feat(agent-handoff): inject identity marker on mid-session agent change

[PeterPonyu]

Summary

When a user Tab-switches the active agent mid-session (e.g. sisyphus → hephaestus), opencode does update input.agent for the next turn, but the LLM keeps introducing itself by the prior name because chat history still contains assistant turns authored under the old persona. This PR re-anchors the new agent on the first turn after a transition by injecting an <identity-handoff> marker as the leading text part.

What's new

• New src/features/agent-handoff/ module with:
  • marker.ts — pure renderer of the handoff text
  • state.ts — per-session lastObservedAgent map; recordAgentObservation(sessionID, currentAgent) returns the prior agent on a real transition, undefined otherwise
• chat-message.ts calls recordAgentObservation right after the existing setSessionAgent capture. On a real transition, the marker is unshifted to parts[0] so the LLM sees the identity reset before any user content this turn.

Example marker rendered into the user message:

<identity-handoff prior="sisyphus" current="hephaestus">
You are now hephaestus.
Prior assistant turns in this conversation were authored by sisyphus; read them as handoff context, not as your own past output.
Apply the persona, tools, and policies configured for hephaestus from this turn forward.
</identity-handoff>

Design notes

• Separate state from setSessionAgent/getSessionAgent. Those are first-write-wins and 7+ callers (delegate-task, call-omo-agent, background-task, prometheus-md-only, no-sisyphus-gpt, …) depend on that as "the session's primary agent identity". Overloading them would silently change behavior in those paths. Handoff detection needs last-observed semantics, which is a different concept — kept in its own map.
• Normalization via getAgentConfigKey. Display variants like \"Hephaestus - Deep Agent\" resolve to the same key as \"hephaestus\", so renames or UI display variations don't trip false transitions.
• Idempotent within a turn. The marker fires on transition only; identical agent on consecutive turns is a no-op.

Tests

• 11 unit tests in src/features/agent-handoff/ cover marker rendering and the state machine (first turn, same-agent, transitions, display-variant normalization, session scoping, clear).
• 5 integration tests appended to src/plugin/chat-message.test.ts exercise the wiring through the real handler — first turn doesn't fire, same agent doesn't fire, sisyphus→hephaestus fires correctly, display variants don't trip it, two consecutive changes emit two separate markers.
• A pre-existing /start-work integration test caught a real state-leak across describes; the file-level afterEach now resets the handoff map.

Totals: 41/41 pass across touched suites. bun run typecheck: pass. bun run build: pass.

Out of scope

• /switch_agent slash command or an agent-self-switch tool — the SDK doesn't expose a way for a plugin tool to swap the active agent of an in-flight session; that would need an upstream opencode change adding client.session.setAgent(...). The existing call_omo_agent and delegate-task tools already cover the cross-agent delegation use case via subagents.
• Removing the marker once the new agent has acknowledged it (current behavior: marker is in the conversation history permanently, like any other user message). If this proves noisy, a future change could squash it during compaction.

Test plan

• `bun run typecheck`
• `bun run build`
• Agent-handoff + chat-message suites: 41/41 pass
• Local opencode smoke test: Tab from sisyphus to hephaestus mid-session, verify the next assistant turn introduces itself as Hephaestus and the marker is visible in the conversation
• CI `test` job: likely surfaces the same ~25 pre-existing failures observed on `upstream/dev` directly — not introduced by this PR

🤖 Generated with Claude Code

---

Summary by cubic

Injects an <identity-handoff> marker on mid-session agent switches, prepending it to the next user turn so the model resets identity. Handles opencode’s dual-fire and schema rules to avoid duplicate or invalid parts.

• New Features

  • Added src/features/agent-handoff/ with renderHandoffMarker and per-session tracking via recordAgentObservation/clearAgentObservation.
  • chat-message.ts detects real transitions after updateSessionAgent and unshifts createInternalAgentTextPart(renderHandoffMarker(...)) into output.parts[0].
  • Normalizes with getAgentConfigKey so display variants don’t trigger false switches.

• Bug Fixes

  • Marker injection creates a valid text part with id/sessionID/messageID; if messageID is missing, skip injection.
  • Dedups by messageID to ignore the stale second call in the dual-fire pattern.
  • XML-escapes agent names to prevent markup corruption.
  • Clears observation state on session.deleted to prevent leaks.
  • Clarified visible vs hidden internal markers: handoff markers are internal but non-synthetic so the model reads the identity change.
  • Updated bun.lock to use oh-my-opencode-* 4.4.0 optional binaries for CI.

^{Written for commit 637be75. Summary will update on new commits. Review in cubic}

[cubic-dev-ai]

1 issue found across 7 files

Confidence score: 4/5

• This PR is likely safe to merge, with only a mild-to-moderate risk from one concrete issue rather than a functional blocker.
• In src/plugin/chat-message.ts, recordAgentObservation writes session data into a module-level Map that is not cleared in production cleanup paths, which can cause gradual memory growth over time.
• Severity is moderate (4/10) and does not indicate an immediate breakage, but the high confidence (8/10) makes it worth addressing soon to avoid longer-term stability impact.
• Pay close attention to src/plugin/chat-message.ts - ensure agent-handoff session entries are removed during normal session teardown.

Prompt for AI agents (unresolved issues)

Check if these issues are valid — if so, understand the root cause of each and fix them. If appropriate, use sub-agents to investigate and fix each issue separately.


<file name="src/plugin/chat-message.ts">

<violation number="1" location="src/plugin/chat-message.ts:198">
P2: Unbounded map growth in agent-handoff state: `recordAgentObservation` stores per-session entries in a module-level Map, but `clearAgentObservation` is never called in production code during session cleanup.</violation>
</file>

_{Reply with feedback, questions, or to request a fix. Tag @cubic-dev-ai to re-run a review.}

[cubic-dev-ai]

P2: Unbounded map growth in agent-handoff state: recordAgentObservation stores per-session entries in a module-level Map, but clearAgentObservation is never called in production code during session cleanup.

Prompt for AI agents

Check if this issue is valid — if so, understand the root cause and fix it. At src/plugin/chat-message.ts, line 198:

<comment>Unbounded map growth in agent-handoff state: `recordAgentObservation` stores per-session entries in a module-level Map, but `clearAgentObservation` is never called in production code during session cleanup.</comment>

<file context>
@@ -194,6 +195,13 @@ export function createChatMessageHandler(args: {
   ): Promise<void> => {
     if (input.agent) {
       setSessionAgent(input.sessionID, input.agent)
+      const priorAgent = recordAgentObservation(input.sessionID, input.agent)
+      if (priorAgent) {
+        output.parts.unshift({
</file context>

[cubic-dev-ai]

1 issue found across 2 files (changes from recent commits).

Prompt for AI agents (unresolved issues)

Check if these issues are valid — if so, understand the root cause of each and fix them. If appropriate, use sub-agents to investigate and fix each issue separately.


<file name="src/plugin/chat-message.test.ts">

<violation number="1" location="src/plugin/chat-message.test.ts:885">
P3: This test does not actually prove the marker is prepended ahead of existing parts; it uses an empty `parts` array, so an append regression would still pass.</violation>
</file>

_{Reply with feedback, questions, or to request a fix. Tag @cubic-dev-ai to re-run a review.}

[cubic-dev-ai]

1 issue found across 4 files (changes from recent commits).

Prompt for AI agents (unresolved issues)

Check if these issues are valid — if so, understand the root cause of each and fix them. If appropriate, use sub-agents to investigate and fix each issue separately.


<file name="src/features/agent-handoff/state.ts">

<violation number="1" location="src/features/agent-handoff/state.ts:4">
P2: `clearAgentObservation` is exported but never called outside tests; module-level per-session Maps grow unbounded and lack lifecycle cleanup</violation>
</file>

_{Tip: Review your code locally with the cubic CLI to iterate faster.}

[cubic-dev-ai]

P2: clearAgentObservation is exported but never called outside tests; module-level per-session Maps grow unbounded and lack lifecycle cleanup

Prompt for AI agents

Check if this issue is valid — if so, understand the root cause and fix it. At src/features/agent-handoff/state.ts, line 4:

<comment>`clearAgentObservation` is exported but never called outside tests; module-level per-session Maps grow unbounded and lack lifecycle cleanup</comment>

<file context>
@@ -1,25 +1,43 @@
 import { getAgentConfigKey } from "../../shared/agent-display-names"
 
 const lastObservedAgent = new Map<string, string>()
+const lastObservedMessageID = new Map<string, string>()
 
 /**
</file context>

_{Tip: Review your code locally with the cubic CLI to iterate faster.}

[cubic-dev-ai]

0 issues found across 2 files (changes from recent commits).

_{Requires human review: Auto-approval blocked by 2 unresolved issues from previous reviews.}

[PeterPonyu]

@cubic-dev-ai please re-review — both prior P2/P3 findings should now be resolved:

• Unbounded map growth (state.ts) — fixed in 562d977c8d. clearAgentObservation(sessionID) is now called from the session.deleted handler in src/plugin/event.ts, alongside the existing per-session cleanup helpers (clearSessionAgent, clearSessionModel, etc.). Identified by cubic.
• Weak prepend assertion (chat-message.test.ts) — fixed in the same commit. The test now seeds output.parts with one existing user-message text part and asserts the marker lands at index 0 AND the original user part is preserved at index 1, so an append regression would fail both halves. Identified by cubic.

Touched-area suites: 49/49 pass. bun run typecheck + bun run build: green.

[cubic-dev-ai]

@cubic-dev-ai please re-review — both prior P2/P3 findings should now be resolved:

• Unbounded map growth (state.ts) — fixed in 562d977c8d. clearAgentObservation(sessionID) is now called from the session.deleted handler in src/plugin/event.ts, alongside the existing per-session cleanup helpers (clearSessionAgent, clearSessionModel, etc.). Identified by cubic.
• Weak prepend assertion (chat-message.test.ts) — fixed in the same commit. The test now seeds output.parts with one existing user-message text part and asserts the marker lands at index 0 AND the original user part is preserved at index 1, so an append regression would fail both halves. Identified by cubic.

...

@PeterPonyu I have started the AI code review. It will take a few minutes to complete.

[cubic-dev-ai]

No issues found across 8 files

Confidence score: 5/5

• Automated review surfaced no issues in the provided summaries.
• No files require special attention.

_{Auto-approved: The handoff marker is purely additive with thorough test coverage (41 passing tests), uses messageID dedup to avoid dual-fire bugs, normalizes agent names to prevent false transitions, and cleans up state on session delete, so there is no path for regressions in existing behavior.}

[code-yeongyu]

[sisyphus-bot]

PR sweep status check on dev.

• Review decision: APPROVED
• Mergeable state: CONFLICTING (merge conflict with current dev)

Approved but blocked on merge conflicts. Please rebase onto current dev and resolve. Once green, the owner can merge.

Assigning code-yeongyu for owner visibility on the merge decision.

[PeterPonyu]

Merged upstream/dev@75223149 into the branch to clear the CONFLICTING state (chose merge over rebase since the PR has 4 commits and a rebase would replay against intermediate partial states).

Conflict resolution — both files had small import-section conflicts that were also dup-import accidents from the original PR:

• src/plugin/chat-message.ts (lines 17-25 before merge): kept agent-handoff imports (recordAgentObservation, renderHandoffMarker) AND upstream's new PluginContext + applyUltraworkModelOverrideOnMessage imports; dropped two duplicate imports (parseRalphLoopArguments, CreatedHooks) that were already imported higher up in the file.
• src/plugin/chat-message.test.ts (lines 16-21): kept _resetAllForTests as resetAgentHandoffState from agent-handoff AND upstream's createChatMessageHandler; dropped duplicate unsafeTestValue (already on line 6).
• src/plugin/event.ts auto-merged cleanly.

Local verification:

• bun test src/features/agent-handoff/ src/plugin/chat-message.test.ts → 51 pass / 0 fail across 3 files
• bunx tsc --noEmit clean for touched files
• Mergeable state should flip from CONFLICTING to MERGEABLE on next GitHub sync.

Agent-handoff identity-marker behavior is unchanged; the merge only updated context for the new chat-message structure on dev.

[code-yeongyu]

[sisyphus-bot] Hi PeterPonyu. 🙏 Thanks for the agent-handoff identity-marker work.

Picking this back up from the 5/16 approval. The PR is medium-scope (422 additions, 8 files) and shows CONFLICTING against current dev. The chat.message + agent-resolution layers have been touched, especially around the recent internal-initiator-marker work in #4223 (still in flight) which targets a similar tagging concern from a different angle.

The intent (inject identity marker on mid-session agent change so the new agent's context is unambiguous) is still valid. Could you rebase against current dev and clarify how it composes with #4223's createInternalAgentTextPart / isSyntheticOrInternalTextPart helpers? They both attach internal-routing markers but in different contexts; the rebase will surface whether they should share a marker module or stay separate.

Once it's clean and the composition is clear, I'll come back for a focused review.

[PeterPonyu]

Rebased onto current dev (force-pushed feat/agent-handoff-marker) and addressed the composition question with #4223.

The handoff marker is now wrapped via createInternalAgentTextPart(renderHandoffMarker(...)) rather than emitted as a bare { type: "text", text } part. Concretely in src/plugin/chat-message.ts:

output.parts.unshift({
  id: `prt_${randomUUID()}`,
  sessionID: input.sessionID,
  messageID: input.messageID,
  ...createInternalAgentTextPart(
    renderHandoffMarker({ prior: priorAgent, current: input.agent }),
  ),
})

This keeps the two concerns separate but composed:

• renderHandoffMarker (in src/features/agent-handoff/marker.ts) — pure renderer of the <identity-handoff prior=... current=...> body
• createInternalAgentTextPart (in src/shared/internal-initiator-marker.ts, from fix(runtime-fallback): harden delegated fallback retry flow #4223) — wraps text with OMO_INTERNAL_INITIATOR_MARKER so downstream guards classify it as internal routing rather than user content

So isSyntheticOrInternalTextPart and isSyntheticOrInternalOnlyTextParts now recognize the handoff injection without needing handoff-specific logic. No shared marker module is needed — agent-handoff stays focused on transition detection, and the marker semantics live in internal-initiator-marker where #4223 already centralized them. The opencode part-validation fields (id / sessionID / messageID) are preserved via spread.

Suites pass locally: agent-handoff + chat-message (51/51).

[PeterPonyu]

Rebased onto current upstream/dev and composed with #4223's createInternalAgentTextPart.

Handoff marker is now wrapped via createInternalAgentTextPart(renderHandoffMarker(...)) — separate concerns, composable. isSyntheticOrInternalTextPart recognizes the injection without handoff-specific logic.

• bun test src/features/agent-handoff/ src/plugin/chat-message.test.ts → 51/51 pass
• cubic: APPROVED (5/5 confidence, 0 issues)
• CI: all green

Ready for merge decision.

[PeterPonyu]

recheck

[PeterPonyu]

Closing as too-large feature work with no surgical version.

This PR is a 480-line / 10-file net-new feature (agent identity marker on mid-session agent change). It doesn't fix a specific filed issue.

Will re-propose if maintainer signals interest. The XML-escape security follow-up (originally a75f064 in #4310) is a tiny standalone fix that depends on this feature's foundation existing first — also deferred.