@ouro.bot/cli 0.1.0-alpha.415 → 0.1.0-alpha.417

package/changelog.json

@@ -1,6 +1,23 @@
 {
   "_note": "This changelog is maintained as part of the PR/version-bump workflow. Agent-curated, not auto-generated. Agents read this file directly via read_file to understand what changed between versions.",
   "versions": [
+    {
+      "version": "0.1.0-alpha.417",
+      "changes": [
+        "`isTransientError` now recognizes timeout errors after `formatBwCliError` transforms them, so retries fire correctly even when the raw `ETIMEDOUT` code is lost during formatting.",
+        "New `withTransientRetry` wrapper on read operations (`get`, `getRawSecret`, `list`) retries up to 3 times with exponential backoff (500ms, 1s, 2s) and emits `repertoire.bw_transient_retry` nerves events, so transient vault hiccups resolve silently.",
+        "`bw sync` now runs after every login/unlock in `loginAttempt()`, ensuring vault data is synchronized with the server before any read operations.",
+        "Timeout error messages changed from a generic 'timed out while waiting for a vault response' to actionable guidance: 'timed out -- usually resolves on retry. If it persists, check network connectivity to the vault server.'",
+        "`@ouro.bot/cli` and the `ouro.bot` wrapper are version-synced for the Bitwarden store resilience release."
+      ]
+    },
+    {
+      "version": "0.1.0-alpha.416",
+      "changes": [
+        "Post-repair provider health re-check in `ouro up` now shows a dedicated progress phase (`post-repair check`) with per-agent detail instead of running silently after interactive repair completes.",
+        "`@ouro.bot/cli` and the `ouro.bot` wrapper are version-synced for the post-repair progress release."
+      ]
+    },
     {
       "version": "0.1.0-alpha.415",
       "changes": [

package/dist/heart/daemon/cli-exec.js

@@ -179,8 +179,8 @@ function providerRepairCountSummary(count) {
         return "ok";
     return `${count} ${count === 1 ? "needs" : "need"} attention`;
 }
-async function reportPostRepairProviderHealth(deps, repairedAgents) {
-    const remainingDegraded = await checkAgentProviders(deps, repairedAgents);
+async function reportPostRepairProviderHealth(deps, repairedAgents, onProgress) {
+    const remainingDegraded = await checkAgentProviders(deps, repairedAgents, onProgress);
     (0, runtime_1.emitNervesEvent)({
         level: remainingDegraded.length > 0 ? "warn" : "info",
         component: "daemon",
@@ -2700,7 +2700,9 @@ async function runOuroCli(args, deps = (0, cli_defaults_1.createDefaultOuroCliDe
                     const repairedAgents = daemonResult.stability.degraded
                         .filter(interactive_repair_1.hasRunnableInteractiveRepair)
                         .map((entry) => entry.agent);
-                    await reportPostRepairProviderHealth(deps, repairedAgents);
+                    progress.startPhase("post-repair check");
+                    await reportPostRepairProviderHealth(deps, repairedAgents, (msg) => progress.updateDetail(msg));
+                    progress.completePhase("post-repair check", providerRepairCountSummary(repairedAgents.length));
                 }
             }
         }

package/dist/repertoire/bitwarden-store.js

@@ -116,7 +116,7 @@ function sanitizeBwErrorDetail(message) {
 function formatBwCliError(err, stderr = "", args = []) {
     const operation = formatBwOperation(args);
     if (isBwTimeoutError(err)) {
-        return new Error(`bw CLI error: ${operation} timed out while waiting for a vault response`);
+        return new Error(`bw CLI error: ${operation} timed out -- usually resolves on retry. If it persists, check network connectivity to the vault server.`);
     }
     const detail = sanitizeBwErrorDetail(stderr.trim() || err.message);
     if (detail === "command failed") {
@@ -274,10 +274,13 @@ function isTransientError(err) {
         msg.includes("enotfound") ||
         msg.includes("socket hang up") ||
         msg.includes("503") ||
-        msg.includes("server unavailable"));
+        msg.includes("server unavailable") ||
+        msg.includes("timed out"));
 }
 const MAX_RETRIES = 3;
 const BASE_BACKOFF_MS = 1000;
+const TRANSIENT_MAX_RETRIES = 3;
+const TRANSIENT_RETRY_BASE_MS = 500;
 function delay(ms) {
     return new Promise((resolve) => setTimeout(resolve, ms));
 }
@@ -469,6 +472,9 @@ class BitwardenCredentialStore {
             const unlockOutput = await execBw(["unlock", this.masterPassword, "--raw"], undefined, this.appDataDir);
             this.sessionToken = unlockOutput.trim();
         }
+        // Sync vault data after obtaining a fresh session token
+        /* v8 ignore next -- defensive: loginAttempt always sets sessionToken before sync @preserve */
+        await execBw(["sync"], this.sessionToken ?? undefined, this.appDataDir);
     }
     async ensureSession() {
         if (!this.sessionToken) {
@@ -494,6 +500,32 @@ class BitwardenCredentialStore {
             }
         }
     }
+    async withTransientRetry(operation) {
+        let lastError;
+        for (let attempt = 0; attempt < TRANSIENT_MAX_RETRIES; attempt++) {
+            try {
+                return await operation();
+            }
+            catch (err) {
+                /* v8 ignore next -- defensive: operation always throws Error instances @preserve */
+                lastError = err instanceof Error ? err : new Error(String(err));
+                if (!isTransientError(lastError)) {
+                    throw lastError;
+                }
+                if (attempt === TRANSIENT_MAX_RETRIES - 1)
+                    break;
+                const backoffMs = TRANSIENT_RETRY_BASE_MS * Math.pow(2, attempt);
+                (0, runtime_1.emitNervesEvent)({
+                    event: "repertoire.bw_transient_retry",
+                    component: "repertoire",
+                    message: `transient bw error, retrying in ${backoffMs}ms`,
+                    meta: { attempt: attempt + 1, backoffMs, reason: lastError.message },
+                });
+                await delay(backoffMs);
+            }
+        }
+        throw lastError;
+    }
     async get(domain) {
         (0, runtime_1.emitNervesEvent)({
             event: "repertoire.bw_credential_get_start",
@@ -501,7 +533,7 @@ class BitwardenCredentialStore {
             message: `getting credential via bw for ${domain}`,
             meta: { domain, backend: "bitwarden" },
         });
-        const item = await this.withSessionRetry((session) => this.findItemByDomain(domain, session));
+        const item = await this.withTransientRetry(() => this.withSessionRetry((session) => this.findItemByDomain(domain, session)));
         if (!item) {
             (0, runtime_1.emitNervesEvent)({
                 event: "repertoire.bw_credential_get_end",
@@ -525,7 +557,7 @@ class BitwardenCredentialStore {
         };
     }
     async getRawSecret(domain, field) {
-        const item = await this.withSessionRetry((session) => this.findItemByDomain(domain, session));
+        const item = await this.withTransientRetry(() => this.withSessionRetry((session) => this.findItemByDomain(domain, session)));
         if (!item) {
             throw new Error(`no credential found for domain "${domain}"`);
         }
@@ -595,7 +627,7 @@ class BitwardenCredentialStore {
             message: "listing bw credentials",
             meta: { backend: "bitwarden" },
         });
-        const stdout = await this.withSessionRetry((session) => execBw(["list", "items"], session, this.appDataDir));
+        const stdout = await this.withTransientRetry(() => this.withSessionRetry((session) => execBw(["list", "items"], session, this.appDataDir)));
         const items = parseBwItems(stdout, "bw list items");
         const results = items.map((item) => ({
             domain: item.name,

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@ouro.bot/cli",
-  "version": "0.1.0-alpha.415",
+  "version": "0.1.0-alpha.417",
   "main": "dist/heart/daemon/ouro-entry.js",
   "bin": {
     "cli": "dist/heart/daemon/ouro-bot-entry.js",