fix(models): respect auth order in picker label

[clawsweeper]

Makes #83581 merge-ready for the ClawSweeper automerge loop.
The edit pass should inspect the live PR diff, review comments, and failing checks; rebase if needed; keep the contributor branch credited; and stop only when validation is green or an external blocker is proven.
Known failing checks:

• Failing check: Real behavior proof:FAILURE (https://github.com/openclaw/openclaw/actions/runs/26046033166/job/76570357168)

ClawSweeper 🐠 replacement reef notes:

• Cluster: automerge-openclaw-openclaw-83581
• Source PRs: fix(models): respect auth order in picker label #83581
• Credit: Source PR: fix(models): respect auth order in picker label #83581
• Validation: pnpm check:changed
• Replacement reason: ClawSweeper could not update the source PR branch directly, so it opened a writable replacement PR instead.
• Automerge requested by: @Takhoffman

• Repair fallback: GitHub rejected the repair branch push because it updates workflow files and the ClawSweeper app token does not have workflows permission

Co-author credit kept:

• @hclsys: Co-authored-by: hcl 7755017+hclsys@users.noreply.github.com

fish notes: model gpt-5.5, reasoning high; reviewed against c6d9e29.

[clawsweeper]

Thanks for the context here. I swept through the related work, and this is now duplicate or superseded.

Close as superseded because a newer open PR now owns the same /models OpenAI/Codex auth-label fix, directly links the original issue, has its own proof thread, and is already in the maintainer-requested automerge path.

Canonical path: Use #83697 as the canonical fix for #83574 and close this duplicate replacement PR to avoid two automerge branches racing.

So I’m closing this here and keeping the remaining discussion on #83697 and #83574.

Review details

Best possible solution:

Use #83697 as the canonical fix for #83574 and close this duplicate replacement PR to avoid two automerge branches racing.

Do we have a high-confidence way to reproduce the issue?

Yes, source-level. Current main still calls the picker auth-label resolver without the effective OpenAI/Codex accepted-provider set, and both open PRs target that same path.

Is this the best way to solve the issue?

No, this is no longer the best branch to carry the fix. The maintainable path is to land or close the newer canonical PR that directly references the original issue and already has proof/automerge context.

Security review:

Security review cleared: The diff is limited to auth-label display plumbing, tests, and changelog text; I found no concrete security or supply-chain regression.

What I checked:

• Canonical open PR now tracks the same fix: Live PR metadata for fix(models): label picker auth via effective provider order #83697 shows it is open, uses Fixes for [Bug]: /model picker auth label ignores auth.order resolution #83574, changes the same shared /models provider-label path, includes real formatter proof, and later received an automerge request. (src/auto-reply/reply/commands-models.ts:388, 58153c5178d0)
• Original issue closing reference points at the canonical PR: The original bug report remains open, and GitHub's closing pull request reference for it is fix(models): label picker auth via effective provider order #83697, not this replacement branch.
• This branch duplicates the same central surface: The live diff for this PR updates the same resolveProviderLabel / formatModelsAvailableHeader path and adjacent command tests, plus changelog text, so keeping it open would leave two competing branches for the same auth-label bug. (src/auto-reply/reply/commands-models.ts:388, c6d9e2970eca)
• Current main still has the unfixed shared-label call path: On current main, resolveProviderLabel calls resolveModelAuthLabel without acceptedProviderIds, confirming the remaining source-level work belongs to the canonical fix PR rather than already being implemented on main. (src/auto-reply/reply/commands-models.ts:394, 06a39015f21c)
• OpenAI/Codex auth-order provenance: Merged PR metadata shows prior OpenAI PI auth-order work added and validated the OpenAI/Codex routing and auth-label contract this fix builds on. (src/agents/openai-codex-routing.ts:125, 8267492f27d9)

Likely related people:

• steipete: Merged PR metadata shows this account authored the OpenAI PI auth-order work touching model-auth-label, openai-codex-routing, status labeling, and related tests that this picker-label fix reuses. (role: current implementation introducer and recent area contributor; confidence: high; commits: 8267492f27d9, a2b614a30b75; files: src/agents/model-auth-label.ts, src/agents/openai-codex-routing.ts, src/status/status-text.ts)
• Tak Hoffman: Git history shows recent model-picker/provider endpoint fixes by this person, and the live related threads show this account requested automerge for the replacement/canonical fix path. (role: recent model-picker contributor and automerge requester; confidence: medium; commits: ae2b1aef10c4, 67fba9c5e173; files: src/auto-reply/reply/commands-models.ts)
• Vincent Koc: Local history shows recent Telegram callback and model-picker maintenance in the affected visible channel area, useful if maintainers want a Telegram-specific follow-up review. (role: recent Telegram/model-picker adjacent contributor; confidence: medium; commits: a7ac3c666c4e, 88111453cb76, 438991b6a430; files: extensions/telegram/src/bot-handlers.runtime.ts, src/auto-reply/reply/commands-models.ts)

Codex review notes: model gpt-5.5, reasoning high; reviewed against 06a39015f21c.

[openclaw-mantis]

Mantis Telegram Desktop Proof

Summary: Mantis captured native Telegram Desktop before/after GIFs showing the /models openai auth label change.

• Scenario: telegram-desktop-proof
• Trigger: pull_request_target
• Run: https://github.com/openclaw/openclaw/actions/runs/26047082046
• Artifact: https://github.com/openclaw/openclaw/actions/runs/26047082046/artifacts/7064273525
• Baseline: pass at e4fba78d81fe8cc7b64d2d69ae729709cccd6896, expected baseline visual proof captured
• Candidate: pass at c6d9e2970ecadc1d9a8dfdae917bbc93ba877299, expected candidate visual proof captured
• Overall: true

Main screenshot	This PR screenshot

Main	This PR

Motion-trimmed clips:

• Main MP4
• This PR MP4

Raw QA files: https://artifacts.openclaw.ai/mantis/telegram-desktop/pr-83691/run-26047082046-1/index.json

[clawsweeper]

ClawSweeper applied the proposed close for this PR.

• Action: closed this PR.
• Close reason: duplicate or superseded.
• Evidence: durable ClawSweeper review.