create-walle 0.9.20 → 0.9.21

package/template/claude-task-manager/lib/microsoft-dev-tunnel-setup.js

@@ -19,7 +19,6 @@ const HOST_READY_TIMEOUT_MS = 45000;
 const WATCHDOG_CHECK_INTERVAL_MS = 30000;
 const WATCHDOG_WAKE_DRIFT_MS = 90000;
 const PUBLIC_PROBE_TIMEOUT_MS = 6000;
-const ANONYMOUS_ACCESS_EXPIRATION = '30d';
 const HOST_HEADER_MODE_PASSTHROUGH = 'passthrough';
 const HOST_HEADER_MODE_DEFAULT = 'default';
 
@@ -232,16 +231,8 @@ function devTunnelAccessListArgs(tunnelId, options = {}) {
   return ['access', 'list', tunnelId, '-p', String(options.port || 3456), '-j'];
 }
 
-function devTunnelAnonymousAccessArgs(tunnelId, options = {}) {
-  return [
-    'access',
-    'create',
-    tunnelId,
-    '-p', String(options.port || 3456),
-    '--anonymous',
-    '--expiration', ANONYMOUS_ACCESS_EXPIRATION,
-    '--scopes', 'connect',
-  ];
+function devTunnelPrivateAccessResetArgs(tunnelId, options = {}) {
+  return ['access', 'reset', tunnelId, '-p', String(options.port || 3456), '-j'];
 }
 
 function caffeinateArgs(options = {}) {
@@ -492,13 +483,14 @@ async function annotateWatchdogState(partial, options = {}) {
 function managedTunnelAccessSummary(partial = {}, options = {}) {
   const port = Number(options.port || 3456);
   return {
-    mode: 'ctm_authenticated_public',
-    anonymous_connect: partial.anonymous_connect === true,
+    mode: 'private_microsoft',
+    anonymous_connect: false,
     port,
-    expiration: ANONYMOUS_ACCESS_EXPIRATION,
     checked_at: partial.checked_at || new Date().toISOString(),
     already_configured: !!partial.already_configured,
-    created: !!partial.created,
+    reset: !!partial.reset,
+    anonymous_removed: !!partial.anonymous_removed,
+    list_error: partial.list_error || '',
     error: partial.error || '',
   };
 }
@@ -508,7 +500,7 @@ function persistManagedTunnelAccess(tunnelId, access, options = {}) {
   if (!state || normalizeTunnelId(state.tunnel_id || '') !== normalizeTunnelId(tunnelId || '')) return;
   writeManagedTunnelState({
     ...state,
-    access_mode: access.mode || 'ctm_authenticated_public',
+    access_mode: access.mode || 'private_microsoft',
     access,
     last_access_check_at: access.checked_at || new Date().toISOString(),
     access_error: access.error || '',
@@ -789,7 +781,7 @@ function microsoftDevTunnelProbeDiagnosis(status, wwwAuthenticate, location) {
       diagnosis: 'tunnel_auth_required',
       blocked_by_tunnel_auth: true,
       ctm_reachable: false,
-      message: 'Microsoft Dev Tunnels is reachable, but its access gate is blocking browser access before CTM receives the request.',
+      message: 'Microsoft Dev Tunnels is reachable and the private access gate is asking the browser to sign in before CTM receives the request.',
     };
   }
   if (status >= 300 && status < 400 && /(?:tunnels\.api\.visualstudio\.com\/auth|\/auth\/(?:github|microsoft|entra))/i.test(redirect)) {
@@ -1137,7 +1129,7 @@ function microsoftDevTunnelCommands(options = {}) {
     login: command('devtunnel', ['user', 'login', '-g']),
     device_login: command('devtunnel', ['user', 'login', '-g', '-d']),
     microsoft_device_login: command('devtunnel', ['user', 'login', '-e', '-d']),
-    access_anonymous: command('devtunnel', devTunnelAnonymousAccessArgs('TUNNELID', { port })),
+    access_private_reset: command('devtunnel', devTunnelPrivateAccessResetArgs('TUNNELID', { port })),
     host_temporary: command('devtunnel', [
       'host',
       '-p', String(port),
@@ -1169,49 +1161,42 @@ function ignoreAlreadyExists(err) {
   return /already\s+exists|conflict/i.test(text);
 }
 
-async function ensureAnonymousConnectAccess(tunnelId, options = {}) {
+async function ensurePrivateConnectAccess(tunnelId, options = {}) {
   const checkedAt = new Date().toISOString();
   const listArgs = devTunnelAccessListArgs(tunnelId, options);
+  let listError = '';
   try {
     const list = await execDevTunnel(listArgs, options);
-    if (hasAnonymousConnectAccess(list?.stdout || list?.stderr || '')) {
+    const hasAnonymous = hasAnonymousConnectAccess(list?.stdout || list?.stderr || '');
+    if (!hasAnonymous) {
       const access = managedTunnelAccessSummary({
-        anonymous_connect: true,
         already_configured: true,
         checked_at: checkedAt,
       }, options);
       persistManagedTunnelAccess(tunnelId, access, options);
       return access;
     }
-  } catch {
-    // Older CLI builds and transient service errors can make listing fail even
-    // when creating the desired rule would succeed. The create call below is
-    // still the authoritative repair operation.
+  } catch (err) {
+    listError = String(err?.stderr || err?.message || err || 'Could not list Microsoft tunnel access.').slice(0, 500);
+    // Older CLI builds and transient service errors can make listing fail. The
+    // reset below is still safe: it returns the port to Dev Tunnels defaults.
   }
 
   try {
-    await execDevTunnel(devTunnelAnonymousAccessArgs(tunnelId, options), options);
+    await execDevTunnel(devTunnelPrivateAccessResetArgs(tunnelId, options), options);
     const access = managedTunnelAccessSummary({
-      anonymous_connect: true,
-      created: true,
+      reset: true,
+      anonymous_removed: !listError,
+      list_error: listError,
       checked_at: checkedAt,
     }, options);
     persistManagedTunnelAccess(tunnelId, access, options);
     return access;
   } catch (err) {
-    if (ignoreAlreadyExists(err)) {
-      const access = managedTunnelAccessSummary({
-        anonymous_connect: true,
-        already_configured: true,
-        checked_at: checkedAt,
-      }, options);
-      persistManagedTunnelAccess(tunnelId, access, options);
-      return access;
-    }
-    const message = String(err?.stderr || err?.message || err || 'Could not enable anonymous Microsoft tunnel access.').slice(0, 800);
+    const message = String(err?.stderr || err?.message || err || 'Could not reset Microsoft tunnel access to private.').slice(0, 800);
     const access = managedTunnelAccessSummary({
-      anonymous_connect: false,
       checked_at: checkedAt,
+      list_error: listError,
       error: message,
     }, options);
     persistManagedTunnelAccess(tunnelId, access, options);
@@ -1236,7 +1221,7 @@ async function ensurePersistentTunnel(tunnelId, options = {}) {
       }
     }
   }
-  const access = await ensureAnonymousConnectAccess(tunnelId, options);
+  const access = await ensurePrivateConnectAccess(tunnelId, options);
   return { access };
 }
 
@@ -1383,7 +1368,7 @@ async function applyMicrosoftDevTunnelSetup(input = {}, options = {}) {
   if (previousProcess && managedTunnelProcessUsable(previousProcess, previous) && previous.origin) {
     let access = null;
     try {
-      access = await ensureAnonymousConnectAccess(previous.tunnel_id, options);
+      access = await ensurePrivateConnectAccess(previous.tunnel_id, options);
     } catch (err) {
       return {
         ok: false,
@@ -1445,7 +1430,7 @@ async function restoreMicrosoftDevTunnelHost(options = {}) {
   } else if (managedTunnelProcessUsable(managed, state)) {
     let access = managed.access || null;
     if (options.repairAccess === true) {
-      access = await ensureAnonymousConnectAccess(state.tunnel_id, options);
+      access = await ensurePrivateConnectAccess(state.tunnel_id, options);
     }
     const latest = await detectManagedMicrosoftDevTunnel(options);
     return {
@@ -1538,7 +1523,7 @@ async function checkMicrosoftDevTunnelAvailability(options = {}) {
     let managed = before;
     if (options.repairAccess === true) {
       try {
-        const access = await ensureAnonymousConnectAccess(state.tunnel_id, options);
+        const access = await ensurePrivateConnectAccess(state.tunnel_id, options);
         const latest = await detectManagedMicrosoftDevTunnel(options);
         managed = { ...latest, access, access_mode: access.mode, last_access_check_at: access.checked_at, access_error: access.error || '' };
       } catch (err) {
@@ -1572,14 +1557,13 @@ async function checkMicrosoftDevTunnelAvailability(options = {}) {
         };
       }
       if (probe.blocked_by_tunnel_auth) {
-        const error = probe.message || 'Microsoft tunnel access is blocking the phone URL before CTM.';
-        await annotateWatchdogState({ last_watchdog_check_at: checkedAt, watchdog_error: error }, options);
+        await annotateWatchdogState({ last_watchdog_check_at: checkedAt, watchdog_error: '' }, options);
         return {
-          ok: false,
+          ok: true,
           checked: true,
           recovered: false,
-          reason: 'tunnel_auth_required',
-          error,
+          reason: 'private_tunnel_auth_required',
+          public_probe: probe,
           keep_awake: await getMicrosoftDevTunnelKeepAwakeStatus(options),
           managed_tunnel: managed,
         };

package/template/claude-task-manager/lib/remote-relay-protocol.js

@@ -15,6 +15,7 @@ const MESSAGE_REGISTRY = Object.freeze({
   'session.cancel_stream': rule('respond', 'medium', false),
   'session.prompt_history': rule('respond', 'medium', false),
   'wall_e.send_message': rule('respond', 'low', false),
+  'wall_e.set_model': rule('respond', 'low', false),
 
   'approval.respond': rule('respond', 'high', true, { enabled: false }),
   'session.kill': rule('admin', 'high', true, { enabled: false }),
@@ -139,6 +140,10 @@ async function dispatchMessage(message, context = {}) {
       return handlers.sendWalleMessage
         ? handlers.sendWalleMessage(sessionIdFromBody(message.body), String(message.body.text || message.body.message || ''), message.body)
         : safeError('handler_missing');
+    case 'wall_e.set_model':
+      return handlers.setWalleModel
+        ? handlers.setWalleModel(sessionIdFromBody(message.body), message.body)
+        : safeError('handler_missing');
     default:
       return safeError('remote_action_not_enabled');
   }

package/template/claude-task-manager/lib/walle-external-actions.js

@@ -208,9 +208,10 @@ function isSuccessfulExternalActionResult(toolCall) {
   if (parsed?.external_action === true && parsed?.blocked === true) return false;
   if (parsed && (parsed.error || parsed.ok === false || parsed.success === false)) return false;
   if (!SIDE_EFFECT_TOOL_NAMES.has(name)) return false;
-  if (!parsed) return /approved action executed/i.test(toolCall.summary || '');
-  if (parsed.sent === true || parsed.created === true || parsed.alreadyExecuted === true) return true;
-  return parsed.ok === true || parsed.success === true || /approved action executed/i.test(toolCall.summary || '');
+  if (!parsed) return /approved action (?:was already executed|executed and verified)/i.test(toolCall.summary || '');
+  if (parsed.alreadyExecuted === true) return true;
+  if (parsed.verified === true || parsed.verification?.ok === true) return true;
+  return /approved action (?:was already executed|executed and verified)/i.test(toolCall.summary || '');
 }
 
 function hasExecutedExternalActionToolResult(toolCalls = []) {
@@ -218,6 +219,14 @@ function hasExecutedExternalActionToolResult(toolCalls = []) {
   return toolCalls.some(isSuccessfulExternalActionResult);
 }
 
+function hasBlockedExternalActionGatewayToolResult(toolCalls = []) {
+  if (!Array.isArray(toolCalls)) return false;
+  return toolCalls.some((toolCall) => {
+    const parsed = parseToolResultPayload(toolCall);
+    return parsed?.external_action_gateway === true && parsed?.blocked === true;
+  });
+}
+
 function externalActionCompletionClaim(text) {
   const value = String(text || '').trim();
   if (!value || NEGATED_COMPLETION_RE.test(value)) return false;
@@ -253,6 +262,13 @@ function externalActionLabel(action = {}) {
 
 function buildPendingExternalActionNotExecutedReply({ actions = [] } = {}) {
   const pending = Array.isArray(actions) ? actions : [];
+  if (!pending.length) {
+    return [
+      'I do not have verified evidence that those external actions completed.',
+      'Wall-E now requires external side effects to go through the dedicated action tools and read-after-write verification before it can summarize success.',
+      'Please retry with the dedicated mail/calendar action path, or ask me to stage the action again.',
+    ].join('\n');
+  }
   const lines = [
     'I did not execute those external actions.',
     'The previous turn still has pending approval requests:',
@@ -271,6 +287,7 @@ module.exports = {
   extractLatestPendingExternalActions,
   externalActionCompletionClaim,
   externalActionFromToolCall,
+  hasBlockedExternalActionGatewayToolResult,
   hasExecutedExternalActionToolResult,
   isExternalActionConfirmationText,
 };

package/template/claude-task-manager/public/index.html

@@ -3585,6 +3585,24 @@
     justify-content: space-between;
   }
   .standup-attention.active { display: flex; }
+  .standup-service-alerts {
+    display: none;
+    margin: 0;
+    border-color: rgba(224, 175, 104, 0.35);
+    background: rgba(224, 175, 104, 0.08);
+  }
+  .standup-service-alerts.active {
+    display: block;
+  }
+  .standup-service-alerts .we-service-alerts-title {
+    color: var(--yellow);
+  }
+  .standup-service-alerts .we-service-alert-item {
+    padding: 6px 0;
+  }
+  .standup-service-alerts .we-service-alert-text {
+    color: var(--fg);
+  }
   .standup-attention-main {
     min-width: 0;
     display: flex;
@@ -3898,6 +3916,9 @@
       min-width: 0;
       white-space: normal;
     }
+    .standup-service-alerts .we-service-alert-item {
+      align-items: flex-start;
+    }
     .standup-attention { align-items: flex-start; flex-direction: column; }
     .standup-attention-actions { width: 100%; justify-content: flex-end; }
   }
@@ -5187,6 +5208,7 @@
               </div>
               <div class="standup-search-status" id="standup-search-status" aria-live="polite"></div>
             </div>
+            <div class="standup-service-alerts" id="standup-service-alerts"></div>
             <div class="standup-attention" id="standup-attention"></div>
             <div class="standup-loading" id="standup-loading">Loading sessions...</div>
             <div class="standup-error" id="standup-error" style="display:none;"></div>
@@ -19443,6 +19465,9 @@ function onCreated(msg) {
         agentType: 'walle',
         model_id: msg.model_id || null,
         model_provider: msg.model_provider || null,
+        model_registry_id: msg.model_registry_id || msg.modelRegistryId || '',
+        model_provider_id: msg.model_provider_id || msg.modelProviderId || '',
+        model_pinned: msg.model_pinned === true || msg.modelPinned === true,
       },
       walleState: null,
     };

package/template/claude-task-manager/public/js/setup.js

@@ -2094,7 +2094,10 @@ function _microsoftAvailabilityCopy(ms, ready) {
 }
 
 function _microsoftTunnelPhoneAuthText(ms) {
-  return 'No Microsoft or GitHub sign-in is needed on the phone; CTM protects the URL with the pairing QR, Face ID/passkey, and device permissions.';
+  var account = _microsoftTunnelAccountText(ms);
+  return account
+    ? 'If Microsoft asks you to sign in, use this same account: ' + account + '. CTM still requires the pairing QR and device permissions.'
+    : 'If Microsoft asks you to sign in, use the same Microsoft or GitHub account shown on this Mac. CTM still requires the pairing QR and device permissions.';
 }
 
 function _microsoftTunnelOrigin(d) {
@@ -2482,15 +2485,15 @@ function _renderMicrosoftTunnelTraffic(traffic) {
 function _microsoftProbeTone(probe) {
   if (!probe || !probe.checked) return '';
   if (probe.ctm_reachable) return 'status-ok';
-  if (probe.blocked_by_tunnel_auth || probe.diagnosis === 'tunnel_auth_required') return 'status-warn';
+  if (probe.blocked_by_tunnel_auth || probe.diagnosis === 'tunnel_auth_required') return 'status-ok';
   return 'status-error';
 }
 
 function _microsoftProbeStatusText(probe, ms) {
-  if (_microsoftProbeInFlight) return 'Checking the public phone URL...';
+  if (_microsoftProbeInFlight) return 'Checking the private phone URL...';
   if (!probe || !probe.checked) return 'Run this when the phone cannot load the tunnel URL.';
   if (probe.ctm_reachable) return 'CTM is reachable through the tunnel from this Mac.';
-  if (probe.blocked_by_tunnel_auth || probe.diagnosis === 'tunnel_auth_required') return 'Microsoft tunnel access is blocking the phone URL.';
+  if (probe.blocked_by_tunnel_auth || probe.diagnosis === 'tunnel_auth_required') return 'Private Microsoft sign-in is active before CTM.';
   if (probe.diagnosis === 'timeout') return 'The tunnel URL timed out before CTM responded.';
   if (probe.diagnosis === 'not_configured') return 'Start the tunnel before checking the phone URL.';
   return probe.status ? ('Tunnel check returned HTTP ' + probe.status + '.') : 'The tunnel URL is not reachable from this Mac.';
@@ -2499,15 +2502,15 @@ function _microsoftProbeStatusText(probe, ms) {
 function _microsoftProbeNoteText(probe, ms) {
   if (_microsoftProbeInFlight) return 'CTM is checking the same devtunnels.ms URL your phone opens.';
   if (!probe || !probe.checked) {
-    return 'If this reports a Microsoft gate, the phone request has not reached CTM yet; use Recover Now to re-apply CTM phone access for this tunnel.';
+    return 'If this reports a Microsoft gate, that is expected for a private tunnel. On the phone, sign in with the same account shown above.';
   }
   if (probe.ctm_reachable) {
     return 'The Mac-side check reached CTM. If the phone still fails, refresh the phone page and check the CTM traffic list below.';
   }
   if (probe.blocked_by_tunnel_auth || probe.diagnosis === 'tunnel_auth_required') {
-    return 'This is Microsoft Dev Tunnels blocking the request before CTM. Use Recover Now or Set Up again; CTM will re-apply the port-scoped phone access rule.';
+    return 'The tunnel is private. This Mac-side check is stopped by Microsoft because it is not a signed-in browser session; your phone should sign in with the same Microsoft/GitHub account, then CTM will load.';
   }
-  return probe.message || 'Use Recover Now if the tunnel should be running, then check the URL again.';
+  return probe.message || 'Use Recover Now if the tunnel process should be running, then check the URL again.';
 }
 
 function _renderMicrosoftTunnelProbe(probe, ms, ready) {
@@ -2564,9 +2567,9 @@ function _renderMicrosoftDevTunnelSetup(ms, d) {
     } else if (!signedIn) {
       summary.textContent = 'Sign in once with GitHub on this Mac. After sign-in finishes, CTM starts the tunnel and creates the phone pairing QR.';
     } else if (ready) {
-      summary.textContent = 'Microsoft tunnel is running. Open the phone URL in Safari or Chrome and pair with CTM.';
+      summary.textContent = 'Private Microsoft tunnel is running. Open the phone URL, sign in with the same account if asked, then pair with CTM.';
     } else {
-      summary.textContent = 'CTM can start the tunnel now and create the phone pairing QR.';
+      summary.textContent = 'CTM can start the private tunnel now, remove stale anonymous access, and create the phone pairing QR.';
     }
   }
   if (account) {
@@ -2622,8 +2625,8 @@ function _renderMicrosoftDevTunnelSetup(ms, d) {
   }
   if (securityNote) {
     securityNote.textContent = ready
-      ? 'CTM opens only this tunnel port to browsers, then requires the CTM pairing QR, Face ID/passkey, device token, and route permissions before phone actions work.'
-      : 'Set Up creates a port-scoped browser access rule for the CTM tunnel. Do not share the pairing QR or claim link.';
+      ? 'Private Microsoft access is on. CTM also requires the pairing QR, device token, route permissions, and passkey step-up for high-risk actions.'
+      : 'Set Up keeps anonymous access off and resets stale public access before the tunnel is marked ready. Do not share the pairing QR or claim link.';
   }
   _renderMicrosoftTunnelTraffic(ms.traffic || {});
   _renderMicrosoftTunnelProbe(_microsoftTunnelProbe || ms.public_probe || null, ms, ready);
@@ -3333,6 +3336,7 @@ async function startMicrosoftTunnel() {
       installed: true,
       available: true,
       signed_in: true,
+      account: updatedNetwork.microsoft_dev_tunnel && updatedNetwork.microsoft_dev_tunnel.account || {},
       origin: values.origin,
       mobile_url: values.mobile_url,
       inspect_url: values.inspect_url,
@@ -3451,7 +3455,7 @@ async function probeMicrosoftTunnel() {
     }
     _renderMicrosoftDevTunnelSetup((_lastNetworkSettings || {}).microsoft_dev_tunnel || ms, _lastNetworkSettings || latest);
     if (probe.blocked_by_tunnel_auth || probe.diagnosis === 'tunnel_auth_required') {
-      _setMicrosoftActionStatus('Microsoft tunnel access is blocking the phone URL before CTM sees it. Use Recover Now to re-apply phone access.', 'warning');
+      _setMicrosoftActionStatus('Private Microsoft sign-in is active before CTM. On the phone, sign in with the same Microsoft/GitHub account shown here.', 'ok');
     } else if (probe.ctm_reachable) {
       _setMicrosoftActionStatus('Phone URL reached CTM from this Mac.', 'ok');
     } else {

package/template/claude-task-manager/public/js/walle-session.js

@@ -40,12 +40,13 @@ window.WalleSession = (function() {
   // ---------- state helper ----------
   function initialModelFromSession(s) {
     var meta = (s && s.meta) || {};
-    var model = meta.model_registry_id || meta.modelRegistryId || meta.model_id || '';
+    var model = meta.model_id || meta.model || '';
     return {
       model: model,
       registryId: meta.model_registry_id || meta.modelRegistryId || '',
       providerType: meta.model_provider || '',
       provider: meta.model_provider ? providerLabel(meta.model_provider) : '',
+      pinned: meta.model_pinned === true || meta.modelPinned === true,
     };
   }
 
@@ -67,7 +68,7 @@ window.WalleSession = (function() {
         selectedModelProvider: initialModel.provider,
         _currentAssistant: null,
         _modelHydrated: true,
-        _modelManual: false,
+        _modelManual: !!initialModel.pinned,
         promptNavIdx: -1,
         inputHistory: [],
         inputHistoryIdx: -1,
@@ -98,6 +99,9 @@ window.WalleSession = (function() {
     if (typeof s.walleState.isPreparingLocation !== 'boolean') s.walleState.isPreparingLocation = false;
     if (typeof s.walleState.selectedModelRegistryId !== 'string') s.walleState.selectedModelRegistryId = '';
     if (typeof s.walleState.selectedModelProviderType !== 'string') s.walleState.selectedModelProviderType = '';
+    if ((s.meta && (s.meta.model_pinned === true || s.meta.modelPinned === true)) && s.walleState.selectedModel) {
+      s.walleState._modelManual = true;
+    }
     if (s.walleState.composerHeightPx != null && (!isFinite(Number(s.walleState.composerHeightPx)) || Number(s.walleState.composerHeightPx) <= 0)) {
       s.walleState.composerHeightPx = null;
     }
@@ -3008,6 +3012,7 @@ window.WalleSession = (function() {
         label: label,
         baseLabel: stripModelAlias(label),
         provider: provider,
+        providerId: m.provider_id || m.providerId || '',
         providerLabel: m.provider_name || providerLabel(provider),
         capabilities: normalizeModelCapabilities(m.capabilities),
         source: m.source || 'live',
@@ -3159,6 +3164,19 @@ window.WalleSession = (function() {
     ws.selectedModelProvider = item ? item.providerLabel : '';
     ws._modelManual = true;
     syncWalleModelButtons(id);
+    if (item && typeof send === 'function') {
+      send({
+        type: 'model-change',
+        id: id,
+        agent_type: 'walle',
+        model_id: item.modelId,
+        model_provider: item.provider,
+        model_registry_id: item.id || '',
+        model_provider_id: item.providerId || '',
+        scope: 'session',
+        pinned: true,
+      });
+    }
     closeModelPicker();
   }
 
@@ -3671,13 +3689,23 @@ window.WalleSession = (function() {
     s.meta = s.meta || {};
     if (msg.model_id) s.meta.model_id = msg.model_id;
     if (msg.model_provider) s.meta.model_provider = msg.model_provider;
+    if (msg.model_registry_id || msg.modelRegistryId) s.meta.model_registry_id = msg.model_registry_id || msg.modelRegistryId;
+    if (msg.model_provider_id || msg.modelProviderId) s.meta.model_provider_id = msg.model_provider_id || msg.modelProviderId;
+    if (typeof msg.model_pinned === 'boolean' || typeof msg.modelPinned === 'boolean') {
+      s.meta.model_pinned = msg.model_pinned === true || msg.modelPinned === true;
+    }
     var ws = getState(id);
-    if (!ws || ws._modelManual || !msg.model_id) return;
+    if (!ws || !msg.model_id) return;
+    var sameManualModel = ws._modelManual
+      && ws.selectedModel === msg.model_id
+      && (!msg.model_provider || ws.selectedModelProviderType === msg.model_provider);
+    if (ws._modelManual && !sameManualModel) return;
     ws.selectedModel = msg.model_id;
     ws.selectedModelRegistryId = msg.model_registry_id || msg.modelRegistryId || '';
     ws.selectedModelLabel = '';
     ws.selectedModelProviderType = msg.model_provider || ws.selectedModelProviderType || '';
     ws.selectedModelProvider = msg.model_provider ? providerLabel(msg.model_provider) : ws.selectedModelProvider;
+    if (msg.model_pinned === true || msg.modelPinned === true) ws._modelManual = true;
     syncWalleModelButtons(id);
   }
 

package/template/claude-task-manager/public/js/walle.js

@@ -6489,35 +6489,105 @@ function checkServiceAlerts() {
   });
 }
 
+function serviceAlertPresentation(alert) {
+  var providerIssue = _normalizeProviderIssue(alert);
+  var kind = providerIssue ? 'provider' : (alert.type === 'auth_expired' ? 'error' : alert.type === 'update_available' ? 'info' : 'warning');
+  return {
+    providerIssue: providerIssue,
+    kind: kind,
+    icon: kind === 'provider' || kind === 'error' ? '!' : kind === 'info' ? '↑' : '●',
+    message: providerIssue ? providerIssue.message : (alert.message || ''),
+  };
+}
+
+function safeServiceAlertId(alert) {
+  return esc(alert && alert.id != null ? alert.id : '').replace(/'/g, ''');
+}
+
+function serviceAlertActionHtml(alert, safeId) {
+  var actionBtn = '';
+  var actionLabel = esc(alert.action_label || 'Fix');
+  if (alert.action === 'repair_slack_owner') {
+    var actionName = esc(alert.action || 'custom').replace(/'/g, ''');
+    actionBtn = ' <button class="we-service-alert-action" type="button" onclick="WE._runAlertAction(\'' + safeId + '\', \'' + actionName + '\')">' + actionLabel + '</button>';
+  } else if (alert.action === 'gws_reauth') {
+    actionBtn = ' <button class="we-service-alert-action" type="button" onclick="WE._reconnectGwsAlert(\'' + safeId + '\')">' + actionLabel + '</button>';
+  } else if (alert.action === 'show_update_wizard') {
+    actionBtn = ' <button class="we-service-alert-action" type="button" onclick="WE._showUpdateWizardFromAlert(\'' + safeId + '\')">' + actionLabel + '</button>';
+  } else if (alert.action_url && /^(\/|https?:\/\/)/.test(alert.action_url)) {
+    actionBtn = ' <a href="' + esc(alert.action_url) + '" class="we-service-alert-action">' + actionLabel + '</a>';
+  }
+  return actionBtn;
+}
+
+function serviceAlertItemHtml(alert) {
+  var presentation = serviceAlertPresentation(alert);
+  var safeId = safeServiceAlertId(alert);
+  var dismissBtn = '<button class="we-service-alert-dismiss" type="button" onclick="WE._dismissAlert(\'' + safeId + '\')" title="Dismiss">&times;</button>';
+  return '<div class="we-service-alert-item ' + presentation.kind + '">'
+    + '<span class="we-service-alert-icon">' + presentation.icon + '</span>'
+    + '<span class="we-service-alert-text">' + esc(presentation.message) + serviceAlertActionHtml(alert, safeId) + '</span>'
+    + dismissBtn + '</div>';
+}
+
+function serviceAlertSearchText(alert) {
+  return [
+    alert && alert.id,
+    alert && alert.type,
+    alert && alert.service,
+    alert && alert.provider,
+    alert && alert.integration,
+    alert && alert.action,
+    alert && alert.message,
+  ].filter(Boolean).join(' ').toLowerCase();
+}
+
+function isSessionsIntegrationAlert(alert) {
+  if (!alert || alert.type === 'update_available') return false;
+  var action = String(alert.action || '').toLowerCase();
+  var type = String(alert.type || '').toLowerCase();
+  if (action === 'gws_reauth' || action === 'repair_slack_owner') return true;
+  if (type === 'auth_expired') return true;
+  var text = serviceAlertSearchText(alert);
+  var namesIntegration = /(slack|gws|google|gmail|calendar|drive|oauth)/.test(text);
+  var needsAuth = /(auth|reauth|reconnect|expired|token|owner_identity_missing)/.test(text);
+  return namesIntegration && needsAuth;
+}
+
+function ensureStandupServiceAlertsContainer() {
+  var existing = document.getElementById('standup-service-alerts');
+  if (existing) return existing;
+  var search = document.getElementById('standup-search');
+  if (!search || !search.parentNode) return null;
+  var node = document.createElement('div');
+  node.id = 'standup-service-alerts';
+  node.className = 'standup-service-alerts';
+  search.parentNode.insertBefore(node, search.nextSibling);
+  return node;
+}
+
+function renderStandupServiceAlerts(alerts) {
+  var container = ensureStandupServiceAlertsContainer();
+  if (!container) return;
+  var integrationAlerts = (alerts || []).filter(isSessionsIntegrationAlert);
+  if (!integrationAlerts.length) {
+    container.className = 'standup-service-alerts';
+    container.innerHTML = '';
+    return;
+  }
+  container.className = 'standup-service-alerts active we-service-alerts';
+  container.innerHTML = '<div class="we-service-alerts-title">Integration Alerts</div>'
+    + integrationAlerts.map(serviceAlertItemHtml).join('');
+}
+
 function renderServiceAlerts(alerts) {
   var existing = document.getElementById('walle-service-alerts');
+  renderStandupServiceAlerts(alerts);
   if (!alerts || alerts.length === 0) {
     if (existing) existing.remove();
     return;
   }
-  var items = alerts.map(function(a) {
-    var providerIssue = _normalizeProviderIssue(a);
-    var kind = providerIssue ? 'provider' : (a.type === 'auth_expired' ? 'error' : a.type === 'update_available' ? 'info' : 'warning');
-    var icon = kind === 'provider' || kind === 'error' ? '!' : kind === 'info' ? '&#8593;' : '&#9679;';
-    var safeId = esc(a.id).replace(/'/g, '&#39;');
-    var dismissBtn = '<button class="we-service-alert-dismiss" onclick="WE._dismissAlert(\'' + safeId + '\')" title="Dismiss">&times;</button>';
-    var actionBtn = '';
-    var actionLabel = esc(a.action_label || 'Fix');
-    if (a.action === 'repair_slack_owner') {
-      var actionName = esc(a.action || 'custom').replace(/'/g, '&#39;');
-      actionBtn = ' <button class="we-service-alert-action" onclick="WE._runAlertAction(\'' + safeId + '\', \'' + actionName + '\')">' + actionLabel + '</button>';
-    } else if (a.action === 'gws_reauth') {
-      actionBtn = ' <button class="we-service-alert-action" onclick="WE._reconnectGwsAlert(\'' + safeId + '\')">' + actionLabel + '</button>';
-    } else if (a.action === 'show_update_wizard') {
-      actionBtn = ' <button class="we-service-alert-action" onclick="WE._showUpdateWizardFromAlert(\'' + safeId + '\')">' + actionLabel + '</button>';
-    } else if (a.action_url && /^(\/|https?:\/\/)/.test(a.action_url)) {
-      actionBtn = ' <a href="' + esc(a.action_url) + '" class="we-service-alert-action">' + actionLabel + '</a>';
-    }
-    return '<div class="we-service-alert-item ' + kind + '">'
-      + '<span class="we-service-alert-icon">' + icon + '</span>'
-      + '<span class="we-service-alert-text">' + esc(providerIssue ? providerIssue.message : a.message) + actionBtn + '</span>'
-      + dismissBtn + '</div>';
-  }).join('');
+  var items = alerts.map(serviceAlertItemHtml).join('');
 
   var html = '<div id="walle-service-alerts" class="we-service-alerts">'
     + '<div class="we-service-alerts-title">Service Alerts</div>' + items + '</div>';