fix(proxy): allow opting out of the DeepSeek direct-route default#1507
Merged
Conversation
`DEFAULT_NO_PROXY` hardcoded `api.deepseek.com` / `*.deepseek.com` so the dispatcher always routed them through `undici.Agent()` direct, bypassing HTTPS_PROXY. Corporate firewalls that block direct egress therefore broke `reasonix doctor`'s api-reach check with a ConnectTimeoutError, with no way for the user to override. Split the defaults: loopback stays mandatory, DeepSeek becomes opt-out via `proxy.bypassDeepSeekDirect: false` (config) or `REASONIX_PROXY_DEEPSEEK_DIRECT=0` (env). Default behaviour preserves the clash/v2ray US-exit-IP 403 fix that put the bypass there. Closes #1497
3ad8533 to
98236b2
Compare
esengine
added a commit
that referenced
this pull request
May 22, 2026
…se (#1565) * chore(release): 0.49.0 — static-history TUI, queued steers, Bing default, lifecycle plans Headline themes: - TUI: Static-history renderer is the only path; virtual-viewport layers removed (#1529 stages 1-4) - Chat: queued mid-turn steer handling so input mid-render doesn't drop or fight the live frame (#1501) - Web search: default switches to Bing; dashboard engine switcher; Mojeek dropped (#1558) - Plans: lifecycle evidence summaries surface why a plan is ready to accept (#1500) - Desktop: native OS notifications for approvals + completion (#1519) - i18n: CLI command output (/mcp /sessions /prune /theme) + approval-prompt labels translated (#1524, #1560) - Security: SSRF block in web_fetch (#1544), edit-snapshot path containment (#1454), shell redirect sandbox (#1457), Task integrity guardrail (#1516) - Tools: per-turn dispatch-rate limit (#1356); run_command discourages shell-based edits (#1514) - Client: DeepSeek 429 → concurrency-limit hint (#1526); timeoutMs honored with AbortSignal (#1535); --no-proxy opt-out for direct route (#1507) - Files: read/edit/restore preserves source encoding (GB18030 / UTF-8 BOM) (#1518) - Context: pinned constraints survive folds + full tail capture (#1515, #1552) - Refactor: lifecycle risk policy extracted into its own module (#1557) See CHANGELOG for the full list. * fix(context): align fold summary prefix with main agent for cache reuse The summarizer call was sending a bespoke "You compress conversation history" system prompt and no tools, guaranteeing a 0% cache hit against the main agent's just-cached prefix. Reshape the request so system + tools + head bytes mirror the live agent's last call — the only novel bytes are the trailing summarize instruction. Skill-pin handling now collects bodies read-only instead of stubbing mid-head, so the cache prefix stays unbroken. The summarize instruction names pinned skills so the model knows not to paraphrase their bodies (which we append verbatim regardless). Measured on a real session at 48.7K prompt tokens: OLD shape: 0.0% cache hit → $0.145 per fold NEW shape: 99.6% cache hit → $0.015 per fold saving: 89.6% per fold * tools: add fold-cache shape + live benchmarks bench-fold-cache-shape.mjs replays real session jsonls, simulates OLD vs NEW summary-call shapes at the fold point, and reports byte-level shared-prefix with the main agent's preceding request. Pure local — no API required. bench-fold-cache-live.mjs sends one priming + two summary calls to DeepSeek and reports prompt_cache_hit_tokens / cost for each shape. Used to confirm the shape change actually translates to API-side cache hits. --------- Co-authored-by: reasonix <reasonix@deepseek.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Make the DeepSeek direct-route default opt-out so corporate-firewall users can route
api.deepseek.comthrough their proxy. Closes #1497.The bug
DEFAULT_NO_PROXYinsrc/net/proxy.tshardcodedapi.deepseek.com+*.deepseek.comalongside loopback. TheSelectiveProxyDispatchertherefore always routed those hosts throughundici.Agent()direct, bypassingHTTPS_PROXY. Corporate networks that block direct egress sawConnectTimeoutError→getBalance()returnednull→reasonix doctorreportedapi reach … /user/balance returned null — auth failed or network blockedwith no escape hatch (--no-proxydoesn't help; it just skips proxy install entirely, and Node's bare fetch ignoresHTTPS_PROXY).The fix
Split the defaults:
LOOPBACK_NO_PROXY(localhost,127.0.0.1,::1) — non-negotiable; dashboard, MCP stdio sidecar HTTP probes, anddoctorreachability checks all need this.DEEPSEEK_NO_PROXY(api.deepseek.com,*.deepseek.com) — opt-out via either knob:proxy.bypassDeepSeekDirect: falsein~/.reasonix/config.jsonREASONIX_PROXY_DEEPSEEK_DIRECT=0(also acceptsfalse/no/off; truthy values are1/true/yes/on)Env wins over config when explicitly set; unrecognized env values fall through to config. Default behaviour preserves the original clash/v2ray US-exit-IP-403 fix that put the bypass there in the first place — no behaviour change for users who don't set either knob.
reasonix doctor'sproxy routingprobe row already printsapi.deepseek.com → direct | via proxy, and now reflects the override correctly without any extra detail string.Why two knobs
Corporate users typically can't ergonomically edit
~/.reasonix/config.jsonfrom their workstation (config sync, profile management, etc.) but they own their shell env vars. The env knob is the actual escape hatch; the config knob is for persistent setups.Scope check — any other places with the same problem?
The bypass machinery is a single chokepoint:
SelectiveProxyDispatcherset asundici's global dispatcher. Everyfetch()in the codebase (DeepSeek client, web tools, MCP HTTP probes, doctor, dashboard, balance API) flows through it. Searched for other hardcoded "must route direct" hosts:src/qq/bot.ts(bots.qq.com,api.sgroup.qq.com,sandbox.api.sgroup.qq.com) — uses the global dispatcher, no separate bypass list. ✓src/index/semantic/embedding.tsOllama localhost — covered by loopback bypass which stays mandatory. ✓metaso.cn/tavily.com/searxng— only appear in i18n error strings, no routing override. ✓docs/configuration.html,docs/src/hero.jsx— describe target URLs, don't claim NO_PROXY is non-optional. No edits needed. ✓One anti-pattern, one fix.
Test Plan
npx vitest run tests/proxy.test.ts— 47 tests pass, including:resolveBypassDeepSeekDirectenv precedence + all boolean parse formsresolveNoProxy({...}, { bypassDeepSeekDirect: false })drops DeepSeek but keeps loopbackREASONIX_PROXY_DEEPSEEK_DIRECT=0drops DeepSeek at install timenpx vitest run tests/config.test.ts— 73 tests pass, including newproxy.bypassDeepSeekDirectconfig load + typeguard against non-bool valuesnpx vitest run tests/doctor-json.test.ts— 5 passnpx vitest run tests/comment-policy.test.ts— 9 passnpx tsc --noEmit— cleannpx biome checkon touched files — cleannpm run verify— full suite green via pre-push hook