fix(microsoft-foundry): filter Anthropic deployments during onboard

[ottodeng]

Summary

The built-in microsoft-foundry provider only supports OpenAI-compatible Foundry APIs (chat/completions, responses). However, Anthropic (Claude) deployments on Azure AI Foundry use a different API shape (/anthropic/v1/messages) that is not wired yet. This causes silent 404 failures at runtime after apparently successful onboarding — the user selects a Claude deployment, configuration looks correct, but requests fail.

Changes

• Add isAnthropicFoundryDeployment() to detect Claude model names
• Filter Anthropic deployments from the selection list during onboard
• Show an informative note with workaround (custom provider with anthropic-messages API) when Anthropic deployments are skipped
• Provide a specific error message when only Anthropic deployments exist in the resource
• Add tests for the detection function (11 test cases)

Why Option B (guardrail)

The issue suggests two approaches: full Anthropic API support (Option A) or a guardrail (Option B). This PR implements Option B because:

• It prevents the confusing "config succeeded but runtime fails" experience immediately
• The workaround (custom provider) is clearly communicated to users
• Full Anthropic Foundry support can be added later without breaking this guardrail

Testing

• 36 tests pass (vitest run extensions/microsoft-foundry/index.test.ts)
• New tests cover: Claude model name detection (4 variants), non-Anthropic rejection (7 variants including edge cases)

Fixes #60546

[greptile-apps]

Greptile Summary

This PR adds a guardrail to the microsoft-foundry onboarding flow that filters out Anthropic (Claude) deployments, which use a different API shape (/anthropic/v1/messages) not supported by the built-in provider. When such deployments are detected, an informative note is shown with a custom-provider workaround, and a clear error is thrown if no OpenAI-compatible deployments remain.

Confidence Score: 5/5

Safe to merge — the change is self-contained, well-tested, and prevents a silent runtime failure without breaking existing functionality.

Logic is sound: normalizeFoundryModelName lowercases before the startsWith('claude') check handles all case variants, null/undefined/empty are handled gracefully, and the filtering correctly uses modelName (the actual model) rather than the deployment name. Tests cover all relevant edge cases. No existing behavior is removed.

No files require special attention.

_{Reviews (1): Last reviewed commit: "fix(microsoft-foundry): filter Anthropic..." | Re-trigger Greptile}

[clawsweeper]

Codex review: needs real behavior proof before merge.

Summary
The branch filters Claude/Anthropic Microsoft Foundry deployments from onboarding and persisted deployment catalogs, adds warning/error copy and regression tests, and updates the changelog.

Reproducibility: yes. for source-level reproduction: current main offers and persists all succeeded Foundry deployments while runtime/base URL construction only targets /openai/v1. I did not run a live Azure Foundry account.

Real behavior proof
Needs real behavior proof before merge: Needs real behavior proof before merge: current evidence is only tests/local checks, so the contributor should add redacted Azure Foundry onboarding output, logs, screenshot, or recording to the PR body; that should trigger ClawSweeper re-review, or a maintainer can comment @clawsweeper re-review. After adding proof, update the PR body; ClawSweeper should re-review automatically. If it does not, ask a maintainer to comment @clawsweeper re-review.

Next step before merge
Human/contributor action remains: resolve committed changelog conflict markers and provide redacted real Azure Foundry onboarding proof; automation cannot supply the contributor's Azure account proof.

Security
Cleared: Cleared: the diff only changes provider-local onboarding/filtering, tests, and changelog text and adds no dependencies, workflows, artifact downloads, or secret-handling changes.

Review findings

• [P2] Resolve the CHANGELOG merge markers — CHANGELOG.md:156-158

Review details

Best possible solution:

Resolve the changelog markers, add redacted live Azure Foundry onboarding proof, then land the provider-local guardrail once exact-head checks are green.

Do we have a high-confidence way to reproduce the issue?

Yes for source-level reproduction: current main offers and persists all succeeded Foundry deployments while runtime/base URL construction only targets /openai/v1. I did not run a live Azure Foundry account.

Is this the best way to solve the issue?

Yes for the immediate bug once cleaned up: a provider-local guardrail is narrower than implementing full Anthropic Foundry support here, while #47181 remains the separate first-class Azure Claude onboarding effort.

Full review comments:

• [P2] Resolve the CHANGELOG merge markers — CHANGELOG.md:156-158
  The current head contains literal conflict markers in CHANGELOG.md, so merging this would leave invalid release notes in the tree. Please resolve the changelog conflict and keep both intended entries without the marker lines.
  Confidence: 0.99

Overall correctness: patch is incorrect
Overall confidence: 0.93

What I checked:

• current_main_unfiltered_picker: Current main builds the Microsoft Foundry deployment picker from every discovered deployment without filtering Claude/Anthropic model names. (extensions/microsoft-foundry/onboard.ts:182, bc275573012b)
• current_main_unfiltered_catalog: Current main persists discoveredDeployments from the raw resourceDeployments list, so unsupported Claude deployments can be saved into the provider catalog. (extensions/microsoft-foundry/auth.ts:129, bc275573012b)
• current_main_openai_route: The Microsoft Foundry provider API type is limited to OpenAI-compatible APIs and the base URL builder always returns the /openai/v1 form. (extensions/microsoft-foundry/shared.ts:176, bc275573012b)
• pr_provider_guardrail: The PR adds isAnthropicFoundryDeployment and partitionFoundryDeployments, then uses the supported list for onboarding selection and catalog persistence. (extensions/microsoft-foundry/shared.ts:111, e1eee952119a)
• pr_regression_coverage: The PR adds focused tests for mixed GPT+Claude resources, all-Anthropic resources, all-OpenAI resources, and Claude model-name detection. (extensions/microsoft-foundry/index.test.ts:789, e1eee952119a)
• pr_head_conflict_markers: The current PR head contains literal CHANGELOG.md merge conflict markers at lines 156, 158, and 167. (CHANGELOG.md:156, e1eee952119a)

Likely related people:

• haxudev: Introduced the Microsoft Foundry provider, including discovery, onboarding selection, persisted deployment catalog generation, and OpenAI-compatible routing. (role: introduced behavior; confidence: high; commits: a16dd967da51; files: extensions/microsoft-foundry/auth.ts, extensions/microsoft-foundry/onboard.ts, extensions/microsoft-foundry/shared.ts)
• steipete: Recent main-branch work repeatedly touched Microsoft Foundry onboarding, shared provider helpers, and tests around this path. (role: recent maintainer; confidence: high; commits: 05f607c149ce, cc470dbfc1ec, c0dc3b3cb72d; files: extensions/microsoft-foundry/onboard.ts, extensions/microsoft-foundry/shared.ts, extensions/microsoft-foundry/index.test.ts)
• Takhoffman: Recent Foundry model capability work changed shared provider behavior and tests near deployment metadata and runtime normalization. (role: adjacent maintainer; confidence: medium; commits: d28b02a7b131; files: extensions/microsoft-foundry/shared.ts, extensions/microsoft-foundry/index.test.ts, extensions/microsoft-foundry/provider.ts)

Remaining risk / open question:

• No after-fix Azure Foundry onboarding proof shows Claude deployments being skipped or rejected in a real discovered-resource flow.
• The current PR head contains literal CHANGELOG.md conflict markers, so exact-head checks and merge readiness remain blocked.

Codex review notes: model gpt-5.5, reasoning high; reviewed against bc275573012b.

[ottodeng]

Pushed updates addressing review feedback:

[P2] Filter the persisted catalog too (dfa3a053da)

• Added partitionFoundryDeployments in shared.ts as the single source of truth for separating supported (OpenAI-compatible) deployments from Anthropic ones.
• selectFoundryDeployment now returns { selected, supported }. auth.ts uses that supported list when building discoveredDeployments, so mixed GPT+Claude resources no longer leak Claude entries into the saved models.providers.microsoft-foundry catalog after the picker hides them.

Tests (63efff4e4e)

• partitionFoundryDeployments: mixed GPT+Claude, all-Anthropic, all-OpenAI cases.
• selectFoundryDeployment: mixed resource persists only GPT entries + warns about unsupported, all-Anthropic resource throws actionable error, all-OpenAI resource is unchanged with no warning.

[P3] CHANGELOG (16b750f12c)

• Added an Unreleased ### Fixes entry describing the onboarding + persistence guardrail and referencing [Bug]: microsoft-foundry provider selects Claude deployments but routes them through OpenAI Foundry endpoints #60546.

Verification on tip 16b750f12c:

• pnpm test extensions/microsoft-foundry/index.test.ts → 42 passed (8 new).
• pnpm check:changed → green (typecheck, oxlint, duplicates, runtime sidecar/import cycles, changelog attributions, etc.).

[ottodeng]

Merged latest upstream/main (CHANGELOG conflict resolved by keeping both sides). Re-pushed.

[ottodeng]

Synced with upstream/main, CI green. Available for review.

[BradGroux]

Maintainer refresh: rebased onto current origin/main and resolved the changelog attribution blocker.

Prepared head: ae6567bbf9818ed4695dba2079b204da3b55a80b

Local verification passed:

• pnpm exec oxfmt --check --threads=1 CHANGELOG.md extensions/microsoft-foundry/auth.ts extensions/microsoft-foundry/index.test.ts extensions/microsoft-foundry/onboard.ts extensions/microsoft-foundry/shared.ts
• pnpm check:changelog-attributions
• pnpm vitest run extensions/microsoft-foundry/index.test.ts

Waiting on fresh GitHub CI before merge.