Orchestration Planning Ux

[arul28]

Summary

Describe the change.

What Changed

Key files and behaviors.

Validation

How you tested.

Risks

Anything to watch.

  Open in ADE  ·  ade/orchestration-planning-ux-88fff44d branch  ·  PR #605

Summary by CodeRabbit

Release Notes

• New Features
  • Rolled out a deterministic lead planning workflow with structural plan readiness checks, content-hash–gated approvals, and unlocked model-selection steps.
  • Updated model-selection prompts/cards to show “Files it touches” and “Runs after,” including richer model-selection briefings.
  • Added planning timeline visualization and a validation findings panel with severity ordering and regression-test indicators.
  • Improved orchestration chat opening (worker/task routing) and added a docked plan-approval footer highlighting updates since last review.
• Documentation
  • Updated orchestrator planning/validation protocol documentation.
• Tests
  • Expanded UI and planning-gate test coverage.

Greptile Summary

• Adds deterministic orchestration planning stages for intake, deliberation, validation, model routing, and approval.
• Introduces structural plan.md readiness checks, reviewed-content approval hashing, and richer model-selection briefing metadata.
• Updates desktop orchestration UI with planning timelines, approval state, validation findings, and related chat/terminal surfaces.
• Expands TUI, iOS, docs, and test coverage for the planning and approval workflow.

Confidence Score: 3/5

Merge safety is limited by task lifecycle gates that can leave abandoned work unrecovered or allow completion despite blocking validation findings.

The changes are well-scoped and include expanded tests, but the orchestration state-management paths contain likely runtime correctness issues in recovery and validation gating.

apps/desktop/src/main/services/orchestration/orchestrationService.ts; apps/desktop/src/main/services/orchestration/patchPolicy.ts

T-Rex Logs

What T-Rex did

• T-Rex attempted a focused Vitest repro against the orchestration service recovery API, but the run was blocked by tooling and runtime issues.
• T-Rex executed a focused TypeScript harness that simulates a gate with blocker and high findings, printed latestRunStatus as passed, and then failed because the done gate accepted the blocking findings.
• T-Rex attempted the head-side orchestration planning gate test command, but Vitest could not resolve chokidar and the process timed out with exit code 124.
• T-Rex inspected base and head sources for the model-selection briefing and noted blockers are captured in the render path, with the head component reading metadata.filesHint and metadata.dependsOn.
• T-Rex attempted base and head captures against the OrchestrationPanel harness; the base run exited due to Vitest startup/tooling failure and the fallback run hung before producing runtime output.
• T-Rex compared chat routing logs before and after changes; the head run exited with sh: 1: vitest: not found, so the routing hypothesis could not be executed.

_{Ran code and verified through T-Rex}

Comments Outside Diff (2)

1. General comment

   Desktop model selection file row is labeled Touches instead of Files it touches

   • Bug
     • The new desktop briefing row for filesHint renders the label Touches. The validation contract requested the desktop card visibly show Files it touches (or Files for TUI). This may make the UI inconsistent with the intended prompt/card copy even though the metadata is otherwise consumed and truncated.
   • Cause
     • In apps/desktop/src/renderer/components/chat/ChatModelSelectionPendingCard.tsx, the file row label text is hard-coded as Touches.
   • Fix
     • Change the desktop file row label to Files it touches if that is the intended UX contract, leaving TUI as Files.

   _{Ran code and verified through T-Rex}

2. apps/desktop/src/main/services/orchestration/patchPolicy.ts, line 332-334 (link)

   Don’t pass blockers

   recordValidationRun can now attach structured findings, but this gate only checks that the latest run has status === "passed". A validator can record a passed run with a blocker or high finding, the Findings panel will still show the blocking issue, and releaseTask(status: "done") will allow the task to complete. Make the gate reject latest runs with unresolved blocker/high findings, or reject passed validation runs that contain them.

   Artifacts

   
   

   Repro: focused harness for passed validation run with blocker and high findings

   • Contains supporting evidence from the run (text/typescript; charset=utf-8).

   Stack trace captured during the T-Rex run

   • Keeps the raw stack trace available without making the summary code-heavy.

   

   _{Ran code and verified through T-Rex}

   Prompt To Fix With AI

   This is a comment left during a code review.
   Path: apps/desktop/src/main/services/orchestration/patchPolicy.ts
   Line: 332-334
   
   Comment:
   **Don’t pass blockers**
   
   `recordValidationRun` can now attach structured findings, but this gate only checks that the latest run has `status === "passed"`. A validator can record a passed run with a `blocker` or `high` finding, the Findings panel will still show the blocking issue, and `releaseTask(status: "done")` will allow the task to complete. Make the gate reject latest runs with unresolved blocker/high findings, or reject `passed` validation runs that contain them.
   
   How can I resolve this? If you propose a fix, please make it concise.

   

Prompt To Fix All With AI

Fix the following 2 code review issues. Work through them one at a time, proposing concise fixes.

---

### Issue 1 of 2
apps/desktop/src/main/services/orchestration/orchestrationService.ts:2147-2153
**Recover invalid leases**

This recovery path only resets tasks whose `claimLeaseUntil` is a valid expired string. If a crashed worker leaves a task in `claimed` or `in_progress` with a missing, `null`, or malformed lease, this filter skips it and the task stays assigned forever, so the lead cannot recover the abandoned work through `recoverStaleTasks`. Treat tasks without a valid future lease as recoverable instead of requiring a parseable expired timestamp.

### Issue 2 of 2
apps/desktop/src/main/services/orchestration/patchPolicy.ts:332-334
**Don’t pass blockers**

`recordValidationRun` can now attach structured findings, but this gate only checks that the latest run has `status === "passed"`. A validator can record a passed run with a `blocker` or `high` finding, the Findings panel will still show the blocking issue, and `releaseTask(status: "done")` will allow the task to complete. Make the gate reject latest runs with unresolved blocker/high findings, or reject `passed` validation runs that contain them.

_{Reviews (4): Last reviewed commit: "ship: iteration 13 address review feedba..." | Re-trigger Greptile}

Greptile also left 1 inline comment on this PR.

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

1 Skipped Deployment

Project	Deployment	Actions	Updated (UTC)
ade	Ignored	Preview	Jun 18, 2026 4:49am

[coderabbitai]

📝 Walkthrough

Walkthrough

Replaces summary-based plan quality gating with a deterministic, server-enforced planning state machine for the orchestrator lead role. Adds intake → three deliberation rounds → validation derivation → model selection → hash-gated approval flow backed by new service mutations, manifest normalization, and patch policies. Extends validation with structured ValidationFinding entries. Redesigns the model selection UI across desktop, CLI, and iOS to show agent briefing metadata and removes the suggested pre-selection. Adds a planning timeline panel, agents roster, plan approval footer, validation findings display, and a cross-app session navigation event bridge.

Changes

Deterministic Planning State Machine and UI

Layer / File(s)	Summary
Shared orchestration type schema apps/desktop/src/shared/types/orchestration.ts	Adds PlanningStage, PlanningState, PlanSpec, ValidationFinding/Severity, extends OrchestrationManifest with leadState.planning and planSpec, adds filesHint/dependsOn to model selection metadata, and adds optional findings to ValidationChecklistRun and OrchestrationRecordValidationRunRequest.
Manifest normalization, runtime gates, and patch policy apps/desktop/src/main/services/orchestration/manifestNormalization.ts, runtimeProfile.ts, patchPolicy.ts	Exports PLANNING_STAGES, createInitialPlanningState, createInitialPlanSpec; adds ensurePlanningAndSpec wired into normalizeManifestShape; adds validatePlanningState; adds isPlanningReadyForModelSelection and isPlanningReadyForApproval helpers; updates isOrchestrationPlanApproved to check planSpec.approval.state; denies lead patches to /leadState/planning/ and /planSpec/ paths.
Orchestration service planning state machine and validation findings apps/desktop/src/main/services/orchestration/orchestrationService.ts	Seeds leadState.planning and planSpec in runCreate; normalizes ValidationFinding entries into checklist runs with deduped/trimmed fields; implements recordPlanningIntake, recordPlanningRound, recordPlanningOverride, markPlanningReady, setPlanApprovalState, and releaseStaleClaims behind a runPlanningMutation mutex wrapper.
Planning gates integration tests apps/desktop/src/main/services/orchestration/orchestrationPlanningGates.test.ts	End-to-end test suite covering state machine transitions, round ordering, readiness gating with validation steps and model routing, explicit override waivers, assessPlanReadiness structural edge cases, patch policy denials, and releaseStaleClaims crash-resume.
Plan readiness assessment, validation derivation, system prompts, and SKILL documentation apps/desktop/src/main/services/ai/tools/orchestrationPlanQuality.ts, orchestrationValidationDerivation.ts, systemPrompt.ts, systemPrompt.test.ts, apps/desktop/resources/agent-skills/ade-orchestrator/SKILL.md	Replaces assessOrchestrationPlanQuality with assessPlanReadiness (parses plan.md via parsePlanSections and slugifyHeading, cross-checks manifest state); adds deriveSuggestedValidationSteps building ordered VS-<n> steps from intake; rewrites lead system prompt and SKILL.md for the deterministic planning sequence and new validation panel.
Orchestration tools: rewritten approval and new planning tools apps/desktop/src/main/services/ai/tools/orchestrationTools.ts	Rewrites requestPlanApproval with hash-gated approval via markPlanningReady and assessPlanReadiness; extends recordValidationRun with structured findings; adds isPlanningReadyForModelSelection gate and filesHint/dependsOn to model selection providerMetadata; wires five new lead-only tools (recordCodebaseIntake, askPlanningRound, recordPlanningOverride, proposeValidationSteps, recoverStaleTasks).
Orchestration tools integration tests apps/desktop/src/main/services/ai/tools/orchestrationTools.test.ts	Adds completeDeliberationRounds and completePlanningSequence helpers; updates approval and model selection test assertions to match the deterministic planning sequence and enriched providerMetadata; covers rejection paths and manifest persistence failure handling.
Model selection UI redesign apps/desktop/src/renderer/components/chat/ChatModelSelectionPendingCard.tsx, AgentChatComposer.tsx, apps/ade-cli/src/tuiClient/components/ApprovalPrompt.tsx, apps/ios/ADE/Views/Work/WorkModels.swift, WorkErrorAndMessageHelpers.swift, WorkChatComposerAndInputViews.swift	Removes suggested prop from ChatModelSelectionPendingCard (and iOS WorkPendingModelSelectionModel); decodes workDescription/filesHint/dependsOn in AgentChatComposer; renders Touches/Runs-after chips in the desktop card and a briefingList in the iOS card; adds model-selection briefing rows to the ADE CLI ApprovalPrompt.
Model selection UI tests apps/desktop/src/renderer/components/chat/ModelPickerPendingInput.test.tsx, apps/ade-cli/src/tuiClient/__tests__/ApprovalPrompt.test.tsx, apps/ios/ADETests/ADETests.swift	Updates desktop picker tests to assert no pre-selected model, expanded metadata, and reset on metadata change; adds CLI test for model_selection briefing rendering; adds iOS test asserting decoded briefing fields and absence of suggested.
Orchestration panel: planning timeline, agents roster, plan approval footer, validation findings apps/desktop/src/renderer/components/orchestration/PlanningTimeline.tsx, OrchestrationPanel.tsx, PanelChrome.tsx, PhaseAccordion.tsx, TaskCard.tsx, ValidationFindings.tsx, OrchestrationPanel.test.tsx	Adds PlanningTimeline vertical stepper, PlanApprovalFooter docked component, AgentsRoster/AgentStatusDot in OrchestrationPanel, ValidationFindings severity-ranked list; wires PhaseAccordion to render timeline; intercepts open-worker-chat via handleTaskAction; computes changedSinceLastReview from plan hash; refactors TaskCard Row 5 to separate owner label from Open chat button.
Session navigation bridge apps/desktop/src/renderer/components/terminals/TerminalsPage.tsx, apps/desktop/src/renderer/components/chat/AgentChatPane.tsx, apps/desktop/src/renderer/components/terminals/TerminalsPage.test.tsx	TerminalsPage listens for ade:work:select-session to select lane, focus session, and open tab; AgentChatPane dispatches now include laneId alongside sessionId; test asserts the full navigation sequence.

Estimated code review effort

🎯 5 (Critical) | ⏱️ ~120 minutes

Possibly related PRs

• arul28/ADE#259: Both PRs update AgentChatComposer metadata handling—main PR extends model selection metadata with workDescription, filesHint, and dependsOn, while related PR updates model catalog callback wiring and related metadata flows.

Suggested labels

desktop, ios

🚥 Pre-merge checks | ✅ 3 | ❌ 2

❌ Failed checks (1 warning, 1 inconclusive)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 18.95% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.
Title check	❓ Inconclusive	The title 'Orchestration Planning Ux' is vague and does not clearly convey the scope or nature of the substantive changes, using a generic shortened term without specificity.	Consider a more descriptive title that captures the main changes, such as 'Add deterministic orchestration planning gates and approval UX' or 'Implement orchestration planning sequence with model-selection briefing.'

✅ Passed checks (3 passed)

Check name	Status	Explanation
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

📝 Generate docstrings

• Create stacked PR
• Commit on current branch

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch ade/orchestration-planning-ux-88fff44d

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[arul28]

@copilot review but do not make fixes

[arul28]

@codex review

[mintlify]

Preview deployment for your docs. Learn more about Mintlify Previews.

Project	Status	Preview	Updated (UTC)
ade-ac1c6011	🟢 Ready	View Preview	Jun 18, 2026, 12:07 AM

💡 Tip: Enable Workflows to automatically generate PRs for you.

[arul28]

@codex review

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 250aaf67d0

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[chatgpt-codex-connector]

Keep non-goals from satisfying the goal section

Because this matcher is run against every heading, a heading like Out of scope / non-goals or Non-goals satisfies the required goal section before the out-of-scope check runs. In a plan that omits a real Goal heading but includes non-goals, assessPlanReadiness will not report goal as missing, so requestPlanApproval can approve a plan without the Goal section this gate requires. Please anchor or word-bound this pattern so negative-goal headings do not count as the plan goal.

Useful? React with 👍 / 👎.

[arul28]

Fixed in 0732dff: the goal heading matcher now only accepts goal/objective/summary headings at the start of the heading, and the regression covers Out of scope / non-goals no longer satisfying the required Goal section.

[chatgpt-codex-connector]

Do not treat selected option ids as free text

When the user picks an option without typing extra text, the ask-user bridge still returns answer as the first selected option value, while the actual selections are already in answers[questionId]. Falling back to result.answer here stores that option id as freeText, so normal planning rounds render/log answers like Safe path — safe even though the user did not enter free-form text. Please only populate freeText from responseText (or otherwise ignore answer when structured answers exist).

Useful? React with 👍 / 👎.

[arul28]

Fixed in 0732dff: askPlanningRound now stores freeText from responseText, while structured option selections stay in selectedOptionIds; added a regression for the ask-user bridge returning answer plus answers.

[coderabbitai]

Actionable comments posted: 5

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

apps/ios/ADE/Views/Work/WorkChatComposerAndInputViews.swift (1)

1429-1450: ⚠️ Potential issue | 🟠 Major | ⚡ Quick win

Reset selection state when the pending request changes

Line 1429-Line 1450 only set defaults at init-time. In SwiftUI, @State persists for the same view identity, so a later model-selection request can inherit stale selection and submit the wrong model.

Proposed fix

 struct WorkModelSelectionPendingCard: View {
@@
   `@State` private var selectedModel: WorkModelOption?
   `@State` private var pickerPresented = false
+
+  private var requestResetKey: String {
+    [
+      request.title,
+      request.workDescription ?? "",
+      request.filesHint.joined(separator: "\u{1F}"),
+      request.dependsOn.joined(separator: "\u{1F}")
+    ].joined(separator: "\u{1E}")
+  }
@@
     .sheet(isPresented: $pickerPresented) {
@@
       .environmentObject(syncService)
     }
+    .onChange(of: requestResetKey) { _, _ in
+      selectedModelId = ""
+      selectedProvider = "claude"
+      selectedReasoningEffort = ""
+      selectedCodexFastMode = false
+      selectedModel = nil
+      pickerPresented = false
+    }
   }

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@apps/ios/ADE/Views/Work/WorkChatComposerAndInputViews.swift` around lines
1429 - 1450, The init method initializes the `@State` variables (selectedModelId,
selectedProvider, selectedReasoningEffort, selectedCodexFastMode, selectedModel)
only at view creation time. Since `@State` persists across view identity, when the
request parameter changes to a new WorkPendingModelSelectionModel, these state
variables retain stale values from the previous selection. Add a .onChange
modifier that watches the request parameter and resets all five `@State` variables
back to their initial values (empty string for selectedModelId, "claude" for
selectedProvider, empty string for selectedReasoningEffort, false for
selectedCodexFastMode, and nil for selectedModel) whenever the request changes.

🧹 Nitpick comments (1)

apps/desktop/src/renderer/components/orchestration/OrchestrationPanel.tsx (1)

453-459: ⚡ Quick win

Add an explicit accessible name for each roster “Open chat” button.

All roster buttons currently expose the same visible label (“Open chat”), which is ambiguous for assistive-tech navigation and encourages order-coupled test selectors. Add an aria-label with agent context.

Suggested change

             <button
               type="button"
               data-testid="orchestration-roster-open-chat"
+              aria-label={`Open ${agent.role}${agent.tag ? ` · ${agent.tag}` : ""} chat`}
               onClick={() => onOpenSession?.(agent.sessionId)}
               className="inline-flex items-center gap-1 rounded-md border border-sky-300/30 bg-sky-300/10 px-1.5 py-0.5 text-[10px] font-medium text-sky-100 transition-colors hover:bg-sky-300/[0.18]"
               title={`Open ${agent.role}${agent.tag ? ` · ${agent.tag}` : ""} chat`}
             >

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@apps/desktop/src/renderer/components/orchestration/OrchestrationPanel.tsx`
around lines 453 - 459, The roster "Open chat" button in the OrchestrationPanel
component lacks an accessible name for assistive technologies, making all
buttons appear identical to screen readers. Add an aria-label attribute to the
button element (the one with data-testid="orchestration-roster-open-chat" and
onClick handler for onOpenSession) that includes the agent context such as
agent.role and agent.tag, similar to the existing title attribute pattern, to
provide unique and descriptive accessible names for each button.

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@apps/ade-cli/src/tuiClient/components/ApprovalPrompt.tsx`:
- Around line 53-56: The stringListValue function filters entries based on
trimmed content length but returns the original untrimmed strings. To fix this,
apply the trim() operation to the entries being returned from the filter, not
just in the condition check. Modify the filter logic in the Array.isArray branch
so that each string entry is trimmed before being included in the final array.

In `@apps/desktop/src/main/services/ai/tools/orchestrationTools.ts`:
- Around line 787-793: The await call to svc.setPlanApprovalState with
changes_requested state ignores its result and continues execution regardless of
success or failure. If this persistence operation fails, the function still
returns plan_rejected while the approval state remains inconsistent. Add error
handling after the await to check if setPlanApprovalState succeeded, and throw
an error or handle the failure appropriately before returning the plan_rejected
result to ensure the approval state and hash persist correctly.
- Around line 1287-1306: The askPlanningRound function prompts the user via
onAskUser before validating that the requested input.kind is unlocked or allowed
for the current planning stage. Add validation after checking
manifest.currentPhase is "planning" and before calling universalOpts.onAskUser
to confirm that input.kind is a valid and unlocked round for the manifest's
current stage. This validation should return an error response if the kind is
out-of-order or not yet unlocked, preventing users from answering questions that
the service would later reject.

In `@apps/desktop/src/renderer/components/chat/ChatModelSelectionPendingCard.tsx`:
- Around line 52-55: Add a useEffect hook that monitors for changes to the
model-selection request (likely through a request ID or role/tag prop) and
resets the state variables modelId, setModelId, provider, setProvider,
reasoningEffort, setReasoningEffort, and fastMode, setFastMode back to their
initial values whenever a new request arrives. This prevents stale values from
the previous request from persisting when the component is reused with a
different model-selection request without unmounting.

In `@apps/desktop/src/renderer/components/chat/ModelPickerPendingInput.test.tsx`:
- Around line 64-83: The test "renders the agent briefing and starts with no
model pre-selected" is incomplete as it verifies the filesHint rendering but
does not verify that the dependsOn (Runs after) section is rendered, even though
the metadata fixture includes dependsOn data. Add two assertions after the
existing filesHint verification in the test to confirm that both the "Runs
after" text and the "backend" value from the dependsOn array are rendered on the
screen. This ensures the test fully validates all briefing information displayed
by the ChatModelSelectionPendingCard component.

---

Outside diff comments:
In `@apps/ios/ADE/Views/Work/WorkChatComposerAndInputViews.swift`:
- Around line 1429-1450: The init method initializes the `@State` variables
(selectedModelId, selectedProvider, selectedReasoningEffort,
selectedCodexFastMode, selectedModel) only at view creation time. Since `@State`
persists across view identity, when the request parameter changes to a new
WorkPendingModelSelectionModel, these state variables retain stale values from
the previous selection. Add a .onChange modifier that watches the request
parameter and resets all five `@State` variables back to their initial values
(empty string for selectedModelId, "claude" for selectedProvider, empty string
for selectedReasoningEffort, false for selectedCodexFastMode, and nil for
selectedModel) whenever the request changes.

---

Nitpick comments:
In `@apps/desktop/src/renderer/components/orchestration/OrchestrationPanel.tsx`:
- Around line 453-459: The roster "Open chat" button in the OrchestrationPanel
component lacks an accessible name for assistive technologies, making all
buttons appear identical to screen readers. Add an aria-label attribute to the
button element (the one with data-testid="orchestration-roster-open-chat" and
onClick handler for onOpenSession) that includes the agent context such as
agent.role and agent.tag, similar to the existing title attribute pattern, to
provide unique and descriptive accessible names for each button.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: 0135f553-e5c4-4e3e-8717-49f4c87dfef7

📥 Commits

Reviewing files that changed from the base of the PR and between fd04444 and 250aaf6.

⛔ Files ignored due to path filters (6)

• docs/ARCHITECTURE.md is excluded by !docs/**
• docs/features/agents/tool-registration.md is excluded by !docs/**
• docs/features/chat/README.md is excluded by !docs/**
• docs/features/chat/composer-and-ui.md is excluded by !docs/**
• docs/features/terminals-and-sessions/README.md is excluded by !docs/**
• docs/features/terminals-and-sessions/ui-surfaces.md is excluded by !docs/**

📒 Files selected for processing (31)

• apps/ade-cli/src/tuiClient/__tests__/ApprovalPrompt.test.tsx
• apps/ade-cli/src/tuiClient/components/ApprovalPrompt.tsx
• apps/desktop/resources/agent-skills/ade-orchestrator/SKILL.md
• apps/desktop/src/main/services/ai/tools/orchestrationPlanQuality.ts
• apps/desktop/src/main/services/ai/tools/orchestrationTools.test.ts
• apps/desktop/src/main/services/ai/tools/orchestrationTools.ts
• apps/desktop/src/main/services/ai/tools/orchestrationValidationDerivation.ts
• apps/desktop/src/main/services/ai/tools/systemPrompt.ts
• apps/desktop/src/main/services/orchestration/manifestNormalization.ts
• apps/desktop/src/main/services/orchestration/orchestrationPlanningGates.test.ts
• apps/desktop/src/main/services/orchestration/orchestrationService.ts
• apps/desktop/src/main/services/orchestration/patchPolicy.ts
• apps/desktop/src/main/services/orchestration/runtimeProfile.ts
• apps/desktop/src/renderer/components/chat/AgentChatComposer.tsx
• apps/desktop/src/renderer/components/chat/AgentChatPane.tsx
• apps/desktop/src/renderer/components/chat/ChatModelSelectionPendingCard.tsx
• apps/desktop/src/renderer/components/chat/ModelPickerPendingInput.test.tsx
• apps/desktop/src/renderer/components/orchestration/OrchestrationPanel.test.tsx
• apps/desktop/src/renderer/components/orchestration/OrchestrationPanel.tsx
• apps/desktop/src/renderer/components/orchestration/PanelChrome.tsx
• apps/desktop/src/renderer/components/orchestration/PhaseAccordion.tsx
• apps/desktop/src/renderer/components/orchestration/PlanningTimeline.tsx
• apps/desktop/src/renderer/components/orchestration/TaskCard.tsx
• apps/desktop/src/renderer/components/orchestration/ValidationFindings.tsx
• apps/desktop/src/renderer/components/terminals/TerminalsPage.test.tsx
• apps/desktop/src/renderer/components/terminals/TerminalsPage.tsx
• apps/desktop/src/shared/types/orchestration.ts
• apps/ios/ADE/Views/Work/WorkChatComposerAndInputViews.swift
• apps/ios/ADE/Views/Work/WorkErrorAndMessageHelpers.swift
• apps/ios/ADE/Views/Work/WorkModels.swift
• apps/ios/ADETests/ADETests.swift

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: bc5e8eda34

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[chatgpt-codex-connector]

Include child headings in plan section bodies

When a required plan section is organized with subsections, such as ## Agent plan followed immediately by ### Worker / ### Validator, this parser closes the parent section as soon as it sees the child heading. assessPlanReadiness then sees an empty or very thin parent body and blocks approval even though the nested subsection content is substantive. Aggregate lower-level headings into the current parent section, or otherwise account for child content before applying the body-length gate.

Useful? React with 👍 / 👎.

[arul28]

Fixed in fa5f100: parsePlanSections now keeps child subsection headings/content inside the parent section body, with a regression for an Agent plan made only of Worker/Validator subsections.

[chatgpt-codex-connector]

Keep option answers out of free text

For structured planning questions answered by selecting an option, the ask-user bridge returns both answers[questionId] and answer populated from the first selected value. Falling back to result.answer here records that option as freeText, so an option-only response is stored as both selectedOptionIds and free text (and mixed option+freeform responses cannot be separated correctly). Split returned answer values against the offered option ids, and only store actual freeform text as freeText.

Useful? React with 👍 / 👎.

[arul28]

Fixed in fa5f100: option selections stay in selectedOptionIds and freeText only comes from explicit responseText for structured option questions; covered by the planning-round regression.

[arul28]

@codex review

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 0732dfff94

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[chatgpt-codex-connector]

Include plan content for non-sidebar approval clients

When a user approves from iOS or the ADE CLI/TUI, there is no desktop sidebar plan narrative to review; those clients still derive the review body from the pending-input payload (for example, iOS pendingWorkPlanApprovalFromApproval looks for providerMetadata.planContent and otherwise falls back to the request text, and the TUI has no plan pane). This new payload sends only planContentHash, so those clients show a generic “Review the plan on the sidebar...” prompt while the accept action still approves the real plan, causing blind approvals outside the desktop sidebar flow. Keep the plan text (or a client-readable plan reference) in the approval metadata until those clients can render the live plan.

Useful? React with 👍 / 👎.

[arul28]

Fixed in 52c268b: requestPlanApproval now includes the exact live plan.md content in providerMetadata.planContent alongside planContentHash, so iOS/TUI clients can review the same plan bytes without relying on the desktop sidebar. Added an orchestrationTools regression and reran shard 4/typecheck.

[arul28]

@codex review

[arul28]

Addressed the remaining CodeRabbit outside-diff/nitpick items in 17b1c76: iOS WorkModelSelectionPendingCard now resets selection state when the pending model-selection request changes, and roster Open chat buttons now have agent-specific aria-labels. Verified with focused OrchestrationPanel tests, desktop typecheck, and iOS build-for-testing.\n\n@codex review

[arul28]

@codex review

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 52c268b352

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[chatgpt-codex-connector]

Require a real user override before skipping rounds

This writes planning.overrides.skippedRounds directly from the tool input without verifying or appending a matching UserOverrideEntry; markPlanningReady later treats those skipped rounds as satisfied, so a lead can bypass the functional/UI/extras gates even when the user never waived them. The existing validation-gate bypass requires a human override plus a user-override entry in one transaction; the planning-round bypass needs the same server-side proof instead of relying on the prompt text to do a separate manifest patch.

Useful? React with 👍 / 👎.

[arul28]

Fixed in f0f68e1. recordPlanningOverride now requires a literal skipReason for skipped rounds, appends matching UserOverrideEntry records atomically with affectedDefault=planning.round., and markPlanningReady only honors skipped rounds when those entries still exist. Added regressions for the normal skip path and an orphaned skipped-round state with deleted override entries. Verified with targeted orchestration tests, desktop typecheck, shard 4, and lint.

[chatgpt-codex-connector]

Split free-form answers from option ids

For an options-based planning round with freeform enabled, the inline question UI submits both selected option values and typed freeform text in the same answers array; this line stores every value as selectedOptionIds, so custom text becomes a bogus option id and freeText stays empty. In that scenario the manifest loses the distinction between the user's selected option and their extra constraints, and the planning timeline/model context can render the typed text as if it were an option id; filter values against input.options and store unmatched values as free text.

Useful? React with 👍 / 👎.

[arul28]

Fixed in f0f68e1. askPlanningRound now filters returned answer values against the offered option IDs and stores unmatched typed values as freeText, combined with responseText when present. Added a regression for mixed selected option + custom text. Verified with orchestrationTools.test.ts, desktop typecheck, shard 4, and lint.

[chatgpt-codex-connector]

Require explicit validation waivers

Because this regex scans literal user override text, instructions like “do not skip validation” or “no validation shortcuts” still match skip validation / no validation, which lets planning be marked ready with zero validation steps even though the user explicitly asked not to waive validation. Use an explicit override shape or stricter positive phrases so negated instructions cannot disable the validation gate.

Useful? React with 👍 / 👎.

[arul28]

Fixed in f0f68e1. Validation waivers now use a shared explicit helper that rejects negated phrasing like "do not skip validation" / "no validation shortcuts" while preserving direct waivers like "no validation for this run". The service and plan-quality gate both use it now, with regressions for the negated and positive cases. Verified with targeted orchestration tests, desktop typecheck, shard 4, and lint.

[coderabbitai]

Actionable comments posted: 3

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@apps/desktop/src/main/services/ai/tools/orchestrationPlanQuality.ts`:
- Around line 4-8: The documentation comment block references
`assessOrchestrationPlanQuality` as a retained legacy gate, but this function no
longer exists in the file. Remove the sentence in the comment that mentions this
non-existent function being retained for legacy callers, specifically the part
referencing the old regex-over-summary gate and `assessOrchestrationPlanQuality`
to keep the documentation accurate with the current codebase.
- Around line 136-151: The logic for finding matching sections uses
sections.find() which returns only the first heading that matches the pattern,
causing validation to fail if an earlier thin heading (like "Validation
findings") matches before a later, more substantial heading (like "Validation /
proof plan"). Instead of using find() to get a single match, retrieve all
sections that match the pattern and validate that at least one of them meets the
content requirements, or select the most appropriate match before checking the
body length against MIN_BODY_CHARS.
- Around line 51-53: The markdown parser in the for loop iterating through lines
does not account for code fences, so headings inside fenced code blocks are
incorrectly treated as real plan sections. Add a fence detection check before
the heading regex by introducing an inFence boolean variable that tracks whether
the parser is currently inside a markdown code fence (detected by lines matching
a fence pattern like ~~~ or ```). When a fence marker is detected, toggle the
inFence state, append the line to any openSections, and continue to the next
iteration. Only execute the heading regex pattern match when inFence is false,
ensuring that markdown headings inside code fences are skipped and treated as
content instead of section headers.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: 3946a584-66dd-4b6f-91b4-829148fd9e27

📥 Commits

Reviewing files that changed from the base of the PR and between 250aaf6 and f8591e3.

⛔ Files ignored due to path filters (6)

• docs/ARCHITECTURE.md is excluded by !docs/**
• docs/features/agents/tool-registration.md is excluded by !docs/**
• docs/features/chat/README.md is excluded by !docs/**
• docs/features/chat/composer-and-ui.md is excluded by !docs/**
• docs/features/terminals-and-sessions/README.md is excluded by !docs/**
• docs/features/terminals-and-sessions/ui-surfaces.md is excluded by !docs/**

📒 Files selected for processing (32)

• apps/ade-cli/src/tuiClient/__tests__/ApprovalPrompt.test.tsx
• apps/ade-cli/src/tuiClient/components/ApprovalPrompt.tsx
• apps/desktop/resources/agent-skills/ade-orchestrator/SKILL.md
• apps/desktop/src/main/services/ai/tools/orchestrationPlanQuality.ts
• apps/desktop/src/main/services/ai/tools/orchestrationTools.test.ts
• apps/desktop/src/main/services/ai/tools/orchestrationTools.ts
• apps/desktop/src/main/services/ai/tools/orchestrationValidationDerivation.ts
• apps/desktop/src/main/services/ai/tools/systemPrompt.test.ts
• apps/desktop/src/main/services/ai/tools/systemPrompt.ts
• apps/desktop/src/main/services/orchestration/manifestNormalization.ts
• apps/desktop/src/main/services/orchestration/orchestrationPlanningGates.test.ts
• apps/desktop/src/main/services/orchestration/orchestrationService.ts
• apps/desktop/src/main/services/orchestration/patchPolicy.ts
• apps/desktop/src/main/services/orchestration/runtimeProfile.ts
• apps/desktop/src/renderer/components/chat/AgentChatComposer.tsx
• apps/desktop/src/renderer/components/chat/AgentChatPane.tsx
• apps/desktop/src/renderer/components/chat/ChatModelSelectionPendingCard.tsx
• apps/desktop/src/renderer/components/chat/ModelPickerPendingInput.test.tsx
• apps/desktop/src/renderer/components/orchestration/OrchestrationPanel.test.tsx
• apps/desktop/src/renderer/components/orchestration/OrchestrationPanel.tsx
• apps/desktop/src/renderer/components/orchestration/PanelChrome.tsx
• apps/desktop/src/renderer/components/orchestration/PhaseAccordion.tsx
• apps/desktop/src/renderer/components/orchestration/PlanningTimeline.tsx
• apps/desktop/src/renderer/components/orchestration/TaskCard.tsx
• apps/desktop/src/renderer/components/orchestration/ValidationFindings.tsx
• apps/desktop/src/renderer/components/terminals/TerminalsPage.test.tsx
• apps/desktop/src/renderer/components/terminals/TerminalsPage.tsx
• apps/desktop/src/shared/types/orchestration.ts
• apps/ios/ADE/Views/Work/WorkChatComposerAndInputViews.swift
• apps/ios/ADE/Views/Work/WorkErrorAndMessageHelpers.swift
• apps/ios/ADE/Views/Work/WorkModels.swift
• apps/ios/ADETests/ADETests.swift

✅ Files skipped from review due to trivial changes (1)

• apps/desktop/src/renderer/components/orchestration/TaskCard.tsx

🚧 Files skipped from review as they are similar to previous changes (27)

• apps/desktop/src/main/services/orchestration/patchPolicy.ts
• apps/ade-cli/src/tuiClient/tests/ApprovalPrompt.test.tsx
• apps/desktop/src/main/services/orchestration/runtimeProfile.ts
• apps/desktop/src/renderer/components/chat/AgentChatPane.tsx
• apps/ios/ADE/Views/Work/WorkChatComposerAndInputViews.swift
• apps/desktop/src/renderer/components/chat/ModelPickerPendingInput.test.tsx
• apps/desktop/src/renderer/components/orchestration/PanelChrome.tsx
• apps/ios/ADE/Views/Work/WorkModels.swift
• apps/desktop/src/renderer/components/orchestration/OrchestrationPanel.test.tsx
• apps/desktop/src/renderer/components/terminals/TerminalsPage.test.tsx
• apps/desktop/src/renderer/components/orchestration/PhaseAccordion.tsx
• apps/desktop/src/renderer/components/chat/AgentChatComposer.tsx
• apps/ios/ADETests/ADETests.swift
• apps/desktop/src/main/services/orchestration/orchestrationPlanningGates.test.ts
• apps/desktop/src/renderer/components/orchestration/PlanningTimeline.tsx
• apps/desktop/resources/agent-skills/ade-orchestrator/SKILL.md
• apps/ade-cli/src/tuiClient/components/ApprovalPrompt.tsx
• apps/desktop/src/main/services/ai/tools/systemPrompt.ts
• apps/desktop/src/main/services/ai/tools/orchestrationValidationDerivation.ts
• apps/desktop/src/main/services/orchestration/manifestNormalization.ts
• apps/desktop/src/renderer/components/chat/ChatModelSelectionPendingCard.tsx
• apps/desktop/src/renderer/components/orchestration/OrchestrationPanel.tsx
• apps/desktop/src/main/services/ai/tools/orchestrationTools.test.ts
• apps/desktop/src/shared/types/orchestration.ts
• apps/ios/ADE/Views/Work/WorkErrorAndMessageHelpers.swift
• apps/desktop/src/main/services/ai/tools/orchestrationTools.ts
• apps/desktop/src/main/services/orchestration/orchestrationService.ts

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: f8591e316e

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[chatgpt-codex-connector]

Count by-role routing in planning gate

When a lead configures a valid route in modelRouting.byRole (which resolveOrchestrationModel already honors), the new readiness gate still reports missing model routing because this helper only checks byRoleTag, byTag, and default. That blocks markPlanningReady/approval even though spawning would resolve the model correctly; include non-empty manifest.modelRouting.byRole in this predicate.

Useful? React with 👍 / 👎.

[chatgpt-codex-connector]

Verify plan bytes before approving

This records the hash captured before the pending approval was shown, but it never checks that the current plan.md still hashes to that value before advancing to developing. If the plan file changes while the approval is pending (the service watches and reloads external plan edits), the user can approve older bytes while the run proceeds with unreviewed plan content; compare runtime.planMd to args.planContentHash in the approved branch and require a fresh approval on mismatch.

Useful? React with 👍 / 👎.

[arul28]

@codex review

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: c24be823c3

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[chatgpt-codex-connector]

Re-read plan.md before recording approval

When plan.md is edited while the approval prompt is pending (for example by a concurrent planWrite/planAppend, which does not bump the manifest etag), this records approval with the hash computed before onAskUser returned and advances the current run to developing. That lets late plan edits bypass reapproval and leaves approvedPlanContentHash pointing at bytes that no longer match the plan the run will execute; re-read the bundle and compare the hash immediately before setting approved.

Useful? React with 👍 / 👎.

[arul28]

Fixed in b7dfb6b. requestPlanApproval now re-reads plan.md after an accept only to compare the current hash with the exact hash displayed in the pending approval; if it changed, ADE records changes_requested against the reviewed hash and returns plan_changed_after_review so the updated plan must be reviewed again. Validated with targeted orchestration tests, desktop typecheck, desktop shard 4, diff check, and desktop lint.

[arul28]

@codex review

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: b7dfb6b96a

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[chatgpt-codex-connector]

Skip waived stages after recording a round

When a user waives a later round before the current one is recorded (for example, after intake they say to skip the UI round while the stage is still round_functional), recordPlanningOverride stores the skip but does not advance because the current stage is not skipped yet; this transition then unconditionally moves the completed functional round to round_ui. The run is left stuck on a skipped round, so askPlanningRound('extras') and model selection remain locked unless the same override is recorded again. Advance through already-skipped stages here as well.

Useful? React with 👍 / 👎.

[arul28]

Fixed in b920536. recordPlanningRound now advances its next stage through already-skipped rounds using the same helper as recordPlanningOverride, so a prior UI/extras skip no longer leaves the lead stuck on round_ui after functional is recorded. Added a regression for pre-skipped UI+extras advancing to rounds_complete. Validated with targeted orchestration tests, desktop typecheck, desktop shard 4, diff check, and desktop lint.

[chatgpt-codex-connector]

Require explicit validation-waiver wording

For literal override text such as skip the UI round; no validation changes, this pattern matches no validation and causes recordPlanningOverride to record a validation waiver; markPlanningReady will then accept zero validation steps even though the user did not ask to bypass validation. Narrow this to explicit skip/waive/not-required wording, or exclude cases like no validation changes, so incidental wording cannot disable the validation gate.

Useful? React with 👍 / 👎.

[arul28]

Fixed in b920536. Tightened validation-waiver detection so incidental text like "no validation changes" no longer waives validation; explicit forms such as skip/waive/bypass validation, no validation required/needed/for this run, without running validation, or validation not required still count. Added a regression proving "skip the UI round; no validation changes" skips UI only and still requires validation steps. Validated with targeted orchestration tests, desktop typecheck, desktop shard 4, diff check, and desktop lint.

[arul28]

@codex review

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: b920536254

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[chatgpt-codex-connector]

Count by-role model routes in readiness gates

The readiness checks use this helper before requestPlanApproval. Because resolveOrchestrationModel already supports modelRouting.byRole, a run that deliberately sets only /modelRouting/byRole/worker or /validator can spawn with that route, but markPlanningReady/assessPlanReadiness still report missing model routing and block approval. Include byRole here so all supported routing forms satisfy the gate.

Useful? React with 👍 / 👎.

[arul28]

Fixed in 93b8b22. hasOrchestrationModelRouting now counts modelRouting.byRole in addition to byRoleTag/byTag/default, matching resolveOrchestrationModel support. Added a planning readiness regression where /modelRouting/byRole/worker alone satisfies the model-routing gate. Validated with targeted orchestration tests, desktop typecheck, desktop shard 4, diff check, and desktop lint.

[chatgpt-codex-connector]

Derive round summaries from the user's answer

lockedSummary is supplied in the tool input before onAskUser returns, then recorded unchanged after selectedOptionIds and freeText are known. When the user selects a different option or adds custom scope, the manifest still marks the round complete with a stale or contradictory locked outcome, so later planning/approval gates operate on misleading planning state. Build this summary from the actual response or record only the answered selection here.

Useful? React with 👍 / 👎.

[arul28]

Fixed in 93b8b22. askPlanningRound now derives lockedSummary from the actual accepted response: selected option labels plus any response/custom free text, with the input lockedSummary only as a fallback. Added regressions for custom text and for a user selecting a different option than the supplied pre-prompt summary. Validated with targeted orchestration tests, desktop typecheck, desktop shard 4, diff check, and desktop lint.

[arul28]

@codex review

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 93b8b22823

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[chatgpt-codex-connector]

Include plan text in plan approval prompts

When requestPlanApproval is used from the ADE CLI/TUI, there is no plan sidebar to review; the TUI ApprovalPrompt renders the request description/questions and does not read providerMetadata.planContent. Because this call now omits body unless an optional note is provided, those clients only see the sidebar-oriented question and can approve without seeing the plan bytes they are approving. Keep the live plan.md in the prompt body/description for non-sidebar clients, or teach the TUI approval prompt to render providerMetadata.planContent.

Useful? React with 👍 / 👎.

[arul28]

Fixed in 83dfd7a. requestPlanApproval now always includes the live plan.md bytes in the approval prompt body, with any optional note prepended, while still carrying planContent/planContentHash in providerMetadata. Added a regression asserting the approval prompt body contains the plan for non-sidebar clients. Validated with targeted orchestration tests, desktop typecheck, desktop shard 4, diff check, and desktop lint.

[chatgpt-codex-connector]

Reject the initial pending goal placeholder

When a run is created without a goalSummary, initialPlanMd seeds ## Goal with _pending — the lead will fill this in_; this readiness check treats that placeholder as substantive because it is longer than MIN_BODY_CHARS. A lead can fill the other required sections and pass approval while the Goal section still contains only the initial pending text, so the new gate does not actually enforce a real goal in that scenario.

Useful? React with 👍 / 👎.

[arul28]

Fixed in 83dfd7a. assessPlanReadiness now rejects the initial _pending — the lead will fill this in_ Goal placeholder even though it is longer than the minimum body threshold. Added a regression for that placeholder. Validated with targeted orchestration tests, desktop typecheck, desktop shard 4, diff check, and desktop lint.

[arul28]

@codex review

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 83dfd7a841

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[chatgpt-codex-connector]

Preserve the resolved provider for non-native models

When the model picker is used for an OpenCode-backed/local catalog model (for example ollama/*, lmstudio/*, OpenRouter/API-key families, or a runtime-catalog model not returned by getModelById), handleModelChange falls through and keeps the previous provider. This change now always initializes that provider to claude and no longer passes the suggested route, so the submitted selection can become { provider: "claude", modelId: "ollama/..." }; spawnAgent will then try to launch the wrong runtime for the user's chosen model. Resolve the provider from the picked descriptor the same way the main model switch path does, or keep the suggested provider as the fallback.

Useful? React with 👍 / 👎.

[arul28]

Fixed in 9140949. The model picker now resolves the submitted provider from the shared model descriptor, with runtime/model-id prefix fallback for local and OpenCode-backed catalog models, while still starting with no preselected recommendation. Added a regression for ollama/* routing through opencode. Validated with the focused model-picker test, orchestration tests, TUI approval test, desktop/CLI typechecks, diff check, and desktop lint.

[chatgpt-codex-connector]

Show the reviewed plan in non-sidebar approval clients

For TUI clients there is no plan sidebar, and plan_approval requests are handled as approval-mode cards that render only a single truncated primary line from this body. Since the body is now the entire plan.md while the prompt still tells the user to review the sidebar, approving from the TUI can happen without the user seeing the multi-section plan they are approving. Either keep a concise approval body for non-sidebar clients or update the TUI approval card to render the full providerMetadata.planContent preview.

Useful? React with 👍 / 👎.

[arul28]

Fixed in 9140949. The ADE CLI TUI approval card now renders providerMetadata.planContent as a multiline preview for plan_approval requests instead of showing only a truncated primary line. Added a TUI regression for the plan preview. Validated with focused desktop/TUI tests, desktop/CLI typechecks, diff check, and desktop lint.

[coderabbitai]

Actionable comments posted: 4

🧹 Nitpick comments (2)

apps/desktop/src/renderer/components/chat/ChatModelSelectionPendingCard.tsx (2)

147-167: ⚡ Quick win

Consider using "Files it touches" for clarity.

The label "Touches" on Line 150 is terse. The more explicit "Files it touches" would better communicate that these chips show the files this agent will modify or interact with.

✏️ Suggested label improvement

-            Touches
+            Files it touches

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@apps/desktop/src/renderer/components/chat/ChatModelSelectionPendingCard.tsx`
around lines 147 - 167, The label "Touches" in the filesHint section is too
terse and doesn't clearly communicate what the chips represent. Replace the text
"Touches" with "Files it touches" in the span element that displays this label
to make it more explicit and help users understand that these chips show the
files the agent will modify or interact with.

---

169-183: 💤 Low value

Consider capping dependsOn chips for consistency.

The filesHint chips are capped at 6 with an overflow indicator (Lines 161-165), but dependsOn renders all dependency tags without limit. If an agent has many dependencies, this could cause layout overflow.

♻️ Optional: Apply the same capping pattern

       {dependsOn.length > 0 ? (
         <div className="mb-2.5 flex flex-wrap items-center gap-1.5">
           <span className="font-sans text-[length:calc(var(--chat-font-size)*9.5/14)] uppercase tracking-wide text-fg/40">
             Runs after
           </span>
-          {dependsOn.map((dep) => (
+          {dependsOn.slice(0, FILE_CHIP_CAP).map((dep) => (
             <span
               key={dep}
               className="inline-flex items-center rounded-[var(--chat-radius-pill)] border border-white/[0.07] bg-white/[0.02] px-1.5 py-0.5 font-sans text-[length:calc(var(--chat-font-size)*10/14)] text-fg/62"
             >
               {dep}
             </span>
           ))}
+          {dependsOn.length > FILE_CHIP_CAP ? (
+            <span className="font-sans text-[length:calc(var(--chat-font-size)*9.5/14)] text-fg/40">
+              +{dependsOn.length - FILE_CHIP_CAP}
+            </span>
+          ) : null}
         </div>
       ) : null}

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@apps/desktop/src/renderer/components/chat/ChatModelSelectionPendingCard.tsx`
around lines 169 - 183, The dependsOn chips render all dependencies without
limit, whereas the filesHint chips are capped at 6 with an overflow indicator.
Apply the same capping pattern to the dependsOn rendering block by limiting the
mapped items to the first 6 dependencies and adding an overflow indicator when
dependsOn.length exceeds 6. Extract the first 6 items using slice(0, 6) and
conditionally render an additional chip showing the count of remaining
dependencies (similar to the filesHint pattern) when there are more than 6
items.

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@apps/desktop/src/main/services/ai/tools/orchestrationPlanQuality.ts`:
- Around line 50-59: The current fence tracking uses a simple boolean inFence
that toggles on any fence marker (backticks or tildes), which causes incorrect
behavior when fence types are mixed—a tilde fence inside backticks can
incorrectly re-enable heading parsing. Replace the inFence boolean with an
activeFence object that tracks the marker type and length. Update the fence
detection logic to capture the actual marker and length using a pattern like
/^\s{0,3}(`{3,}|~{3,})/, then only toggle the fence state when encountering the
same marker type with sufficient length. Update the heading parsing condition
from checking inFence to checking activeFence instead.

In `@apps/desktop/src/main/services/ai/tools/orchestrationTools.ts`:
- Around line 1454-1458: The fallbackAnswer logic in the orchestrationTools.ts
file incorrectly discards the plain string result.answer whenever input.options
are present. The condition should only exclude result.answer when answerValues
contains structured answers, not based on the presence of options. Modify the
fallbackAnswer assignment to remove the input.options?.length check from the
condition, keeping only the answerValues.length check, so that the plain text
answer is preserved and included in freeText even when options are provided for
option-based planning rounds.
- Around line 824-857: Before the final setPlanApprovalState call with state
"approved", add a manifest readiness check to re-validate that gates like model
routing and validation steps are still present and valid. Currently only the
plan.md content hash is compared, which misses changes to manifest structure
that could have occurred while the approval prompt was open. Re-run the same
validation/planning readiness checks that were performed earlier in the approval
flow immediately before invoking setPlanApprovalState with the approved state,
and return an error if readiness validation fails, so the approval transition
remains atomic and safe.
- Around line 766-794: The orchestrationTools function calls markPlanningReady
to persist approval state before invoking the onAskUser callback. If the
onAskUser call rejects or throws an error, the plan is left in a ready state
without a valid pending prompt. Wrap the universalOpts.onAskUser call in a
try-catch block to handle potential rejections and return an appropriate error
response that prevents leaving the manifest in an inconsistent state when the
user approval prompt fails.

---

Nitpick comments:
In `@apps/desktop/src/renderer/components/chat/ChatModelSelectionPendingCard.tsx`:
- Around line 147-167: The label "Touches" in the filesHint section is too terse
and doesn't clearly communicate what the chips represent. Replace the text
"Touches" with "Files it touches" in the span element that displays this label
to make it more explicit and help users understand that these chips show the
files the agent will modify or interact with.
- Around line 169-183: The dependsOn chips render all dependencies without
limit, whereas the filesHint chips are capped at 6 with an overflow indicator.
Apply the same capping pattern to the dependsOn rendering block by limiting the
mapped items to the first 6 dependencies and adding an overflow indicator when
dependsOn.length exceeds 6. Extract the first 6 items using slice(0, 6) and
conditionally render an additional chip showing the count of remaining
dependencies (similar to the filesHint pattern) when there are more than 6
items.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: e61e3c61-d940-4d51-86cf-85f87ea8a69b

📥 Commits

Reviewing files that changed from the base of the PR and between f8591e3 and 83dfd7a.

⛔ Files ignored due to path filters (6)

• docs/ARCHITECTURE.md is excluded by !docs/**
• docs/features/agents/tool-registration.md is excluded by !docs/**
• docs/features/chat/README.md is excluded by !docs/**
• docs/features/chat/composer-and-ui.md is excluded by !docs/**
• docs/features/terminals-and-sessions/README.md is excluded by !docs/**
• docs/features/terminals-and-sessions/ui-surfaces.md is excluded by !docs/**

📒 Files selected for processing (32)

• apps/ade-cli/src/tuiClient/__tests__/ApprovalPrompt.test.tsx
• apps/ade-cli/src/tuiClient/components/ApprovalPrompt.tsx
• apps/desktop/resources/agent-skills/ade-orchestrator/SKILL.md
• apps/desktop/src/main/services/ai/tools/orchestrationPlanQuality.ts
• apps/desktop/src/main/services/ai/tools/orchestrationTools.test.ts
• apps/desktop/src/main/services/ai/tools/orchestrationTools.ts
• apps/desktop/src/main/services/ai/tools/orchestrationValidationDerivation.ts
• apps/desktop/src/main/services/ai/tools/systemPrompt.test.ts
• apps/desktop/src/main/services/ai/tools/systemPrompt.ts
• apps/desktop/src/main/services/orchestration/manifestNormalization.ts
• apps/desktop/src/main/services/orchestration/orchestrationPlanningGates.test.ts
• apps/desktop/src/main/services/orchestration/orchestrationService.ts
• apps/desktop/src/main/services/orchestration/patchPolicy.ts
• apps/desktop/src/main/services/orchestration/runtimeProfile.ts
• apps/desktop/src/renderer/components/chat/AgentChatComposer.tsx
• apps/desktop/src/renderer/components/chat/AgentChatPane.tsx
• apps/desktop/src/renderer/components/chat/ChatModelSelectionPendingCard.tsx
• apps/desktop/src/renderer/components/chat/ModelPickerPendingInput.test.tsx
• apps/desktop/src/renderer/components/orchestration/OrchestrationPanel.test.tsx
• apps/desktop/src/renderer/components/orchestration/OrchestrationPanel.tsx
• apps/desktop/src/renderer/components/orchestration/PanelChrome.tsx
• apps/desktop/src/renderer/components/orchestration/PhaseAccordion.tsx
• apps/desktop/src/renderer/components/orchestration/PlanningTimeline.tsx
• apps/desktop/src/renderer/components/orchestration/TaskCard.tsx
• apps/desktop/src/renderer/components/orchestration/ValidationFindings.tsx
• apps/desktop/src/renderer/components/terminals/TerminalsPage.test.tsx
• apps/desktop/src/renderer/components/terminals/TerminalsPage.tsx
• apps/desktop/src/shared/types/orchestration.ts
• apps/ios/ADE/Views/Work/WorkChatComposerAndInputViews.swift
• apps/ios/ADE/Views/Work/WorkErrorAndMessageHelpers.swift
• apps/ios/ADE/Views/Work/WorkModels.swift
• apps/ios/ADETests/ADETests.swift

🚧 Files skipped from review as they are similar to previous changes (25)

• apps/desktop/src/renderer/components/orchestration/TaskCard.tsx
• apps/desktop/src/renderer/components/terminals/TerminalsPage.test.tsx
• apps/desktop/src/renderer/components/chat/AgentChatPane.tsx
• apps/ade-cli/src/tuiClient/tests/ApprovalPrompt.test.tsx
• apps/desktop/src/main/services/ai/tools/systemPrompt.test.ts
• apps/desktop/src/main/services/ai/tools/orchestrationValidationDerivation.ts
• apps/ios/ADE/Views/Work/WorkChatComposerAndInputViews.swift
• apps/desktop/resources/agent-skills/ade-orchestrator/SKILL.md
• apps/desktop/src/main/services/orchestration/patchPolicy.ts
• apps/ios/ADE/Views/Work/WorkModels.swift
• apps/desktop/src/main/services/ai/tools/systemPrompt.ts
• apps/desktop/src/renderer/components/chat/ModelPickerPendingInput.test.tsx
• apps/desktop/src/main/services/ai/tools/orchestrationTools.test.ts
• apps/desktop/src/renderer/components/chat/AgentChatComposer.tsx
• apps/desktop/src/renderer/components/orchestration/OrchestrationPanel.tsx
• apps/desktop/src/main/services/orchestration/runtimeProfile.ts
• apps/desktop/src/renderer/components/orchestration/ValidationFindings.tsx
• apps/ade-cli/src/tuiClient/components/ApprovalPrompt.tsx
• apps/desktop/src/renderer/components/orchestration/OrchestrationPanel.test.tsx
• apps/desktop/src/shared/types/orchestration.ts
• apps/desktop/src/renderer/components/orchestration/PlanningTimeline.tsx
• apps/desktop/src/main/services/orchestration/orchestrationPlanningGates.test.ts
• apps/desktop/src/main/services/orchestration/orchestrationService.ts
• apps/desktop/src/renderer/components/orchestration/PhaseAccordion.tsx
• apps/desktop/src/main/services/orchestration/manifestNormalization.ts

[arul28]

Fixed in 9140949. Also addressed the CodeRabbit review-body polish items: the model briefing label now says "Files it touches", and Runs after chips use the same cap/overflow treatment as file chips. Validated with focused desktop/TUI tests, desktop and CLI typechecks, diff check, and desktop lint.

@codex review

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 9140949898

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[chatgpt-codex-connector]

Honor pre-intake skipped rounds after intake

When the user gives a skip-round instruction before codebase intake, recordPlanningOverride stores it but cannot advance while the stage is still intake; this transition then unconditionally moves to round_functional without applying the existing skippedRounds. If functional was the waived round, the lead is left at round_functional where asking the UI round is rejected and model selection never unlocks unless the override is recorded a second time. Advance past already-recorded skips here as the round-recording path does.

Useful? React with 👍 / 👎.

[greptile-apps]

Recover invalid leases

This recovery path only resets tasks whose claimLeaseUntil is a valid expired string. If a crashed worker leaves a task in claimed or in_progress with a missing, null, or malformed lease, this filter skips it and the task stays assigned forever, so the lead cannot recover the abandoned work through recoverStaleTasks. Treat tasks without a valid future lease as recoverable instead of requiring a parseable expired timestamp.

Prompt To Fix With AI

This is a comment left during a code review.
Path: apps/desktop/src/main/services/orchestration/orchestrationService.ts
Line: 2147-2153

Comment:
**Recover invalid leases**

This recovery path only resets tasks whose `claimLeaseUntil` is a valid expired string. If a crashed worker leaves a task in `claimed` or `in_progress` with a missing, `null`, or malformed lease, this filter skips it and the task stays assigned forever, so the lead cannot recover the abandoned work through `recoverStaleTasks`. Treat tasks without a valid future lease as recoverable instead of requiring a parseable expired timestamp.

How can I resolve this? If you propose a fix, please make it concise.