[F:746] debug mode

[dang232]

Summary

Add Sherlock - a hypothesis-driven debugging specialist that uses runtime evidence (not guesswork) to diagnose bugs. Implements the Oracle → Sherlock debugging flow where Oracle provides system context first, then Sherlock performs evidence-based debugging.

Key Features

1. 8-Phase Debugging Workflow: Problem Report → Hypothesis Generation → Instrumentation → Reproduction → Log Analysis → Fix → Verification → Cleanup
2. Oracle-First Context: After 2 failed fix attempts, consult Oracle for system architecture/gotchas, then delegate to Sherlock with that context
3. Docker/Container Debugging: 5 strategies for debugging code inside Docker (logs, exec, volumes, network, environment)
4. System Boundary Analysis: Specialized handling for ORM/DB/API bugs (timezone, type coercion, data transformation)
5. Playwright MCP Integration: Browser automation for UI debugging via skill_mcp

Debugging Flow

Sisyphus fails 2x → STOP
       ↓
Oracle (system context: architecture, known gotchas, focus areas)
       ↓
Sherlock (with Oracle context → better hypotheses)
       ↓
Fix with runtime evidence

Changes

File	Lines	Description
src/agents/sherlock.ts	+771	8-phase debugging workflow, Docker/boundary strategies, subagent mode
src/agents/sherlock.test.ts	+129	Unit tests for sherlock agent configuration
src/agents/sisyphus.ts	+65	Add debugging step to pre-delegation, Phase 2C Oracle→Sherlock flow
src/agents/sisyphus-prompt-builder.ts	+64	buildSherlockSection() with Oracle vs Sherlock comparison
src/agents/orchestrator-sisyphus.ts	+41/-17	Replace debugging-master with sherlock, Oracle→Sherlock flow
src/tools/sisyphus-task/tools.ts	+97	Add sherlock as subagent, consolidate partial-response parsing, timeout guards
src/agents/types.ts	+1	Add "sherlock" to SubAgentName union
src/agents/utils.ts	+3	Register sherlock metadata
src/agents/index.ts	+2	Export sherlock agent
src/hooks/sisyphus-orchestrator/index.ts	+17	isGitRepo() guard to prevent git diff spam
src/features/skill-mcp-manager/env-cleaner.ts	+1	Skip "undefined" string values
src/auth/antigravity/storage.test.ts	+7	Skip POSIX chmod assertion on Windows

Total: 13 files changed, +1182 lines, -18 lines

Commits

28f176d feat(orchestrator): integrate Sherlock with Oracle-first debugging flow
84bea8a feat(sherlock): Oracle-first debugging flow for better system context
7e30d3d feat(sherlock): integrate into Sisyphus delegation with Docker/system boundary support
576e947 feat(sherlock): add Playwright MCP integration for browser debugging
c4c2432 refactor(sisyphus-task): consolidate partial-response parsing logic
2c3ea3a fix(sisyphus-task): guard timeout partial fetch against session errors
901047c update prompt
e49802c feat: update base sherlock
934a7f7 fix(sisyphus-task): surface sync polling timeout with clear error

Testing

bun run typecheck                                    # Clean
bun test src/agents/sherlock.test.ts                 # 15 pass
bun test src/agents/                                 # 52 pass
bun test src/hooks/sisyphus-orchestrator/            # 28 pass (was timing out)
bun test src/features/skill-mcp-manager/env-cleaner.test.ts  # 10 pass

Sherlock Capabilities

Escalation Path

Iteration	Strategy
1-2	Standard hypothesis → instrumentation → analysis
3	Dependency Scan: trace callers/callees, map data flow
4+	System Boundary Analysis: instrument both sides of ORM/DB/API

Docker Debugging Strategies

1. Container logs (docker logs -f)
2. Docker exec (interactive debugging)
3. Volume-mounted logs
4. Network debugging
5. Environment inspection

System Boundary Bug Example (Timezone)

User sets: GMT+7 2024-01-15 14:00
Prisma stores: UTC 2024-01-15 07:00 (timezone stripped)
Display shows: 07:00 (wrong!)

Without Oracle: Sherlock wastes 4 iterations on wrong subsystems
With Oracle: "Prisma strips timezone by default" → Sherlock targets ORM immediately

Related Issues

Closes #746

[github-actions]

All contributors have signed the CLA. Thank you! ✅
_{Posted by the CLA Assistant Lite bot.}

[dang232]

I have read the CLA Document and I hereby sign the CLA

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 901047cb9d

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[chatgpt-codex-connector]

Guard timeout partial fetch against session errors

In the timeout branch you coerce client.session.messages into an array without checking for an error result. If the session is expired or the API call fails, messages() can return an { error: ... } object (as handled later in the function), so partialMsgs is not an array and the subsequent .filter/.sort path will throw, preventing the tool from returning the timeout message. Consider checking partialResult.error or guarding with Array.isArray/try-catch (the same pattern appears in the resume timeout block above).

Useful? React with 👍 / 👎.

[cubic-dev-ai]

No issues found across 10 files

Confidence score: 5/5

• Automated review surfaced no issues in the provided summaries.
• No files require special attention.

[cubic-dev-ai]

1 issue found across 10 files

Confidence score: 4/5

• The duplicate partial-response parsing logic in src/tools/sisyphus-task/tools.ts across the timeout branches increases the chance the branches drift out of sync, potentially causing inconsistent parser fixes over time.
• Pay close attention to src/tools/sisyphus-task/tools.ts - consolidate the repeated timeout parsing logic to prevent divergence.

Prompt for AI agents (all issues)

Check if these issues are valid — if so, understand the root cause of each and fix them.


<file name="src/tools/sisyphus-task/tools.ts">

<violation number="1" location="src/tools/sisyphus-task/tools.ts:274">
P2: Duplicate partial-response parsing logic added in two timeout branches; should be consolidated to avoid divergence</violation>
</file>

---

Since this is your first cubic review, here's how it works:

• cubic automatically reviews your code and comments on bugs and improvements
• Teach cubic by replying to its comments. cubic learns from your replies and gets better over time
• Ask questions if you need clarification on any suggestion

_{Reply with feedback, questions, or to request a fix. Tag @cubic-dev-ai to re-run a review.}

[gitguardian]

⚠️ GitGuardian has uncovered 1 secret following the scan of your pull request.

Please consider investigating the findings and remediating the incidents. Failure to do so may lead to compromising the associated services or software components.

Since your pull request originates from a forked repository, GitGuardian is not able to associate the secrets uncovered with secret incidents on your GitGuardian dashboard.
Skipping this check run and merging your pull request will create secret incidents on your GitGuardian dashboard.

🔎 Detected hardcoded secret in your pull request

GitGuardian id	GitGuardian status	Secret	Commit	Filename
-	-	Generic Password	e49802c	src/agents/sherlock.ts	View secret

🛠 Guidelines to remediate hardcoded secrets

1. Understand the implications of revoking this secret by investigating where it is used in your code.
2. Replace and store your secret safely. Learn here the best practices.
3. Revoke and rotate this secret.
4. If possible, rewrite git history. Rewriting git history is not a trivial act. You might completely break other contributing developers' workflow and you risk accidentally deleting legitimate data.

To avoid such incidents in the future consider

• following these best practices for managing and storing secrets including API keys and other credentials
• install secret detection on pre-commit to catch secret before it leaves your machine and ease remediation.

---

^{🦉 GitGuardian detects secrets in your source code to help developers and security teams secure the modern development process. You are seeing this because you or someone else with access to this repository has authorized GitGuardian to scan your pull request.}

[jkoelker]

I've run this agent locally and it did a pretty decent job of diagnosing the suspend issues on my laptop (i already know the underlying issue and it found it as well).