feat(auto-fix): add code-drift repair path for verify-style failures

[khaliqgant]

Summary

Adds a parallel auto-fix path so verify-style workflows (those that produce drift reports about target source code, not about themselves) get the right kind of repair — patching the target code, not the workflow file.

Motivation

When a workflow fails because it surfaced drift between target code and a reference (provider docs, schema, etc.), the existing auto-fix dispatches `workforce-persona-repairer` to patch the workflow file. That's the wrong target — the workflow worked correctly; the code under inspection is what needs fixing. Result: the persona repairer either rewrites a working workflow into something subtly different, or escalates because it can't make sense of the failure.

Concrete case: `workflows/044-tier1-verify.ts` in relayfile-adapters fetches HubSpot/Stripe/etc. webhook docs and diffs against our adapter implementation. When it finds the implementation has the wrong header name or algorithm, it writes a drift report and exits non-zero. Today that triggers a useless workflow rewrite. With this change, ricky reads the drift report, dispatches a code-fix agent that patches the offending `webhook-normalizer.ts`, and retries — which now passes.

Design

Detection (`discoverDriftReports`)

Convention-based + schema-validated + freshness-checked:

• Recursively scan `/.workflow-artifacts/**/*-drift.json`
• Each file must parse with `{ verdict: 'PASS'|'DRIFT', findings: Array<{severity, axis, description}> }`
• File mtime must be ≥ `runStartTimeMs` (captured at the top of `runWithAutoFix`) — guards against stale reports
• Only reports with verdict === 'DRIFT' AND at least one blocker- or major-severity finding count

Dispatch (`auto-fix-loop.ts`)

• New step in the attempt loop, before `resolveWorkflowRepairTarget`
• If drift target found → call `codeDriftRepairer` → agent edits files in place → retry workflow as-is
• If repairer throws or returns `applied: false` → fall through to existing workflow-repair path

Repairer (`code-drift-repairer.ts`)

• New file (~280 lines), mirrors `workforce-persona-repairer.ts` shape
• Builds a code-fix prompt from the report content (each finding as a structured item with severity, axis, description)
• Sends via existing `defaultWorkforcePersonaResolver` → `sendMessage`
• Agent edits files via its harness's Edit tools; reports completion with `CODE_DRIFT_REPAIR_COMPLETE` sentinel
• Default severity threshold: blocker + major (minors skipped unless trivial to bundle in)

Backwards compatibility

Strictly additive:

• Existing workflows without drift artifacts: no behavior change
• New `codeDriftRepairer` option on `RunWithAutoFixOptions` is optional with a sensible default
• New `runStartTimeMs` capture is internal

What it doesn't do (yet)

• Configurable severity threshold per workflow (currently hardcoded to blocker+major)
• Per-finding fix verification (relies on the workflow's own gates re-running on retry)
• Drift-report compaction across multiple runs (each retry sees current artifacts; stale ones are filtered by mtime)

Test plan

• `npm run typecheck` clean (modulo pre-existing `@relaycast` esModuleInterop issues unrelated to this change)
• `npm run bundle` succeeds; new code present in dist (verified `grep -c CODE_DRIFT_REPAIR_COMPLETE dist/ricky.js` = 7)
• End-to-end smoke: against `relayfile-adapters` PR fix(cli): opt cloud workflow runs into Ricky #40, run `TIER1_VERIFY_BATCH=2 ricky run workflows/044-tier1-verify.ts` with auto-fix enabled and a known-drift adapter; confirm ricky dispatches code-drift repair, agent patches the file, retry passes
• Add unit tests for `discoverDriftReports` (schema validation + freshness filtering) — follow-up

Risk

Medium. Touches `auto-fix-loop.ts` (1642-line core file), but the change is a single new code path with try/catch and fallback to existing behavior. Real risk is the prompt itself — if the code-fix agent makes wrong edits, it could break source files. Mitigations: severity threshold (blocker+major only), workflow's own gates re-run on retry to catch regressions, max-attempts cap (default 7).

🤖 Generated with Claude Code

[coderabbitai]

Caution

Review failed

The pull request is closed.

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro Plus

Run ID: b045c195-886a-4b36-8850-025feff98b36

📥 Commits

Reviewing files that changed from the base of the PR and between 75cb5d0 and f2bddec.

📒 Files selected for processing (2)

• src/local/auto-fix-loop.ts
• src/local/code-drift-repairer.ts

---

📝 Walkthrough

Walkthrough

This PR adds code-drift auto-repair support to the auto-fix loop. When drift artifacts are discovered under .workflow-artifacts/*-drift.json, the loop dispatches a configurable codeDriftRepairer to attempt fixing before falling back to existing workflow repair. Captured start time filters stale artifacts; failures in drift repair gracefully degrade to standard repair logic.

Changes

Code Drift Auto-Repair Feature

Layer / File(s)	Summary
Drift Data Contracts src/local/code-drift-repairer.ts	Public interfaces introduced: DriftFinding, DriftReport, CodeDriftTarget, CodeDriftRepairOptions, CodeDriftRepairResult. Model drift findings (slug, severity, actionable flag, expected/actual/sources) and repair task options/results.
Drift Discovery Helpers src/local/code-drift-repairer.ts	Severity gating defines default actionable severities (blocker, major) and actionableFindings filter. Recursive filesystem scanning and schema validation helpers check drift report structure and tolerate unreadable paths.
Discovery Implementation src/local/code-drift-repairer.ts	discoverDriftReports resolves artifacts root, collects *-drift.json files, filters by modification time, parses and validates JSON shape, normalizes optional fields, and returns reports with verdict === 'DRIFT' and at least one actionable blocker/major finding, or null if none are actionable.
Drift Repair Execution src/local/code-drift-repairer.ts	repairCodeFromDriftArtifacts resolves a persona/harness, builds a repair prompt from actionable reports, sends the task to the harness with metadata and report paths, enforces CODE_DRIFT_REPAIR_COMPLETE sentinel, and returns a structured result with applied, summary, optional runId, fixedSlugs, and warnings.
Auto-Fix Loop Integration src/local/auto-fix-loop.ts	Extends RunWithAutoFixOptions with optional codeDriftRepairer (defaults to repairCodeFromDriftArtifacts), captures runStartTimeMs, discovers reports during retry loop, invokes repairer on a CodeDriftTarget, records attemptSummary.applied_fix with mode: 'code-drift' and report paths/persona run id, appends warnings, updates retry/run-id tracking, and retries the workflow. Repair no-ops or errors fall through to existing workflow-repair logic.

Sequence Diagram(s)

sequenceDiagram
  Client->>Runner: start runWithAutoFix
  Runner->>Discover: discoverDriftReports(cwd, runStartTimeMs)
  Discover-->>Runner: reports (or null)
  Runner->>Repairer: invoke codeDriftRepairer(target)
  Repairer->>Harness: dispatch repair task
  Harness-->>Repairer: output + CODE_DRIFT_REPAIR_COMPLETE
  Repairer-->>Runner: CodeDriftRepairResult (applied/summary)
  Runner->>Runner: record applied_fix / retry or fall back to workflow repair

Loading

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

Possibly related PRs

• AgentWorkforce/ricky#54: Modifies src/local/auto-fix-loop.ts to extend auto-fix/repair loop; related to workforce persona repair attempts and retry tracking.
• AgentWorkforce/ricky#47: Also modifies runWithAutoFix retry logic; intersects with auto-fix loop behavior.

Poem

🐰 A rabbit's verse on code drift

I sniff the artifacts where changes stray,
I hop and hand the harness what to say,
“Patch the blockers, major lines that roam,”
If mend fails still, the loop will bring it home.

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 8.33% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title accurately summarizes the main change: adding a code-drift repair mechanism for verify-style workflow failures.
Description check	✅ Passed	The description is comprehensive and directly related to the changeset, explaining motivation, design, and backward compatibility.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

📝 Generate docstrings

• Create stacked PR
• Commit on current branch

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch feat/auto-fix-code-drift

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: f2447282c5

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[chatgpt-codex-connector]

Rerun drift-producing steps after code fixes

When a verify-style workflow fails in a final gate that reads *-drift.json, retrying with startFromStep: failedStep skips the earlier step that regenerates the drift report from the now-edited source code. I checked the local runner path in src/local/entrypoint.ts, which forwards this field as startFrom, so the retry can re-read the same fresh drift artifact, fail again, and keep dispatching code-drift repair until max attempts instead of proving the code fix cleared the drift. The code-drift path should rerun the whole workflow, or at least the drift-generation step, rather than resuming at the failing gate.

Useful? React with 👍 / 👎.

[coderabbitai]

Actionable comments posted: 1

🧹 Nitpick comments (3)

src/local/code-drift-repairer.ts (3)

294-334: ⚡ Quick win

Use static import for stat instead of dynamic import in loop.

Line 296 dynamically imports node:fs/promises to call stat, but readFile is already statically imported at the top of the file. This inconsistency causes repeated module resolution overhead on each iteration.

♻️ Proposed fix

At the top of the file, update the import:

-import { readFile } from 'node:fs/promises';
+import { readFile, stat } from 'node:fs/promises';

Then in the loop:

-      const stat = await (await import('node:fs/promises')).stat(filePath);
+      const fileStat = await stat(filePath);
-      if (stat.mtimeMs < runStartTimeMs) continue;
+      if (fileStat.mtimeMs < runStartTimeMs) continue;

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@src/local/code-drift-repairer.ts` around lines 294 - 334, The loop currently
does a dynamic import of node:fs/promises to call stat on each drift file which
is inefficient; change to a static import of stat alongside the existing
readFile import at the top of the file, then replace the dynamic import call in
the loop (the await (await import('node:fs/promises')).stat(filePath)
expression) with a direct call to stat(filePath). Ensure no other code paths
rely on the dynamic import and run tests or linting to confirm the module
resolution is correct for the code in function(s) handling drift files (the loop
that builds DriftReport using isDriftReportShape, actionableFindings, readFile,
etc.).

---

339-362: 💤 Low value

Remove unnecessary dynamic import.

collectDriftJsonFiles dynamically imports node:fs/promises when readFile (and ideally readdir) should be statically imported at the module level. This is inconsistent with the existing static import.

♻️ Proposed fix

Update the static import at top of file:

-import { readFile } from 'node:fs/promises';
+import { readdir, readFile, stat } from 'node:fs/promises';

Then update the function:

 async function collectDriftJsonFiles(dir: string): Promise<string[]> {
-  const fs = await import('node:fs/promises');
   const out: string[] = [];

   async function walk(current: string): Promise<void> {
     let entries: import('node:fs').Dirent[];
     try {
-      entries = await fs.readdir(current, { withFileTypes: true });
+      entries = await readdir(current, { withFileTypes: true });
     } catch {

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@src/local/code-drift-repairer.ts` around lines 339 - 362,
collectDriftJsonFiles currently uses a dynamic import of 'node:fs/promises';
remove that dynamic import and use the module-level static import instead so the
code is consistent with other file I/O. Modify the top-of-file imports to
include the promised fs API (e.g., import { readdir } from 'node:fs/promises' or
import * as fsPromises) and then update collectDriftJsonFiles to call readdir
(and any other used functions like readFile if applicable) directly (e.g.,
replace await import(...) and fs.readdir(...) with readdir(current, {
withFileTypes: true })) while keeping the walk logic and Dirent checks the same.

---

322-325: 💤 Low value

Type cast for sources doesn't validate string values.

isPlainRecord only confirms sourcesValue is a non-null object, not that all values are strings. If a drift report has non-string values in sources, they'll be silently accepted but violate the Record<string, string> type.

🛡️ Optional stricter validation

       const sourcesValue = parsedRecord.sources;
-      if (isPlainRecord(sourcesValue)) {
-        report.sources = sourcesValue as Record<string, string>;
+      if (isPlainRecord(sourcesValue) && Object.values(sourcesValue).every((v) => typeof v === 'string')) {
+        report.sources = sourcesValue as Record<string, string>;
       }

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@src/local/code-drift-repairer.ts` around lines 322 - 325, The code is casting
parsedRecord.sources to Record<string,string> after only calling isPlainRecord
(which only checks for a non-null object); update validation so you confirm
every value is a string before assigning to report.sources: inspect
parsedRecord.sources (sourcesValue) and check Object.entries/some/all values are
typeof "string", only then set report.sources = sourcesValue as
Record<string,string>, otherwise handle/skip/throw as appropriate; keep
references to parsedRecord, sourcesValue, isPlainRecord, and report.sources when
making the change.

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@src/local/code-drift-repairer.ts`:
- Around line 364-378: The isDriftReportShape type guard currently only checks
each finding's severity; update it (the isDriftReportShape function) to also
validate that each finding has axis and description properties of type string
(and not undefined) before returning true, e.g., extend the findings.every
callback to verify typeof (f as { axis?: unknown }).axis === 'string' and typeof
(f as { description?: unknown }).description === 'string' along with the
existing severity checks so malformed JSON won't be cast to DriftFinding[].

---

Nitpick comments:
In `@src/local/code-drift-repairer.ts`:
- Around line 294-334: The loop currently does a dynamic import of
node:fs/promises to call stat on each drift file which is inefficient; change to
a static import of stat alongside the existing readFile import at the top of the
file, then replace the dynamic import call in the loop (the await (await
import('node:fs/promises')).stat(filePath) expression) with a direct call to
stat(filePath). Ensure no other code paths rely on the dynamic import and run
tests or linting to confirm the module resolution is correct for the code in
function(s) handling drift files (the loop that builds DriftReport using
isDriftReportShape, actionableFindings, readFile, etc.).
- Around line 339-362: collectDriftJsonFiles currently uses a dynamic import of
'node:fs/promises'; remove that dynamic import and use the module-level static
import instead so the code is consistent with other file I/O. Modify the
top-of-file imports to include the promised fs API (e.g., import { readdir }
from 'node:fs/promises' or import * as fsPromises) and then update
collectDriftJsonFiles to call readdir (and any other used functions like
readFile if applicable) directly (e.g., replace await import(...) and
fs.readdir(...) with readdir(current, { withFileTypes: true })) while keeping
the walk logic and Dirent checks the same.
- Around line 322-325: The code is casting parsedRecord.sources to
Record<string,string> after only calling isPlainRecord (which only checks for a
non-null object); update validation so you confirm every value is a string
before assigning to report.sources: inspect parsedRecord.sources (sourcesValue)
and check Object.entries/some/all values are typeof "string", only then set
report.sources = sourcesValue as Record<string,string>, otherwise
handle/skip/throw as appropriate; keep references to parsedRecord, sourcesValue,
isPlainRecord, and report.sources when making the change.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro Plus

Run ID: 3e432dca-2d60-49c4-bfd1-75c3ff841b7a

📥 Commits

Reviewing files that changed from the base of the PR and between f613e30 and f244728.

📒 Files selected for processing (2)

• src/local/auto-fix-loop.ts
• src/local/code-drift-repairer.ts

[coderabbitai]

Actionable comments posted: 2

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@src/local/auto-fix-loop.ts`:
- Line 118: Discovery currently keys artifacts to a single run-level variable
runStartTimeMs, letting stale drift reports from earlier attempts be reused;
update the logic so each attempt has its own attemptStartTimeMs (or attempt
window timestamps) and use that when discovering/filtering artifacts for
codeDriftRepairer and any discovery calls (replace uses of runStartTimeMs in
discovery with the attempt-specific timestamp and/or add a filter that checks
artifact.createdAt or artifact.attemptId falls inside the current attempt
window) so only artifacts produced during the current attempt are considered.

In `@src/local/code-drift-repairer.ts`:
- Around line 394-401: The validation in the findings.every(...) callback allows
empty or whitespace-only descriptions; update the check for description (the
variable named description in the callback) to require a non-empty,
non-whitespace string (e.g., typeof description === 'string' &&
description.trim().length > 0) while keeping the existing checks for
isPlainRecord, sev ('blocker'|'major'|'minor') and axis; adjust the final return
condition in that anonymous function accordingly so empty/whitespace
descriptions are rejected.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro Plus

Run ID: 5fd56e51-ecea-4388-a343-02855b6d19e3

📥 Commits

Reviewing files that changed from the base of the PR and between f244728 and 75cb5d0.

📒 Files selected for processing (2)

• src/local/auto-fix-loop.ts
• src/local/code-drift-repairer.ts