fix(cron): force main-target system events onto main session

[Sid-Qin]

Summary

• Problem: For cron jobs configured with sessionTarget: "main" + payload.kind: "systemEvent", persisted sessionKey could override main-session routing and create/send to unintended Telegram sessions after upgrades.
• Why it matters: Users don't receive cron output in their expected main chat; events land in wrong session context.
• What changed: Updated src/cron/service/timer.ts to ignore persisted job.sessionKey when sessionTarget is main, and always resolve through main-session path (sessionKey: undefined in enqueue/wake calls); updated regression expectations in src/cron/service.runs-one-shot-main-job-disables-it.test.ts.
• What did NOT change: Isolated cron jobs and non-main targeting behavior are unchanged.

Change Type (select all)

• Bug fix
• Feature
• Refactor
• Docs
• Security hardening
• Chore/infra

Scope (select all touched areas)

• Gateway / orchestration
• Skills / tool execution
• Auth / tokens
• Memory / storage
• Integrations
• API / contracts
• UI / DX
• CI/CD / infra

Linked Issue/PR

• Closes [Bug]: Cron jobs with sessionTarget: "main" + payload.kind: "systemEvent" create new Telegram chat session instead of delivering to existing main session after upgrade to 2026.2.26 #28770

User-visible / Behavior Changes

• Main-target cron system events now reliably route to agent main session.
• Legacy/persisted session keys no longer divert main-target jobs into separate chat sessions.

Security Impact (required)

• New permissions/capabilities? No
• Secrets/tokens handling changed? No
• New/changed network calls? No
• Command/tool execution surface changed? No
• Data access scope changed? No

Repro + Verification

Environment

• OS: macOS 26.3 (dev), reporter environment Ubuntu/WSL + Telegram
• Runtime: Node.js + pnpm test runner
• Integration/channel: Cron + main session routing

Steps

1. Create a cron job with sessionTarget: "main", payload.kind: "systemEvent", and a persisted channel-like sessionKey.
2. Trigger job run (wakeMode: now) and observe routing arguments.

Expected

• Main-target job resolves to main session, not to persisted channel session key.

Actual

• Before fix: persisted sessionKey could be forwarded and misroute events.
• After fix: main-target path ignores persisted sessionKey and uses main-session resolution.

Evidence

• Updated regression test:
  • src/cron/service.runs-one-shot-main-job-disables-it.test.ts
• Test run (same patch before cherry-pick):
  • pnpm --dir /Users/sidqin/Desktop/openclaw-contrib exec vitest src/cron/service.runs-one-shot-main-job-disables-it.test.ts
  • Result: 1 file passed, 14 tests passed.

Human Verification (required)

• Verified scenarios:
  • Main-target wakeMode-now job with explicit agentId uses main-session resolution path.
  • Busy-heartbeat fallback path also keeps main-session resolution behavior.
• Edge cases checked:
  • Existing system-event execution flow remains intact for wake/run outcomes.
• What I did not verify:
  • Live Telegram E2E delivery in a real upgraded production instance.

Compatibility / Migration

• Backward compatible? Yes
• Config/env changes? No
• Migration needed? No

Failure Recovery (if this breaks)

• How to disable/revert: Revert this commit.
• Files/config to restore: src/cron/service/timer.ts, test expectation file.
• Known bad symptoms: Main-target cron jobs may again route into unintended sessions.

Risks and Mitigations

• Risk: Deployments relying on non-main sessionKey overrides for main-target jobs may observe changed behavior.
• Mitigation: sessionTarget: "main" semantics are now strictly enforced and covered by regression test expectations.

[greptile-apps]

Greptile Summary

Forces main-target cron system events to always route through the main session by setting the session parameter to undefined during execution. This prevents persisted session identifiers from overriding main-session routing after upgrades. The fix is applied consistently across all main-target execution paths: enqueueSystemEvent, runHeartbeatOnce, and requestHeartbeatNow. Isolated cron jobs and non-main targeting behavior remain unchanged.

Confidence Score: 5/5

• Safe to merge - targeted bug fix with clear scope and appropriate test coverage
• Fix is straightforward: introduces constant set to undefined and applies it consistently across execution paths in the main-target block. Test expectations are updated to verify new behavior. Isolated jobs remain unaffected as designed. Change is backward compatible and solves a specific routing issue without adding complexity.
• No files require special attention

_{Last reviewed commit: 2e07144}

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 2e07144904

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[chatgpt-codex-connector]

Pass explicit main session key to heartbeat wake calls

Setting targetMainSessionKey to undefined does not actually force heartbeat execution onto the main session; it only removes the forced session override. In runHeartbeatOnce, forcedSessionKey is optional, and when absent the runner can pick heartbeat.session instead of main (src/infra/heartbeat-runner.ts:275-307), while the cron event was enqueued to main in the gateway path (src/gateway/server-cron.ts). For users with heartbeat.session configured to a non-main session, main-target cron events can be queued in main but the wake/run reads a different session, so the cron message is effectively missed.

Useful? React with 👍 / 👎.