fix(agent): clamp and rewind session flush cursor after repair_message_sequence compaction (#44837)

[teknium1]

Summary

Salvages PR #44870 by @kyssta-exe (fixes #44837) onto current main and widens the fix: the flush cursor is now recomputed exactly after repair_message_sequence() compacts the message list, not just clamped to the new length.

A min() clamp only catches cursor overshoot past the new end. When repair drops/merges messages at indexes below the cursor, the clamp leaves it pointing past unflushed rows and the turn-end flush silently skips the assistant/tool chain — the malformed-transcript loop reported in #44837 ("agent dementia" looping).

Changes

• agent/agent_runtime_helpers.py: new repair_message_sequence_with_cursor() — snapshots the flushed prefix by object identity before repair, recomputes the cursor as the count of surviving flushed messages; falls back to the clamp when no snapshot is available
• agent/conversation_loop.py: pre-API repair now goes through the cursor-aware helper (cherry-picked clamp from fix(agent): clamp flush cursor after repair_message_sequence compacts messages (#44837) #44870, then refactored)
• run_agent.py: safety guard in _flush_messages_to_session_db clamping a stale cursor (from fix(agent): clamp flush cursor after repair_message_sequence compacts messages (#44837) #44870, unchanged)
• tests/run_agent/test_message_sequence_repair.py: 5 new tests — overshoot clamp, before-cursor rewind, no-repair no-op, bare agent, flush-guard

Validation

	Before	After
user→user merge w/ flushed cursor=2, len→1	flush skips assistant chain	cursor→1, chain persisted
merge below mid-turn cursor	clamp leaves cursor past unflushed assistant	cursor rewound by survivor count
targeted tests (repair + dedup + compression persistence)	—	30/30 pass
E2E (real imports, fake DB, full repair→flush path)	—	assistant/tool/assistant rows persisted

Contributor commit cherry-picked with authorship preserved. Merge with rebase.

Infographic

[github-actions]

🔎 Lint report: fix/44837-flush-cursor-clamp vs origin/main

ruff

Total: 0 on HEAD, 0 on base (➖ 0)

🆕 New issues: none

✅ Fixed issues: none

Unchanged: 0 pre-existing issues carried over.

ty (type checker)

Total: 10881 on HEAD, 10879 on base (🆕 +2)

🆕 New issues (2):

Rule	Count
unresolved-attribute	2

First entries

run_agent.py:2891: [unresolved-attribute] unresolved-attribute: Object of type `Self@get_credits_spent_micros` has no attribute `_credits_session_start_micros`
tests/run_agent/test_credits_notices_toggle.py:76: [unresolved-attribute] unresolved-attribute: Unresolved attribute `_credits_session_start_micros` on type `AIAgent`

✅ Fixed issues (1):

Rule	Count
invalid-assignment	1

First entries

tests/run_agent/test_credits_notices_toggle.py:76: [invalid-assignment] invalid-assignment: Object of type `None` is not assignable to attribute `_credits_session_start_micros` of type `int`

Unchanged: 5703 pre-existing issues carried over.

Diagnostics are surfaced as warnings — this check never fails the build.

[liuhao1024]

Verified — the cursor repair logic is correct and well-tested.

Checked:

1. repair_message_sequence_with_cursor — snapshots id() of flushed messages before repair, then counts survivors after. This correctly handles the case where messages below the cursor are merged/dropped (not just a simple min() clamp). The id()-based tracking works because repair_message_sequence mutates in place without creating new dicts.
2. Flush guard in _flush_messages_to_session_db — the min(self._last_flushed_db_idx, len(messages)) safety net catches any cursor overshoot that the helper might miss. Two layers of defense.
3. Test coverage — 5 scenarios cover: compaction below cursor (the non-trivial min() can't catch case), compaction shrinking past cursor, no repairs, missing cursor attribute, and the flush guard safety net. All pass.
4. No dead variable / missing import — repair_message_sequence_with_cursor is imported in conversation_loop.py and used correctly.

CI: all checks passing. LGTM.