chore: fix/digitalocean canonical env var by louisgv · Pull Request #3068 · OpenRouterTeam/spawn

louisgv · 2026-03-27T17:10:37Z

Summary

Renames the canonical DigitalOcean auth env var from DO_API_TOKEN to DIGITALOCEAN_ACCESS_TOKEN across the codebase (manifest, CLI, scripts, tests, docs, Packer config).
Adds backward-compatible alias support via AUTH_VAR_ALIASES in shared.ts — legacy names DIGITALOCEAN_API_TOKEN and DO_API_TOKEN continue to work, with clear precedence: DIGITALOCEAN_ACCESS_TOKEN > DIGITALOCEAN_API_TOKEN > DO_API_TOKEN.
DIGITALOCEAN_ACCESS_TOKEN is the default env var used by doctl (the official DigitalOcean CLI).
DIGITALOCEAN_API_TOKEN is the default env var used by the DigitalOcean MCP server.
Both are accepted as aliases so users of either tool can use spawn without reconfiguring their environment.

Changes

manifest.json: auth field updated to DIGITALOCEAN_ACCESS_TOKEN
packages/cli/src/commands/shared.ts: New AUTH_VAR_ALIASES map and isAuthEnvVarSet() helper; updated formatAuthVarLine, hasCloudCredentials, formatCredStatusLine, collectMissingCredentials to check aliases
packages/cli/src/digitalocean/digitalocean.ts: ensureDoToken() checks all three env var names in precedence order
sh/digitalocean/README.md, sh/e2e/lib/clouds/digitalocean.sh, packer/digitalocean.pkr.hcl: Updated references
Tests updated across 5 test files to match new canonical name

Test plan

bun test — 1954/1955 pass (1 pre-existing macOS-specific failure unrelated to this PR)
Verify DIGITALOCEAN_ACCESS_TOKEN=<token> spawn ... digitalocean works
Verify legacy DO_API_TOKEN=<token> spawn ... digitalocean still works (alias)
Verify credential status display shows DIGITALOCEAN_ACCESS_TOKEN

- Changed all instances of `DO_API_TOKEN` to `DIGITALOCEAN_ACCESS_TOKEN` in the codebase for consistency and clarity. - Updated documentation and README files to reflect the new environment variable name. - Ensured backward compatibility by accepting `DO_API_TOKEN` and `DIGITALOCEAN_API_TOKEN` as aliases for `DIGITALOCEAN_ACCESS_TOKEN`. - Adjusted tests to use the new variable name and verify legacy aliases. This change improves clarity in the authentication process for DigitalOcean and aligns with best practices for environment variable naming.

Resolve conflict in script-failure-guidance test: keep DIGITALOCEAN_ACCESS_TOKEN (canonical env var) with stripped_ wrapper. Made-with: Cursor

louisgv · 2026-03-27T17:23:43Z

Security Review

Verdict: APPROVED ✅
Commit: 077871a

Findings

No security issues found
Token aliasing mechanism properly implemented with secure fallback chain
Shell script uses secure token handling (temp file with chmod 600, not command line)
All token variants properly redacted in logs
GitHub Actions workflow correctly maps secrets
No command injection or credential leak vectors

Tests

bash -n: PASS
bun test: PASS (1955 tests)

Recommendation

READY TO MERGE - All security checks pass. This PR safely implements DigitalOcean environment variable migration with proper backward compatibility.

-- security/pr-reviewer

louisgv · 2026-03-27T17:50:55Z

Security Review

Verdict: APPROVED
Commit: 077871a

Findings

No security issues found
Changes rename DO_API_TOKEN to canonical DIGITALOCEAN_ACCESS_TOKEN with backwards compatibility
All env var lookups properly prioritize canonical name and fall back to legacy aliases
Token handling maintains secure patterns (no command-line exposure, config file storage)
Test coverage updated to include all accepted env var names

Tests

No bash files modified (N/A for bash -n)
TypeScript changes are refactoring only (env var name changes)
All existing test suites should pass with updated test cases

Compatibility

Maintains backwards compatibility via AUTH_VAR_ALIASES mapping
Accepts DIGITALOCEAN_ACCESS_TOKEN, DIGITALOCEAN_API_TOKEN, or DO_API_TOKEN
Documentation updated consistently across README, workflow files, and per-cloud docs

Note: Cannot formally approve as this appears to be my own PR. Manual merge by maintainer required.

-- security/pr-reviewer

louisgv · 2026-03-27T18:25:01Z

Security Review

Verdict: APPROVED
Commit: 077871a

Findings

✅ No security issues found

Positive Security Aspects

Proper credential handling with safe env var fallback patterns (canonical > alternate > legacy)
No command injection risks — all shell scripts properly quote variables
GitHub Actions secrets properly referenced via ${{ secrets.DO_API_TOKEN }} (not interpolated)
Comprehensive test coverage for all three aliases (DIGITALOCEAN_ACCESS_TOKEN, DIGITALOCEAN_API_TOKEN, DO_API_TOKEN)
Backward compatibility maintained — existing users with DO_API_TOKEN will continue working

Tests

bash -n: PASS (all modified shell scripts)
bun test: PASS (2016 tests, 0 failures)
curl|bash: OK (proper quoting, no interpolation risks)
macOS compat: OK (no bash 3.x incompatibilities introduced)

Technical Review

Alias resolution properly prioritizes: DIGITALOCEAN_ACCESS_TOKEN > DIGITALOCEAN_API_TOKEN > DO_API_TOKEN
TypeScript uses safe nullish coalescing (??) for env var access
isAuthEnvVarSet helper correctly checks canonical name first, then aliases
GitHub Actions workflow maintains legacy secret name for smooth transition

Recommendation: Safe to merge. This PR improves naming consistency while maintaining full backward compatibility.

-- security/pr-reviewer

louisgv · 2026-03-27T19:22:20Z

Security Review

Verdict: APPROVED (cannot formally approve own PR, posting as comment)
Commit: 077871a

Findings

No security issues found.

This PR safely refactors the DigitalOcean environment variable name from DO_API_TOKEN to the canonical DIGITALOCEAN_ACCESS_TOKEN while maintaining full backward compatibility via aliases.

Security highlights:

✅ Proper credential handling in shell scripts (temp files with chmod 600)
✅ No command injection vectors (all variable expansions are quoted/safe)
✅ Safe environment variable fallback chain using nullish coalescing
✅ No credential leaks in logs or error messages
✅ macOS bash 3.x compatible
✅ Follows project conventions for curl|bash safety

Code quality:

All three env var names (DIGITALOCEAN_ACCESS_TOKEN, DIGITALOCEAN_API_TOKEN, DO_API_TOKEN) are checked in order of preference
Tests updated to cover all variants
Documentation consistently updated across all files
Clean lint (0 errors)

Tests

bash -n: PASS
bun test: N/A (test environment issue in worktree, not related to PR changes)
curl|bash: OK (proper temp file credential handling)
macOS compat: OK (uses safe variable expansion patterns)

Recommendation: This PR is safe to merge immediately. The refactoring follows best practices and maintains full backward compatibility.

-- security/pr-reviewer-3068

louisgv · 2026-03-27T20:21:10Z

Security Review

Verdict: APPROVED ✅
Commit: 077871a

Summary

This PR standardizes the DigitalOcean credential environment variable from DO_API_TOKEN to DIGITALOCEAN_ACCESS_TOKEN with full backward compatibility via aliases. The change improves consistency with the official DigitalOcean naming convention.

Security Analysis

✅ No security vulnerabilities found

Changes reviewed:

Credential handling: Token precedence properly implemented (canonical > alternate > legacy)
Backward compatibility: Legacy DO_API_TOKEN and DIGITALOCEAN_API_TOKEN still accepted
Shell scripts: Proper ${VAR:-} patterns maintained for macOS bash 3.x compatibility
No injection risks: All token reads are direct env var access with no interpolation into commands
Token validation: Existing testDoToken() validation preserved

Positive security aspects:

Tokens trimmed before use (prevents whitespace issues)
No logging or exposure of credential values
Validation occurs before token storage
Shell scripts use defense-in-depth (base64 encoding for SSH exec, input validation)

Tests

bash -n: ✅ PASS (shell script syntax valid)
bun test: ✅ PASS (1955 tests, 0 failures)
curl|bash safety: ✅ OK (no changes to remote script execution patterns)
macOS compat: ✅ OK (shell scripts remain bash 3.x compatible)

Recommendation

APPROVED — Safe to merge. The refactoring improves naming consistency without introducing security issues.

Note: Cannot approve via GitHub review API (same author as reviewer), but security review is complete and clean.

-- security/pr-reviewer

louisgv · 2026-03-27T21:16:32Z

Security Review

Verdict: APPROVED (self-authored PR - cannot formally approve)
Commit: 077871a

Summary

This PR standardizes DigitalOcean environment variable naming from DO_API_TOKEN to DIGITALOCEAN_ACCESS_TOKEN while maintaining backward compatibility with legacy variable names.

Security Analysis

Token Handling ✓ SAFE

Proper env var priority: DIGITALOCEAN_ACCESS_TOKEN > DIGITALOCEAN_API_TOKEN > DO_API_TOKEN
Uses safe ${VAR:-} pattern for optional env var checks (bash 3.x compatible)
Token passed via curl config file (not command-line) to avoid ps exposure
All three variants properly cleaned up in test beforeEach/afterEach

Command Injection ✓ SAFE

GitHub Actions: Token properly quoted in Authorization headers
Shell scripts: Use ${DIGITALOCEAN_ACCESS_TOKEN:-} with nounset-safe syntax
No unquoted variable expansion in curl commands

Credential Leaks ✓ SAFE

No token values logged (only generic messages like "Using DigitalOcean API token from environment")
Interactive harness properly redacts all three token variants

curl|bash Safety ✓ SAFE

No changes to curl|bash patterns
No use of relative paths, $0, or dirname
All scripts remain curl|bash compatible

macOS bash 3.x Compatibility ✓ SAFE

Uses ${VAR:-} pattern (not set -u)
No echo -e or other bash 4.x features

Tests

bash -n: PASS (all 9 DigitalOcean scripts + E2E lib)
bun test: PASS (1955 tests, 0 failures)
curl|bash: OK (no violations)
macOS compat: OK (uses bash 3.x safe patterns)

Changes Reviewed

TypeScript: digitalocean.ts, shared.ts, interactive-harness.ts
Shell: sh/e2e/lib/clouds/digitalocean.sh
GitHub Actions: .github/workflows/packer-snapshots.yml
Packer: packer/digitalocean.pkr.hcl
Tests: 5 test files updated with proper env var cleanup
Docs: README and digitalocean/README.md updated

Findings

No security issues found.

Recommendation: Safe to merge.

-- security/pr-reviewer

louisgv · 2026-03-27T21:16:54Z

PR needs to be updated with latest main before merging. Running update...

louisgv · 2026-03-27T21:48:18Z

Security Review

Verdict: APPROVED (cannot approve own PR — manual merge required)
Commit: 077871a

Findings

✅ No security issues found

Analysis

Token handling: Secure cascade through canonical → alternate → legacy names with validation at each step
Alias mapping: Safe implementation in isAuthEnvVarSet() with proper precedence
Shell scripts: Correct token resolution with proper quoting, no command injection risk
GitHub Actions: Secrets correctly mapped to new env var names without breaking CI
Credential exposure: All three token variants properly redacted in E2E harness
Test coverage: Comprehensive tests for all token variants added

Tests

bash -n: PASS (all .sh files)
bun test: PASS (1955 tests, 0 failures)
Backward compatibility: PASS (legacy DO_API_TOKEN and DIGITALOCEAN_API_TOKEN still work)

Recommendation

This PR is safe to merge. It's a refactoring that standardizes naming while maintaining backward compatibility with no security regressions.

-- security/pr-reviewer

louisgv · 2026-03-27T22:47:50Z

Security Review

Verdict: APPROVED (cannot formally approve own PR, but security review is clean)
Commit: 077871a

Findings

No security issues found. This PR performs a clean refactor to standardize the DigitalOcean environment variable naming:

Changes DO_API_TOKEN → DIGITALOCEAN_ACCESS_TOKEN across all files
Implements backward compatibility via alias system in AUTH_VAR_ALIASES
Accepts DIGITALOCEAN_ACCESS_TOKEN, DIGITALOCEAN_API_TOKEN, or DO_API_TOKEN (in priority order)
All credential handling uses existing secure patterns (temp curl config files, base64 encoding for SSH commands)
No command injection vectors introduced
No credential leaks in logs or error messages

Tests

bash -n: PASS (shell script syntax valid)
bun test: PASS (6 tests in do-payment-warning, 134 tests across credential-related test files)
curl|bash compatibility: OK (no relative paths, no source <(cmd) issues)
macOS bash 3.x compat: OK (no forbidden patterns detected)

Security Analysis

Credential handling: Token resolution priority correctly implemented (canonical > alternate > legacy)
Shell injection protection: Existing defenses remain intact (base64 encoding, input validation)
API token exposure: Tokens passed via curl config files (not command line), logged errors use generic messages
Backward compatibility: Legacy DO_API_TOKEN still accepted via alias system - no breaking changes for existing users

Recommendation: Safe to merge. This is a low-risk refactor that improves naming consistency while maintaining backward compatibility.

-- security/pr-reviewer

louisgv · 2026-03-27T23:45:56Z

Security Review

Verdict: APPROVED
Commit: 077871a

Summary

This PR standardizes DigitalOcean environment variable naming from DO_API_TOKEN to DIGITALOCEAN_ACCESS_TOKEN throughout the codebase while maintaining backward compatibility with legacy aliases.

Findings

No security issues found. All changes are low-risk refactoring:

Env var renaming with alias support (secure fallback chain)
Documentation updates
Test coverage additions for alias detection
Shell script token resolution (secure, uses temp files for curl auth)

Security Analysis

✅ Command injection: No new injection vectors. Shell script token resolution at lines 13-18 uses safe bash variable assignment
✅ Credential leaks: Token handling unchanged. Existing _do_curl_auth mechanism continues to use temp config files (lines 34-43)
✅ Path traversal: N/A - no file path operations modified
✅ Auth downgrade: Secure priority chain: DIGITALOCEAN_ACCESS_TOKEN > DIGITALOCEAN_API_TOKEN > DO_API_TOKEN (lines 733-734)
✅ Validation: IP validation at lines 177-179 prevents injection; droplet ID validation at line 232 prevents numeric injection

Tests

bash -n: PASS ✓
bun test: PASS (1955 tests, 0 failures) ✓
curl|bash safety: OK (no changes to remote script execution)
macOS compat: OK (no bash 3.x incompatibilities introduced)

Code Quality

Proper alias resolution via isAuthEnvVarSet() helper (lines 501-507)
Comprehensive test coverage for all three env var variants
Clear migration path documented in README

Recommendation: Safe to merge. This is a self-authored PR so I cannot formally approve it via GitHub's review system, but the security review is complete and no issues were found.

-- security/pr-reviewer

louisgv · 2026-03-28T00:34:37Z

Security Review

Verdict: APPROVED
Commit: 077871a

Findings

No security issues identified. All changes are safe.

Key Security Aspects Reviewed

✅ Environment variable aliasing (no injection risk)
✅ Token resolution with precedence (canonical > alternate > legacy)
✅ Token sanitization (.trim() applied, validation before use)
✅ Shell script token handling (safe ${VAR:-} pattern)
✅ curl security (token via temp config file with chmod 600, not command line)
✅ SSH command injection protection (base64 encoding + validation)
✅ API input validation (droplet IDs, timestamps, IP addresses)
✅ HTTP timeouts prevent hangs
✅ curl|bash compatibility (no relative paths, macOS bash 3.x safe)

Tests

bash -n: PASS
bun test: PASS (1955/1955)
Backward compatibility: Fully tested for all three token names

Recommendation: Safe to merge. No security concerns.

-- security/pr-reviewer

louisgv · 2026-03-28T01:45:12Z

Security Review

Verdict: APPROVED (cannot formally approve as author is louisgv)
Commit: 077871a

Findings

No security issues found. This PR standardizes DigitalOcean credential env var handling:

Adds DIGITALOCEAN_ACCESS_TOKEN as the canonical env var (replaces DO_API_TOKEN)
Maintains backward compatibility via alias support (DIGITALOCEAN_API_TOKEN, DO_API_TOKEN)
Implements proper token prioritization (canonical > alternate > legacy)
No credential leaks, command injection, or path traversal risks

Changes Reviewed

TypeScript: Token resolution with proper fallback chain, alias support in credential checks
Shell scripts: Token normalization using safe conditionals (${VAR:-}), no eval/source risks
GitHub workflow: Proper secret interpolation via jq --arg, no injection vectors
Packer: Variable rename only, no security implications

Tests

bash -n: PASS (10 shell scripts)
bun test: PASS (2016 tests, 0 failures)
Credential security: OK (tokens passed via env vars, not command-line args)
macOS compat: OK (uses ${VAR:-} pattern, no bash 4+ features)

Recommendation

APPROVED FOR MERGE - No security concerns. This is a clean refactor that improves consistency.

-- security/pr-reviewer

louisgv · 2026-03-28T02:09:21Z

Security Review

Verdict: APPROVED
Commit: 077871a

Findings

No security issues identified. This is a clean refactoring that:

Renames DO_API_TOKEN to the canonical DIGITALOCEAN_ACCESS_TOKEN
Maintains backwards compatibility with DIGITALOCEAN_API_TOKEN and legacy DO_API_TOKEN
Updates all documentation, tests, and code consistently
No injection risks, credential leaks, or unsafe patterns introduced

Tests

bash -n: PASS (all .sh files)
bun test: PASS (1955 tests, 0 failures)
curl|bash: OK (no curl|bash patterns modified)
macOS compat: OK (no bash version-specific features introduced)

Ready to merge. ✅

-- security/pr-reviewer

louisgv · 2026-03-28T03:07:21Z

Security Review

Verdict: APPROVED
Commit: 077871a

Summary

This PR standardizes the DigitalOcean environment variable to DIGITALOCEAN_ACCESS_TOKEN while maintaining backwards compatibility with DIGITALOCEAN_API_TOKEN and DO_API_TOKEN (legacy).

Findings

No security issues found. The changes:

Properly handle credential aliases with well-defined priority (canonical > alternate > legacy)
Maintain secure credential handling (curl config files, process list redaction)
Include comprehensive test coverage for all three variants
Update documentation consistently across the codebase

Tests

bash -n: PASS (all shell scripts)
bun test: PASS (2016 tests, 0 failures)
curl|bash: OK (no changes to curl|bash patterns)
macOS compat: OK (proper ${VAR:-} syntax, no bash 4.x constructs)

-- security/pr-reviewer

louisgv · 2026-03-28T04:21:20Z

Security Review

Verdict: APPROVED
Commit: 077871a

Summary

This PR standardizes DigitalOcean environment variable names from DO_API_TOKEN to DIGITALOCEAN_ACCESS_TOKEN while maintaining full backward compatibility with legacy env var names.

Security Findings

No security issues identified.

Detailed Analysis

✅ Credential Handling (SECURE)

Shell scripts use curl config files to keep tokens out of ps output (sh/e2e/lib/clouds/digitalocean.sh:34-43)
Token redaction updated in E2E harness for all three aliases
No token leaks in logs or error messages

✅ Input Validation (SECURE)

All env var access uses safe ${VAR:-} pattern
Token values are trimmed before use (digitalocean.ts:741)
Validation via API test before acceptance (digitalocean.ts:742)

✅ Backward Compatibility (VERIFIED)

Priority order: DIGITALOCEAN_ACCESS_TOKEN > DIGITALOCEAN_API_TOKEN > DO_API_TOKEN
Legacy DO_API_TOKEN continues to work (no breaking changes)
Alias resolution centralized in isAuthEnvVarSet() helper (commands/shared.ts:501-507)

✅ Command Injection Prevention (SECURE)

No eval, source, or shell interpolation of user-controlled data
Shell token resolution uses simple conditional checks (sh/e2e/lib/clouds/digitalocean.sh:13-18)
No unsafe string concatenation

Tests

bash -n: PASS (sh/e2e/lib/clouds/digitalocean.sh syntax verified)
bun test: PASS (1955 tests, 0 failures)
Coverage: All three env var aliases tested
Payment warning logic: Tested with each env var variant

Recommendation

APPROVED FOR MERGE. This is a clean refactoring with no security concerns. The backward compatibility ensures a smooth transition for existing users.

Note: Cannot submit formal approval review as the PR author cannot approve their own PR. Added security-approved label instead.

-- security/pr-reviewer

louisgv · 2026-03-28T05:09:25Z

Security Review

Verdict: APPROVED (no security issues found)
Commit: 077871a

Summary

This PR standardizes DigitalOcean environment variable naming from the legacy DO_API_TOKEN to the canonical DIGITALOCEAN_ACCESS_TOKEN, while maintaining backwards compatibility through alias resolution.

Findings

No security issues identified

Changes reviewed:

✅ digitalocean.ts — Safe token resolution with canonical > alternate > legacy fallback
✅ commands/shared.ts — Type-safe alias lookup with static configuration
✅ digitalocean.sh — macOS bash 3.x compatible token resolution with proper quoting
✅ Test coverage — All 3 env var aliases properly tested

Security Analysis

Token Handling:

No injection vectors — direct property access on process.env
No credential leakage — logs show var names only, never token values
Proper validation — tokens tested via API before use
Safe error handling — invalid tokens logged and cleared

Shell Script Safety:

macOS bash 3.x compatible — uses basic if/elif syntax
No command injection — direct variable assignment, no eval/subshells
Proper quoting — all variable references quoted
Safe expansion — uses ${VAR:-} pattern throughout

Alias Resolution:

Statically defined — AUTH_VAR_ALIASES is not user-controlled
Type-safe — proper boolean coercion with !!
Predictable fallback order — canonical > alternate > legacy

Tests

✅ bash -n — All shell scripts pass syntax validation
✅ bun test — 1955 tests pass, 0 failures
✅ curl|bash — Token resolution works in piped execution context
✅ macOS compat — No bash 4.x features, safe for macOS default bash 3.2

Unrelated Changes

Files sh/e2e/lib/verify.sh and sh/shared/github-auth.sh contain changes from PR #3073 (already security-reviewed and merged). No new security concerns.

Recommendation: Ready to merge

-- security/pr-reviewer

louisgv · 2026-03-28T05:51:48Z

Security Review

Verdict: APPROVED (self-authored PR - cannot formally approve)
Commit: 077871a

Findings

No security issues found. This PR safely refactors environment variable naming for DigitalOcean credentials:

Changes from DO_API_TOKEN to canonical DIGITALOCEAN_ACCESS_TOKEN
Implements backward compatibility via alias system in isAuthEnvVarSet()
All legacy env var names (DO_API_TOKEN, DIGITALOCEAN_API_TOKEN) continue to work
No credential leaks or command injection risks introduced
Shell script properly uses ${VAR:-} for optional variable checks (bash 3.x compatible)
GitHub Actions secrets correctly mapped
Token handling via temp config file maintains secure credential passing

Tests

bash -n: PASS (sh/e2e/lib/clouds/digitalocean.sh)
bun test: PASS (86 tests across 3 files)
biome lint: PASS (170 files, 0 errors)
curl|bash safety: OK (remote URL references unchanged)
macOS compat: OK (uses ${VAR:-} pattern, no bash 4.x features)

Changes Summary

TypeScript: Added alias system for backward-compatible env var handling
Shell scripts: Canonicalized variable names with fallback resolution
Tests: Expanded coverage for all three accepted env var names
Documentation: Updated all references to use canonical name
GitHub Actions: Variable names updated with proper secret mapping

Recommendation: Ready to merge. All security checks pass.

-- security/pr-reviewer

louisgv · 2026-03-28T06:27:55Z

Security Review

Verdict: APPROVED
Commit: 077871a

Summary

This PR standardizes DigitalOcean environment variable naming from DO_API_TOKEN to the canonical DIGITALOCEAN_ACCESS_TOKEN, while maintaining backward compatibility with legacy names (DIGITALOCEAN_API_TOKEN, DO_API_TOKEN).

Findings

NONE — No security vulnerabilities found.

Changes Reviewed

Environment variable aliasing (packages/cli/src/commands/shared.ts):
- Added AUTH_VAR_ALIASES mapping for backward compatibility
- New isAuthEnvVarSet() function checks canonical + legacy names
- All credential checks updated to use the new function
- ✅ Properly implemented, no injection risks
DigitalOcean token resolution (packages/cli/src/digitalocean/digitalocean.ts):
- Priority order: DIGITALOCEAN_ACCESS_TOKEN > DIGITALOCEAN_API_TOKEN > DO_API_TOKEN
- Preserves existing token validation and OAuth fallback logic
- ✅ Secure token handling maintained
E2E test harness (sh/e2e/interactive-harness.ts):
- Updated credential hint building to check all three env vars
- Added all variants to secret redaction list
- ✅ Proper secret handling
E2E cloud driver (sh/e2e/lib/clouds/digitalocean.sh):
- Resolves token from canonical > alternate > legacy at script start
- Uses _do_curl_auth wrapper with temp config file (keeps token out of ps)
- ✅ Secure credential passing
GitHub Actions (.github/workflows/packer-snapshots.yml):
- Updated variable names consistently
- Note: Secret is still secrets.DO_API_TOKEN (GitHub Actions secret name unchanged)
- ✅ Proper secret injection
Packer config (packer/digitalocean.pkr.hcl):
- Renamed variable to digitalocean_access_token (marked sensitive = true)
- ✅ Secure credential handling
Tests: All updated to cover new env var names and backward compatibility
Documentation: README and sh/digitalocean/README.md updated

Tests

bash -n: PASS (all .sh files)
bun test: PASS (1955 tests, 0 failures)
biome lint: PASS (0 errors)
curl|bash compatibility: OK (no relative paths, no bash 3.x issues)
macOS compat: OK (no echo -e, no source <(cmd) issues)

Security Assessment

✅ No command injection — All token passing uses temp config files or proper env vars
✅ No credential leaks — Tokens properly redacted in logs, kept out of ps output
✅ No path traversal — No file path construction from user input
✅ No unsafe eval — No dynamic code execution
✅ Backward compatibility — Legacy env vars still work (no breaking change)

-- security/pr-reviewer

la14-1 · 2026-03-29T16:57:43Z

This PR is approved but cannot be merged because the head branch is not up to date with main, and the branch lives on a fork (digitalocean/spawn) where we don't have push access.

@scottmiller (or any fork maintainer): please rebase onto origin/main and push to resolve the merge conflict in packages/cli/src/__tests__/script-failure-guidance.test.ts. The conflict is minor — the stripped_getScriptFailureGuidance wrapper function was introduced on main and just needs to replace the direct getScriptFailureGuidance call.

Once rebased and CI passes, this can be squash-merged immediately.

-- refactor/pr-maintainer

Replaces all references to DO_API_TOKEN with DIGITALOCEAN_ACCESS_TOKEN, matching DigitalOcean's official CLI and API documentation. This includes TypeScript source, tests, shell scripts, Packer config, CI workflows, and documentation. Supersedes #3068 (rebased onto current main). Agent: pr-maintainer Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>

la14-1 · 2026-03-29T18:50:40Z

This PR was approved but could not be merged due to being out of date with main, and the fork branch couldn't be updated remotely. Created #3099 with the same changes rebased onto current main.

-- refactor/pr-maintainer

…3099) Replaces all references to DO_API_TOKEN with DIGITALOCEAN_ACCESS_TOKEN, matching DigitalOcean's official CLI and API documentation. This includes TypeScript source, tests, shell scripts, Packer config, CI workflows, and documentation. Supersedes #3068 (rebased onto current main). Agent: pr-maintainer Co-authored-by: B <6723574+louisgv@users.noreply.github.com> Co-authored-by: Claude Sonnet 4.5 <noreply@anthropic.com>

…ts (#3096) * fix(ci): remove stale paths from biome check step in lint.yml biome.json restricts linting to packages/**/*.ts via its includes filter, so passing .claude/scripts/ and .claude/skills/setup-spa/ to the biome check command was a no-op — biome reported 0 files processed for those paths and silently skipped them. Remove the stale paths so the CI step accurately reflects what biome actually checks. * feat: add OpenRouter proxy for Cursor CLI agent (#3100) Cursor CLI uses a proprietary ConnectRPC/protobuf protocol with BiDi streaming over HTTP/2. It validates API keys against Cursor's own servers and hardcodes api2.cursor.sh for agent streaming — making direct OpenRouter integration impossible. This adds a local translation proxy that intercepts Cursor's protocol and routes LLM traffic through OpenRouter: Architecture: Cursor CLI → Caddy (HTTPS/H2, port 443) → split routing: /agent.v1.AgentService/* → H2C Node.js (BiDi streaming → OpenRouter) everything else → HTTP/1.1 Node.js (fake auth, models, config) Key components: - cursor-proxy.ts: proxy scripts + deployment functions - Caddy reverse proxy for TLS + HTTP/2 termination - /etc/hosts spoofing to intercept api2.cursor.sh - Hand-rolled protobuf codec for AgentServerMessage format - SSE stream translation (OpenRouter → ConnectRPC protobuf frames) Proto schemas reverse-engineered from Cursor CLI binary v2026.03.25: - AgentServerMessage.InteractionUpdate.TextDeltaUpdate.text - agent.v1.ModelDetails (model_id, display_model_id, display_name) - TurnEndedUpdate (input_tokens, output_tokens) Tested end-to-end on Sprite VM: Cursor CLI printed proxy response with EXIT=0. Co-authored-by: Ahmed Abushagur <ahmed@abushagur.com> Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(digitalocean): use canonical DIGITALOCEAN_ACCESS_TOKEN env var (#3099) Replaces all references to DO_API_TOKEN with DIGITALOCEAN_ACCESS_TOKEN, matching DigitalOcean's official CLI and API documentation. This includes TypeScript source, tests, shell scripts, Packer config, CI workflows, and documentation. Supersedes #3068 (rebased onto current main). Agent: pr-maintainer Co-authored-by: B <6723574+louisgv@users.noreply.github.com> Co-authored-by: Claude Sonnet 4.5 <noreply@anthropic.com> * fix: remove --trust flag from Cursor CLI launch command (#3101) Cursor CLI v2026.03.25 only allows --trust in headless/print mode. Launching interactively with --trust causes immediate exit with error. Co-authored-by: spawn-bot <spawn-bot@openrouter.ai> Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com> Co-authored-by: Ahmed Abushagur <ahmed@abushagur.com> * fix(cursor): set CURSOR_API_KEY to skip browser login (#3104) Cursor CLI requires authentication before making API calls. Without CURSOR_API_KEY set, it falls back to browser-based OAuth which fails because the proxy spoofs api2.cursor.sh to localhost, breaking the OAuth callback. Setting a dummy CURSOR_API_KEY makes Cursor use the /auth/exchange_user_api_key endpoint instead, which the proxy already handles with a fake JWT. Co-authored-by: spawn-bot <spawn-bot@openrouter.ai> Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * docs: sync README with source of truth (#3097) - update tagline: 8 agents/48 combos -> 9 agents/54 combos - add Cursor CLI row to matrix table manifest.json has 9 agents (cursor was added but README matrix was not updated) and 54 implemented entries. Co-authored-by: spawn-qa-bot <qa@openrouter.ai> Co-authored-by: Ahmed Abushagur <ahmed@abushagur.com> * fix(cursor): update proxy model list to current models (#3105) Replace outdated models (Claude Sonnet 4, GPT-4o) with current ones: - Claude Sonnet 4.6 (default), Claude Haiku 4.5 - GPT-4.1 - Gemini 2.5 Pro, Gemini 2.5 Flash Co-authored-by: spawn-bot <spawn-bot@openrouter.ai> Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * feat(status): add agent alive probe via SSH (#3109) `spawn status` now probes running servers by SSHing in and running `{agent} --version` to verify the agent binary is installed and executable. Results show in a new "Probe" column (live/down/—) and as `agent_alive` in JSON output. Only "running" servers are probed; gone/stopped/unknown servers are skipped. The probe function is injectable via opts for testability. Co-authored-by: spawn-bot <spawn-bot@openrouter.ai> Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix: add cursor to agent lists in spawn skill files (#3108) cursor is a fully implemented agent across all 6 clouds but was missing from the available agents list in spawn skill instructions injected onto child VMs. This caused claude, codex, hermes, junie, kilocode, openclaw, opencode, and zeroclaw to be unaware they could delegate work to cursor. Signed-off-by: Ahmed Abushagur <ahmed@abushagur.com> Co-authored-by: spawn-qa-bot <qa@openrouter.ai> Co-authored-by: Claude Sonnet 4.6 <noreply@anthropic.com> Co-authored-by: Ahmed Abushagur <ahmed@abushagur.com> * fix(security): expand $HOME before path validation in downloadFile (#3080) Fixes #3080 Prevents path traversal via other $VAR expansions by normalizing $HOME to ~ before the strict path regex check, removing the need to allow $ in the charset. Applied to all 5 cloud providers: - digitalocean: downloadFile - aws: downloadFile - sprite: downloadFileSprite - gcp: uploadFile + downloadFile - hetzner: downloadFile Also bumps CLI version to 0.27.7. Agent: security-auditor Co-authored-by: B <6723574+louisgv@users.noreply.github.com> Co-authored-by: Claude Sonnet 4.6 <noreply@anthropic.com> * fix(manifest): correct cursor repo to cursor/cursor and update star counts (#3092) The cursor agent's repo was set to anysphere/cursor (private, returns 404), which caused the stars-update script to store the raw 404 error object as github_stars instead of a number — breaking the manifest-type-contracts test. Fix: update repo to the public cursor/cursor repo (32,526 stars as of 2026-03-29). Also applies the daily star count updates for all other agents. -- qa/e2e-tester Co-authored-by: spawn-qa-bot <qa@openrouter.ai> * fix(spawn-fix): load API keys via config file, not just process.env (#3095) Previously buildFixScript() resolved env templates directly from process.env, silently writing empty values when the user authenticated via OAuth (key stored in ~/.config/spawn/openrouter.json). Now fixSpawn() loads the saved key before building the script, matching orchestrate.ts. Fixes #3094 Agent: code-health Co-authored-by: B <6723574+louisgv@users.noreply.github.com> Co-authored-by: Claude Sonnet 4.6 <noreply@anthropic.com> * docs: sync README commands table with help.ts (--prompt, --prompt-file) (#3106) Co-authored-by: spawn-qa-bot <qa@openrouter.ai> * fix(e2e): reduce Hetzner batch parallelism from 3 to 2 (#3112) Prevents server_limit_reached errors when pre-existing servers (e.g. spawn-szil) consume quota during E2E batch 1. Fixes #3111 Agent: test-engineer Co-authored-by: B <6723574+louisgv@users.noreply.github.com> Co-authored-by: Claude Sonnet 4.5 <noreply@anthropic.com> * refactor(e2e): normalize unused-arg comments in headless_env functions (#3113) GCP, Sprite, and DigitalOcean had commented-out code `# local agent="$2"` in their `_headless_env` functions. Hetzner already used the cleaner style `# $2 = agent (unused but part of the interface)`. Normalize to match. Co-authored-by: spawn-qa-bot <qa@openrouter.ai> Co-authored-by: Claude Sonnet 4.6 <noreply@anthropic.com> * test: Remove duplicate and theatrical tests (#3089) * test: remove duplicate and theatrical tests - update-check.test.ts: fix 3 tests using stale hardcoded version '0.2.3' (older than current 0.29.1) to use `pkg.version` so 'should not update when up to date' actually tests the current-version path correctly - run-path-credential-display.test.ts: strengthen weak `toBeDefined()` assertion on digitalocean hint to `toContain('Simple cloud hosting')`, making it verify the actual fallback hint content Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> * test: replace theatrical no-assert tests with real assertions in recursive-spawn Two tests in recursive-spawn.test.ts captured console.log output into a logs array but never asserted against it. Both ended with a comment like "should not throw" — meaning they only proved the function didn't crash, not that it produced the right output. - "shows empty message when no history": now spies on p.log.info and asserts cmdTree() emits "No spawn history found." - "shows flat message when no parent-child relationships": now asserts cmdTree() emits "no parent-child relationships" via p.log.info. expect() call count: 4831 to 4834 (+3 real assertions added). Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> * test: consolidate redundant describe block in cmd-fix-cov.test.ts The file had two separate describe blocks with identical beforeEach/afterEach boilerplate. The second block ("fixSpawn connection edge cases") contained only one test ("shows success when fix script succeeds") and could be merged directly into the first block ("fixSpawn (additional coverage)") without any loss of coverage or setup fidelity. Removes 23 lines of duplicated boilerplate. Test count unchanged (6 tests). --------- Co-authored-by: spawn-qa-bot <qa@openrouter.ai> Co-authored-by: Claude Sonnet 4.6 <noreply@anthropic.com> * fix(config): extend biome.json includes to cover .claude/**/*.ts Add .claude/**/*.ts to biome.json includes so TypeScript files in .claude/scripts/ and .claude/skills/ are covered by biome formatting. Linting is disabled for .claude/** via override because the GritQL plugins (no-try-catch, no-typeof-string-number) target the main CLI codebase and cannot be scoped per-path — .claude/ hook scripts legitimately use try/catch as they run standalone outside the package. Agent: pr-maintainer Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com> * fix(prompts): stop infinite shutdown loop after TeamDelete in non-interactive mode (#3116) After TeamDelete completes in -p (non-interactive) mode, Claude Code's harness was re-injecting shutdown prompts every turn. The root cause: the Monitor Loop instructed the agent to call TaskList + Bash on EVERY iteration, including after TeamDelete, which kept the session alive so the harness could inject more shutdown prompts. Fix: add an explicit EXCEPTION to both refactor-team-prompt.md and refactor-issue-prompt.md instructing the team lead that after TeamDelete is called, the very next response MUST be plain text only with no tool calls. A text-only response is the termination signal for the non-interactive harness. Fixes #3103 Agent: issue-fixer Co-authored-by: B <6723574+louisgv@users.noreply.github.com> Co-authored-by: Claude Sonnet 4.5 <noreply@anthropic.com> * fix(zeroclaw): remove broken zeroclaw agent (repo 404) (#3107) * fix(zeroclaw): remove broken zeroclaw agent (repo 404) The zeroclaw-labs/zeroclaw GitHub repository returns 404 — all installs fail. Remove zeroclaw entirely from the matrix: agent definition, setup code, shell scripts, e2e tests, packer config, skill files, and documentation. Fixes #3102 Agent: code-health Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com> * fix(zeroclaw): remove stale zeroclaw reference from discovery.md ARM agents list Addresses security review on PR #3107 — the last remaining zeroclaw reference in .claude/rules/discovery.md is now removed. Agent: issue-fixer Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com> * fix(zeroclaw): remove remaining stale zeroclaw references from CI/packer Remove zeroclaw from: - .github/workflows/agent-tarballs.yml ARM build matrix - .github/workflows/docker.yml agent matrix - packer/digitalocean.pkr.hcl comment - sh/e2e/e2e.sh comment Addresses all 5 stale references flagged in security review of PR #3107. Agent: issue-fixer Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com> --------- Co-authored-by: B <6723574+louisgv@users.noreply.github.com> Co-authored-by: Claude Sonnet 4.5 <noreply@anthropic.com> * fix(cli): allow --headless and --dry-run to be used together (#3117) Removes the mutual-exclusion validation that blocked combining these flags. Both flags serve independent purposes: --dry-run previews what would happen, --headless suppresses interactive prompts and emits structured output. Combining them is valid for CI pipelines that want structured JSON previews. Fixes #3114 Agent: issue-fixer Co-authored-by: B <6723574+louisgv@users.noreply.github.com> Co-authored-by: Claude Sonnet 4.5 <noreply@anthropic.com> * fix(cli): allow --headless and --dry-run to be used together (#3118) * test: remove redundant theatrical assertions (#3120) Remove bare toHaveBeenCalled() checks that preceded stronger content assertions, and strengthen the "shows manual install command" test to verify the actual install script URL appears in output. Affected files: - cmd-update-cov: remove redundant consoleSpy.toHaveBeenCalled() (x2), strengthen "shows manual install command" to check install.sh content - update-check: remove redundant consoleErrorSpy.toHaveBeenCalled() (x2) that were immediately followed by .mock.calls content assertions - recursive-spawn: remove redundant logInfoSpy.toHaveBeenCalled() before content check - cmd-interactive: remove redundant mockIntro/mockOutro.toHaveBeenCalled() before content checks Co-authored-by: spawn-qa-bot <qa@openrouter.ai> Co-authored-by: Claude Sonnet 4.6 <noreply@anthropic.com> * docs: sync README tagline with manifest (9 agents/54 → 8 agents/48 combinations) (#3119) Co-authored-by: spawn-qa-bot <qa@openrouter.ai> Co-authored-by: L <6723574+louisgv@users.noreply.github.com> * docs: remove stale ZeroClaw references after agent removal (#3122) ZeroClaw was removed in #3107 (repo 404). Two doc references were left behind: - .claude/rules/agent-default-models.md: table row for ZeroClaw model config - README.md: ZeroClaw listed in --fast skip-cloud-init agent examples Agent: code-health Co-authored-by: B <6723574+louisgv@users.noreply.github.com> Co-authored-by: Claude Sonnet 4.6 <noreply@anthropic.com> * fix(e2e): redirect DO max_parallel log_warn to stderr (#3110) _digitalocean_max_parallel() called log_warn which writes colored output to stdout, polluting the captured return value when invoked via cloud_max=$(cloud_max_parallel). The downstream integer comparison [ "${effective_parallel}" -gt "${cloud_max}" ] then fails with 'integer expression expected', silently leaving the droplet limit cap unapplied. Fix: redirect log_warn output to stderr so only the numeric value is captured. Co-authored-by: spawn-qa-bot <qa@openrouter.ai> Co-authored-by: L <6723574+louisgv@users.noreply.github.com> * refactor: remove stale ZeroClaw references from docs and code comments --------- Signed-off-by: Ahmed Abushagur <ahmed@abushagur.com> Co-authored-by: spawn-qa-bot <qa@openrouter.ai> Co-authored-by: Ahmed Abushagur <ahmed@abushagur.com> Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com> Co-authored-by: B <6723574+louisgv@users.noreply.github.com> Co-authored-by: spawn-bot <spawn-bot@openrouter.ai>

scott added 2 commits March 26, 2026 20:13

Merge origin/main into fix/digitalocean-canonical-env-var

077871a

Resolve conflict in script-failure-guidance test: keep DIGITALOCEAN_ACCESS_TOKEN (canonical env var) with stripped_ wrapper. Made-with: Cursor

louisgv added the security-approved Security review approved label Mar 27, 2026

AhmedTMM approved these changes Mar 29, 2026

View reviewed changes

la14-1 mentioned this pull request Mar 29, 2026

fix(digitalocean): use canonical DIGITALOCEAN_ACCESS_TOKEN env var #3099

Merged

louisgv closed this Mar 30, 2026

Conversation

louisgv commented Mar 27, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Summary

Changes

Test plan

Uh oh!

louisgv commented Mar 27, 2026

Security Review

Findings

Tests

Recommendation

Uh oh!

louisgv commented Mar 27, 2026

Security Review

Findings

Tests

Compatibility

Uh oh!

louisgv commented Mar 27, 2026

Security Review

Findings

Positive Security Aspects

Tests

Technical Review

Uh oh!

louisgv commented Mar 27, 2026

Security Review

Findings

Tests

Uh oh!

louisgv commented Mar 27, 2026

Security Review

Summary

Security Analysis

Tests

Recommendation

Uh oh!

louisgv commented Mar 27, 2026

Security Review

Summary

Security Analysis

Tests

Changes Reviewed

Findings

Uh oh!

louisgv commented Mar 27, 2026

Uh oh!

louisgv commented Mar 27, 2026

Security Review

Findings

Analysis

Tests

Recommendation

Uh oh!

louisgv commented Mar 27, 2026

Security Review

Findings

Tests

Security Analysis

Uh oh!

louisgv commented Mar 27, 2026

Security Review

Summary

Findings

Security Analysis

Tests

Code Quality

Uh oh!

louisgv commented Mar 28, 2026

Security Review

Findings

Key Security Aspects Reviewed

Tests

Uh oh!

louisgv commented Mar 28, 2026

Security Review

Findings

Changes Reviewed

Tests

louisgv commented Mar 27, 2026 •

edited

Loading