@elvatis_com/openclaw-cli-bridge-elvatis 1.6.5 → 1.7.1

package/README.md

@@ -2,7 +2,7 @@
 
 > OpenClaw plugin that bridges locally installed AI CLIs (Codex, Gemini, Claude Code) as model providers — with slash commands for instant model switching, restore, health testing, and model listing.
 
-**Current version:** `1.6.5`
+**Current version:** `1.7.0`
 
 ---
 
@@ -362,6 +362,12 @@ npm test            # vitest run (83 tests)
 
 ## Changelog
 
+### v1.7.0
+- **fix:** Startup restore timeout 3s → 6s with one retry, eliminates false "not logged in" for slow-loading pages (Grok)
+- **feat:** Auto-relogin on startup — if cookies truly expired, attempt headless relogin before sending WhatsApp alert
+- **feat:** Keep-alive (20h) now verifies session after touch and attempts auto-relogin if expired
+- **feat:** Tests (vitest) — proxy tool rejection, models endpoint, auth, cookie expiry formatters
+
 ### v1.6.5
 - **feat:** Automatic session keep-alive — every 20h, active browser sessions are silently refreshed by navigating to the provider home page. Prevents cookie expiry on providers like ChatGPT (7-day sessions) without storing credentials.
 

package/SKILL.md

@@ -64,4 +64,4 @@ On gateway restart, if any session has expired, a **WhatsApp alert** is sent aut
 
 See `README.md` for full configuration reference and architecture diagram.
 
-**Version:** 1.6.5
+**Version:** 1.7.0

package/index.ts

@@ -56,6 +56,12 @@ import {
   createContextFromSession,
   DEFAULT_SESSION_PATH,
 } from "./src/grok-session.js";
+import {
+  formatExpiryInfo,
+  formatGeminiExpiry,
+  formatClaudeExpiry,
+  formatChatGPTExpiry,
+} from "./src/expiry-helpers.js";
 import type { BrowserContext, Browser } from "playwright";
 
 // ──────────────────────────────────────────────────────────────────────────────
@@ -120,14 +126,7 @@ function saveGeminiExpiry(info: GeminiExpiryInfo): void {
 function loadGeminiExpiry(): GeminiExpiryInfo | null {
   try { return JSON.parse(readFileSync(GEMINI_EXPIRY_FILE, "utf-8")) as GeminiExpiryInfo; } catch { return null; }
 }
-function formatGeminiExpiry(info: GeminiExpiryInfo): string {
-  const daysLeft = Math.floor((info.expiresAt - Date.now()) / 86_400_000);
-  const dateStr = new Date(info.expiresAt).toISOString().substring(0, 10);
-  if (daysLeft < 0)   return `⚠️ EXPIRED (${dateStr}) — run /gemini-login`;
-  if (daysLeft <= 7)  return `🚨 expires in ${daysLeft}d (${dateStr}) — run /gemini-login NOW`;
-  if (daysLeft <= 14) return `⚠️ expires in ${daysLeft}d (${dateStr}) — run /gemini-login soon`;
-  return `✅ valid for ${daysLeft} more days (expires ${dateStr})`;
-}
+// formatGeminiExpiry imported from ./src/expiry-helpers.js
 async function scanGeminiCookieExpiry(ctx: BrowserContext): Promise<GeminiExpiryInfo | null> {
   try {
     const cookies = await ctx.cookies(["https://gemini.google.com", "https://accounts.google.com"]);
@@ -146,14 +145,7 @@ function saveClaudeExpiry(info: ClaudeExpiryInfo): void {
 function loadClaudeExpiry(): ClaudeExpiryInfo | null {
   try { return JSON.parse(readFileSync(CLAUDE_EXPIRY_FILE, "utf-8")) as ClaudeExpiryInfo; } catch { return null; }
 }
-function formatClaudeExpiry(info: ClaudeExpiryInfo): string {
-  const daysLeft = Math.floor((info.expiresAt - Date.now()) / 86_400_000);
-  const dateStr = new Date(info.expiresAt).toISOString().substring(0, 10);
-  if (daysLeft < 0)   return `⚠️ EXPIRED (${dateStr}) — run /claude-login`;
-  if (daysLeft <= 7)  return `🚨 expires in ${daysLeft}d (${dateStr}) — run /claude-login NOW`;
-  if (daysLeft <= 14) return `⚠️ expires in ${daysLeft}d (${dateStr}) — run /claude-login soon`;
-  return `✅ valid for ${daysLeft} more days (expires ${dateStr})`;
-}
+// formatClaudeExpiry imported from ./src/expiry-helpers.js
 async function scanClaudeCookieExpiry(ctx: BrowserContext): Promise<ClaudeExpiryInfo | null> {
   try {
     const cookies = await ctx.cookies(["https://claude.ai"]);
@@ -173,14 +165,7 @@ function saveChatGPTExpiry(info: ChatGPTExpiryInfo): void {
 function loadChatGPTExpiry(): ChatGPTExpiryInfo | null {
   try { return JSON.parse(readFileSync(CHATGPT_EXPIRY_FILE, "utf-8")) as ChatGPTExpiryInfo; } catch { return null; }
 }
-function formatChatGPTExpiry(info: ChatGPTExpiryInfo): string {
-  const daysLeft = Math.floor((info.expiresAt - Date.now()) / 86_400_000);
-  const dateStr = new Date(info.expiresAt).toISOString().substring(0, 10);
-  if (daysLeft < 0)   return `⚠️ EXPIRED (${dateStr}) — run /chatgpt-login`;
-  if (daysLeft <= 7)  return `🚨 expires in ${daysLeft}d (${dateStr}) — run /chatgpt-login NOW`;
-  if (daysLeft <= 14) return `⚠️ expires in ${daysLeft}d (${dateStr}) — run /chatgpt-login soon`;
-  return `✅ valid for ${daysLeft} more days (expires ${dateStr})`;
-}
+// formatChatGPTExpiry imported from ./src/expiry-helpers.js
 async function scanChatGPTCookieExpiry(ctx: BrowserContext): Promise<ChatGPTExpiryInfo | null> {
   try {
     const cookies = await ctx.cookies(["https://chatgpt.com", "https://auth0.openai.com"]);
@@ -216,15 +201,7 @@ function loadGrokExpiry(): GrokExpiryInfo | null {
   } catch { return null; }
 }
 
-/** Returns human-readable expiry summary e.g. "179 days (2026-09-07)" */
-function formatExpiryInfo(info: GrokExpiryInfo): string {
-  const daysLeft = Math.ceil((info.expiresAt - Date.now()) / 86_400_000);
-  const dateStr = new Date(info.expiresAt).toISOString().split("T")[0];
-  if (daysLeft <= 0) return `⚠️ EXPIRED (was ${dateStr})`;
-  if (daysLeft <= 7) return `🚨 expires in ${daysLeft}d (${dateStr}) — run /grok-login NOW`;
-  if (daysLeft <= 14) return `⚠️ expires in ${daysLeft}d (${dateStr}) — run /grok-login soon`;
-  return `✅ valid for ${daysLeft} more days (expires ${dateStr})`;
-}
+// formatExpiryInfo imported from ./src/expiry-helpers.js
 
 /** Scan context cookies and return earliest auth cookie expiry */
 async function scanCookieExpiry(ctx: import("playwright").BrowserContext): Promise<GrokExpiryInfo | null> {
@@ -438,21 +415,28 @@ async function getOrLaunchChatGPTContext(
   return _chatgptLaunchPromise;
 }
 
-/** Session keep-alive — navigate to provider home pages to refresh cookies */
-async function sessionKeepAlive(log: (msg: string) => void): Promise<void> {
+/** Session keep-alive — navigate to provider home pages to refresh cookies.
+ *  After each touch, verifies the session is still valid. If expired, attempts
+ *  a full relogin. Returns provider login commands that need manual attention. */
+async function sessionKeepAlive(log: (msg: string) => void): Promise<string[]> {
   const providers: Array<{
     name: string;
     homeUrl: string;
+    verifySelector: string;
+    loginCmd: string;
     getCtx: () => BrowserContext | null;
+    setCtx: (c: BrowserContext | null) => void;
     scanExpiry: (ctx: BrowserContext) => Promise<{ expiresAt: number; loginAt: number; cookieName: string } | null>;
     saveExpiry: (info: { expiresAt: number; loginAt: number; cookieName: string }) => void;
   }> = [
-    { name: "grok", homeUrl: "https://grok.com", getCtx: () => grokContext, scanExpiry: scanCookieExpiry, saveExpiry: saveGrokExpiry },
-    { name: "gemini", homeUrl: "https://gemini.google.com/app", getCtx: () => geminiContext, scanExpiry: scanGeminiCookieExpiry, saveExpiry: saveGeminiExpiry },
-    { name: "claude-web", homeUrl: "https://claude.ai/new", getCtx: () => claudeWebContext, scanExpiry: scanClaudeCookieExpiry, saveExpiry: saveClaudeExpiry },
-    { name: "chatgpt", homeUrl: "https://chatgpt.com", getCtx: () => chatgptContext, scanExpiry: scanChatGPTCookieExpiry, saveExpiry: saveChatGPTExpiry },
+    { name: "grok", homeUrl: "https://grok.com", verifySelector: "textarea", loginCmd: "/grok-login", getCtx: () => grokContext, setCtx: (c) => { grokContext = c; }, scanExpiry: scanCookieExpiry, saveExpiry: saveGrokExpiry },
+    { name: "gemini", homeUrl: "https://gemini.google.com/app", verifySelector: ".ql-editor", loginCmd: "/gemini-login", getCtx: () => geminiContext, setCtx: (c) => { geminiContext = c; }, scanExpiry: scanGeminiCookieExpiry, saveExpiry: saveGeminiExpiry },
+    { name: "claude-web", homeUrl: "https://claude.ai/new", verifySelector: ".ProseMirror", loginCmd: "/claude-login", getCtx: () => claudeWebContext, setCtx: (c) => { claudeWebContext = c; }, scanExpiry: scanClaudeCookieExpiry, saveExpiry: saveClaudeExpiry },
+    { name: "chatgpt", homeUrl: "https://chatgpt.com", verifySelector: "#prompt-textarea", loginCmd: "/chatgpt-login", getCtx: () => chatgptContext, setCtx: (c) => { chatgptContext = c; }, scanExpiry: scanChatGPTCookieExpiry, saveExpiry: saveChatGPTExpiry },
   ];
 
+  const needsLogin: string[] = [];
+
   for (const p of providers) {
     const ctx = p.getCtx();
     if (!ctx) continue;
@@ -460,16 +444,49 @@ async function sessionKeepAlive(log: (msg: string) => void): Promise<void> {
       const page = await ctx.newPage();
       await page.goto(p.homeUrl, { waitUntil: "domcontentloaded", timeout: 15_000 });
       await new Promise(r => setTimeout(r, 4000));
+
+      // Verify session is still valid after touch
+      let valid = await page.locator(p.verifySelector).isVisible().catch(() => false);
+      if (!valid) {
+        // Retry once
+        await new Promise(r => setTimeout(r, 3000));
+        valid = await page.locator(p.verifySelector).isVisible().catch(() => false);
+      }
       await page.close();
-      const expiry = await p.scanExpiry(ctx);
-      if (expiry) p.saveExpiry(expiry);
-      log(`[cli-bridge:${p.name}] session keep-alive touch ✅`);
+
+      if (valid) {
+        const expiry = await p.scanExpiry(ctx);
+        if (expiry) p.saveExpiry(expiry);
+        log(`[cli-bridge:${p.name}] session keep-alive touch ✅`);
+      } else {
+        // Session expired — attempt relogin in same persistent context
+        log(`[cli-bridge:${p.name}] session expired after keep-alive — attempting auto-relogin…`);
+        const reloginPage = await ctx.newPage();
+        await reloginPage.goto(p.homeUrl, { waitUntil: "domcontentloaded", timeout: 20_000 });
+        await new Promise(r => setTimeout(r, 6000));
+        let reloginOk = await reloginPage.locator(p.verifySelector).isVisible().catch(() => false);
+        if (!reloginOk) {
+          await new Promise(r => setTimeout(r, 3000));
+          reloginOk = await reloginPage.locator(p.verifySelector).isVisible().catch(() => false);
+        }
+        await reloginPage.close().catch(() => {});
+        if (reloginOk) {
+          const expiry = await p.scanExpiry(ctx);
+          if (expiry) p.saveExpiry(expiry);
+          log(`[cli-bridge:${p.name}] auto-relogin successful ✅`);
+        } else {
+          log(`[cli-bridge:${p.name}] auto-relogin failed, needs manual ${p.loginCmd}`);
+          needsLogin.push(p.loginCmd);
+        }
+      }
     } catch (err) {
       log(`[cli-bridge:${p.name}] session keep-alive failed: ${(err as Error).message}`);
     }
     // Sequential — avoid spawning multiple pages at once
     await new Promise(r => setTimeout(r, 2000));
   }
+
+  return needsLogin;
 }
 
 /** Clean up all browser resources — call on plugin teardown */
@@ -895,7 +912,7 @@ function proxyTestRequest(
 const plugin = {
   id: "openclaw-cli-bridge-elvatis",
   name: "OpenClaw CLI Bridge",
-  version: "1.6.5",
+  version: "1.7.0",
   description:
     "Phase 1: openai-codex auth bridge. " +
     "Phase 2: HTTP proxy for gemini/claude CLIs. " +
@@ -996,17 +1013,47 @@ const plugin = {
             });
             const page = await ctx.newPage();
             await page.goto(p.homeUrl, { waitUntil: "domcontentloaded", timeout: 20_000 });
-            await new Promise(r => setTimeout(r, 3000));
-            const ok = await page.locator(p.verifySelector).isVisible().catch(() => false);
+            await new Promise(r => setTimeout(r, 6000));
+            let ok = await page.locator(p.verifySelector).isVisible().catch(() => false);
+            // Retry once — some pages (Grok) load slowly
+            if (!ok) {
+              api.logger.info(`[cli-bridge:${p.name}] verifySelector not visible after 6s, retrying (3s)…`);
+              await new Promise(r => setTimeout(r, 3000));
+              ok = await page.locator(p.verifySelector).isVisible().catch(() => false);
+            }
             await page.close().catch(() => {});
             if (ok) {
               p.setCtx(ctx);
               ctx.on("close", () => { p.setCtx(null as unknown as BrowserContext); });
               api.logger.info(`[cli-bridge:${p.name}] session restored from profile ✅`);
             } else {
-              await ctx.close().catch(() => {});
-              api.logger.info(`[cli-bridge:${p.name}] profile exists but not logged in — needs ${p.loginCmd}`);
-              needsLogin.push(p.loginCmd);
+              // Session may be truly expired or just slow — attempt auto-relogin:
+              // re-navigate in the same context and check once more
+              api.logger.info(`[cli-bridge:${p.name}] not logged in after restore — attempting auto-relogin…`);
+              try {
+                const reloginPage = await ctx.newPage();
+                await reloginPage.goto(p.homeUrl, { waitUntil: "domcontentloaded", timeout: 20_000 });
+                await new Promise(r => setTimeout(r, 6000));
+                let reloginOk = await reloginPage.locator(p.verifySelector).isVisible().catch(() => false);
+                if (!reloginOk) {
+                  await new Promise(r => setTimeout(r, 3000));
+                  reloginOk = await reloginPage.locator(p.verifySelector).isVisible().catch(() => false);
+                }
+                await reloginPage.close().catch(() => {});
+                if (reloginOk) {
+                  p.setCtx(ctx);
+                  ctx.on("close", () => { p.setCtx(null as unknown as BrowserContext); });
+                  api.logger.info(`[cli-bridge:${p.name}] session restored (slow load) ✅`);
+                } else {
+                  await ctx.close().catch(() => {});
+                  api.logger.info(`[cli-bridge:${p.name}] auto-relogin failed, needs manual ${p.loginCmd}`);
+                  needsLogin.push(p.loginCmd);
+                }
+              } catch (reloginErr) {
+                await ctx.close().catch(() => {});
+                api.logger.warn(`[cli-bridge:${p.name}] auto-relogin error: ${(reloginErr as Error).message}`);
+                needsLogin.push(p.loginCmd);
+              }
             }
           } catch (err) {
             api.logger.warn(`[cli-bridge:${p.name}] startup restore failed: ${(err as Error).message}`);
@@ -1036,7 +1083,22 @@ const plugin = {
       // Start session keep-alive interval (every 20h)
       if (!_keepAliveInterval) {
         _keepAliveInterval = setInterval(() => {
-          void sessionKeepAlive((msg) => api.logger.info(msg));
+          void (async () => {
+            const failed = await sessionKeepAlive((msg) => api.logger.info(msg));
+            if (failed.length > 0) {
+              const cmds = failed.map(cmd => `• ${cmd}`).join("\n");
+              const msg = `🔐 *cli-bridge keep-alive:* Session expired for ${failed.length} provider(s). Run to re-login:\n\n${cmds}`;
+              try {
+                await api.runtime.system.runCommandWithTimeout(
+                  ["openclaw", "message", "send", "--channel", "whatsapp", "--to", "+4915170113694", "--message", msg],
+                  { timeoutMs: 10_000 }
+                );
+                api.logger.info(`[cli-bridge] keep-alive: sent re-login notification for: ${failed.join(", ")}`);
+              } catch (err) {
+                api.logger.warn(`[cli-bridge] keep-alive: failed to send notification: ${(err as Error).message}`);
+              }
+            }
+          })();
         }, 72_000_000);
       }
     }
@@ -1178,6 +1240,13 @@ const plugin = {
               }
               return chatgptContext;
             },
+            version: plugin.version,
+            getExpiryInfo: () => ({
+              grok:    (() => { const e = loadGrokExpiry();    return e ? formatExpiryInfo(e)    : null; })(),
+              gemini:  (() => { const e = loadGeminiExpiry();  return e ? formatGeminiExpiry(e)  : null; })(),
+              claude:  (() => { const e = loadClaudeExpiry();  return e ? formatClaudeExpiry(e)  : null; })(),
+              chatgpt: (() => { const e = loadChatGPTExpiry(); return e ? formatChatGPTExpiry(e) : null; })(),
+            }),
           });
           proxyServer = server;
           api.logger.info(

package/openclaw.plugin.json

@@ -1,7 +1,7 @@
 {
   "id": "openclaw-cli-bridge-elvatis",
   "name": "OpenClaw CLI Bridge",
-  "version": "1.6.5",
+  "version": "1.7.1",
   "license": "MIT",
   "description": "Phase 1: openai-codex auth bridge. Phase 2: local HTTP proxy routing model calls through gemini/claude CLIs (vllm provider).",
   "providers": [

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@elvatis_com/openclaw-cli-bridge-elvatis",
-  "version": "1.6.5",
+  "version": "1.7.1",
   "description": "Bridges gemini, claude, and codex CLI tools as OpenClaw model providers. Reads existing CLI auth without re-login.",
   "type": "module",
   "openclaw": {

package/src/expiry-helpers.ts

@@ -0,0 +1,52 @@
+/**
+ * expiry-helpers.ts
+ *
+ * Pure functions for formatting cookie expiry info.
+ * Extracted from index.ts for testability.
+ */
+
+export interface ExpiryInfo {
+  expiresAt: number;   // epoch ms
+  loginAt: number;     // epoch ms
+  cookieName: string;
+}
+
+/** Grok cookie expiry — uses Math.ceil for daysLeft */
+export function formatExpiryInfo(info: ExpiryInfo): string {
+  const daysLeft = Math.ceil((info.expiresAt - Date.now()) / 86_400_000);
+  const dateStr = new Date(info.expiresAt).toISOString().split("T")[0];
+  if (daysLeft <= 0) return `⚠️ EXPIRED (was ${dateStr})`;
+  if (daysLeft <= 7) return `🚨 expires in ${daysLeft}d (${dateStr}) — run /grok-login NOW`;
+  if (daysLeft <= 14) return `⚠️ expires in ${daysLeft}d (${dateStr}) — run /grok-login soon`;
+  return `✅ valid for ${daysLeft} more days (expires ${dateStr})`;
+}
+
+/** Gemini cookie expiry — uses Math.floor for daysLeft */
+export function formatGeminiExpiry(info: ExpiryInfo): string {
+  const daysLeft = Math.floor((info.expiresAt - Date.now()) / 86_400_000);
+  const dateStr = new Date(info.expiresAt).toISOString().substring(0, 10);
+  if (daysLeft < 0)   return `⚠️ EXPIRED (${dateStr}) — run /gemini-login`;
+  if (daysLeft <= 7)  return `🚨 expires in ${daysLeft}d (${dateStr}) — run /gemini-login NOW`;
+  if (daysLeft <= 14) return `⚠️ expires in ${daysLeft}d (${dateStr}) — run /gemini-login soon`;
+  return `✅ valid for ${daysLeft} more days (expires ${dateStr})`;
+}
+
+/** Claude cookie expiry — uses Math.floor for daysLeft */
+export function formatClaudeExpiry(info: ExpiryInfo): string {
+  const daysLeft = Math.floor((info.expiresAt - Date.now()) / 86_400_000);
+  const dateStr = new Date(info.expiresAt).toISOString().substring(0, 10);
+  if (daysLeft < 0)   return `⚠️ EXPIRED (${dateStr}) — run /claude-login`;
+  if (daysLeft <= 7)  return `🚨 expires in ${daysLeft}d (${dateStr}) — run /claude-login NOW`;
+  if (daysLeft <= 14) return `⚠️ expires in ${daysLeft}d (${dateStr}) — run /claude-login soon`;
+  return `✅ valid for ${daysLeft} more days (expires ${dateStr})`;
+}
+
+/** ChatGPT cookie expiry — uses Math.floor for daysLeft */
+export function formatChatGPTExpiry(info: ExpiryInfo): string {
+  const daysLeft = Math.floor((info.expiresAt - Date.now()) / 86_400_000);
+  const dateStr = new Date(info.expiresAt).toISOString().substring(0, 10);
+  if (daysLeft < 0)   return `⚠️ EXPIRED (${dateStr}) — run /chatgpt-login`;
+  if (daysLeft <= 7)  return `🚨 expires in ${daysLeft}d (${dateStr}) — run /chatgpt-login NOW`;
+  if (daysLeft <= 14) return `⚠️ expires in ${daysLeft}d (${dateStr}) — run /chatgpt-login soon`;
+  return `✅ valid for ${daysLeft} more days (expires ${dateStr})`;
+}

package/src/proxy-server.ts

@@ -60,6 +60,15 @@ export interface ProxyServerOptions {
   _chatgptComplete?: typeof chatgptComplete;
   /** Override for testing — replaces chatgptCompleteStream */
   _chatgptCompleteStream?: typeof chatgptCompleteStream;
+  /** Returns human-readable expiry string for each web provider (null = no login yet) */
+  getExpiryInfo?: () => {
+    grok: string | null;
+    gemini: string | null;
+    claude: string | null;
+    chatgpt: string | null;
+  };
+  /** Plugin version string for the status page */
+  version?: string;
 }
 
 /** Available CLI bridge models for GET /v1/models */
@@ -156,6 +165,111 @@ async function handleRequest(
     return;
   }
 
+  // Browser status page — human-readable HTML dashboard
+  if ((url === "/status" || url === "/") && req.method === "GET") {
+    const expiry = opts.getExpiryInfo?.() ?? { grok: null, gemini: null, claude: null, chatgpt: null };
+    const version = opts.version ?? "?";
+
+    const providers = [
+      { name: "Grok",     icon: "𝕏",  expiry: expiry.grok,    loginCmd: "/grok-login",    ctx: opts.getGrokContext?.() ?? null },
+      { name: "Gemini",   icon: "✦",  expiry: expiry.gemini,  loginCmd: "/gemini-login",  ctx: opts.getGeminiContext?.() ?? null },
+      { name: "Claude",   icon: "◆",  expiry: expiry.claude,  loginCmd: "/claude-login",  ctx: opts.getClaudeContext?.() ?? null },
+      { name: "ChatGPT",  icon: "◉",  expiry: expiry.chatgpt, loginCmd: "/chatgpt-login", ctx: opts.getChatGPTContext?.() ?? null },
+    ];
+
+    function statusBadge(p: typeof providers[0]): { label: string; color: string; dot: string } {
+      if (p.ctx !== null) return { label: "Connected", color: "#22c55e", dot: "🟢" };
+      if (!p.expiry) return { label: "Never logged in", color: "#6b7280", dot: "⚪" };
+      if (p.expiry.startsWith("⚠️ EXPIRED")) return { label: "Expired", color: "#ef4444", dot: "🔴" };
+      if (p.expiry.startsWith("🚨")) return { label: "Expiring soon", color: "#f59e0b", dot: "🟡" };
+      return { label: "Logged in", color: "#3b82f6", dot: "🔵" };
+    }
+
+    const rows = providers.map(p => {
+      const badge = statusBadge(p);
+      const expiryText = p.expiry
+        ? p.expiry.replace(/[⚠️🚨✅🕐]/gu, "").trim()
+        : `Not logged in — run <code>${p.loginCmd}</code>`;
+      return `
+        <tr>
+          <td style="padding:12px 16px;font-weight:600;font-size:15px">${p.icon} ${p.name}</td>
+          <td style="padding:12px 16px">
+            <span style="background:${badge.color}22;color:${badge.color};border:1px solid ${badge.color}44;
+                         border-radius:6px;padding:3px 10px;font-size:13px;font-weight:600">
+              ${badge.dot} ${badge.label}
+            </span>
+          </td>
+          <td style="padding:12px 16px;color:#9ca3af;font-size:13px">${expiryText}</td>
+          <td style="padding:12px 16px;color:#6b7280;font-size:12px;font-family:monospace">${p.loginCmd}</td>
+        </tr>`;
+    }).join("");
+
+    const cliModels = CLI_MODELS.filter(m => m.id.startsWith("cli-"));
+    const webModels = CLI_MODELS.filter(m => m.id.startsWith("web-"));
+    const modelList = (models: typeof CLI_MODELS) =>
+      models.map(m => `<li style="margin:2px 0;font-size:13px;color:#d1d5db"><code style="color:#93c5fd">${m.id}</code></li>`).join("");
+
+    const html = `<!DOCTYPE html>
+<html lang="en">
+<head>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+  <title>CLI Bridge Status</title>
+  <meta http-equiv="refresh" content="30">
+  <style>
+    * { box-sizing: border-box; margin: 0; padding: 0; }
+    body { background: #0f1117; color: #e5e7eb; font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', sans-serif; min-height: 100vh; padding: 32px 24px; }
+    h1 { font-size: 22px; font-weight: 700; color: #f9fafb; margin-bottom: 4px; }
+    .subtitle { color: #6b7280; font-size: 13px; margin-bottom: 28px; }
+    .card { background: #1a1d27; border: 1px solid #2d3148; border-radius: 12px; overflow: hidden; margin-bottom: 24px; }
+    .card-header { padding: 14px 16px; border-bottom: 1px solid #2d3148; font-size: 12px; font-weight: 600; color: #6b7280; text-transform: uppercase; letter-spacing: 0.05em; }
+    table { width: 100%; border-collapse: collapse; }
+    tr:not(:last-child) td { border-bottom: 1px solid #1f2335; }
+    .models { display: grid; grid-template-columns: 1fr 1fr; gap: 16px; }
+    ul { list-style: none; padding: 12px 16px; }
+    .footer { color: #374151; font-size: 12px; text-align: center; margin-top: 16px; }
+    code { background: #1e2130; padding: 1px 5px; border-radius: 4px; }
+  </style>
+</head>
+<body>
+  <h1>🌉 CLI Bridge</h1>
+  <p class="subtitle">v${version} &nbsp;·&nbsp; Port ${opts.port} &nbsp;·&nbsp; Auto-refreshes every 30s</p>
+
+  <div class="card">
+    <div class="card-header">Web Session Providers</div>
+    <table>
+      <thead>
+        <tr style="background:#13151f">
+          <th style="padding:10px 16px;text-align:left;font-size:12px;color:#4b5563;font-weight:600">Provider</th>
+          <th style="padding:10px 16px;text-align:left;font-size:12px;color:#4b5563;font-weight:600">Status</th>
+          <th style="padding:10px 16px;text-align:left;font-size:12px;color:#4b5563;font-weight:600">Session</th>
+          <th style="padding:10px 16px;text-align:left;font-size:12px;color:#4b5563;font-weight:600">Login</th>
+        </tr>
+      </thead>
+      <tbody>${rows}</tbody>
+    </table>
+  </div>
+
+  <div class="models">
+    <div class="card">
+      <div class="card-header">CLI Models (${cliModels.length})</div>
+      <ul>${modelList(cliModels)}</ul>
+    </div>
+    <div class="card">
+      <div class="card-header">Web Session Models (${webModels.length})</div>
+      <ul>${modelList(webModels)}</ul>
+    </div>
+  </div>
+
+  <p class="footer">openclaw-cli-bridge-elvatis v${version} &nbsp;·&nbsp; <a href="/v1/models" style="color:#4b5563">/v1/models</a> &nbsp;·&nbsp; <a href="/health" style="color:#4b5563">/health</a></p>
+</body>
+</html>`;
+
+    res.writeHead(200, { "Content-Type": "text/html; charset=utf-8" });
+    res.end(html);
+    return;
+  }
+
   // Model list
   if (url === "/v1/models" && req.method === "GET") {
     const now = Math.floor(Date.now() / 1000);

package/test/expiry-helpers.test.ts

@@ -0,0 +1,134 @@
+/**
+ * Tests for cookie expiry formatting helpers.
+ */
+
+import { describe, it, expect, vi, afterEach } from "vitest";
+import {
+  formatExpiryInfo,
+  formatGeminiExpiry,
+  formatClaudeExpiry,
+  formatChatGPTExpiry,
+  type ExpiryInfo,
+} from "../src/expiry-helpers.js";
+
+// Fix Date.now() for deterministic tests
+const NOW = new Date("2026-03-13T12:00:00Z").getTime();
+
+afterEach(() => {
+  vi.restoreAllMocks();
+});
+
+function makeExpiry(daysFromNow: number): ExpiryInfo {
+  return {
+    expiresAt: NOW + daysFromNow * 86_400_000,
+    loginAt: NOW - 86_400_000,
+    cookieName: "test-cookie",
+  };
+}
+
+// ──────────────────────────────────────────────────────────────────────────────
+// formatExpiryInfo (Grok)
+// ──────────────────────────────────────────────────────────────────────────────
+
+describe("formatExpiryInfo (Grok)", () => {
+  it("expired → contains EXPIRED", () => {
+    vi.spyOn(Date, "now").mockReturnValue(NOW);
+    const result = formatExpiryInfo(makeExpiry(-5));
+    expect(result).toContain("EXPIRED");
+  });
+
+  it("3 days → contains 🚨", () => {
+    vi.spyOn(Date, "now").mockReturnValue(NOW);
+    const result = formatExpiryInfo(makeExpiry(3));
+    expect(result).toContain("🚨");
+    expect(result).toContain("3d");
+  });
+
+  it("20 days → contains ✅", () => {
+    vi.spyOn(Date, "now").mockReturnValue(NOW);
+    const result = formatExpiryInfo(makeExpiry(20));
+    expect(result).toContain("✅");
+    expect(result).toContain("20");
+  });
+
+  it("10 days → contains ⚠️ (warning zone 7-14d)", () => {
+    vi.spyOn(Date, "now").mockReturnValue(NOW);
+    const result = formatExpiryInfo(makeExpiry(10));
+    expect(result).toContain("⚠️");
+  });
+});
+
+// ──────────────────────────────────────────────────────────────────────────────
+// formatGeminiExpiry
+// ──────────────────────────────────────────────────────────────────────────────
+
+describe("formatGeminiExpiry", () => {
+  it("expired → contains EXPIRED", () => {
+    vi.spyOn(Date, "now").mockReturnValue(NOW);
+    const result = formatGeminiExpiry(makeExpiry(-2));
+    expect(result).toContain("EXPIRED");
+    expect(result).toContain("/gemini-login");
+  });
+
+  it("3 days → contains 🚨", () => {
+    vi.spyOn(Date, "now").mockReturnValue(NOW);
+    const result = formatGeminiExpiry(makeExpiry(3));
+    expect(result).toContain("🚨");
+  });
+
+  it("20 days → contains ✅", () => {
+    vi.spyOn(Date, "now").mockReturnValue(NOW);
+    const result = formatGeminiExpiry(makeExpiry(20));
+    expect(result).toContain("✅");
+  });
+});
+
+// ──────────────────────────────────────────────────────────────────────────────
+// formatClaudeExpiry
+// ──────────────────────────────────────────────────────────────────────────────
+
+describe("formatClaudeExpiry", () => {
+  it("expired → contains EXPIRED", () => {
+    vi.spyOn(Date, "now").mockReturnValue(NOW);
+    const result = formatClaudeExpiry(makeExpiry(-1));
+    expect(result).toContain("EXPIRED");
+    expect(result).toContain("/claude-login");
+  });
+
+  it("3 days → contains 🚨", () => {
+    vi.spyOn(Date, "now").mockReturnValue(NOW);
+    const result = formatClaudeExpiry(makeExpiry(3));
+    expect(result).toContain("🚨");
+  });
+
+  it("20 days → contains ✅", () => {
+    vi.spyOn(Date, "now").mockReturnValue(NOW);
+    const result = formatClaudeExpiry(makeExpiry(20));
+    expect(result).toContain("✅");
+  });
+});
+
+// ──────────────────────────────────────────────────────────────────────────────
+// formatChatGPTExpiry
+// ──────────────────────────────────────────────────────────────────────────────
+
+describe("formatChatGPTExpiry", () => {
+  it("expired → contains EXPIRED", () => {
+    vi.spyOn(Date, "now").mockReturnValue(NOW);
+    const result = formatChatGPTExpiry(makeExpiry(-3));
+    expect(result).toContain("EXPIRED");
+    expect(result).toContain("/chatgpt-login");
+  });
+
+  it("3 days → contains 🚨", () => {
+    vi.spyOn(Date, "now").mockReturnValue(NOW);
+    const result = formatChatGPTExpiry(makeExpiry(3));
+    expect(result).toContain("🚨");
+  });
+
+  it("20 days → contains ✅", () => {
+    vi.spyOn(Date, "now").mockReturnValue(NOW);
+    const result = formatChatGPTExpiry(makeExpiry(20));
+    expect(result).toContain("✅");
+  });
+});

package/test/proxy-e2e.test.ts

@@ -395,3 +395,83 @@ describe("Error handling", () => {
     expect(JSON.parse(res.body).error.type).toBe("not_found");
   });
 });
+
+// ──────────────────────────────────────────────────────────────────────────────
+// Tool/function call rejection for CLI-proxy models
+// ──────────────────────────────────────────────────────────────────────────────
+
+describe("Tool call rejection", () => {
+  it("rejects tools for cli-gemini models with tools_not_supported", async () => {
+    const res = await json("/v1/chat/completions", {
+      model: "cli-gemini/gemini-2.5-pro",
+      messages: [{ role: "user", content: "hi" }],
+      tools: [{ type: "function", function: { name: "test", parameters: {} } }],
+    });
+
+    expect(res.status).toBe(400);
+    const body = JSON.parse(res.body);
+    expect(body.error.code).toBe("tools_not_supported");
+  });
+
+  it("rejects tools for cli-claude models with tools_not_supported", async () => {
+    const res = await json("/v1/chat/completions", {
+      model: "cli-claude/claude-sonnet-4-6",
+      messages: [{ role: "user", content: "hi" }],
+      tools: [{ type: "function", function: { name: "test", parameters: {} } }],
+    });
+
+    expect(res.status).toBe(400);
+    const body = JSON.parse(res.body);
+    expect(body.error.code).toBe("tools_not_supported");
+  });
+
+  it("does NOT reject tools for web-grok models (returns 503 no session)", async () => {
+    const res = await json("/v1/chat/completions", {
+      model: "web-grok/grok-3",
+      messages: [{ role: "user", content: "hi" }],
+      tools: [{ type: "function", function: { name: "test", parameters: {} } }],
+    });
+
+    // Should NOT be 400 tools_not_supported — reaches provider logic, gets 503 (no session)
+    expect(res.status).not.toBe(400);
+    expect(res.status).toBe(503);
+    const body = JSON.parse(res.body);
+    expect(body.error.code).toBe("no_grok_session");
+  });
+});
+
+// ──────────────────────────────────────────────────────────────────────────────
+// Model capabilities
+// ──────────────────────────────────────────────────────────────────────────────
+
+describe("Model capabilities", () => {
+  it("cli-gemini models have capabilities.tools===false", async () => {
+    const res = await fetch("/v1/models");
+    const body = JSON.parse(res.body);
+    const cliGeminiModels = body.data.filter((m: { id: string }) => m.id.startsWith("cli-gemini/"));
+    expect(cliGeminiModels.length).toBeGreaterThan(0);
+    for (const m of cliGeminiModels) {
+      expect(m.capabilities.tools).toBe(false);
+    }
+  });
+
+  it("cli-claude models have capabilities.tools===false", async () => {
+    const res = await fetch("/v1/models");
+    const body = JSON.parse(res.body);
+    const cliClaudeModels = body.data.filter((m: { id: string }) => m.id.startsWith("cli-claude/"));
+    expect(cliClaudeModels.length).toBeGreaterThan(0);
+    for (const m of cliClaudeModels) {
+      expect(m.capabilities.tools).toBe(false);
+    }
+  });
+
+  it("web-grok models have capabilities.tools===true", async () => {
+    const res = await fetch("/v1/models");
+    const body = JSON.parse(res.body);
+    const webGrokModels = body.data.filter((m: { id: string }) => m.id.startsWith("web-grok/"));
+    expect(webGrokModels.length).toBeGreaterThan(0);
+    for (const m of webGrokModels) {
+      expect(m.capabilities.tools).toBe(true);
+    }
+  });
+});