@elvatis_com/openclaw-cli-bridge-elvatis 1.3.4 → 1.3.5

package/README.md

@@ -2,7 +2,7 @@
 
 > OpenClaw plugin that bridges locally installed AI CLIs (Codex, Gemini, Claude Code) as model providers — with slash commands for instant model switching, restore, health testing, and model listing.
 
-**Current version:** `1.3.4`
+**Current version:** `1.3.5`
 
 ---
 
@@ -81,6 +81,77 @@ All commands use gateway-level `commands.allowFrom` for authorization (`requireA
 
 ---
 
+### Phase 4 — Web Browser Providers (headless, no API key needed)
+
+Routes requests through real browser sessions on the provider's web UI. Requires a valid login session (free or paid tier). Uses persistent Chromium profiles — sessions survive gateway restarts.
+
+**Grok** (grok.com — SuperGrok subscription):
+
+| Model | Notes |
+|---|---|
+| `web-grok/grok-3` | Full model |
+| `web-grok/grok-3-fast` | Faster variant |
+| `web-grok/grok-3-mini` | Lightweight |
+| `web-grok/grok-3-mini-fast` | Fastest |
+
+| Command | What it does |
+|---|---|
+| `/grok-login` | Authenticate via X.com OAuth, save session to `~/.openclaw/grok-profile/` |
+| `/grok-status` | Show session validity + cookie expiry |
+| `/grok-logout` | Clear session |
+
+**Claude** (claude.ai):
+
+| Model | Notes |
+|---|---|
+| `web-claude/claude-sonnet` | Sonnet |
+| `web-claude/claude-opus` | Opus |
+| `web-claude/claude-haiku` | Haiku |
+
+| Command | What it does |
+|---|---|
+| `/claude-login` | Authenticate, save cookies to `~/.openclaw/claude-profile/` |
+| `/claude-status` | Show session validity + cookie expiry |
+| `/claude-logout` | Clear session |
+
+**Gemini** (gemini.google.com):
+
+| Model | Notes |
+|---|---|
+| `web-gemini/gemini-2-5-pro` | Gemini 2.5 Pro |
+| `web-gemini/gemini-2-5-flash` | Gemini 2.5 Flash |
+| `web-gemini/gemini-3-pro` | Gemini 3 Pro |
+| `web-gemini/gemini-3-flash` | Gemini 3 Flash |
+
+| Command | What it does |
+|---|---|
+| `/gemini-login` | Authenticate, save cookies to `~/.openclaw/gemini-profile/` |
+| `/gemini-status` | Show session validity + cookie expiry |
+| `/gemini-logout` | Clear session |
+
+**ChatGPT** (chatgpt.com):
+
+| Model | Notes |
+|---|---|
+| `web-chatgpt/gpt-4o` | GPT-4o |
+| `web-chatgpt/gpt-4o-mini` | GPT-4o Mini |
+| `web-chatgpt/gpt-o3` | o3 |
+| `web-chatgpt/gpt-o4-mini` | o4-mini |
+| `web-chatgpt/gpt-5` | GPT-5 |
+
+| Command | What it does |
+|---|---|
+| `/chatgpt-login` | Authenticate, save cookies to `~/.openclaw/chatgpt-profile/` |
+| `/chatgpt-status` | Show session validity + cookie expiry |
+| `/chatgpt-logout` | Clear session |
+
+**Session lifecycle:**
+- First use: run `/xxx-login` once (opens Chromium, authenticate in browser)
+- After gateway restart: sessions are **automatically restored** from saved profiles on startup (sequential, ~25s after start)
+- `/bridge-status` — shows all 4 providers at a glance with login state + expiry info
+
+---
+
 ## Requirements
 
 - [OpenClaw](https://openclaw.ai) gateway (tested with `2026.3.x`)
@@ -287,6 +358,11 @@ npm test            # vitest run (45 tests)
 
 ## Changelog
 
+### v1.3.5
+- **fix:** Startup session restore now runs only once per process lifetime — `_startupRestoreDone` module-level guard prevents re-running on every hot-reload (SIGUSR1), which was triggered every ~60s by the openclaw-control-ui dashboard poll
+- **root cause:** Gateway `reload.mode=hybrid` + dashboard status polling caused plugin to reinitialize every 60s → each reload spawned a new Gemini Chromium instance → RAM/CPU OOM loop
+- **behavior:** First load after gateway start: sequential profile restore runs once. All subsequent hot-reloads: skip restore, reuse existing in-memory contexts
+
 ### v1.3.4
 - **feat:** Safe sequential session restore on startup — if a saved profile exists, providers are reconnected automatically after gateway restart (one at a time, 3s delay between each, headless)
 - **fix:** No manual `/xxx-login` needed after reboot if profile is already saved

package/index.ts

@@ -233,6 +233,10 @@ async function scanCookieExpiry(ctx: import("playwright").BrowserContext): Promi
 let _cdpBrowser: import("playwright").Browser | null = null;
 let _cdpBrowserLaunchPromise: Promise<import("playwright").BrowserContext | null> | null = null;
 
+// Startup restore guard — module-level so it survives hot-reloads (SIGUSR1).
+// Set to true after first run; hot-reloads see true and skip the restore loop.
+let _startupRestoreDone = false;
+
 /**
  * Connect to the OpenClaw managed browser (CDP port 18800).
  * Singleton: reuses the same connection. Falls back to persistent Chromium for Grok only.
@@ -746,97 +750,102 @@ const plugin = {
     const codexAuthPath = cfg.codexAuthPath ?? DEFAULT_CODEX_AUTH_PATH;
     const grokSessionPath = cfg.grokSessionPath ?? DEFAULT_SESSION_PATH;
 
-    // ── Safe session restore on startup (sequential, profile-gated, non-blocking) ──
-    // Restores provider sessions from saved persistent profiles — but ONLY if the
-    // profile directory already exists (i.e. user has logged in before).
-    // Providers are launched one at a time with a delay to avoid OOM.
-    void (async () => {
-      await new Promise(r => setTimeout(r, 5000)); // wait for proxy + gateway to settle
-      const { chromium } = await import("playwright");
-      const { existsSync } = await import("node:fs");
-
-      const profileProviders: Array<{
-        name: string;
-        profileDir: string;
-        cookieFile: string;
-        verifySelector: string;
-        homeUrl: string;
-        setCtx: (c: BrowserContext) => void;
-        getCtx: () => BrowserContext | null;
-      }> = [
-        {
-          name: "grok",
-          profileDir: GROK_PROFILE_DIR,
-          cookieFile: join(homedir(), ".openclaw", "grok-session.json"),
-          verifySelector: "textarea",
-          homeUrl: "https://grok.com",
-          getCtx: () => grokContext,
-          setCtx: (c) => { grokContext = c; },
-        },
-        {
-          name: "claude",
-          profileDir: join(homedir(), ".openclaw", "claude-profile"),
-          cookieFile: join(homedir(), ".openclaw", "claude-cookie-expiry.json"),
-          verifySelector: ".ProseMirror",
-          homeUrl: "https://claude.ai/new",
-          getCtx: () => claudeContext,
-          setCtx: (c) => { claudeContext = c; },
-        },
-        {
-          name: "gemini",
-          profileDir: join(homedir(), ".openclaw", "gemini-profile"),
-          cookieFile: join(homedir(), ".openclaw", "gemini-cookie-expiry.json"),
-          verifySelector: ".ql-editor",
-          homeUrl: "https://gemini.google.com/app",
-          getCtx: () => geminiContext,
-          setCtx: (c) => { geminiContext = c; },
-        },
-        {
-          name: "chatgpt",
-          profileDir: join(homedir(), ".openclaw", "chatgpt-profile"),
-          cookieFile: join(homedir(), ".openclaw", "chatgpt-cookie-expiry.json"),
-          verifySelector: "#prompt-textarea",
-          homeUrl: "https://chatgpt.com",
-          getCtx: () => chatgptContext,
-          setCtx: (c) => { chatgptContext = c; },
-        },
-      ];
+    // ── Session restore: only on first plugin load (not on hot-reloads) ──────
+    // The gateway polls every ~60s via openclaw status, which triggers a hot-reload
+    // (SIGUSR1 + hybrid mode). Module-level contexts (grokContext etc.) survive
+    // hot-reloads because Node keeps the module in memory — so we only need to
+    // restore once, on the very first load (when all contexts are null).
+    //
+    // Guard: _startupRestoreDone is module-level and persists across hot-reloads.
+    if (!_startupRestoreDone) {
+      _startupRestoreDone = true;
+      void (async () => {
+        await new Promise(r => setTimeout(r, 5000)); // wait for proxy + gateway to settle
+        const { chromium } = await import("playwright");
+        const { existsSync } = await import("node:fs");
+
+        const profileProviders: Array<{
+          name: string;
+          profileDir: string;
+          cookieFile: string;
+          verifySelector: string;
+          homeUrl: string;
+          setCtx: (c: BrowserContext) => void;
+          getCtx: () => BrowserContext | null;
+        }> = [
+          {
+            name: "grok",
+            profileDir: GROK_PROFILE_DIR,
+            cookieFile: join(homedir(), ".openclaw", "grok-session.json"),
+            verifySelector: "textarea",
+            homeUrl: "https://grok.com",
+            getCtx: () => grokContext,
+            setCtx: (c) => { grokContext = c; },
+          },
+          {
+            name: "claude",
+            profileDir: join(homedir(), ".openclaw", "claude-profile"),
+            cookieFile: join(homedir(), ".openclaw", "claude-cookie-expiry.json"),
+            verifySelector: ".ProseMirror",
+            homeUrl: "https://claude.ai/new",
+            getCtx: () => claudeContext,
+            setCtx: (c) => { claudeContext = c; },
+          },
+          {
+            name: "gemini",
+            profileDir: join(homedir(), ".openclaw", "gemini-profile"),
+            cookieFile: join(homedir(), ".openclaw", "gemini-cookie-expiry.json"),
+            verifySelector: ".ql-editor",
+            homeUrl: "https://gemini.google.com/app",
+            getCtx: () => geminiContext,
+            setCtx: (c) => { geminiContext = c; },
+          },
+          {
+            name: "chatgpt",
+            profileDir: join(homedir(), ".openclaw", "chatgpt-profile"),
+            cookieFile: join(homedir(), ".openclaw", "chatgpt-cookie-expiry.json"),
+            verifySelector: "#prompt-textarea",
+            homeUrl: "https://chatgpt.com",
+            getCtx: () => chatgptContext,
+            setCtx: (c) => { chatgptContext = c; },
+          },
+        ];
 
-      for (const p of profileProviders) {
-        // Skip if no saved profile/session exists
-        if (!existsSync(p.profileDir) && !existsSync(p.cookieFile)) {
-          api.logger.info(`[cli-bridge:${p.name}] no saved profile — skipping startup restore`);
-          continue;
-        }
-        if (p.getCtx()) continue; // already connected
+        for (const p of profileProviders) {
+          if (!existsSync(p.profileDir) && !existsSync(p.cookieFile)) {
+            api.logger.info(`[cli-bridge:${p.name}] no saved profile — skipping startup restore`);
+            continue;
+          }
+          if (p.getCtx()) continue; // already connected
 
-        try {
-          api.logger.info(`[cli-bridge:${p.name}] restoring session from profile…`);
-          const ctx = await chromium.launchPersistentContext(p.profileDir, {
-            headless: true,
-            args: ["--no-sandbox", "--disable-setuid-sandbox"],
-          });
-          const page = await ctx.newPage();
-          await page.goto(p.homeUrl, { waitUntil: "domcontentloaded", timeout: 20_000 });
-          await new Promise(r => setTimeout(r, 3000));
-          const ok = await page.locator(p.verifySelector).isVisible().catch(() => false);
-          await page.close().catch(() => {});
-          if (ok) {
-            p.setCtx(ctx);
-            ctx.on("close", () => { p.setCtx(null as unknown as BrowserContext); });
-            api.logger.info(`[cli-bridge:${p.name}] session restored from profile ✅`);
-          } else {
-            await ctx.close().catch(() => {});
-            api.logger.info(`[cli-bridge:${p.name}] profile exists but not logged in — skipping`);
+          try {
+            api.logger.info(`[cli-bridge:${p.name}] restoring session from profile…`);
+            const ctx = await chromium.launchPersistentContext(p.profileDir, {
+              headless: true,
+              args: ["--no-sandbox", "--disable-setuid-sandbox"],
+            });
+            const page = await ctx.newPage();
+            await page.goto(p.homeUrl, { waitUntil: "domcontentloaded", timeout: 20_000 });
+            await new Promise(r => setTimeout(r, 3000));
+            const ok = await page.locator(p.verifySelector).isVisible().catch(() => false);
+            await page.close().catch(() => {});
+            if (ok) {
+              p.setCtx(ctx);
+              ctx.on("close", () => { p.setCtx(null as unknown as BrowserContext); });
+              api.logger.info(`[cli-bridge:${p.name}] session restored from profile ✅`);
+            } else {
+              await ctx.close().catch(() => {});
+              api.logger.info(`[cli-bridge:${p.name}] profile exists but not logged in — needs /xxx-login`);
+            }
+          } catch (err) {
+            api.logger.warn(`[cli-bridge:${p.name}] startup restore failed: ${(err as Error).message}`);
           }
-        } catch (err) {
-          api.logger.warn(`[cli-bridge:${p.name}] startup restore failed: ${(err as Error).message}`);
-        }
 
-        // Sequential delay — avoid spawning all 4 Chromium instances at once
-        await new Promise(r => setTimeout(r, 3000));
-      }
-    })();
+          // Sequential — never spawn all 4 Chromium instances at once
+          await new Promise(r => setTimeout(r, 3000));
+        }
+      })();
+    }
 
     // ── Phase 1: openai-codex auth bridge ─────────────────────────────────────
     if (enableCodex) {

package/openclaw.plugin.json

@@ -1,7 +1,7 @@
 {
   "id": "openclaw-cli-bridge-elvatis",
   "name": "OpenClaw CLI Bridge",
-  "version": "1.3.4",
+  "version": "1.3.5",
   "description": "Phase 1: openai-codex auth bridge. Phase 2: local HTTP proxy routing model calls through gemini/claude CLIs (vllm provider).",
   "providers": [
     "openai-codex"

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@elvatis_com/openclaw-cli-bridge-elvatis",
-  "version": "1.3.4",
+  "version": "1.3.5",
   "description": "Bridges gemini, claude, and codex CLI tools as OpenClaw model providers. Reads existing CLI auth without re-login.",
   "type": "module",
   "openclaw": {