pullfrog 0.1.13 → 0.1.14

package/dist/cli.mjs

@@ -144249,7 +144249,7 @@ var import_semver = __toESM(require_semver2(), 1);
 // package.json
 var package_default = {
   name: "pullfrog",
-  version: "0.1.13",
+  version: "0.1.14",
   type: "module",
   bin: {
     pullfrog: "dist/cli.mjs",
@@ -144831,8 +144831,8 @@ async function $git(subcommand, args2, options) {
       activityTimeout: 0
     });
     if (result.stderr.includes("askpass-compromised")) {
-      log.info("askpass code was already consumed \u2014 token has been revoked");
-      throw new Error("git auth failed \u2014 askpass code was already consumed, token revoked");
+      log.info("askpass code was replayed after revoke \u2014 token has been revoked");
+      throw new Error("git auth failed \u2014 askpass code was replayed after revoke, token revoked");
     }
     if (result.exitCode !== 0) {
       const stderr = result.stderr.trim();
@@ -144849,6 +144849,7 @@ ${stdout}` : stderr || stdout || "(no output)";
       stderr: result.stderr.trim()
     };
   } finally {
+    authServer.revoke(code);
     try {
       unlinkSync(scriptPath);
     } catch {
@@ -149159,19 +149160,22 @@ async function installFromNpmTarball(params) {
 }
 
 // utils/providerErrors.ts
+var PROVIDER_BILLING_EXHAUSTED_LABEL = "provider billing exhausted";
 var statusKey = `\\b(?:status[_ ]?code|http[_ ]?status|status)["']?\\s*[:=]\\s*["']?`;
 var PROVIDER_ERROR_PATTERNS = [
   // billing-payload patterns come BEFORE bare status-code patterns. providers
   // commonly return 401 / 429 for billing/quota exhaustion (OpenCode Zen
   // `CreditsError` / `FreeUsageLimitError`, Gemini `RESOURCE_EXHAUSTED` +
-  // "spending cap", Anthropic "Insufficient balance"). these are non-retryable
-  // and require user-billing action — distinct from a transient auth error or
-  // rate-limit. status-code patterns would otherwise win and surface
-  // "auth error (401)" / "rate limited (429)" with no billing hint. see #778.
-  { regex: /\bCreditsError\b/, label: "provider billing exhausted" },
-  { regex: /\bFreeUsageLimitError\b/, label: "provider billing exhausted" },
-  { regex: /Insufficient balance/i, label: "provider billing exhausted" },
-  { regex: /spending cap/i, label: "provider billing exhausted" },
+  // "spending cap", Anthropic "Insufficient balance" / "credit balance is
+  // too low"). these are non-retryable and require user-billing action —
+  // distinct from a transient auth error or rate-limit. status-code patterns
+  // would otherwise win and surface "auth error (401)" / "rate limited (429)"
+  // with no billing hint. see #778, #835.
+  { regex: /\bCreditsError\b/, label: PROVIDER_BILLING_EXHAUSTED_LABEL },
+  { regex: /\bFreeUsageLimitError\b/, label: PROVIDER_BILLING_EXHAUSTED_LABEL },
+  { regex: /Insufficient balance/i, label: PROVIDER_BILLING_EXHAUSTED_LABEL },
+  { regex: /credit balance is too low/i, label: PROVIDER_BILLING_EXHAUSTED_LABEL },
+  { regex: /spending cap/i, label: PROVIDER_BILLING_EXHAUSTED_LABEL },
   // auth patterns must come BEFORE rate-limit patterns. OpenRouter 401 error
   // payloads carry `x-ratelimit-*` response headers in the dump, and the
   // free-form rate-limit regex below would otherwise win on word-boundary
@@ -149242,6 +149246,13 @@ var ROUTER_KEYLIMIT_EXHAUSTED_PATTERN = /requires more credits.*?fewer max_token
 function isRouterKeylimitExhaustedError(text) {
   return ROUTER_KEYLIMIT_EXHAUSTED_PATTERN.test(text);
 }
+function isProviderBillingExhausted(text) {
+  return findProviderErrorMatch(text)?.label === PROVIDER_BILLING_EXHAUSTED_LABEL;
+}
+function extractProviderId(text) {
+  const match3 = text.match(/\bproviderID=([a-z0-9_-]+)/i);
+  return match3 ? match3[1].toLowerCase() : null;
+}
 
 // utils/skills.ts
 import { spawnSync as spawnSync5 } from "node:child_process";
@@ -151451,8 +151462,7 @@ import { randomUUID as randomUUID4 } from "node:crypto";
 import { writeFileSync as writeFileSync12 } from "node:fs";
 import { createServer as createServer2 } from "node:http";
 import { join as join16 } from "node:path";
-var CODE_TTL_MS = 5 * 60 * 1e3;
-var TAMPER_WINDOW_MS = 6e4;
+var REVOKED_TRAP_MS = 6e4;
 function revokeGitHubToken(token) {
   fetch("https://api.github.com/installation/token", {
     method: "DELETE",
@@ -151483,18 +151493,14 @@ async function startGitAuthServer(tmpdir4) {
       res.writeHead(404).end();
       return;
     }
-    if (entry.state === "pending") {
-      entry.state = "consumed";
-      clearTimeout(entry.timeout);
-      entry.timeout = setTimeout(() => codes.delete(code), TAMPER_WINDOW_MS);
-      entry.timeout.unref();
+    if (entry.state === "active") {
       res.writeHead(200, { "Content-Type": "text/plain" });
       res.end(entry.token);
       return;
     }
-    log.info("askpass code used twice \u2014 revoking token");
+    log.info("askpass code used after revoke \u2014 revoking token");
     revokeGitHubToken(entry.token);
-    clearTimeout(entry.timeout);
+    if (entry.timeout) clearTimeout(entry.timeout);
     codes.delete(code);
     res.writeHead(409, { "Content-Type": "text/plain" });
     res.end("compromised");
@@ -151511,14 +151517,16 @@ async function startGitAuthServer(tmpdir4) {
   log.debug(`git auth server listening on 127.0.0.1:${port}`);
   function register4(token) {
     const code = randomUUID4();
-    const timeout = setTimeout(() => {
-      codes.delete(code);
-      log.debug(`git auth code expired: ${code.slice(0, 8)}...`);
-    }, CODE_TTL_MS);
-    timeout.unref();
-    codes.set(code, { token, state: "pending", timeout });
+    codes.set(code, { token, state: "active" });
     return code;
   }
+  function revoke(code) {
+    const entry = codes.get(code);
+    if (!entry) return;
+    entry.state = "revoked";
+    entry.timeout = setTimeout(() => codes.delete(code), REVOKED_TRAP_MS);
+    entry.timeout.unref();
+  }
   function writeAskpassScript(code) {
     const scriptId = randomUUID4();
     const scriptName = `askpass-${scriptId}.js`;
@@ -151532,17 +151540,15 @@ async function startGitAuthServer(tmpdir4) {
       `if(r.statusCode===409){process.stderr.write("askpass-compromised\\n");process.exit(1)}`,
       `if(r.statusCode!==200){process.exit(1)}`,
       `var d="";r.on("data",function(c){d+=c});`,
-      `r.on("end",function(){`,
-      `process.stdout.write(d+"\\n");`,
-      `try{require("fs").unlinkSync("${scriptPath.replace(/\\/g, "\\\\")}")}catch(e){}`,
-      `})}).on("error",function(){process.exit(1)})}`
+      `r.on("end",function(){process.stdout.write(d+"\\n")})`,
+      `}).on("error",function(){process.exit(1)})}`
     ].join("\n");
     writeFileSync12(scriptPath, content, { mode: 448 });
     return scriptPath;
   }
   async function close() {
     for (const entry of codes.values()) {
-      clearTimeout(entry.timeout);
+      if (entry.timeout) clearTimeout(entry.timeout);
     }
     codes.clear();
     await new Promise((resolve3) => server.close(() => resolve3()));
@@ -151551,6 +151557,7 @@ async function startGitAuthServer(tmpdir4) {
   return {
     port,
     register: register4,
+    revoke,
     writeAskpassScript,
     close,
     [Symbol.asyncDispose]: close
@@ -156723,6 +156730,36 @@ async function resolveRunContextData(params) {
 function isProviderModelNotFoundError(message) {
   return message.includes("ProviderModelNotFoundError");
 }
+var PROVIDER_BILLING_URLS = {
+  deepseek: "https://platform.deepseek.com/top_up",
+  anthropic: "https://console.anthropic.com/settings/billing",
+  openai: "https://platform.openai.com/account/billing",
+  google: "https://aistudio.google.com/usage",
+  opencode: "https://opencode.ai/zen"
+};
+function detectProviderId(message) {
+  const harnessId = extractProviderId(message);
+  if (harnessId) return harnessId;
+  if (/credit balance is too low/i.test(message)) return "anthropic";
+  return null;
+}
+function formatProviderBillingExhausted(input) {
+  const providerId = detectProviderId(input.errorMessage);
+  const dashboardUrl = providerId ? PROVIDER_BILLING_URLS[providerId] : void 0;
+  const headline = providerId ? `**Your \`${providerId}\` account is out of credit.**` : "**Your provider account is out of credit.**";
+  const cta = dashboardUrl ? `[Top up \`${providerId}\` \u2192](${dashboardUrl})` : "Top up your provider account, then re-trigger Pullfrog.";
+  return [
+    headline,
+    "",
+    "Pullfrog detected a billing-exhausted response from your provider \u2014 the agent stopped before completing this run.",
+    "",
+    cta,
+    "",
+    `\`\`\`
+${input.errorMessage}
+\`\`\``
+  ].join("\n");
+}
 function formatProviderModelNotFoundSummary(input) {
   return `Pullfrog's free fallback model is no longer available in OpenCode's catalog. Add an API key for your configured model in the Pullfrog console for \`${input.owner}/${input.name}\`, or contact support if this persists.
 
@@ -156742,6 +156779,12 @@ function renderRunError(input) {
     isHang: true,
     errorMessage: input.errorMessage
   }) : null;
+  if (isProviderBillingExhausted(input.errorMessage)) {
+    const body = formatProviderBillingExhausted({ errorMessage: input.errorMessage });
+    return { summary: `### \u274C Pullfrog failed
+
+${body}`, comment: body };
+  }
   const apiKeySource = hangBody ?? input.errorMessage;
   const apiKeyErrorSummary = isApiKeyAuthError(apiKeySource) ? formatApiKeyErrorSummary({
     owner: input.repo.owner,
@@ -156865,12 +156908,14 @@ async function finalizeSuccessRun(input) {
     repo: input.repo,
     agentDiagnostic: input.toolState.agentDiagnostic
   }) : null;
-  if (rendered && input.toolState.progressComment) {
-    await reportErrorToComment({ toolState: input.toolState, error: rendered.comment }).catch(
-      (error49) => {
-        log.debug(`failure error report failed: ${error49}`);
-      }
-    );
+  if (rendered) {
+    await reportErrorToComment({
+      toolState: input.toolState,
+      error: rendered.comment,
+      createIfMissing: true
+    }).catch((error49) => {
+      log.debug(`failure error report failed: ${error49}`);
+    });
   }
   if (input.result.success && input.toolState.progressComment && !input.toolState.finalSummaryWritten) {
     await deleteProgressComment(input.toolContext).catch((error49) => {
@@ -156902,7 +156947,11 @@ async function writeRunErrorOutputs(input) {
   } catch {
   }
   try {
-    await reportErrorToComment({ toolState: input.toolState, error: input.rendered.comment });
+    await reportErrorToComment({
+      toolState: input.toolState,
+      error: input.rendered.comment,
+      createIfMissing: true
+    });
   } catch {
   }
 }
@@ -158390,7 +158439,7 @@ async function run2() {
 }
 
 // cli.ts
-var VERSION10 = "0.1.13";
+var VERSION10 = "0.1.14";
 var bin = basename2(process.argv[1] || "");
 var PROG = bin === "pf" || bin === "pullfrog" ? bin : "pullfrog";
 var rawArgs = process.argv.slice(2);

package/dist/index.js

@@ -142509,7 +142509,7 @@ var import_semver = __toESM(require_semver2(), 1);
 // package.json
 var package_default = {
   name: "pullfrog",
-  version: "0.1.13",
+  version: "0.1.14",
   type: "module",
   bin: {
     pullfrog: "dist/cli.mjs",
@@ -143091,8 +143091,8 @@ async function $git(subcommand, args2, options) {
       activityTimeout: 0
     });
     if (result.stderr.includes("askpass-compromised")) {
-      log.info("askpass code was already consumed \u2014 token has been revoked");
-      throw new Error("git auth failed \u2014 askpass code was already consumed, token revoked");
+      log.info("askpass code was replayed after revoke \u2014 token has been revoked");
+      throw new Error("git auth failed \u2014 askpass code was replayed after revoke, token revoked");
     }
     if (result.exitCode !== 0) {
       const stderr = result.stderr.trim();
@@ -143109,6 +143109,7 @@ ${stdout}` : stderr || stdout || "(no output)";
       stderr: result.stderr.trim()
     };
   } finally {
+    authServer.revoke(code);
     try {
       unlinkSync(scriptPath);
     } catch {
@@ -147419,19 +147420,22 @@ async function installFromNpmTarball(params) {
 }
 
 // utils/providerErrors.ts
+var PROVIDER_BILLING_EXHAUSTED_LABEL = "provider billing exhausted";
 var statusKey = `\\b(?:status[_ ]?code|http[_ ]?status|status)["']?\\s*[:=]\\s*["']?`;
 var PROVIDER_ERROR_PATTERNS = [
   // billing-payload patterns come BEFORE bare status-code patterns. providers
   // commonly return 401 / 429 for billing/quota exhaustion (OpenCode Zen
   // `CreditsError` / `FreeUsageLimitError`, Gemini `RESOURCE_EXHAUSTED` +
-  // "spending cap", Anthropic "Insufficient balance"). these are non-retryable
-  // and require user-billing action — distinct from a transient auth error or
-  // rate-limit. status-code patterns would otherwise win and surface
-  // "auth error (401)" / "rate limited (429)" with no billing hint. see #778.
-  { regex: /\bCreditsError\b/, label: "provider billing exhausted" },
-  { regex: /\bFreeUsageLimitError\b/, label: "provider billing exhausted" },
-  { regex: /Insufficient balance/i, label: "provider billing exhausted" },
-  { regex: /spending cap/i, label: "provider billing exhausted" },
+  // "spending cap", Anthropic "Insufficient balance" / "credit balance is
+  // too low"). these are non-retryable and require user-billing action —
+  // distinct from a transient auth error or rate-limit. status-code patterns
+  // would otherwise win and surface "auth error (401)" / "rate limited (429)"
+  // with no billing hint. see #778, #835.
+  { regex: /\bCreditsError\b/, label: PROVIDER_BILLING_EXHAUSTED_LABEL },
+  { regex: /\bFreeUsageLimitError\b/, label: PROVIDER_BILLING_EXHAUSTED_LABEL },
+  { regex: /Insufficient balance/i, label: PROVIDER_BILLING_EXHAUSTED_LABEL },
+  { regex: /credit balance is too low/i, label: PROVIDER_BILLING_EXHAUSTED_LABEL },
+  { regex: /spending cap/i, label: PROVIDER_BILLING_EXHAUSTED_LABEL },
   // auth patterns must come BEFORE rate-limit patterns. OpenRouter 401 error
   // payloads carry `x-ratelimit-*` response headers in the dump, and the
   // free-form rate-limit regex below would otherwise win on word-boundary
@@ -147502,6 +147506,13 @@ var ROUTER_KEYLIMIT_EXHAUSTED_PATTERN = /requires more credits.*?fewer max_token
 function isRouterKeylimitExhaustedError(text) {
   return ROUTER_KEYLIMIT_EXHAUSTED_PATTERN.test(text);
 }
+function isProviderBillingExhausted(text) {
+  return findProviderErrorMatch(text)?.label === PROVIDER_BILLING_EXHAUSTED_LABEL;
+}
+function extractProviderId(text) {
+  const match3 = text.match(/\bproviderID=([a-z0-9_-]+)/i);
+  return match3 ? match3[1].toLowerCase() : null;
+}
 
 // utils/skills.ts
 import { spawnSync as spawnSync5 } from "node:child_process";
@@ -149711,8 +149722,7 @@ import { randomUUID as randomUUID4 } from "node:crypto";
 import { writeFileSync as writeFileSync11 } from "node:fs";
 import { createServer as createServer2 } from "node:http";
 import { join as join15 } from "node:path";
-var CODE_TTL_MS = 5 * 60 * 1e3;
-var TAMPER_WINDOW_MS = 6e4;
+var REVOKED_TRAP_MS = 6e4;
 function revokeGitHubToken(token) {
   fetch("https://api.github.com/installation/token", {
     method: "DELETE",
@@ -149743,18 +149753,14 @@ async function startGitAuthServer(tmpdir3) {
       res.writeHead(404).end();
       return;
     }
-    if (entry.state === "pending") {
-      entry.state = "consumed";
-      clearTimeout(entry.timeout);
-      entry.timeout = setTimeout(() => codes.delete(code), TAMPER_WINDOW_MS);
-      entry.timeout.unref();
+    if (entry.state === "active") {
       res.writeHead(200, { "Content-Type": "text/plain" });
       res.end(entry.token);
       return;
     }
-    log.info("askpass code used twice \u2014 revoking token");
+    log.info("askpass code used after revoke \u2014 revoking token");
     revokeGitHubToken(entry.token);
-    clearTimeout(entry.timeout);
+    if (entry.timeout) clearTimeout(entry.timeout);
     codes.delete(code);
     res.writeHead(409, { "Content-Type": "text/plain" });
     res.end("compromised");
@@ -149771,14 +149777,16 @@ async function startGitAuthServer(tmpdir3) {
   log.debug(`git auth server listening on 127.0.0.1:${port}`);
   function register4(token) {
     const code = randomUUID4();
-    const timeout = setTimeout(() => {
-      codes.delete(code);
-      log.debug(`git auth code expired: ${code.slice(0, 8)}...`);
-    }, CODE_TTL_MS);
-    timeout.unref();
-    codes.set(code, { token, state: "pending", timeout });
+    codes.set(code, { token, state: "active" });
     return code;
   }
+  function revoke(code) {
+    const entry = codes.get(code);
+    if (!entry) return;
+    entry.state = "revoked";
+    entry.timeout = setTimeout(() => codes.delete(code), REVOKED_TRAP_MS);
+    entry.timeout.unref();
+  }
   function writeAskpassScript(code) {
     const scriptId = randomUUID4();
     const scriptName = `askpass-${scriptId}.js`;
@@ -149792,17 +149800,15 @@ async function startGitAuthServer(tmpdir3) {
       `if(r.statusCode===409){process.stderr.write("askpass-compromised\\n");process.exit(1)}`,
       `if(r.statusCode!==200){process.exit(1)}`,
       `var d="";r.on("data",function(c){d+=c});`,
-      `r.on("end",function(){`,
-      `process.stdout.write(d+"\\n");`,
-      `try{require("fs").unlinkSync("${scriptPath.replace(/\\/g, "\\\\")}")}catch(e){}`,
-      `})}).on("error",function(){process.exit(1)})}`
+      `r.on("end",function(){process.stdout.write(d+"\\n")})`,
+      `}).on("error",function(){process.exit(1)})}`
     ].join("\n");
     writeFileSync11(scriptPath, content, { mode: 448 });
     return scriptPath;
   }
   async function close() {
     for (const entry of codes.values()) {
-      clearTimeout(entry.timeout);
+      if (entry.timeout) clearTimeout(entry.timeout);
     }
     codes.clear();
     await new Promise((resolve3) => server.close(() => resolve3()));
@@ -149811,6 +149817,7 @@ async function startGitAuthServer(tmpdir3) {
   return {
     port,
     register: register4,
+    revoke,
     writeAskpassScript,
     close,
     [Symbol.asyncDispose]: close
@@ -154983,6 +154990,36 @@ async function resolveRunContextData(params) {
 function isProviderModelNotFoundError(message) {
   return message.includes("ProviderModelNotFoundError");
 }
+var PROVIDER_BILLING_URLS = {
+  deepseek: "https://platform.deepseek.com/top_up",
+  anthropic: "https://console.anthropic.com/settings/billing",
+  openai: "https://platform.openai.com/account/billing",
+  google: "https://aistudio.google.com/usage",
+  opencode: "https://opencode.ai/zen"
+};
+function detectProviderId(message) {
+  const harnessId = extractProviderId(message);
+  if (harnessId) return harnessId;
+  if (/credit balance is too low/i.test(message)) return "anthropic";
+  return null;
+}
+function formatProviderBillingExhausted(input) {
+  const providerId = detectProviderId(input.errorMessage);
+  const dashboardUrl = providerId ? PROVIDER_BILLING_URLS[providerId] : void 0;
+  const headline = providerId ? `**Your \`${providerId}\` account is out of credit.**` : "**Your provider account is out of credit.**";
+  const cta = dashboardUrl ? `[Top up \`${providerId}\` \u2192](${dashboardUrl})` : "Top up your provider account, then re-trigger Pullfrog.";
+  return [
+    headline,
+    "",
+    "Pullfrog detected a billing-exhausted response from your provider \u2014 the agent stopped before completing this run.",
+    "",
+    cta,
+    "",
+    `\`\`\`
+${input.errorMessage}
+\`\`\``
+  ].join("\n");
+}
 function formatProviderModelNotFoundSummary(input) {
   return `Pullfrog's free fallback model is no longer available in OpenCode's catalog. Add an API key for your configured model in the Pullfrog console for \`${input.owner}/${input.name}\`, or contact support if this persists.
 
@@ -155002,6 +155039,12 @@ function renderRunError(input) {
     isHang: true,
     errorMessage: input.errorMessage
   }) : null;
+  if (isProviderBillingExhausted(input.errorMessage)) {
+    const body = formatProviderBillingExhausted({ errorMessage: input.errorMessage });
+    return { summary: `### \u274C Pullfrog failed
+
+${body}`, comment: body };
+  }
   const apiKeySource = hangBody ?? input.errorMessage;
   const apiKeyErrorSummary = isApiKeyAuthError(apiKeySource) ? formatApiKeyErrorSummary({
     owner: input.repo.owner,
@@ -155125,12 +155168,14 @@ async function finalizeSuccessRun(input) {
     repo: input.repo,
     agentDiagnostic: input.toolState.agentDiagnostic
   }) : null;
-  if (rendered && input.toolState.progressComment) {
-    await reportErrorToComment({ toolState: input.toolState, error: rendered.comment }).catch(
-      (error49) => {
-        log.debug(`failure error report failed: ${error49}`);
-      }
-    );
+  if (rendered) {
+    await reportErrorToComment({
+      toolState: input.toolState,
+      error: rendered.comment,
+      createIfMissing: true
+    }).catch((error49) => {
+      log.debug(`failure error report failed: ${error49}`);
+    });
   }
   if (input.result.success && input.toolState.progressComment && !input.toolState.finalSummaryWritten) {
     await deleteProgressComment(input.toolContext).catch((error49) => {
@@ -155162,7 +155207,11 @@ async function writeRunErrorOutputs(input) {
   } catch {
   }
   try {
-    await reportErrorToComment({ toolState: input.toolState, error: input.rendered.comment });
+    await reportErrorToComment({
+      toolState: input.toolState,
+      error: input.rendered.comment,
+      createIfMissing: true
+    });
   } catch {
   }
 }

package/dist/utils/gitAuth.d.ts

@@ -1,9 +1,14 @@
 /**
  * git authentication via GIT_ASKPASS.
  *
- * a localhost HTTP server serves tokens via single-use UUID codes.
- * each $git() call writes a unique askpass script with the server
- * port+code baked into the file body — no secrets in subprocess env.
+ * a localhost HTTP server serves tokens via UUID codes whose lifetime is
+ * bounded by the parent $git() invocation: register() makes the code active,
+ * the script (and any sibling subprocess — e.g. git-lfs pre-push) can fetch
+ * the token any number of times, and $git()'s finally calls revoke() to
+ * close the window. each $git() call writes a unique askpass script with
+ * the server port+code baked into the file body — no secrets in subprocess
+ * env. a replay of a revoked code trips a 409 and revokes the underlying
+ * github installation token.
  *
  * see wiki/askpass.md for full security documentation.
  */
@@ -35,9 +40,13 @@ export declare function setGitAuthServer(server: GitAuthServer): void;
  * a remote and need credentials. working-tree operations (checkout, merge)
  * use $() from shell.ts which has no token.
  *
- * per call: registers a one-time code with the auth server, writes a
- * unique askpass script with port+code baked in, spawns git with
- * GIT_ASKPASS pointing to the script, and deletes the script in finally.
+ * per call: registers a code with the auth server (valid for the lifetime
+ * of this invocation), writes a unique askpass script with port+code baked
+ * in, spawns git with GIT_ASKPASS pointing to the script. on completion,
+ * revokes the code and deletes the script in finally. multiple sibling
+ * askpass calls within one invocation (e.g. git itself + git-lfs pre-push)
+ * all see a valid code; replay attempts after finally trip a 409 and the
+ * server revokes the underlying github token as a tamper signal.
  *
  * @example
  * await $git("fetch", ["origin", "main"], { token });

package/dist/utils/gitAuthServer.d.ts

@@ -1,16 +1,22 @@
 /**
  * ASKPASS-based git authentication server.
  *
- * serves tokens via a localhost HTTP server with single-use UUID codes.
+ * serves tokens via a localhost HTTP server with per-$git()-call UUID codes.
  * each $git() call gets a unique askpass script with the port+code baked in.
  * the token never appears in subprocess env — only the script file path.
  *
- * tamper-evident: if a code is used twice, the second request triggers
- * immediate token revocation via the GitHub API as a precaution.
+ * lifetime: the code is valid for as long as the $git() invocation is
+ * running. multiple askpass calls within one invocation (e.g. git's own
+ * fetch/push + a git-lfs pre-push hook that also authenticates) all
+ * succeed. $git() calls revoke(code) in finally; subsequent requests for
+ * a revoked code trigger immediate token revocation via the GitHub API
+ * as a tamper-evidence precaution (an agent replaying the code after the
+ * legitimate window has closed is the realistic attack we still catch).
  */
 export type GitAuthServer = {
     port: number;
     register: (token: string) => string;
+    revoke: (code: string) => void;
     writeAskpassScript: (code: string) => string;
     close: () => Promise<void>;
     [Symbol.asyncDispose]: () => Promise<void>;

package/dist/utils/providerErrors.d.ts

@@ -1,3 +1,5 @@
+/** Stable label for the BYOK provider-billing-exhausted classification. */
+export declare const PROVIDER_BILLING_EXHAUSTED_LABEL = "provider billing exhausted";
 /**
  * Result of a provider-error scan: the classification label plus a
  * human-readable excerpt centered on the matched line. The excerpt is what
@@ -11,3 +13,19 @@ export type ProviderErrorMatch = {
 export declare function findProviderErrorMatch(text: string): ProviderErrorMatch | null;
 export declare function detectProviderError(text: string): string | null;
 export declare function isRouterKeylimitExhaustedError(text: string): boolean;
+/**
+ * BYOK billing-exhausted: provider rejected the request because the user's
+ * provider wallet is empty (DeepSeek "Insufficient Balance", Anthropic
+ * "credit balance is too low", OpenCode Zen `CreditsError` /
+ * `FreeUsageLimitError`, Gemini "spending cap"). Distinct from
+ * `isRouterKeylimitExhaustedError` — that's Pullfrog's Router wallet, this
+ * is the user's own provider account.
+ */
+export declare function isProviderBillingExhausted(text: string): boolean;
+/**
+ * Extract `providerID=foo` from agent error logs (OpenCode emits this on
+ * `provider error detected (...)` lines). Returns the lowercase provider
+ * slug, or null when absent. Used to render a provider-specific dashboard
+ * link in the BYOK billing-exhausted summary.
+ */
+export declare function extractProviderId(text: string): string | null;

package/dist/utils/runErrorRenderer.d.ts

@@ -3,22 +3,37 @@
  * pair of user-facing markdown bodies — one for the GitHub Actions job
  * summary tab, one for the PR progress comment.
  *
- * Four classifications, in priority order:
+ * Classifications, in dispatch order (first match wins; the api-key
+ * branch additionally folds in the activity-timeout hang body as a
+ * sub-source so a hang masking an api-key error still surfaces the api-key
+ * CTA):
  *
  *   1. `BillingError` — either the proxy-token mint already threw one (402
  *      handled inline) or the agent runtime surfaced an OpenRouter
  *      "key budget exhausted" string mid-run. Both render via
  *      `formatBillingErrorSummary` so the user sees actionable copy.
  *
- *   2. Activity-timeout hang — `errorMessage` starts with
- *      `"activity timeout"` or `"agent still pending"`. The harness keeps
- *      structured diagnostic state on `toolState.agentDiagnostic`;
- *      `formatAgentHangBody` renders that as a markdown block.
+ *   2. BYOK provider billing-exhausted (#835) — DeepSeek "Insufficient
+ *      Balance", Anthropic "credit balance is too low", OpenCode Zen
+ *      `CreditsError`, Gemini "spending cap". Checked before api-key auth
+ *      because billing-exhausted responses often carry 401 status codes
+ *      that `isApiKeyAuthError` would otherwise mis-classify.
  *
- *   3. API-key auth error — `isApiKeyAuthError` sniffs the raw error string;
- *      `formatApiKeyErrorSummary` renders provider + console-link copy.
+ *   3. API-key auth error — `isApiKeyAuthError` sniffs the raw error string
+ *      (or the activity-timeout hang body when present, since that's where
+ *      the underlying provider error often lands); `formatApiKeyErrorSummary`
+ *      renders provider + console-link copy.
  *
- *   4. Default — a generic `❌ Pullfrog failed` block with the raw error
+ *   4. ProviderModelNotFoundError — stale free-fallback model id no longer
+ *      in the OpenCode catalog; renders a nudge to add a BYOK key.
+ *
+ *   5. Activity-timeout hang — `errorMessage` starts with
+ *      `"activity timeout"` or `"agent still pending"` AND none of the
+ *      above matched. The harness keeps structured diagnostic state on
+ *      `toolState.agentDiagnostic`; `formatAgentHangBody` renders that as
+ *      a markdown block.
+ *
+ *   6. Default — a generic `❌ Pullfrog failed` block with the raw error
  *      message in a fenced code block. Same body for both surfaces.
  *
  * The hang body and the API-key body diverge between the two surfaces only

package/dist/utils/runLifecycle.d.ts

@@ -71,6 +71,13 @@ export declare function finalizeSuccessRun(input: {
  *
  * `lastProgressBody` and the usage table are appended to the summary so the
  * partial work the agent did before failing isn't lost.
+ *
+ * `createIfMissing: true` is symmetric with `finalizeSuccessRun` — silent
+ * triggers (IncrementalReview / pull_request_synchronize / auto-label) that
+ * throw past `finalizeSuccessRun` (e.g. timeout race kills the agent
+ * mid-billing-exhausted-retry) reach this catch path with no progress
+ * comment to update, and without `createIfMissing` the terminal error
+ * lands only in the GH job summary that most users never open. see #835.
  */
 export declare function writeRunErrorOutputs(input: {
     rendered: RenderedRunError;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "pullfrog",
-  "version": "0.1.13",
+  "version": "0.1.14",
   "type": "module",
   "bin": {
     "pullfrog": "dist/cli.mjs",