myrlin-workbook 0.9.15 → 0.9.16

package/logs/server.pid

@@ -1 +1 @@
-65196
+7280

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "myrlin-workbook",
-  "version": "0.9.15",
+  "version": "0.9.16",
   "description": "Browser-based project manager for Claude Code sessions - session discovery, multi-terminal, cost tracking, docs, and kanban board",
   "main": "src/index.js",
   "bin": {

package/src/gui.js

@@ -189,6 +189,52 @@ if (!process.env.CWM_NO_OPEN) {
   }
 }
 
+// ─── Memory Watchdog ──────────────────────────────────────
+// Monitor RSS and kill idle PTY sessions when memory exceeds threshold.
+// This prevents the OS from silently OOM-killing the entire process tree.
+const MEMORY_CHECK_INTERVAL = 30000; // Check every 30 seconds
+const MEMORY_WARN_MB = 350;          // Warn and kill idle PTYs
+const MEMORY_CRITICAL_MB = 450;      // Force-kill all clientless PTYs
+
+const _memoryWatchdog = setInterval(() => {
+  const rssMB = Math.round(process.memoryUsage().rss / 1024 / 1024);
+  if (rssMB < MEMORY_WARN_MB) return;
+
+  const { logWarning } = require('./crash-logger');
+  const ptyManager = getPtyManager();
+  if (!ptyManager) return;
+
+  const sessions = ptyManager.listSessions();
+  const isCritical = rssMB >= MEMORY_CRITICAL_MB;
+  const label = isCritical ? 'CRITICAL' : 'WARNING';
+  try { console.log(`[Memory ${label}] RSS=${rssMB}MB, ${sessions.length} PTY sessions`); } catch (_) {}
+  logWarning('server', `Memory ${label}: RSS=${rssMB}MB, ${sessions.length} PTY sessions`);
+
+  // Kill PTY sessions with zero connected WebSocket clients first
+  let killed = 0;
+  for (const s of sessions) {
+    if (s.clientCount === 0) {
+      ptyManager.killSession(s.sessionId);
+      killed++;
+    }
+  }
+
+  // In critical mode, also kill sessions that have been alive longest
+  if (isCritical && killed === 0 && sessions.length > 2) {
+    const oldest = sessions.sort((a, b) => (a.createdAt || 0) - (b.createdAt || 0));
+    ptyManager.killSession(oldest[0].sessionId);
+    killed++;
+  }
+
+  if (killed > 0) {
+    try { console.log(`[Memory] Killed ${killed} PTY session(s) to free memory`); } catch (_) {}
+  }
+
+  // Force GC if available (node --expose-gc)
+  if (global.gc) global.gc();
+}, MEMORY_CHECK_INTERVAL);
+_memoryWatchdog.unref();
+
 // ─── Graceful Shutdown ─────────────────────────────────────
 
 process.on('SIGINT', () => {

package/src/supervisor.js

@@ -83,7 +83,7 @@ function startChild() {
   lastStartTime = Date.now();
   console.log(`[supervisor] Starting GUI server (attempt ${consecutiveRestarts + 1})...`);
 
-  child = spawn(process.execPath, [guiScript, ...guiArgs], {
+  child = spawn(process.execPath, ['--max-old-space-size=512', guiScript, ...guiArgs], {
     stdio: 'inherit',
     env: { ...process.env, CWM_NO_OPEN: consecutiveRestarts > 0 ? '1' : '' },
   });

package/src/web/pty-manager.js

@@ -108,6 +108,11 @@ class PtySession {
   }
 }
 
+// Maximum number of live PTY sessions. Each one is a ConPTY handle + a Claude
+// process (100-200MB each). Beyond this limit, new spawns are rejected to
+// prevent the OS from OOM-killing the server process tree.
+const MAX_PTY_SESSIONS = 10;
+
 class PtySessionManager {
   constructor() {
     this.sessions = new Map(); // sessionId -> PtySession
@@ -132,6 +137,13 @@ class PtySessionManager {
       return existing;
     }
 
+    // Enforce max live sessions to prevent OOM from too many ConPTY handles
+    const aliveCount = [...this.sessions.values()].filter(s => s.alive).length;
+    if (aliveCount >= MAX_PTY_SESSIONS) {
+      console.log(`[PTY] Rejected spawn for ${sessionId}: ${aliveCount} live sessions (max ${MAX_PTY_SESSIONS})`);
+      return null;
+    }
+
     // ── Defense-in-depth: validate all user-controlled inputs ──
     // Primary validation happens at the API/WebSocket boundary (server.js, pty-server.js).
     // This is a secondary gate to catch any bypass or future code path that skips validation.