fix(agents): surface blocked subagent completions

[TurboTheTurtle]

Summary

• Treat terminal livenessState: "blocked" metadata as an error before agent.wait snapshots or subagent announcements can normalize it to success.
• Surface the blocked/error message through the parent-facing subagent outcome instead of announcing “completed successfully”.
• Add regression coverage for the gateway snapshot, registry lifecycle bridge, and wait-result application path.

Root Cause

The embedded runtime already carried blocked terminal metadata, but the completion bridge still treated non-aborted lifecycle end events and agent.wait results with status: "ok" as successful even when livenessState was "blocked".

Real behavior proof

• Behavior or issue addressed: A terminal lifecycle end carrying livenessState: "blocked" and a context-overflow message is now surfaced as an error instead of a successful subagent completion.
• Real environment tested: Local OpenClaw checkout on branch fix/subagent-blocked-completion, running production TypeScript modules through node --import tsx.
• Exact steps or command run after this patch: Ran a live Node command that imports emitAgentEvent and waitForAgentJob, emits the same blocked terminal lifecycle shape described in the issue, and prints the resolved wait snapshot.
• Evidence after fix: Terminal output:

{
  "runId": "proof-blocked-1778563591039",
  "status": "error",
  "startedAt": 100,
  "endedAt": 150,
  "error": "Context overflow: prompt too large for the model.",
  "livenessState": "blocked",
  "ts": 1778563591040
}

• Observed result after fix: The real waitForAgentJob path returned status: "error" with the context-overflow message and livenessState: "blocked"; it did not return status: "ok".
• What was not tested: I did not force a live Atlas/GPT-5.5 provider context overflow; the live proof exercises OpenClaw’s production lifecycle/wait bridge with the reported terminal metadata shape.

Validation

• pnpm test src/gateway/server-methods/server-methods.test.ts src/agents/subagent-registry.test.ts src/agents/subagent-announce-output.test.ts
• pnpm test src/agents/pi-embedded-subscribe.handlers.lifecycle.test.ts src/agents/pi-embedded-runner/run.overflow-compaction.test.ts
• pnpm check:changed -- --base upstream/main
• git diff --check

Attribution

If this PR is squashed or reworked, please preserve author attribution or include:

Co-authored-by: Andy Ye <35905412+TurboTheTurtle@users.noreply.github.com>

Closes #80879

[clawsweeper]

Codex review: passed.

Workflow note: Future ClawSweeper reviews update this same comment in place.

How this review workflow works

• ClawSweeper keeps one durable marker-backed review comment per issue or PR.
• Re-runs edit this comment so the latest verdict, findings, and automation markers stay together instead of adding duplicate bot comments.
• A fresh review can be triggered by eligible @clawsweeper re-review comments, exact-item GitHub events, scheduled/background review runs, or manual workflow dispatch.
• PR/issue authors and users with repository write access can comment @clawsweeper re-review or @clawsweeper re-run on an open PR or issue to request a fresh review only.
• Maintainers can also comment @clawsweeper review to request a fresh review only.
• Fresh-review commands do not start repair, autofix, rebase, CI repair, or automerge.
• Maintainer-only repair and merge flows require explicit commands such as @clawsweeper autofix, @clawsweeper automerge, @clawsweeper fix ci, or @clawsweeper address review.
• Maintainers can comment @clawsweeper explain to ask for more context, or @clawsweeper stop to stop active automation.

Summary
The PR adds shared blocked-liveness normalization, applies it to agent.wait, gateway dedupe, subagent registry, and announcement paths, and adds regression tests plus a changelog entry.

Reproducibility: yes. from source inspection: current main accepts blocked lifecycle/wait metadata as ok through the gateway wait and registry completion paths. I did not run a live provider overflow in this read-only pass.

PR rating
Overall: 🐚 platinum hermit
Proof: 🐚 platinum hermit
Patch quality: 🦞 diamond lobster
Summary: Focused bug fix with sufficient terminal proof and strong regression coverage; the remaining gap is only live-provider overflow proof.

Rank-up moves:

• none

What the crustacean ranks mean

• 🦀 challenger crab: rare, exceptional readiness with strong proof, clean implementation, and convincing validation.
• 🦞 diamond lobster: very strong readiness with only minor maintainer review expected.
• 🐚 platinum hermit: good normal PR, likely mergeable with ordinary maintainer review.
• 🦐 gold shrimp: useful signal, but proof or patch confidence is still limited.
• 🦪 silver shellfish: thin signal; proof, validation, or implementation needs work.
• 🧂 unranked krab: not merge-ready because proof is missing/unusable or there are serious correctness or safety concerns.
• 🌊 off-meta tidepool: rating does not apply to this item.

Shiny media proof means a screenshot, video, or linked artifact directly shows the changed behavior. Runtime, network, CSP, and security claims still need visible diagnostics.

Real behavior proof
Sufficient (terminal): The PR body includes after-fix terminal output from production TypeScript modules showing a blocked lifecycle/wait path resolving to status: "error" with the reported message.

Risk before merge

• The supplied proof exercises the production lifecycle/wait bridge with the reported blocked metadata shape, but it does not force a live Atlas/GPT-5.5 provider context overflow end to end.

Maintainer options:

1. Decide the mitigation before merge
   Land the focused normalization after exact-head CI/automerge gating so blocked terminal states fail loud at every completion boundary instead of reaching parents as successful empty completions.
2. Pause or close
   Do not merge this PR until maintainers decide whether the risk is worth taking.

Next step before merge
No repair lane is needed because the PR already contains the targeted fix, focused tests, sufficient proof, and automerge/check gating is the remaining path.

Security
Cleared: The diff changes TypeScript status normalization, tests, and changelog text only; it does not add dependencies, CI execution, permissions, secret handling, downloads, or new code-execution surfaces.

Review details

Best possible solution:

Land the focused normalization after exact-head CI/automerge gating so blocked terminal states fail loud at every completion boundary instead of reaching parents as successful empty completions.

Do we have a high-confidence way to reproduce the issue?

Yes from source inspection: current main accepts blocked lifecycle/wait metadata as ok through the gateway wait and registry completion paths. I did not run a live provider overflow in this read-only pass.

Is this the best way to solve the issue?

Yes. The PR uses a small shared normalizer plus defensive checks at each raw lifecycle/wait boundary, which is a maintainable fix for the false-success path without adding policy or config surface.

Label changes:

• add status: 🚀 automerge armed: This PR is in ClawSweeper's automerge lane. Sufficient (terminal): The PR body includes after-fix terminal output from production TypeScript modules showing a blocked lifecycle/wait path resolving to status: "error" with the reported message.
• remove status: 👀 ready for maintainer look: Current PR status label is status: 🚀 automerge armed.

Label justifications:

• P1: False successful subagent completion can hide blocked child work and mislead active agent orchestration workflows.
• rating: 🐚 platinum hermit: Current PR rating is 🐚 platinum hermit because proof is 🐚 platinum hermit, patch quality is 🦞 diamond lobster, and Focused bug fix with sufficient terminal proof and strong regression coverage; the remaining gap is only live-provider overflow proof.
• status: 🚀 automerge armed: This PR is in ClawSweeper's automerge lane. Sufficient (terminal): The PR body includes after-fix terminal output from production TypeScript modules showing a blocked lifecycle/wait path resolving to status: "error" with the reported message.
• proof: sufficient: Contributor real behavior proof is sufficient. The PR body includes after-fix terminal output from production TypeScript modules showing a blocked lifecycle/wait path resolving to status: "error" with the reported message.

What I checked:

• Current main gateway behavior: On current main, createSnapshotFromLifecycleEvent preserves livenessState but still maps every non-error, non-aborted lifecycle end to status: "ok", which is the reported false-success path for blocked terminal events. (src/gateway/server-methods/agent-job.ts:145, 6b5eba1f433a)
• Current main registry behavior: On current main, a lifecycle end that is not aborted or yielded calls completeSubagentRun with outcome: { status: "ok" }; there is no blocked-liveness check before the parent-facing completion is recorded. (src/agents/subagent-registry.ts:1021, 6b5eba1f433a)
• Current main wait normalization gap: normalizeAgentWaitResult on current main copies the caller-supplied status and liveness state separately, so { status: "ok", livenessState: "blocked" } remains an ok wait result. (src/agents/run-wait.ts:50, 6b5eba1f433a)
• PR shared normalization: The PR adds isBlockedLivenessState, formatBlockedLivenessError, and normalizeBlockedLivenessWaitStatus so blocked liveness metadata consistently converts terminal waits to errors with a usable message. (src/shared/agent-liveness.ts:1, 224785c8a628)
• PR lifecycle and wait boundaries: The PR applies the blocked-liveness check at the direct lifecycle completion boundary, the agent.wait caller boundary, the gateway dedupe snapshot reader, and the final announcement/capture guard. (src/agents/subagent-registry.ts:999, 224785c8a628)
• PR regression coverage: The PR includes focused tests for blocked lifecycle end events, blocked ok waits, blocked gateway dedupe snapshots, blocked registry completion, and final announcement-side wait application. (src/gateway/server-methods/server-methods.test.ts:139, 224785c8a628)

Likely related people:

• clawsweeper[bot]: Current-main blame for the affected agent/gateway completion paths points to a recent ClawSweeper-authored refactor, and the PR head also contains a ClawSweeper repair commit on the same branch. (role: recent area contributor; confidence: medium; commits: b33deb41594e, 224785c8a628; files: src/gateway/server-methods/agent-job.ts, src/agents/subagent-registry.ts, src/agents/run-wait.ts)
• Josh Avant: Recent git log -S EmbeddedRunLivenessState history shows adjacent embedded-run liveness and missing-completion work in the Pi runner path that produces this metadata. (role: adjacent liveness/completion contributor; confidence: medium; commits: 7cda26aa6c72; files: src/agents/pi-embedded-runner/run.ts, src/agents/pi-embedded-runner/run/types.ts, src/agents/pi-embedded-runner/run.overflow-compaction.loop.test.ts)
• Takhoffman: PR discussion shows repeated automerge/approval commands and removal of the human-review pause after the security-sensitive agent/gateway path was explicitly called out. (role: review requester; confidence: medium)

Codex review notes: model gpt-5.5, reasoning high; reviewed against 6b5eba1f433a.

[TurboTheTurtle]

Pushed follow-up commit 98b86625e1 for the blocked wait normalization finding.

What changed:

• Added shared blocked-liveness wait normalization in src/shared/agent-liveness.ts.
• Applied it at the agent.wait caller boundary in src/agents/run-wait.ts.
• Applied it to gateway dedupe snapshots in src/gateway/server-methods/agent-wait-dedupe.ts, so { status: "ok", livenessState: "blocked" } now becomes an error snapshot before it reaches callers.
• Added a defensive registry completion check in src/agents/subagent-registry-run-manager.ts, so a blocked wait cannot be recorded/announced as a successful subagent completion.
• Added regressions for run-wait, gateway dedupe, and registry completion.

Validation run on PR head 98b86625e1:

• pnpm test src/gateway/server-methods/server-methods.test.ts src/gateway/server-methods/agent-wait-dedupe.test.ts src/agents/subagent-registry.test.ts src/agents/subagent-announce-output.test.ts src/agents/run-wait.test.ts
• pnpm test src/agents/pi-embedded-subscribe.handlers.lifecycle.test.ts src/agents/pi-embedded-runner/run.overflow-compaction.test.ts
• pnpm check:changed -- --base upstream/main
• git diff --check

Author check before push:
git log --format='%h %an <%ae> %s' upstream/main..HEAD

Output:

98b86625e1 Andy Ye <35905412+TurboTheTurtle@users.noreply.github.com> fix(agents): normalize blocked wait completions
92c5d53221 Andy Ye <35905412+TurboTheTurtle@users.noreply.github.com> fix(agents): surface blocked subagent completions

@clawsweeper re-review

[clawsweeper]

🦞🧹
ClawSweeper re-review requested.

I asked ClawSweeper to review this item again.
Action: item re-review queued (workflow sweep.yml, event repository_dispatch).
Result: the existing ClawSweeper review comment will be edited in place when the review finishes.

Re-review progress:

• State: Complete
• Detail: The targeted re-review finished, the durable review comment was updated, and the synced verdict was routed.
• Run: https://github.com/openclaw/clawsweeper/actions/runs/25717481456
• Updated: 2026-05-12T06:33:28.285Z

[martingarramon]

agent-liveness.ts centralizes the blocked-state handling cleanly across the touched call sites. One question on subagent-announce-output.ts:377: can applySubagentWaitOutcome receive an unnormalized wait result with livenessState: blocked and status: ok? If so, this local isBlockedLivenessState check is necessary. If every path is normalized in run-wait.ts first, a short comment here would help explain the duplicate guard. LGTM assuming that guard is intentional.

[TurboTheTurtle]

Thanks for the careful read. The duplicate blocked-liveness guard in applySubagentWaitOutcome is intentional.

applySubagentWaitOutcome is used by the announcement/capture side, and it can still be handed a raw wait-shaped snapshot from capture/announcement plumbing rather than only the normalized run-wait.ts path. Keeping the local isBlockedLivenessState check there makes the rendering/completion boundary defensive: even if an upstream caller supplies { status: "ok", livenessState: "blocked" }, the parent-facing outcome is still an error instead of a successful completion.

So the intended layering is:

• run-wait.ts normalizes the primary agent.wait caller path.
• agent-wait-dedupe.ts normalizes gateway dedupe snapshots before callers observe them.
• subagent-registry-run-manager.ts defensively prevents registry completion from recording blocked waits as success.
• applySubagentWaitOutcome remains a final announcement-side guard for any unnormalized wait-shaped input.

I avoided another code-only comment push to keep the green branch stable, but I am happy to add a short inline comment there if maintainers want it before merge.

[martingarramon]

Commit 98b86625e1 centralizes normalizeBlockedLivenessWaitStatus in agent-liveness.ts and applies it at both entry points (run-wait.ts + agent-wait-dedupe.ts). The retained guard in applySubagentWaitOutcome is load-bearing — announcement/capture plumbing can hand raw wait snapshots that bypass both normalization sites, so the local check is correct rather than redundant. Tests cover the blocked-ok path at all three sites. LGTM.

[TurboTheTurtle]

Rebased this onto current upstream/main and resolved the conflicts in the blocked subagent lifecycle tests and run-manager path. The final branch keeps the upstream durable wait/cleanup/retry behavior and preserves this PR's blocked-wait normalization so blocked completions surface consistently as errors.

Validation:

• pnpm test src/agents/subagent-registry.test.ts src/agents/subagent-announce-output.test.ts src/agents/run-wait.test.ts src/gateway/server-methods/agent-wait-dedupe.test.ts src/gateway/server-methods/server-methods.test.ts
• pnpm exec oxfmt --check --threads=1 ... on the touched agent/gateway files
• git diff --check

I also verified every commit on the PR branch uses Andy Ye <35905412+TurboTheTurtle@users.noreply.github.com> as author.

[TurboTheTurtle]

Follow-up: the first rerun exposed a TypeScript narrowing error in src/agents/subagent-registry-run-manager.ts after the rebase. I amended the branch to remove the unreachable timeout outcome arm from the post-timeout path; timeout outcomes are still handled in the explicit timeout branch above.

Additional validation after the fix:

• pnpm build:plugin-sdk:strict-smoke
• pnpm tsgo:prod
• pnpm check:test-types
• focused Vitest shards from the earlier comment
• pnpm exec oxfmt --check --threads=1 ...
• git diff --check

Author attribution re-verified for all commits before pushing.

[Takhoffman]

@clawsweeper approve

[clawsweeper]

ClawSweeper assist: The hold-up is the clawsweeper:human-review pause. Automerge was requested, but ClawSweeper refused to continue because this PR is explicitly marked for maintainer review.

Evidence:

• PR is open: fix(agents): surface blocked subagent completions #80886
• Current labels include clawsweeper:human-review, clawsweeper:automerge, proof: sufficient, and status: 👀 ready for maintainer look.
• Automerge status on May 19 said: “source PR fix(agents): surface blocked subagent completions #80886 is paused by clawsweeper:human-review; refusing to mutate the PR branch.”
• The pause comment says the PR already has the focused fix and regression coverage, leaving ordinary maintainer review/CI as the next step.
• Head SHA in context is c60204abd10b19a2448515acd48a4bc40ad99799, and GitHub reports mergeable: true.

Suggested next action: Have a maintainer make the explicit review/safe-path call; if a fresh correctness review is needed first, use @clawsweeper review.

---

Source: #80886 (comment)
Assist model: gpt-5.5, reasoning low.

[clawsweeper]

ClawSweeper PR egg

✨ Hatched: ✨ glimmer Velvet Test Hopper

Hatch command

Comment @clawsweeper hatch when this PR is hatchable.

Hatchability rules:

• Merged PRs are hatchable.
• Open PRs are hatchable when they are status: 👀 ready for maintainer look, status: 🚀 automerge armed, or labeled clawsweeper:automerge.
• Closed unmerged PRs are hatchable only when one of those hatchable labels is still present in the durable record.

Rarity: ✨ glimmer.
Trait: collects tiny proofs.
Image traits: location artifact grotto; accessory commit compass; palette moonlit blue and soft silver; mood celebratory; pose guarding a tiny green check; shell polished stone shell; lighting bright celebratory glints; background little resolved-comment flags.
Share on X: post this hatch
Copy: My PR egg hatched a ✨ glimmer Velvet Test Hopper in ClawSweeper.

What is this egg doing here?

• Eggs appear after the PR passes real-behavior proof. It is here for vibes, not verdicts: it does not change labels, ratings, merge decisions, or automation.
• The shell reacts to review momentum: open follow-up work warms it up, re-review makes it wobble, and a clean final review lets it hatch.
• Hatchability usually comes from sufficient real-behavior proof, no blocking P0/P1/P2 findings, no security attention needed, and clean correctness. A merged PR is already final, so merge makes the egg hatchable independently.
• The hatch is seeded from this repository and PR number, so the same PR keeps the same creature; the reviewed head SHA can only change safe visual details.
• Rarity is just collectible sparkle: 🥚 common, 🌱 uncommon, 💎 rare, ✨ glimmer, and 🌈 legendary.

[Takhoffman]

@clawsweeper hatch

[clawsweeper]

🦞👀
ClawSweeper PR egg hatch requested.

I queued a comment sync for this PR. If the egg is hatchable, ClawSweeper will generate the image once and update the existing review comment.
Action: PR egg hatch queued (workflow sweep.yml, event repository_dispatch).
The ASCII egg stays as the fallback.