fix(feishu): cache probeFeishu() results with 10-min TTL to reduce API calls

[Glucksberg]

Summary

• Add in-memory caching to probeFeishu() with 10-minute TTL
• Reduces Feishu API calls from ~43K/month to ~4.3K/month
• Only caches successful probes; failures always make fresh calls
• Closes [Feature]: The Feishu plugin's /open-apis/bot/v3/info endpoint is called every minute by Gateway health check. This results in ~43,200 API calls/month, exceeding Feishu's free tier (50,000). #26684

Test plan

• Run pnpm vitest run extensions/feishu/src/probe.test.ts
• Verify all 11 tests pass including TTL expiry and cache isolation

🤖 Generated with Claude Code

[greptile-apps]

Greptile Summary

Added in-memory caching to probeFeishu() with a 10-minute TTL to address excessive API calls from gateway health checks. The implementation successfully reduces Feishu API calls from ~43K/month to ~4.3K/month by caching successful bot info lookups.

Key changes:

• Implemented Map-based cache with 10-minute TTL and 64-entry capacity
• Only caches successful probes (failures always make fresh API calls)
• Cache key based on appId (appropriate since bot metadata is static per app)
• Added comprehensive test suite with 11 tests covering caching behavior, TTL expiry, and cache isolation
• Exported clearProbeCache() function for test cleanup

Implementation notes:

• Cache eviction uses FIFO strategy (deletes oldest inserted entry when capacity exceeded), which is acceptable given the low likelihood of exceeding 64 different appIds in production
• Bot info (botName, botOpenId) is tied to appId and doesn't change when appSecret is rotated, so using appId as the sole cache key is correct

Confidence Score: 5/5

• This PR is safe to merge - it adds a well-tested, non-breaking caching layer that addresses a real API quota issue
• The implementation is clean, well-documented, and thoroughly tested. The caching strategy is sound for the use case (static bot metadata). All edge cases are covered in tests including TTL expiry, cache isolation, and failure handling. No breaking changes or risky logic introduced.
• No files require special attention

_{Last reviewed commit: 0daca23}

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 0daca238df

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[chatgpt-codex-connector]

Include account identity in Feishu probe cache key

probeFeishu caches by appId only, so two accounts that share an appId but have different appSecret/domain can reuse the same cached success result. In that case, a healthy account can mask a misconfigured one (for example after secret rotation), because the second probe returns cached ok: true without making an API call, causing status/health checks to report a false positive for that account. The cache key should include the full credential context (or account ID) to prevent cross-account cache pollution.

Useful? React with 👍 / 👎.

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: aac96d8e63

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[chatgpt-codex-connector]

Include credential fingerprint in account-scoped probe key

Using accountId alone as the cache key means a successful probe is reused even after that account’s appId, appSecret, or domain is changed, so status checks can report ok: true for up to 10 minutes against now-invalid credentials (for example right after secret rotation or a bad config edit). This regresses probe correctness for the most common call path where probeFeishu receives a resolved account object with accountId set.

Useful? React with 👍 / 👎.

[chatgpt-codex-connector]

You have reached your Codex rate limits. Please try again later.

[Takhoffman]

PR #28907 - fix(feishu): cache probeFeishu() results with 10-min TTL to reduce API calls (#28907)

Merged via squash.

• Merge commit: 60ef923
• Verified: pnpm build, pnpm check, pnpm test:macmini
• Changes made:
  M\tCHANGELOG.md
• Why these changes were made:
  Required changelog entry for maintainer autoland after strict review; PR code remained intact.
• Changelog: CHANGELOG.md updated=true required=true opt_out=false

Thanks @Glucksberg!

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: b4c97d1939

ℹ️ About Codex in GitHub

Codex has been enabled to automatically review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

When you sign up for Codex through ChatGPT, Codex can also answer questions or update the PR, like "@codex address that feedback".

[chatgpt-codex-connector]

Include credential fingerprint in account cache key

When accountId is present, probeFeishu keys the cache only by that ID, so a successful probe is reused even after that account’s appId/appSecret/domain changes; this can report ok: true for up to 10 minutes after a secret rotation or domain misconfiguration while real API calls are already failing. This is especially impactful because status probing passes resolved account objects into probeFeishu, so the stale-hit path is the common runtime path rather than an edge case.

Useful? React with 👍 / 👎.