feat(perps): fingerprint-gated build cache for agentic preflight#30565
Merged
Conversation
Add --mode <auto|fast|rebuild-native|clean> to preflight.sh with a
two-tier build cache keyed by @expo/fingerprint. Cache lives in
$MM_BUILD_CACHE_DIR (default ~/Library/Caches/mm-mobile-builds)
plus a per-worktree installed.json sidecar at .agent/build-cache/.
Why: farmslot dispatches every task with --clean, forcing full
yarn setup + pod install --repo-update + xcodebuild (~15-20 min)
even when native deps are identical. auto mode reuses an existing
build whenever the fingerprint matches, dropping warm dispatches
to under 90s. Parallel worktrees at the same fingerprint share one
artifact via flock — only the first builds, the rest install from
cache.
Modes:
auto skip build on fingerprint hit; pod install w/o
--repo-update; falls back to retry with --repo-update
on failure
fast fail loud if no cached/installed app
rebuild-native skip yarn setup, force native rebuild
clean preserves current --clean semantics (escape hatch)
Includes idempotent test suites:
scripts/perps/agentic/lib/test-build-cache.sh (26 unit tests)
scripts/perps/agentic/lib/test-preflight-cache-e2e.sh (real-sim e2e)
Contributor
|
CLA Signature Action: All authors have signed the CLA. You may need to manually re-run the blocking PR check if it doesn't pass in a few minutes. |
…wnership)
Drop a:auto:{ios,android} and a:fast:{ios,android} from root package.json
so the change is fully contained inside scripts/perps/agentic/. Callers
invoke preflight.sh directly with --mode auto|fast|rebuild-native|clean.
README updated to show the direct invocation.
…ast-fail Round 1 review feedback: - B1: --check-only is now read-only on cache hits. Guarded the cache install with !$CHECK_ONLY for both iOS and Android; in check-only the script fails loud naming the fp mismatch instead of mutating the sim/device. - B2: cache install failure used to leave APP_INSTALLED stale after the uninstall; reset to 0 before install attempt so a failed install can't silently skip the rebuild. - B3: --mode fast now hard-fails when a cached artifact exists but its install fails, instead of falling through to a native build. - B4: per-fingerprint flock now wraps the full cache-decide + build + store region, not only the post-build store. Two peer worktrees at the same fingerprint now produce exactly one xcodebuild/gradle invocation; the second installs from the cache published by the first. - B5: installed.json target is now validated against SIM_TARGET / ADB_TARGET before the fast-path skip, so a recorded fp from a different sim no longer false-hits. - N1: bc_prune now uses a portable mtime helper (BSD stat -f → GNU stat -c fallback), keeping LRU correct on Linux farmslot hosts. - N2: bc_has_artifact rejects empty .app dirs (missing Info.plist) and zero-byte .apk files so a half-written or aborted store can't be hit. - N3: tests no longer call GNU `timeout`; a portable `_capture_for` helper uses a backgrounded watchdog so the suites run on base macOS. - N4: bc_record_install and bc_store_artifact now write JSON through jq with --arg, escaping arbitrary paths/targets correctly.
…trictness, check-only read-only Round 2 review feedback: - B1: auto mode now forces a fresh build when the installed app's fingerprint or target doesn't match and no valid cache artifact is available. Previously APP_INSTALLED stayed >0 in this branch, so the build gate skipped and the stale app passed straight through. Now we reset APP_INSTALLED=0 on every fall-through path (cache miss, lock-acquire failure) for both iOS and Android. - B2: --check-only is now genuinely read-only. Adds an early exit before the Metro / CDP / wallet steps and gates the Android `adb reverse` setup. Cache hit branches that would mutate the sim/device already fail with --check-only. - B3: --mode fast now fails loud on every cache-infrastructure failure path: fingerprint compute failure, lock-acquire failure, cache miss, and cache install failure — instead of falling back to a stale-app skip or a native build. - N1: README now documents the macOS mkdir-mutex fallback (flock is Linux-only in base) and how to recover from a leftover `<fp>.lock.d` after `kill -9`. - N2: bc_fingerprint memoizes into a non-exported shell var (BC_FINGERPRINT_MEMO), so a stale value inherited from a parent process can no longer pin the wrong cache key. - N3: New test asserts --mode fast hard-fails when the fingerprint command cannot be run (covers the cache-infrastructure-failure paths).
auto-merge was automatically disabled
May 22, 2026 02:55
Pull request was converted to draft
…se --clean+--check-only Round 3 review feedback (both actionable nits handled): - N1: --check-only summary no longer claims "App installed and at the right fingerprint" when the fingerprint was not actually verified. Tracks a CHECK_ONLY_FP_VERIFIED flag set only by the Path-1 cache hit, then prints one of two messages based on whether verification actually happened. - N2: --check-only combined with --mode clean / legacy --clean now fails loud at arg-parse time instead of briefly running yarn setup before the late short-circuit. The two flags are inherently contradictory (clean is destructive, check-only is read-only).
…ode wording - README auto-mode pod install row now reflects actual behaviour: pod install runs on every native rebuild (no --repo-update, with a one-shot retry). - preflight default-mode help text now describes the cache-gated behaviour inherited from --mode auto (without the fail-loud guarantee).
Bugbot caught that R2's de-export of BC_FINGERPRINT_MEMO made the memo useless across `FP=$(bc_fingerprint)` calls: every command substitution runs the function in a fresh subshell, and an in-memory shell variable disappears with the subshell. The post-build store then re-ran `node scripts/generate-fingerprint.js`, which (if Podfile.lock or some other fingerprinted file changed during pod install) could publish the artifact under a different fingerprint than the one whose lock was acquired, defeating the mutual-exclusion guarantee. Switch the memo to a file at /tmp/bc-fp-$$ (PID is stable across bash subshells); preflight wipes the file at startup via bc_fingerprint_reset_memo so a leftover from an unrelated prior process with the same PID can't pin the wrong cache key. Tests also reset on entry/exit.
geositta
reviewed
May 22, 2026
geositta
left a comment
Contributor
There was a problem hiding this comment.
I found two PR-introduced behavior changes that should likely be fixed before merge:
- Default mode no longer preserves the existing “skip native build when the app is already installed” behavior because it now enters the cache validation path.
- Cache-hit installs uninstall the app outside
--clean/--wallet-setup, which removes local app state during normal reuse.
R5 flagged the previous /tmp/bc-fp-\$\$ memo as symlink-attackable: a local attacker who knows the next bash PID can pre-create a symlink at that path and our `>` redirection would clobber an arbitrary file the attacker has write access to through the symlink target. Switch to a private 0700 dir created by `mktemp -d` at preflight startup and exported as BC_MEMO_DIR so command-substitution subshells inherit the same path. bc_fingerprint refuses to trust the memo file unless it is a regular file (not a symlink) inside our private dir, and falls back to per-call computation when BC_MEMO_DIR is unset (lib used stand-alone). Tests clean up the dir on exit.
…nto inherited dir R6 demonstrated that an inherited BC_MEMO_DIR was being rm -rf'd by bc_fingerprint_reset_memo: BC_MEMO_DIR=/tmp/victim bash -c '. build-cache.sh; bc_fingerprint_reset_memo' → /tmp/victim deleted Fix: bc_memo_init drops a sentinel file `.bc_memo_owner` inside its mktemp -d dir. bc_memo_cleanup only recurses rm -rf when the sentinel is present, so an inherited or attacker-controlled path is left untouched. bc_fingerprint_reset_memo unsets BC_MEMO_DIR after the guarded cleanup and asks bc_memo_init for a fresh dir. New test asserts the attack scenario: with BC_MEMO_DIR pointing at a foreign temp dir, calling bc_fingerprint_reset_memo must NOT delete that dir or its contents.
…o longer enough) R7 showed the on-disk `.bc_memo_owner` sentinel was forgeable: anyone with write access to a victim dir could pre-create the marker, then BC_MEMO_DIR injection would trick reset_memo into deleting the victim. Replace the sentinel with a non-exported shell variable BC_MEMO_DIR_OWNED. Set only by bc_memo_init in the shell that created the dir; child processes that inherit BC_MEMO_DIR through `export` cannot also inherit the ownership flag, so the cleanup path refuses to recurse rm -rf into an attacker-supplied path. Hardens against both the R6 attack (plain inherited path) and the R7 attack (inherited path with a forged on-disk sentinel). Test now reproduces both attack shapes and asserts neither victim dir is deleted.
Bash imports any exported env var as a regular shell var on startup, so the previous "non-exported flag" defense was bypassable: a parent could run `BC_MEMO_DIR=/tmp/victim BC_MEMO_DIR_OWNED=1 preflight.sh` and the child shell would see both, treat the inherited dir as owned, and recurse a destructive delete on reset_memo. Fix: bc_fingerprint_reset_memo now `unset`s both BC_MEMO_DIR_OWNED and BC_MEMO_DIR before calling bc_memo_init, without ever calling bc_memo_cleanup on the inherited values. Any pre-existing claim from env is discarded; only ownership we set ourselves in this shell, after mktemp -d returns, will ever satisfy the cleanup guard. New test reproduces the R8 attack (BC_MEMO_DIR=victim plus forged env BC_MEMO_DIR_OWNED=1) and asserts the victim dir is preserved.
…hip-aware helper R9 found two remaining paths that delete an inherited BC_MEMO_DIR: 1) Direct `bc_memo_init` followed by `bc_memo_cleanup` (no reset_memo in between) trusted the inherited OWNED flag, because the previous defense only sanitized inside bc_fingerprint_reset_memo. 2) The test EXIT cleanup blindly removed BC_MEMO_DIR if set, which would destroy an attacker-supplied path on early test failure. Library fix: build-cache.sh now `unset`s BC_MEMO_DIR + BC_MEMO_DIR_OWNED at source time (before any function is defined or called), so every code path through the lib starts from a known-clean state. Only ownership set by bc_memo_init running in this shell, after that unset, is ever trusted. Test fix: cleanup now delegates to bc_memo_cleanup (which honors the ownership flag) instead of a raw destructive delete. Two new tests reproduce both R9 attack shapes (direct init+cleanup, EXIT cleanup on inherited path).
CI's check-pr-max-lines fails > 1000 changed lines. The diff was at 1089 after the R6-R9 security hardening + tests. Trim: - Consolidate the five inherited-BC_MEMO_DIR attack tests into a parameterized _memo_attack helper (R6/R7/R8/R9A/R9B). Same coverage, fewer lines. - Compress verbose multi-paragraph comments in preflight.sh and build-cache.sh (the design rationale stays in commit messages). - Combine consecutive `unset` calls. No functional change. All 32 unit tests + the real-sim e2e still pass.
…uninstall) Reviewer flagged that the cache-hit install path was destroying wallet/ app container data even when neither --clean nor --wallet-setup was requested, because it ran `simctl uninstall` / `adb uninstall` before installing the cached artifact. origin/main only uninstalled under DO_CLEAN || DO_WALLET_SETUP. `simctl install` and `adb install -r` both reinstall the bundle in place and keep the existing container by default, so the preemptive uninstall was unnecessary. Drop it on both platforms. On install failure we reset APP_INSTALLED=0 so the build branch still fires (or --mode fast still hard-fails). The default-mode cache opt-in flagged in the second comment is kept deliberately and documented as a wanted behavior change in preflight.sh's mode banner and the README.
Contributor
There was a problem hiding this comment.
Cursor Bugbot has reviewed your changes and found 1 potential issue.
❌ Bugbot Autofix is OFF. To automatically fix reported issues with cloud agents, have a team admin enable autofix in the Cursor dashboard.
Reviewed by Cursor Bugbot for commit 1e9ee30. Configure here.
geositta
previously approved these changes
May 22, 2026
…evice Bugbot found that the Android build branch guarded the --wallet-setup uninstall on APP_INSTALLED > 0, but the new cache-decision phase zeroes APP_INSTALLED on cache miss even when the app is still physically on the device. The result: --wallet-setup runs adb install -r over the old container, preserving stale wallet data. Replace the stale-count guard with a live `adb shell pm list packages` check, independent of the cache-decision state. iOS already used an unguarded uninstall, no fix needed there.
aganglada
approved these changes
May 22, 2026
Contributor
🔍 Smart E2E Test Selection
click to see 🤖 AI reasoning detailsE2E Test Selection:
None of these changes touch:
These are purely developer tooling scripts using a separate CDP-based testing approach (not Detox). The changes improve build efficiency for the agentic workflow but have zero impact on the app's behavior, UI, or any E2E test scenarios. No Detox E2E tags are warranted. Performance Test Selection: |
|
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Description
Adds a fingerprint-gated build cache to
scripts/perps/agentic/preflight.shso farmslot dispatches stop paying for redundantyarn setup+pod install --repo-update+xcodebuildcycles when the native dep graph hasn't changed.Why: farmslot today hardcodes
--clean --wallet-setup, forcing ~15–20 min per dispatch even when only TypeScript changed. Investigation showed@expo/fingerprint(already a dep) +scripts/generate-fingerprint.js(already wired) can deterministically detect "no native change" — but the preflight path didn't use them.Approach:
--mode <auto|fast|rebuild-native|clean>flag onpreflight.sh. Legacy--clean/--rebuildcontinue to work unchanged.$MM_BUILD_CACHE_DIR(default~/Library/Caches/mm-mobile-buildson macOS,~/.cache/mm-mobile-buildson Linux) keyed by fingerprint, plus a per-worktree.agent/build-cache/<plat>/installed.jsonsidecar.flockwraps the full decide + install + build + store region, so two peer worktrees at the same fingerprint produce exactly one xcodebuild/gradle invocation. The second worker installs the artifact the first published.installed.jsonrecords both fingerprint AND target (sim UDID / adb serial); the fast-path skip requires both to match, so a recorded build on one sim won't false-hit on another.pod install --repo-updateis now opt-in (only--mode clean); plainpod installruns first with a one-shot--repo-updateretry on failure.--mode fastis strict: missing cache OR failed cache install hard-fails instead of silently rebuilding.--check-onlystays read-only: a cache-decision that would mutate the sim/device exits with an explanatory failure instead.All new helpers live in
scripts/perps/agentic/lib/build-cache.sh. Idempotent test suites (unit + real-sim e2e) live next to it.Boundary: change is fully contained under
scripts/perps/agentic/— no rootpackage.jsonshortcuts, no perps-out-of-scope files. Callers invokebash scripts/perps/agentic/preflight.sh --mode <…>directly.--mode cleanFarmslot side (
projects/metamask-mobile-farm/project.json→--mode auto) is intentionally deferred to a follow-up: the--modeflag must land onmainfirst since farmslot clones MM fresh per dispatch.Changelog
CHANGELOG entry: null
Related issues
Fixes: N/A (developer tooling improvement; supports the farmslot dispatch loop)
Manual testing steps
Two idempotent test scripts ship with the change. Both safely stash and restore any pre-existing
.agent/build-cache.Direct invocation examples (no yarn shortcuts; perps-scoped):
Screenshots/Recordings
N/A — script-only change, no UI surface.
Before
N/A
After
N/A
Pre-merge author checklist
scripts/perps/agentic/lib/)Performance checks (if applicable)
Pre-merge reviewer checklist
Note
Medium Risk
Medium risk because it changes
preflight.shcontrol flow for iOS/Android build/install decisions and adds cross-worktree caching + locking; mistakes could cause stale builds to be reused or unexpected install/build skips.Overview
Adds a fingerprint-gated shared native build cache to
scripts/perps/agentic/preflight.sh, allowing iOS.appand Android.apkartifacts to be reused across worktrees when the@expo/fingerprinthash matches, with per-fingerprint locking to serialize build/store.Introduces
--mode <auto|fast|rebuild-native|clean>to control cache usage and rebuild strictness, updates CocoaPods behavior to avoid--repo-updateexcept inclean(with a one-shot retry on failure), and tightens read-only semantics for--check-only(no installs/adb reverse/Metro wallet steps; fails if cache would mutate state).Adds the new
lib/build-cache.shhelper library (artifact paths, memoized fingerprinting, installed sidecar tracking, pruning, flock/mkdir locks), plus smoke/e2e shell tests and README docs describing the modes and cache semantics.Reviewed by Cursor Bugbot for commit fc1b85d. Bugbot is set up for automated code reviews on this repo. Configure here.