@misterhuydo/sentinel 1.5.7 → 1.5.10

package/.cairn/session.json

@@ -1,19 +1,20 @@
 {
-  "message": "Auto-checkpoint at 2026-04-08T10:32:33.099Z",
-  "checkpoint_at": "2026-04-08T10:32:33.174Z",
+  "message": "Auto-checkpoint at 2026-04-08T11:11:26.934Z",
+  "checkpoint_at": "2026-04-08T11:11:27.049Z",
   "active_files": [
     "J:\\Projects\\Sentinel\\cli\\bin\\sentinel.js",
     "J:\\Projects\\Sentinel\\cli\\lib\\test.js",
-    "J:\\Projects\\Sentinel\\cli\\python\\sentinel\\main.py",
     "J:\\Projects\\Sentinel\\cli\\python\\sentinel\\cicd_trigger.py"
   ],
   "notes": [
-    "[2026-04-08] git-snapshot: .cairn/session.json                    |  28 ++++-\n .claude/settings.local.json            |  47 ++++++-\n cli/.cairn/.hint-lock                  |   2 +-\n cli/.cairn/minify-map.json             |  14 ++-\n cli/.cairn/session.json                |   4 +-\n cli/.cairn/views/62a614_bundle.js      |   5 +-\n cli/lib/.cairn/minify-map.json         |   6 +\n cli/lib/.cairn/views/fb78ac_upgrade.js |  37 +++++-\n cli/lib/.cairn/views/fc4a1a_add.js     | 215 +++++++++++++++++++++++++--------\n 9 files changed, 295 insertions(+), 63 deletions(-) | status: M ../.cairn/session.json\n M ../.claude/settings.local.json\n M .cairn/.hint-lock\n M .cairn/minify-map.json\n M .cairn/session.json\n M .cairn/views/62a614_bundle.js\n M lib/.cairn/minify-map.json\n M lib/.cairn/views/fb78ac_upgrade.js\n M lib/.cairn/views/fc4a1a_add.js\n?? ../.cairn/.cairn-project\n?? ../.cairn/memory/\n?? ../.cairn/minify-map.json\n?? ../.cairn/views/\n?? .cairn/views/23edf4_sentinel_boss.py\n?? .cairn/views/5f5141_main.py\n?? .cairn/views/7802b9_cicd_trigger.py\n?? .cairn/views/ac3df4_repo_task_engine.py\n?? lib/.cairn/views/2a85cc_init.js\n?? lib/.cairn/views/e26996_slack-setup.js\n?? ../scripts/fix_ask_codebase_context.py\n?? ../scripts/fix_ask_codebase_stdin.py\n?? ../scripts/fix_chain_slack.py\n?? ../scripts/fix_fstring.py\n?? ../scripts/fix_knowledge_cache.py\n?? ../scripts/fix_knowledge_cache_staleness.py\n?? ../scripts/fix_merge_confirm.py\n?? ../scripts/fix_permission_messages.py\n?? ../scripts/fix_pr_check_head_detect.py\n?? ../scripts/fix_pr_msg_newlines.py\n?? ../scripts/fix_pr_tracking_boss.py\n?? ../scripts/fix_pr_tracking_db.py\n?? ../scripts/fix_pr_tracking_main.py\n?? ../scripts/fix_project_isolation.py\n?? ../scripts/fix_system_prompt.py\n?? ../scripts/fix_two_bugs.py\n?? ../scripts/patch_chain_release.py"
+    "[2026-04-08] git-snapshot: .cairn/session.json                    |  28 ++++-\n .claude/settings.local.json            |  47 ++++++-\n cli/.cairn/.hint-lock                  |   2 +-\n cli/.cairn/minify-map.json             |  14 ++-\n cli/.cairn/session.json                |   4 +-\n cli/.cairn/views/62a614_bundle.js      |   5 +-\n cli/lib/.cairn/minify-map.json         |   6 +\n cli/lib/.cairn/views/fb78ac_upgrade.js |  37 +++++-\n cli/lib/.cairn/views/fc4a1a_add.js     | 215 +++++++++++++++++++++++++--------\n 9 files changed, 295 insertions(+), 63 deletions(-) | status: M ../.cairn/session.json\n M ../.claude/settings.local.json\n M .cairn/.hint-lock\n M .cairn/minify-map.json\n M .cairn/session.json\n M .cairn/views/62a614_bundle.js\n M lib/.cairn/minify-map.json\n M lib/.cairn/views/fb78ac_upgrade.js\n M lib/.cairn/views/fc4a1a_add.js\n?? ../.cairn/.cairn-project\n?? ../.cairn/memory/\n?? ../.cairn/minify-map.json\n?? ../.cairn/views/\n?? .cairn/views/23edf4_sentinel_boss.py\n?? .cairn/views/5f5141_main.py\n?? .cairn/views/7802b9_cicd_trigger.py\n?? .cairn/views/ac3df4_repo_task_engine.py\n?? lib/.cairn/views/2a85cc_init.js\n?? lib/.cairn/views/e26996_slack-setup.js\n?? ../scripts/fix_ask_codebase_context.py\n?? ../scripts/fix_ask_codebase_stdin.py\n?? ../scripts/fix_chain_slack.py\n?? ../scripts/fix_fstring.py\n?? ../scripts/fix_knowledge_cache.py\n?? ../scripts/fix_knowledge_cache_staleness.py\n?? ../scripts/fix_merge_confirm.py\n?? ../scripts/fix_permission_messages.py\n?? ../scripts/fix_pr_check_head_detect.py\n?? ../scripts/fix_pr_msg_newlines.py\n?? ../scripts/fix_pr_tracking_boss.py\n?? ../scripts/fix_pr_tracking_db.py\n?? ../scripts/fix_pr_tracking_main.py\n?? ../scripts/fix_project_isolation.py\n?? ../scripts/fix_system_prompt.py\n?? ../scripts/fix_two_bugs.py\n?? ../scripts/patch_chain_release.py",
+    "[2026-04-08] git-snapshot: .cairn/session.json                    |  20 ++-\n .claude/settings.local.json            |  47 ++++++-\n cli/.cairn/.hint-lock                  |   2 +-\n cli/.cairn/minify-map.json             |   8 +-\n cli/.cairn/session.json                |  22 +++-\n cli/.cairn/views/62a614_bundle.js      |   5 +-\n cli/lib/.cairn/minify-map.json         |   6 +\n cli/lib/.cairn/views/fb78ac_upgrade.js |  37 +++++-\n cli/lib/.cairn/views/fc4a1a_add.js     | 215 +++++++++++++++++++++++++--------\n 9 files changed, 296 insertions(+), 66 deletions(-) | status: M ../.cairn/session.json\n M ../.claude/settings.local.json\n M .cairn/.hint-lock\n M .cairn/minify-map.json\n M .cairn/session.json\n M .cairn/views/62a614_bundle.js\n M lib/.cairn/minify-map.json\n M lib/.cairn/views/fb78ac_upgrade.js\n M lib/.cairn/views/fc4a1a_add.js\n?? ../.cairn/.cairn-project\n?? ../.cairn/memory/\n?? ../.cairn/minify-map.json\n?? ../.cairn/views/\n?? .cairn/views/23edf4_sentinel_boss.py\n?? .cairn/views/7802b9_cicd_trigger.py\n?? .cairn/views/ac3df4_repo_task_engine.py\n?? lib/.cairn/views/2a85cc_init.js\n?? lib/.cairn/views/e26996_slack-setup.js\n?? ../scripts/fix_ask_codebase_context.py\n?? ../scripts/fix_ask_codebase_stdin.py\n?? ../scripts/fix_chain_slack.py\n?? ../scripts/fix_fstring.py\n?? ../scripts/fix_knowledge_cache.py\n?? ../scripts/fix_knowledge_cache_staleness.py\n?? ../scripts/fix_merge_confirm.py\n?? ../scripts/fix_permission_messages.py\n?? ../scripts/fix_pr_check_head_detect.py\n?? ../scripts/fix_pr_msg_newlines.py\n?? ../scripts/fix_pr_tracking_boss.py\n?? ../scripts/fix_pr_tracking_db.py\n?? ../scripts/fix_pr_tracking_main.py\n?? ../scripts/fix_project_isolation.py\n?? ../scripts/fix_system_prompt.py\n?? ../scripts/fix_two_bugs.py\n?? ../scripts/patch_chain_release.py",
+    "[2026-04-08] git-snapshot: .cairn/session.json                    |  20 ++-\n .claude/settings.local.json            |  47 ++++++-\n cli/.cairn/.hint-lock                  |   2 +-\n cli/.cairn/minify-map.json             |   8 +-\n cli/.cairn/session.json                |  21 +++-\n cli/.cairn/views/62a614_bundle.js      |   5 +-\n cli/lib/.cairn/minify-map.json         |   6 +\n cli/lib/.cairn/views/fb78ac_upgrade.js |  37 +++++-\n cli/lib/.cairn/views/fc4a1a_add.js     | 215 +++++++++++++++++++++++++--------\n 9 files changed, 295 insertions(+), 66 deletions(-) | status: M ../.cairn/session.json\n M ../.claude/settings.local.json\n M .cairn/.hint-lock\n M .cairn/minify-map.json\n M .cairn/session.json\n M .cairn/views/62a614_bundle.js\n M lib/.cairn/minify-map.json\n M lib/.cairn/views/fb78ac_upgrade.js\n M lib/.cairn/views/fc4a1a_add.js\n?? ../.cairn/.cairn-project\n?? ../.cairn/memory/\n?? ../.cairn/minify-map.json\n?? ../.cairn/views/\n?? .cairn/views/23edf4_sentinel_boss.py\n?? .cairn/views/7802b9_cicd_trigger.py\n?? .cairn/views/ac3df4_repo_task_engine.py\n?? lib/.cairn/views/2a85cc_init.js\n?? lib/.cairn/views/e26996_slack-setup.js\n?? ../scripts/fix_ask_codebase_context.py\n?? ../scripts/fix_ask_codebase_stdin.py\n?? ../scripts/fix_chain_slack.py\n?? ../scripts/fix_fstring.py\n?? ../scripts/fix_knowledge_cache.py\n?? ../scripts/fix_knowledge_cache_staleness.py\n?? ../scripts/fix_merge_confirm.py\n?? ../scripts/fix_permission_messages.py\n?? ../scripts/fix_pr_check_head_detect.py\n?? ../scripts/fix_pr_msg_newlines.py\n?? ../scripts/fix_pr_tracking_boss.py\n?? ../scripts/fix_pr_tracking_db.py\n?? ../scripts/fix_pr_tracking_main.py\n?? ../scripts/fix_project_isolation.py\n?? ../scripts/fix_system_prompt.py\n?? ../scripts/fix_two_bugs.py\n?? ../scripts/patch_chain_release.py",
+    "[2026-04-08] git-snapshot: .cairn/session.json                    |  20 ++-\n .claude/settings.local.json            |  47 ++++++-\n cli/.cairn/.hint-lock                  |   2 +-\n cli/.cairn/minify-map.json             |   8 +-\n cli/.cairn/session.json                |  22 +++-\n cli/.cairn/views/62a614_bundle.js      |   5 +-\n cli/lib/.cairn/minify-map.json         |   6 +\n cli/lib/.cairn/views/fb78ac_upgrade.js |  37 +++++-\n cli/lib/.cairn/views/fc4a1a_add.js     | 215 +++++++++++++++++++++++++--------\n 9 files changed, 296 insertions(+), 66 deletions(-) | status: M ../.cairn/session.json\n M ../.claude/settings.local.json\n M .cairn/.hint-lock\n M .cairn/minify-map.json\n M .cairn/session.json\n M .cairn/views/62a614_bundle.js\n M lib/.cairn/minify-map.json\n M lib/.cairn/views/fb78ac_upgrade.js\n M lib/.cairn/views/fc4a1a_add.js\n?? ../.cairn/.cairn-project\n?? ../.cairn/memory/\n?? ../.cairn/minify-map.json\n?? ../.cairn/views/\n?? .cairn/views/23edf4_sentinel_boss.py\n?? .cairn/views/7802b9_cicd_trigger.py\n?? .cairn/views/ac3df4_repo_task_engine.py\n?? lib/.cairn/views/2a85cc_init.js\n?? lib/.cairn/views/e26996_slack-setup.js\n?? ../scripts/fix_ask_codebase_context.py\n?? ../scripts/fix_ask_codebase_stdin.py\n?? ../scripts/fix_chain_slack.py\n?? ../scripts/fix_fstring.py\n?? ../scripts/fix_knowledge_cache.py\n?? ../scripts/fix_knowledge_cache_staleness.py\n?? ../scripts/fix_merge_confirm.py\n?? ../scripts/fix_permission_messages.py\n?? ../scripts/fix_pr_check_head_detect.py\n?? ../scripts/fix_pr_msg_newlines.py\n?? ../scripts/fix_pr_tracking_boss.py\n?? ../scripts/fix_pr_tracking_db.py\n?? ../scripts/fix_pr_tracking_main.py\n?? ../scripts/fix_project_isolation.py\n?? ../scripts/fix_system_prompt.py\n?? ../scripts/fix_two_bugs.py\n?? ../scripts/patch_chain_release.py"
   ],
   "mtime_snapshot": {
     "J:\\Projects\\Sentinel\\cli\\bin\\sentinel.js": 1774252515044.4768,
     "J:\\Projects\\Sentinel\\cli\\lib\\test.js": 1774252437350.0059,
-    "J:\\Projects\\Sentinel\\cli\\python\\sentinel\\main.py": 1775575790779.8606,
     "J:\\Projects\\Sentinel\\cli\\python\\sentinel\\cicd_trigger.py": 1774523631399.9514
   }
 }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@misterhuydo/sentinel",
-  "version": "1.5.7",
+  "version": "1.5.10",
   "description": "Sentinel — Autonomous DevOps Agent installer and manager",
   "bin": {
     "sentinel": "./bin/sentinel.js"

package/python/sentinel/dependency_manager.py

@@ -11,6 +11,7 @@ from __future__ import annotations
 
 import logging
 import re
+import subprocess
 from dataclasses import dataclass, field
 from pathlib import Path
 
@@ -59,6 +60,69 @@ def get_release_version(local_path: str) -> str:
     return get_pom_version(local_path).replace("-SNAPSHOT", "")
 
 
+def pull_source_repo(repo: RepoConfig) -> bool:
+    """
+    Pull latest from remote for source repo before reading version info.
+    Returns True on success, False on failure (non-fatal — we continue with local state).
+    """
+    from .git_manager import _git_env
+    env = _git_env(repo)
+    r = subprocess.run(
+        ["git", "pull", "--rebase", "origin", repo.branch],
+        cwd=repo.local_path, env=env, capture_output=True, text=True, timeout=60,
+    )
+    if r.returncode != 0:
+        logger.warning("pull_source_repo: git pull failed for %s: %s", repo.repo_name, r.stderr.strip()[:200])
+        return False
+    logger.debug("pull_source_repo: %s up to date", repo.repo_name)
+    return True
+
+
+def get_latest_released_version(repo: RepoConfig) -> str:
+    """
+    Return the latest released version of a Maven repo by inspecting git tags.
+    Tags are expected in the form '<artifactId>-<version>' or just '<version>',
+    e.g. 'Whydah-TypeLib-3.0.15' or '3.0.15'.
+
+    Falls back to pom.xml SNAPSHOT-stripped version if no tags are found.
+    Always pulls from remote first so the tag list is current.
+    """
+    from .git_manager import _git_env
+    env = _git_env(repo)
+    local_path = repo.local_path
+
+    # Pull so tags are up to date
+    pull_source_repo(repo)
+
+    # Fetch tags explicitly (pull --rebase doesn't always fetch all tags)
+    subprocess.run(
+        ["git", "fetch", "--tags", "--quiet"],
+        cwd=local_path, env=env, capture_output=True, text=True, timeout=30,
+    )
+
+    # List tags sorted by version descending
+    r = subprocess.run(
+        ["git", "tag", "--sort=-version:refname"],
+        cwd=local_path, env=env, capture_output=True, text=True, timeout=15,
+    )
+    tags = [t.strip() for t in r.stdout.splitlines() if t.strip()]
+
+    # Look for semver-like version in tags (e.g. "3.0.15" or "TypeLib-3.0.15")
+    version_re = re.compile(r"\b(\d+\.\d+\.\d+(?:\.\d+)?)\b")
+    for tag in tags:
+        m = version_re.search(tag)
+        if m:
+            return m.group(1)
+
+    # Fallback: strip -SNAPSHOT from pom.xml version
+    fallback = get_release_version(local_path)
+    logger.warning(
+        "get_latest_released_version: no version tags found for %s, falling back to pom: %s",
+        repo.repo_name, fallback,
+    )
+    return fallback
+
+
 def _resolve_property(prop_ref: str, text: str) -> str:
     """Resolve a Maven ${property.name} reference from the <properties> section."""
     if not prop_ref.startswith("${"):

package/python/sentinel/main.py

@@ -1396,6 +1396,16 @@ async def _repo_task_poll_loop(cfg_loader: ConfigLoader, store: StateStore):
 
 def _log_auth_status(cfg: SentinelConfig) -> None:
     """Log Claude auth configuration at startup and post to Slack if nothing is configured."""
+    # ── Slack channel ID check ────────────────────────────────────────────────
+    ch = (cfg.slack_channel or "").lstrip("#")
+    if ch and not (ch.upper().startswith("C") and len(ch) >= 9):
+        logger.warning(
+            "SLACK_CHANNEL='%s' looks like a channel NAME, not an ID. "
+            "Channel names break when renamed — use the Slack channel ID (starts with C, e.g. C0ANPS9GC3C). "
+            "Progress alerts will fail with channel_not_found until this is corrected.",
+            ch,
+        )
+
     has_api_key   = bool(cfg.anthropic_api_key)
     has_claude_bin = bool(shutil.which(cfg.claude_code_bin))
     pro_for_tasks = cfg.claude_pro_for_tasks

package/python/sentinel/sentinel_boss.py

@@ -596,22 +596,36 @@ PROACTIVE COMMUNICATION — CRITICAL RULES:
 You are a push-first agent. The engineer should NEVER have to ask for a status update
 on something you already know about or can find out.
 
-BANNED phrases (never say these):
+BANNED phrases — NEVER say any of these, in any form:
 - "Want me to check again in a few minutes?"
-- "Should I check on that?"
-- "I'll keep an eye on it."
-- "I'll monitor that for you."
-- "Let me know if you'd like an update."
-- Anything that puts the follow-up burden back on the human.
+- "Want me to do that?" / "Should I do that?" / "Want me to go ahead?"
+- "Should I check on that?" / "Shall I proceed?"
+- "I'll keep an eye on it." / "I'll monitor that for you."
+- "Let me know if you'd like an update." / "Let me know if you want me to..."
+- "Would you like me to..." when the answer is obviously yes given the context.
+- ANY phrase that puts the initiative or follow-up burden back on the human.
+
+The rule is simple: if you have identified what needs to be done and the intent is clear —
+DO IT. Do not ask. Act, then report what you did.
 
 Instead:
 - If checking is warranted → check now, report the result in the same message.
+- If re-creating or re-queuing issues is needed → do it, then report "Done — re-queued X issues."
 - If something is running async (fix, task, poll) → tell the human EXACTLY what automated
-  notification they will receive and when. Example: "The main loop will post here when the
-  fix is applied or fails — usually within 2–3 minutes."
-- After trigger_poll → wait for it, then call get_status immediately and report findings.
+  notification they will receive and where. Example:
+  "Fix queued. The main loop will post a threaded progress update in #sentinel-1881 as it
+  runs — starting with 'Working on...' and ending with the commit link or a block reason.
+  You'll get an @mention here when done."
+- After trigger_poll → call get_status immediately and report findings in the same message.
   Do not stop at "poll triggered" — that is not an answer, it is a non-answer.
 
+WHERE progress updates appear — always tell the user this when queuing a fix:
+- Fix progress (step-by-step: analyzing → patching → testing → pushing) posts as a THREAD
+  in the project's Slack channel (e.g. #sentinel-1881, #whydah-errors), NOT in this DM.
+- Completion @mention comes back here in this DM conversation.
+- If talking to a user via DM, explicitly say: "Progress updates will appear as a thread in
+  #<channel> — I'll @mention you here when it's done."
+
 The main poll loop sends proactive Slack messages automatically when:
 - A fix is applied (commit + PR opened)
 - A fix is blocked (test failure, patch too large, etc.)
@@ -1597,7 +1611,8 @@ _TOOLS = [
                     "description": (
                         "build: trigger Jenkins build only. "
                         "release: trigger Maven Release; auto-cascades if AUTO_PUBLISH=true. "
-                        "update_deps: update dependency version in target repos (source already released). "
+                        "update_deps: update dependency version in target repos — source is ALREADY released, do NOT trigger a new release. "
+                        "Use this when the user says 'update X to version Y' or 'bump X dep to Y in repo Z'. "
                         "release_and_cascade: release source_repo then cascade to all dependents."
                     ),
                 },
@@ -1605,6 +1620,14 @@ _TOOLS = [
                     "type": "string",
                     "description": "Repo to build/release, or the repo whose artifact is being updated.",
                 },
+                "new_version": {
+                    "type": "string",
+                    "description": (
+                        "Explicit version to use for update_deps (e.g. '3.0.15'). "
+                        "Only for update_deps when the user specifies an exact version. "
+                        "If omitted, reads current release version from source_repo pom.xml."
+                    ),
+                },
                 "target_repos": {
                     "type": "array",
                     "items": {"type": "string"},
@@ -4166,15 +4189,19 @@ async def _run_tool(name: str, inputs: dict, cfg_loader, store, slack_client=Non
                 })
 
             if operation == "update_deps":
+                from .dependency_manager import get_latest_released_version
                 cascade_plan = plan_cascade(source_repo, cfg_loader.repos, target_repos or None)
                 if "error" in cascade_plan:
                     return json.dumps(cascade_plan)
                 if not cascade_plan["dependents"]:
                     return json.dumps({"note": f"No repos depend on {cascade_plan['artifact_id']} — nothing to update."})
+                # Use explicit version from user if provided; otherwise pull + detect from git tags
+                explicit_ver = (inputs.get("new_version") or "").strip()
+                plan_version = explicit_ver or get_latest_released_version(repo)
                 return json.dumps({
-                    "plan": f"Update {cascade_plan['artifact_id']} to {cascade_plan['new_version']} in dependent repos",
+                    "plan": f"Update {cascade_plan['artifact_id']} to {plan_version} in dependent repos (no release triggered)",
                     "artifact_id": cascade_plan["artifact_id"],
-                    "new_version": cascade_plan["new_version"],
+                    "new_version": plan_version,
                     "targets": cascade_plan["dependents"],
                     "confirm_prompt": "Reply with confirmed=true to proceed.",
                 })
@@ -4213,8 +4240,10 @@ async def _run_tool(name: str, inputs: dict, cfg_loader, store, slack_client=Non
             return json.dumps({"status": "released", "repo": source_repo, "note": "Cascade will run automatically on next poll if AUTO_PUBLISH=true."})
 
         if operation == "update_deps":
+            from .dependency_manager import get_latest_released_version
             artifact_id = get_artifact_id(repo.local_path)
-            new_version = get_release_version(repo.local_path)
+            # Prefer explicit version; otherwise pull + detect from git tags (most accurate)
+            new_version = (inputs.get("new_version") or "").strip() or get_latest_released_version(repo)
             if not artifact_id or not new_version:
                 return json.dumps({"error": f"Could not read artifact/version from {source_repo}/pom.xml"})
             target_names = target_repos or None