memory-wiki: "Refusing to write imported source page through symlink" fires for non-symlink FsSafeError causes

[cknzraposo]

Summary

wiki_status (and any bridge import write) reports Refusing to write imported source page through symlink: <path> even when no symlink exists anywhere on the page path. The catch in writeImportedSourcePage re-wraps every FsSafeError with a "through symlink" message, hiding the real cause (in my case, a restrictive-permissions/atomic-replace failure on a bridge-imported page written at mode 600).

Where

extensions/memory-wiki/src/source-page-shared.ts, in writeImportedSourcePage:

try {
  if (pageStat && pageStat.nlink > 1) {
    await vault.remove(params.pagePath);
  }
  await vault.write(params.pagePath, rendered);
} catch (error) {
  if (error instanceof FsSafeError) {
    throw new Error(
      `Refusing to write imported source page through symlink: ${params.pagePath}`,
      { cause: error },
    );
  }
  throw error;
}

FsSafeError covers a family of codes (invalid-path, outside-workspace, path-alias, plus the symlink-parent / perms hardening from #66636, #69797/8, #80331). Any of them surface as "through symlink", which is misleading.

extensions/memory-wiki/src/bridge.test.ts asserts on the exact "through symlink" string, so changing the message has a test impact — flagging in case maintainers want to decide direction.

Repro

1. Run a wiki bridge import that produces an imported source page (e.g. memory bridge from another workspace).
2. Ensure the resulting page file ends up at mode 600 in an otherwise normal (non-symlinked) directory tree. In my case this happened on first write because the source file (workspace-bulletin/memory/.dreams/events.jsonl) was 600 and the writer inherited restrictive perms.
3. Trigger a re-render of that page (e.g. wiki_status, which re-runs imported-source writes).

Result: Error: Refusing to write imported source page through symlink: wiki/main/sources/<page>.md — even though realpath of every component shows no symlink.

In my case:

• Path: wiki/main/sources/bridge-workspace-bulletin-075c90ca-memory-dreams-events-jsonl-38a7dd37.md
• Mode: -rw------- (only file in sources/ with that mode; all others 664)
• Verified: no symlink on any ancestor.

Expected

Either:

• The error message reflects the actual FsSafeError.code (e.g. Refusing to write imported source page (perms-denied): <path>), or
• The catch is tightened to wrap only the symlink-parent / path-alias codes with the "through symlink" message and lets other FsSafeErrors bubble with their own message.

Either way: surface the real reason so users can fix it (in my case, chmod 644 resolves it instantly once you know what's happening).

Sketch fix

if (error instanceof FsSafeError) {
  const reason =
    error.code === "symlink-parent" || error.code === "path-alias"
      ? "through symlink"
      : `(${error.code})`;
  throw new Error(
    `Refusing to write imported source page ${reason}: ${params.pagePath}`,
    { cause: error },
  );
}

bridge.test.ts would need its assertion updated alongside.

Environment

• OpenClaw: installed via npm i -g openclaw (whichever was current on 2026-05-18 NZT)
• Host: WSL2 (Ubuntu) on Windows 11
• Vault root: workspace bridge importing from a sibling workspace

Happy to send a PR if maintainers confirm the preferred direction (message rewrite vs. tightened catch).

[clawsweeper]

Codex review: keeping this open for maintainer follow-up; there is still a little grit to resolve.

Workflow note: Future ClawSweeper reviews update this same comment in place.

How this review workflow works

• ClawSweeper keeps one durable marker-backed review comment per issue or PR.
• Re-runs edit this comment so the latest verdict, findings, and automation markers stay together instead of adding duplicate bot comments.
• A fresh review can be triggered by eligible @clawsweeper re-review comments, exact-item GitHub events, scheduled/background review runs, or manual workflow dispatch.
• PR/issue authors and users with repository write access can comment @clawsweeper re-review or @clawsweeper re-run on an open PR or issue to request a fresh review only.
• Maintainers can also comment @clawsweeper review to request a fresh review only.
• Fresh-review commands do not start repair, autofix, rebase, CI repair, or automerge.
• Maintainer-only repair and merge flows require explicit commands such as @clawsweeper autofix, @clawsweeper automerge, @clawsweeper fix ci, or @clawsweeper address review.
• Maintainers can comment @clawsweeper explain to ask for more context, or @clawsweeper stop to stop active automation.

Summary
Keep open: current main and the latest release still wrap every FsSafeError from writeImportedSourcePage with a symlink-specific message, while the fs-safe contract exposes several non-symlink error codes that can reach that catch.

Reproducibility: yes. source inspection gives a high-confidence reproduction path: any non-symlink FsSafeError thrown by vault.write will be rewrapped with the symlink message. I did not run the filesystem repro because this review was read-only.

Next step
This is a narrow, source-proven diagnostic bug with clear files and regression coverage, so it is suitable for a focused ClawSweeper repair PR.

Review details

Best possible solution:

Update writeImportedSourcePage so symlink/path-alias failures keep the existing safety wording, other FsSafeError causes expose their code or original message, and bridge.test.ts covers both cases.

Do we have a high-confidence way to reproduce the issue?

Yes, source inspection gives a high-confidence reproduction path: any non-symlink FsSafeError thrown by vault.write will be rewrapped with the symlink message. I did not run the filesystem repro because this review was read-only.

Is this the best way to solve the issue?

Yes, a narrow catch-path fix plus regression coverage is the maintainable solution; no new config surface or broader memory-wiki behavior change is needed.

Label justifications:

• P2: This is a concrete memory-wiki diagnostic bug with a narrow affected surface and a clear fix path, but it is not a core outage or data-loss emergency.

Acceptance criteria:

• node scripts/run-vitest.mjs extensions/memory-wiki/src/bridge.test.ts
• git diff --check

What I checked:

• Current source wraps all FsSafeError values as symlink failures: writeImportedSourcePage catches any FsSafeError from vault.write and always throws Refusing to write imported source page through symlink, without checking error.code. (extensions/memory-wiki/src/source-page-shared.ts:58, 94abfa76e21f)
• Adjacent test locks in only the symlink wording: The bridge regression test asserts the exact symlink-oriented message for a real symlink case, so a fix should preserve that coverage while adding a non-symlink FsSafeError case. (extensions/memory-wiki/src/bridge.test.ts:343, 94abfa76e21f)
• fs-safe contract has non-symlink FsSafeError codes: The installed dependency contract for @openclaw/fs-safe@0.2.4 defines FsSafeErrorCode values including invalid-path, insecure-permissions, outside-workspace, path-alias, path-mismatch, and symlink, so the current catch message is broader than the dependency contract supports.
• wiki_status reaches imported-source writes: wiki_status executes syncMemoryWikiImportedSources, which dispatches bridge mode to syncMemoryWikiBridgeSources, and that path calls writeImportedSourcePage. (extensions/memory-wiki/src/tool.ts:120, 94abfa76e21f)
• Latest release still contains the behavior: v2026.5.18 contains the same unconditional symlink wrapper in source-page-shared.ts, so this is not already fixed in the shipped release identified in the review context. (extensions/memory-wiki/src/source-page-shared.ts:59, 50a2481652b6)
• No duplicate canonical issue found: GitHub search for the exact message and for memory-wiki/FsSafeError found only this open issue, so there is no stronger duplicate/superseding item to route to.

Likely related people:

• steipete: git log -S writeImportedSourcePage shows Peter Steinberger introduced the shared imported-source write helper in efd9aaea, the central function implicated by this issue. (role: refactor author; confidence: high; commits: efd9aaea3f3e; files: extensions/memory-wiki/src/source-page-shared.ts, extensions/memory-wiki/src/bridge.ts, extensions/memory-wiki/src/unsafe-local.ts)
• vincentkoc: Memory-wiki bridge sync and the wiki tool path were introduced/restored across the April memory-wiki feature commits, including the bridge code that calls the shared writer. (role: feature introducer; confidence: high; commits: fbbe2a167504, 5716d83336fd; files: extensions/memory-wiki/src/bridge.ts, extensions/memory-wiki/src/tool.ts, extensions/memory-wiki/src/source-sync.ts)
• jasonyliu: Current-line blame attributes the present source-page-shared.ts helper and the symlink bridge test in this checkout to 5613f5fd, making them a useful routing candidate for the exact current code shape. (role: recent area contributor; confidence: medium; commits: 5613f5fd05a7; files: extensions/memory-wiki/src/source-page-shared.ts, extensions/memory-wiki/src/bridge.test.ts)

Remaining risk / open question:

• I did not execute a filesystem reproduction in this read-only review, so the restrictive-permissions case is source-proven rather than live-confirmed.

Codex review notes: model gpt-5.5, reasoning high; reviewed against 94abfa76e21f.