claude Code CLI request bridge                          | 2026-03-07 |