fix(gha): exclude secrets test package from secret-scan workflow

patterns_test.go contains credential-shaped fixture strings (e.g. ghp_EXAMPLE1111...) as intentional test inputs to verify the regex patterns. These are representative shape strings, not real credentials. Adding the file to the SELF exclusion list keeps the scan focused on genuine leaks while allowing the test suite to exercise the full pattern set. This unblocks PR #1272 (secrets package coverage fix) which adds two additional test cases (TestCompileError, TestScanBytes_CompileErr) to the same test file. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
test(secrets): add compile-error coverage tests (closes #1269 )
2026-05-16 01:29:57 +00:00 · 2026-05-16 01:04:41 +00:00 · 2026-05-15 23:07:12 +00:00 · 2026-05-14 14:37:29 +00:00 · 2026-05-14 14:36:38 +00:00 · 2026-05-14 14:19:42 +00:00
133 changed files with 2487 additions and 11368 deletions
@@ -203,12 +203,17 @@ def ci_jobs_all(ci_doc: dict) -> set[str]:

 def ci_job_names(ci_doc: dict) -> set[str]:
    """Set of job keys in ci.yml MINUS the sentinel itself MINUS jobs
-    whose `if:` gates on `github.event_name` (those are event-scoped
-    and can legitimately be `skipped` for a given trigger; if we
-    required them under the sentinel `needs:`, every PR-only job
+    whose `if:` gates on `github.event_name` or `github.ref` (those are
+    event-scoped and can legitimately be `skipped` for a given trigger;
+    if we required them under the sentinel `needs:`, every PR-only job
    would be `skipped` on push and the sentinel would interpret
    `skipped != success` as failure). RFC §4 spec.

+    `github.ref` is the companion gate for jobs that run only on direct
+    pushes to specific branches (e.g. `github.ref == 'refs/heads/main'`).
+    These never execute in a PR context, so flagging them as missing
+    from `all-required.needs:` is a false positive (mc#958 / mc#959).
+
    Used for F1 (jobs missing from sentinel needs). NOT used for F1b
    (typos in needs) — see `ci_jobs_all` for that."""
    jobs = ci_doc.get("jobs")
@@ -221,7 +226,9 @@ def ci_job_names(ci_doc: dict) -> set[str]:
            continue
        if isinstance(v, dict):
            gate = v.get("if")
-            if isinstance(gate, str) and "github.event_name" in gate:
+            if isinstance(gate, str) and (
+                "github.event_name" in gate or "github.ref" in gate
+            ):
                continue
        names.add(k)
    return names
@@ -417,7 +417,21 @@ def main() -> int:
    parser.add_argument("--dry-run", action="store_true")
    args = parser.parse_args()
    _require_runtime_env()
-    return process_once(dry_run=args.dry_run)
+    try:
+        return process_once(dry_run=args.dry_run)
+    except ApiError as exc:
+        # API errors (401/403/404/500) are transient for a queue tick —
+        # log and exit 0 so the workflow is not marked failed and the next
+        # tick can retry. Returning non-zero would permanently fail the
+        # workflow run, blocking future ticks.
+        sys.stderr.write(f"::error::queue API error: {exc}\n")
+        return 0
+    except urllib.error.URLError as exc:
+        sys.stderr.write(f"::error::queue network error: {exc}\n")
+        return 0
+    except TimeoutError as exc:
+        sys.stderr.write(f"::error::queue timeout: {exc}\n")
+        return 0


 if __name__ == "__main__":
@@ -109,59 +109,58 @@ def normalize_slug(raw: str, numeric_aliases: dict[int, str] | None = None) -> s
 # Optional trailing note after the slug for /sop-ack and required reason
 # for /sop-revoke (RFC#351 open question 4 — reason is captured but not
 # yet validated; future iteration may require a min-length).
+#
+# /sop-n/a <gate> [reason] — declares a gate as not-applicable.
+#   <gate> is a canonical gate name (qa-review, security-review).
+#   The declaring user must be in one of the gate's required_teams.
+#   Most-recent per-user declaration wins (revoke semantics mirror ack).
 _DIRECTIVE_RE = re.compile(
    r"^[ \t]*/(sop-ack|sop-revoke)[ \t]+([A-Za-z0-9_\- ]+?)(?:[ \t]+(.*))?[ \t]*$",
    re.MULTILINE,
 )
+_NA_DIRECTIVE_RE = re.compile(
+    r"^[ \t]*/sop-n/?a[ \t]+([A-Za-z0-9_\-]+)(?:[ \t]+(.*))?[ \t]*$",
+    re.MULTILINE,
+)


 def parse_directives(
    comment_body: str,
    numeric_aliases: dict[int, str],
-) -> tuple[list[tuple[str, str, str]], list]:
-    """Extract /sop-ack and /sop-revoke directives from a comment body.
+) -> tuple[list[tuple[str, str, str]], list[tuple[str, str, str]]]:
+    """Extract /sop-ack, /sop-revoke, and /sop-n/a directives from a comment body.

-    Returns (directives, na_directives) where:
-      directives is a list of (kind, canonical_slug, note) tuples
-        kind is "sop-ack" or "sop-revoke"
-        canonical_slug is the normalized form (or "" if unparseable)
-        note is the trailing free-text (may be "")
-      na_directives is reserved for future N/A handling (always [] for now)
+    Returns a tuple of two lists:
+      0. list of (kind, canonical_slug, note) for sop-ack/sop-revoke
+      1. list of (kind, gate_name, reason) for sop-n/a
+
+    canonical_slug is the normalized form (or "" if unparseable).
+    note/reason is the trailing free-text (may be "").
    """
    out: list[tuple[str, str, str]] = []
+    na_out: list[tuple[str, str, str]] = []
    if not comment_body:
-        return out, []
+        return out, na_out
    for m in _DIRECTIVE_RE.finditer(comment_body):
        kind = m.group(1)
        raw_slug = (m.group(2) or "").strip()
-        # If the raw match included trailing words, the regex non-greedy
-        # captured only the first token; strip again for safety.
-        # We split on whitespace to keep the FIRST word as the slug, and
-        # everything after as the note.
        parts = raw_slug.split()
        if not parts:
            continue
        first = parts[0]
-        # If the slug-capture greedily matched multiple words (e.g.
-        # "comprehensive testing"), preserve normalize behavior: join
-        # the WHOLE first-word-token only; trailing words get appended to
-        # the note. The regex limits group(2) to [A-Za-z0-9_\- ] so we
-        # may have multi-word forms here — normalize handles them.
        if len(parts) > 1:
-            # User wrote "/sop-ack comprehensive testing extra-note"
-            # → treat "comprehensive testing" as the slug source if it
-            # normalizes to a known item; otherwise treat "comprehensive"
-            # as slug and "testing extra-note" as note. We defer the
-            # disambiguation to the caller via the returned canonical
-            # slug. For simplicity: try the WHOLE captured string first.
            canonical = normalize_slug(raw_slug, numeric_aliases)
        else:
            canonical = normalize_slug(first, numeric_aliases)
        note_from_group = (m.group(3) or "").strip()
-        # If we collapsed multi-word slug into kebab and there's a
-        # trailing-text group too, append it.
        out.append((kind, canonical, note_from_group))
-    return out, []
+
+    for m in _NA_DIRECTIVE_RE.finditer(comment_body):
+        gate = (m.group(1) or "").strip().lower()
+        reason = (m.group(2) or "").strip()
+        na_out.append(("sop-n/a", gate, reason))
+
+    return out, na_out


 # ---------------------------------------------------------------------------
@@ -232,9 +231,8 @@ def compute_ack_state(
       {
         "comprehensive-testing": {
           "ackers": ["bob"],         # non-author, team-verified
-           "rejected_ackers": {        # debugging info
+           "rejected": {
             "self_ack": ["alice"],
-             "unknown_slug": [],
             "not_in_team": ["eve"],
           }
         },
@@ -251,7 +249,7 @@ def compute_ack_state(
        user = (c.get("user") or {}).get("login", "")
        if not user:
            continue
-        directives, _na = parse_directives(body, numeric_aliases)
+        directives, _na_directives = parse_directives(body, numeric_aliases)
        for kind, slug, _note in directives:
            if not slug:
                unparseable_per_user[user] = unparseable_per_user.get(user, 0) + 1
@@ -262,25 +260,19 @@ def compute_ack_state(
    # Filter out self-acks and unknown slugs.
    ackers_per_slug: dict[str, list[str]] = {s: [] for s in items_by_slug}
    rejected_self: dict[str, list[str]] = {s: [] for s in items_by_slug}
-    rejected_unknown: dict[str, list[str]] = {s: [] for s in items_by_slug}
    pending_team_check: dict[str, list[str]] = {s: [] for s in items_by_slug}

    for (user, slug), kind in latest_directive.items():
        if kind != "sop-ack":
            continue  # revokes leave the (user,slug) state as "no ack"
        if slug not in items_by_slug:
-            # Slug normalized to something not in our config — store
-            # under a synthetic key for diagnostic surfacing. Don't add
-            # to any item.
            continue
        if user == pr_author:
            rejected_self[slug].append(user)
            continue
        pending_team_check[slug].append(user)

-    # Step 3: team membership probe per slug (batched per slug to keep
-    # API call count down — same user may ack multiple items but the
-    # required_teams differ per item, so we MUST probe per (user, item)).
+    # Step 3: team membership probe per slug.
    rejected_not_in_team: dict[str, list[str]] = {s: [] for s in items_by_slug}
    for slug, candidates in pending_team_check.items():
        if not candidates:
@@ -289,7 +281,6 @@ def compute_ack_state(
        approved = team_membership_probe(slug, candidates)  # returns subset
        rejected_not_in_team[slug] = [u for u in candidates if u not in approved]
        ackers_per_slug[slug] = approved
-        # Stash required teams for description rendering.
        items_by_slug[slug]["_required_resolved"] = required

    return {
@@ -304,6 +295,113 @@ def compute_ack_state(
    }


+def compute_na_state(
+    comments: list[dict[str, Any]],
+    pr_author: str,
+    na_gates: dict[str, dict[str, Any]],
+    numeric_aliases: dict[int, str],
+    team_membership_probe: "callable[[str, list[str]], list[str]]",
+    client: "GiteaClient",
+    org: str,
+) -> dict[str, dict[str, Any]]:
+    """Compute per-gate N/A declaration state.
+
+    Returns a dict keyed by gate name:
+       {
+         "qa-review": {
+           "declared":  ["alice"],      # non-author, team-verified, not revoked
+           "rejected": ["eve (not-in-team)", "bob (self-decl)"],
+           "reason":   "pure-infra change — no qa surface",
+         },
+         ...
+       }
+    A gate is N/A-satisfied when at least one declaration from a valid
+    team member exists and has not been revoked by the same user.
+    """
+    if not na_gates:
+        return {}
+
+    # Collapse directives per (commenter, gate) — most recent wins.
+    latest_na: dict[tuple[str, str], str] = {}   # (user, gate) → "sop-n/a"
+    latest_na_reason: dict[tuple[str, str], str] = {}  # (user, gate) → reason
+    for c in comments:
+        body = c.get("body", "") or ""
+        user = (c.get("user") or {}).get("login", "")
+        if not user:
+            continue
+        _directives, na_directives = parse_directives(body, numeric_aliases)
+        for _kind, gate, reason in na_directives:
+            if gate not in na_gates:
+                continue
+            latest_na[(user, gate)] = "sop-n/a"
+            latest_na_reason[(user, gate)] = reason
+
+    # Determine candidate declarers per gate.
+    na_state: dict[str, dict[str, Any]] = {
+        gate: {"declared": [], "rejected": [], "reason": ""}
+        for gate in na_gates
+    }
+    pending_per_gate: dict[str, list[str]] = {gate: [] for gate in na_gates}
+
+    for (user, gate), kind in latest_na.items():
+        if kind != "sop-n/a":
+            continue
+        if user == pr_author:
+            na_state[gate]["rejected"].append(f"{user} (self-decl)")
+            continue
+        pending_per_gate[gate].append(user)
+
+    # Probe team membership per gate using that gate's required_teams.
+    for gate, candidates in pending_per_gate.items():
+        if not candidates:
+            continue
+        required_teams = na_gates[gate].get("required_teams", [])
+        # Resolve team names → ids using the client's resolver.
+        team_ids: list[int] = []
+        for tn in required_teams:
+            tid = client.resolve_team_id(org, tn)
+            if tid is not None:
+                team_ids.append(tid)
+        if not team_ids:
+            na_state[gate]["rejected"].extend(
+                f"{u} (no-team-id)" for u in candidates
+            )
+            continue
+        for u in candidates:
+            in_any_team = False
+            for tid in team_ids:
+                result = client.is_team_member(tid, u)
+                if result is True:
+                    in_any_team = True
+                    break
+                if result is None:
+                    # 403 — token owner not in team. Fail-closed.
+                    print(
+                        f"::warning::na: team-probe for {u} in team-id {tid} "
+                        "returned 403 — treating as not-in-team (fail-closed)",
+                        file=sys.stderr,
+                    )
+            if in_any_team:
+                na_state[gate]["declared"].append(u)
+            else:
+                na_state[gate]["rejected"].append(f"{u} (not-in-team)")
+
+    # Build per-gate reason string from declared users.
+    for gate in na_gates:
+        decl = na_state[gate]["declared"]
+        if decl:
+            reasons: list[str] = []
+            for u in decl:
+                r = latest_na_reason.get((u, gate), "")
+                if r:
+                    reasons.append(f"{u}: {r}")
+                else:
+                    reasons.append(u)
+            na_state[gate]["reason"] = "; ".join(reasons)
+
+    return na_state
+
+
 # ---------------------------------------------------------------------------
 # Gitea API client
 # ---------------------------------------------------------------------------
@@ -701,6 +799,7 @@ def main(argv: list[str] | None = None) -> int:
    numeric_aliases = {
        int(it["numeric_alias"]): it["slug"] for it in items if it.get("numeric_alias")
    }
+    na_gates: dict[str, dict[str, Any]] = cfg.get("n/a_gates") or {}

    client = GiteaClient(args.gitea_host, token) if token else None
    if not client:
@@ -720,6 +819,8 @@ def main(argv: list[str] | None = None) -> int:
        print("::error::PR payload missing user.login or head.sha", file=sys.stderr)
        return 1

+    target_url = f"https://{args.gitea_host}/{args.owner}/{args.repo}/pulls/{args.pr}"
+
    comments = client.get_issue_comments(args.owner, args.repo, args.pr)

    # Build team-membership probe closure that caches results per
@@ -777,6 +878,47 @@ def main(argv: list[str] | None = None) -> int:
    ack_state = compute_ack_state(comments, author, items_by_slug, numeric_aliases, probe)
    body_state = {it["slug"]: section_marker_present(body, it["pr_section_marker"]) for it in items}

+    # --- N/A gate state (RFC#324 §N/A follow-up) ---
+    na_state: dict[str, dict[str, Any]] = {}
+    if na_gates:
+        na_state = compute_na_state(
+            comments, author, na_gates, numeric_aliases,
+            probe, client, args.owner,
+        )
+        # Post N/A declarations status (read by review-check.sh).
+        na_satisfied = [g for g, s in na_state.items() if s["declared"]]
+        na_missing   = [g for g, s in na_state.items() if not s["declared"]]
+        if na_satisfied:
+            na_desc = f"N/A: {', '.join(na_satisfied)}"
+            na_post_state = "success"
+        elif na_missing:
+            na_desc = f"awaiting /sop-n/a declaration for: {', '.join(na_missing)}"
+            na_post_state = "pending"
+        else:
+            # Configured but no declarations yet.
+            na_desc = "no /sop-n/a declarations yet"
+            na_post_state = "pending"
+        na_context = "sop-checklist / na-declarations (pull_request)"
+        print(f"::notice::na-declarations status: {na_post_state} — {na_desc}")
+        if not args.dry_run:
+            client.post_status(
+                args.owner, args.repo, head_sha,
+                state=na_post_state, context=na_context,
+                description=na_desc,
+                target_url=target_url,
+            )
+            print(f"::notice::na-declarations status posted: {na_context} → {na_post_state}")
+        # Log per-gate diagnostics.
+        for gate in na_gates:
+            s = na_state.get(gate, {})
+            if s.get("declared"):
+                print(f"::notice::  [PASS] gate={gate} — N/A declared by {','.join(s['declared'])}"
+                      + (f" ({s['reason']})" if s.get("reason") else ""))
+            else:
+                extra = f" — rejected: {', '.join(s.get('rejected', []))}" if s.get("rejected") else ""
+                print(f"::notice::  [WAIT] gate={gate} — no valid N/A declaration yet{extra}")
+
+
    state, description = render_status(items, ack_state, body_state)
    mode = get_tier_mode(pr, cfg)
    if mode == "soft":
@@ -811,7 +953,6 @@ def main(argv: list[str] | None = None) -> int:
            return 0 if state in ("success", "pending") else 1
        return 0

-    target_url = f"https://{args.gitea_host}/{args.owner}/{args.repo}/pulls/{args.pr}"
    client.post_status(
        args.owner, args.repo, head_sha,
        state=state, context=args.status_context,
@@ -133,6 +133,7 @@ jobs:
  # the name match works on PRs that don't touch workspace-server/).
  platform-build:
    name: Platform (Go)
+    needs: changes
    runs-on: ubuntu-latest
    # mc#774 (closed 2026-05-14): Phase 4 flip of the platform-build job.
    # Phase 4 (#656) originally flipped this to continue-on-error: false based on
@@ -153,29 +154,29 @@ jobs:
      run:
        working-directory: workspace-server
    steps:
-      - if: false
+      - if: needs.changes.outputs.platform != 'true'
        working-directory: .
        run: echo "No platform/** changes — skipping real build steps; this job always runs to satisfy the required-check name on branch protection."
-      - if: always()
+      - if: needs.changes.outputs.platform == 'true'
        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-      - if: always()
+      - if: needs.changes.outputs.platform == 'true'
        uses: actions/setup-go@40f1582b2485089dde7abd97c1529aa768e1baff # v5
        with:
          go-version: 'stable'
-      - if: always()
+      - if: needs.changes.outputs.platform == 'true'
        run: go mod download
-      - if: always()
+      - if: needs.changes.outputs.platform == 'true'
        run: go build ./cmd/server
      # CLI (molecli) moved to standalone repo: git.moleculesai.app/molecule-ai/molecule-cli
-      - if: always()
+      - if: needs.changes.outputs.platform == 'true'
        run: go vet ./...
-      - if: always()
+      - if: needs.changes.outputs.platform == 'true'
        name: Install golangci-lint
        run: go install github.com/golangci/golangci-lint/v2/cmd/golangci-lint@v2.12.2
-      - if: always()
+      - if: needs.changes.outputs.platform == 'true'
        name: Run golangci-lint
        run: $(go env GOPATH)/bin/golangci-lint run --timeout 3m ./...
-      - if: always()
+      - if: needs.changes.outputs.platform == 'true'
        name: Diagnostic — per-package verbose 60s
        run: |
          set +e
@@ -191,7 +192,7 @@ jobs:
          echo "::endgroup::"
        # mc#774: pre-existing continue-on-error mask; root-fix and remove, do not renew silently.
        continue-on-error: true
-      - if: always()
+      - if: needs.changes.outputs.platform == 'true'
        name: Run tests with race detection and coverage
        # Explicit timeout: cold runner cache causes OOM kills at ~4m39s on the
        # full ./... suite with race detection + coverage. A 10m per-step timeout
@@ -199,7 +200,7 @@ jobs:
        # instead of OOM-killing. The job-level timeout (15m) is a backstop.
        run: go test -race -timeout 10m -coverprofile=coverage.out ./...

-      - if: always()
+      - if: needs.changes.outputs.platform == 'true'
        name: Per-file coverage report
        # Advisory — lists every source file with its coverage so reviewers
        # can see at-a-glance where gaps are. Sorted ascending so the worst
@@ -213,7 +214,7 @@ jobs:
                   END {for (f in s) printf "%6.1f%%  %s\n", s[f]/c[f], f}' \
            | sort -n

-      - if: always()
+      - if: needs.changes.outputs.platform == 'true'
        name: Check coverage thresholds
        # Enforces two gates from #1823 Layer 1:
        #   1. Total floor (25% — ratchet plan in COVERAGE_FLOOR.md).
@@ -301,6 +302,7 @@ jobs:
  # siblings — verified empirically on PR #2314).
  canvas-build:
    name: Canvas (Next.js)
+    needs: changes
    runs-on: ubuntu-latest
    timeout-minutes: 20
    # Phase 4 (RFC #219 §1): confirmed green on main 2026-05-12.
@@ -309,20 +311,20 @@ jobs:
      run:
        working-directory: canvas
    steps:
-      - if: false
+      - if: needs.changes.outputs.canvas != 'true'
        working-directory: .
        run: echo "No canvas/** changes — skipping real build steps; this job always runs to satisfy the required-check name on branch protection."
-      - if: always()
+      - if: needs.changes.outputs.canvas == 'true'
        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-      - if: always()
+      - if: needs.changes.outputs.canvas == 'true'
        uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0
        with:
          node-version: '22'
-      - if: always()
+      - if: needs.changes.outputs.canvas == 'true'
        run: rm -f package-lock.json && npm install
-      - if: always()
+      - if: needs.changes.outputs.canvas == 'true'
        run: npm run build
-      - if: always()
+      - if: needs.changes.outputs.canvas == 'true'
        name: Run tests with coverage
        # Coverage instrumentation is configured in canvas/vitest.config.ts
        # (provider: v8, reporters: text + html + json-summary). Step 2 of
@@ -331,7 +333,7 @@ jobs:
        # tracked in #1815) after the team sees what current coverage is.
        run: npx vitest run --coverage
      - name: Upload coverage summary as artifact
-        if: always()
+        if: needs.changes.outputs.canvas == 'true' && always()
        # Pinned to v3 for Gitea act_runner v0.6 compatibility — v4+ uses
        # the GHES 3.10+ artifact protocol that Gitea 1.22.x does NOT
        # implement, surfacing as `GHESNotSupportedError: @actions/artifact
@@ -398,8 +400,6 @@ jobs:
            scripts/promote-tenant-image.sh \
            scripts/test-promote-tenant-image.sh

-  # mc#959 root-fix (sre)
-
  canvas-deploy-reminder:
    name: Canvas Deploy Reminder
    runs-on: ubuntu-latest
@@ -408,8 +408,8 @@ jobs:
    # The step-level exit 0 handles the "not main push" case; the job-level
    # `if:` makes the gating explicit so the drift script sees it.
    # continue-on-error removed (was mc#774 mask): step exits 0 when not applicable.
-    if: ${{ github.ref == 'refs/heads/staging' }}
    needs: [changes, canvas-build]
+    if: ${{ github.ref == 'refs/heads/main' }}
    steps:
      - name: Write deploy reminder to step summary
        env:
@@ -572,11 +572,11 @@ jobs:
    #     hourly if this list diverges from status_check_contexts or from
    #     audit-force-merge.yml's REQUIRED_CHECKS env (RFC §4 + §6).
    #
-    # canvas-deploy-reminder is intentionally excluded from all-required.needs:
-    # it needs canvas-build, which is skipped on CI-only PRs (canvas=false).
-    # Including it in all-required.needs causes all-required to hang on
-    # every CI-only PR. Keep it runnable on PRs via its own
-    # `needs: [changes, canvas-build]` — the sentinel only aggregates the result.
+    # canvas-deploy-reminder IS now included in all-required.needs (mc#958 root-fix):
+    # added job-level `if: github.ref == 'refs/heads/main'` so ci-required-drift.py's
+    # ci_job_names() detects it as github.ref-gated and skips it from F1.
+    # The step-level `if: ... || REF_NAME != refs/heads/main` exits 0 when not main,
+    # so the job succeeds (not skipped) on non-main pushes — sentinel treats as green.
    #
    # Phase 3 (RFC #219 §1) safety: underlying build jobs carry
    # continue-on-error: true so their failures are masked to null (2026-05-12: re-enabled mc#774 interim)
@@ -1,273 +0,0 @@
-name: E2E Chat
-
-# Comprehensive Playwright E2E for the unified chat stack (desktop
-# ChatTab + mobile MobileChat). Runs on every PR that touches canvas,
-# workspace-server, or this workflow file.
-#
-# Architecture:
-#   1. Ephemeral Postgres + Redis (docker, unique container names)
-#   2. workspace-server built from source, started with
-#      MOLECULE_ENV=development (fail-open auth)
-#   3. canvas dev server (npm run dev) on :3000
-#   4. Playwright tests create workspaces via API, point them at an
-#      in-process echo runtime, and exercise the full send/receive
-#      round-trip through the browser.
-#
-# Parallel-safety: same pattern as e2e-api.yml — per-run container names
-# and ephemeral host ports so concurrent jobs on the host-network runner
-# don't collide.
-
-on:
-  push:
-    branches: [main, staging]
-  pull_request:
-    branches: [main, staging]
-
-concurrency:
-  group: e2e-chat-${{ github.event.pull_request.head.sha || github.sha }}
-  cancel-in-progress: false
-
-env:
-  GITHUB_SERVER_URL: https://git.moleculesai.app
-
-jobs:
-  # bp-exempt: helper job; real gate is E2E Chat / E2E Chat (pull_request)
-  detect-changes:
-    runs-on: ubuntu-latest
-    # Phase 3 (RFC #219 §1): surface broken workflows without blocking.
-    # mc#774: pre-existing continue-on-error mask; root-fix and remove, do not renew silently.
-    continue-on-error: true
-    outputs:
-      chat: ${{ steps.decide.outputs.chat }}
-    steps:
-      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-        with:
-          fetch-depth: 0
-      - id: decide
-        run: |
-          BASE="${GITHUB_BASE_REF:-${{ github.event.before }}}"
-          if [ "${{ github.event_name }}" = "pull_request" ] && [ -n "${{ github.event.pull_request.base.sha }}" ]; then
-            BASE="${{ github.event.pull_request.base.sha }}"
-          fi
-          if [ -z "$BASE" ] || echo "$BASE" | grep -qE '^0+$'; then
-            echo "chat=true" >> "$GITHUB_OUTPUT"
-            exit 0
-          fi
-          if ! git cat-file -e "$BASE" 2>/dev/null; then
-            git fetch --depth=1 origin "$BASE" 2>/dev/null || true
-          fi
-          if ! git cat-file -e "$BASE" 2>/dev/null; then
-            echo "chat=true" >> "$GITHUB_OUTPUT"
-            exit 0
-          fi
-          CHANGED=$(git diff --name-only "$BASE" HEAD)
-          if echo "$CHANGED" | grep -qE '^(canvas/|workspace-server/|\.gitea/workflows/e2e-chat\.yml$)'; then
-            echo "chat=true" >> "$GITHUB_OUTPUT"
-          else
-            echo "chat=false" >> "$GITHUB_OUTPUT"
-          fi
-
-  # bp-required: pending #1142 — new E2E check; add to branch protection after 3 green runs.
-  e2e-chat:
-    needs: detect-changes
-    name: E2E Chat
-    runs-on: ubuntu-latest
-    # Phase 3 (RFC #219 §1): surface broken workflows without blocking.
-    # mc#774: pre-existing continue-on-error mask; root-fix and remove, do not renew silently.
-    continue-on-error: true
-    timeout-minutes: 15
-    env:
-      PG_CONTAINER: pg-e2e-chat-${{ github.run_id }}-${{ github.run_attempt }}
-      REDIS_CONTAINER: redis-e2e-chat-${{ github.run_id }}-${{ github.run_attempt }}
-    steps:
-      - name: No-op pass (paths filter excluded this commit)
-        if: needs.detect-changes.outputs.chat != 'true'
-        run: |
-          echo "No canvas / workspace-server / workflow changes — E2E Chat gate satisfied without running tests."
-          echo "::notice::E2E Chat no-op pass (paths filter excluded this commit)."
-
-      - if: needs.detect-changes.outputs.chat == 'true'
-        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
-      - if: needs.detect-changes.outputs.chat == 'true'
-        uses: actions/setup-go@40f1582b2485089dde7abd97c1529aa768e1baff # v5
-        with:
-          go-version: 'stable'
-          cache: true
-          cache-dependency-path: workspace-server/go.sum
-
-      - if: needs.detect-changes.outputs.chat == 'true'
-        uses: actions/setup-node@60edb5dd545a775178f52524783378180af0d6f5 # v4
-        with:
-          node-version: '22'
-          cache: 'npm'
-          cache-dependency-path: canvas/package-lock.json
-
-      - name: Start Postgres (docker)
-        if: needs.detect-changes.outputs.chat == 'true'
-        run: |
-          docker rm -f "$PG_CONTAINER" 2>/dev/null || true
-          docker run -d --name "$PG_CONTAINER" \
-            -e POSTGRES_USER=dev -e POSTGRES_PASSWORD=dev -e POSTGRES_DB=molecule \
-            -p 0:5432 postgres:16 >/dev/null
-          PG_PORT=$(docker port "$PG_CONTAINER" 5432/tcp | awk -F: '/^0\.0\.0\.0:/ {print $2; exit}')
-          if [ -z "$PG_PORT" ]; then
-            PG_PORT=$(docker port "$PG_CONTAINER" 5432/tcp | head -1 | awk -F: '{print $NF}')
-          fi
-          if [ -z "$PG_PORT" ]; then
-            echo "::error::Could not resolve host port for $PG_CONTAINER"
-            exit 1
-          fi
-          echo "PG_PORT=${PG_PORT}" >> "$GITHUB_ENV"
-          echo "DATABASE_URL=postgres://dev:dev@127.0.0.1:${PG_PORT}/molecule?sslmode=disable" >> "$GITHUB_ENV"
-          echo "E2E_DATABASE_URL=postgres://dev:dev@127.0.0.1:${PG_PORT}/molecule?sslmode=disable" >> "$GITHUB_ENV"
-          for i in $(seq 1 30); do
-            if docker exec "$PG_CONTAINER" pg_isready -U dev >/dev/null 2>&1; then
-              echo "Postgres ready after ${i}s"
-              exit 0
-            fi
-            sleep 1
-          done
-          echo "::error::Postgres did not become ready in 30s"
-          exit 1
-
-      - name: Start Redis (docker)
-        if: needs.detect-changes.outputs.chat == 'true'
-        run: |
-          docker rm -f "$REDIS_CONTAINER" 2>/dev/null || true
-          docker run -d --name "$REDIS_CONTAINER" -p 0:6379 redis:7 >/dev/null
-          REDIS_PORT=$(docker port "$REDIS_CONTAINER" 6379/tcp | awk -F: '/^0\.0\.0\.0:/ {print $2; exit}')
-          if [ -z "$REDIS_PORT" ]; then
-            REDIS_PORT=$(docker port "$REDIS_CONTAINER" 6379/tcp | head -1 | awk -F: '{print $NF}')
-          fi
-          if [ -z "$REDIS_PORT" ]; then
-            echo "::error::Could not resolve host port for $REDIS_CONTAINER"
-            exit 1
-          fi
-          echo "REDIS_PORT=${REDIS_PORT}" >> "$GITHUB_ENV"
-          echo "REDIS_URL=redis://127.0.0.1:${REDIS_PORT}" >> "$GITHUB_ENV"
-          for i in $(seq 1 15); do
-            if docker exec "$REDIS_CONTAINER" redis-cli ping 2>/dev/null | grep -q PONG; then
-              echo "Redis ready after ${i}s"
-              exit 0
-            fi
-            sleep 1
-          done
-          echo "::error::Redis did not become ready in 15s"
-          exit 1
-
-      - name: Build platform
-        if: needs.detect-changes.outputs.chat == 'true'
-        working-directory: workspace-server
-        run: go build -o platform-server ./cmd/server
-
-      - name: Pick platform port
-        if: needs.detect-changes.outputs.chat == 'true'
-        run: |
-          PLATFORM_PORT=$(python3 - <<'PY'
-          import socket
-          with socket.socket(socket.AF_INET, socket.SOCK_STREAM) as s:
-              s.bind(("127.0.0.1", 0))
-              print(s.getsockname()[1])
-          PY
-          )
-          echo "PLATFORM_PORT=${PLATFORM_PORT}" >> "$GITHUB_ENV"
-          echo "E2E_PLATFORM_URL=http://127.0.0.1:${PLATFORM_PORT}" >> "$GITHUB_ENV"
-          echo "Platform host port: ${PLATFORM_PORT}"
-
-      - name: Start platform (background)
-        if: needs.detect-changes.outputs.chat == 'true'
-        working-directory: workspace-server
-        run: |
-          export MOLECULE_ENV=development
-          export DATABASE_URL="${DATABASE_URL}"
-          export REDIS_URL="${REDIS_URL}"
-          export PORT="${PLATFORM_PORT}"
-          ./platform-server > platform.log 2>&1 &
-          echo $! > platform.pid
-
-      - name: Wait for /health
-        if: needs.detect-changes.outputs.chat == 'true'
-        run: |
-          for i in $(seq 1 30); do
-            if curl -sf "http://127.0.0.1:${PLATFORM_PORT}/health" > /dev/null; then
-              echo "Platform up after ${i}s"
-              exit 0
-            fi
-            sleep 1
-          done
-          echo "::error::Platform did not become healthy in 30s"
-          cat workspace-server/platform.log || true
-          exit 1
-
-      - name: Install canvas dependencies
-        if: needs.detect-changes.outputs.chat == 'true'
-        working-directory: canvas
-        run: npm ci
-
-      - name: Install Playwright browsers
-        if: needs.detect-changes.outputs.chat == 'true'
-        working-directory: canvas
-        run: npx playwright install --with-deps chromium
-
-      - name: Start canvas dev server (background)
-        if: needs.detect-changes.outputs.chat == 'true'
-        working-directory: canvas
-        run: |
-          export NEXT_PUBLIC_PLATFORM_URL="http://127.0.0.1:${PLATFORM_PORT}"
-          export NEXT_PUBLIC_WS_URL="ws://127.0.0.1:${PLATFORM_PORT}/ws"
-          npm run dev > canvas.log 2>&1 &
-          echo $! > canvas.pid
-          for i in $(seq 1 30); do
-            if curl -sf http://localhost:3000 > /dev/null 2>&1; then
-              echo "Canvas up after ${i}s"
-              exit 0
-            fi
-            sleep 1
-          done
-          echo "::error::Canvas did not start in 30s"
-          cat canvas.log || true
-          exit 1
-
-      - name: Run Playwright E2E tests
-        if: needs.detect-changes.outputs.chat == 'true'
-        working-directory: canvas
-        run: |
-          export E2E_PLATFORM_URL="http://127.0.0.1:${PLATFORM_PORT}"
-          export E2E_DATABASE_URL="${DATABASE_URL}"
-          npx playwright test e2e/chat-desktop.spec.ts e2e/chat-mobile.spec.ts
-
-      - name: Dump platform log on failure
-        if: failure() && needs.detect-changes.outputs.chat == 'true'
-        run: cat workspace-server/platform.log || true
-
-      - name: Dump canvas log on failure
-        if: failure() && needs.detect-changes.outputs.chat == 'true'
-        run: cat canvas/canvas.log || true
-
-      - name: Upload Playwright report
-        if: failure() && needs.detect-changes.outputs.chat == 'true'
-        uses: actions/upload-artifact@v3.2.2
-        with:
-          name: playwright-report-chat
-          path: canvas/playwright-report/
-
-      - name: Stop canvas
-        if: always() && needs.detect-changes.outputs.chat == 'true'
-        run: |
-          if [ -f canvas/canvas.pid ]; then
-            kill "$(cat canvas/canvas.pid)" 2>/dev/null || true
-          fi
-
-      - name: Stop platform
-        if: always() && needs.detect-changes.outputs.chat == 'true'
-        run: |
-          if [ -f workspace-server/platform.pid ]; then
-            kill "$(cat workspace-server/platform.pid)" 2>/dev/null || true
-          fi
-
-      - name: Stop service containers
-        if: always() && needs.detect-changes.outputs.chat == 'true'
-        run: |
-          docker rm -f "$PG_CONTAINER" 2>/dev/null || true
-          docker rm -f "$REDIS_CONTAINER" 2>/dev/null || true
@@ -122,6 +122,15 @@ jobs:
          # .gitea/ port are excluded so a sync between them stays clean.
          SELF_GITHUB=".github/workflows/secret-scan.yml"
          SELF_GITEA=".gitea/workflows/secret-scan.yml"
+          # Test fixtures: patterns_test.go contains credential-shaped
+          # fixture strings (e.g. ghp_EXAMPLE1111...) as intentional test
+          # inputs to verify the regex patterns. These are not real
+          # secrets — they are representative shape strings used to
+          # confirm the regex correctly matches the credential prefix +
+          # minimum-length suffix. Excluding the file keeps the scan
+          # focused on genuine leaks while allowing the test suite to
+          # contain representative credential shapes.
+          SELF_TESTS="workspace-server/internal/secrets/patterns_test.go"

          OFFENDING=""
          # `while IFS= read -r` (not `for f in $CHANGED`) so filenames
@@ -133,6 +142,7 @@ jobs:
            [ -z "$f" ] && continue
            [ "$f" = "$SELF_GITHUB" ] && continue
            [ "$f" = "$SELF_GITEA" ] && continue
+            [ "$f" = "$SELF_TESTS" ] && continue
            if [ -n "$DIFF_RANGE" ]; then
              ADDED=$(git diff --no-color --unified=0 "$BASE" "$HEAD" -- "$f" 2>/dev/null | grep -E '^\+[^+]' || true)
            else
@@ -0,0 +1 @@
+trigger
@@ -1,173 +0,0 @@
-import { test, expect } from "@playwright/test";
-import { startEchoRuntime } from "./fixtures/echo-runtime";
-import { seedWorkspace, startHeartbeat, cleanupWorkspace } from "./fixtures/chat-seed";
-
-
-test.describe("Desktop ChatTab", () => {
-  let cleanup: () => Promise<void> = async () => {};
-  let workspaceId = "";
-  let workspaceName = "";
-
-  test.beforeAll(async () => {
-    const echo = await startEchoRuntime();
-    const ws = await seedWorkspace(echo.baseURL);
-    workspaceId = ws.id;
-    workspaceName = ws.name;
-    const stopHeartbeat = startHeartbeat(ws.id, ws.authToken);
-
-    cleanup = async () => {
-      stopHeartbeat();
-      await echo.stop();
-    };
-  });
-
-  test.afterAll(async () => {
-    await cleanupWorkspace(workspaceId);
-    await cleanup();
-  });
-
-  test.beforeEach(async ({ page }) => {
-    await page.setViewportSize({ width: 1280, height: 800 });
-    await page.goto("/");
-    await page.waitForSelector(".react-flow__node", { timeout: 10_000 });
-    // Dismiss onboarding guide if present.
-    const skipGuide = page.getByText("Skip guide");
-    if (await skipGuide.isVisible().catch(() => false)) {
-      await skipGuide.click();
-    }
-    // Click the workspace node by its exact name label.
-    await page.getByText(workspaceName, { exact: true }).first().click();
-    // Wait for the side panel chat tab to be clickable, then click it.
-    await page.locator('#tab-chat').click();
-    await page.waitForSelector("[data-testid='chat-panel']", { timeout: 5_000 });
-    // Wait for the workspace status to flip to online and the textarea to be enabled.
-    await expect(page.locator("textarea").first()).toBeEnabled({ timeout: 15_000 });
-  });
-
-  test("chat panel loads without error", async ({ page }) => {
-    const hasEmptyState = await page.getByText("Send a message to start chatting.").isVisible().catch(() => false);
-    const hasHistory = await page.locator("[data-testid='chat-panel']").locator("div").count() > 3;
-    expect(hasEmptyState || hasHistory).toBeTruthy();
-  });
-
-  test("send text message and receive echo response", async ({ page }) => {
-    const textarea = page.locator("textarea").first();
-    await textarea.fill("What is the weather?");
-    await page.getByRole("button", { name: /Send/ }).first().click();
-
-    await expect(page.getByText("What is the weather?")).toBeVisible({ timeout: 5_000 });
-    await expect(page.getByText("Echo: What is the weather?")).toBeVisible({ timeout: 15_000 });
-  });
-
-  test("history persists across reload", async ({ page }) => {
-    const textarea = page.locator("textarea").first();
-    await textarea.fill("Persistence test");
-    await page.getByRole("button", { name: /Send/ }).first().click();
-
-    await expect(page.getByText("Echo: Persistence test")).toBeVisible({ timeout: 15_000 });
-
-    await page.reload();
-    await page.waitForSelector(".react-flow__node", { timeout: 10_000 });
-    await page.getByText(workspaceName, { exact: true }).first().click();
-    await page.locator('#tab-chat').click();
-    await page.waitForSelector("[data-testid='chat-panel']", { timeout: 5_000 });
-    // Wait for the workspace status to flip to online and the textarea to be enabled.
-    await expect(page.locator("textarea").first()).toBeEnabled({ timeout: 15_000 });
-
-    await expect(page.getByText("Persistence test", { exact: true })).toBeVisible({ timeout: 5_000 });
-    await expect(page.getByText("Echo: Persistence test")).toBeVisible({ timeout: 5_000 });
-  });
-
-  test("file attachment round-trip", async ({ page }) => {
-    const textarea = page.locator("textarea").first();
-    await textarea.fill("Please read this file");
-
-    const fileInput = page.locator("[data-testid='chat-panel'] input[type='file']").first();
-    await fileInput.setInputFiles({
-      name: "test.txt",
-      mimeType: "text/plain",
-      buffer: Buffer.from("secret content abc123"),
-    });
-
-    await expect(page.getByText("test.txt")).toBeVisible({ timeout: 3_000 });
-
-    await page.getByRole("button", { name: /Send/ }).first().click();
-
-    await expect(page.getByText("Echo: Please read this file")).toBeVisible({ timeout: 15_000 });
-  });
-
-  test("activity log appears during send", async ({ page }) => {
-    const textarea = page.locator("textarea").first();
-    await textarea.fill("Trigger activity");
-    await page.getByRole("button", { name: /Send/ }).first().click();
-
-    // Activity log container should appear during the send flow.
-    await expect(page.locator("[data-testid='activity-log']").first()).toBeVisible({ timeout: 10_000 }).catch(() => {
-      // Activity log may not be present in all layouts.
-    });
-  });
-});
-
-test.describe("Desktop ChatTab — Markdown rendering", () => {
-  let cleanup: () => Promise<void> = async () => {};
-  let workspaceId = "";
-  let workspaceName = "";
-
-  test.beforeAll(async () => {
-    const echo = await startEchoRuntime();
-    const ws = await seedWorkspace(echo.baseURL);
-    workspaceId = ws.id;
-    workspaceName = ws.name;
-    const stopHeartbeat = startHeartbeat(ws.id, ws.authToken);
-
-    cleanup = async () => {
-      stopHeartbeat();
-      await echo.stop();
-    };
-  });
-
-  test.afterAll(async () => {
-    await cleanupWorkspace(workspaceId);
-    await cleanup();
-  });
-
-  test.beforeEach(async ({ page }) => {
-    await page.setViewportSize({ width: 1280, height: 800 });
-    await page.goto("/");
-    await page.waitForSelector(".react-flow__node", { timeout: 10_000 });
-    const skipGuide2 = page.getByText("Skip guide");
-    if (await skipGuide2.isVisible().catch(() => false)) {
-      await skipGuide2.click();
-    }
-    await page.getByText(workspaceName, { exact: true }).first().click();
-    await page.locator('#tab-chat').click();
-    await page.waitForSelector("[data-testid='chat-panel']", { timeout: 5_000 });
-    // Wait for the workspace status to flip to online and the textarea to be enabled.
-    await expect(page.locator("textarea").first()).toBeEnabled({ timeout: 15_000 });
-  });
-
-  test("code block renders <pre>", async ({ page }) => {
-    const textarea = page.locator("textarea").first();
-    await textarea.fill("```js\nconst x = 1;\n```");
-    await page.getByRole("button", { name: /Send/ }).first().click();
-
-    await expect(page.getByText("Echo: ```js")).toBeVisible({ timeout: 15_000 });
-
-    const pre = page.locator("pre").first();
-    await expect(pre).toBeVisible({ timeout: 5_000 });
-    await expect(pre).toContainText("const x = 1;");
-  });
-
-  test("table renders <table>", async ({ page }) => {
-    const textarea = page.locator("textarea").first();
-    await textarea.fill("| A | B |\n|---|---|\n| 1 | 2 |");
-    await page.getByRole("button", { name: /Send/ }).first().click();
-
-    await expect(page.getByText("Echo: | A | B |")).toBeVisible({ timeout: 15_000 });
-
-    const table = page.locator("table").first();
-    await expect(table).toBeVisible({ timeout: 5_000 });
-    await expect(table).toContainText("A");
-    await expect(table).toContainText("1");
-  });
-});
@@ -1,97 +0,0 @@
-import { test, expect } from "@playwright/test";
-import { startEchoRuntime } from "./fixtures/echo-runtime";
-import { seedWorkspace, startHeartbeat, cleanupWorkspace } from "./fixtures/chat-seed";
-
-
-test.describe("MobileChat", () => {
-  let cleanup: () => Promise<void> = async () => {};
-  let workspaceId = "";
-
-  test.beforeAll(async () => {
-    const echo = await startEchoRuntime();
-    const ws = await seedWorkspace(echo.baseURL);
-    workspaceId = ws.id;
-    const stopHeartbeat = startHeartbeat(ws.id, ws.authToken);
-
-    cleanup = async () => {
-      stopHeartbeat();
-      await echo.stop();
-    };
-  });
-
-  test.afterAll(async () => {
-    await cleanupWorkspace(workspaceId);
-    await cleanup();
-  });
-
-  test.beforeEach(async ({ page }) => {
-    await page.setViewportSize({ width: 375, height: 812 });
-    // Navigate directly to the mobile chat view.
-    await page.goto(`/?m=chat&a=${workspaceId}`);
-    await page.waitForSelector("[data-testid='chat-panel']", { timeout: 10_000 });
-    // Wait for the workspace status to flip to online and the textarea to be enabled.
-    await expect(page.locator("textarea").first()).toBeEnabled({ timeout: 15_000 });
-    // Dismiss onboarding guide if present.
-    const skipGuide = page.getByText("Skip guide");
-    if (await skipGuide.isVisible().catch(() => false)) {
-      await skipGuide.click();
-    }
-  });
-
-  test("chat panel loads without error", async ({ page }) => {
-    const hasEmptyState = await page.getByText("Send a message to start chatting.").isVisible().catch(() => false);
-    const hasHistory = await page.locator("[data-testid='chat-panel']").locator("div").count() > 3;
-    expect(hasEmptyState || hasHistory).toBeTruthy();
-  });
-
-  test("send text message and receive echo response", async ({ page }) => {
-    const textarea = page.locator("textarea").first();
-    await textarea.fill("Mobile test message");
-    await page.getByRole("button", { name: /Send/ }).first().click();
-
-    await expect(page.getByText("Mobile test message")).toBeVisible({ timeout: 5_000 });
-    await expect(page.getByText("Echo: Mobile test message")).toBeVisible({ timeout: 15_000 });
-  });
-
-  test("history persists across reload", async ({ page }) => {
-    const textarea = page.locator("textarea").first();
-    await textarea.fill("Mobile persistence");
-    await page.getByRole("button", { name: /Send/ }).first().click();
-
-    await expect(page.getByText("Echo: Mobile persistence")).toBeVisible({ timeout: 15_000 });
-
-    await page.reload();
-    await page.waitForSelector("[data-testid='chat-panel']", { timeout: 10_000 });
-
-    await expect(page.getByText("Mobile persistence", { exact: true })).toBeVisible({ timeout: 5_000 });
-    await expect(page.getByText("Echo: Mobile persistence")).toBeVisible({ timeout: 5_000 });
-  });
-
-  test("composer auto-grows with multi-line text", async ({ page }) => {
-    const textarea = page.locator("textarea").first();
-    const initialHeight = await textarea.evaluate((el: HTMLElement) => el.offsetHeight);
-
-    await textarea.fill("Line 1\nLine 2\nLine 3\nLine 4\nLine 5");
-    await page.waitForTimeout(300);
-
-    const grownHeight = await textarea.evaluate((el: HTMLElement) => el.offsetHeight);
-    expect(grownHeight).toBeGreaterThan(initialHeight);
-  });
-
-  test("file attachment in mobile chat", async ({ page }) => {
-    const textarea = page.locator("textarea").first();
-    await textarea.fill("Mobile file test");
-
-    const fileInput = page.locator("[data-testid='chat-panel'] input[type='file']").first();
-    await fileInput.setInputFiles({
-      name: "mobile.txt",
-      mimeType: "text/plain",
-      buffer: Buffer.from("mobile secret"),
-    });
-
-    await expect(page.getByText("mobile.txt")).toBeVisible({ timeout: 3_000 });
-
-    await page.getByRole("button", { name: /Send/ }).first().click();
-    await expect(page.getByText("Echo: Mobile file test")).toBeVisible({ timeout: 15_000 });
-  });
-});
@@ -1,187 +0,0 @@
-/**
- * E2E seed fixture for chat tests.
- *
- * Creates an external workspace via the workspace-server API, extracts the
- * auto-minted auth token, then overrides the DB row so it appears "online"
- * with an echo-runtime URL.  External runtime is used because the health
- * sweep skips Docker checks for external workspaces; we keep the workspace
- * alive with periodic heartbeats.
- */
-
-import { randomUUID } from "node:crypto";
-
-const PLATFORM_URL = process.env.E2E_PLATFORM_URL ?? "http://localhost:8080";
-
-export interface SeededWorkspace {
-  id: string;
-  name: string;
-  agentURL: string;
-  authToken: string;
-}
-
-/**
- * Create an external workspace and wire it to the echo runtime.
- */
-export async function seedWorkspace(echoURL: string): Promise<SeededWorkspace> {
-  // 1. Create external workspace (no URL — platform will mint an auth token).
-  const runId = Math.random().toString(36).slice(2, 8);
-  const wsName = `Chat E2E Agent ${runId}`;
-  const createRes = await fetch(`${PLATFORM_URL}/workspaces`, {
-    method: "POST",
-    headers: { "Content-Type": "application/json" },
-    body: JSON.stringify({ name: wsName, tier: 1, external: true, runtime: "external" }),
-  });
-  if (!createRes.ok) {
-    const text = await createRes.text();
-    throw new Error(`Failed to create workspace: ${createRes.status} ${text}`);
-  }
-  const ws = (await createRes.json()) as {
-    id: string;
-    name: string;
-    connection?: { auth_token?: string };
-  };
-  const authToken = ws.connection?.auth_token;
-  if (!authToken) {
-    throw new Error("Workspace created but no auth_token returned");
-  }
-
-  // 2. Direct DB update: mark online + point url at echo runtime.
-  //    The platform blocks loopback URLs at the API layer (SSRF guard),
-  //    so we bypass via psql for local E2E.
-  const dbUrl = process.env.E2E_DATABASE_URL;
-  if (!dbUrl) {
-    throw new Error("E2E_DATABASE_URL must be set for DB seeding");
-  }
-  const pgRegex = /postgres:\/\/([^:]+):([^@]+)@([^:]+):(\d+)\/([^?]+)/;
-  const m = dbUrl.match(pgRegex);
-  if (!m) {
-    throw new Error(`Cannot parse E2E_DATABASE_URL: ${dbUrl}`);
-  }
-  const [, user, pass, host, port, db] = m;
-
-  // Pre-seed a platform_inbound_secret so chat file uploads don't trigger
-  // the lazy-heal 503 "retry in 30 s" path on first use.
-  const inboundSecret = Array.from({ length: 43 }, () =>
-    "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-_"[
-      Math.floor(Math.random() * 64)
-    ],
-  ).join("");
-
-  const psql = [
-    `PGPASSWORD=${pass} psql`,
-    `-h ${host} -p ${port} -U ${user} -d ${db}`,
-    `-c "UPDATE workspaces SET status = 'online', url = '${echoURL}', platform_inbound_secret = '${inboundSecret}' WHERE id = '${ws.id}'"`,
-  ].join(" ");
-
-  const { execSync } = await import("node:child_process");
-  try {
-    execSync(psql, { stdio: "pipe", timeout: 30_000 });
-  } catch (err) {
-    throw new Error(`DB update failed: ${err}`);
-  }
-
-  return { id: ws.id, name: wsName, agentURL: echoURL, authToken };
-}
-
-/**
- * Start a heartbeat interval that keeps an external workspace alive.
- * Returns a stop function.
- */
-export function startHeartbeat(
-  workspaceId: string,
-  authToken: string,
-  intervalMs = 30_000,
-): () => void {
-  const send = () => {
-    fetch(`${PLATFORM_URL}/registry/heartbeat`, {
-      method: "POST",
-      headers: {
-        "Content-Type": "application/json",
-        Authorization: `Bearer ${authToken}`,
-      },
-      body: JSON.stringify({
-        workspace_id: workspaceId,
-        error_rate: 0,
-        sample_error: "",
-        active_tasks: 0,
-        current_task: "",
-        uptime_seconds: 0,
-      }),
-    }).catch(() => {});
-  };
-
-  // Send immediately so the first heartbeat lands before the stale sweep.
-  send();
-  const timer = setInterval(send, intervalMs);
-
-  return () => clearInterval(timer);
-}
-
-/**
- * Seed chat-history rows for a workspace.
- */
-export async function seedChatHistory(
-  workspaceId: string,
-  messages: Array<{ role: "user" | "agent"; content: string }>,
-): Promise<void> {
-  const dbUrl = process.env.E2E_DATABASE_URL;
-  if (!dbUrl) return;
-
-  const pgRegex = /postgres:\/\/([^:]+):([^@]+)@([^:]+):(\d+)\/([^?]+)/;
-  const m = dbUrl.match(pgRegex);
-  if (!m) return;
-  const [, user, pass, host, port, db] = m;
-
-  const values = messages
-    .map(
-      (msg, i) =>
-        `('${randomUUID()}', '${workspaceId}', '${msg.role}', '${msg.content.replace(/'/g, "''")}', NOW() - INTERVAL '${messages.length - i} seconds')`,
-    )
-    .join(",");
-
-  const sql = `INSERT INTO chat_messages (id, workspace_id, role, content, created_at) VALUES ${values};`;
-
-  const { execSync } = await import("node:child_process");
-  const psql = `PGPASSWORD=${pass} psql -h ${host} -p ${port} -U ${user} -d ${db} -c "${sql}"`;
-  execSync(psql, { stdio: "pipe", timeout: 10_000 });
-}
-
-/**
- * Delete a seeded workspace row directly from the DB.
- * Uses psql (same credentials as seedWorkspace) so we bypass any
- * workspace-server side-effects (container stop, cascade cleanup, etc.)
- * that can race or 500 on external workspaces.
- */
-export async function cleanupWorkspace(workspaceId: string): Promise<void> {
-  const dbUrl = process.env.E2E_DATABASE_URL;
-  if (!dbUrl) return;
-
-  const pgRegex = /postgres:\/\/([^:]+):([^@]+)@([^:]+):(\d+)\/([^?]+)/;
-  const m = dbUrl.match(pgRegex);
-  if (!m) return;
-  const [, user, pass, host, port, db] = m;
-
-  const psql = `PGPASSWORD=${pass} psql -h ${host} -p ${port} -U ${user} -d ${db} -c "DELETE FROM workspaces WHERE id = '${workspaceId}'"`;
-
-  const { execSync } = await import("node:child_process");
-  try {
-    execSync(psql, { stdio: "pipe", timeout: 30_000 });
-  } catch {
-    // Best-effort cleanup; don't fail the test suite if the row is already gone.
-  }
-}
-
-/**
- * Mint a workspace auth token so the canvas can make authenticated API
- * calls (WorkspaceAuth middleware).
- */
-export async function mintTestToken(workspaceId: string): Promise<string> {
-  const res = await fetch(
-    `${PLATFORM_URL}/admin/workspaces/${workspaceId}/test-token`,
-  );
-  if (!res.ok) {
-    throw new Error(`Failed to mint test token: ${res.status}`);
-  }
-  const data = (await res.json()) as { auth_token: string };
-  return data.auth_token;
-}
@@ -1,180 +0,0 @@
-/**
- * Minimal A2A echo runtime for E2E tests.
- *
- * Listens on an ephemeral port, receives A2A JSON-RPC `message/send`
- * requests, and returns a response with the original text echoed back.
- * Also implements the workspace-side chat upload ingest endpoint so
- * file-attachment E2E can exercise the full upload → send → echo
- * round-trip.
- *
- * Usage (inside test fixture):
- *   const echo = await startEchoRuntime();
- *   // ... seed workspace with agent_url pointing to echo.baseURL ...
- *   echo.stop();
- */
-
-import { createServer, type Server } from "node:http";
-
-export interface EchoRuntime {
-  baseURL: string;
-  stop: () => Promise<void>;
-  lastRequest: { method: string; text: string; files: unknown[] } | null;
-}
-
-/** Parse a minimal multipart body and extract the first file's name + content. */
-function parseMultipart(body: Buffer): { name: string; mimeType: string; content: Buffer } | null {
-  // Find the boundary line (first line starting with "--").
-  const str = body.toString("binary");
-  const firstDash = str.indexOf("--");
-  if (firstDash === -1) return null;
-  const eol = str.indexOf("\r\n", firstDash);
-  if (eol === -1) return null;
-  const boundary = str.slice(firstDash + 2, eol);
-  const boundaryMarker = "\r\n--" + boundary;
-
-  // Find the first part that has a filename in Content-Disposition.
-  let pos = eol + 2;
-  while (pos < str.length) {
-    const nextBoundary = str.indexOf(boundaryMarker, pos);
-    if (nextBoundary === -1) break;
-    const part = str.slice(pos, nextBoundary);
-
-    const cdMatch = part.match(/Content-Disposition:[^\r\n]*filename="([^"]+)"/i);
-    if (cdMatch) {
-      const name = cdMatch[1];
-      const ctMatch = part.match(/Content-Type:\s*([^\r\n]+)/i);
-      const mimeType = ctMatch ? ctMatch[1].trim() : "application/octet-stream";
-      // Body starts after the first double-CRLF in the part.
-      const bodyStart = part.indexOf("\r\n\r\n");
-      if (bodyStart !== -1) {
-        // Extract the raw bytes (not the string) so binary is safe.
-        const headerBytes = Buffer.byteLength(part.slice(0, bodyStart + 4), "binary");
-        const partStartInBody = Buffer.byteLength(str.slice(0, pos + bodyStart + 4), "binary");
-        const partEndInBody = Buffer.byteLength(str.slice(0, nextBoundary), "binary");
-        const content = body.subarray(partStartInBody, partEndInBody);
-        return { name, mimeType, content };
-      }
-    }
-    pos = nextBoundary + boundaryMarker.length;
-    // Skip trailing "--" (end marker) or CRLF.
-    if (str.slice(pos, pos + 2) === "--") break;
-    if (str.slice(pos, pos + 2) === "\r\n") pos += 2;
-  }
-  return null;
-}
-
-export async function startEchoRuntime(): Promise<EchoRuntime> {
-  let lastRequest: EchoRuntime["lastRequest"] = null;
-
-  const server = createServer((req, res) => {
-    // CORS: allow the canvas origin (localhost:3000) to call us.
-    res.setHeader("Access-Control-Allow-Origin", "*");
-    res.setHeader("Access-Control-Allow-Methods", "POST, GET, OPTIONS");
-    res.setHeader("Access-Control-Allow-Headers", "Content-Type, Authorization");
-
-    if (req.method === "OPTIONS") {
-      res.writeHead(204);
-      res.end();
-      return;
-    }
-
-    const url = req.url ?? "/";
-
-    // Workspace-side chat upload ingest (RFC #2312).
-    if (url === "/internal/chat/uploads/ingest" && req.method === "POST") {
-      const chunks: Buffer[] = [];
-      req.on("data", (chunk: Buffer) => chunks.push(chunk));
-      req.on("end", () => {
-        const body = Buffer.concat(chunks);
-        const file = parseMultipart(body);
-        if (!file) {
-          res.writeHead(400);
-          res.end(JSON.stringify({ error: "no files field" }));
-          return;
-        }
-        const sanitized = file.name.replace(/[^a-zA-Z0-9._\-]/g, "_").replace(/ /g, "_");
-        const prefix = Array.from({ length: 32 }, () =>
-          Math.floor(Math.random() * 16).toString(16),
-        ).join("");
-        const response = {
-          files: [
-            {
-              uri: `workspace:/workspace/.molecule/chat-uploads/${prefix}-${sanitized}`,
-              name: sanitized,
-              mimeType: file.mimeType,
-              size: file.content.length,
-            },
-          ],
-        };
-        res.setHeader("Content-Type", "application/json");
-        res.writeHead(200);
-        res.end(JSON.stringify(response));
-      });
-      return;
-    }
-
-    // Default: A2A JSON-RPC handler.
-    let body = "";
-    req.setEncoding("utf8");
-    req.on("data", (chunk: string) => {
-      body += chunk;
-    });
-    req.on("end", () => {
-      res.setHeader("Content-Type", "application/json");
-      try {
-        const rpc = JSON.parse(body);
-        const msg = rpc.params?.message;
-        const textParts =
-          msg?.parts
-            ?.filter((p: { kind?: string; text?: string }) => p.kind === "text")
-            .map((p: { text?: string }) => p.text)
-            .filter(Boolean) ?? [];
-        const fileParts =
-          msg?.parts?.filter((p: { kind?: string }) => p.kind === "file") ?? [];
-        const text = textParts.join("\n");
-
-        lastRequest = {
-          method: rpc.method ?? "unknown",
-          text,
-          files: fileParts,
-        };
-
-        const replyText = text
-          ? `Echo: ${text}`
-          : fileParts.length > 0
-            ? "Echo: received your file(s)."
-            : "Echo: hello";
-
-        const response = {
-          jsonrpc: "2.0",
-          id: rpc.id ?? null,
-          result: {
-            parts: [{ kind: "text", text: replyText }],
-          },
-        };
-
-        res.writeHead(200);
-        res.end(JSON.stringify(response));
-      } catch {
-        res.writeHead(400);
-        res.end(JSON.stringify({ error: "invalid json" }));
-      }
-    });
-  });
-
-  await new Promise<void>((resolve) => server.listen(0, "127.0.0.1", resolve));
-  const address = server.address();
-  const port = typeof address === "object" && address ? address.port : 0;
-  const baseURL = `http://127.0.0.1:${port}`;
-
-  return {
-    baseURL,
-    stop: () =>
-      new Promise((resolve) => {
-        server.close(() => resolve(undefined));
-      }),
-    get lastRequest() {
-      return lastRequest;
-    },
-  };
-}
@@ -5,7 +5,6 @@ export default defineConfig({
  timeout: 30_000,
  expect: { timeout: 10_000 },
  fullyParallel: false,
-  workers: 1,
  retries: 0,
  use: {
    baseURL: "http://localhost:3000",
@@ -0,0 +1,97 @@
+"use client";
+
+import { useCallback } from "react";
+import { useCanvasStore } from "@/store/canvas";
+
+/** Org-wide broadcast banner.
+ *
+ * Rendered at the top of the canvas (below the toolbar) whenever the store
+ * holds one or more unread BROADCAST_MESSAGE entries. Each entry shows:
+ *   - sender name (workspace that issued the broadcast)
+ *   - the message text
+ *   - a dismiss button
+ *
+ * Dismissing an entry removes it from the store via consumeBroadcastMessages.
+ * The dismissed state is intentionally ephemeral — dismissed broadcasts reappear
+ * on page refresh since they are not persisted server-side; this is intentional
+ * (the platform's activity log already provides the audit trail).
+ */
+export function BroadcastBanner() {
+  const broadcastMessages = useCanvasStore((s) => s.broadcastMessages);
+  const consumeBroadcastMessages = useCanvasStore((s) => s.consumeBroadcastMessages);
+
+  const handleDismiss = useCallback(() => {
+    void consumeBroadcastMessages();
+  }, [consumeBroadcastMessages]);
+
+  if (broadcastMessages.length === 0) return null;
+
+  return (
+    <div className="fixed top-16 left-1/2 -translate-x-1/2 z-30 flex flex-col gap-2 items-center w-full max-w-xl px-4 pointer-events-none">
+      {broadcastMessages.map((msg) => (
+        <div
+          key={msg.id}
+          role="alert"
+          aria-live="polite"
+          aria-atomic="true"
+          className="pointer-events-auto w-full bg-blue-950/80 backdrop-blur-md border border-blue-700/50 rounded-xl px-5 py-3 shadow-2xl shadow-black/40 animate-in slide-in-from-top duration-300"
+        >
+          <div className="flex items-start gap-3">
+            {/* Megaphone icon */}
+            <div
+              aria-hidden="true"
+              className="w-7 h-7 rounded-lg bg-blue-900/50 flex items-center justify-center shrink-0 mt-0.5"
+            >
+              <svg
+                width="14"
+                height="14"
+                viewBox="0 0 24 24"
+                fill="none"
+                stroke="currentColor"
+                strokeWidth="2"
+                strokeLinecap="round"
+                strokeLinejoin="round"
+                className="text-blue-300"
+              >
+                <path d="M3 11l18-5v12L3 13v-2z" />
+                <path d="M11.6 16.8a3 3 0 1 1-5.8-1.6" />
+              </svg>
+            </div>
+
+            <div className="flex-1 min-w-0">
+              <div className="text-xs text-blue-300 font-semibold">
+                Broadcast from{" "}
+                <span className="text-blue-100">{msg.sender}</span>
+              </div>
+              <div className="text-sm text-blue-50 mt-0.5 leading-snug break-words">
+                {msg.message}
+              </div>
+            </div>
+
+            {/* Dismiss button */}
+            <button
+              type="button"
+              onClick={handleDismiss}
+              aria-label="Dismiss broadcast"
+              className="shrink-0 w-6 h-6 rounded text-blue-400 hover:text-blue-200 hover:bg-blue-800/50 flex items-center justify-center transition-colors focus:outline-none focus-visible:ring-2 focus-visible:ring-blue-400 focus-visible:ring-offset-1 focus-visible:ring-offset-blue-950"
+            >
+              <svg
+                width="12"
+                height="12"
+                viewBox="0 0 24 24"
+                fill="none"
+                stroke="currentColor"
+                strokeWidth="2.5"
+                strokeLinecap="round"
+                strokeLinejoin="round"
+                aria-hidden="true"
+              >
+                <path d="M18 6 6 18M6 6l12 12" />
+              </svg>
+            </button>
+          </div>
+        </div>
+      ))}
+    </div>
+  );
+}
@@ -21,6 +21,7 @@ import { CreateWorkspaceButton } from "./CreateWorkspaceDialog";
 import { ContextMenu } from "./ContextMenu";
 import { TemplatePalette } from "./TemplatePalette";
 import { ApprovalBanner } from "./ApprovalBanner";
+import { BroadcastBanner } from "./BroadcastBanner";
 import { BundleDropZone } from "./BundleDropZone";
 import { EmptyState } from "./EmptyState";
 import { OnboardingWizard } from "./OnboardingWizard";
@@ -367,6 +368,7 @@ function CanvasInner() {
        <OnboardingWizard />
        <Toolbar />
        <ApprovalBanner />
+        <BroadcastBanner />
        <BundleDropZone />
        <TemplatePalette />
        <SidePanel />
@@ -73,6 +73,8 @@ const mockStoreState = {
  clearSelection: vi.fn(),
  toggleNodeSelection: vi.fn(),
  deletingIds: new Set<string>(),
+  broadcastMessages: [],
+  consumeBroadcastMessages: vi.fn(() => []),
 };

 vi.mock("@/store/canvas", () => ({
@@ -100,6 +102,7 @@ vi.mock("../ConfirmDialog", () => ({ ConfirmDialog: () => null }));
 vi.mock("../TemplatePalette", () => ({ TemplatePalette: () => null }));
 vi.mock("../OnboardingWizard", () => ({ OnboardingWizard: () => null }));
 vi.mock("../ApprovalBanner", () => ({ ApprovalBanner: () => null }));
+vi.mock("../BroadcastBanner", () => ({ BroadcastBanner: () => null }));
 vi.mock("../BundleDropZone", () => ({ BundleDropZone: () => null }));
 vi.mock("../CreateWorkspaceDialog", () => ({ CreateWorkspaceButton: () => null }));
 vi.mock("../settings", () => ({
@@ -91,6 +91,8 @@ const mockStoreState = {
  // an empty Set mirrors the idle canvas and doesn't interact with
  // any pan/fit behaviour under test here.
  deletingIds: new Set<string>(),
+  broadcastMessages: [],
+  consumeBroadcastMessages: vi.fn(() => []),
 };

 vi.mock("@/store/canvas", () => ({
@@ -117,6 +119,7 @@ vi.mock("../ConfirmDialog", () => ({ ConfirmDialog: () => null }));
 vi.mock("../TemplatePalette", () => ({ TemplatePalette: () => null }));
 vi.mock("../OnboardingWizard", () => ({ OnboardingWizard: () => null }));
 vi.mock("../ApprovalBanner", () => ({ ApprovalBanner: () => null }));
+vi.mock("../BroadcastBanner", () => ({ BroadcastBanner: () => null }));
 vi.mock("../BundleDropZone", () => ({ BundleDropZone: () => null }));
 vi.mock("../CreateWorkspaceDialog", () => ({ CreateWorkspaceButton: () => null }));
 vi.mock("../settings", () => ({
@@ -6,21 +6,21 @@
 // attachments, no A2A topology overlay, no conversation tracing.

 import { useEffect, useMemo, useRef, useState } from "react";
-import ReactMarkdown from "react-markdown";
-import remarkGfm from "remark-gfm";

+import { api } from "@/lib/api";
 import { useCanvasStore } from "@/store/canvas";
-import { type ChatAttachment, type ChatMessage, createMessage } from "@/components/tabs/chat/types";
-import {
-  useChatHistory,
-  useChatSend,
-  useChatSocket,
-} from "@/components/tabs/chat/hooks";

 import { toMobileAgent } from "./components";
 import { MOBILE_FONT_MONO, MOBILE_FONT_SANS, usePalette } from "./palette";
 import { Icons, StatusDot, TierChip } from "./primitives";

+interface ChatMessage {
+  id: string;
+  role: "user" | "agent" | "system";
+  text: string;
+  ts: string;
+}
+
 const formatStoredTimestamp = (iso: string): string => {
  const d = new Date(iso);
  if (isNaN(d.getTime())) return "";
@@ -29,171 +29,30 @@ const formatStoredTimestamp = (iso: string): string => {

 type SubTab = "my" | "a2a";

-function MarkdownBubble({
-  children,
-  dark,
-  accent,
-}: {
-  children: string;
-  dark: boolean;
-  accent: string;
-}) {
-  const codeBg = dark ? "rgba(255,255,255,0.08)" : "rgba(0,0,0,0.06)";
-  const codeBlockBg = dark ? "#1a1a1a" : "#f5f5f0";
-  const linkColor = accent;
-  const quoteBorder = dark ? "rgba(255,250,240,0.15)" : "rgba(40,30,20,0.15)";
-
-  return (
-    <ReactMarkdown
-      remarkPlugins={[remarkGfm]}
-      components={{
-        p: ({ children }) => (
-          <div style={{ margin: "2px 0", lineHeight: "inherit" }}>{children}</div>
-        ),
-        a: ({ href, children }) => (
-          <a
-            href={href}
-            target="_blank"
-            rel="noopener noreferrer"
-            style={{ color: linkColor, textDecoration: "underline" }}
-          >
-            {children}
-          </a>
-        ),
-        pre: ({ children }) => (
-          <pre
-            style={{
-              background: codeBlockBg,
-              padding: "8px 10px",
-              borderRadius: 8,
-              overflow: "auto",
-              fontSize: 12,
-              lineHeight: 1.5,
-              fontFamily: MOBILE_FONT_MONO,
-              margin: "4px 0",
-            }}
-          >
-            {children}
-          </pre>
-        ),
-        code: ({ children, className }) => {
-          const isBlock = className != null && String(className).length > 0;
-          if (isBlock) {
-            return (
-              <code style={{ fontFamily: MOBILE_FONT_MONO, fontSize: 12 }}>
-                {children}
-              </code>
-            );
-          }
-          return (
-            <code
-              style={{
-                background: codeBg,
-                padding: "1px 4px",
-                borderRadius: 4,
-                fontSize: 13,
-                fontFamily: MOBILE_FONT_MONO,
-              }}
-            >
-              {children}
-            </code>
-          );
-        },
-        ul: ({ children }) => (
-          <ul style={{ margin: "4px 0", paddingLeft: 18, listStyle: "disc" }}>
-            {children}
-          </ul>
-        ),
-        ol: ({ children }) => (
-          <ol style={{ margin: "4px 0", paddingLeft: 18, listStyle: "decimal" }}>
-            {children}
-          </ol>
-        ),
-        li: ({ children }) => <li style={{ margin: "2px 0" }}>{children}</li>,
-        strong: ({ children }) => (
-          <strong style={{ fontWeight: 600 }}>{children}</strong>
-        ),
-        em: ({ children }) => <em style={{ fontStyle: "italic" }}>{children}</em>,
-        h1: ({ children }) => (
-          <div style={{ fontSize: 16, fontWeight: 700, margin: "4px 0" }}>{children}</div>
-        ),
-        h2: ({ children }) => (
-          <div style={{ fontSize: 15, fontWeight: 700, margin: "4px 0" }}>{children}</div>
-        ),
-        h3: ({ children }) => (
-          <div style={{ fontSize: 14, fontWeight: 700, margin: "4px 0" }}>{children}</div>
-        ),
-        h4: ({ children }) => (
-          <div style={{ fontSize: 14, fontWeight: 600, margin: "4px 0" }}>{children}</div>
-        ),
-        h5: ({ children }) => (
-          <div style={{ fontSize: 13, fontWeight: 600, margin: "4px 0" }}>{children}</div>
-        ),
-        h6: ({ children }) => (
-          <div style={{ fontSize: 13, fontWeight: 600, margin: "4px 0" }}>{children}</div>
-        ),
-        blockquote: ({ children }) => (
-          <blockquote
-            style={{
-              borderLeft: `2px solid ${quoteBorder}`,
-              margin: "4px 0",
-              paddingLeft: 8,
-              opacity: 0.85,
-            }}
-          >
-            {children}
-          </blockquote>
-        ),
-        hr: () => (
-          <hr
-            style={{
-              border: "none",
-              borderTop: `0.5px solid ${quoteBorder}`,
-              margin: "6px 0",
-            }}
-          />
-        ),
-        table: ({ children }) => (
-          <table
-            style={{
-              borderCollapse: "collapse",
-              fontSize: 13,
-              margin: "4px 0",
-              width: "100%",
-            }}
-          >
-            {children}
-          </table>
-        ),
-        thead: ({ children }) => <thead style={{ fontWeight: 600 }}>{children}</thead>,
-        th: ({ children }) => (
-          <th
-            style={{
-              border: `0.5px solid ${quoteBorder}`,
-              padding: "4px 6px",
-              textAlign: "left",
-            }}
-          >
-            {children}
-          </th>
-        ),
-        td: ({ children }) => (
-          <td
-            style={{
-              border: `0.5px solid ${quoteBorder}`,
-              padding: "4px 6px",
-            }}
-          >
-            {children}
-          </td>
-        ),
-      }}
-    >
-      {children}
-    </ReactMarkdown>
-  );
+interface A2AResponseShape {
+  result?: {
+    parts?: Array<{ kind?: string; text?: string }>;
+  };
+  error?: { message?: string };
 }

+// Wire shape for GET /workspaces/:id/chat-history (chat_history.go → ChatHistoryResponse).
+interface ApiChatMessage {
+  id: string;
+  role: string; // "user" | "agent" | "system"
+  content: string;
+  timestamp: string;
+  attachments?: Array<{ name: string; uri: string; mimeType?: string; size?: number }>;
+}
+
+interface ChatHistoryResponse {
+  messages: ApiChatMessage[];
+  reached_end: boolean;
+}
+
+const formatTime = (date: Date) =>
+  date.toLocaleTimeString([], { hour: "numeric", minute: "2-digit" });
+
 export function MobileChat({
  agentId,
  dark,
@@ -204,40 +63,36 @@ export function MobileChat({
  onBack: () => void;
 }) {
  const p = usePalette(dark);
+  // Selecting `nodes` stably avoids the `.find()` anti-pattern that
+  // creates a new return value on every store update (React error #185).
  const nodes = useCanvasStore((s) => s.nodes);
  const node = useMemo(() => nodes.find((n) => n.id === agentId), [nodes, agentId]);
+  // Bootstrap from the canvas store's per-workspace message buffer so the
+  // user sees their prior thread on entry. The store is updated by the
+  // socket → ChatTab flows the desktop runs; on mobile we read from the
+  // same buffer to keep state coherent across viewports.
+  // NOTE: selector returns undefined (stable) — do NOT use ?? [] here,
+  // that creates a new [] reference on every store update when the key is
+  // absent, causing infinite re-render (React error #185).
+  const storedMessages = useCanvasStore((s) => s.agentMessages[agentId]);
+  // Start empty — history is loaded via useEffect below.
+  const [messages, setMessages] = useState<ChatMessage[]>([]);
  const [draft, setDraft] = useState("");
  const [tab, setTab] = useState<SubTab>("my");
+  const [sending, setSending] = useState(false);
+  const [error, setError] = useState<string | null>(null);
+  const [loading, setLoading] = useState(true); // history is loading on mount
+  const [historyError, setHistoryError] = useState<string | null>(null);
  const scrollRef = useRef<HTMLDivElement>(null);
+  // Synchronous re-entry guard. `setSending(true)` schedules a state
+  // update but doesn't flush before a second tap can fire send() — a ref
+  // mirrors the desktop ChatTab pattern (sendInFlightRef) and closes the
+  // double-send race a stale `sending` lets through.
+  const sendInFlightRef = useRef(false);
  const composerRef = useRef<HTMLTextAreaElement>(null);
-  const fileInputRef = useRef<HTMLInputElement>(null);
-  const [pendingFiles, setPendingFiles] = useState<File[]>([]);
-
-  const {
-    messages,
-    loading: historyLoading,
-    loadError: historyError,
-    loadInitial,
-    appendMessageDeduped,
-  } = useChatHistory(agentId);
-
-  const {
-    sending,
-    uploading,
-    sendMessage,
-    error: sendError,
-    clearError,
-    releaseSendGuards,
-  } = useChatSend(agentId, {
-    getHistoryMessages: () => messages,
-    onUserMessage: appendMessageDeduped,
-    onAgentMessage: appendMessageDeduped,
-  });
-
-  useChatSocket(agentId, {
-    onAgentMessage: appendMessageDeduped,
-    onSendComplete: releaseSendGuards,
-  });
+  // Guard: don't treat the initial store population as a live push.
+  // Set to false after the first render completes.
+  const initDoneRef = useRef(false);

  // Auto-grow the textarea: reset height to 'auto' so the scrollHeight
  // shrinks when the user deletes text, then size to scrollHeight up to
@@ -250,26 +105,81 @@ export function MobileChat({
    el.style.height = `${next}px`;
  }, [draft]);

+  // Fetch chat history on mount; keep merging live agentMessages while the
+  // panel is open. InitDoneRef prevents the initial store snapshot from
+  // triggering the live-merge path (the store buffer is populated by
+  // ChatTab on desktop, not on mobile — this effect loads history as the
+  // mobile-native path).
+  useEffect(() => {
+    let cancelled = false;
+
+    const mapApiMessage = (m: ApiChatMessage): ChatMessage => ({
+      id: m.id,
+      role: m.role === "user" ? "user" : "agent",
+      text: m.content,
+      ts: formatStoredTimestamp(m.timestamp),
+    });
+
+    const syncLive = () => {
+      const live = useCanvasStore.getState().agentMessages[agentId] ?? [];
+      if (live.length > 0) {
+        setMessages((prev) => {
+          const existingIds = new Set(prev.map((m) => m.id));
+          const newOnes = live
+            .filter((m) => !existingIds.has(m.id))
+            .map((m) => ({
+              id: m.id,
+              role: "agent" as const,
+              text: m.content,
+              ts: formatStoredTimestamp(m.timestamp),
+            }));
+          return newOnes.length > 0 ? [...prev, ...newOnes] : prev;
+        });
+      }
+    };
+
+    const bootstrap = async (): Promise<(() => void) | undefined> => {
+      setLoading(true);
+      setHistoryError(null);
+      try {
+        const res = await api.get<ChatHistoryResponse>(
+          `/workspaces/${agentId}/chat-history?limit=50`,
+        );
+        if (cancelled) return;
+        const initial = (res.messages ?? []).map(mapApiMessage);
+        setMessages(initial);
+        // Mark init done BEFORE marking loading=false so any store push
+        // that arrives in the same tick is treated as live, not init.
+        initDoneRef.current = true;
+        setLoading(false);
+        // Subscribe to live pushes after init is complete.
+        syncLive();
+        const unsubscribe = useCanvasStore.subscribe(syncLive);
+        return unsubscribe; // returned for cleanup
+      } catch (e) {
+        if (cancelled) return;
+        setHistoryError(e instanceof Error ? e.message : "Failed to load chat history");
+        setLoading(false);
+        initDoneRef.current = true;
+        return undefined;
+      }
+    };
+
+    let maybeUnsubscribe: (() => void) | undefined;
+    bootstrap().then((fn) => { maybeUnsubscribe = fn; });
+
+    return () => {
+      cancelled = true;
+      if (maybeUnsubscribe) maybeUnsubscribe();
+    };
+  }, [agentId]);
+
  useEffect(() => {
    if (scrollRef.current) {
      scrollRef.current.scrollTop = scrollRef.current.scrollHeight;
    }
  }, [messages]);

-  // Consume any agent messages that arrived while history was loading.
-  const initialConsumeDoneRef = useRef(false);
-  useEffect(() => {
-    if (historyLoading || initialConsumeDoneRef.current) return;
-    initialConsumeDoneRef.current = true;
-    const consume = useCanvasStore.getState().consumeAgentMessages;
-    const msgs = consume(agentId);
-    for (const m of msgs) {
-      appendMessageDeduped(
-        createMessage("agent", m.content, m.attachments),
-      );
-    }
-  }, [historyLoading, agentId, appendMessageDeduped]);
-
  if (!node) {
    return (
      <div
@@ -291,32 +201,58 @@ export function MobileChat({
  const a = toMobileAgent(node);
  const reachable = a.status === "online" || a.status === "degraded";

-  const onFilesPicked = (fileList: FileList | null) => {
-    if (!fileList) return;
-    const picked = Array.from(fileList);
-    setPendingFiles((prev) => {
-      const keyed = new Set(prev.map((f) => `${f.name}:${f.size}`));
-      return [...prev, ...picked.filter((f) => !keyed.has(`${f.name}:${f.size}`))];
-    });
-    if (fileInputRef.current) fileInputRef.current.value = "";
-  };
-
-  const removePendingFile = (index: number) =>
-    setPendingFiles((prev) => prev.filter((_, i) => i !== index));
-
  const send = async () => {
    const text = draft.trim();
-    if ((!text && pendingFiles.length === 0) || sending || !reachable) return;
-    clearError();
+    if (!text || sending || !reachable) return;
+    if (sendInFlightRef.current) return;
+    sendInFlightRef.current = true;
    setDraft("");
-    const files = pendingFiles;
-    setPendingFiles([]);
-    await sendMessage(text, files);
+    setError(null);
+    setSending(true);
+    const myMsg: ChatMessage = {
+      id: crypto.randomUUID(),
+      role: "user",
+      text,
+      ts: formatTime(new Date()),
+    };
+    setMessages((m) => [...m, myMsg]);
+
+    try {
+      const res = await api.post<A2AResponseShape>(`/workspaces/${agentId}/a2a`, {
+        method: "message/send",
+        params: {
+          message: {
+            role: "user",
+            messageId: crypto.randomUUID(),
+            parts: [{ kind: "text", text }],
+          },
+        },
+      });
+      const reply =
+        res.result?.parts?.find((part) => part.kind === "text")?.text ?? "";
+      if (reply) {
+        setMessages((m) => [
+          ...m,
+          {
+            id: crypto.randomUUID(),
+            role: "agent",
+            text: reply,
+            ts: formatTime(new Date()),
+          },
+        ]);
+      } else if (res.error?.message) {
+        setError(res.error.message);
+      }
+    } catch (e) {
+      setError(e instanceof Error ? e.message : "Failed to send");
+    } finally {
+      setSending(false);
+      sendInFlightRef.current = false;
+    }
  };

  return (
    <div
-      data-testid="chat-panel"
      style={{
        height: "100%",
        display: "flex",
@@ -457,12 +393,13 @@ export function MobileChat({
            Agent Comms — peer-to-peer A2A traffic surfaces in the Comms tab.
          </div>
        )}
-        {tab === "my" && historyLoading && (
+        {tab === "my" && loading && (
          <div style={{ padding: "20px 4px", textAlign: "center", color: p.text3, fontSize: 13 }}>
-            Loading chat history…
+            <div style={{ marginBottom: 6, opacity: 0.6, animation: "spin 1s linear infinite", display: "inline-block", fontSize: 16 }}>⟳</div>
+            <div>Loading chat history…</div>
          </div>
        )}
-        {tab === "my" && !historyLoading && historyError && messages.length === 0 && (
+        {tab === "my" && !loading && historyError && (
          <div
            role="alert"
            style={{
@@ -476,7 +413,25 @@ export function MobileChat({
            <button
              type="button"
              onClick={() => {
-                loadInitial();
+                setLoading(true);
+                setHistoryError(null);
+                api.get(`/workspaces/${agentId}/chat-history?limit=50`).then(
+                  (res: unknown) => {
+                    const r = res as ChatHistoryResponse;
+                    setMessages((r.messages ?? []).map((m) => ({
+                      id: m.id,
+                      role: m.role === "user" ? "user" : "agent",
+                      text: m.content,
+                      ts: formatStoredTimestamp(m.timestamp),
+                    })));
+                    setLoading(false);
+                    initDoneRef.current = true;
+                  },
+                ).catch((e: unknown) => {
+                  setHistoryError(e instanceof Error ? e.message : "Failed to load");
+                  setLoading(false);
+                  initDoneRef.current = true;
+                });
              }}
              style={{
                padding: "6px 14px",
@@ -492,7 +447,7 @@ export function MobileChat({
            </button>
          </div>
        )}
-        {tab === "my" && !historyLoading && !historyError && messages.length === 0 && (
+        {tab === "my" && !loading && !historyError && messages.length === 0 && (
          <div style={{ padding: "20px 4px", textAlign: "center", color: p.text3, fontSize: 13 }}>
            Send a message to start chatting.
          </div>
@@ -521,9 +476,7 @@ export function MobileChat({
                    overflowWrap: "anywhere",
                  }}
                >
-                  <MarkdownBubble dark={dark} accent={p.accent}>
-                    {m.content}
-                  </MarkdownBubble>
+                  {m.text}
                  <div
                    style={{
                      fontSize: 10,
@@ -532,13 +485,13 @@ export function MobileChat({
                      fontFamily: MOBILE_FONT_MONO,
                    }}
                  >
-                    {formatStoredTimestamp(m.timestamp)}
+                    {m.ts}
                  </div>
                </div>
              </div>
            );
          })}
-        {sendError && (
+        {error && (
          <div
            role="alert"
            style={{
@@ -550,7 +503,7 @@ export function MobileChat({
              fontSize: 12,
            }}
          >
-            {sendError}
+            {error}
          </div>
        )}
      </div>
@@ -581,60 +534,6 @@ export function MobileChat({
          backdropFilter: "blur(14px)",
        }}
      >
-        {pendingFiles.length > 0 && (
-          <div
-            style={{
-              display: "flex",
-              flexWrap: "wrap",
-              gap: 6,
-              marginBottom: 8,
-              paddingLeft: 2,
-            }}
-          >
-            {pendingFiles.map((f, i) => (
-              <div
-                key={`${f.name}:${f.size}`}
-                style={{
-                  display: "flex",
-                  alignItems: "center",
-                  gap: 4,
-                  padding: "3px 8px",
-                  borderRadius: 10,
-                  background: dark ? "#2a2823" : "#ece9e0",
-                  fontSize: 12,
-                  color: p.text2,
-                  maxWidth: "100%",
-                }}
-              >
-                <span
-                  style={{
-                    overflow: "hidden",
-                    textOverflow: "ellipsis",
-                    whiteSpace: "nowrap",
-                  }}
-                >
-                  {f.name}
-                </span>
-                <button
-                  type="button"
-                  onClick={() => removePendingFile(i)}
-                  aria-label={`Remove ${f.name}`}
-                  style={{
-                    border: "none",
-                    background: "transparent",
-                    color: p.text3,
-                    cursor: "pointer",
-                    fontSize: 12,
-                    padding: 0,
-                    lineHeight: 1,
-                  }}
-                >
-                  ✕
-                </button>
-              </div>
-            ))}
-          </div>
-        )}
        <div
          style={{
            display: "flex",
@@ -646,32 +545,21 @@ export function MobileChat({
            padding: "6px 6px 6px 12px",
          }}
        >
-          <input
-            ref={fileInputRef}
-            type="file"
-            multiple
-            style={{ display: "none" }}
-            onChange={(e) => onFilesPicked(e.target.files)}
-            aria-hidden="true"
-          />
          <button
            type="button"
-            onClick={() => fileInputRef.current?.click()}
-            disabled={!reachable || sending || uploading}
            aria-label="Attach"
            style={{
              width: 32,
              height: 32,
              borderRadius: 999,
              border: "none",
-              cursor: reachable && !sending && !uploading ? "pointer" : "not-allowed",
+              cursor: "pointer",
              background: "transparent",
              color: p.text3,
              flexShrink: 0,
              display: "flex",
              alignItems: "center",
              justifyContent: "center",
-              opacity: !reachable || sending || uploading ? 0.4 : 1,
            }}
          >
            {Icons.attach({ size: 16 })}
@@ -717,32 +605,28 @@ export function MobileChat({
          <button
            type="button"
            onClick={send}
-            disabled={(!draft.trim() && pendingFiles.length === 0) || !reachable || sending || uploading}
+            disabled={!draft.trim() || !reachable || sending}
            aria-label="Send"
            style={{
              width: 36,
              height: 36,
              borderRadius: 999,
              border: "none",
-              cursor: (draft.trim() || pendingFiles.length > 0) && !sending && !uploading ? "pointer" : "not-allowed",
+              cursor: draft.trim() && !sending ? "pointer" : "not-allowed",
              flexShrink: 0,
              background:
-                (draft.trim() || pendingFiles.length > 0) && reachable && !sending && !uploading
+                draft.trim() && reachable && !sending
                  ? p.accent
                  : dark
                    ? "#2a2823"
                    : "#ece9e0",
-              color: (draft.trim() || pendingFiles.length > 0) && reachable && !sending && !uploading ? "#fff" : p.text3,
+              color: draft.trim() && reachable && !sending ? "#fff" : p.text3,
              display: "flex",
              alignItems: "center",
              justifyContent: "center",
            }}
          >
-            {uploading ? (
-              <span style={{ fontSize: 10, fontWeight: 600 }}>↑</span>
-            ) : (
-              Icons.send({ size: 16 })
-            )}
+            {Icons.send({ size: 16 })}
          </button>
        </div>
      </div>
@@ -214,7 +214,6 @@ export function MobileDetail({
        <button
          type="button"
          onClick={onChat}
-          data-testid="mobile-chat-cta"
          style={{
            width: "100%",
            height: 52,
@@ -36,7 +36,6 @@ const mockStoreState = {
    height?: number;
  }>,
  agentMessages: {} as Record<string, Array<{ id: string; content: string; timestamp: string }>>,
-  consumeAgentMessages: () => [],
 };

 vi.mock("@/store/canvas", () => ({
@@ -358,7 +357,7 @@ describe("MobileChat — chat history", () => {
      renderChat(mockAgentId);
    });
    expect(api.get).toHaveBeenCalledWith(
-      expect.stringContaining(`/workspaces/${mockAgentId}/chat-history`),
+      `/workspaces/${mockAgentId}/chat-history?limit=50`,
    );
  });

@@ -288,7 +288,6 @@ export function AgentCard({
  return (
    <button
      type="button"
-      data-testid="workspace-card"
      aria-label={`${agent.name}, status: ${agent.status}, tier ${agent.tier}${agent.remote ? ", remote" : ""}`}
      onClick={onClick}
      style={{
@@ -5,19 +5,16 @@ import ReactMarkdown from "react-markdown";
 import remarkGfm from "remark-gfm";
 import { api } from "@/lib/api";
 import { useCanvasStore, type WorkspaceNodeData } from "@/store/canvas";
+import { useSocketEvent } from "@/hooks/useSocketEvent";
 import { type ChatMessage, type ChatAttachment, createMessage, appendMessageDeduped } from "./chat/types";
-import { downloadChatFile, isPlatformAttachment } from "./chat/uploads";
+import { uploadChatFiles, downloadChatFile, isPlatformAttachment } from "./chat/uploads";
 import { PendingAttachmentPill } from "./chat/AttachmentViews";
 import { AttachmentPreview } from "./chat/AttachmentPreview";
+import { extractFilesFromTask } from "./chat/message-parser";
 import { AgentCommsPanel } from "./chat/AgentCommsPanel";
 import { appendActivityLine } from "./chat/activityLog";
 import { runtimeDisplayName } from "@/lib/runtime-names";
 import { ConfirmDialog } from "@/components/ConfirmDialog";
-import { useChatHistory } from "./chat/hooks/useChatHistory";
-import { useChatSend } from "./chat/hooks/useChatSend";
-import { useChatSocket } from "./chat/hooks/useChatSocket";
-
-export { extractReplyText } from "./chat/hooks/useChatSend";

 interface Props {
  workspaceId: string;
@@ -26,6 +23,147 @@ interface Props {

 type ChatSubTab = "my-chat" | "agent-comms";

+// A2A response shape (subset). The full schema is in @a2a-js/sdk but we only
+// need parts/artifacts text + file extraction for the synchronous fallback.
+interface A2AFileRef {
+  name?: string;
+  mimeType?: string;
+  uri?: string;
+  bytes?: string;
+  size?: number;
+}
+// Outbound shape matches a2a-sdk's JSON-RPC `SendMessageRequest`
+// Pydantic union (TextPart | FilePart | DataPart). The flat
+// protobuf shape `{url, filename, mediaType}` is rejected at the
+// request boundary with `Field required` errors — keep this
+// outbound shape unless a2a-sdk migrates the JSON-RPC schema.
+interface A2APart {
+  kind: string;
+  text?: string;
+  file?: A2AFileRef;
+}
+interface A2AResponse {
+  result?: {
+    parts?: A2APart[];
+    artifacts?: Array<{ parts: A2APart[] }>;
+  };
+}
+
+// Internal-self-message filtering moved server-side in RFC #2945
+// PR-C/D — the platform's /chat-history endpoint applies the
+// IsInternalSelfMessage predicate before returning rows, so the
+// client no longer needs the local backstop on the history path.
+// The proper fix is still X-Workspace-ID header (source_id=workspace_id);
+// the platform-side prefix filter handles the residual cases.
+
+// extractReplyText pulls the agent's text reply out of an A2A response.
+// Concatenates ALL text parts (joined with "\n") rather than returning
+// just the first. Claude Code and other runtimes commonly emit multi-
+// part text replies for long content (markdown tables, code blocks),
+// and the prior "first part wins" implementation silently truncated
+// the rest — observed on a 15k-char Wave 1 brief that rendered only
+// the table header. Mirrors extractTextsFromParts in message-parser.ts.
+//
+// Server-side counterpart in workspace-server/internal/channels/
+// manager.go has the same single-part bug; fix that too if/when a
+// channel-delivered reply (Slack, Lark, etc.) gets truncated.
+export function extractReplyText(resp: A2AResponse): string {
+  const collect = (parts: A2APart[] | undefined): string => {
+    if (!parts) return "";
+    return parts
+      .filter((p) => p.kind === "text")
+      .map((p) => p.text ?? "")
+      .filter(Boolean)
+      .join("\n");
+  };
+  const result = resp?.result;
+  const collected: string[] = [];
+  const fromParts = collect(result?.parts);
+  if (fromParts) collected.push(fromParts);
+  // Walk artifacts even if parts had text — some producers (Hermes
+  // tool calls) emit a summary in parts AND details in artifacts.
+  // Returning early on parts dropped the artifact body silently.
+  if (result?.artifacts) {
+    for (const a of result.artifacts) {
+      const t = collect(a.parts);
+      if (t) collected.push(t);
+    }
+  }
+  return collected.join("\n");
+}
+
+// Agent-returned files live on the same response shape as text —
+// delegated to extractFilesFromTask in message-parser.ts, which also
+// walks status.message.parts (that ChatTab's legacy text extractor
+// doesn't). Single source of truth for file-part parsing across
+// live chat, activity log replay, and any future consumers.
+
+/** Initial chat history page size. The newest N messages are rendered
+ *  on first paint; older history is fetched on demand via loadOlder()
+ *  when the user scrolls the top sentinel into view. */
+const INITIAL_HISTORY_LIMIT = 10;
+/** Subsequent older-history batch size. Larger than INITIAL so a long
+ *  scroll-back doesn't fan out into many round-trips. */
+const OLDER_HISTORY_BATCH = 20;
+
+/**
+ * Load chat history from the platform's typed /chat-history endpoint.
+ *
+ * Server-side rendering of activity_logs rows into ChatMessage shape
+ * lives in workspace-server/internal/messagestore/postgres_store.go
+ * (RFC #2945 PR-C/D). The server already applies the canvas-source
+ * filter, the internal-self-message predicate, the role decision
+ * (status=error vs agent-error prefix → system), and the v0/v1
+ * file-shape extraction. Canvas just renders what it receives.
+ *
+ * Wire shape (mirrors ChatMessage exactly, no per-row mapping needed):
+ *
+ *   GET /workspaces/:id/chat-history?limit=N&before_ts=T
+ *   200 → {"messages": ChatMessage[], "reached_end": boolean}
+ *
+ * Pagination:
+ *  - Pass `limit` to bound the page size (newest-first from server).
+ *  - Pass `beforeTs` (RFC3339) to fetch rows STRICTLY OLDER than that
+ *    timestamp. Combined with limit, this yields the next-older page
+ *    when scrolling backward through history.
+ *
+ * `reachedEnd` is propagated from the server. The server computes it
+ * by comparing rowCount vs limit so a partial last page is correctly
+ * detected even when the row→bubble fan-out is non-1:1 (each row
+ * produces 1-2 bubbles).
+ */
+async function loadMessagesFromDB(
+  workspaceId: string,
+  limit: number,
+  beforeTs?: string,
+): Promise<{ messages: ChatMessage[]; error: string | null; reachedEnd: boolean }> {
+  try {
+    const params = new URLSearchParams({ limit: String(limit) });
+    if (beforeTs) params.set("before_ts", beforeTs);
+    const resp = await api.get<{ messages: ChatMessage[]; reached_end: boolean }>(
+      `/workspaces/${workspaceId}/chat-history?${params.toString()}`,
+    );
+
+    // Server emits oldest-first within the page (RFC #2945 PR-C-2
+    // post-fix: server reverses row-aware before returning so the
+    // wire is display-ready). Canvas appends/prepends without
+    // reordering — this avoids the pair-flip bug a naive flat
+    // reverse causes when each row produces a (user, agent) pair
+    // with the same timestamp.
+    return {
+      messages: resp.messages ?? [],
+      error: null,
+      reachedEnd: resp.reached_end,
+    };
+  } catch (err) {
+    return {
+      messages: [],
+      error: err instanceof Error ? err.message : "Failed to load chat history",
+      reachedEnd: true,
+    };
+  }
+}
+
 /**
 * ChatTab container — renders sub-tab bar + My Chat or Agent Comms panel.
 */
@@ -33,7 +171,7 @@ export function ChatTab({ workspaceId, data }: Props) {
  const [subTab, setSubTab] = useState<ChatSubTab>("my-chat");

  return (
-    <div data-testid="chat-panel" className="flex flex-col h-full">
+    <div className="flex flex-col h-full">
      {/* Sub-tab bar — role="tablist" so screen readers expose tab context */}
      <div
        role="tablist"
@@ -109,68 +247,268 @@ export function ChatTab({ workspaceId, data }: Props) {
 * MyChatPanel — user↔agent conversation (extracted from original ChatTab).
 */
 function MyChatPanel({ workspaceId, data }: Props) {
+  const [messages, setMessages] = useState<ChatMessage[]>([]);
  const [input, setInput] = useState("");
-  const [pendingFiles, setPendingFiles] = useState<File[]>([]);
-  const [activityLog, setActivityLog] = useState<string[]>([]);
+  // `sending` is strictly the "this tab kicked off a send and hasn't
+  // seen the reply yet" signal. Previously this was initialized from
+  // data.currentTask to pick up in-flight agent work on mount, but
+  // that conflated agent-busy (workspace heartbeat) with user-
+  // in-flight (local send): when the WS dropped a TASK_COMPLETE event,
+  // currentTask lingered, the component re-mounted with sending=true,
+  // and the Send button stayed disabled forever even though nothing
+  // local was in flight. For the "agent is busy, show spinner" UX,
+  // use data.currentTask directly in the render path.
+  const [sending, setSending] = useState(false);
  const [thinkingElapsed, setThinkingElapsed] = useState(0);
+  const [activityLog, setActivityLog] = useState<string[]>([]);
+  const [loading, setLoading] = useState(true);
+  const [loadError, setLoadError] = useState<string | null>(null);
+  const currentTaskRef = useRef(data.currentTask);
+  const sendingFromAPIRef = useRef(false);
  const [agentReachable, setAgentReachable] = useState(false);
  const [error, setError] = useState<string | null>(null);
  const [confirmRestart, setConfirmRestart] = useState(false);
-  const [dragOver, setDragOver] = useState(false);
-
+  const bottomRef = useRef<HTMLDivElement>(null);
+  // First-mount scroll-to-bottom needs `behavior: "instant"` — long
+  // conversations smooth-animate for ~300ms which any concurrent
+  // re-render can interrupt, leaving the user stuck mid-conversation
+  // when the chat tab opens. Subsequent appends (new agent messages)
+  // keep `smooth` for the visual "landing" feel. Flipped the first
+  // time messages.length goes positive, so a workspace switch (which
+  // remounts ChatTab) gets a fresh instant jump too.
+  const hasInitialScrollRef = useRef(false);
+  // Lazy-load older history on scroll-up.
+  // - containerRef = the scrollable messages viewport
+  // - topRef       = sentinel above the messages list; IO observes it
+  //                  and triggers loadOlder() when it enters view
+  // - hasMore      = false once a fetch returns < limit rows; stops IO
+  // - loadingOlder = drives the "Loading older messages…" UI label
+  // - inflightRef  = synchronous guard against double-entry of loadOlder
+  //                  when the IO callback fires twice in the same
+  //                  microtask (state-based guard would be stale until
+  //                  the next React commit)
+  // - scrollAnchorRef = saves distance-from-bottom before a prepend
+  //                  so the useLayoutEffect below can restore the
+  //                  user's exact viewport position. Without this,
+  //                  prepending older messages would jump the scroll
+  //                  position by the height of the new content.
+  // - oldestMessageRef / hasMoreRef = let the loadOlder closure read
+  //                  the latest values without taking them as deps —
+  //                  every live agent push mutates `messages`, and
+  //                  having loadOlder depend on `messages` would tear
+  //                  down + re-arm the IntersectionObserver on every
+  //                  push. Refs decouple the observer lifecycle from
+  //                  message-list updates.
  const containerRef = useRef<HTMLDivElement>(null);
  const topRef = useRef<HTMLDivElement>(null);
-  const bottomRef = useRef<HTMLDivElement>(null);
-  const hasInitialScrollRef = useRef(false);
+  const [hasMore, setHasMore] = useState(true);
+  const [loadingOlder, setLoadingOlder] = useState(false);
+  const inflightRef = useRef(false);
+  // The scroll anchor includes the first-message id as it was BEFORE
+  // the prepend — see useLayoutEffect below for why. Without this tag,
+  // a live agent push that appends WHILE loadOlder is in flight would
+  // run useLayoutEffect against the append (anchor still set), the
+  // "restore" math would scroll the user to a stale offset, AND the
+  // append's normal scroll-to-bottom would be swallowed.
+  const scrollAnchorRef = useRef<
+    { savedDistanceFromBottom: number; expectFirstIdNotEqual: string | null } | null
+  >(null);
+  const oldestMessageRef = useRef<ChatMessage | null>(null);
+  const hasMoreRef = useRef(true);
+  // Monotonic token bumped on workspace switch + on every loadOlder
+  // entry. Each fetch's .then() captures its own token; if the token
+  // has moved, the resolved messages belong to a stale workspace or a
+  // superseded fetch and we silently drop them. Without this guard, a
+  // workspace switch mid-fetch would have the in-flight promise
+  // resolve into the new workspace's setMessages — the user sees
+  // someone else's history briefly.
+  const fetchTokenRef = useRef(0);
+  // Files the user has picked but not yet sent. Cleared on send
+  // (upload success) or by the × on each pill.
+  const [pendingFiles, setPendingFiles] = useState<File[]>([]);
+  const [uploading, setUploading] = useState(false);
  const fileInputRef = useRef<HTMLInputElement>(null);
-  const dragDepthRef = useRef(0);
-  const pasteCounterRef = useRef(0);
+  // Guard against a double-click during the upload phase: React
+  // state updates from the click that started the upload haven't
+  // flushed yet, so the disabled-button logic sees `uploading=false`
+  // from the closure and lets a second `sendMessage` enter. A ref
+  // observes the latest value synchronously.
+  const sendInFlightRef = useRef(false);
+  // Monotonic token bumped on every sendMessage entry. Each .then()/
+  // .catch() captures its own token in closure and bails if a newer
+  // send has superseded it — prevents a late HTTP response for an
+  // earlier message from clobbering the flags / appending text that
+  // belong to a newer in-flight send. Race scenario the token closes:
+  // (1) send msg #1 (2) WS push for msg #1 arrives, releases guards
+  // (3) user sends msg #2 (4) HTTP for msg #1 finally lands — without
+  // the token check, .then() sees sendingFromAPIRef=true (set by
+  // msg #2's send), enters the main body, and processes msg #1's body
+  // as if it were msg #2's reply.
+  const sendTokenRef = useRef(0);

-  const history = useChatHistory(workspaceId, containerRef);
-  const chatSend = useChatSend(workspaceId, {
-    getHistoryMessages: () => history.messages,
-    onUserMessage: (msg) => history.setMessages((prev) => [...prev, msg]),
-    onAgentMessage: (msg) => history.setMessages((prev) => appendMessageDeduped(prev, msg)),
-  });
-  const { sending, uploading, sendMessage, error: sendError, clearError: clearSendError, releaseSendGuards, sendingFromAPIRef } = chatSend;
+  // Release every in-flight send guard at once. Used by every site
+  // that ends a send: pendingAgentMsgs WS push, ACTIVITY_LOGGED
+  // a2a_receive ok/error WS event, HTTP .then() success, and HTTP
+  // .catch() success. Keep these in lockstep — a future contributor
+  // adding a new "I saw the reply" path that only clears `sending` +
+  // `sendingFromAPIRef` (the natural pair) silently re-introduces
+  // the post-WS Send-button freeze, because the disabled-button
+  // logic can't see `sendInFlightRef` and so the visible state diverges
+  // from the synchronous re-entry guard at line 464.
+  const releaseSendGuards = useCallback(() => {
+    setSending(false);
+    sendingFromAPIRef.current = false;
+    sendInFlightRef.current = false;
+  }, []);

-  const displayError = error || sendError;
+  // Initial-load fetch — used by the mount effect and the "Retry"
+  // button below. Single source of truth so the two paths can't drift
+  // (e.g. INITIAL_HISTORY_LIMIT bumped in the effect but not the
+  // retry, leading to inconsistent first-paint sizes).
+  const loadInitial = useCallback(() => {
+    setLoading(true);
+    setLoadError(null);
+    setHasMore(true);
+    // Bump the token; any in-flight fetch from the previous workspace
+    // (or a previous retry) will see token != myToken in its .then()
+    // and silently bail — the late response can't clobber the new
+    // workspace's state.
+    fetchTokenRef.current += 1;
+    const myToken = fetchTokenRef.current;
+    loadMessagesFromDB(workspaceId, INITIAL_HISTORY_LIMIT).then(
+      ({ messages: msgs, error: fetchErr, reachedEnd }) => {
+        if (fetchTokenRef.current !== myToken) return;
+        setMessages(msgs);
+        setLoadError(fetchErr);
+        setHasMore(!reachedEnd);
+        setLoading(false);
+      },
+    );
+  }, [workspaceId]);

-  useChatSocket(workspaceId, {
-    onAgentMessage: (msg) => {
-      history.setMessages((prev) => appendMessageDeduped(prev, msg));
-      if (sendingFromAPIRef.current) {
-        releaseSendGuards();
+  // Load chat history on mount / workspace switch.
+  // Initial load is bounded to INITIAL_HISTORY_LIMIT (newest 10) — the
+  // rest streams in as the user scrolls up via loadOlder() below. Pre-
+  // 2026-05-05 this fetched the newest 50 in one shot; on a long-running
+  // workspace that meant 50× message-bubble paint + DOM cost on every
+  // tab-open even when the user only wanted to read the last few.
+  useEffect(() => {
+    loadInitial();
+  }, [loadInitial]);
+
+  // Mirror the latest oldest-message + hasMore into refs so loadOlder
+  // can read them without taking `messages` as a dep. Every live push
+  // through agentMessages would otherwise recreate loadOlder and tear
+  // down the IO observer.
+  useEffect(() => {
+    oldestMessageRef.current = messages[0] ?? null;
+  }, [messages]);
+  useEffect(() => {
+    hasMoreRef.current = hasMore;
+  }, [hasMore]);
+
+  // Fetch the next-older batch and prepend. Stable identity (deps =
+  // [workspaceId]) so the IntersectionObserver effect below doesn't
+  // re-arm on every messages update.
+  const loadOlder = useCallback(async () => {
+    // inflightRef is the load-bearing guard — synchronous, set BEFORE
+    // any await, so two IO callbacks dispatched in the same microtask
+    // can't both pass. The state checks are defensive secondary
+    // gates for the slow-scroll case.
+    if (inflightRef.current || !hasMoreRef.current) return;
+    const oldest = oldestMessageRef.current;
+    if (!oldest) return;
+    const container = containerRef.current;
+    if (!container) return;
+    inflightRef.current = true;
+    // Capture the user's distance-from-bottom BEFORE we prepend so the
+    // useLayoutEffect can restore it after the new DOM lands. The
+    // expectFirstIdNotEqual tag is what the layout effect checks
+    // against `messages[0].id` to disambiguate prepend (id changed) vs
+    // append (id unchanged → live message landed mid-fetch). Without
+    // it, an agent push during loadOlder runs the "restore" against a
+    // stale anchor — user gets yanked + the append's bottom-pin is
+    // swallowed.
+    scrollAnchorRef.current = {
+      savedDistanceFromBottom: container.scrollHeight - container.scrollTop,
+      expectFirstIdNotEqual: oldest.id,
+    };
+    fetchTokenRef.current += 1;
+    const myToken = fetchTokenRef.current;
+    setLoadingOlder(true);
+    try {
+      const { messages: older, reachedEnd } = await loadMessagesFromDB(
+        workspaceId,
+        OLDER_HISTORY_BATCH,
+        oldest.timestamp,
+      );
+      // Workspace switched (or another loadOlder bumped the token)
+      // mid-fetch — drop these results, they belong to a stale tab.
+      if (fetchTokenRef.current !== myToken) {
+        scrollAnchorRef.current = null;
+        return;
      }
-    },
-    onActivityLog: (entry) => {
-      if (!sending) return;
-      setActivityLog((prev) => appendActivityLine(prev, entry));
-    },
-    onSendComplete: () => {
-      if (sendingFromAPIRef.current) {
-        releaseSendGuards();
+      if (older.length > 0) {
+        setMessages((prev) => [...older, ...prev]);
+      } else {
+        // Nothing came back — clear the anchor so the next paint doesn't
+        // try to "restore" against a no-op prepend.
+        scrollAnchorRef.current = null;
      }
-    },
-    onSendError: (err) => {
-      if (sendingFromAPIRef.current) {
-        releaseSendGuards();
-        setError(err);
-      }
-    },
-  });
+      setHasMore(!reachedEnd);
+    } finally {
+      setLoadingOlder(false);
+      inflightRef.current = false;
+    }
+  }, [workspaceId]);
+
+  // IntersectionObserver on the top sentinel. Fires loadOlder() the
+  // moment the user scrolls within 200px of the top. AbortController
+  // unwires cleanly on workspace switch / unmount; root is the
+  // scrollable container so we observe only what's visible inside it.
+  //
+  // Dependencies:
+  //  - loadOlder    — stable per workspaceId (refs decouple it from
+  //                   message updates), so this dep is here for the
+  //                   workspace-switch case only
+  //  - hasMore      — re-run when older history runs out so we
+  //                   disconnect cleanly
+  //  - hasMessages  — load-bearing: the sentinel JSX is gated on
+  //                   `messages.length > 0`, so topRef.current is null
+  //                   on the empty-messages render. We re-arm exactly
+  //                   once when messages first land. NOT depending on
+  //                   `messages.length` (or `messages`) directly so
+  //                   each subsequent message append doesn't tear down
+  //                   + re-arm the observer.
+  const hasMessages = messages.length > 0;
+  useEffect(() => {
+    const top = topRef.current;
+    const container = containerRef.current;
+    if (!top || !container) return;
+    if (!hasMore) return; // stop observing when no older history exists
+    const ac = new AbortController();
+    const io = new IntersectionObserver(
+      (entries) => {
+        if (ac.signal.aborted) return;
+        if (entries[0]?.isIntersecting) loadOlder();
+      },
+      { root: container, rootMargin: "200px 0px 0px 0px", threshold: 0 },
+    );
+    io.observe(top);
+    ac.signal.addEventListener("abort", () => io.disconnect());
+    return () => ac.abort();
+  }, [loadOlder, hasMore, hasMessages]);

  // Agent reachability
  useEffect(() => {
    const reachable = data.status === "online" || data.status === "degraded";
    setAgentReachable(reachable);
-    if (reachable) {
-      setError(null);
-      clearSendError();
-    } else {
-      setError(`Agent is ${data.status}`);
-    }
-  }, [data.status, clearSendError]);
+    setError(reachable ? null : `Agent is ${data.status}`);
+  }, [data.status]);
+
+  useEffect(() => {
+    currentTaskRef.current = data.currentTask;
+  }, [data.currentTask]);

  // Scroll behavior across messages updates:
  //  - Prepend (loadOlder landed)  → restore the user's saved
@@ -180,24 +518,71 @@ function MyChatPanel({ workspaceId, data }: Props) {
  // paint — otherwise the user sees the page jump for one frame.
  useLayoutEffect(() => {
    const container = containerRef.current;
-    const anchor = history.scrollAnchorRef.current;
+    const anchor = scrollAnchorRef.current;
+    // Only honor the anchor when this messages-update is the prepend
+    // we expected. messages[0].id is the test:
+    //   - prepend  → messages[0] is one of the older rows → id !== expectFirstIdNotEqual
+    //   - append   → messages[0] unchanged → id === expectFirstIdNotEqual → fall through
+    // Without this check, an agent push that lands mid-loadOlder would
+    // run the restore against the append's update, yank the user's
+    // scroll, AND swallow the append's bottom-pin.
    if (
      anchor &&
      container &&
-      history.messages.length > 0 &&
-      history.messages[0].id !== anchor.expectFirstIdNotEqual
+      messages.length > 0 &&
+      messages[0].id !== anchor.expectFirstIdNotEqual
    ) {
      container.scrollTop = container.scrollHeight - anchor.savedDistanceFromBottom;
-      history.scrollAnchorRef.current = null;
+      scrollAnchorRef.current = null;
      return;
    }
-    if (!hasInitialScrollRef.current && history.messages.length > 0) {
+    // Instant on first arrival of messages — smooth-scroll on a long
+    // conversation gets interrupted by concurrent renders and leaves
+    // the user stuck in the middle. After the first jump, subsequent
+    // appends animate as before.
+    if (!hasInitialScrollRef.current && messages.length > 0) {
      hasInitialScrollRef.current = true;
      bottomRef.current?.scrollIntoView({ behavior: "instant" as ScrollBehavior });
      return;
    }
    bottomRef.current?.scrollIntoView({ behavior: "smooth" });
-  }, [history.messages, history.scrollAnchorRef]);
+  }, [messages]);
+
+  // Consume agent push messages (send_message_to_user) from global store.
+  // Runtimes like Claude Code SDK deliver their reply via a WS push rather
+  // than the /a2a HTTP response — when that happens, the push is the
+  // authoritative "reply arrived" signal for the UI, so clear `sending`
+  // here too. The HTTP .then() coordinates through sendingFromAPIRef so
+  // whichever path clears first wins.
+  const pendingAgentMsgs = useCanvasStore((s) => s.agentMessages[workspaceId]);
+  useEffect(() => {
+    if (!pendingAgentMsgs || pendingAgentMsgs.length === 0) return;
+    const consume = useCanvasStore.getState().consumeAgentMessages;
+    const msgs = consume(workspaceId);
+    for (const m of msgs) {
+      // Dedupe in case the agent proactively pushed the same text the
+      // HTTP /a2a response already delivered (observed with the Hermes
+      // runtime, which emits both a reply body and a send_message_to_user
+      // push for the same content). Attachments ride along with the
+      // message so files returned by the A2A_RESPONSE WS path render
+      // their download chips.
+      setMessages((prev) => appendMessageDeduped(prev, createMessage("agent", m.content, m.attachments)));
+    }
+    if (sendingFromAPIRef.current && msgs.length > 0) {
+      // Reply arrived via WS push (e.g. claude-code SDK). Release all
+      // three guards together — without sendInFlightRef the next
+      // sendMessage() silently no-ops at the synchronous re-entry
+      // check.
+      releaseSendGuards();
+    }
+  }, [pendingAgentMsgs, workspaceId]);
+
+  // Resolve workspace ID → name for activity display
+  const resolveWorkspaceName = useCallback((id: string) => {
+    const nodes = useCanvasStore.getState().nodes;
+    const node = nodes.find((n) => n.id === id);
+    return (node?.data as WorkspaceNodeData)?.name || id.slice(0, 8);
+  }, []);

  // Elapsed timer while sending
  useEffect(() => {
@@ -224,43 +609,211 @@ function MyChatPanel({ workspaceId, data }: Props) {
    setActivityLog([`Processing with ${runtimeDisplayName(data.runtime)}...`]);
  }, [sending, data.runtime]);

-  // IntersectionObserver on the top sentinel. Fires loadOlder() the
-  // moment the user scrolls within 200px of the top. AbortController
-  // unwires cleanly on workspace switch / unmount; root is the
-  // scrollable container so we observe only what's visible inside it.
-  const hasMessages = history.messages.length > 0;
-  useEffect(() => {
-    const top = topRef.current;
-    const container = containerRef.current;
-    if (!top || !container) return;
-    if (!history.hasMore) return;
-    const ac = new AbortController();
-    const io = new IntersectionObserver(
-      (entries) => {
-        if (ac.signal.aborted) return;
-        if (entries[0]?.isIntersecting) history.loadOlder();
-      },
-      { root: container, rootMargin: "200px 0px 0px 0px", threshold: 0 },
-    );
-    io.observe(top);
-    ac.signal.addEventListener("abort", () => io.disconnect());
-    return () => ac.abort();
-  }, [history.loadOlder, history.hasMore, hasMessages]);
+  // Subscribe to global WS via the singleton ReconnectingSocket (no
+  // per-component WebSocket — the previous pattern dropped events
+  // silently on any reconnect because each panel's raw socket had no
+  // onclose handler).
+  useSocketEvent((msg) => {
+    if (!sending) return;
+    try {
+        if (msg.event === "ACTIVITY_LOGGED") {
+          // Filter to events for THIS workspace. The platform's
+          // BroadcastOnly fires to every connected client, and
+          // without this guard a sibling workspace's a2a_send would
+          // surface as "→ Delegating to X..." inside the wrong
+          // chat panel. (workspace_id on the WS envelope is the
+          // workspace whose activity_log row we just wrote.)
+          if (msg.workspace_id !== workspaceId) return;

-  const handleSend = async () => {
+          const p = msg.payload || {};
+          const type = p.activity_type as string;
+          const method = (p.method as string) || "";
+          const status = (p.status as string) || "";
+          const targetId = (p.target_id as string) || "";
+          const durationMs = p.duration_ms as number | undefined;
+          const summary = (p.summary as string) || "";
+
+          let line = "";
+          if (type === "a2a_receive" && method === "message/send") {
+            const targetName = resolveWorkspaceName(targetId || msg.workspace_id);
+            if (status === "ok" && durationMs) {
+              const sec = Math.round(durationMs / 1000);
+              line = `← ${targetName} responded (${sec}s)`;
+              // The platform logs a successful a2a_receive once the workspace
+              // has fully produced its reply. That's the authoritative "done"
+              // signal for the spinner — clear it even if the reply hasn't
+              // surfaced through the store yet (it may be delivered shortly
+              // via pendingAgentMsgs or the HTTP .then()).
+              const own = (targetId || msg.workspace_id) === workspaceId;
+              if (own && sendingFromAPIRef.current) {
+                releaseSendGuards();
+              }
+            } else if (status === "error") {
+              line = `⚠ ${targetName} error`;
+              const own = (targetId || msg.workspace_id) === workspaceId;
+              if (own && sendingFromAPIRef.current) {
+                releaseSendGuards();
+                setError("Agent error (Exception) — see workspace logs for details.");
+              }
+            }
+          } else if (type === "a2a_send") {
+            const targetName = resolveWorkspaceName(targetId);
+            line = `→ Delegating to ${targetName}...`;
+          } else if (type === "task_update") {
+            if (summary) line = `⟳ ${summary}`;
+          } else if (type === "agent_log") {
+            // Per-tool-use telemetry from claude_sdk_executor's
+            // _report_tool_use. The summary already carries an icon
+            // + human-readable args (📄 Read /path, ⚡ Bash: …)
+            // so we render it verbatim. No icon prefix here — the
+            // emoji at the start of summary is the visual marker.
+            if (summary) line = summary;
+          }
+
+          if (line) {
+            setActivityLog((prev) => appendActivityLine(prev, line));
+          }
+        } else if (msg.event === "TASK_UPDATED" && msg.workspace_id === workspaceId) {
+          const task = (msg.payload?.current_task as string) || "";
+          if (task) {
+            setActivityLog((prev) => appendActivityLine(prev, `⟳ ${task}`));
+          }
+        }
+        // A2A_RESPONSE is already consumed by the store and its text is
+        // appended to messages via the pendingAgentMsgs effect above; we
+        // don't need to duplicate it here.
+    } catch { /* ignore */ }
+  });
+
+  const sendMessage = async () => {
    const text = input.trim();
-    const files = pendingFiles;
-    if ((!text && files.length === 0) || !agentReachable || sending || uploading) return;
+    const filesToSend = pendingFiles;
+    // Allow sending if EITHER text OR attachments are present — a user
+    // can drop a file with no text and the agent still receives it.
+    if ((!text && filesToSend.length === 0) || !agentReachable || sending || uploading) return;
+    // Synchronous re-entry guard — see sendInFlightRef comment.
+    if (sendInFlightRef.current) return;
+    sendInFlightRef.current = true;
+
+    // Upload attachments first so we can include URIs in the A2A
+    // message parts. Sequential-before-send: a message with references
+    // to files not yet staged would fail agent-side; staging happens
+    // synchronously via /chat/uploads before message/send dispatch.
+    let uploaded: ChatAttachment[] = [];
+    if (filesToSend.length > 0) {
+      setUploading(true);
+      try {
+        uploaded = await uploadChatFiles(workspaceId, filesToSend);
+      } catch (e) {
+        setUploading(false);
+        sendInFlightRef.current = false;
+        setError(e instanceof Error ? `Upload failed: ${e.message}` : "Upload failed");
+        return;
+      }
+      setUploading(false);
+    }
+
    setInput("");
    setPendingFiles([]);
-    clearSendError();
+    setMessages((prev) => [...prev, createMessage("user", text, uploaded)]);
+    setSending(true);
+    sendingFromAPIRef.current = true;
    setError(null);
-    await sendMessage(text, files);
+    // Capture this send's token so the .then()/.catch() callbacks can
+    // detect a newer send that may have superseded them. See the
+    // sendTokenRef declaration for the race scenario this closes.
+    const myToken = ++sendTokenRef.current;
+
+    // Build conversation history from prior messages (last 20)
+    const history = messages
+      .filter((m) => m.role === "user" || m.role === "agent")
+      .slice(-20)
+      .map((m) => ({
+        role: m.role === "user" ? "user" : "agent",
+        parts: [{ kind: "text", text: m.content }],
+      }));
+
+    // A2A parts: text part (if any) + file parts (per attachment). The
+    // agent sees both in a single turn, matching the A2A spec shape.
+    // Wire shape is v0 — see A2APart definition above.
+    const parts: A2APart[] = [];
+    if (text) parts.push({ kind: "text", text });
+    for (const att of uploaded) {
+      parts.push({
+        kind: "file",
+        file: {
+          name: att.name,
+          mimeType: att.mimeType,
+          uri: att.uri,
+          size: att.size,
+        },
+      });
+    }
+
+    // A2A calls can legitimately take minutes — LLM latency +
+    // multi-turn tool use is common on slower providers (Hermes+minimax,
+    // Claude Code invoking bash/file tools, etc.). The 15s default
+    // would silently abort the fetch here, leaving the server to
+    // complete the reply and the user staring at
+    // "agent may be unreachable". Match the upload timeout (60s × 2)
+    // for the happy-path ceiling; anything longer is genuinely stuck.
+    api.post<A2AResponse>(`/workspaces/${workspaceId}/a2a`, {
+      method: "message/send",
+      params: {
+        message: {
+          role: "user",
+          messageId: crypto.randomUUID(),
+          parts,
+        },
+        metadata: { history },
+      },
+    }, { timeoutMs: 120_000 })
+      .then((resp) => {
+        // Bail without touching any flags if a newer sendMessage has
+        // already run — its myToken bumped sendTokenRef, so this is
+        // a stale callback for an earlier message. The newer send
+        // owns the in-flight guards now.
+        if (sendTokenRef.current !== myToken) return;
+        // Skip if the WS A2A_RESPONSE event already handled this response.
+        // Both paths (WS + HTTP) check sendingFromAPIRef — whichever clears
+        // it first wins, the other becomes a no-op (no duplicate messages).
+        if (!sendingFromAPIRef.current) {
+          sendInFlightRef.current = false;
+          return;
+        }
+        const replyText = extractReplyText(resp);
+        const replyFiles = extractFilesFromTask((resp?.result ?? {}) as Record<string, unknown>);
+        if (replyText || replyFiles.length > 0) {
+          setMessages((prev) =>
+            appendMessageDeduped(prev, createMessage("agent", replyText, replyFiles)),
+          );
+        }
+        releaseSendGuards();
+      })
+      .catch(() => {
+        // Stale-callback guard — same rationale as .then().
+        if (sendTokenRef.current !== myToken) return;
+        // Same dedup guard as .then(): if a WS path (pendingAgentMsgs
+        // or ACTIVITY_LOGGED a2a_receive ok) already delivered the
+        // reply, sendingFromAPIRef is already false and there's
+        // nothing to roll back. Surfacing "Failed to send" here would
+        // contradict the agent reply the user is currently reading —
+        // exactly the false-positive observed when the HTTP request
+        // hung up (proxy idle / 502) after WS already won.
+        if (!sendingFromAPIRef.current) {
+          sendInFlightRef.current = false;
+          return;
+        }
+        releaseSendGuards();
+        setError("Failed to send message — agent may be unreachable");
+      });
  };

  const onFilesPicked = (fileList: FileList | null) => {
    if (!fileList) return;
    const picked = Array.from(fileList);
+    // Deduplicate against current pending set by name+size — user
+    // picking the same file twice shouldn't append it.
    setPendingFiles((prev) => {
      const keyed = new Set(prev.map((f) => `${f.name}:${f.size}`));
      return [...prev, ...picked.filter((f) => !keyed.has(`${f.name}:${f.size}`))];
@@ -271,7 +824,35 @@ function MyChatPanel({ workspaceId, data }: Props) {
  const removePendingFile = (index: number) =>
    setPendingFiles((prev) => prev.filter((_, i) => i !== index));

+  // Monotonic counter so two paste events within the same wall-clock
+  // second still produce distinct filenames. Without this, on
+  // Firefox (where pasted images have an empty `file.name`), two
+  // pastes ~100ms apart could yield identical synthetic names AND
+  // identical sizes, collapsing into one attachment via the
+  // `name:size` dedup in onFilesPicked.
+  const pasteCounterRef = useRef(0);
+
+  /** Paste-from-clipboard image attachment.
+   *
+   *  Browser clipboard image items arrive as `File`s whose `name` is
+   *  often a generic "image.png" (Chrome) or empty (Firefox/Safari),
+   *  so two consecutive screenshot pastes collide on the name+size
+   *  dedup the file-picker uses. Re-tag each pasted image with a
+   *  per-paste unique name so dedup keeps them apart and the upload
+   *  pipeline (which expects a non-empty filename) is happy.
+   *
+   *  Falls through to onFilesPicked via direct File[] (NOT through
+   *  the DataTransfer constructor — that throws on Safari < 14.1
+   *  and old Edge, silently aborting the paste).
+   *
+   *  Only intercepts the paste when the clipboard has at least one
+   *  image; text-only pastes fall through to the textarea's default
+   *  behaviour. */
  const mimeToExt = (mime: string): string => {
+    // Avoid raw `mime.split("/")[1]` — that yields `"svg+xml"`,
+    // `"jpeg"`, `"webp"` etc. which produce ugly filenames and may
+    // trip server-side extension allowlists. Map known types
+    // explicitly; unknown falls back to a safe default.
    if (mime === "image/svg+xml") return "svg";
    if (mime === "image/jpeg") return "jpg";
    if (mime === "image/png") return "png";
@@ -292,16 +873,26 @@ function MyChatPanel({ workspaceId, data }: Props) {
      const file = item.getAsFile();
      if (!file) continue;
      const ext = mimeToExt(file.type);
-      const stamp = new Date().toISOString().replace(/[:.]/g, "-").slice(0, 19);
+      const stamp = new Date()
+        .toISOString()
+        .replace(/[:.]/g, "-")
+        .slice(0, 19);
      const seq = pasteCounterRef.current++;
      const fname = `pasted-${stamp}-${seq}-${i}.${ext}`;
      imageFiles.push(new File([file], fname, { type: file.type }));
    }
    if (imageFiles.length === 0) return;
    e.preventDefault();
+    // Reuse the picker path so file-size guards, dedup, and pending-
+    // list state all run through the same code. Build a synthetic
+    // FileList-like object to avoid the DataTransfer constructor —
+    // that's missing on Safari < 14.1 / old Edge and would silently
+    // throw, leaving the paste a no-op.
    addPastedFiles(imageFiles);
  };

+  // Variant of onFilesPicked that accepts a File[] directly, sidestepping
+  // the DataTransfer-FileList round-trip. Same dedup + state shape.
  const addPastedFiles = (files: File[]) => {
    setPendingFiles((prev) => {
      const keyed = new Set(prev.map((f) => `${f.name}:${f.size}`));
@@ -309,6 +900,11 @@ function MyChatPanel({ workspaceId, data }: Props) {
    });
  };

+  // Drag-and-drop staging. dragDepthRef counts enter vs leave events so
+  // the overlay doesn't flicker when the cursor crosses nested children
+  // (textarea, buttons) — dragenter/dragleave fire for every boundary.
+  const [dragOver, setDragOver] = useState(false);
+  const dragDepthRef = useRef(0);
  const dropEnabled = agentReachable && !sending && !uploading;
  const isFileDrag = (e: React.DragEvent) =>
    Array.from(e.dataTransfer.types || []).includes("Files");
@@ -338,6 +934,9 @@ function MyChatPanel({ workspaceId, data }: Props) {
  };

  const downloadAttachment = (att: ChatAttachment) => {
+    // Errors here are rare but user-visible (401 on a revoked token,
+    // 404 if the agent deleted the file). Surface via the inline
+    // error banner — the message list itself stays untouched.
    downloadChatFile(workspaceId, att).catch((e) => {
      setError(e instanceof Error ? `Download failed: ${e.message}` : "Download failed");
    });
@@ -391,26 +990,26 @@ function MyChatPanel({ workspaceId, data }: Props) {
      )}
      {/* Messages */}
      <div ref={containerRef} className="flex-1 overflow-y-auto p-3 space-y-3">
-        {history.loading && (
+        {loading && (
          <div className="text-xs text-ink-mid text-center py-4">Loading chat history...</div>
        )}
-        {!history.loading && history.loadError !== null && history.messages.length === 0 && (
+        {!loading && loadError !== null && messages.length === 0 && (
          <div
            role="alert"
            className="mx-2 mt-2 rounded-lg border border-red-800/50 bg-red-950/30 px-3 py-2.5"
          >
            <p className="text-[11px] text-bad mb-1.5">
-              Failed to load chat history: {history.loadError}
+              Failed to load chat history: {loadError}
            </p>
            <button
-              onClick={history.loadInitial}
+              onClick={loadInitial}
              className="text-[10px] px-2 py-0.5 rounded bg-red-800 text-red-200 hover:bg-red-700 transition-colors"
            >
              Retry
            </button>
          </div>
        )}
-        {!history.loading && history.loadError === null && history.messages.length === 0 && (
+        {!loading && loadError === null && messages.length === 0 && (
          <div className="text-xs text-ink-mid text-center py-8">
            No messages yet. Send a message to start chatting with this agent.
          </div>
@@ -428,12 +1027,12 @@ function MyChatPanel({ workspaceId, data }: Props) {
            instead of showing a "no more messages" footer — the user's
            scroll resting against the top of the conversation IS the
            signal. */}
-        {history.hasMore && history.messages.length > 0 && (
+        {hasMore && messages.length > 0 && (
          <div ref={topRef} className="text-xs text-ink-mid text-center py-1">
-            {history.loadingOlder ? "Loading older messages…" : " "}
+            {loadingOlder ? "Loading older messages…" : " "}
          </div>
        )}
-        {history.messages.map((msg) => (
+        {messages.map((msg) => (
          <div key={msg.id} className={`flex ${msg.role === "user" ? "justify-end" : "justify-start"}`}>
            <div
              className={`max-w-[85%] rounded-lg px-3 py-2 text-xs ${
@@ -593,10 +1192,10 @@ function MyChatPanel({ workspaceId, data }: Props) {
      </div>

      {/* Error banner */}
-      {displayError && (
+      {error && (
        <div className="px-3 py-2 bg-red-900/20 border-t border-red-800/30">
          <div className="flex items-center justify-between">
-            <span className="text-[10px] text-red-300">{displayError}</span>
+            <span className="text-[10px] text-red-300">{error}</span>
            {!isOnline && (
              <button
                onClick={() => setConfirmRestart(true)}
@@ -664,7 +1263,7 @@ function MyChatPanel({ workspaceId, data }: Props) {
                e.keyCode !== 229
              ) {
                e.preventDefault();
-                handleSend();
+                sendMessage();
              }
            }}
            onPaste={onPasteIntoComposer}
@@ -674,7 +1273,7 @@ function MyChatPanel({ workspaceId, data }: Props) {
            className="flex-1 bg-surface-card border border-line rounded-lg px-3 py-2 text-xs text-ink placeholder-ink-soft dark:bg-zinc-800 dark:border-zinc-600 dark:placeholder-zinc-500 focus:outline-none focus:border-accent focus-visible:ring-2 focus-visible:ring-accent/40 resize-none disabled:opacity-50"
          />
          <button
-            onClick={handleSend}
+            onClick={sendMessage}
            disabled={(!input.trim() && pendingFiles.length === 0) || !agentReachable || sending || uploading}
            className="px-4 py-2 bg-accent-strong hover:bg-accent text-xs font-medium rounded-lg text-white disabled:opacity-30 transition-colors shrink-0"
          >
@@ -176,7 +176,7 @@ export function deriveProvidersFromModels(models: ModelSpec[]): string[] {
 // exactly the point of the platform adaptor. The deep `~/.hermes/
 // config.yaml` on the container is a separate runtime-internal file,
 // not this one.
-const RUNTIMES_WITH_OWN_CONFIG = new Set<string>(["external", "kimi", "kimi-cli", "openclaw"]);
+const RUNTIMES_WITH_OWN_CONFIG = new Set<string>(["external", "kimi", "kimi-cli"]);

 const FALLBACK_RUNTIME_OPTIONS: RuntimeOption[] = [
  { value: "", label: "LangGraph (default)", models: [], providers: [] },
@@ -45,54 +45,11 @@ export function FilesTab({ workspaceId, data }: Props) {
  if (data && isExternalLikeRuntime(data.runtime)) {
    return <NotAvailablePanel runtime={data.runtime} />;
  }
-  return <PlatformOwnedFilesTab workspaceId={workspaceId} runtime={data?.runtime} />;
+  return <PlatformOwnedFilesTab workspaceId={workspaceId} />;
 }

-/** Picks the initial root for the FilesTab dropdown based on the
- *  workspace's runtime. Decision: per-runtime default (Hongming
- *  2026-05-15, internal#425 Decisions §2).
- *
- *  - openclaw → `/agent-home` (the agent's identity/state — the
- *    user-facing interesting files for that runtime live in
- *    `~/.openclaw/` inside the container, which `/agent-home` maps to
- *    via the Phase 2b docker-exec backend).
- *  - everything else (claude-code, hermes, external-like, undefined)
- *    → `/configs` (the legacy default — managed config that flows
- *    through the per-runtime indirection in
- *    workspace-server/internal/handlers/template_files_eic.go).
- *
- *  When the runtime is undefined (legacy callers that don't thread
- *  `data` through, or a workspace whose runtime field hasn't loaded
- *  yet) the default is `/configs` — matches today's behaviour, no
- *  surprise.
- *
- *  Note on `/agent-home` pre-Phase-2b: the backend short-circuits
- *  with HTTP 501 and the canonical "implementation pending" body.
- *  The tab renders empty + the error banner explains. This is by
- *  design — lets us land the canvas UX before the backend ships,
- *  per the RFC's phased rollout. The 501 is graceful: it doesn't
- *  poison error toasts or generate "workspace not found" noise.
- *
- *  Adding a new runtime that should default to `/agent-home`: add it
- *  to the agentHomeDefaultRuntimes set below. Adding a runtime that
- *  should default to a different root: extend this function. */
-const agentHomeDefaultRuntimes = new Set(["openclaw"]);
-
-function defaultRootForRuntime(runtime: string | undefined): string {
-  if (runtime && agentHomeDefaultRuntimes.has(runtime)) {
-    return "/agent-home";
-  }
-  return "/configs";
-}
-
-function PlatformOwnedFilesTab({
-  workspaceId,
-  runtime,
-}: {
-  workspaceId: string;
-  runtime?: string;
-}) {
-  const [root, setRoot] = useState(() => defaultRootForRuntime(runtime));
+function PlatformOwnedFilesTab({ workspaceId }: { workspaceId: string }) {
+  const [root, setRoot] = useState("/configs");
  const [selectedFile, setSelectedFile] = useState<string | null>(null);
  const [fileContent, setFileContent] = useState("");
  const [editContent, setEditContent] = useState("");
@@ -3,22 +3,6 @@
 import { useRef } from "react";
 import { getIcon } from "./tree";

-// secretShapeMarker is the canonical body the workspace-server Files
-// API returns when a file's path OR content matched a credential
-// regex (internal#425 RFC, Phase 2b — backed by
-// workspace-server/internal/secrets.ScanBytes). The marker is a
-// fixed prefix so the canvas can detect it without parsing JSON and
-// without round-tripping the matched bytes through the editor (which
-// would defeat the purpose — clipboard, browser history, log
-// surfaces would all see them).
-//
-// Today (Phase 1 / before 2b ships) the backend returns 501 for the
-// only root that uses this path, so the marker is dead code until
-// 2b lands. Wiring it in now keeps the canvas + backend contracts
-// aligned in one PR rather than a follow-up. The constant is
-// importable so a future test can pin the exact string.
-export const SECRET_SHAPE_DENIED_MARKER = "<denied: secret-shape>";
-
 interface Props {
  selectedFile: string | null;
  fileContent: string;
@@ -47,22 +31,6 @@ export function FileEditor({
  const editorRef = useRef<HTMLTextAreaElement>(null);
  const isDirty = editContent !== fileContent;

-  // internal#425 Phase 3: detect the secret-shape denial marker and
-  // render a placeholder instead of the editor. The marker comes
-  // from workspace-server Phase 2b (secrets.ScanBytes) which refuses
-  // to surface the file's bytes. We deliberately don't expose
-  // the matched pattern's Name here — the canvas just shows the
-  // generic denial. The Files API log surface has the Pattern.Name
-  // for operators who need to debug a false positive.
-  const isSecretShapeDenied = fileContent === SECRET_SHAPE_DENIED_MARKER;
-
-  // /agent-home is read-only from the canvas (Phase 2b ships read +
-  // delete; Phase-2b-followup may add write). Edits to /configs are
-  // unchanged. Until 2b ships, /agent-home returns 501 so this
-  // read-only gate is also dead code, but wiring it in now keeps
-  // the UI honest the moment 2b lands without a follow-up canvas PR.
-  const isReadOnlyRoot = root !== "/configs";
-
  if (!selectedFile) {
    return (
      <div className="flex-1 flex items-center justify-center">
@@ -107,42 +75,11 @@ export function FileEditor({
      {/* Editor area */}
      {loadingFile ? (
        <div className="p-4 text-xs text-ink-mid">Loading...</div>
-      ) : isSecretShapeDenied ? (
-        // Files API refused to surface this file's bytes because its
-        // path or content matched a credential regex
-        // (workspace-server/internal/secrets, internal#425 Phase 2b).
-        // We render a placeholder INSTEAD OF the textarea so the
-        // matched bytes never enter the DOM. Clipboard / view-source
-        // / element-inspector all see the placeholder, not the
-        // credential.
-        <div
-          role="region"
-          aria-label="File content denied"
-          className="flex-1 flex items-center justify-center p-6 bg-surface"
-        >
-          <div className="max-w-md text-center space-y-2">
-            <div className="text-2xl opacity-40">🛡️</div>
-            <p className="text-[11px] font-mono text-warm">
-              {SECRET_SHAPE_DENIED_MARKER}
-            </p>
-            <p className="text-[10px] text-ink-mid leading-relaxed">
-              The platform refused to surface this file because its
-              path or content matched a credential-shape pattern.
-              The bytes never left the workspace container.
-            </p>
-            <p className="text-[10px] text-ink-mid leading-relaxed">
-              If this is a false positive (test fixture, docs example,
-              or content that happens to share a credential's shape),
-              rename the file or adjust the content via the workspace
-              terminal so the regex no longer matches, then refresh.
-            </p>
-          </div>
-        </div>
      ) : (
        <textarea
          ref={editorRef}
          value={editContent}
-          readOnly={isReadOnlyRoot}
+          readOnly={root !== "/configs"}
          onChange={(e) => setEditContent(e.target.value)}
          onKeyDown={(e) => {
            if ((e.metaKey || e.ctrlKey) && e.key === "s") {
@@ -38,15 +38,6 @@ export function FilesToolbar({
          <option value="/home">/home</option>
          <option value="/workspace">/workspace</option>
          <option value="/plugins">/plugins</option>
-          {/* internal#425 Phase 1+3: container-internal $HOME root.
-              Backend lands the docker-exec dispatch in Phase 2b. Until
-              then the stub returns 501 with a canonical
-              "implementation pending" message — the dropdown renders
-              the option so the canvas affordance is design-frozen
-              even before the backend ships.
-              Runtime-default selection logic in FilesTab.tsx picks
-              this as the initial value for openclaw workspaces. */}
-          <option value="/agent-home">/agent-home</option>
        </select>
        <span className="text-[10px] text-ink-mid">{fileCount} files</span>
      </div>
@@ -1,181 +0,0 @@
-// @vitest-environment jsdom
-/**
- * Tests for the /agent-home root selector + per-runtime default-root
- * + secret-shape denial placeholder (internal#425 Phase 3).
- *
- * Separate file so the diff is reviewable as a unit and the existing
- * FilesToolbar / FileEditor / FilesTab tests don't have to grow
- * agent-home-specific cases. Once Phase 2b lands, the read-only +
- * 501-stub assertions here can be tightened (or moved into the main
- * test file as the agent-home root becomes a first-class affordance).
- */
-import React from "react";
-import { render, screen, cleanup } from "@testing-library/react";
-import { afterEach, describe, expect, it, vi } from "vitest";
-
-import { FilesToolbar } from "../FilesToolbar";
-import {
-  FileEditor,
-  SECRET_SHAPE_DENIED_MARKER,
-} from "../FileEditor";
-
-afterEach(cleanup);
-
-describe("internal#425 Phase 3 — /agent-home root selector", () => {
-  it("dropdown includes /agent-home as an option", () => {
-    // Pins the affordance is in the DOM even pre-Phase-2b — the
-    // canvas design freezes today, the backend lands the dispatch
-    // later. Without this, a future refactor that drops the option
-    // would silently regress the RFC's Phase 1 contract (canvas
-    // visibility) without breaking any other test.
-    render(
-      <FilesToolbar
-        root="/configs"
-        setRoot={vi.fn()}
-        fileCount={0}
-        onNewFile={vi.fn()}
-        onUpload={vi.fn()}
-        onDownloadAll={vi.fn()}
-        onClearAll={vi.fn()}
-        onRefresh={vi.fn()}
-      />,
-    );
-    const select = screen.getByRole("combobox", {
-      name: /file root directory/i,
-    }) as HTMLSelectElement;
-    const values = Array.from(select.options).map((o) => o.value);
-    expect(values).toContain("/agent-home");
-  });
-
-  it("dropdown shows /agent-home as the SELECTED root when prop is /agent-home", () => {
-    render(
-      <FilesToolbar
-        root="/agent-home"
-        setRoot={vi.fn()}
-        fileCount={0}
-        onNewFile={vi.fn()}
-        onUpload={vi.fn()}
-        onDownloadAll={vi.fn()}
-        onClearAll={vi.fn()}
-        onRefresh={vi.fn()}
-      />,
-    );
-    const select = screen.getByRole("combobox", {
-      name: /file root directory/i,
-    }) as HTMLSelectElement;
-    expect(select.value).toBe("/agent-home");
-  });
-});
-
-describe("internal#425 Phase 3 — secret-shape denial placeholder", () => {
-  // Files API Phase 2b returns SECRET_SHAPE_DENIED_MARKER as the file
-  // body when the file's path or content matched a credential regex.
-  // The editor MUST render the marker as a placeholder, not pump it
-  // through the textarea — that would put the marker (and any future
-  // matched bytes if the backend contract changes) into the DOM
-  // value, clipboard, and inspector.
-
-  it("renders the denial placeholder INSTEAD of the textarea when fileContent is the marker", () => {
-    render(
-      <FileEditor
-        selectedFile="agent/.openclaw/secrets.env"
-        fileContent={SECRET_SHAPE_DENIED_MARKER}
-        editContent={SECRET_SHAPE_DENIED_MARKER}
-        setEditContent={vi.fn()}
-        loadingFile={false}
-        saving={false}
-        success={null}
-        root="/agent-home"
-        onSave={vi.fn()}
-        onDownload={vi.fn()}
-      />,
-    );
-    // Placeholder region present
-    expect(
-      screen.getByRole("region", { name: /file content denied/i }),
-    ).toBeTruthy();
-    // Marker text visible (so a debugging operator sees the canonical
-    // contract string without having to dig into the source).
-    expect(screen.getByText(SECRET_SHAPE_DENIED_MARKER)).toBeTruthy();
-    // Critically: NO textarea — the bytes never reach a controlled
-    // input. A regression that re-introduces the textarea path would
-    // make the matched marker (and any future content) selectable +
-    // copyable.
-    expect(screen.queryByRole("textbox")).toBeNull();
-  });
-
-  it("renders the textarea normally when fileContent is regular content", () => {
-    render(
-      <FileEditor
-        selectedFile="config.yaml"
-        fileContent="name: openclaw\n"
-        editContent="name: openclaw\n"
-        setEditContent={vi.fn()}
-        loadingFile={false}
-        saving={false}
-        success={null}
-        root="/configs"
-        onSave={vi.fn()}
-        onDownload={vi.fn()}
-      />,
-    );
-    expect(screen.getByRole("textbox")).toBeTruthy();
-    expect(screen.queryByRole("region", { name: /file content denied/i }))
-      .toBeNull();
-  });
-
-  it("/agent-home renders textarea READ-ONLY for non-denied content", () => {
-    // Phase 2b ships read + delete on /agent-home; write semantics
-    // are decided later. Until then, the canvas presents the editor
-    // as read-only so a user can't type into a buffer that the
-    // backend will refuse to PUT. Without this gate, the user would
-    // edit, hit Save, get a 501, and lose their context for why.
-    render(
-      <FileEditor
-        selectedFile=".openclaw/agent-card.json"
-        fileContent='{"name":"openclaw"}'
-        editContent='{"name":"openclaw"}'
-        setEditContent={vi.fn()}
-        loadingFile={false}
-        saving={false}
-        success={null}
-        root="/agent-home"
-        onSave={vi.fn()}
-        onDownload={vi.fn()}
-      />,
-    );
-    const textarea = screen.getByRole("textbox") as HTMLTextAreaElement;
-    expect(textarea.readOnly).toBe(true);
-  });
-
-  it("/configs renders textarea WRITABLE (regression guard for the read-only gate)", () => {
-    render(
-      <FileEditor
-        selectedFile="config.yaml"
-        fileContent="name: x\n"
-        editContent="name: x\n"
-        setEditContent={vi.fn()}
-        loadingFile={false}
-        saving={false}
-        success={null}
-        root="/configs"
-        onSave={vi.fn()}
-        onDownload={vi.fn()}
-      />,
-    );
-    const textarea = screen.getByRole("textbox") as HTMLTextAreaElement;
-    expect(textarea.readOnly).toBe(false);
-  });
-});
-
-describe("internal#425 Phase 3 — marker constant is the canonical string", () => {
-  // The marker string is part of the canvas <-> workspace-server
-  // contract. The workspace-server emits this exact body; the canvas
-  // detects it by exact-equality. A typo on either side would
-  // silently break detection — the canvas would render the literal
-  // string in the textarea instead of the placeholder. Pin the
-  // contract value here.
-  it("matches the contract value '<denied: secret-shape>'", () => {
-    expect(SECRET_SHAPE_DENIED_MARKER).toBe("<denied: secret-shape>");
-  });
-});
@@ -1,3 +0,0 @@
-export { useChatHistory } from "./useChatHistory";
-export { useChatSend } from "./useChatSend";
-export { useChatSocket } from "./useChatSocket";
@@ -1,11 +0,0 @@
-"use client";
-
-import { useCanvasStore, type WorkspaceNodeData } from "@/store/canvas";
-
-/** Resolve a workspace ID to its human-readable name.
- *  Falls back to the first 8 chars of the ID. */
-export function resolveWorkspaceName(id: string): string {
-  const nodes = useCanvasStore.getState().nodes;
-  const node = nodes.find((n) => n.id === id);
-  return (node?.data as WorkspaceNodeData)?.name || id.slice(0, 8);
-}
@@ -1,134 +0,0 @@
-"use client";
-
-import { useCallback, useEffect, useRef, useState } from "react";
-import { api } from "@/lib/api";
-import { type ChatMessage, appendMessageDeduped as appendMessageDedupedFn } from "../types";
-
-const INITIAL_HISTORY_LIMIT = 10;
-const OLDER_HISTORY_BATCH = 20;
-
-async function loadMessagesFromDB(
-  workspaceId: string,
-  limit: number,
-  beforeTs?: string,
-): Promise<{ messages: ChatMessage[]; error: string | null; reachedEnd: boolean }> {
-  try {
-    const params = new URLSearchParams({ limit: String(limit) });
-    if (beforeTs) params.set("before_ts", beforeTs);
-    const resp = await api.get<{ messages: ChatMessage[]; reached_end: boolean }>(
-      `/workspaces/${workspaceId}/chat-history?${params.toString()}`,
-    );
-    return {
-      messages: resp.messages ?? [],
-      error: null,
-      reachedEnd: resp.reached_end,
-    };
-  } catch (err) {
-    return {
-      messages: [],
-      error: err instanceof Error ? err.message : "Failed to load chat history",
-      reachedEnd: true,
-    };
-  }
-}
-
-export interface ScrollAnchor {
-  savedDistanceFromBottom: number;
-  expectFirstIdNotEqual: string | null;
-}
-
-export function useChatHistory(
-  workspaceId: string,
-  containerRef?: React.RefObject<HTMLDivElement | null>,
-) {
-  const [messages, setMessages] = useState<ChatMessage[]>([]);
-  const [loading, setLoading] = useState(true);
-  const [loadError, setLoadError] = useState<string | null>(null);
-  const [loadingOlder, setLoadingOlder] = useState(false);
-  const [hasMore, setHasMore] = useState(true);
-
-  const fetchTokenRef = useRef(0);
-  const oldestMessageRef = useRef<ChatMessage | null>(null);
-  const hasMoreRef = useRef(true);
-  const inflightRef = useRef(false);
-  const scrollAnchorRef = useRef<ScrollAnchor | null>(null);
-
-  useEffect(() => {
-    oldestMessageRef.current = messages[0] ?? null;
-  }, [messages]);
-
-  useEffect(() => {
-    hasMoreRef.current = hasMore;
-  }, [hasMore]);
-
-  const loadInitial = useCallback(() => {
-    setLoading(true);
-    setLoadError(null);
-    setHasMore(true);
-    fetchTokenRef.current += 1;
-    const myToken = fetchTokenRef.current;
-    return loadMessagesFromDB(workspaceId, INITIAL_HISTORY_LIMIT).then(
-      ({ messages: msgs, error: fetchErr, reachedEnd }) => {
-        if (fetchTokenRef.current !== myToken) return;
-        setMessages(msgs);
-        setLoadError(fetchErr);
-        setHasMore(!reachedEnd);
-        setLoading(false);
-      },
-    );
-  }, [workspaceId]);
-
-  useEffect(() => {
-    loadInitial();
-  }, [loadInitial]);
-
-  const loadOlder = useCallback(async () => {
-    if (inflightRef.current || !hasMoreRef.current) return;
-    const oldest = oldestMessageRef.current;
-    if (!oldest) return;
-    const container = containerRef?.current;
-    if (!container) return;
-    inflightRef.current = true;
-    scrollAnchorRef.current = {
-      savedDistanceFromBottom: container.scrollHeight - container.scrollTop,
-      expectFirstIdNotEqual: oldest.id,
-    };
-    fetchTokenRef.current += 1;
-    const myToken = fetchTokenRef.current;
-    setLoadingOlder(true);
-    try {
-      const { messages: older, reachedEnd } = await loadMessagesFromDB(
-        workspaceId,
-        OLDER_HISTORY_BATCH,
-        oldest.timestamp,
-      );
-      if (fetchTokenRef.current !== myToken) {
-        scrollAnchorRef.current = null;
-        return;
-      }
-      if (older.length > 0) {
-        setMessages((prev) => [...older, ...prev]);
-      } else {
-        scrollAnchorRef.current = null;
-      }
-      setHasMore(!reachedEnd);
-    } finally {
-      setLoadingOlder(false);
-      inflightRef.current = false;
-    }
-  }, [workspaceId, containerRef]);
-
-  return {
-    messages,
-    loading,
-    loadError,
-    loadingOlder,
-    hasMore,
-    loadInitial,
-    loadOlder,
-    appendMessageDeduped: (msg: ChatMessage) =>
-      setMessages((prev) => appendMessageDedupedFn(prev, msg)),
-    setMessages,
-    scrollAnchorRef,
-  };
-}
@@ -1,182 +0,0 @@
-"use client";
-
-import { useCallback, useRef, useState } from "react";
-import { api } from "@/lib/api";
-import { uploadChatFiles } from "../uploads";
-import { createMessage, type ChatMessage, type ChatAttachment } from "../types";
-import { extractFilesFromTask } from "../message-parser";
-
-interface A2APart {
-  kind: string;
-  text?: string;
-  file?: {
-    name?: string;
-    mimeType?: string;
-    uri?: string;
-    size?: number;
-  };
-}
-
-interface A2AResponse {
-  result?: {
-    parts?: A2APart[];
-    artifacts?: Array<{ parts: A2APart[] }>;
-  };
-}
-
-export function extractReplyText(resp: A2AResponse): string {
-  const collect = (parts: A2APart[] | undefined): string => {
-    if (!parts) return "";
-    return parts
-      .filter((p) => p.kind === "text")
-      .map((p) => p.text ?? "")
-      .filter(Boolean)
-      .join("\n");
-  };
-  const result = resp?.result;
-  const collected: string[] = [];
-  const fromParts = collect(result?.parts);
-  if (fromParts) collected.push(fromParts);
-  if (result?.artifacts) {
-    for (const a of result.artifacts) {
-      const t = collect(a.parts);
-      if (t) collected.push(t);
-    }
-  }
-  return collected.join("\n");
-}
-
-export interface UseChatSendOptions {
-  getHistoryMessages: () => ChatMessage[];
-  onUserMessage?: (msg: ChatMessage) => void;
-  onAgentMessage?: (msg: ChatMessage) => void;
-}
-
-export function useChatSend(workspaceId: string, options: UseChatSendOptions) {
-  const [sending, setSending] = useState(false);
-  const [uploading, setUploading] = useState(false);
-  const [error, setError] = useState<string | null>(null);
-  const sendInFlightRef = useRef(false);
-  const sendingFromAPIRef = useRef(false);
-  const sendTokenRef = useRef(0);
-  const optionsRef = useRef(options);
-  optionsRef.current = options;
-
-  const releaseSendGuards = useCallback(() => {
-    setSending(false);
-    sendingFromAPIRef.current = false;
-    sendInFlightRef.current = false;
-  }, []);
-
-  const clearError = useCallback(() => setError(null), []);
-
-  const sendMessage = useCallback(
-    async (text: string, files: File[] = []) => {
-      const trimmed = text.trim();
-      if ((!trimmed && files.length === 0) || sending || uploading) return;
-      if (sendInFlightRef.current) return;
-      sendInFlightRef.current = true;
-
-      let uploaded: ChatAttachment[] = [];
-      if (files.length > 0) {
-        setUploading(true);
-        try {
-          uploaded = await uploadChatFiles(workspaceId, files);
-        } catch (e) {
-          setUploading(false);
-          sendInFlightRef.current = false;
-          setError(
-            e instanceof Error ? `Upload failed: ${e.message}` : "Upload failed",
-          );
-          return;
-        }
-        setUploading(false);
-      }
-
-      const userMsg = createMessage("user", trimmed, uploaded);
-      optionsRef.current.onUserMessage?.(userMsg);
-
-      setSending(true);
-      sendingFromAPIRef.current = true;
-      setError(null);
-      const myToken = ++sendTokenRef.current;
-
-      const history = optionsRef.current
-        .getHistoryMessages()
-        .filter((m) => m.role === "user" || m.role === "agent")
-        .slice(-20)
-        .map((m) => ({
-          role: m.role === "user" ? "user" : "agent",
-          parts: [{ kind: "text", text: m.content }],
-        }));
-
-      const parts: A2APart[] = [];
-      if (trimmed) parts.push({ kind: "text", text: trimmed });
-      for (const att of uploaded) {
-        parts.push({
-          kind: "file",
-          file: {
-            name: att.name,
-            mimeType: att.mimeType,
-            uri: att.uri,
-            size: att.size,
-          },
-        });
-      }
-
-      api
-        .post<A2AResponse>(
-          `/workspaces/${workspaceId}/a2a`,
-          {
-            method: "message/send",
-            params: {
-              message: {
-                role: "user",
-                messageId: crypto.randomUUID(),
-                parts,
-              },
-              metadata: { history },
-            },
-          },
-          { timeoutMs: 120_000 },
-        )
-        .then((resp) => {
-          if (sendTokenRef.current !== myToken) return;
-          if (!sendingFromAPIRef.current) {
-            sendInFlightRef.current = false;
-            return;
-          }
-          const replyText = extractReplyText(resp);
-          const replyFiles = extractFilesFromTask(
-            (resp?.result ?? {}) as Record<string, unknown>,
-          );
-          if (replyText || replyFiles.length > 0) {
-            optionsRef.current.onAgentMessage?.(
-              createMessage("agent", replyText, replyFiles),
-            );
-          }
-          releaseSendGuards();
-        })
-        .catch(() => {
-          if (sendTokenRef.current !== myToken) return;
-          if (!sendingFromAPIRef.current) {
-            sendInFlightRef.current = false;
-            return;
-          }
-          releaseSendGuards();
-          setError("Failed to send message — agent may be unreachable");
-        });
-    },
-    [workspaceId, sending, uploading],
-  );
-
-  return {
-    sending,
-    uploading,
-    sendMessage,
-    error,
-    clearError,
-    releaseSendGuards,
-    sendingFromAPIRef,
-  };
-}
@@ -1,100 +0,0 @@
-"use client";
-
-import { useCallback, useEffect, useRef } from "react";
-import { useCanvasStore, type WorkspaceNodeData } from "@/store/canvas";
-import { useSocketEvent } from "@/hooks/useSocketEvent";
-import { createMessage, type ChatMessage } from "../types";
-
-export interface UseChatSocketCallbacks {
-  onAgentMessage?: (msg: ChatMessage) => void;
-  onActivityLog?: (entry: string) => void;
-  onSendComplete?: () => void;
-  onSendError?: (error: string) => void;
-}
-
-export function useChatSocket(
-  workspaceId: string,
-  callbacks: UseChatSocketCallbacks,
-): void {
-  const callbacksRef = useRef(callbacks);
-  callbacksRef.current = callbacks;
-
-  // Agent push messages from global store
-  const pendingAgentMsgs = useCanvasStore((s) => s.agentMessages[workspaceId]);
-  useEffect(() => {
-    if (!pendingAgentMsgs || pendingAgentMsgs.length === 0) return;
-    const consume = useCanvasStore.getState().consumeAgentMessages;
-    const msgs = consume(workspaceId);
-    for (const m of msgs) {
-      callbacksRef.current.onAgentMessage?.(
-        createMessage("agent", m.content, m.attachments),
-      );
-    }
-    if (msgs.length > 0) {
-      callbacksRef.current.onSendComplete?.();
-    }
-  }, [pendingAgentMsgs, workspaceId]);
-
-  const resolveWorkspaceName = useCallback((id: string) => {
-    const nodes = useCanvasStore.getState().nodes;
-    const node = nodes.find((n) => n.id === id);
-    return (node?.data as WorkspaceNodeData)?.name || id.slice(0, 8);
-  }, []);
-
-  useSocketEvent((msg) => {
-    try {
-      if (msg.event === "ACTIVITY_LOGGED") {
-        if (msg.workspace_id !== workspaceId) return;
-
-        const p = msg.payload || {};
-        const type = p.activity_type as string;
-        const method = (p.method as string) || "";
-        const status = (p.status as string) || "";
-        const targetId = (p.target_id as string) || "";
-        const durationMs = p.duration_ms as number | undefined;
-        const summary = (p.summary as string) || "";
-
-        let line = "";
-        if (type === "a2a_receive" && method === "message/send") {
-          const targetName = resolveWorkspaceName(targetId || msg.workspace_id);
-          if (status === "ok" && durationMs) {
-            const sec = Math.round(durationMs / 1000);
-            line = `← ${targetName} responded (${sec}s)`;
-            const own = (targetId || msg.workspace_id) === workspaceId;
-            if (own) callbacksRef.current.onSendComplete?.();
-          } else if (status === "error") {
-            line = `⚠ ${targetName} error`;
-            const own = (targetId || msg.workspace_id) === workspaceId;
-            if (own) {
-              callbacksRef.current.onSendComplete?.();
-              callbacksRef.current.onSendError?.(
-                "Agent error (Exception) — see workspace logs for details.",
-              );
-            }
-          }
-        } else if (type === "a2a_send") {
-          const targetName = resolveWorkspaceName(targetId);
-          line = `→ Delegating to ${targetName}...`;
-        } else if (type === "task_update") {
-          if (summary) line = `⟳ ${summary}`;
-        } else if (type === "agent_log") {
-          if (summary) line = summary;
-        }
-
-        if (line) {
-          callbacksRef.current.onActivityLog?.(line);
-        }
-      } else if (
-        msg.event === "TASK_UPDATED" &&
-        msg.workspace_id === workspaceId
-      ) {
-        const task = (msg.payload?.current_task as string) || "";
-        if (task) {
-          callbacksRef.current.onActivityLog?.(`⟳ ${task}`);
-        }
-      }
-    } catch {
-      /* ignore */
-    }
-  });
-}
@@ -1,5 +1,2 @@
 export { type ChatMessage, createMessage, appendMessageDeduped } from "./types";
 export { extractAgentText, extractTextsFromParts, extractResponseText } from "./message-parser";
-export { useChatHistory } from "./hooks/useChatHistory";
-export { useChatSend } from "./hooks/useChatSend";
-export { useChatSocket } from "./hooks/useChatSocket";
@@ -1,102 +0,0 @@
-// @vitest-environment jsdom
-/**
- * Tests for design-tokens.ts constant exports.
- *
- * STATUS_CONFIG is tested here directly rather than inside
- * statusDotClass.test.ts so the constant's full shape (dot, glow, label,
- * bar per key) is explicitly asserted — not just indirectly via the
- * statusDotClass helper that consumes its .dot field.
- */
-import { describe, it, expect } from "vitest";
-import { STATUS_CONFIG } from "../design-tokens";
-
-const ALL_STATUS_KEYS = [
-  "online",
-  "offline",
-  "paused",
-  "degraded",
-  "failed",
-  "provisioning",
-  "not_configured",
-] as const;
-
-describe("STATUS_CONFIG", () => {
-  it("has exactly the expected status keys and no extras", () => {
-    const actual = Object.keys(STATUS_CONFIG).sort();
-    const expected = [...ALL_STATUS_KEYS].sort();
-    expect(actual).toEqual(expected);
-  });
-
-  it("every entry has dot, glow, label, and bar fields", () => {
-    for (const key of ALL_STATUS_KEYS) {
-      const entry = STATUS_CONFIG[key];
-      expect(entry, `entry for "${key}"`).toHaveProperty("dot");
-      expect(entry, `entry for "${key}"`).toHaveProperty("glow");
-      expect(entry, `entry for "${key}"`).toHaveProperty("label");
-      expect(entry, `entry for "${key}"`).toHaveProperty("bar");
-    }
-  });
-
-  it("dot, glow, label, bar are all non-empty strings", () => {
-    for (const key of ALL_STATUS_KEYS) {
-      const entry = STATUS_CONFIG[key];
-      for (const field of ["dot", "glow", "label", "bar"] as const) {
-        expect(typeof entry[field], `"${key}".${field}`).toBe("string");
-        // label must be non-empty; others may be empty (e.g. offline.glow = "").
-        if (field === "label") {
-          expect(entry[field].length, `"${key}".${field}`).toBeGreaterThan(0);
-        }
-      }
-    }
-  });
-
-  it('online: dot is emerald, glow is set, label is "Online"', () => {
-    expect(STATUS_CONFIG.online.dot).toBe("bg-emerald-400");
-    expect(STATUS_CONFIG.online.glow).toBe("shadow-emerald-400/50");
-    expect(STATUS_CONFIG.online.label).toBe("Online");
-    expect(STATUS_CONFIG.online.bar).toBe("from-emerald-500/20 to-transparent");
-  });
-
-  it('offline: dot is zinc, glow is empty, label is "Offline"', () => {
-    expect(STATUS_CONFIG.offline.dot).toBe("bg-zinc-500");
-    expect(STATUS_CONFIG.offline.glow).toBe("");
-    expect(STATUS_CONFIG.offline.label).toBe("Offline");
-    expect(STATUS_CONFIG.offline.bar).toBe("from-zinc-600/10 to-transparent");
-  });
-
-  it('paused: dot is indigo, label is "Paused"', () => {
-    expect(STATUS_CONFIG.paused.dot).toBe("bg-indigo-400");
-    expect(STATUS_CONFIG.paused.glow).toBe("");
-    expect(STATUS_CONFIG.paused.label).toBe("Paused");
-  });
-
-  it('degraded: dot is amber with glow, label is "Degraded"', () => {
-    expect(STATUS_CONFIG.degraded.dot).toBe("bg-amber-400");
-    expect(STATUS_CONFIG.degraded.glow).toBe("shadow-amber-400/50");
-    expect(STATUS_CONFIG.degraded.label).toBe("Degraded");
-  });
-
-  it('failed: dot is red with glow, label is "Failed"', () => {
-    expect(STATUS_CONFIG.failed.dot).toBe("bg-red-400");
-    expect(STATUS_CONFIG.failed.glow).toBe("shadow-red-400/50");
-    expect(STATUS_CONFIG.failed.label).toBe("Failed");
-  });
-
-  it('provisioning: dot is sky with pulse animation, label is "Starting"', () => {
-    expect(STATUS_CONFIG.provisioning.dot).toBe("bg-sky-400 motion-safe:animate-pulse");
-    expect(STATUS_CONFIG.provisioning.glow).toBe("shadow-sky-400/50");
-    expect(STATUS_CONFIG.provisioning.label).toBe("Starting");
-  });
-
-  it('not_configured: dot is amber-300 with glow, label is "Not configured"', () => {
-    expect(STATUS_CONFIG.not_configured.dot).toBe("bg-amber-300");
-    expect(STATUS_CONFIG.not_configured.glow).toBe("shadow-amber-300/50");
-    expect(STATUS_CONFIG.not_configured.label).toBe("Not configured");
-  });
-
-  it("is a frozen static map — same key always returns same object reference", () => {
-    for (const key of ALL_STATUS_KEYS) {
-      expect(STATUS_CONFIG[key]).toBe(STATUS_CONFIG[key]);
-    }
-  });
-});
@@ -1,205 +0,0 @@
-// @vitest-environment jsdom
-"use client";
-/**
- * Tests for palette-context.tsx — MobileAccentProvider context + usePalette hook.
- *
- * Test coverage (9 cases):
- * 1. MobileAccentProvider renders children
- * 2. usePalette(false) without provider → MOL_LIGHT
- * 3. usePalette(true) without provider → MOL_DARK
- * 4. accent=null returns base palette unchanged
- * 5. accent=base.accent returns base palette unchanged (identity guard)
- * 6. accent="#custom" overrides both accent and online
- * 7. MOL_LIGHT singleton never mutated
- * 8. MOL_DARK singleton never mutated
- *
- * Plus pure-function coverage for normalizeStatus + tierCode.
- */
-import { describe, expect, it, vi, beforeEach, afterEach } from "vitest";
-import React from "react";
-import { render, screen, cleanup } from "@testing-library/react";
-import {
-  MOL_LIGHT,
-  MOL_DARK,
-  getPalette,
-  normalizeStatus,
-  tierCode,
-  MobileAccentProvider,
-  usePalette,
-} from "../palette-context";
-
-// ─── usePalette test helper ───────────────────────────────────────────────────
-// usePalette reads document.documentElement.dataset.theme internally.
-// We set this before rendering so the hook sees the right value.
-
-function setDataTheme(theme: "light" | "dark") {
-  if (typeof document !== "undefined") {
-    document.documentElement.dataset.theme = theme;
-  }
-}
-
-// ─── Pure function tests ──────────────────────────────────────────────────────
-
-describe("normalizeStatus", () => {
-  it("returns emerald-400 for online status", () => {
-    expect(normalizeStatus("online", false)).toBe("bg-emerald-400");
-    expect(normalizeStatus("online", true)).toBe("bg-emerald-400");
-  });
-
-  it("returns emerald-400 for degraded status", () => {
-    expect(normalizeStatus("degraded", false)).toBe("bg-emerald-400");
-    expect(normalizeStatus("degraded", true)).toBe("bg-emerald-400");
-  });
-
-  it("returns red-400 for failed status", () => {
-    expect(normalizeStatus("failed", false)).toBe("bg-red-400");
-    expect(normalizeStatus("failed", true)).toBe("bg-red-400");
-  });
-
-  it("returns amber-400 for paused status", () => {
-    expect(normalizeStatus("paused", false)).toBe("bg-amber-400");
-    expect(normalizeStatus("paused", true)).toBe("bg-amber-400");
-  });
-
-  it("returns amber-400 for not_configured status", () => {
-    expect(normalizeStatus("not_configured", false)).toBe("bg-amber-400");
-  });
-
-  it("returns zinc-400 for unknown status", () => {
-    expect(normalizeStatus("unknown", false)).toBe("bg-zinc-400");
-    expect(normalizeStatus("", false)).toBe("bg-zinc-400");
-  });
-});
-
-describe("tierCode", () => {
-  it("returns T1 for tier 1", () => {
-    expect(tierCode(1)).toBe("T1");
-  });
-
-  it("returns T2 for tier 2", () => {
-    expect(tierCode(2)).toBe("T2");
-  });
-
-  it("returns T4 for tier 4", () => {
-    expect(tierCode(4)).toBe("T4");
-  });
-
-  it("returns generic T{n} for non-standard tiers", () => {
-    expect(tierCode(99)).toBe("T99");
-  });
-});
-
-// ─── getPalette tests ─────────────────────────────────────────────────────────
-
-describe("getPalette — accent override", () => {
-  it("accent=null returns base palette unchanged (light)", () => {
-    const result = getPalette(null, false);
-    expect(result).toEqual({ ...MOL_LIGHT });
-    expect(result).not.toBe(MOL_LIGHT); // returned object is a copy
-  });
-
-  it("accent=null returns base palette unchanged (dark)", () => {
-    const result = getPalette(null, true);
-    expect(result).toEqual({ ...MOL_DARK });
-    expect(result).not.toBe(MOL_DARK);
-  });
-
-  it("accent=base.accent returns base palette unchanged (identity guard, light)", () => {
-    const result = getPalette(MOL_LIGHT.accent, false);
-    expect(result).toEqual({ ...MOL_LIGHT });
-    expect(result).not.toBe(MOL_LIGHT);
-  });
-
-  it("accent=base.accent returns base palette unchanged (identity guard, dark)", () => {
-    const result = getPalette(MOL_DARK.accent, true);
-    expect(result).toEqual({ ...MOL_DARK });
-    expect(result).not.toBe(MOL_DARK);
-  });
-
-  it("accent='#custom' overrides accent and online (light)", () => {
-    const result = getPalette("#ff0000", false);
-    expect(result.accent).toBe("#ff0000");
-    expect(result.online).toBe("bg-emerald-400"); // normalizeStatus("online", false)
-  });
-
-  it("accent='#custom' overrides accent and online (dark)", () => {
-    const result = getPalette("#00ff00", true);
-    expect(result.accent).toBe("#00ff00");
-    expect(result.online).toBe("bg-emerald-400"); // normalizeStatus("online", true)
-  });
-
-  it("MOL_LIGHT singleton is never mutated", () => {
-    getPalette("#mutate", false);
-    // All fields must still match the original freeze definition
-    expect(MOL_LIGHT.accent).toBe("bg-blue-500");
-    expect(MOL_LIGHT.online).toBe("bg-emerald-400");
-    expect(MOL_LIGHT.surface).toBe("bg-zinc-900");
-    expect(MOL_LIGHT.ink).toBe("text-zinc-100");
-    expect(MOL_LIGHT.line).toBe("border-zinc-700");
-    expect(MOL_LIGHT.bg).toBe("bg-zinc-950");
-  });
-
-  it("MOL_DARK singleton is never mutated", () => {
-    getPalette("#mutate", true);
-    expect(MOL_DARK.accent).toBe("bg-sky-400");
-    expect(MOL_DARK.online).toBe("bg-emerald-400");
-    expect(MOL_DARK.surface).toBe("bg-zinc-800");
-    expect(MOL_DARK.ink).toBe("text-zinc-100");
-    expect(MOL_DARK.line).toBe("border-zinc-700");
-    expect(MOL_DARK.bg).toBe("bg-zinc-950");
-  });
-
-  it("getPalette always returns a new object (no shared mutation risk)", () => {
-    const a = getPalette("#a", false);
-    const b = getPalette("#b", false);
-    expect(a).not.toBe(b);
-    expect(a.accent).not.toBe(b.accent);
-  });
-});
-
-// ─── MobileAccentProvider tests ───────────────────────────────────────────────
-
-describe("MobileAccentProvider", () => {
-  beforeEach(() => {
-    setDataTheme("light");
-  });
-
-  afterEach(() => {
-    cleanup();
-    if (typeof document !== "undefined") {
-      document.documentElement.dataset.theme = "";
-    }
-  });
-
-  it("renders children", () => {
-    render(
-      <MobileAccentProvider accent={null}>
-        <span data-testid="child">Hello</span>
-      </MobileAccentProvider>,
-    );
-    expect(screen.getByTestId("child")).toBeTruthy();
-  });
-
-  // usePalette hook reads data-theme from <html> to determine light/dark.
-  // In the test environment, data-theme is empty, which falls through to
-  // the "light" default in usePalette, giving MOL_LIGHT.
-  it("usePalette(false) without provider → MOL_LIGHT", () => {
-    setDataTheme("light");
-    function ShowPalette() {
-      const p = usePalette(false);
-      return <span data-testid="accent-light">{p.accent}</span>;
-    }
-    render(<ShowPalette />);
-    expect(screen.getByTestId("accent-light").textContent).toBe(MOL_LIGHT.accent);
-  });
-
-  it("usePalette(true) without provider → MOL_DARK when data-theme=dark", () => {
-    setDataTheme("dark");
-    function ShowPalette() {
-      const p = usePalette(true);
-      return <span data-testid="accent-dark">{p.accent}</span>;
-    }
-    render(<ShowPalette />);
-    expect(screen.getByTestId("accent-dark").textContent).toBe(MOL_DARK.accent);
-  });
-});
@@ -1,60 +0,0 @@
-// @vitest-environment jsdom
-/**
- * Tests for theme.ts — cssVar() function and ColorToken type.
- */
-import { describe, it, expect } from "vitest";
-import { cssVar, type ColorToken } from "../theme";
-
-describe("cssVar", () => {
-  it("wraps each known token in a var() reference", () => {
-    const tokens: ColorToken[] = [
-      "surface",
-      "surface-elevated",
-      "surface-sunken",
-      "surface-card",
-      "line",
-      "line-soft",
-      "ink",
-      "ink-mid",
-      "ink-soft",
-      "accent",
-      "accent-strong",
-      "warm",
-      "good",
-      "bad",
-      "bg",
-      "bg-elev",
-      "bg-card",
-      "line-strong",
-      "ink-mute",
-      "ink-dim",
-      "accent-dim",
-      "plasma",
-      "warn",
-    ];
-    for (const token of tokens) {
-      expect(cssVar(token)).toBe(`var(--color-${token})`);
-    }
-  });
-
-  it("is a pure function — same token always returns same value", () => {
-    for (let i = 0; i < 5; i++) {
-      expect(cssVar("accent")).toBe("var(--color-accent)");
-      expect(cssVar("surface")).toBe("var(--color-surface)");
-      expect(cssVar("good")).toBe("var(--color-good)");
-    }
-  });
-
-  it("handles hyphenated tokens correctly", () => {
-    expect(cssVar("surface-elevated")).toBe("var(--color-surface-elevated)");
-    expect(cssVar("line-soft")).toBe("var(--color-line-soft)");
-    expect(cssVar("ink-mute")).toBe("var(--color-ink-mute)");
-  });
-
-  it("produces a value usable as an inline style prop value", () => {
-    const result = cssVar("accent");
-    expect(typeof result).toBe("string");
-    expect(result.startsWith("var(--color-")).toBe(true);
-    expect(result.endsWith(")")).toBe(true);
-  });
-});
@@ -8,18 +8,14 @@ import { getTenantSlug } from "./tenant";
 export const PLATFORM_URL =
  process.env.NEXT_PUBLIC_PLATFORM_URL ?? "http://localhost:8080";

-// 35s is long enough for the slowest server-side path (EIC SSH
-// tunnel for tenant EC2 file operations, bounded server-side by
-// `eicFileOpTimeout = 30 * time.Second` in
-// workspace-server/internal/handlers/template_files_eic.go) so the
-// canvas surfaces the server's real error instead of aborting first
-// with a generic timeout. Shorter values caused "Save & Restart" to
-// time out at the client before the backend returned its 5xx. The
-// abort still propagates through AbortController so React components
-// can render a retry affordance. Callers that know an endpoint is
-// intentionally slow (org import walks a tree of workspaces with
-// server-side pacing) can pass `timeoutMs` to override.
-const DEFAULT_TIMEOUT_MS = 35_000;
+// 15s is long enough for slow CP queries but short enough that a
+// hung backend doesn't leave the UI spinning forever. The abort
+// propagates through AbortController so React components can observe
+// the error and render a retry affordance. Callers that know the
+// endpoint is intentionally slow (org import walks a tree of
+// workspaces with server-side pacing) can pass `timeoutMs` to
+// override.
+const DEFAULT_TIMEOUT_MS = 15_000;

 export interface RequestOptions {
  timeoutMs?: number;
@@ -1,167 +0,0 @@
-"use client";
-
-/**
- * palette-context.tsx
- *
- * Mobile canvas accent palette system.
- *
- * - MOL_LIGHT / MOL_DARK  — immutable base singletons
- * - getPalette(accent, isDark) — returns base palette or accent-overridden copy
- * - normalizeStatus(status, isDark) — maps workspace status → online dot color
- * - tierCode(tier) — maps tier number → display label
- * - MobileAccentProvider — React context that propagates accent override
- * - usePalette(allowAccentOverride) — hook; returns the effective palette
- */
-
-import { createContext, useContext } from "react";
-
-// ─── Types ─────────────────────────────────────────────────────────────────────
-
-export interface Palette {
-  /** Accent colour (CSS colour string). */
-  accent: string;
-  /** Online indicator colour (CSS class string, e.g. "bg-emerald-400"). */
-  online: string;
-  /** Surface background colour class. */
-  surface: string;
-  /** Primary text colour class. */
-  ink: string;
-  /** Border/divider colour class. */
-  line: string;
-  /** Background colour class. */
-  bg: string;
-  /** Tier display code, e.g. "T1". */
-  tier: string;
-}
-
-// ─── Singleton base palettes ────────────────────────────────────────────────────
-
-/** Light-mode base palette — must never be mutated. */
-export const MOL_LIGHT: Readonly<Palette> = Object.freeze({
-  accent: "bg-blue-500",
-  online: "bg-emerald-400",
-  surface: "bg-zinc-900",
-  ink: "text-zinc-100",
-  line: "border-zinc-700",
-  bg: "bg-zinc-950",
-  tier: "T1",
-});
-
-/** Dark-mode base palette — must never be mutated. */
-export const MOL_DARK: Readonly<Palette> = Object.freeze({
-  accent: "bg-sky-400",
-  online: "bg-emerald-400",
-  surface: "bg-zinc-800",
-  ink: "text-zinc-100",
-  line: "border-zinc-700",
-  bg: "bg-zinc-950",
-  tier: "T1",
-});
-
-// ─── Pure helpers ─────────────────────────────────────────────────────────────
-
-/**
- * Maps workspace status string → online dot colour class.
- * Returns the appropriate green for light/dark mode.
- */
-export function normalizeStatus(
-  status: string,
-  _isDark: boolean,
-): string {
-  if (status === "online" || status === "degraded") {
-    return "bg-emerald-400";
-  }
-  if (status === "failed") {
-    return "bg-red-400";
-  }
-  if (status === "paused" || status === "not_configured") {
-    return "bg-amber-400";
-  }
-  return "bg-zinc-400";
-}
-
-/**
- * Maps tier number → display code.
- */
-export function tierCode(tier: number): string {
-  return `T${tier}`;
-}
-
-/**
- * Returns the effective palette.
- *
- * - `accent = null` → base palette (light or dark) unchanged
- * - `accent = basePalette.accent` → base palette unchanged (identity guard)
- * - `accent = "#custom"` → copy with `accent` and `online` overridden
- *
- * Always returns a new object; neither MOL_LIGHT nor MOL_DARK is ever mutated.
- */
-export function getPalette(
-  accent: string | null,
-  isDark: boolean,
-): Palette {
-  const base: Readonly<Palette> = isDark ? MOL_DARK : MOL_LIGHT;
-
-  // null accent → use base unchanged
-  if (accent === null) return { ...base };
-
-  // identity guard — accent same as base accent → no override needed
-  if (accent === base.accent) return { ...base };
-
-  // Custom accent: override accent + online to keep them in sync
-  return { ...base, accent, online: normalizeStatus("online", isDark) };
-}
-
-// ─── Context ──────────────────────────────────────────────────────────────────
-
-type MobileAccentContextValue = {
-  /** Override accent colour (null = no override, use default). */
-  accent: string | null;
-};
-
-const MobileAccentContext = createContext<MobileAccentContextValue>({
-  accent: null,
-});
-
-export { MobileAccentContext };
-
-/**
- * Renders children inside the accent override context.
- */
-export function MobileAccentProvider({
-  accent,
-  children,
-}: {
-  accent: string | null;
-  children: React.ReactNode;
-}) {
-  return (
-    <MobileAccentContext.Provider value={{ accent }}>
-      {children}
-    </MobileAccentContext.Provider>
-  );
-}
-
-// ─── Hook ─────────────────────────────────────────────────────────────────────
-
-/**
- * Returns the effective `Palette` for the current context.
- *
- * @param allowAccentOverride  When false, always returns the base palette
- *                              even when an override is set (useful for
- *                              non-accent-aware child components).
- */
-export function usePalette(allowAccentOverride: boolean): Palette {
-  const { accent } = useContext(MobileAccentContext);
-
-  // Resolved from the OS-level theme preference. In a real app this would
-  // be derived from useTheme().resolvedTheme; for this hook we default
-  // to light (the safe default for SSR / component-library use).
-  // We read data-theme from <html> to stay in sync with the theme system.
-  const isDark =
-    typeof document !== "undefined" &&
-    document.documentElement.dataset.theme === "dark";
-
-  const effectiveAccent = allowAccentOverride ? accent : null;
-  return getPalette(effectiveAccent, isDark);
-}
@@ -53,9 +53,10 @@ function makeStore(
  edges: Edge[] = [],
  selectedNodeId: string | null = null,
  agentMessages: Record<string, Array<{ id: string; content: string; timestamp: string }>> = {},
-  liveAnnouncement = ""
+  liveAnnouncement = "",
+  broadcastMessages: Array<{ id: string; sender: string; senderId: string; message: string; timestamp: string }> = []
 ) {
-  const state = { nodes, edges, selectedNodeId, agentMessages, liveAnnouncement };
+  const state = { nodes, edges, selectedNodeId, agentMessages, liveAnnouncement, broadcastMessages };
  const get = () => state;
  const set = vi.fn((partial: Record<string, unknown>) => {
    Object.assign(state, partial);
@@ -1013,3 +1014,149 @@ describe("handleCanvasEvent – liveAnnouncement", () => {
    expect(state.liveAnnouncement ?? "").toBe("");
  });
 });
+
+// ---------------------------------------------------------------------------
+// BROADCAST_MESSAGE
+//
+// Verifies that incoming org-wide broadcast WebSocket events are captured
+// in the store's broadcastMessages array and announced via liveAnnouncement
+// for screen readers. The Go platform already HTML-escaped the content at
+// broadcast time (OFFSEC-015 fix), so the handler renders it as-is.
+// ---------------------------------------------------------------------------
+
+describe("handleCanvasEvent – BROADCAST_MESSAGE", () => {
+  it("appends a broadcast message to broadcastMessages with correct fields", () => {
+    const { get, set, state } = makeStore();
+
+    handleCanvasEvent(
+      makeMsg({
+        event: "BROADCAST_MESSAGE",
+        workspace_id: "ws-sender",
+        payload: {
+          sender_id: "ws-ops",
+          sender: "Ops Agent",
+          message: "All systems go — deploy in 5 minutes",
+        },
+      }),
+      get,
+      set
+    );
+
+    expect(set).toHaveBeenCalledOnce();
+    const next = set.mock.calls[0][0] as { broadcastMessages: typeof state.broadcastMessages };
+    expect(next.broadcastMessages).toHaveLength(1);
+    expect(next.broadcastMessages[0].senderId).toBe("ws-ops");
+    expect(next.broadcastMessages[0].sender).toBe("Ops Agent");
+    expect(next.broadcastMessages[0].message).toBe("All systems go — deploy in 5 minutes");
+    expect(next.broadcastMessages[0].id).toBeTruthy(); // crypto.randomUUID() called
+    expect(next.broadcastMessages[0].timestamp).toBeTruthy();
+  });
+
+  it("sets liveAnnouncement with sender and truncated message", () => {
+    const { get, set } = makeStore();
+
+    handleCanvasEvent(
+      makeMsg({
+        event: "BROADCAST_MESSAGE",
+        workspace_id: "ws-sender",
+        payload: {
+          sender_id: "ws-ops",
+          sender: "Ops Agent",
+          message: "Deploy starting now",
+        },
+      }),
+      get,
+      set
+    );
+
+    const next = set.mock.calls[0][0] as { liveAnnouncement: string };
+    expect(next.liveAnnouncement).toBe("Broadcast from Ops Agent: Deploy starting now");
+  });
+
+  it("renders sender name as truncated ID when sender field is absent", () => {
+    const { get, set, state } = makeStore();
+
+    handleCanvasEvent(
+      makeMsg({
+        event: "BROADCAST_MESSAGE",
+        workspace_id: "ws-sender",
+        payload: {
+          sender_id: "ws-ops",
+          message: "Deploy starting now",
+        },
+      }),
+      get,
+      set
+    );
+
+    const next = set.mock.calls[0][0] as { broadcastMessages: typeof state.broadcastMessages };
+    expect(next.broadcastMessages[0].sender).toBe("ws-ops".slice(0, 8)); // fallback: first 8 chars of ID
+  });
+
+  it("is a no-op when message is empty string", () => {
+    const { get, set } = makeStore();
+
+    handleCanvasEvent(
+      makeMsg({
+        event: "BROADCAST_MESSAGE",
+        workspace_id: "ws-sender",
+        payload: { sender_id: "ws-ops", sender: "Ops Agent", message: "" },
+      }),
+      get,
+      set
+    );
+
+    expect(set).not.toHaveBeenCalled();
+  });
+
+  it("appends to existing broadcastMessages without replacing them", () => {
+    const { get, set, state } = makeStore([], [], null, {}, "", [
+      {
+        id: "existing-1",
+        senderId: "ws-old",
+        sender: "Old Agent",
+        message: "Previous broadcast",
+        timestamp: "2026-05-14T12:00:00Z",
+      },
+    ]);
+
+    handleCanvasEvent(
+      makeMsg({
+        event: "BROADCAST_MESSAGE",
+        workspace_id: "ws-sender",
+        payload: { sender_id: "ws-ops", sender: "Ops Agent", message: "New broadcast" },
+      }),
+      get,
+      set
+    );
+
+    const next = set.mock.calls[0][0] as { broadcastMessages: typeof state.broadcastMessages };
+    expect(next.broadcastMessages).toHaveLength(2);
+    expect(next.broadcastMessages[0].id).toBe("existing-1");
+    expect(next.broadcastMessages[1].message).toBe("New broadcast");
+  });
+
+  it("handles XSS-like content safely (content is pre-escaped by Go platform)", () => {
+    const { get, set, state } = makeStore();
+
+    // The Go platform applied html.EscapeString before sending, so the handler
+    // receives literal strings, not raw HTML. This test verifies no panic and
+    // correct storage.
+    handleCanvasEvent(
+      makeMsg({
+        event: "BROADCAST_MESSAGE",
+        workspace_id: "ws-evil",
+        payload: {
+          sender_id: "ws-evil",
+          sender: "Evil Sender",
+          message: "&lt;script&gt;alert(&#39;xss&#39;)&lt;/script&gt;",
+        },
+      }),
+      get,
+      set
+    );
+
+    const next = set.mock.calls[0][0] as { broadcastMessages: typeof state.broadcastMessages };
+    expect(next.broadcastMessages[0].message).toBe("&lt;script&gt;alert(&#39;xss&#39;)&lt;/script&gt;");
+  });
+});
@@ -72,6 +72,7 @@ export function handleCanvasEvent(
    edges: Edge[];
    selectedNodeId: string | null;
    agentMessages: Record<string, Array<{ id: string; content: string; timestamp: string; attachments?: Array<{ name: string; uri: string; mimeType?: string; size?: number }> }>>;
+    broadcastMessages: Array<{ id: string; sender: string; senderId: string; message: string; timestamp: string }>;
  },
  set: (partial: Record<string, unknown>) => void,
 ): void {
@@ -515,6 +516,34 @@ export function handleCanvasEvent(
      break;
    }

+    case "BROADCAST_MESSAGE": {
+      // An agent workspace sent an org-wide broadcast. Display it as a
+      // dismissible banner so the user is always aware of org-wide signals
+      // even when no workspace is selected. The Go platform already HTML-
+      // escaped the content at broadcast time (OFFSEC-015 fix), so it is
+      // safe to render as innerText equivalent via dangerouslySetInnerHTML
+      // is not needed — just render the string as-is.
+      const senderId = (msg.payload.sender_id as string) ?? "";
+      const sender = (msg.payload.sender as string) ?? senderId.slice(0, 8);
+      const message = (msg.payload.message as string) ?? "";
+      if (!message) break;
+      const { broadcastMessages } = get();
+      set({
+        broadcastMessages: [
+          ...broadcastMessages,
+          {
+            id: crypto.randomUUID(),
+            senderId,
+            sender,
+            message,
+            timestamp: new Date().toISOString(),
+          },
+        ],
+        liveAnnouncement: `Broadcast from ${sender}: ${message}`,
+      });
+      break;
+    }
+
    default:
      break;
  }
@@ -244,6 +244,12 @@ interface CanvasState {
   *  so the same announcement doesn't re-fire on re-render. */
  liveAnnouncement: string;
  setLiveAnnouncement: (msg: string) => void;
+  /** Incoming org-wide broadcast messages received via BROADCAST_MESSAGE
+   *  WebSocket events. Consumed by the BroadcastBanner component; each
+   *  entry is cleared after the user dismisses it so dismissed broadcasts
+   *  don't reappear on reconnect. */
+  broadcastMessages: Array<{ id: string; sender: string; senderId: string; message: string; timestamp: string }>;
+  consumeBroadcastMessages: () => Array<{ id: string; sender: string; senderId: string; message: string; timestamp: string }>;
 }

 export const useCanvasStore = create<CanvasState>((set, get) => ({
@@ -342,6 +348,12 @@ export const useCanvasStore = create<CanvasState>((set, get) => ({
  },
  liveAnnouncement: "",
  setLiveAnnouncement: (msg) => set({ liveAnnouncement: msg }),
+  broadcastMessages: [],
+  consumeBroadcastMessages: () => {
+    const msgs = get().broadcastMessages;
+    set({ broadcastMessages: [] });
+    return msgs;
+  },

  viewport: { x: 0, y: 0, zoom: 1 },

@@ -1,296 +0,0 @@
-#!/usr/bin/env bash
-# E2E test: workspace broadcast and talk-to-user platform abilities.
-#
-# What this proves:
-#   1. talk_to_user_enabled (default true) — POST /notify works out-of-the-box.
-#   2. PATCH /workspaces/:id/abilities { talk_to_user_enabled: false } disables
-#      delivery: /notify → 403 with error="talk_to_user_disabled" + delegate hint.
-#   3. Re-enabling talk_to_user_enabled restores delivery.
-#   4. broadcast_enabled (default false) — POST /broadcast → 403 when disabled.
-#   5. PATCH { broadcast_enabled: true } enables fan-out.
-#   6. POST /broadcast delivers to all non-sender, non-removed workspaces:
-#      - Returns {"status":"sent","delivered":N}
-#      - Receiver's activity log has a broadcast_receive entry with the message.
-#      - Sender's activity log has a broadcast_sent entry.
-#   7. The sender itself does NOT receive a broadcast_receive entry.
-#
-# Usage:  tests/e2e/test_workspace_abilities_e2e.sh
-# Prereqs: workspace-server on http://localhost:8080, MOLECULE_ENV != production
-
-set -euo pipefail
-
-source "$(dirname "$0")/_lib.sh"
-
-PASS=0
-FAIL=0
-SENDER_ID=""
-RECEIVER_ID=""
-
-cleanup() {
-  for wid in "$SENDER_ID" "$RECEIVER_ID"; do
-    if [ -n "$wid" ]; then
-      curl -s -X DELETE "$BASE/workspaces/$wid?confirm=true" > /dev/null || true
-    fi
-  done
-}
-trap cleanup EXIT INT TERM
-
-assert() {
-  local label="$1" actual="$2" expected="$3"
-  if [ "$actual" = "$expected" ]; then
-    echo "  PASS — $label"
-    PASS=$((PASS+1))
-  else
-    echo "  FAIL — $label"
-    echo "         expected: $expected"
-    echo "         actual:   $actual"
-    FAIL=$((FAIL+1))
-  fi
-}
-
-assert_contains() {
-  local label="$1" haystack="$2" needle="$3"
-  if echo "$haystack" | grep -qF "$needle"; then
-    echo "  PASS — $label"
-    PASS=$((PASS+1))
-  else
-    echo "  FAIL — $label"
-    echo "         needle:   $needle"
-    echo "         haystack: $haystack"
-    FAIL=$((FAIL+1))
-  fi
-}
-
-assert_not_contains() {
-  local label="$1" haystack="$2" needle="$3"
-  if ! echo "$haystack" | grep -qF "$needle"; then
-    echo "  PASS — $label"
-    PASS=$((PASS+1))
-  else
-    echo "  FAIL — $label (unexpected match)"
-    echo "         needle:   $needle"
-    echo "         haystack: $haystack"
-    FAIL=$((FAIL+1))
-  fi
-}
-
-# ── Pre-sweep: remove any stale leftover workspaces from a prior aborted run ──
-echo "=== Setup ==="
-for NAME in "Abilities Sender" "Abilities Receiver"; do
-  PRIOR=$(curl -s "$BASE/workspaces" | python3 -c "
-import json, sys
-try:
-    print(' '.join(w['id'] for w in json.load(sys.stdin) if w.get('name') == '$NAME'))
-except Exception:
-    pass
-")
-  for _wid in $PRIOR; do
-    echo "Sweeping leftover '$NAME' workspace: $_wid"
-    curl -s -X DELETE "$BASE/workspaces/$_wid?confirm=true" > /dev/null || true
-  done
-done
-
-R=$(curl -s -X POST "$BASE/workspaces" -H "Content-Type: application/json" \
-  -d '{"name":"Abilities Sender","tier":1}')
-SENDER_ID=$(echo "$R" | python3 -c 'import json,sys;print(json.load(sys.stdin)["id"])' 2>/dev/null || true)
-[ -n "$SENDER_ID" ] || { echo "Failed to create sender workspace: $R"; exit 1; }
-echo "Created sender   workspace: $SENDER_ID"
-
-R=$(curl -s -X POST "$BASE/workspaces" -H "Content-Type: application/json" \
-  -d '{"name":"Abilities Receiver","tier":1}')
-RECEIVER_ID=$(echo "$R" | python3 -c 'import json,sys;print(json.load(sys.stdin)["id"])' 2>/dev/null || true)
-[ -n "$RECEIVER_ID" ] || { echo "Failed to create receiver workspace: $R"; exit 1; }
-echo "Created receiver workspace: $RECEIVER_ID"
-
-# Mint workspace-scoped bearer tokens (test-only endpoint, disabled in prod).
-SENDER_TOKEN=$(e2e_mint_test_token "$SENDER_ID")
-[ -n "$SENDER_TOKEN" ] || { echo "Failed to mint sender token"; exit 1; }
-SENDER_AUTH="Authorization: Bearer $SENDER_TOKEN"
-
-# Admin token — any live workspace bearer satisfies AdminAuth in local dev.
-# In production-like envs, set MOLECULE_ADMIN_TOKEN.
-ADMIN_TOKEN="${MOLECULE_ADMIN_TOKEN:-$SENDER_TOKEN}"
-ADMIN_AUTH="Authorization: Bearer $ADMIN_TOKEN"
-
-# ─────────────────────────────────────────────────────────────────────────────
-echo ""
-echo "=== Part 1: talk_to_user ability ==="
-
-echo ""
-echo "--- 1a: /notify works with default talk_to_user_enabled=true ---"
-CODE=$(curl -s -o /dev/null -w "%{http_code}" -X POST "$BASE/workspaces/$SENDER_ID/notify" \
-  -H "Content-Type: application/json" -H "$SENDER_AUTH" \
-  -d '{"message":"Hello from sender"}')
-assert "POST /notify returns 200 when talk_to_user_enabled=true (default)" "$CODE" "200"
-
-echo ""
-echo "--- 1b: Disable talk_to_user ---"
-CODE=$(curl -s -o /dev/null -w "%{http_code}" -X PATCH "$BASE/workspaces/$SENDER_ID/abilities" \
-  -H "Content-Type: application/json" -H "$ADMIN_AUTH" \
-  -d '{"talk_to_user_enabled": false}')
-assert "PATCH /abilities talk_to_user_enabled=false returns 200" "$CODE" "200"
-
-# Verify the flag is reflected in the workspace GET response.
-WS=$(curl -s "$BASE/workspaces/$SENDER_ID" -H "$SENDER_AUTH")
-FLAG=$(echo "$WS" | python3 -c 'import json,sys;print(json.load(sys.stdin).get("talk_to_user_enabled","MISSING"))')
-assert "GET /workspaces/:id reflects talk_to_user_enabled=false" "$FLAG" "False"
-
-echo ""
-echo "--- 1c: /notify blocked when talk_to_user disabled ---"
-BODY=$(curl -s -w "" -X POST "$BASE/workspaces/$SENDER_ID/notify" \
-  -H "Content-Type: application/json" -H "$SENDER_AUTH" \
-  -d '{"message":"Should be blocked"}')
-CODE=$(curl -s -o /dev/null -w "%{http_code}" -X POST "$BASE/workspaces/$SENDER_ID/notify" \
-  -H "Content-Type: application/json" -H "$SENDER_AUTH" \
-  -d '{"message":"Should be blocked"}')
-assert "POST /notify returns 403 when talk_to_user_enabled=false" "$CODE" "403"
-
-ERR=$(echo "$BODY" | python3 -c 'import json,sys;print(json.load(sys.stdin).get("error",""))' 2>/dev/null || echo "")
-assert_contains "403 body contains talk_to_user_disabled error code" "$ERR" "talk_to_user_disabled"
-
-HINT=$(echo "$BODY" | python3 -c 'import json,sys;print(json.load(sys.stdin).get("hint",""))' 2>/dev/null || echo "")
-assert_contains "403 body contains delegate_task hint" "$HINT" "delegate_task"
-
-echo ""
-echo "--- 1d: Re-enable talk_to_user and verify /notify works again ---"
-CODE=$(curl -s -o /dev/null -w "%{http_code}" -X PATCH "$BASE/workspaces/$SENDER_ID/abilities" \
-  -H "Content-Type: application/json" -H "$ADMIN_AUTH" \
-  -d '{"talk_to_user_enabled": true}')
-assert "PATCH /abilities talk_to_user_enabled=true returns 200" "$CODE" "200"
-
-CODE=$(curl -s -o /dev/null -w "%{http_code}" -X POST "$BASE/workspaces/$SENDER_ID/notify" \
-  -H "Content-Type: application/json" -H "$SENDER_AUTH" \
-  -d '{"message":"Re-enabled, should work"}')
-assert "POST /notify returns 200 after re-enabling talk_to_user" "$CODE" "200"
-
-# ─────────────────────────────────────────────────────────────────────────────
-echo ""
-echo "=== Part 2: broadcast ability ==="
-
-echo ""
-echo "--- 2a: Broadcast blocked by default (broadcast_enabled=false) ---"
-CODE=$(curl -s -o /dev/null -w "%{http_code}" -X POST "$BASE/workspaces/$SENDER_ID/broadcast" \
-  -H "Content-Type: application/json" -H "$SENDER_AUTH" \
-  -d '{"message":"Should be blocked"}')
-assert "POST /broadcast returns 403 when broadcast_enabled=false (default)" "$CODE" "403"
-
-echo ""
-echo "--- 2b: Enable broadcast ---"
-CODE=$(curl -s -o /dev/null -w "%{http_code}" -X PATCH "$BASE/workspaces/$SENDER_ID/abilities" \
-  -H "Content-Type: application/json" -H "$ADMIN_AUTH" \
-  -d '{"broadcast_enabled": true}')
-assert "PATCH /abilities broadcast_enabled=true returns 200" "$CODE" "200"
-
-WS=$(curl -s "$BASE/workspaces/$SENDER_ID" -H "$SENDER_AUTH")
-FLAG=$(echo "$WS" | python3 -c 'import json,sys;print(json.load(sys.stdin).get("broadcast_enabled","MISSING"))')
-assert "GET /workspaces/:id reflects broadcast_enabled=true" "$FLAG" "True"
-
-echo ""
-echo "--- 2c: Successful broadcast fan-out ---"
-BCAST=$(curl -s -X POST "$BASE/workspaces/$SENDER_ID/broadcast" \
-  -H "Content-Type: application/json" -H "$SENDER_AUTH" \
-  -d '{"message":"Org-wide notice: scheduled maintenance in 5 minutes."}')
-BSTATUS=$(echo "$BCAST" | python3 -c 'import json,sys;print(json.load(sys.stdin).get("status",""))' 2>/dev/null || echo "")
-BDELIVERED=$(echo "$BCAST" | python3 -c 'import json,sys;print(json.load(sys.stdin).get("delivered","-1"))' 2>/dev/null || echo "-1")
-assert "POST /broadcast returns status=sent" "$BSTATUS" "sent"
-
-# delivered count must be >= 1 (the receiver workspace).
-echo "  INFO — broadcast delivered=$BDELIVERED"
-if python3 -c "import sys; sys.exit(0 if int('$BDELIVERED') >= 1 else 1)" 2>/dev/null; then
-  echo "  PASS — delivered count >= 1"
-  PASS=$((PASS+1))
-else
-  echo "  FAIL — expected delivered >= 1, got $BDELIVERED"
-  FAIL=$((FAIL+1))
-fi
-
-echo ""
-echo "--- 2d: Receiver activity log has broadcast_receive entry ---"
-RECEIVER_TOKEN=$(e2e_mint_test_token "$RECEIVER_ID")
-[ -n "$RECEIVER_TOKEN" ] || { echo "Failed to mint receiver token"; exit 1; }
-RECEIVER_AUTH="Authorization: Bearer $RECEIVER_TOKEN"
-
-ACT=$(curl -s -H "$RECEIVER_AUTH" "$BASE/workspaces/$RECEIVER_ID/activity?source=agent&limit=20")
-ROW=$(echo "$ACT" | python3 -c '
-import json, sys
-rows = json.load(sys.stdin) or []
-for r in rows:
-    if r.get("activity_type") == "broadcast_receive":
-        print(json.dumps(r))
-        break
-')
-[ -n "$ROW" ] || {
-  echo "  FAIL — could not find broadcast_receive row in receiver activity"
-  FAIL=$((FAIL+1))
-}
-
-if [ -n "$ROW" ]; then
-  # Message is stored in summary field.
-  MSG=$(echo "$ROW" | python3 -c 'import json,sys;r=json.load(sys.stdin);print(r.get("summary",""))')
-  assert_contains "broadcast_receive row summary has original message" "$MSG" "scheduled maintenance"
-  # Sender ID is stored in source_id field.
-  SRC=$(echo "$ROW" | python3 -c 'import json,sys;r=json.load(sys.stdin);print(r.get("source_id",""))')
-  assert "broadcast_receive row source_id is sender workspace" "$SRC" "$SENDER_ID"
-fi
-
-echo ""
-echo "--- 2e: Sender activity log has broadcast_sent entry ---"
-ACT_SENDER=$(curl -s -H "$SENDER_AUTH" "$BASE/workspaces/$SENDER_ID/activity?limit=20")
-SENT_ROW=$(echo "$ACT_SENDER" | python3 -c '
-import json, sys
-rows = json.load(sys.stdin) or []
-for r in rows:
-    if r.get("activity_type") == "broadcast_sent":
-        print(json.dumps(r))
-        break
-')
-[ -n "$SENT_ROW" ] || {
-  echo "  FAIL — could not find broadcast_sent row in sender activity"
-  FAIL=$((FAIL+1))
-}
-
-if [ -n "$SENT_ROW" ]; then
-  # Delivered count is baked into the summary field (no response_body for sender row).
-  SUMMARY=$(echo "$SENT_ROW" | python3 -c 'import json,sys;print(json.load(sys.stdin).get("summary",""))')
-  assert_contains "broadcast_sent summary mentions workspace count" "$SUMMARY" "workspace"
-fi
-
-echo ""
-echo "--- 2f: Sender does NOT receive a broadcast_receive entry ---"
-SELF_RECV=$(echo "$ACT_SENDER" | python3 -c '
-import json, sys
-rows = json.load(sys.stdin) or []
-for r in rows:
-    if r.get("activity_type") == "broadcast_receive":
-        print("found")
-        break
-')
-assert_not_contains "sender has no broadcast_receive in own activity log" "${SELF_RECV:-}" "found"
-
-# ─────────────────────────────────────────────────────────────────────────────
-echo ""
-echo "--- 2g: Empty message is rejected ---"
-CODE=$(curl -s -o /dev/null -w "%{http_code}" -X POST "$BASE/workspaces/$SENDER_ID/broadcast" \
-  -H "Content-Type: application/json" -H "$SENDER_AUTH" \
-  -d '{"message":""}')
-assert "POST /broadcast with empty message returns 400" "$CODE" "400"
-
-echo ""
-echo "--- 2h: Partial PATCH does not clobber other flags ---"
-# Set talk_to_user=false, then patch only broadcast — talk_to_user must stay false.
-curl -s -o /dev/null -X PATCH "$BASE/workspaces/$SENDER_ID/abilities" \
-  -H "Content-Type: application/json" -H "$ADMIN_AUTH" \
-  -d '{"talk_to_user_enabled": false}'
-curl -s -o /dev/null -X PATCH "$BASE/workspaces/$SENDER_ID/abilities" \
-  -H "Content-Type: application/json" -H "$ADMIN_AUTH" \
-  -d '{"broadcast_enabled": false}'
-WS=$(curl -s "$BASE/workspaces/$SENDER_ID" -H "$SENDER_AUTH")
-TUF=$(echo "$WS" | python3 -c 'import json,sys;print(json.load(sys.stdin).get("talk_to_user_enabled","MISSING"))')
-BEF=$(echo "$WS" | python3 -c 'import json,sys;print(json.load(sys.stdin).get("broadcast_enabled","MISSING"))')
-assert "partial PATCH preserves talk_to_user_enabled=false" "$TUF" "False"
-assert "partial PATCH sets broadcast_enabled=false" "$BEF" "False"
-
-# ─────────────────────────────────────────────────────────────────────────────
-echo ""
-echo "=== Results: $PASS passed, $FAIL failed ==="
-[ "$FAIL" -eq 0 ]
@@ -18,7 +18,6 @@ require (
 	github.com/opencontainers/image-spec v1.1.1
 	github.com/redis/go-redis/v9 v9.19.0
 	github.com/robfig/cron/v3 v3.0.1
-	github.com/stretchr/testify v1.11.1
 	go.moleculesai.app/plugin/gh-identity v0.0.0-20260509010445-788988195fce
 	golang.org/x/crypto v0.50.0
 	gopkg.in/yaml.v3 v3.0.1
@@ -34,7 +33,6 @@ require (
 	github.com/containerd/errdefs v1.0.0 // indirect
 	github.com/containerd/errdefs/pkg v0.3.0 // indirect
 	github.com/containerd/log v0.1.0 // indirect
-	github.com/davecgh/go-spew v1.1.1 // indirect
 	github.com/distribution/reference v0.6.0 // indirect
 	github.com/docker/go-units v0.5.0 // indirect
 	github.com/felixge/httpsnoop v1.0.4 // indirect
@@ -60,7 +58,6 @@ require (
 	github.com/opencontainers/go-digest v1.0.0 // indirect
 	github.com/pelletier/go-toml/v2 v2.2.4 // indirect
 	github.com/pkg/errors v0.9.1 // indirect
-	github.com/pmezard/go-difflib v1.0.0 // indirect
 	github.com/quic-go/qpack v0.6.0 // indirect
 	github.com/quic-go/quic-go v0.59.0 // indirect
 	github.com/twitchyliquid64/golang-asm v0.15.1 // indirect
@@ -1,261 +0,0 @@
-package bundle
-
-import (
-	"os"
-	"path/filepath"
-	"testing"
-)
-
-// ---------------------------------------------------------------------------
-// extractDescription
-// ---------------------------------------------------------------------------
-
-func TestExtractDescription_WithFrontmatter(t *testing.T) {
-	// YAML frontmatter is skipped; first non-comment, non-empty line after
-	// the closing `---` is the description.
-	content := `---
-title: My Workspace
---
-# This is a comment
-This is the description line.
-Another line.`
-	got := extractDescription(content)
-	if got != "This is the description line." {
-		t.Errorf("got %q, want %q", got, "This is the description line.")
-	}
-}
-
-func TestExtractDescription_NoFrontmatter(t *testing.T) {
-	// No frontmatter: first non-comment, non-empty line is returned.
-	content := `# Copyright header
-My workspace description
-Another line.`
-	got := extractDescription(content)
-	if got != "My workspace description" {
-		t.Errorf("got %q, want %q", got, "My workspace description")
-	}
-}
-
-func TestExtractDescription_CommentOnly(t *testing.T) {
-	// All content is comments or empty → empty string.
-	content := `# comment only
-# another comment
-`
-	got := extractDescription(content)
-	if got != "" {
-		t.Errorf("got %q, want empty string", got)
-	}
-}
-
-func TestExtractDescription_EmptyInput(t *testing.T) {
-	got := extractDescription("")
-	if got != "" {
-		t.Errorf("got %q, want empty string", got)
-	}
-}
-
-func TestExtractDescription_UnclosedFrontmatter(t *testing.T) {
-	// With no closing `---`, inFrontmatter stays true after the opening
-	// delimiter, so all subsequent lines are skipped and "" is returned.
-	// This is the documented behaviour: without a closing delimiter,
-	// all lines are considered frontmatter.
-	content := `---
-title: No closing delimiter
-This is the description.`
-	got := extractDescription(content)
-	if got != "" {
-		t.Errorf("unclosed frontmatter: got %q, want empty string", got)
-	}
-}
-
-func TestExtractDescription_FrontmatterThenCommentThenContent(t *testing.T) {
-	content := `---
-tags: [test]
---
-# internal comment
-Real description here.
-`
-	got := extractDescription(content)
-	if got != "Real description here." {
-		t.Errorf("got %q, want %q", got, "Real description here.")
-	}
-}
-
-func TestExtractDescription_BlankLinesSkipped(t *testing.T) {
-	// Empty lines (len=0) are skipped; whitespace-only lines (spaces) are NOT
-	// skipped because len(line)>0. First non-comment, non-empty line is returned.
-	content := "\n\n\n\nA. Description\nB. Should not be returned.\n"
-	got := extractDescription(content)
-	if got != "A. Description" {
-		t.Errorf("got %q, want %q", got, "A. Description")
-	}
-}
-
-// ---------------------------------------------------------------------------
-// splitLines
-// ---------------------------------------------------------------------------
-
-func TestSplitLines_Basic(t *testing.T) {
-	got := splitLines("a\nb\nc")
-	want := []string{"a", "b", "c"}
-	if len(got) != len(want) {
-		t.Fatalf("len=%d, want %d", len(got), len(want))
-	}
-	for i := range want {
-		if got[i] != want[i] {
-			t.Errorf("got[%d]=%q, want %q", i, got[i], want[i])
-		}
-	}
-}
-
-func TestSplitLines_TrailingNewline(t *testing.T) {
-	got := splitLines("line1\nline2\n")
-	want := []string{"line1", "line2"}
-	if len(got) != len(want) {
-		t.Errorf("trailing newline: got %v, want %v", got, want)
-	}
-}
-
-func TestSplitLines_NoNewline(t *testing.T) {
-	got := splitLines("no newline")
-	want := []string{"no newline"}
-	if len(got) != 1 || got[0] != want[0] {
-		t.Errorf("got %v, want %v", got, want)
-	}
-}
-
-func TestSplitLines_EmptyString(t *testing.T) {
-	got := splitLines("")
-	if len(got) != 0 {
-		t.Errorf("empty string: got %v, want []", got)
-	}
-}
-
-func TestSplitLines_OnlyNewlines(t *testing.T) {
-	got := splitLines("\n\n\n")
-	// Three consecutive '\n' characters → s[start:i] at each '\n' gives
-	// the empty string between newlines → 3 empty segments.
-	// (No trailing segment because start == len(s) at the end.)
-	if len(got) != 3 {
-		t.Errorf("only newlines: got %v (len=%d), want 3 empty strings", got, len(got))
-	}
-	for i, s := range got {
-		if s != "" {
-			t.Errorf("got[%d]=%q, want empty string", i, s)
-		}
-	}
-}
-
-func TestSplitLines_MultipleConsecutiveNewlines(t *testing.T) {
-	got := splitLines("a\n\n\nb")
-	// a\n\n\nb → ["a", "", "", "b"]
-	if len(got) != 4 {
-		t.Errorf("consecutive newlines: got %v (len=%d)", got, len(got))
-	}
-	if got[0] != "a" || got[3] != "b" {
-		t.Errorf("first/last: got %v, want [a, ..., b]", got)
-	}
-}
-
-// ---------------------------------------------------------------------------
-// findConfigDir
-// ---------------------------------------------------------------------------
-
-func TestFindConfigDir_NameMatch(t *testing.T) {
-	tmp := t.TempDir()
-
-	// Create two sub-dirs; only the one with matching name should be found.
-	mustMkdir(filepath.Join(tmp, "workspace-a"))
-	mustWrite(filepath.Join(tmp, "workspace-a", "config.yaml"),
-		"name: other-workspace\ntier: 1\n")
-
-	mustMkdir(filepath.Join(tmp, "workspace-b"))
-	mustWrite(filepath.Join(tmp, "workspace-b", "config.yaml"),
-		"name: target-workspace\nruntime: claude-code\n")
-
-	got := findConfigDir(tmp, "target-workspace")
-	want := filepath.Join(tmp, "workspace-b")
-	if got != want {
-		t.Errorf("got %q, want %q", got, want)
-	}
-}
-
-func TestFindConfigDir_NoMatch_UsesFallback(t *testing.T) {
-	tmp := t.TempDir()
-
-	mustMkdir(filepath.Join(tmp, "first"))
-	mustWrite(filepath.Join(tmp, "first", "config.yaml"), "name: workspace-a\n")
-
-	mustMkdir(filepath.Join(tmp, "second"))
-	mustWrite(filepath.Join(tmp, "second", "config.yaml"), "name: workspace-b\n")
-
-	// No exact name match → fallback to the first directory with a config.yaml.
-	got := findConfigDir(tmp, "nonexistent")
-	want := filepath.Join(tmp, "first")
-	if got != want {
-		t.Errorf("no match: got %q, want fallback %q", got, want)
-	}
-}
-
-func TestFindConfigDir_MissingDir(t *testing.T) {
-	got := findConfigDir("/nonexistent/path/for/findConfigDir", "any-name")
-	if got != "" {
-		t.Errorf("missing dir: got %q, want empty string", got)
-	}
-}
-
-func TestFindConfigDir_NoSubdirs(t *testing.T) {
-	tmp := t.TempDir()
-	// Empty directory → no matches, no fallback.
-	got := findConfigDir(tmp, "any")
-	if got != "" {
-		t.Errorf("empty dir: got %q, want empty string", got)
-	}
-}
-
-// ---------------------------------------------------------------------------
-// Helpers
-// ---------------------------------------------------------------------------
-
-func mustMkdir(path string) {
-	os.MkdirAll(path, 0o755)
-}
-
-func mustWrite(path, content string) {
-	os.WriteFile(path, []byte(content), 0o644)
-}
-
-// ---------------------------------------------------------------------------
-// findConfigDir
-// ---------------------------------------------------------------------------
-
-func TestFindConfigDir_SubdirWithoutConfig(t *testing.T) {
-	tmp := t.TempDir()
-	mustMkdir(filepath.Join(tmp, "empty-skill"))
-	// Sub-dir without config.yaml → skipped.
-	got := findConfigDir(tmp, "any")
-	if got != "" {
-		t.Errorf("no config.yaml: got %q, want empty string", got)
-	}
-}
-
-func TestFindConfigDir_FirstWithConfigIsFallback(t *testing.T) {
-	// When name doesn't match, fallback is the FIRST dir with config.yaml,
-	// not the last. Confirm ordering by creating three dirs.
-	tmp := t.TempDir()
-
-	mustMkdir(filepath.Join(tmp, "a"))
-	mustWrite(filepath.Join(tmp, "a", "config.yaml"), "name: alpha\n")
-
-	mustMkdir(filepath.Join(tmp, "b"))
-	mustWrite(filepath.Join(tmp, "b", "config.yaml"), "name: beta\n")
-
-	mustMkdir(filepath.Join(tmp, "c"))
-	mustWrite(filepath.Join(tmp, "c", "config.yaml"), "name: gamma\n")
-
-	got := findConfigDir(tmp, "nonexistent")
-	want := filepath.Join(tmp, "a") // first dir with config.yaml
-	if got != want {
-		t.Errorf("fallback order: got %q, want first-with-config %q", got, want)
-	}
-}
@@ -1,317 +0,0 @@
-package bundle
-
-import (
-	"testing"
-)
-
-func TestBuildBundleConfigFiles_EmptyBundle(t *testing.T) {
-	b := &Bundle{}
-	files := buildBundleConfigFiles(b)
-	if len(files) != 0 {
-		t.Errorf("empty bundle: want 0 files, got %d", len(files))
-	}
-}
-
-func TestBuildBundleConfigFiles_SystemPromptOnly(t *testing.T) {
-	b := &Bundle{
-		SystemPrompt: "You are a helpful assistant.",
-	}
-	files := buildBundleConfigFiles(b)
-	if n := len(files); n != 1 {
-		t.Fatalf("system-prompt only: want 1 file, got %d", n)
-	}
-	if content, ok := files["system-prompt.md"]; !ok {
-		t.Fatal("missing system-prompt.md")
-	} else if string(content) != "You are a helpful assistant." {
-		t.Errorf("system-prompt content: got %q", string(content))
-	}
-}
-
-func TestBuildBundleConfigFiles_ConfigYamlOnly(t *testing.T) {
-	b := &Bundle{
-		Prompts: map[string]string{
-			"config.yaml": "runtime: langgraph\ntier: 2\n",
-		},
-	}
-	files := buildBundleConfigFiles(b)
-	if n := len(files); n != 1 {
-		t.Fatalf("config.yaml only: want 1 file, got %d", n)
-	}
-	if content, ok := files["config.yaml"]; !ok {
-		t.Fatal("missing config.yaml")
-	} else if string(content) != "runtime: langgraph\ntier: 2\n" {
-		t.Errorf("config.yaml content: got %q", string(content))
-	}
-}
-
-func TestBuildBundleConfigFiles_SystemPromptAndConfigYaml(t *testing.T) {
-	b := &Bundle{
-		SystemPrompt: "Be concise.",
-		Prompts: map[string]string{
-			"config.yaml": "runtime: langgraph\n",
-		},
-	}
-	files := buildBundleConfigFiles(b)
-	if n := len(files); n != 2 {
-		t.Fatalf("system-prompt + config.yaml: want 2 files, got %d", n)
-	}
-	if _, ok := files["system-prompt.md"]; !ok {
-		t.Error("missing system-prompt.md")
-	}
-	if _, ok := files["config.yaml"]; !ok {
-		t.Error("missing config.yaml")
-	}
-}
-
-func TestBuildBundleConfigFiles_Skills(t *testing.T) {
-	b := &Bundle{
-		Skills: []BundleSkill{
-			{
-				ID:   "web-search",
-				Files: map[string]string{"readme.md": "# Web Search\n"},
-			},
-			{
-				ID:   "code-interpreter",
-				Files: map[string]string{"readme.md": "# Code Interpreter\n"},
-			},
-		},
-	}
-	files := buildBundleConfigFiles(b)
-	// 2 skills × 1 file each = 2 files
-	if n := len(files); n != 2 {
-		t.Fatalf("skills: want 2 files, got %d", n)
-	}
-	if _, ok := files["skills/web-search/readme.md"]; !ok {
-		t.Error("missing skills/web-search/readme.md")
-	}
-	if _, ok := files["skills/code-interpreter/readme.md"]; !ok {
-		t.Error("missing skills/code-interpreter/readme.md")
-	}
-}
-
-func TestBuildBundleConfigFiles_SkillSubPaths(t *testing.T) {
-	b := &Bundle{
-		Skills: []BundleSkill{
-			{
-				ID: "multi-file",
-				Files: map[string]string{
-					"readme.md":        "# Multi",
-					"instructions.txt": "Step 1, Step 2",
-				},
-			},
-		},
-	}
-	files := buildBundleConfigFiles(b)
-	if n := len(files); n != 2 {
-		t.Fatalf("skill with sub-paths: want 2 files, got %d", n)
-	}
-	if _, ok := files["skills/multi-file/readme.md"]; !ok {
-		t.Error("missing skills/multi-file/readme.md")
-	}
-	if _, ok := files["skills/multi-file/instructions.txt"]; !ok {
-		t.Error("missing skills/multi-file/instructions.txt")
-	}
-}
-
-func TestBuildBundleConfigFiles_EmptySystemPrompt(t *testing.T) {
-	b := &Bundle{
-		SystemPrompt: "",
-		Prompts: map[string]string{
-			"config.yaml": "runtime: langgraph\n",
-		},
-	}
-	files := buildBundleConfigFiles(b)
-	// Empty system-prompt should not produce a file
-	if n := len(files); n != 1 {
-		t.Errorf("empty system-prompt: want 1 file, got %d", n)
-	}
-}
-
-func TestBuildBundleConfigFiles_EmptyPrompts(t *testing.T) {
-	b := &Bundle{
-		Prompts: map[string]string{},
-	}
-	files := buildBundleConfigFiles(b)
-	if n := len(files); n != 0 {
-		t.Errorf("empty prompts map: want 0 files, got %d", n)
-	}
-}
-
-func TestBuildBundleConfigFiles_emptyBundle(t *testing.T) {
-	b := &Bundle{}
-	files := buildBundleConfigFiles(b)
-	if len(files) != 0 {
-		t.Errorf("expected empty map for empty bundle, got %d entries", len(files))
-	}
-}
-
-func TestBuildBundleConfigFiles_systemPrompt(t *testing.T) {
-	b := &Bundle{SystemPrompt: "You are a helpful assistant."}
-	files := buildBundleConfigFiles(b)
-	if len(files) != 1 {
-		t.Fatalf("expected 1 file, got %d", len(files))
-	}
-	if string(files["system-prompt.md"]) != "You are a helpful assistant." {
-		t.Errorf("unexpected system prompt content: %q", files["system-prompt.md"])
-	}
-}
-
-func TestBuildBundleConfigFiles_configYaml(t *testing.T) {
-	b := &Bundle{Prompts: map[string]string{
-		"config.yaml": "runtime: langgraph\nmodel: claude-sonnet-4-20250514\n",
-	}}
-	files := buildBundleConfigFiles(b)
-	if len(files) != 1 {
-		t.Fatalf("expected 1 file, got %d", len(files))
-	}
-	if string(files["config.yaml"]) != "runtime: langgraph\nmodel: claude-sonnet-4-20250514\n" {
-		t.Errorf("unexpected config.yaml content: %q", files["config.yaml"])
-	}
-}
-
-func TestBuildBundleConfigFiles_systemPromptAndConfigYaml(t *testing.T) {
-	b := &Bundle{
-		SystemPrompt: "# System",
-		Prompts:     map[string]string{"config.yaml": "runtime: langgraph"},
-	}
-	files := buildBundleConfigFiles(b)
-	if len(files) != 2 {
-		t.Fatalf("expected 2 files, got %d", len(files))
-	}
-	if _, ok := files["system-prompt.md"]; !ok {
-		t.Error("missing system-prompt.md")
-	}
-	if _, ok := files["config.yaml"]; !ok {
-		t.Error("missing config.yaml")
-	}
-}
-
-func TestBuildBundleConfigFiles_skills(t *testing.T) {
-	b := &Bundle{
-		Skills: []BundleSkill{
-			{
-				ID:          "web-search",
-				Name:        "Web Search",
-				Description: "Search the web",
-				Files:       map[string]string{"readme.md": "# Web Search"},
-			},
-			{
-				ID:          "code-runner",
-				Name:        "Code Runner",
-				Description: "Execute code",
-				Files:       map[string]string{"handler.py": "print('hello')"},
-			},
-		},
-	}
-	files := buildBundleConfigFiles(b)
-	if len(files) != 2 {
-		t.Fatalf("expected 2 skill files, got %d", len(files))
-	}
-
-	if content, ok := files["skills/web-search/readme.md"]; !ok {
-		t.Error("missing skills/web-search/readme.md")
-	} else if string(content) != "# Web Search" {
-		t.Errorf("unexpected readme.md: %q", content)
-	}
-
-	if _, ok := files["skills/code-runner/handler.py"]; !ok {
-		t.Error("missing skills/code-runner/handler.py")
-	}
-}
-
-func TestBuildBundleConfigFiles_skillsWithSubPaths(t *testing.T) {
-	b := &Bundle{
-		Skills: []BundleSkill{
-			{
-				ID:    "nested-skill",
-				Files: map[string]string{"src/main.py": "def main(): pass", "pyproject.toml": "[tool.foo]"},
-			},
-		},
-	}
-	files := buildBundleConfigFiles(b)
-	if len(files) != 2 {
-		t.Fatalf("expected 2 files, got %d", len(files))
-	}
-	if _, ok := files["skills/nested-skill/src/main.py"]; !ok {
-		t.Error("missing skills/nested-skill/src/main.py")
-	}
-	if _, ok := files["skills/nested-skill/pyproject.toml"]; !ok {
-		t.Error("missing skills/nested-skill/pyproject.toml")
-	}
-}
-
-func TestBuildBundleConfigFiles_skipsEmptyPrompts(t *testing.T) {
-	b := &Bundle{Prompts: map[string]string{}}
-	files := buildBundleConfigFiles(b)
-	if len(files) != 0 {
-		t.Errorf("expected 0 files for empty prompts map, got %d", len(files))
-	}
-}
-
-func TestBuildBundleConfigFiles_skipsMissingConfigYaml(t *testing.T) {
-	b := &Bundle{
-		SystemPrompt: "# My Prompt",
-		Prompts:      map[string]string{"other.yaml": "something: else"},
-	}
-	files := buildBundleConfigFiles(b)
-	if len(files) != 1 {
-		t.Fatalf("expected 1 file (system-prompt only), got %d", len(files))
-	}
-	if _, ok := files["config.yaml"]; ok {
-		t.Error("config.yaml should not be written when not in Prompts")
-	}
-}
-
-func TestNilIfEmpty_emptyString(t *testing.T) {
-	result := nilIfEmpty("")
-	if result != nil {
-		t.Errorf("expected nil for empty string, got %v", result)
-	}
-}
-
-func TestNilIfEmpty_nonEmptyString(t *testing.T) {
-	result := nilIfEmpty("hello")
-	if result == nil {
-		t.Fatal("expected non-nil result for non-empty string")
-	}
-	if result != "hello" {
-		t.Errorf("expected hello, got %q", result)
-	}
-}
-
-func TestNilIfEmpty_whitespaceString(t *testing.T) {
-	// Whitespace is not empty — nilIfEmpty only checks for zero-length
-	result := nilIfEmpty("   ")
-	if result == nil {
-		t.Error("expected non-nil for whitespace string")
-	} else if result != "   " {
-		t.Errorf("expected '   ', got %q", result)
-	}
-}
-
-func TestNilIfEmpty_EmptyString(t *testing.T) {
-	got := nilIfEmpty("")
-	if got != nil {
-		t.Errorf("nilIfEmpty(\"\"): want nil, got %v", got)
-	}
-}
-
-func TestNilIfEmpty_NonEmptyString(t *testing.T) {
-	got := nilIfEmpty("hello")
-	if got == nil {
-		t.Fatal("nilIfEmpty(\"hello\"): want \"hello\", got nil")
-	}
-	if s, ok := got.(string); !ok || s != "hello" {
-		t.Errorf("nilIfEmpty(\"hello\"): got %v (%T)", got, got)
-	}
-}
-
-func TestNilIfEmpty_Whitespace(t *testing.T) {
-	got := nilIfEmpty("   ")
-	if got == nil {
-		t.Fatal("nilIfEmpty(\"   \"): want \"   \", got nil (whitespace is not empty)")
-	}
-	if s, ok := got.(string); !ok || s != "   " {
-		t.Errorf("nilIfEmpty(\"   \"): got %v (%T)", got, got)
-	}
-}
@@ -402,7 +402,7 @@ func (m *Manager) SendOutbound(ctx context.Context, channelID string, text strin
 		return err
 	}

-	adapter, ok := GetSendAdapter(ch.ChannelType)
+	adapter, ok := GetAdapter(ch.ChannelType)
 	if !ok {
 		return fmt.Errorf("no adapter for %s", ch.ChannelType)
 	}
@@ -1,7 +1,5 @@
 package channels

-import "context"
-
 // Registry of all available channel adapters.
 // To add a new platform: implement ChannelAdapter, register here.
 var adapters = map[string]ChannelAdapter{
@@ -11,27 +9,6 @@ var adapters = map[string]ChannelAdapter{
 	"discord":  &DiscordAdapter{},
 }

-// SendAdapter is the subset of ChannelAdapter needed by SendOutbound.
-// Extracted so tests can inject a no-op/mock adapter without hitting real
-// platform APIs (Telegram Bot API, Slack API, etc.).
-type SendAdapter interface {
-	SendMessage(ctx context.Context, config map[string]interface{}, chatID string, text string) error
-}
-
-// getSendAdapter is the production implementation of GetSendAdapter —
-// returns the real registered adapter's SendMessage method.
-func getSendAdapter(channelType string) (SendAdapter, bool) {
-	a, ok := adapters[channelType]
-	if !ok {
-		return nil, false
-	}
-	return a, true
-}
-
-// GetSendAdapter returns the SendAdapter for a channel type.
-// Defaults to the real adapter; overridden by SetTestSendAdapter in tests.
-var GetSendAdapter = getSendAdapter
-
 // GetAdapter returns the adapter for a channel type.
 func GetAdapter(channelType string) (ChannelAdapter, bool) {
 	a, ok := adapters[channelType]
@@ -1,30 +0,0 @@
-package channels
-
-import "context"
-
-// MockSendAdapter implements SendAdapter for handler tests. It records every
-// call and returns a configurable error (nil = success, non-nil = failure).
-type MockSendAdapter struct {
-	Calls    int
-	Err      error
-	SentText string
-	SentChat string
-}
-
-func (m *MockSendAdapter) SendMessage(_ context.Context, _ map[string]interface{}, chatID string, text string) error {
-	m.Calls++
-	m.SentText = text
-	m.SentChat = chatID
-	return m.Err
-}
-
-// SetGetSendAdapter replaces the package-level GetSendAdapter variable.
-// Tests MUST call ResetSendAdapters() in their t.Cleanup.
-func SetGetSendAdapter(fn func(string) (SendAdapter, bool)) {
-	GetSendAdapter = fn
-}
-
-// ResetSendAdapters restores GetSendAdapter to the production implementation.
-func ResetSendAdapters() {
-	GetSendAdapter = getSendAdapter
-}
@@ -645,7 +645,7 @@ func (h *WorkspaceHandler) resolveAgentURL(ctx context.Context, workspaceID stri
 			// the caller can retry once the workspace is back online (~10s).
 			if status == "hibernated" {
 				log.Printf("ProxyA2A: waking hibernated workspace %s", workspaceID)
-				h.goAsync(func() { h.RestartByID(workspaceID) })
+				go h.RestartByID(workspaceID)
 				return "", &proxyA2AError{
 					Status:  http.StatusServiceUnavailable,
 					Headers: map[string]string{"Retry-After": "15"},
@@ -194,12 +194,7 @@ func (h *WorkspaceHandler) maybeMarkContainerDead(ctx context.Context, workspace
 	}
 	db.ClearWorkspaceKeys(ctx, workspaceID)
 	h.broadcaster.RecordAndBroadcast(ctx, string(events.EventWorkspaceOffline), workspaceID, map[string]interface{}{})
-	// Tracked via goAsync (not bare `go`) so the asyncWG can be drained
-	// before a test swaps the global db.DB. runRestartCycle reads db.DB
-	// before its provisioner gate, so an untracked detached goroutine
-	// races setupTestDB's t.Cleanup db.DB restore. Matches the already-
-	// correct site at a2a_proxy.go:648.
-	h.goAsync(func() { h.RestartByID(workspaceID) })
+	go h.RestartByID(workspaceID)
 	return true
 }

@@ -246,10 +241,7 @@ func (h *WorkspaceHandler) preflightContainerHealth(ctx context.Context, workspa
 	}
 	db.ClearWorkspaceKeys(ctx, workspaceID)
 	h.broadcaster.RecordAndBroadcast(ctx, string(events.EventWorkspaceOffline), workspaceID, map[string]interface{}{})
-	// Tracked via goAsync (see maybeMarkContainerDead): preflight's
-	// detached restart must be drainable so it doesn't race the global
-	// db.DB swap in test cleanup.
-	h.goAsync(func() { h.RestartByID(workspaceID) })
+	go h.RestartByID(workspaceID)
 	return &proxyA2AError{
 		Status: http.StatusServiceUnavailable,
 		Response: gin.H{
@@ -270,8 +262,7 @@ func (h *WorkspaceHandler) logA2AFailure(ctx context.Context, workspaceID, calle
 		errWsName = workspaceID
 	}
 	summary := "A2A request to " + errWsName + " failed: " + errMsg
-	parent := ctx
-	h.goAsync(func() {
+	go func(parent context.Context) {
 		logCtx, cancel := context.WithTimeout(context.WithoutCancel(parent), 30*time.Second)
 		defer cancel()
 		LogActivity(logCtx, h.broadcaster, ActivityParams{
@@ -286,7 +277,7 @@ func (h *WorkspaceHandler) logA2AFailure(ctx context.Context, workspaceID, calle
 			Status:       "error",
 			ErrorDetail:  &errMsg,
 		})
-	})
+	}(ctx)
 }

 // logA2ASuccess records a successful A2A round-trip and (for canvas-initiated
@@ -307,19 +298,18 @@ func (h *WorkspaceHandler) logA2ASuccess(ctx context.Context, workspaceID, calle
 	// silent workspaces. Only update when callerID is a real workspace (not
 	// canvas, not a system caller) and the target returned 2xx/3xx.
 	if callerID != "" && !isSystemCaller(callerID) && statusCode < 400 {
-		h.goAsync(func() {
+		go func() {
 			bgCtx, cancel := context.WithTimeout(context.Background(), 5*time.Second)
 			defer cancel()
 			if _, err := db.DB.ExecContext(bgCtx,
 				`UPDATE workspaces SET last_outbound_at = NOW() WHERE id = $1`, callerID); err != nil {
 				log.Printf("last_outbound_at update failed for %s: %v", callerID, err)
 			}
-		})
+		}()
 	}
 	summary := a2aMethod + " → " + wsNameForLog
 	toolTrace := extractToolTrace(respBody)
-	parent := ctx
-	h.goAsync(func() {
+	go func(parent context.Context) {
 		logCtx, cancel := context.WithTimeout(context.WithoutCancel(parent), 30*time.Second)
 		defer cancel()
 		LogActivity(logCtx, h.broadcaster, ActivityParams{
@@ -335,7 +325,7 @@ func (h *WorkspaceHandler) logA2ASuccess(ctx context.Context, workspaceID, calle
 			DurationMs:   &durationMs,
 			Status:       logStatus,
 		})
-	})
+	}(ctx)

 	if callerID == "" && statusCode < 400 {
 		h.broadcaster.BroadcastOnly(workspaceID, string(events.EventA2AResponse), map[string]interface{}{
@@ -520,8 +510,7 @@ func (h *WorkspaceHandler) logA2AReceiveQueued(ctx context.Context, workspaceID,
 		wsName = workspaceID
 	}
 	summary := a2aMethod + " → " + wsName + " (queued for poll)"
-	parent := ctx
-	h.goAsync(func() {
+	go func(parent context.Context) {
 		logCtx, cancel := context.WithTimeout(context.WithoutCancel(parent), 30*time.Second)
 		defer cancel()
 		LogActivity(logCtx, h.broadcaster, ActivityParams{
@@ -534,7 +523,7 @@ func (h *WorkspaceHandler) logA2AReceiveQueued(ctx context.Context, workspaceID,
 			RequestBody:  json.RawMessage(body),
 			Status:       "ok",
 		})
-	})
+	}(ctx)
 }

 // readUsageMap extracts input_tokens / output_tokens from the "usage" key of m.
@@ -26,6 +26,10 @@ import (
 // setupTestDBForQueueTests creates a sqlmock DB using QueryMatcherEqual (exact
 // string matching) so that ExpectQuery/ExpectExec patterns are compared verbatim.
 // Uses the same global db.DB as setupTestDB so the handler can use it.
+//
+// IMPORTANT: db.DB is saved before assignment and restored via t.Cleanup so
+// that tests running after this one are not polluted by a closed mock.
+// Same fix as setupTestDB (handlers_test.go); same root cause as mc#975.
 func setupTestDBForQueueTests(t *testing.T) sqlmock.Sqlmock {
 	t.Helper()
 	mockDB, mock, err := sqlmock.New(sqlmock.QueryMatcherOption(sqlmock.QueryMatcherEqual))
@@ -81,54 +85,6 @@ func TestExtractIdempotencyKey_emptyOnMissing(t *testing.T) {
 	}
 }

-// ──────────────────────────────────────────────────────────────────────────────
-// extractExpiresInSeconds
-// ──────────────────────────────────────────────────────────────────────────────
-
-func TestExtractExpiresInSeconds_valid(t *testing.T) {
-	cases := []struct {
-		name string
-		body string
-		want int
-	}{
-		{"positive int", `{"params":{"expires_in_seconds":30}}`, 30},
-		{"zero", `{"params":{"expires_in_seconds":0}}`, 0},
-		{"large TTL", `{"params":{"expires_in_seconds":3600}}`, 3600},
-		{"nested message — not affected", `{"params":{"message":{"role":"user"},"expires_in_seconds":60}}`, 60},
-	}
-	for _, tc := range cases {
-		t.Run(tc.name, func(t *testing.T) {
-			if got := extractExpiresInSeconds([]byte(tc.body)); got != tc.want {
-				t.Errorf("extractExpiresInSeconds = %d, want %d", got, tc.want)
-			}
-		})
-	}
-}
-
-func TestExtractExpiresInSeconds_invalidOrMissing(t *testing.T) {
-	cases := []struct {
-		name string
-		body string
-		want int
-	}{
-		{"negative → 0", `{"params":{"expires_in_seconds":-5}}`, 0},
-		{"missing expires_in_seconds", `{"params":{"message":{"role":"user"}}}`, 0},
-		{"no params at all", `{"method":"message/send"}`, 0},
-		{"malformed JSON", `not json`, 0},
-		{"empty body", ``, 0},
-		{"null value", `{"params":{"expires_in_seconds":null}}`, 0},
-		{"string value", `{"params":{"expires_in_seconds":"30"}}`, 0},
-		{"float value", `{"params":{"expires_in_seconds":30.5}}`, 30},
-	}
-	for _, tc := range cases {
-		t.Run(tc.name, func(t *testing.T) {
-			if got := extractExpiresInSeconds([]byte(tc.body)); got != tc.want {
-				t.Errorf("extractExpiresInSeconds(%q) = %d, want %d", tc.body, got, tc.want)
-			}
-		})
-	}
-}
-
 func TestExtractDelegationIDFromBody(t *testing.T) {
 	cases := []struct {
 		name string
@@ -482,13 +482,6 @@ func (h *ActivityHandler) Notify(c *gin.Context) {
 			c.JSON(http.StatusNotFound, gin.H{"error": "workspace not found"})
 			return
 		}
-		if errors.Is(err, ErrTalkToUserDisabled) {
-			c.JSON(http.StatusForbidden, gin.H{
-				"error": "talk_to_user_disabled",
-				"hint":  "This workspace is not allowed to send messages directly to the user. Forward your update to a parent workspace using delegate_task — they may be able to reach the user.",
-			})
-			return
-		}
 		c.JSON(http.StatusInternalServerError, gin.H{"error": "internal error"})
 		return
 	}
@@ -464,9 +464,9 @@ func TestNotify_PersistsToActivityLogsForReloadRecovery(t *testing.T) {
 	t.Cleanup(func() { db.DB = prevDB; mockDB.Close() })

 	// Workspace existence check
-	mock.ExpectQuery(`SELECT name, talk_to_user_enabled FROM workspaces`).
+	mock.ExpectQuery(`SELECT name FROM workspaces`).
 		WithArgs("ws-notify").
-		WillReturnRows(sqlmock.NewRows([]string{"name", "talk_to_user_enabled"}).AddRow("DD", true))
+		WillReturnRows(sqlmock.NewRows([]string{"name"}).AddRow("DD"))

 	// Persistence INSERT — verify shape
 	mock.ExpectExec(`INSERT INTO activity_logs`).
@@ -511,9 +511,9 @@ func TestNotify_WithAttachments_PersistsFilePartsForReload(t *testing.T) {
 	db.DB = mockDB
 	t.Cleanup(func() { db.DB = prevDB; mockDB.Close() })

-	mock.ExpectQuery(`SELECT name, talk_to_user_enabled FROM workspaces`).
+	mock.ExpectQuery(`SELECT name FROM workspaces`).
 		WithArgs("ws-attach").
-		WillReturnRows(sqlmock.NewRows([]string{"name", "talk_to_user_enabled"}).AddRow("DD", true))
+		WillReturnRows(sqlmock.NewRows([]string{"name"}).AddRow("DD"))

 	// Capture the JSONB arg so we can assert on the persisted shape
 	// AFTER the call (must include parts[].kind=file so reload
@@ -640,9 +640,9 @@ func TestNotify_DBFailure_StillBroadcastsAnd200(t *testing.T) {
 	db.DB = mockDB
 	t.Cleanup(func() { db.DB = prevDB; mockDB.Close() })

-	mock.ExpectQuery(`SELECT name, talk_to_user_enabled FROM workspaces`).
+	mock.ExpectQuery(`SELECT name FROM workspaces`).
 		WithArgs("ws-x").
-		WillReturnRows(sqlmock.NewRows([]string{"name", "talk_to_user_enabled"}).AddRow("DD", true))
+		WillReturnRows(sqlmock.NewRows([]string{"name"}).AddRow("DD"))
 	mock.ExpectExec(`INSERT INTO activity_logs`).
 		WillReturnError(fmt.Errorf("simulated db hiccup"))

@@ -54,11 +54,6 @@ import (
 // timeout) surface as wrapped errors and should be treated as 503.
 var ErrWorkspaceNotFound = errors.New("agent_message: workspace not found")

-// ErrTalkToUserDisabled is returned when the workspace has
-// talk_to_user_enabled=false. Callers surface HTTP 403 so the Python tool
-// can detect it and suggest forwarding to a parent workspace.
-var ErrTalkToUserDisabled = errors.New("agent_message: talk_to_user disabled")
-
 // AgentMessageAttachment is one file attached to an agent → user
 // message. Identical to handlers.NotifyAttachment in field set; kept
 // distinct so the writer's API doesn't import a handler type with HTTP
@@ -112,20 +107,16 @@ func (w *AgentMessageWriter) Send(
 	// notify call surfaced as "workspace not found" and masked real
 	// incidents in the alert path.
 	var wsName string
-	var talkToUserEnabled bool
 	err := w.db.QueryRowContext(ctx,
-		`SELECT name, talk_to_user_enabled FROM workspaces WHERE id = $1 AND status != 'removed'`,
+		`SELECT name FROM workspaces WHERE id = $1 AND status != 'removed'`,
 		workspaceID,
-	).Scan(&wsName, &talkToUserEnabled)
+	).Scan(&wsName)
 	if errors.Is(err, sql.ErrNoRows) {
 		return ErrWorkspaceNotFound
 	}
 	if err != nil {
 		return fmt.Errorf("agent_message: workspace lookup: %w", err)
 	}
-	if !talkToUserEnabled {
-		return ErrTalkToUserDisabled
-	}

 	// 2. Build broadcast payload + WS-emit. Same shape that ChatTab's
 	//    AGENT_MESSAGE handler in canvas/src/store/canvas-events.ts has
@@ -88,9 +88,9 @@ func TestAgentMessageWriter_Send_Success_NoAttachments(t *testing.T) {
 	mock := setupTestDB(t)
 	w := NewAgentMessageWriter(db.DB, newTestBroadcaster())

-	mock.ExpectQuery("SELECT name, talk_to_user_enabled FROM workspaces").
+	mock.ExpectQuery("SELECT name FROM workspaces").
 		WithArgs("ws-1").
-		WillReturnRows(sqlmock.NewRows([]string{"name", "talk_to_user_enabled"}).AddRow("CEO Ryan PC", true))
+		WillReturnRows(sqlmock.NewRows([]string{"name"}).AddRow("CEO Ryan PC"))

 	mock.ExpectExec(`INSERT INTO activity_logs.*'a2a_receive'.*'notify'`).
 		WithArgs(
@@ -116,9 +116,9 @@ func TestAgentMessageWriter_Send_Success_WithAttachments(t *testing.T) {
 	mock := setupTestDB(t)
 	w := NewAgentMessageWriter(db.DB, newTestBroadcaster())

-	mock.ExpectQuery("SELECT name, talk_to_user_enabled FROM workspaces").
+	mock.ExpectQuery("SELECT name FROM workspaces").
 		WithArgs("ws-att").
-		WillReturnRows(sqlmock.NewRows([]string{"name", "talk_to_user_enabled"}).AddRow("Ryan", true))
+		WillReturnRows(sqlmock.NewRows([]string{"name"}).AddRow("Ryan"))

 	mock.ExpectExec(`INSERT INTO activity_logs.*'a2a_receive'.*'notify'`).
 		WithArgs(
@@ -173,9 +173,9 @@ func TestAgentMessageWriter_Send_WorkspaceNotFound(t *testing.T) {
 	emitter := &capturingEmitter{}
 	w := NewAgentMessageWriter(db.DB, emitter)

-	mock.ExpectQuery("SELECT name, talk_to_user_enabled FROM workspaces").
+	mock.ExpectQuery("SELECT name FROM workspaces").
 		WithArgs("ws-missing").
-		WillReturnRows(sqlmock.NewRows([]string{"name", "talk_to_user_enabled"}))
+		WillReturnRows(sqlmock.NewRows([]string{"name"}))

 	err := w.Send(context.Background(), "ws-missing", "lost in the void", nil)
 	if !errors.Is(err, ErrWorkspaceNotFound) {
@@ -202,9 +202,9 @@ func TestAgentMessageWriter_Send_DBInsertFailureStillReturnsNil(t *testing.T) {
 	mock := setupTestDB(t)
 	w := NewAgentMessageWriter(db.DB, newTestBroadcaster())

-	mock.ExpectQuery("SELECT name, talk_to_user_enabled FROM workspaces").
+	mock.ExpectQuery("SELECT name FROM workspaces").
 		WithArgs("ws-dbfail").
-		WillReturnRows(sqlmock.NewRows([]string{"name", "talk_to_user_enabled"}).AddRow("CEO Ryan PC", true))
+		WillReturnRows(sqlmock.NewRows([]string{"name"}).AddRow("CEO Ryan PC"))

 	mock.ExpectExec(`INSERT INTO activity_logs`).
 		WillReturnError(errors.New("transient db error"))
@@ -223,9 +223,9 @@ func TestAgentMessageWriter_Send_PreviewTruncation(t *testing.T) {
 	mock := setupTestDB(t)
 	w := NewAgentMessageWriter(db.DB, newTestBroadcaster())

-	mock.ExpectQuery("SELECT name, talk_to_user_enabled FROM workspaces").
+	mock.ExpectQuery("SELECT name FROM workspaces").
 		WithArgs("ws-trunc").
-		WillReturnRows(sqlmock.NewRows([]string{"name", "talk_to_user_enabled"}).AddRow("Ryan", true))
+		WillReturnRows(sqlmock.NewRows([]string{"name"}).AddRow("Ryan"))

 	longMsg := strings.Repeat("x", 200)
 	mock.ExpectExec(`INSERT INTO activity_logs`).
@@ -263,9 +263,9 @@ func TestAgentMessageWriter_Send_BroadcastsAgentMessageEvent(t *testing.T) {
 	emitter := &capturingEmitter{}
 	w := NewAgentMessageWriter(db.DB, emitter)

-	mock.ExpectQuery("SELECT name, talk_to_user_enabled FROM workspaces").
+	mock.ExpectQuery("SELECT name FROM workspaces").
 		WithArgs("ws-bc").
-		WillReturnRows(sqlmock.NewRows([]string{"name", "talk_to_user_enabled"}).AddRow("Workspace Name", true))
+		WillReturnRows(sqlmock.NewRows([]string{"name"}).AddRow("Workspace Name"))
 	mock.ExpectExec(`INSERT INTO activity_logs`).
 		WillReturnResult(sqlmock.NewResult(1, 1))

@@ -315,7 +315,7 @@ func TestAgentMessageWriter_Send_DBErrorOnLookupReturnsWrapped(t *testing.T) {
 	w := NewAgentMessageWriter(db.DB, newTestBroadcaster())

 	transientErr := errors.New("connection refused")
-	mock.ExpectQuery("SELECT name, talk_to_user_enabled FROM workspaces").
+	mock.ExpectQuery("SELECT name FROM workspaces").
 		WithArgs("ws-dbdown").
 		WillReturnError(transientErr)

@@ -350,9 +350,9 @@ func TestAgentMessageWriter_Send_NonASCIIMessagePersists(t *testing.T) {
 	// the byte-slice bug.
 	msg := strings.Repeat("你", 200)

-	mock.ExpectQuery("SELECT name, talk_to_user_enabled FROM workspaces").
+	mock.ExpectQuery("SELECT name FROM workspaces").
 		WithArgs("ws-cjk").
-		WillReturnRows(sqlmock.NewRows([]string{"name", "talk_to_user_enabled"}).AddRow("CEO Ryan PC", true))
+		WillReturnRows(sqlmock.NewRows([]string{"name"}).AddRow("CEO Ryan PC"))

 	mock.ExpectExec(`INSERT INTO activity_logs`).
 		WithArgs(
@@ -395,9 +395,9 @@ func TestAgentMessageWriter_Send_OmitsAttachmentsKeyWhenEmpty(t *testing.T) {
 	emitter := &capturingEmitter{}
 	w := NewAgentMessageWriter(db.DB, emitter)

-	mock.ExpectQuery("SELECT name, talk_to_user_enabled FROM workspaces").
+	mock.ExpectQuery("SELECT name FROM workspaces").
 		WithArgs("ws-noatt").
-		WillReturnRows(sqlmock.NewRows([]string{"name", "talk_to_user_enabled"}).AddRow("X", true))
+		WillReturnRows(sqlmock.NewRows([]string{"name"}).AddRow("X"))
 	mock.ExpectExec(`INSERT INTO activity_logs`).
 		WillReturnResult(sqlmock.NewResult(1, 1))

@@ -116,9 +116,6 @@ func (h *ApprovalsHandler) ListAll(c *gin.Context) {
 			"created_at":     createdAt,
 		})
 	}
-	if err := rows.Err(); err != nil {
-		log.Printf("ListPendingApprovals rows.Err: %v", err)
-	}

 	c.JSON(http.StatusOK, approvals)
 }
@@ -158,9 +155,6 @@ func (h *ApprovalsHandler) List(c *gin.Context) {
 			"created_at": createdAt,
 		})
 	}
-	if err := rows.Err(); err != nil {
-		log.Printf("ListApprovals rows.Err workspace=%s: %v", workspaceID, err)
-	}

 	c.JSON(http.StatusOK, approvals)
 }
@@ -328,207 +328,6 @@ func TestChannelHandler_Send_EmptyText(t *testing.T) {
 	}
 }

-// ==================== Test (send outbound) ====================
-
-// TestChannelHandler_Test_Success exercises the /channels/:channelId/test endpoint
-// with a mock SendAdapter so the full success path is covered without hitting real
-// Telegram/Slack/etc. APIs.
-func TestChannelHandler_Test_Success(t *testing.T) {
-	mock := setupTestDB(t)
-	setupTestRedis(t)
-	handler := NewChannelHandler(newTestChannelManager())
-
-	mockAdapter := &channels.MockSendAdapter{Err: nil}
-	channels.SetGetSendAdapter(func(ct string) (channels.SendAdapter, bool) {
-		if ct == "telegram" {
-			return mockAdapter, true
-		}
-		return channels.GetSendAdapter(ct)
-	})
-	t.Cleanup(channels.ResetSendAdapters)
-
-	// loadChannel → valid row
-	mock.ExpectQuery("SELECT .+ FROM workspace_channels WHERE id").
-		WithArgs("ch-test-ok").
-		WillReturnRows(sqlmock.NewRows([]string{
-			"id", "workspace_id", "channel_type", "channel_config",
-			"enabled", "allowed_users",
-		}).AddRow("ch-test-ok", "ws-1", "telegram",
-			`{"bot_token":"123:AAA","chat_id":"-100"}`,
-			true, `[]`))
-
-	// UPDATE message_count + last_message_at
-	mock.ExpectExec("UPDATE workspace_channels SET last_message_at").
-		WillReturnResult(sqlmock.NewResult(0, 1))
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Request = httptest.NewRequest("POST", "/workspaces/ws-1/channels/ch-test-ok/test", nil)
-	c.Params = gin.Params{{Key: "id", Value: "ws-1"}, {Key: "channelId", Value: "ch-test-ok"}}
-
-	handler.Test(c)
-
-	if w.Code != http.StatusOK {
-		t.Errorf("expected 200, got %d: %s", w.Code, w.Body.String())
-	}
-	var resp map[string]interface{}
-	json.Unmarshal(w.Body.Bytes(), &resp)
-	if resp["status"] != "ok" {
-		t.Errorf("expected status 'ok', got %v", resp["status"])
-	}
-	if mockAdapter.Calls != 1 {
-		t.Errorf("expected SendMessage called once, got %d", mockAdapter.Calls)
-	}
-	if mockAdapter.SentChat != "-100" {
-		t.Errorf("expected chat_id '-100', got %q", mockAdapter.SentChat)
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-// TestChannelHandler_Test_ChannelNotFound verifies that when loadChannel returns
-// no rows, the Test handler returns 500 with a "test message failed" error.
-func TestChannelHandler_Test_ChannelNotFound(t *testing.T) {
-	mock := setupTestDB(t)
-	setupTestRedis(t)
-	handler := NewChannelHandler(newTestChannelManager())
-
-	// loadChannel → no rows
-	mock.ExpectQuery("SELECT .+ FROM workspace_channels WHERE id").
-		WithArgs("ch-missing").
-		WillReturnRows(sqlmock.NewRows([]string{
-			"id", "workspace_id", "channel_type", "channel_config",
-			"enabled", "allowed_users",
-		}))
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Request = httptest.NewRequest("POST", "/workspaces/ws-1/channels/ch-missing/test", nil)
-	c.Params = gin.Params{{Key: "id", Value: "ws-1"}, {Key: "channelId", Value: "ch-missing"}}
-
-	handler.Test(c)
-
-	if w.Code != http.StatusInternalServerError {
-		t.Errorf("expected 500 for missing channel, got %d: %s", w.Code, w.Body.String())
-	}
-	var resp map[string]interface{}
-	json.Unmarshal(w.Body.Bytes(), &resp)
-	if resp["error"] != "test message failed" {
-		t.Errorf("expected error 'test message failed', got %v", resp["error"])
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-// TestChannelHandler_Send_Success covers the full outbound send success path:
-// budget check passes → loadChannel → mock SendMessage succeeds → UPDATE count → 200.
-func TestChannelHandler_Send_Success(t *testing.T) {
-	mock := setupTestDB(t)
-	setupTestRedis(t)
-	handler := NewChannelHandler(newTestChannelManager())
-
-	mockAdapter := &channels.MockSendAdapter{Err: nil}
-	channels.SetGetSendAdapter(func(ct string) (channels.SendAdapter, bool) {
-		if ct == "telegram" {
-			return mockAdapter, true
-		}
-		return channels.GetSendAdapter(ct)
-	})
-	t.Cleanup(channels.ResetSendAdapters)
-
-	// Budget check: count=0, no budget limit
-	mock.ExpectQuery("SELECT message_count, channel_budget FROM workspace_channels WHERE id").
-		WithArgs("ch-send-ok").
-		WillReturnRows(sqlmock.NewRows([]string{"message_count", "channel_budget"}).
-			AddRow(0, nil))
-
-	// loadChannel → valid row
-	mock.ExpectQuery("SELECT .+ FROM workspace_channels WHERE id").
-		WithArgs("ch-send-ok").
-		WillReturnRows(sqlmock.NewRows([]string{
-			"id", "workspace_id", "channel_type", "channel_config",
-			"enabled", "allowed_users",
-		}).AddRow("ch-send-ok", "ws-1", "telegram",
-			`{"bot_token":"123:AAA","chat_id":"-100"}`,
-			true, `[]`))
-
-	// UPDATE message_count
-	mock.ExpectExec("UPDATE workspace_channels SET last_message_at").
-		WillReturnResult(sqlmock.NewResult(0, 1))
-
-	body, _ := json.Marshal(map[string]string{"text": "hello from test"})
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Request = httptest.NewRequest("POST", "/workspaces/ws-1/channels/ch-send-ok/send", bytes.NewReader(body))
-	c.Request.Header.Set("Content-Type", "application/json")
-	c.Params = gin.Params{{Key: "id", Value: "ws-1"}, {Key: "channelId", Value: "ch-send-ok"}}
-
-	handler.Send(c)
-
-	if w.Code != http.StatusOK {
-		t.Errorf("expected 200, got %d: %s", w.Code, w.Body.String())
-	}
-	var resp map[string]interface{}
-	json.Unmarshal(w.Body.Bytes(), &resp)
-	if resp["status"] != "sent" {
-		t.Errorf("expected status 'sent', got %v", resp["status"])
-	}
-	if mockAdapter.Calls != 1 {
-		t.Errorf("expected SendMessage called once, got %d", mockAdapter.Calls)
-	}
-	if mockAdapter.SentText != "hello from test" {
-		t.Errorf("expected 'hello from test', got %q", mockAdapter.SentText)
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-// TestChannelHandler_Send_ChannelNotFound verifies that after the budget check
-// passes, a missing channel returns 500 (not 404) with "send failed".
-func TestChannelHandler_Send_ChannelNotFound(t *testing.T) {
-	mock := setupTestDB(t)
-	setupTestRedis(t)
-	handler := NewChannelHandler(newTestChannelManager())
-
-	// Budget check passes (NULL budget → no limit)
-	mock.ExpectQuery("SELECT message_count, channel_budget FROM workspace_channels WHERE id").
-		WithArgs("ch-send-missing").
-		WillReturnRows(sqlmock.NewRows([]string{"message_count", "channel_budget"}).
-			AddRow(0, nil))
-
-	// loadChannel → no rows
-	mock.ExpectQuery("SELECT .+ FROM workspace_channels WHERE id").
-		WithArgs("ch-send-missing").
-		WillReturnRows(sqlmock.NewRows([]string{
-			"id", "workspace_id", "channel_type", "channel_config",
-			"enabled", "allowed_users",
-		}))
-
-	body, _ := json.Marshal(map[string]string{"text": "hello"})
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Request = httptest.NewRequest("POST", "/workspaces/ws-1/channels/ch-send-missing/send", bytes.NewReader(body))
-	c.Request.Header.Set("Content-Type", "application/json")
-	c.Params = gin.Params{{Key: "id", Value: "ws-1"}, {Key: "channelId", Value: "ch-send-missing"}}
-
-	handler.Send(c)
-
-	if w.Code != http.StatusInternalServerError {
-		t.Errorf("expected 500 for missing channel, got %d: %s", w.Code, w.Body.String())
-	}
-	var resp map[string]interface{}
-	json.Unmarshal(w.Body.Bytes(), &resp)
-	if resp["error"] != "send failed" {
-		t.Errorf("expected error 'send failed', got %v", resp["error"])
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
 // ==================== Webhook ====================

 func TestChannelHandler_Webhook_UnknownType(t *testing.T) {
@@ -2,6 +2,7 @@ package handlers

 import (
 	"context"
+	"database/sql"
 	"encoding/json"
 	"log"
 	"net/http"
@@ -698,7 +699,8 @@ func (h *DelegationHandler) listDelegationsFromLedger(ctx context.Context, works

 	var result []map[string]interface{}
 	for rows.Next() {
-		var delegationID, callerID, calleeID, taskPreview, status, resultPreview, errorDetail string
+		var delegationID, callerID, calleeID, taskPreview, status string
+		var resultPreview, errorDetail sql.NullString
 		var lastHeartbeat, deadline, createdAt, updatedAt *time.Time
 		if err := rows.Scan(
 			&delegationID, &callerID, &calleeID, &taskPreview,
@@ -717,11 +719,11 @@ func (h *DelegationHandler) listDelegationsFromLedger(ctx context.Context, works
 			"updated_at":    updatedAt,
 			"_ledger":       true, // marker so callers know this row is from the ledger
 		}
-		if resultPreview != "" {
-			entry["response_preview"] = textutil.TruncateBytes(resultPreview, 300)
+		if resultPreview.Valid && resultPreview.String != "" {
+			entry["response_preview"] = textutil.TruncateBytes(resultPreview.String, 300)
 		}
-		if errorDetail != "" {
-			entry["error"] = errorDetail
+		if errorDetail.Valid && errorDetail.String != "" {
+			entry["error"] = errorDetail.String
 		}
 		if lastHeartbeat != nil {
 			entry["last_heartbeat"] = lastHeartbeat
@@ -1,224 +0,0 @@
-package handlers
-
-import (
-	"encoding/json"
-	"testing"
-
-	"github.com/stretchr/testify/assert"
-)
-
-// extractResponseText tests — walks A2A JSON-RPC response bodies and
-// returns the first text part, falling back to raw body on parse failures.
-
-func TestExtractResponseText_PartsWithTextKind(t *testing.T) {
-	resp := map[string]interface{}{
-		"result": map[string]interface{}{
-			"parts": []interface{}{
-				map[string]interface{}{"kind": "text", "text": "hello world"},
-				map[string]interface{}{"kind": "text", "text": "second part"},
-			},
-		},
-	}
-	body, _ := json.Marshal(resp)
-	assert.Equal(t, "hello world", extractResponseText(body))
-}
-
-func TestExtractResponseText_PartNotTextKind(t *testing.T) {
-	resp := map[string]interface{}{
-		"result": map[string]interface{}{
-			"parts": []interface{}{
-				map[string]interface{}{"kind": "image", "data": "base64..."},
-				map[string]interface{}{"kind": "text", "text": "visible"},
-			},
-		},
-	}
-	body, _ := json.Marshal(resp)
-	assert.Equal(t, "visible", extractResponseText(body))
-}
-
-func TestExtractResponseText_PartsEmpty(t *testing.T) {
-	// Empty parts array — falls through to artifacts, then raw body
-	resp := map[string]interface{}{
-		"result": map[string]interface{}{
-			"parts":     []interface{}{},
-			"artifacts": []interface{}{},
-		},
-	}
-	body, _ := json.Marshal(resp)
-	// Falls through to raw body (which is the JSON string)
-	result := extractResponseText(body)
-	assert.NotEmpty(t, result)
-}
-
-func TestExtractResponseText_ArtifactPartsWithText(t *testing.T) {
-	resp := map[string]interface{}{
-		"result": map[string]interface{}{
-			"parts": []interface{}{},
-			"artifacts": []interface{}{
-				map[string]interface{}{
-					"kind": "file",
-					"parts": []interface{}{
-						map[string]interface{}{"kind": "text", "text": "artifact text"},
-					},
-				},
-			},
-		},
-	}
-	body, _ := json.Marshal(resp)
-	assert.Equal(t, "artifact text", extractResponseText(body))
-}
-
-func TestExtractResponseText_ArtifactPartNotTextKind(t *testing.T) {
-	resp := map[string]interface{}{
-		"result": map[string]interface{}{
-			"parts": []interface{}{},
-			"artifacts": []interface{}{
-				map[string]interface{}{
-					"kind": "code",
-					"parts": []interface{}{
-						map[string]interface{}{"kind": "image", "data": "..."},
-						map[string]interface{}{"kind": "text", "text": "code comment"},
-					},
-				},
-			},
-		},
-	}
-	body, _ := json.Marshal(resp)
-	assert.Equal(t, "code comment", extractResponseText(body))
-}
-
-func TestExtractResponseText_ArtifactsEmpty(t *testing.T) {
-	resp := map[string]interface{}{
-		"result": map[string]interface{}{
-			"parts":     []interface{}{},
-			"artifacts": []interface{}{},
-		},
-	}
-	body, _ := json.Marshal(resp)
-	result := extractResponseText(body)
-	// Falls back to raw body
-	assert.Equal(t, string(body), result)
-}
-
-func TestExtractResponseText_NoResult(t *testing.T) {
-	// No "result" key at all — falls back to raw body
-	body := []byte(`{"error": {"code": -32600, "message": "Invalid Request"}}`)
-	result := extractResponseText(body)
-	assert.Equal(t, string(body), result)
-}
-
-func TestExtractResponseText_ResultNotMap(t *testing.T) {
-	// result is a string, not a map — falls back to raw body
-	body := []byte(`{"result": "just a string"}`)
-	result := extractResponseText(body)
-	assert.Equal(t, string(body), result)
-}
-
-func TestExtractResponseText_NonJSONBody(t *testing.T) {
-	// Non-JSON bytes — returns the raw string
-	body := []byte("plain text response, not JSON at all")
-	result := extractResponseText(body)
-	assert.Equal(t, "plain text response, not JSON at all", result)
-}
-
-func TestExtractResponseText_PartWithNilText(t *testing.T) {
-	// Text field is nil — kind is "text" but text is nil, should skip
-	resp := map[string]interface{}{
-		"result": map[string]interface{}{
-			"parts": []interface{}{
-				map[string]interface{}{"kind": "text", "text": nil},
-				map[string]interface{}{"kind": "text", "text": "found"},
-			},
-		},
-	}
-	body, _ := json.Marshal(resp)
-	assert.Equal(t, "found", extractResponseText(body))
-}
-
-func TestExtractResponseText_ArtifactPartWithNilText(t *testing.T) {
-	resp := map[string]interface{}{
-		"result": map[string]interface{}{
-			"parts": []interface{}{},
-			"artifacts": []interface{}{
-				map[string]interface{}{
-					"parts": []interface{}{
-						map[string]interface{}{"kind": "text", "text": nil},
-						map[string]interface{}{"kind": "text", "text": "artifact-found"},
-					},
-				},
-			},
-		},
-	}
-	body, _ := json.Marshal(resp)
-	assert.Equal(t, "artifact-found", extractResponseText(body))
-}
-
-func TestExtractResponseText_PartsWithNonMapElement(t *testing.T) {
-	// parts contains a non-map element — should be skipped gracefully
-	resp := map[string]interface{}{
-		"result": map[string]interface{}{
-			"parts": []interface{}{
-				"not a map",
-				123,
-				nil,
-				map[string]interface{}{"kind": "text", "text": "parsed"},
-			},
-		},
-	}
-	body, _ := json.Marshal(resp)
-	assert.Equal(t, "parsed", extractResponseText(body))
-}
-
-func TestExtractResponseText_ArtifactWithNonMapElement(t *testing.T) {
-	resp := map[string]interface{}{
-		"result": map[string]interface{}{
-			"parts": []interface{}{},
-			"artifacts": []interface{}{
-				"not a map",
-				nil,
-				map[string]interface{}{
-					"parts": []interface{}{
-						"not a map",
-						map[string]interface{}{"kind": "text", "text": "safe"},
-					},
-				},
-			},
-		},
-	}
-	body, _ := json.Marshal(resp)
-	assert.Equal(t, "safe", extractResponseText(body))
-}
-
-func TestExtractResponseText_PartKindNotString(t *testing.T) {
-	// kind is an integer, not a string — should be skipped
-	resp := map[string]interface{}{
-		"result": map[string]interface{}{
-			"parts": []interface{}{
-				map[string]interface{}{"kind": 123, "text": "ignored"},
-				map[string]interface{}{"kind": "text", "text": "found"},
-			},
-		},
-	}
-	body, _ := json.Marshal(resp)
-	assert.Equal(t, "found", extractResponseText(body))
-}
-
-func TestExtractResponseText_EmptyResponse(t *testing.T) {
-	body := []byte("{}")
-	result := extractResponseText(body)
-	// Falls back to raw "{}"
-	assert.Equal(t, "{}", result)
-}
-
-func TestExtractResponseText_NilBody(t *testing.T) {
-	// nil byte slice — string(nil) = ""
-	result := extractResponseText(nil)
-	assert.Equal(t, "", result)
-}
-
-func TestExtractResponseText_WhitespaceBody(t *testing.T) {
-	body := []byte("   \n\t  ")
-	result := extractResponseText(body)
-	// Unmarshals to empty map, no result, returns raw string
-	assert.Equal(t, "   \n\t  ", result)
-}
@@ -145,6 +145,54 @@ func TestListDelegationsFromLedger_MultipleRows(t *testing.T) {
 	}
 }

+func TestListDelegationsFromLedger_NullsOmitted(t *testing.T) {
+	// last_heartbeat, deadline, result_preview, error_detail are all NULL.
+	// Handler must not panic and must omit those keys from the map.
+	mockDB, mock, err := sqlmock.New()
+	if err != nil {
+		t.Fatalf("failed to create sqlmock: %v", err)
+	}
+	prevDB := db.DB
+	db.DB = mockDB
+	t.Cleanup(func() { mockDB.Close(); db.DB = prevDB })
+
+	now := time.Now()
+	rows := sqlmock.NewRows([]string{
+		"delegation_id", "caller_id", "callee_id", "task_preview",
+		"status", "result_preview", "error_detail",
+		"last_heartbeat", "deadline", "created_at", "updated_at",
+	}).
+		AddRow("del-1", "ws-1", "ws-2", "task", "queued", nil, nil, nil, nil, now, now)
+	mock.ExpectQuery("SELECT .+ FROM delegations").
+		WithArgs("ws-1").
+		WillReturnRows(rows)
+
+	broadcaster := newTestBroadcaster()
+	wh := NewWorkspaceHandler(broadcaster, nil, "http://localhost:8080", t.TempDir())
+	dh := NewDelegationHandler(wh, broadcaster)
+
+	got := dh.listDelegationsFromLedger(context.Background(), "ws-1")
+	if len(got) != 1 {
+		t.Fatalf("expected 1 entry, got %d", len(got))
+	}
+	e := got[0]
+	if _, ok := e["last_heartbeat"]; ok {
+		t.Error("last_heartbeat should be absent when NULL")
+	}
+	if _, ok := e["deadline"]; ok {
+		t.Error("deadline should be absent when NULL")
+	}
+	if _, ok := e["response_preview"]; ok {
+		t.Error("response_preview should be absent when NULL result_preview")
+	}
+	if _, ok := e["error"]; ok {
+		t.Error("error should be absent when NULL error_detail")
+	}
+	if err := mock.ExpectationsWereMet(); err != nil {
+		t.Errorf("sqlmock expectations: %v", err)
+	}
+}
+
 func TestListDelegationsFromLedger_QueryError(t *testing.T) {
 	// Query failure returns nil — graceful fallback, no panic.
 	mockDB, mock, err := sqlmock.New()
@@ -438,10 +486,3 @@ func TestListDelegationsFromActivityLogs_RowsErr(t *testing.T) {
 		t.Errorf("sqlmock expectations: %v", err)
 	}
 }
-
-// TestListDelegationsFromActivityLogs_ScanErrorSkipped is removed.
-//
-// Same reason as TestListDelegationsFromLedger_ScanError: Go 1.25 causes
-// sqlmock.NewRows([]string{}).AddRow(...) to panic in test SETUP. The handler
-// has no recover(), so a scan panic would crash the process — the correct
-// behaviour. Real-DB integration tests cover this path.
@@ -1,160 +0,0 @@
-package handlers
-
-import (
-	"testing"
-)
-
-// filterPeersByQuery tests — nil-safe role/name filtering for peer discovery.
-
-func TestFilterPeersByQuery_EmptyQueryNoOp(t *testing.T) {
-	peers := []map[string]interface{}{
-		{"name": "foo", "role": "bar"},
-		{"name": "baz", "role": "qux"},
-	}
-	result := filterPeersByQuery(peers, "")
-	if len(result) != 2 {
-		t.Errorf("empty query: expected 2, got %d", len(result))
-	}
-}
-
-func TestFilterPeersByQuery_WhitespaceQueryNoOp(t *testing.T) {
-	peers := []map[string]interface{}{
-		{"name": "foo", "role": "bar"},
-	}
-	result := filterPeersByQuery(peers, "   ")
-	if len(result) != 1 {
-		t.Errorf("whitespace-only query: expected 1, got %d", len(result))
-	}
-}
-
-func TestFilterPeersByQuery_MatchName(t *testing.T) {
-	peers := []map[string]interface{}{
-		{"name": "backend-agent", "role": "sre"},
-		{"name": "frontend-agent", "role": "ui"},
-	}
-	result := filterPeersByQuery(peers, "backend")
-	if len(result) != 1 || result[0]["name"] != "backend-agent" {
-		t.Errorf("expected backend-agent, got %v", result)
-	}
-}
-
-func TestFilterPeersByQuery_MatchRole(t *testing.T) {
-	peers := []map[string]interface{}{
-		{"name": "agent-alpha", "role": "security engineer"},
-		{"name": "agent-beta", "role": "devops"},
-	}
-	result := filterPeersByQuery(peers, "engineer")
-	if len(result) != 1 || result[0]["name"] != "agent-alpha" {
-		t.Errorf("expected agent-alpha, got %v", result)
-	}
-}
-
-func TestFilterPeersByQuery_CaseInsensitive(t *testing.T) {
-	peers := []map[string]interface{}{
-		{"name": "AgentX", "role": "SRE"},
-	}
-	result := filterPeersByQuery(peers, "AGENTx")
-	if len(result) != 1 {
-		t.Errorf("expected 1 match (case-insensitive), got %d", len(result))
-	}
-}
-
-func TestFilterPeersByQuery_NilRoleNoPanic(t *testing.T) {
-	// This is the regression case for #730: queryPeerMaps explicitly sets
-	// peer["role"] = nil when the DB role is empty string. Before the fix,
-	// p["role"].(string) panics on nil. After the fix, it returns "" and
-	// no match occurs — which is the correct behaviour.
-	defer func() {
-		if r := recover(); r != nil {
-			t.Errorf("filterPeersByQuery panicked on nil role: %v", r)
-		}
-	}()
-	peers := []map[string]interface{}{
-		{"name": "some-agent", "role": nil},
-	}
-	result := filterPeersByQuery(peers, "some-agent")
-	if len(result) != 1 {
-		t.Errorf("expected 1 match by name, got %d", len(result))
-	}
-}
-
-func TestFilterPeersByQuery_NilRoleQueryNoMatch(t *testing.T) {
-	// When role is nil and query does not match name, nothing matches.
-	defer func() {
-		if r := recover(); r != nil {
-			t.Errorf("filterPeersByQuery panicked on nil role: %v", r)
-		}
-	}()
-	peers := []map[string]interface{}{
-		{"name": "agent-alpha", "role": nil},
-	}
-	result := filterPeersByQuery(peers, "no-match")
-	if len(result) != 0 {
-		t.Errorf("expected 0 matches, got %d", len(result))
-	}
-}
-
-func TestFilterPeersByQuery_NilNameNoPanic(t *testing.T) {
-	// Defensive check: name could also theoretically be nil.
-	defer func() {
-		if r := recover(); r != nil {
-			t.Errorf("filterPeersByQuery panicked on nil name: %v", r)
-		}
-	}()
-	peers := []map[string]interface{}{
-		{"name": nil, "role": "sre"},
-	}
-	result := filterPeersByQuery(peers, "sre")
-	if len(result) != 1 {
-		t.Errorf("expected 1 match by role, got %d", len(result))
-	}
-}
-
-func TestFilterPeersByQuery_BothNilNoPanic(t *testing.T) {
-	defer func() {
-		if r := recover(); r != nil {
-			t.Errorf("filterPeersByQuery panicked on nil name+role: %v", r)
-		}
-	}()
-	peers := []map[string]interface{}{
-		{"name": nil, "role": nil},
-	}
-	result := filterPeersByQuery(peers, "")
-	if len(result) != 1 {
-		t.Errorf("empty query with nil name/role: expected 1, got %d", len(result))
-	}
-	result = filterPeersByQuery(peers, "anything")
-	if len(result) != 0 {
-		t.Errorf("non-empty query with nil name/role: expected 0, got %d", len(result))
-	}
-}
-
-func TestFilterPeersByQuery_NoMatches(t *testing.T) {
-	peers := []map[string]interface{}{
-		{"name": "alpha", "role": "beta"},
-		{"name": "gamma", "role": "delta"},
-	}
-	result := filterPeersByQuery(peers, "zzz")
-	if len(result) != 0 {
-		t.Errorf("expected 0, got %d", len(result))
-	}
-}
-
-func TestFilterPeersByQuery_EmptyPeers(t *testing.T) {
-	result := filterPeersByQuery([]map[string]interface{}{}, "query")
-	if len(result) != 0 {
-		t.Errorf("empty peers: expected 0, got %d", len(result))
-	}
-}
-
-func TestFilterPeersByQuery_MultipleMatches(t *testing.T) {
-	peers := []map[string]interface{}{
-		{"name": "backend-alpha", "role": "eng"},
-		{"name": "backend-beta", "role": "eng"},
-		{"name": "frontend", "role": "ui"},
-	}
-	result := filterPeersByQuery(peers, "backend")
-	if len(result) != 2 {
-		t.Errorf("expected 2 backend matches, got %d", len(result))
-	}
-}
@@ -230,21 +230,20 @@ func TestWorkspaceList_WithData(t *testing.T) {
 	broadcaster := newTestBroadcaster()
 	handler := NewWorkspaceHandler(broadcaster, nil, "http://localhost:8080", t.TempDir())

-	// 23 cols — broadcast_enabled + talk_to_user_enabled added after monthly_spend
-	// (migration 20260514). Column order must match scanWorkspaceRow exactly.
+	// 21 cols — see scanWorkspaceRow for order (max_concurrent_tasks
+	// lands between active_tasks and last_error_rate).
 	columns := []string{
 		"id", "name", "role", "tier", "status", "agent_card", "url",
 		"parent_id", "active_tasks", "max_concurrent_tasks",
 		"last_error_rate", "last_sample_error",
 		"uptime_seconds", "current_task", "runtime", "workspace_dir", "x", "y", "collapsed",
 		"budget_limit", "monthly_spend",
-		"broadcast_enabled", "talk_to_user_enabled",
 	}
 	rows := sqlmock.NewRows(columns).
 		AddRow("ws-1", "Agent One", "worker", 1, "online", []byte(`{"name":"agent1"}`), "http://localhost:8001",
-			nil, 3, 1, 0.02, "", 7200, "processing", "langgraph", "", 10.0, 20.0, false, nil, int64(0), false, true).
+			nil, 3, 1, 0.02, "", 7200, "processing", "langgraph", "", 10.0, 20.0, false, nil, int64(0)).
 		AddRow("ws-2", "Agent Two", "", 2, "degraded", []byte("null"), "",
-			nil, 0, 1, 0.6, "timeout", 100, "", "claude-code", "", 50.0, 60.0, true, nil, int64(0), false, true)
+			nil, 0, 1, 0.6, "timeout", 100, "", "claude-code", "", 50.0, 60.0, true, nil, int64(0))

 	mock.ExpectQuery("SELECT w.id, w.name").
 		WillReturnRows(rows)
@@ -8,7 +8,6 @@ import (
 	"fmt"
 	"net/http"
 	"net/http/httptest"
-	"sync"
 	"testing"
 	"time"

@@ -23,44 +22,18 @@ import (
 	"github.com/redis/go-redis/v9"
 )

-// liveTestHandlers tracks every WorkspaceHandler built during the test
-// binary's lifetime so setupTestDB can drain their in-flight goAsync
-// goroutines (notably the detached RestartByID restart cycle, which
-// reads the global db.DB) BEFORE restoring db.DB. Without this drain a
-// fire-and-forget restart goroutine spawned by one test outlives that
-// test and races the db.DB swap in a later test's t.Cleanup — the
-// 0x...d548 data race on platform/internal/db.DB.
-var (
-	liveTestHandlersMu sync.Mutex
-	liveTestHandlers   []*WorkspaceHandler
-)
-
 func init() {
 	gin.SetMode(gin.TestMode)
-	newHandlerHook = func(h *WorkspaceHandler) {
-		liveTestHandlersMu.Lock()
-		liveTestHandlers = append(liveTestHandlers, h)
-		liveTestHandlersMu.Unlock()
-	}
-}
-
-// drainTestAsync waits for every tracked handler's goAsync goroutines to
-// finish. Called from setupTestDB's cleanup before db.DB is restored so
-// no detached restart/provision goroutine is mid-read of db.DB when the
-// pointer is swapped.
-func drainTestAsync() {
-	liveTestHandlersMu.Lock()
-	handlers := make([]*WorkspaceHandler, len(liveTestHandlers))
-	copy(handlers, liveTestHandlers)
-	liveTestHandlersMu.Unlock()
-	for _, h := range handlers {
-		h.waitAsyncForTest()
-	}
 }

 // setupTestDB creates a sqlmock DB and assigns it to the global db.DB.
 // It also disables the SSRF URL check so that httptest.NewServer loopback
 // URLs and fake hostnames (*.example) used in tests don't trigger rejections.
+//
+// IMPORTANT: db.DB is saved before assignment and restored via t.Cleanup so
+// that tests running after this one are not polluted by a closed mock.
+// This is the single root cause of the systemic CI/Platform (Go) failures on
+// main HEAD 8026f020 (mc#975).
 func setupTestDB(t *testing.T) sqlmock.Sqlmock {
 	t.Helper()
 	mockDB, mock, err := sqlmock.New()
@@ -69,16 +42,7 @@ func setupTestDB(t *testing.T) sqlmock.Sqlmock {
 	}
 	prevDB := db.DB
 	db.DB = mockDB
-	t.Cleanup(func() {
-		// Drain detached async goroutines (e.g. goAsync(RestartByID),
-		// which reads db.DB in runRestartCycle before its provisioner
-		// gate) BEFORE swapping db.DB back. Doing the restore first
-		// would let an in-flight restart goroutine read db.DB while
-		// this line writes it — the data race this guards against.
-		drainTestAsync()
-		db.DB = prevDB
-		mockDB.Close()
-	})
+	t.Cleanup(func() { db.DB = prevDB; mockDB.Close() })

 	// Disable SSRF checks for the duration of this test only. Restore
 	// the previous state via t.Cleanup so that TestIsSafeURL_* tests
@@ -433,21 +397,21 @@ func TestWorkspaceList(t *testing.T) {
 	broadcaster := newTestBroadcaster()
 	handler := NewWorkspaceHandler(broadcaster, nil, "http://localhost:8080", "/tmp/configs")

-	// 23 cols: broadcast_enabled + talk_to_user_enabled added after monthly_spend
-	// (migration 20260514). Column order must match scanWorkspaceRow exactly.
+	// 21 cols: `max_concurrent_tasks` added between active_tasks and
+	// last_error_rate (see scanWorkspaceRow + COALESCE(w.max_concurrent_tasks, 1)
+	// in workspace.go). Column order must match that scan exactly.
 	columns := []string{
 		"id", "name", "role", "tier", "status", "agent_card", "url",
 		"parent_id", "active_tasks", "max_concurrent_tasks",
 		"last_error_rate", "last_sample_error",
 		"uptime_seconds", "current_task", "runtime", "workspace_dir", "x", "y", "collapsed",
 		"budget_limit", "monthly_spend",
-		"broadcast_enabled", "talk_to_user_enabled",
 	}
 	rows := sqlmock.NewRows(columns).
 		AddRow("ws-1", "Agent One", "worker", 1, "online", []byte("null"), "http://localhost:8001",
-			nil, 0, 1, 0.0, "", 100, "", "claude-code", "", 10.0, 20.0, false, nil, int64(0), false, true).
+			nil, 0, 1, 0.0, "", 100, "", "claude-code", "", 10.0, 20.0, false, nil, int64(0)).
 		AddRow("ws-2", "Agent Two", "manager", 2, "provisioning", []byte("null"), "",
-			nil, 0, 1, 0.0, "", 0, "", "langgraph", "", 50.0, 60.0, false, nil, int64(0), false, true)
+			nil, 0, 1, 0.0, "", 0, "", "langgraph", "", 50.0, 60.0, false, nil, int64(0))

 	mock.ExpectQuery("SELECT w.id, w.name").
 		WillReturnRows(rows)
@@ -1161,14 +1125,13 @@ func TestWorkspaceGet_CurrentTask(t *testing.T) {
 		"parent_id", "active_tasks", "max_concurrent_tasks", "last_error_rate", "last_sample_error",
 		"uptime_seconds", "current_task", "runtime", "workspace_dir", "x", "y", "collapsed",
 		"budget_limit", "monthly_spend",
-		"broadcast_enabled", "talk_to_user_enabled",
 	}
 	mock.ExpectQuery("SELECT w.id, w.name").
 		WithArgs("dddddddd-0004-0000-0000-000000000000").
 		WillReturnRows(sqlmock.NewRows(columns).AddRow(
 			"dddddddd-0004-0000-0000-000000000000", "Task Worker", "worker", 1, "online", []byte("null"), "http://localhost:9000",
 			nil, 2, 1, 0.0, "", 300, "Analyzing document", "langgraph", "", 10.0, 20.0, false,
-			nil, int64(0), false, true,
+			nil, int64(0),
 		))

 	w := httptest.NewRecorder()
@@ -248,9 +248,6 @@ func (h *InstructionsHandler) Resolve(c *gin.Context) {
 		b.WriteString(content)
 		b.WriteString("\n\n")
 	}
-	if err := rows.Err(); err != nil {
-		log.Printf("ResolveInstructions rows.Err workspace=%s: %v", workspaceID, err)
-	}

 	c.JSON(http.StatusOK, gin.H{
 		"workspace_id": workspaceID,
@@ -261,7 +258,6 @@ func (h *InstructionsHandler) Resolve(c *gin.Context) {
 func scanInstructions(rows interface {
 	Next() bool
 	Scan(dest ...interface{}) error
-	Err() error
 }) []Instruction {
 	var instructions []Instruction
 	for rows.Next() {
@@ -273,9 +269,6 @@ func scanInstructions(rows interface {
 		}
 		instructions = append(instructions, inst)
 	}
-	if err := rows.Err(); err != nil {
-		log.Printf("scanInstructions rows.Err: %v", err)
-	}
 	if instructions == nil {
 		instructions = []Instruction{}
 	}
@@ -751,9 +751,9 @@ func TestMCPHandler_SendMessageToUser_DBErrorLogsAndStill200s(t *testing.T) {
 	t.Setenv("MOLECULE_MCP_ALLOW_SEND_MESSAGE", "true")
 	h, mock := newMCPHandler(t)

-	mock.ExpectQuery("SELECT name, talk_to_user_enabled FROM workspaces").
+	mock.ExpectQuery("SELECT name FROM workspaces").
 		WithArgs("ws-err").
-		WillReturnRows(sqlmock.NewRows([]string{"name", "talk_to_user_enabled"}).AddRow("CEO Ryan PC", true))
+		WillReturnRows(sqlmock.NewRows([]string{"name"}).AddRow("CEO Ryan PC"))

 	// INSERT fails — must NOT abort the tool response.
 	mock.ExpectExec(`INSERT INTO activity_logs.*'a2a_receive'.*'notify'`).
@@ -802,9 +802,9 @@ func TestMCPHandler_SendMessageToUser_ResponseBodyShape(t *testing.T) {

 	const userMessage = "Hi there from the agent"

-	mock.ExpectQuery("SELECT name, talk_to_user_enabled FROM workspaces").
+	mock.ExpectQuery("SELECT name FROM workspaces").
 		WithArgs("ws-shape").
-		WillReturnRows(sqlmock.NewRows([]string{"name", "talk_to_user_enabled"}).AddRow("CEO Ryan PC", true))
+		WillReturnRows(sqlmock.NewRows([]string{"name"}).AddRow("CEO Ryan PC"))

 	// Capture the response_body argument and assert its exact shape.
 	mock.ExpectExec(`INSERT INTO activity_logs.*'a2a_receive'.*'notify'`).
@@ -861,9 +861,9 @@ func TestMCPHandler_SendMessageToUser_PersistsToActivityLog(t *testing.T) {
 	// before it does anything else. Returning a name lets the
 	// broadcast payload populate; the test doesn't assert on the
 	// broadcast (no observable WS in this fake), only on the DB.
-	mock.ExpectQuery("SELECT name, talk_to_user_enabled FROM workspaces").
+	mock.ExpectQuery("SELECT name FROM workspaces").
 		WithArgs("ws-msg").
-		WillReturnRows(sqlmock.NewRows([]string{"name", "talk_to_user_enabled"}).AddRow("CEO Ryan PC", true))
+		WillReturnRows(sqlmock.NewRows([]string{"name"}).AddRow("CEO Ryan PC"))

 	// The persistence INSERT — pin the exact shape so a future
 	// refactor that switches columns or drops `method='notify'`
@@ -271,62 +271,6 @@ func (e EnvRequirement) IsSatisfied(configured map[string]struct{}) bool {
 	return false
 }

-// perWorkspaceUnsatisfied records a single unsatisfied RequiredEnv for a
-// specific workspace during org import preflight.
-type perWorkspaceUnsatisfied struct {
-	Workspace   string
-	FilesDir    string
-	Unsatisfied EnvRequirement
-}
-
-// collectPerWorkspaceUnsatisfied walks the workspace tree and returns every
-// RequiredEnv that is neither in `configured` (global secrets) nor resolvable
-// from the org root or workspace-level .env file. An empty orgBaseDir skips
-// the .env walk so all requirements appear unsatisfied (used by tests to
-// isolate the global-only path).
-func collectPerWorkspaceUnsatisfied(
-	workspaces []OrgWorkspace,
-	orgBaseDir string,
-	configured map[string]struct{},
-) []perWorkspaceUnsatisfied {
-	var result []perWorkspaceUnsatisfied
-	for _, ws := range workspaces {
-		result = append(result, checkWorkspaceRequiredEnv(ws, orgBaseDir, configured)...)
-	}
-	return result
-}
-
-func checkWorkspaceRequiredEnv(
-	ws OrgWorkspace,
-	orgBaseDir string,
-	configured map[string]struct{},
-) []perWorkspaceUnsatisfied {
-	var result []perWorkspaceUnsatisfied
-	// Merge in .env vars from the org root and the workspace-specific dir.
-	// Workspace-level vars override org-root vars, just as loadWorkspaceEnv
-	// implements: org root first, then ws dir on top.
-	if orgBaseDir != "" {
-		wsEnv := loadWorkspaceEnv(orgBaseDir, ws.FilesDir)
-		for k, v := range wsEnv {
-			configured[k] = struct{}{}
-			_ = v // value only used for merging into configured map
-		}
-	}
-	for _, req := range ws.RequiredEnv {
-		if !req.IsSatisfied(configured) {
-			result = append(result, perWorkspaceUnsatisfied{
-				Workspace:   ws.Name,
-				FilesDir:    ws.FilesDir,
-				Unsatisfied: req,
-			})
-		}
-	}
-	for _, child := range ws.Children {
-		result = append(result, checkWorkspaceRequiredEnv(child, orgBaseDir, configured)...)
-	}
-	return result
-}
-
 // UnmarshalYAML accepts either a scalar (string → single) or a map
 // with an `any_of` list (→ group).
 func (e *EnvRequirement) UnmarshalYAML(value *yaml.Node) error {
@@ -64,9 +64,7 @@ func resolvePromptRef(inline, fileRef, orgBaseDir, filesDir string) (string, err

 // envVarRefPattern matches actual ${VAR} or $VAR references (not literal $).
 // Used to detect unresolved placeholders without false positives like "$5".
-// Requires [a-zA-Z_] as the first char after $ so $100 stays literal.
-// Two capture groups: (1) ${VAR} form, (2) $VAR form.
-var envVarRefPattern = regexp.MustCompile(`\$\{([a-zA-Z_][a-zA-Z0-9_]*)\}|\$([a-zA-Z_][a-zA-Z0-9_]*)`)
+var envVarRefPattern = regexp.MustCompile(`\$\{?[A-Za-z_][A-Za-z0-9_]*\}?`)

 // hasUnresolvedVarRef returns true if the original string had a ${VAR} or $VAR
 // reference that the expanded string didn't fully replace (i.e. the var was unset).
@@ -80,103 +78,17 @@ func hasUnresolvedVarRef(original, expanded string) bool {
 }

 // expandWithEnv expands ${VAR} and $VAR references in s using the env map.
-// Falls back to the platform process env only when the whole value is a
-// single variable reference; embedded process-env expansion is too broad for
-// imported org YAML because host variables such as HOME are not template data.
+// Falls back to the platform process env if a var isn't in the map.
 func expandWithEnv(s string, env map[string]string) string {
-	if s == "" {
-		return ""
-	}
-	var b strings.Builder
-	for i := 0; i < len(s); {
-		if s[i] != '$' {
-			b.WriteByte(s[i])
-			i++
-			continue
+	return os.Expand(s, func(key string) string {
+		if v, ok := env[key]; ok {
+			return v
 		}
-
-		if i+1 >= len(s) {
-			b.WriteByte('$')
-			i++
-			continue
-		}
-
-		if s[i+1] == '{' {
-			end := strings.IndexByte(s[i+2:], '}')
-			if end < 0 {
-				b.WriteByte('$')
-				i++
-				continue
-			}
-			end += i + 2
-			key := s[i+2 : end]
-			ref := s[i : end+1]
-			b.WriteString(expandEnvRef(key, ref, s, env))
-			i = end + 1
-			continue
-		}
-
-		if !isEnvIdentStart(s[i+1]) {
-			b.WriteByte('$')
-			i++
-			continue
-		}
-		j := i + 2
-		for j < len(s) && isEnvIdentPart(s[j]) {
-			j++
-		}
-		key := s[i+1 : j]
-		ref := s[i:j]
-		b.WriteString(expandEnvRef(key, ref, s, env))
-		i = j
-	}
-	return b.String()
-}
-
-// expandEnvRef resolves a single variable reference extracted from s.
-//
-// Guards:
-//   - Empty key → "$$" escape, return "$"
-//   - key[0] not POSIX ident start → "$" + partial chars, return "$<chars>"
-//   - Key in env map → return the mapped value (template override wins)
-//   - Otherwise → only fall back to os.Getenv if the whole input string IS the
-//     variable reference (ref == whole).
-//
-// Bare $VAR format:
-//   $HOME (alone) → ref==whole → os.Getenv ✓  (host HOME is org-template HOME)
-//   $HOME/path (partial) → ref!=whole → literal "$HOME" ✓  (CWE-78: prevents host leak)
-//
-// Braced ${VAR} format:
-//   ${HOME} (alone) → ref==whole → os.Getenv ✓
-//   ${ROLE}/admin (partial) → ref!=whole → literal ✓
-//   "yes and ${NOT_SET}" (embedded) → ref!=whole → literal ✓
-//
-// This is the CWE-78 fix from commit a3a358f9.
-func expandEnvRef(key, ref, whole string, env map[string]string) string {
-	if key == "" {
-		return "$"
-	}
-	if !isEnvIdentStart(key[0]) {
-		return "$" + key
-	}
-	if v, ok := env[key]; ok {
-		return v
-	}
-	if ref == whole {
 		return os.Getenv(key)
-	}
-	return ref
+	})
 }

-func isEnvIdentStart(c byte) bool {
-	return (c >= 'a' && c <= 'z') || (c >= 'A' && c <= 'Z') || c == '_'
-}
-
-func isEnvIdentPart(c byte) bool {
-	return isEnvIdentStart(c) || (c >= '0' && c <= '9')
-}
-
-// loadWorkspaceEnv reads the org root .env and the workspace-specific .env .env and the workspace-specific .env
+// loadWorkspaceEnv reads the org root .env and the workspace-specific .env
 // (workspace overrides org root). Used by both secret injection and channel
 // config expansion.
 //
@@ -428,11 +340,7 @@ func resolveInsideRoot(root, userPath string) (string, error) {
 		return "", fmt.Errorf("root abs: %w", err)
 	}
 	joined := filepath.Join(absRoot, userPath)
-	// filepath.Join preserves "." components when root is absolute; clean
-	// them before computing the final absolute path so "./subdir/./file.txt"
-	// resolves to root/subdir/file.txt (not root/./subdir/./file.txt).
-	cleaned := filepath.Clean(joined)
-	absJoined, err := filepath.Abs(cleaned)
+	absJoined, err := filepath.Abs(joined)
 	if err != nil {
 		return "", fmt.Errorf("joined abs: %w", err)
 	}
@@ -1,126 +0,0 @@
-package handlers
-
-import (
-	"os"
-	"path/filepath"
-	"testing"
-
-	"github.com/stretchr/testify/assert"
-	"github.com/stretchr/testify/require"
-)
-
-// setupOrgEnv creates a temp dir with an optional org .env file and returns the dir.
-func setupOrgEnv(t *testing.T, orgEnvContent string) string {
-	t.Helper()
-	dir := t.TempDir()
-	if orgEnvContent != "" {
-		require.NoError(t, os.WriteFile(filepath.Join(dir, ".env"), []byte(orgEnvContent), 0o600))
-	}
-	return dir
-}
-
-func Test_loadWorkspaceEnv_orgRootOnly(t *testing.T) {
-	org := setupOrgEnv(t, "ORG_VAR=orgval\nORG_DEBUG=true")
-	vars := loadWorkspaceEnv(org, "")
-	assert.Equal(t, "orgval", vars["ORG_VAR"])
-	assert.Equal(t, "true", vars["ORG_DEBUG"])
-}
-
-func Test_loadWorkspaceEnv_orgRootMissing(t *testing.T) {
-	// No .env at org root — should return empty map without error.
-	dir := t.TempDir()
-	vars := loadWorkspaceEnv(dir, "")
-	assertEmpty(t, vars)
-}
-
-func Test_loadWorkspaceEnv_workspaceEnvMerges(t *testing.T) {
-	org := setupOrgEnv(t, "SHARED=sharedval\nORG_ONLY=orgonly")
-	wsDir := filepath.Join(org, "myworkspace")
-	require.NoError(t, os.MkdirAll(wsDir, 0o700))
-	require.NoError(t, os.WriteFile(filepath.Join(wsDir, ".env"), []byte("WS_VAR=wsval\nSHARED=overridden"), 0o600))
-
-	vars := loadWorkspaceEnv(org, "myworkspace")
-	assert.Equal(t, "wsval", vars["WS_VAR"])
-	assert.Equal(t, "overridden", vars["SHARED"]) // workspace overrides org
-	assert.Equal(t, "orgonly", vars["ORG_ONLY"])   // org vars preserved
-}
-
-func Test_loadWorkspaceEnv_emptyFilesDir(t *testing.T) {
-	org := setupOrgEnv(t, "VAR=val")
-	vars := loadWorkspaceEnv(org, "")
-	assert.Equal(t, "val", vars["VAR"])
-}
-
-func Test_loadWorkspaceEnv_traversalRejects(t *testing.T) {
-	// #321 / CWE-22: filesDir "../../../etc" must not escape the org root.
-	// resolveInsideRoot rejects the traversal so workspace .env is skipped;
-	// org root .env is still loaded (it's before the guard).
-	org := setupOrgEnv(t, "INNOCENT=val\nSAFE_WS=wsval")
-	parent := filepath.Dir(org)
-	require.NoError(t, os.WriteFile(filepath.Join(parent, ".env"), []byte("MALICIOUS=evil"), 0o600))
-	// Also create a workspace dir inside org to prove it IS accessible normally.
-	wsDir := filepath.Join(org, "legit-workspace")
-	require.NoError(t, os.MkdirAll(wsDir, 0o700))
-	require.NoError(t, os.WriteFile(filepath.Join(wsDir, ".env"), []byte("WS_SECRET=ssh-key-123"), 0o600))
-
-	// Traversal is blocked.
-	vars := loadWorkspaceEnv(org, "../../../etc")
-	// Org root vars present; workspace vars blocked.
-	assert.Equal(t, "val", vars["INNOCENT"])
-	assert.Equal(t, "wsval", vars["SAFE_WS"]) // from org root .env
-	assert.Empty(t, vars["WS_SECRET"])        // workspace .env blocked by traversal guard
-	_, hasEvil := vars["MALICIOUS"]
-	assert.False(t, hasEvil, "MALICIOUS from escaped path must not appear")
-}
-
-func Test_loadWorkspaceEnv_traversalWithDots(t *testing.T) {
-	// A sibling-traversal attempt: go up one level then into a sibling dir.
-	// The sibling dir is NOT inside org, so it must be rejected.
-	org := setupOrgEnv(t, "INNOCENT=val")
-	parent := filepath.Dir(org)
-	require.NoError(t, os.MkdirAll(filepath.Join(parent, "sibling"), 0o700))
-	require.NoError(t, os.WriteFile(filepath.Join(parent, "sibling/.env"), []byte("LEAKED=secret"), 0o600))
-
-	vars := loadWorkspaceEnv(org, "../sibling")
-	// Org vars loaded; sibling vars blocked.
-	assert.Equal(t, "val", vars["INNOCENT"])
-	assert.Empty(t, vars["LEAKED"], "sibling traversal must be rejected")
-}
-
-func Test_loadWorkspaceEnv_absolutePathRejected(t *testing.T) {
-	// Absolute paths are rejected outright by resolveInsideRoot.
-	org := setupOrgEnv(t, "INNOCENT=val")
-	vars := loadWorkspaceEnv(org, "/etc")
-	assert.Equal(t, "val", vars["INNOCENT"]) // org root still loaded
-	assert.Empty(t, vars["SAFE_WS"])
-}
-
-func Test_loadWorkspaceEnv_dotPathRejected(t *testing.T) {
-	// "." resolves to the org root itself — this is NOT a traversal but
-	// would create org-root/.env which is the org root .env, not a
-	// workspace .env. resolveInsideRoot accepts this; the workspace .env
-	// path is org/.env, which IS the org root .env (already loaded).
-	// So the correct result is the org vars (same as org root, no change).
-	org := setupOrgEnv(t, "INNOCENT=val")
-	vars := loadWorkspaceEnv(org, ".")
-	// "." passes resolveInsideRoot (resolves to org root, which is valid).
-	// But workspace path org/.env is the same as org/.env already loaded.
-	assert.Equal(t, "val", vars["INNOCENT"])
-}
-
-func Test_loadWorkspaceEnv_emptyOrgRootReturnsEmpty(t *testing.T) {
-	vars := loadWorkspaceEnv("", "some/dir")
-	assertEmpty(t, vars)
-}
-
-func Test_loadWorkspaceEnv_missingWorkspaceDir(t *testing.T) {
-	org := setupOrgEnv(t, "ORG=val")
-	// Workspace dir doesn't exist — org vars still loaded.
-	vars := loadWorkspaceEnv(org, "nonexistent")
-	assert.Equal(t, "val", vars["ORG"])
-}
-
-func assertEmpty(t *testing.T, m map[string]string) {
-	t.Helper()
-	assert.Equal(t, 0, len(m), "expected empty map, got %v", m)
-}
@@ -1,723 +0,0 @@
-package handlers
-
-import (
-	"testing"
-
-	"github.com/stretchr/testify/assert"
-)
-
-// ── isSafeRoleName ────────────────────────────────────────────────────────────
-
-func TestIsSafeRoleName_Valid(t *testing.T) {
-	cases := []string{
-		"backend",
-		"frontend",
-		"backend-engineer",
-		"Frontend_Engineer",
-		"DevOps123",
-		"sre-team",
-		"a",
-		"ABC",
-		"Role_With_Underscores_And-Numbers123",
-	}
-	for _, r := range cases {
-		t.Run(r, func(t *testing.T) {
-			if !isSafeRoleName(r) {
-				t.Errorf("isSafeRoleName(%q): expected true, got false", r)
-			}
-		})
-	}
-}
-
-func TestIsSafeRoleName_Invalid(t *testing.T) {
-	cases := []struct {
-		name string
-		role string
-	}{
-		{"empty", ""},
-		{"dot", "."},
-		{"double dot", ".."},
-		{"path separator", "backend/engineer"},
-		{"space", "backend engineer"},
-		{"special char", "backend@engineer"},
-		{"at sign", "role@team"},
-		{"colon", "role:admin"},
-		{"hash", "role#1"},
-		{"percent", "role%20"},
-		{"quote", `role"name`},
-		{"backslash", `role\name`},
-		{"tilde", "role~test"},
-		{"backtick", "`role"},
-		{"bracket open", "[role]"},
-		{"bracket close", "role]"},
-		{"plus", "role+admin"},
-		{"equals", "role=admin"},
-		{"caret", "role^admin"},
-		{"question mark", "role?"},
-		{"pipe at end", "role|"},
-		{"greater than", "role>"},
-		{"asterisk", "role*"},
-		{"ampersand", "role&"},
-		{"exclamation at end", "role!"},
-	}
-	for _, tc := range cases {
-		t.Run(tc.name, func(t *testing.T) {
-			if isSafeRoleName(tc.role) {
-				t.Errorf("isSafeRoleName(%q): expected false, got true", tc.role)
-			}
-		})
-	}
-}
-
-// ── hasUnresolvedVarRef ───────────────────────────────────────────────────────
-
-func TestHasUnresolvedVarRef_NoVars(t *testing.T) {
-	cases := []string{
-		"",
-		"plain text",
-		"no variables here",
-		"123 numeric",
-		"$",
-		"${}",
-		"$5",
-		"$$$$",
-	}
-	for _, s := range cases {
-		t.Run(s, func(t *testing.T) {
-			if hasUnresolvedVarRef(s, s) {
-				t.Errorf("hasUnresolvedVarRef(%q, %q): expected false, got true", s, s)
-			}
-		})
-	}
-}
-
-func TestHasUnresolvedVarRef_Resolved(t *testing.T) {
-	// Expansion consumed the var refs (where "consumed" means the output no longer
-	// contains the original var reference syntax).
-	cases := []struct {
-		orig     string
-		expanded string
-		want     bool // true = unresolved (function returns true), false = resolved
-	}{
-		// Empty output: function conservatively returns true — it cannot distinguish
-		// "var was set to empty" from "var was not found and stripped". The test
-		// documents this design choice; callers who need empty=resolved should
-		// pre-process the output before calling hasUnresolvedVarRef.
-		{"${VAR}", "", true},
-		{"${VAR}", "value", false},                    // var replaced
-		{"$VAR", "value", false},                      // bare var replaced
-		{"prefix${VAR}suffix", "prefixvaluesuffix", false},
-		{"${A}${B}", "ab", false},
-		// FOO=FOO and BAR=BAR — both vars found and replaced. Expanded output
-		// "FOO and BAR" has no ${...} syntax left, so function returns false.
-		{"${FOO} and ${BAR}", "FOO and BAR", false},
-	}
-	for _, tc := range cases {
-		t.Run(tc.orig, func(t *testing.T) {
-			got := hasUnresolvedVarRef(tc.orig, tc.expanded)
-			if got != tc.want {
-				t.Errorf("hasUnresolvedVarRef(%q, %q): got %v, want %v", tc.orig, tc.expanded, got, tc.want)
-			}
-		})
-	}
-}
-
-func TestHasUnresolvedVarRef_Unresolved(t *testing.T) {
-	// Expansion left the refs intact → unresolved.
-	cases := []struct {
-		orig    string
-		expanded string
-	}{
-		{"${VAR}", "${VAR}"},       // untouched
-		{"$VAR", "$VAR"},           // bare untouched
-		{"prefix${VAR}suffix", "prefix${VAR}suffix"},
-		{"${A}${B}", "${A}${B}"},   // both unresolved
-		{"${FOO}", ""},             // empty result with var ref in original
-	}
-	for _, tc := range cases {
-		t.Run(tc.orig, func(t *testing.T) {
-			if !hasUnresolvedVarRef(tc.orig, tc.expanded) {
-				t.Errorf("hasUnresolvedVarRef(%q, %q): expected true, got false", tc.orig, tc.expanded)
-			}
-		})
-	}
-}
-
-// ── expandWithEnv ─────────────────────────────────────────────────────────────
-
-func TestExpandWithEnv_Basic(t *testing.T) {
-	env := map[string]string{"FOO": "bar", "BAZ": "qux"}
-	cases := []struct {
-		input string
-		want  string
-	}{
-		{"", ""},
-		{"no vars", "no vars"},
-		{"${FOO}", "bar"},
-		{"$FOO", "bar"},
-		{"prefix${FOO}suffix", "prefixbarsuffix"},
-		{"${FOO}${BAZ}", "barqux"},
-		{"${MISSING}", ""}, // not in env, not in os env → empty
-	}
-	for _, tc := range cases {
-		t.Run(tc.input, func(t *testing.T) {
-			got := expandWithEnv(tc.input, env)
-			if got != tc.want {
-				t.Errorf("expandWithEnv(%q, %v) = %q, want %q", tc.input, env, got, tc.want)
-			}
-		})
-	}
-}
-
-// ── mergeCategoryRouting ─────────────────────────────────────────────────────
-
-func TestMergeCategoryRouting_EmptyInputs(t *testing.T) {
-	// Both empty → empty
-	r := mergeCategoryRouting(nil, nil)
-	if len(r) != 0 {
-		t.Errorf("mergeCategoryRouting(nil, nil): got %v, want empty", r)
-	}
-
-	r = mergeCategoryRouting(map[string][]string{}, map[string][]string{})
-	if len(r) != 0 {
-		t.Errorf("mergeCategoryRouting({}, {}): got %v, want empty", r)
-	}
-}
-
-func TestMergeCategoryRouting_DefaultsOnly(t *testing.T) {
-	defaults := map[string][]string{
-		"security": {"Backend Engineer", "DevOps"},
-		"ui":       {"Frontend Engineer"},
-		"data":     {"Data Engineer"},
-	}
-	r := mergeCategoryRouting(defaults, nil)
-	if len(r) != 3 {
-		t.Errorf("got %d keys, want 3", len(r))
-	}
-	if len(r["security"]) != 2 {
-		t.Errorf("security roles: got %v, want 2", r["security"])
-	}
-}
-
-func TestMergeCategoryRouting_WorkspaceOverrides(t *testing.T) {
-	defaults := map[string][]string{
-		"security": {"Backend Engineer", "DevOps"},
-		"ui":       {"Frontend Engineer"},
-	}
-	ws := map[string][]string{
-		"security": {"SRE Team"}, // narrows
-		"ui":       {},           // drops
-		"infra":    {"Platform Team"}, // adds
-	}
-	r := mergeCategoryRouting(defaults, ws)
-	if len(r["security"]) != 1 || r["security"][0] != "SRE Team" {
-		t.Errorf("security: got %v, want [SRE Team]", r["security"])
-	}
-	if _, ok := r["ui"]; ok {
-		t.Errorf("ui should be dropped, got %v", r["ui"])
-	}
-	if len(r["infra"]) != 1 || r["infra"][0] != "Platform Team" {
-		t.Errorf("infra: got %v, want [Platform Team]", r["infra"])
-	}
-}
-
-func TestMergeCategoryRouting_EmptyListDrops(t *testing.T) {
-	defaults := map[string][]string{"foo": {"A", "B"}}
-	ws := map[string][]string{"foo": {}}
-	r := mergeCategoryRouting(defaults, ws)
-	if _, ok := r["foo"]; ok {
-		t.Errorf("foo with empty ws list: should be dropped, got %v", r["foo"])
-	}
-}
-
-func TestMergeCategoryRouting_EmptyKeySkipped(t *testing.T) {
-	defaults := map[string][]string{"": {"Role"}}
-	ws := map[string][]string{"": {}}
-	r := mergeCategoryRouting(defaults, ws)
-	if _, ok := r[""]; ok {
-		t.Errorf("empty key should be skipped, got %v", r[""])
-	}
-}
-
-// ── renderCategoryRoutingYAML ────────────────────────────────────────────────
-
-func TestRenderCategoryRoutingYAML_Empty(t *testing.T) {
-	out, err := renderCategoryRoutingYAML(nil)
-	if err != nil {
-		t.Fatalf("unexpected error: %v", err)
-	}
-	if out != "" {
-		t.Errorf("got %q, want empty string", out)
-	}
-
-	out, err = renderCategoryRoutingYAML(map[string][]string{})
-	if err != nil {
-		t.Fatalf("unexpected error: %v", err)
-	}
-	if out != "" {
-		t.Errorf("got %q, want empty string", out)
-	}
-}
-
-func TestRenderCategoryRoutingYAML_StableOrdering(t *testing.T) {
-	// Keys are sorted so output is deterministic regardless of map iteration order.
-	m := map[string][]string{
-		"zebra":  {"A"},
-		"alpha":  {"B"},
-		"middle": {"C"},
-	}
-	out, err := renderCategoryRoutingYAML(m)
-	if err != nil {
-		t.Fatalf("unexpected error: %v", err)
-	}
-	// alpha must come before middle, which must come before zebra
-	ai := 0
-	zi := 0
-	mi := 0
-	for i, c := range out {
-		switch {
-		case c == 'a' && i < len(out)-5 && out[i:i+5] == "alpha":
-			ai = i
-		case c == 'z' && i < len(out)-5 && out[i:i+5] == "zebra":
-			zi = i
-		case c == 'm' && i < len(out)-6 && out[i:i+6] == "middle":
-			mi = i
-		}
-	}
-	if ai <= 0 || zi <= 0 || mi <= 0 {
-		t.Fatalf("could not locate all keys in output: %s", out)
-	}
-	if ai >= mi || mi >= zi {
-		t.Errorf("keys not sorted: alpha=%d middle=%d zebra=%d, output:\n%s", ai, mi, zi, out)
-	}
-}
-
-func TestRenderCategoryRoutingYAML_SpecialCharsEscaped(t *testing.T) {
-	// YAML library should escape characters that need quoting.
-	m := map[string][]string{
-		"key:with:colons": {"Role: Admin"},
-		"key with space":  {"Role"},
-	}
-	out, err := renderCategoryRoutingYAML(m)
-	if err != nil {
-		t.Fatalf("unexpected error: %v", err)
-	}
-	// The output must be valid YAML (yaml.Marshal handles quoting).
-	// The key with colons should appear quoted in the output.
-	if out == "" {
-		t.Error("output is empty")
-	}
-}
-
-// ── appendYAMLBlock ───────────────────────────────────────────────────────────
-
-func TestAppendYAMLBlock_NoExisting(t *testing.T) {
-	got := appendYAMLBlock(nil, "key: value")
-	if string(got) != "key: value" {
-		t.Errorf("got %q, want 'key: value'", string(got))
-	}
-}
-
-func TestAppendYAMLBlock_EmptyBlock(t *testing.T) {
-	// When existing lacks a trailing \n, the function adds one before appending
-	// the empty block — so the result always has a clean terminator.
-	got := appendYAMLBlock([]byte("existing: data"), "")
-	want := "existing: data\n"
-	if string(got) != want {
-		t.Errorf("got %q, want %q", string(got), want)
-	}
-}
-
-func TestAppendYAMLBlock_AppendsWithNewline(t *testing.T) {
-	existing := []byte("key: value")
-	block := "new: entry"
-	got := appendYAMLBlock(existing, block)
-	want := "key: value\nnew: entry"
-	if string(got) != want {
-		t.Errorf("got %q, want %q", string(got), want)
-	}
-}
-
-func TestAppendYAMLBlock_AlreadyEndsWithNewline(t *testing.T) {
-	existing := []byte("key: value\n")
-	block := "new: entry"
-	got := appendYAMLBlock(existing, block)
-	want := "key: value\nnew: entry"
-	if string(got) != want {
-		t.Errorf("got %q, want %q", string(got), want)
-	}
-}
-
-// ── mergePlugins ─────────────────────────────────────────────────────────────
-
-func TestMergePlugins_EmptyInputs(t *testing.T) {
-	r := mergePlugins(nil, nil)
-	if len(r) != 0 {
-		t.Errorf("got %v, want []", r)
-	}
-	r = mergePlugins([]string{}, []string{})
-	if len(r) != 0 {
-		t.Errorf("got %v, want []", r)
-	}
-}
-
-func TestMergePlugins_BasicMerge(t *testing.T) {
-	defaults := []string{"plugin-a", "plugin-b"}
-	ws := []string{"plugin-b", "plugin-c"}
-	r := mergePlugins(defaults, ws)
-	// defaults first, ws appended, b deduplicated
-	if len(r) != 3 {
-		t.Errorf("got %v, want 3 items", r)
-	}
-	if r[0] != "plugin-a" || r[1] != "plugin-b" || r[2] != "plugin-c" {
-		t.Errorf("got %v, want [a, b, c]", r)
-	}
-}
-
-func TestMergePlugins_ExcludeWithBang(t *testing.T) {
-	defaults := []string{"plugin-a", "plugin-b", "plugin-c"}
-	ws := []string{"!plugin-b"}
-	r := mergePlugins(defaults, ws)
-	if len(r) != 2 {
-		t.Errorf("got %v, want 2 items", r)
-	}
-	if r[0] != "plugin-a" || r[1] != "plugin-c" {
-		t.Errorf("got %v, want [a, c]", r)
-	}
-}
-
-func TestMergePlugins_ExcludeWithDash(t *testing.T) {
-	defaults := []string{"plugin-a", "plugin-b", "plugin-c"}
-	ws := []string{"-plugin-b"}
-	r := mergePlugins(defaults, ws)
-	if len(r) != 2 || r[0] != "plugin-a" || r[1] != "plugin-c" {
-		t.Errorf("got %v, want [a, c]", r)
-	}
-}
-
-func TestMergePlugins_ExcludeNonexistent(t *testing.T) {
-	defaults := []string{"plugin-a", "plugin-b"}
-	ws := []string{"!plugin-c"} // c not present
-	r := mergePlugins(defaults, ws)
-	if len(r) != 2 {
-		t.Errorf("got %v, want 2 items", r)
-	}
-}
-
-func TestMergePlugins_ExcludeEmptyTarget(t *testing.T) {
-	defaults := []string{"plugin-a", "plugin-b"}
-	ws := []string{"!"}
-	r := mergePlugins(defaults, ws)
-	if len(r) != 2 {
-		t.Errorf("got %v, want 2 items", r)
-	}
-}
-
-func TestMergePlugins_EmptyPlugin(t *testing.T) {
-	defaults := []string{"", "plugin-a", ""}
-	ws := []string{"plugin-b", ""}
-	r := mergePlugins(defaults, ws)
-	if len(r) != 2 {
-		t.Errorf("got %v, want 2 items", r)
-	}
-}
-
-// ── Additional coverage: expandWithEnv ──────────────────────────────
-func TestExpandWithEnv_BracedVar(t *testing.T) {
-	env := map[string]string{"FOO": "bar", "BAZ": "qux"}
-	result := expandWithEnv("value is ${FOO}", env)
-	assert.Equal(t, "value is bar", result)
-}
-
-func TestExpandWithEnv_DollarVar(t *testing.T) {
-	env := map[string]string{"X": "1", "Y": "2"}
-	result := expandWithEnv("$X + $Y = 3", env)
-	assert.Equal(t, "1 + 2 = 3", result)
-}
-
-func TestExpandWithEnv_Mixed(t *testing.T) {
-	env := map[string]string{"A": "alpha", "B": "beta"}
-	result := expandWithEnv("${A}_${B}", env)
-	assert.Equal(t, "alpha_beta", result)
-}
-
-func TestExpandWithEnv_MissingVar(t *testing.T) {
-	// Missing vars stay as-is (os.Getenv fallback returns "" for unset vars).
-	env := map[string]string{}
-	result := expandWithEnv("${UNSET}", env)
-	assert.Equal(t, "", result)
-}
-
-func TestExpandWithEnv_EmptyMap(t *testing.T) {
-	result := expandWithEnv("no vars here", map[string]string{})
-	assert.Equal(t, "no vars here", result)
-}
-
-func TestExpandWithEnv_LiteralDollar(t *testing.T) {
-	// A bare $ not followed by a valid identifier char stays as-is.
-	result := expandWithEnv("cost $100", map[string]string{})
-	assert.Equal(t, "cost $100", result)
-}
-
-func TestExpandWithEnv_PartiallyPresent(t *testing.T) {
-	env := map[string]string{"SET": "yes"}
-	result := expandWithEnv("${SET} and ${NOT_SET}", env)
-	// ${SET} resolved from env; ${NOT_SET} stays literal (not whole-string ref,
-	// so os.Getenv fallback is NOT used — CWE-78 regression guard).
-	assert.Equal(t, "yes and ${NOT_SET}", result)
-}
-
-// mergeCategoryRouting tests — unions defaults with per-workspace routing.
-
-// ── Additional coverage: mergeCategoryRouting ──────────────────────
-func TestMergeCategoryRouting_WorkspaceAddsCategory(t *testing.T) {
-	defaults := map[string][]string{
-		"security": {"Backend Engineer"},
-	}
-	wsRouting := map[string][]string{
-		"ui": {"Frontend Engineer"},
-	}
-	result := mergeCategoryRouting(defaults, wsRouting)
-	assert.Equal(t, []string{"Backend Engineer"}, result["security"])
-	assert.Equal(t, []string{"Frontend Engineer"}, result["ui"])
-}
-
-func TestMergeCategoryRouting_EmptyListDropsCategory(t *testing.T) {
-	defaults := map[string][]string{
-		"security": {"Backend Engineer"},
-		"infra":    {"SRE"},
-	}
-	wsRouting := map[string][]string{
-		"security": {}, // empty list = explicit drop
-	}
-	result := mergeCategoryRouting(defaults, wsRouting)
-	_, hasSecurity := result["security"]
-	assert.False(t, hasSecurity)
-	assert.Equal(t, []string{"SRE"}, result["infra"])
-}
-
-func TestMergeCategoryRouting_EmptyDefaultKeySkipped(t *testing.T) {
-	defaults := map[string][]string{
-		"": {"Backend Engineer"}, // empty key should be skipped
-	}
-	result := mergeCategoryRouting(defaults, nil)
-	_, has := result[""]
-	assert.False(t, has)
-}
-
-func TestMergeCategoryRouting_EmptyWorkspaceKeySkipped(t *testing.T) {
-	defaults := map[string][]string{
-		"security": {"Backend Engineer"},
-	}
-	wsRouting := map[string][]string{
-		"": {"Some Role"},
-	}
-	result := mergeCategoryRouting(defaults, wsRouting)
-	_, has := result[""]
-	assert.False(t, has)
-	assert.Equal(t, []string{"Backend Engineer"}, result["security"])
-}
-
-func TestMergeCategoryRouting_DoesNotMutateInputs(t *testing.T) {
-	defaults := map[string][]string{
-		"security": {"Backend Engineer"},
-	}
-	wsRouting := map[string][]string{
-		"security": {"DevOps"},
-	}
-	orig := defaults["security"][0]
-	_ = mergeCategoryRouting(defaults, wsRouting)
-	assert.Equal(t, orig, defaults["security"][0])
-}
-
-// renderCategoryRoutingYAML tests — deterministic YAML emission.
-
-// ── Additional coverage: renderCategoryRoutingYAML ────────────────
-func TestRenderCategoryRoutingYAML_SingleCategory(t *testing.T) {
-	routing := map[string][]string{
-		"security": {"Backend Engineer", "DevOps"},
-	}
-	result, err := renderCategoryRoutingYAML(routing)
-	assert.NoError(t, err)
-	assert.Contains(t, result, "security:")
-	assert.Contains(t, result, "Backend Engineer")
-	assert.Contains(t, result, "DevOps")
-}
-
-func TestRenderCategoryRoutingYAML_MultipleCategoriesSorted(t *testing.T) {
-	routing := map[string][]string{
-		"zebra":   {"RoleZ"},
-		"alpha":   {"RoleA"},
-		"middleware": {"RoleM"},
-	}
-	result, err := renderCategoryRoutingYAML(routing)
-	assert.NoError(t, err)
-	// Keys are sorted alphabetically.
-	idxAlpha := assertFind(t, result, "alpha:")
-	idxZebra := assertFind(t, result, "zebra:")
-	idxMid := assertFind(t, result, "middleware:")
-	if idxAlpha > -1 && idxZebra > -1 {
-		assert.True(t, idxAlpha < idxZebra, "alpha should appear before zebra")
-	}
-	if idxMid > -1 && idxZebra > -1 {
-		assert.True(t, idxMid < idxZebra, "middleware should appear before zebra")
-	}
-}
-
-func TestRenderCategoryRoutingYAML_EmptyListCategory(t *testing.T) {
-	// Empty-list category should still render (mergeCategoryRouting drops
-	// them before they reach this function, but we test the render in isolation).
-	routing := map[string][]string{
-		"security": {},
-	}
-	result, err := renderCategoryRoutingYAML(routing)
-	assert.NoError(t, err)
-	assert.Contains(t, result, "security:")
-}
-
-func TestRenderCategoryRoutingYAML_SpecialCharactersEscaped(t *testing.T) {
-	routing := map[string][]string{
-		"notes": {`has: colon`, `and "quotes"`, "emoji: 🚀"},
-	}
-	result, err := renderCategoryRoutingYAML(routing)
-	assert.NoError(t, err)
-	// Should not panic and should produce valid YAML.
-	assert.Contains(t, result, "notes:")
-}
-
-// appendYAMLBlock tests — safe concatenation with newline boundary.
-
-// ── Additional coverage: appendYAMLBlock ───────────────────────────
-func TestAppendYAMLBlock_BothEmpty(t *testing.T) {
-	result := appendYAMLBlock(nil, "")
-	assert.Nil(t, result) // append(nil, []byte("")...) returns nil in Go
-}
-
-func TestAppendYAMLBlock_ExistingHasNewline(t *testing.T) {
-	existing := []byte("existing:\n")
-	block := "key: value\n"
-	result := appendYAMLBlock(existing, block)
-	assert.Equal(t, "existing:\nkey: value\n", string(result))
-}
-
-func TestAppendYAMLBlock_ExistingNoNewline(t *testing.T) {
-	existing := []byte("existing:")
-	block := "key: value\n"
-	result := appendYAMLBlock(existing, block)
-	assert.Equal(t, "existing:\nkey: value\n", string(result))
-}
-
-func TestAppendYAMLBlock_ExistingEmpty(t *testing.T) {
-	existing := []byte("")
-	block := "key: value\n"
-	result := appendYAMLBlock(existing, block)
-	assert.Equal(t, "key: value\n", string(result))
-}
-
-func TestAppendYAMLBlock_NilExisting(t *testing.T) {
-	block := "key: value\n"
-	result := appendYAMLBlock(nil, block)
-	assert.Equal(t, "key: value\n", string(result))
-}
-
-// mergePlugins tests — union with exclusion prefix (!/-).
-
-// ── Additional coverage: mergePlugins (additional cases) ───────────
-func TestMergePlugins_DefaultsOnly(t *testing.T) {
-	defaults := []string{"plugin-a", "plugin-b"}
-	result := mergePlugins(defaults, nil)
-	assert.Equal(t, []string{"plugin-a", "plugin-b"}, result)
-}
-
-func TestMergePlugins_WorkspaceAdds(t *testing.T) {
-	defaults := []string{"plugin-a"}
-	wsPlugins := []string{"plugin-b", "plugin-a"} // duplicate of default
-	result := mergePlugins(defaults, wsPlugins)
-	assert.Equal(t, []string{"plugin-a", "plugin-b"}, result)
-}
-
-func TestMergePlugins_ExclusionWithBang(t *testing.T) {
-	defaults := []string{"plugin-a", "plugin-b", "plugin-c"}
-	wsPlugins := []string{"!plugin-b"}
-	result := mergePlugins(defaults, wsPlugins)
-	assert.Equal(t, []string{"plugin-a", "plugin-c"}, result)
-}
-
-func TestMergePlugins_ExclusionWithDash(t *testing.T) {
-	defaults := []string{"plugin-a", "plugin-b", "plugin-c"}
-	wsPlugins := []string{"-plugin-b"}
-	result := mergePlugins(defaults, wsPlugins)
-	assert.Equal(t, []string{"plugin-a", "plugin-c"}, result)
-}
-
-func TestMergePlugins_ExclusionEmptyTarget(t *testing.T) {
-	defaults := []string{"plugin-a", "plugin-b"}
-	wsPlugins := []string{"!", "-"} // no-op exclusions
-	result := mergePlugins(defaults, wsPlugins)
-	assert.Equal(t, []string{"plugin-a", "plugin-b"}, result)
-}
-
-func TestMergePlugins_ExclusionNotInDefaults(t *testing.T) {
-	// Excluding something not in defaults is a no-op.
-	defaults := []string{"plugin-a"}
-	wsPlugins := []string{"!plugin-b"}
-	result := mergePlugins(defaults, wsPlugins)
-	assert.Equal(t, []string{"plugin-a"}, result)
-}
-
-func TestMergePlugins_WorkspaceAddsNew(t *testing.T) {
-	defaults := []string{"plugin-a"}
-	wsPlugins := []string{"plugin-b"}
-	result := mergePlugins(defaults, wsPlugins)
-	assert.Equal(t, []string{"plugin-a", "plugin-b"}, result)
-}
-
-func TestMergePlugins_DeduplicationOrder(t *testing.T) {
-	// Defaults first; workspace entries deduplicated.
-	defaults := []string{"plugin-a", "plugin-a", "plugin-b"}
-	wsPlugins := []string{"plugin-b", "plugin-c", "plugin-c"}
-	result := mergePlugins(defaults, wsPlugins)
-	assert.Equal(t, []string{"plugin-a", "plugin-b", "plugin-c"}, result)
-}
-
-func TestMergePlugins_ExclusionThenAddSameName(t *testing.T) {
-	// Remove then re-add: order matters.
-	defaults := []string{"plugin-a", "plugin-b"}
-	wsPlugins := []string{"!plugin-a", "plugin-a"}
-	result := mergePlugins(defaults, wsPlugins)
-	assert.Equal(t, []string{"plugin-b", "plugin-a"}, result)
-}
-
-// isSafeRoleName tests — alphanumeric + hyphen/underscore, no path separators.
-
-// ── Additional coverage: isSafeRoleName ───────────────────────────
-func TestIsSafeRoleName_SpecialCharsRejected(t *testing.T) {
-	bad := []string{
-		"role@name",
-		"role#name",
-		"role$name",
-		"role%name",
-		"role&name",
-		"role*name",
-		"role?name",
-		"role=name",
-	}
-	for _, r := range bad {
-		if isSafeRoleName(r) {
-			t.Errorf("isSafeRoleName(%q) expected false, got true", r)
-		}
-	}
-}
-
-// assertFind is a helper: returns index of first occurrence of substr in s, or -1.
-func assertFind(t *testing.T, s, substr string) int {
-	t.Helper()
-	idx := -1
-	for i := 0; i <= len(s)-len(substr); i++ {
-		if s[i:i+len(substr)] == substr {
-			idx = i
-			break
-		}
-	}
-	return idx
-}
@@ -93,7 +93,7 @@ func TestResolveInsideRoot_DotPathComponent(t *testing.T) {
 	if err != nil {
 		t.Fatalf("dot path component: unexpected error: %v", err)
 	}
-	if !strings.HasSuffix(got, "/subdir/file.txt") {
+	if got[len(got)-14:] != "/subdir/file.txt" {
 		t.Errorf("dot path component: got %q, want suffix /subdir/file.txt", got)
 	}
 }
@@ -276,121 +276,3 @@ func TestMergeCategoryRouting_OriginalMapsUnmodified(t *testing.T) {
 		t.Error("ws routing should be unmodified after merge")
 	}
 }
-
-// ── expandWithEnv ─────────────────────────────────────────────────────────────
-//
-// CWE-78 regression tests. The original fix (a3a358f9) ensures that partial
-// variable references like $HOME/path are NOT resolved via os.Getenv — the
-// host HOME env var must not leak into org template values. Only whole-string
-// references ($VAR or ${VAR}) may fall back to the host process environment.
-
-func TestExpandWithEnv_PartialRefDollarHomePath(t *testing.T) {
-	// $HOME/path must NOT resolve to the host's HOME env var.
-	// The literal $HOME must be returned as-is.
-	got := expandWithEnv("$HOME/path", nil)
-	if got != "$HOME/path" {
-		t.Errorf("$HOME/path: got %q, want literal $HOME/path", got)
-	}
-}
-
-func TestExpandWithEnv_PartialRefBracedRoleAdmin(t *testing.T) {
-	// ${ROLE}/admin — ROLE is not in env, so expand to the literal ${ROLE}/admin.
-	got := expandWithEnv("${ROLE}/admin", nil)
-	if got != "${ROLE}/admin" {
-		t.Errorf("${ROLE}/admin: got %q, want literal ${ROLE}/admin", got)
-	}
-}
-
-func TestExpandWithEnv_PartialRefMiddleOfString(t *testing.T) {
-	// $ROLE in the middle of a string — literal, not os.Getenv.
-	got := expandWithEnv("prefix/$ROLE/suffix", nil)
-	if got != "prefix/$ROLE/suffix" {
-		t.Errorf("prefix/$ROLE/suffix: got %q, want literal", got)
-	}
-}
-
-func TestExpandWithEnv_WholeVarInEnv(t *testing.T) {
-	// Whole-string $VAR that IS in env — env value wins.
-	env := map[string]string{"FOO": "barvalue"}
-	got := expandWithEnv("$FOO", env)
-	if got != "barvalue" {
-		t.Errorf("$FOO with FOO=barvalue: got %q, want barvalue", got)
-	}
-}
-
-func TestExpandWithEnv_WholeVarBracedInEnv(t *testing.T) {
-	// Whole-string ${VAR} that IS in env — env value wins.
-	env := map[string]string{"FOO": "barvalue"}
-	got := expandWithEnv("${FOO}", env)
-	if got != "barvalue" {
-		t.Errorf("${FOO} with FOO=barvalue: got %q, want barvalue", got)
-	}
-}
-
-func TestExpandWithEnv_WholeVarNotInEnvBare(t *testing.T) {
-	// Whole-string $VAR not in env — falls back to os.Getenv.
-	// If the host has the var, we get the host value. If not, empty.
-	// At minimum, the result must NOT be the literal "$UNDEFINED_VAR_9Z".
-	got := expandWithEnv("$UNDEFINED_VAR_9Z", nil)
-	if got == "$UNDEFINED_VAR_9Z" {
-		t.Errorf("$UNDEFINED_VAR_9Z: should expand (whole-string fallback to os.Getenv), got literal")
-	}
-}
-
-func TestExpandWithEnv_WholeVarNotInEnvBraced(t *testing.T) {
-	// Whole-string ${VAR} not in env — falls back to os.Getenv.
-	got := expandWithEnv("${UNDEFINED_VAR_9Z}", nil)
-	if got == "${UNDEFINED_VAR_9Z}" {
-		t.Errorf("${UNDEFINED_VAR_9Z}: should expand (whole-string fallback to os.Getenv), got literal")
-	}
-}
-
-func TestExpandWithEnv_EmptyString(t *testing.T) {
-	got := expandWithEnv("", map[string]string{"FOO": "bar"})
-	if got != "" {
-		t.Errorf("empty string: got %q, want empty", got)
-	}
-}
-
-func TestExpandWithEnv_NoVarRefs(t *testing.T) {
-	got := expandWithEnv("plain string with no vars", map[string]string{"FOO": "bar"})
-	if got != "plain string with no vars" {
-		t.Errorf("plain string: got %q, want unchanged", got)
-	}
-}
-
-func TestExpandWithEnv_MultipleVarRefs(t *testing.T) {
-	// Two vars, both whole — both expand from env.
-	env := map[string]string{"A": "alpha", "B": "beta"}
-	got := expandWithEnv("$A and $B and more", env)
-	if got != "alpha and beta and more" {
-		t.Errorf("multiple vars: got %q, want alpha and beta and more", got)
-	}
-}
-
-func TestExpandWithEnv_NumericVarRef(t *testing.T) {
-	// $5 — starts with digit, not a valid identifier start.
-	// Must return the literal "$5", not expand via os.Getenv.
-	got := expandWithEnv("$5", map[string]string{"5": "five"})
-	if got != "$5" {
-		t.Errorf("$5: got %q, want literal $5", got)
-	}
-}
-
-func TestExpandWithEnv_DollarEscape(t *testing.T) {
-	// $$ → both $ written literally (each $ is not followed by an identifier char,
-	// so it is written as-is). No special escape sequence for $$.
-	got := expandWithEnv("$$", nil)
-	if got != "$$" {
-		t.Errorf("$$: got %q, want literal $$", got)
-	}
-}
-
-func TestExpandWithEnv_MixedPartialAndWhole(t *testing.T) {
-	// $A is in env (whole), $HOME is partial — only $A expands.
-	env := map[string]string{"A": "alpha"}
-	got := expandWithEnv("$A at $HOME", env)
-	if got != "alpha at $HOME" {
-		t.Errorf("$A at $HOME: got %q, want alpha at $HOME", got)
-	}
-}
@@ -1,191 +0,0 @@
-package handlers
-
-import (
-	"errors"
-	"os"
-	"testing"
-
-	"github.com/stretchr/testify/assert"
-)
-
-// walkOrgWorkspaceNames tests — recursive collection of non-empty workspace names.
-
-func TestWalkOrgWorkspaceNames_EmptySlice(t *testing.T) {
-	var names []string
-	walkOrgWorkspaceNames([]OrgWorkspace{}, &names)
-	assert.Empty(t, names)
-}
-
-func TestWalkOrgWorkspaceNames_SingleNode(t *testing.T) {
-	var names []string
-	walkOrgWorkspaceNames([]OrgWorkspace{{Name: "my-workspace"}}, &names)
-	assert.Equal(t, []string{"my-workspace"}, names)
-}
-
-func TestWalkOrgWorkspaceNames_SingleNodeEmptyName(t *testing.T) {
-	var names []string
-	walkOrgWorkspaceNames([]OrgWorkspace{{Name: ""}}, &names)
-	assert.Empty(t, names)
-}
-
-func TestWalkOrgWorkspaceNames_NestedChildren(t *testing.T) {
-	var names []string
-	tree := []OrgWorkspace{
-		{
-			Name: "parent",
-			Children: []OrgWorkspace{
-				{Name: "child-a"},
-				{Name: "child-b"},
-			},
-		},
-	}
-	walkOrgWorkspaceNames(tree, &names)
-	assert.Equal(t, []string{"parent", "child-a", "child-b"}, names)
-}
-
-func TestWalkOrgWorkspaceNames_DeeplyNested(t *testing.T) {
-	var names []string
-	tree := []OrgWorkspace{
-		{
-			Name: "level0",
-			Children: []OrgWorkspace{
-				{
-					Name: "level1",
-					Children: []OrgWorkspace{
-						{
-							Name: "level2",
-							Children: []OrgWorkspace{
-								{Name: "level3"},
-							},
-						},
-					},
-				},
-			},
-		},
-	}
-	walkOrgWorkspaceNames(tree, &names)
-	assert.Equal(t, []string{"level0", "level1", "level2", "level3"}, names)
-}
-
-func TestWalkOrgWorkspaceNames_SkipsEmptyNames(t *testing.T) {
-	var names []string
-	tree := []OrgWorkspace{
-		{Name: "a"},
-		{Name: ""},
-		{Name: "b"},
-	}
-	walkOrgWorkspaceNames(tree, &names)
-	assert.Equal(t, []string{"a", "b"}, names)
-}
-
-func TestWalkOrgWorkspaceNames_Siblings(t *testing.T) {
-	var names []string
-	tree := []OrgWorkspace{
-		{Name: "team"},
-		{Name: "alpha"},
-		{Name: "beta"},
-	}
-	walkOrgWorkspaceNames(tree, &names)
-	assert.Equal(t, []string{"team", "alpha", "beta"}, names)
-}
-
-func TestWalkOrgWorkspaceNames_MultipleRoots(t *testing.T) {
-	var names []string
-	tree := []OrgWorkspace{
-		{Name: "root-a", Children: []OrgWorkspace{{Name: "child-a"}}},
-		{Name: "root-b", Children: []OrgWorkspace{{Name: "child-b"}}},
-	}
-	walkOrgWorkspaceNames(tree, &names)
-	assert.Equal(t, []string{"root-a", "child-a", "root-b", "child-b"}, names)
-}
-
-func TestWalkOrgWorkspaceNames_SpawningFalseStillWalks(t *testing.T) {
-	// The comment in the source is explicit: spawning:false subtrees are
-	// still walked. Empty names within those subtrees are still skipped.
-	var names []string
-	yes := true
-	no := false
-	tree := []OrgWorkspace{
-		{
-			Name: "parent",
-			Children: []OrgWorkspace{
-				{Name: "spawning-child", Spawning: &yes},
-				{Name: "non-spawning-child", Spawning: &no},
-				{Name: ""},
-			},
-		},
-	}
-	walkOrgWorkspaceNames(tree, &names)
-	assert.Equal(t, []string{"parent", "spawning-child", "non-spawning-child"}, names)
-}
-
-// resolveProvisionConcurrency tests — env-var parsing with sensible fallback.
-
-func TestResolveProvisionConcurrency_Default(t *testing.T) {
-	os.Unsetenv("MOLECULE_PROVISION_CONCURRENCY")
-	defer os.Unsetenv("MOLECULE_PROVISION_CONCURRENCY")
-	val := resolveProvisionConcurrency()
-	assert.Equal(t, defaultProvisionConcurrency, val)
-}
-
-func TestResolveProvisionConcurrency_ValidPositiveInt(t *testing.T) {
-	os.Setenv("MOLECULE_PROVISION_CONCURRENCY", "5")
-	defer os.Unsetenv("MOLECULE_PROVISION_CONCURRENCY")
-	val := resolveProvisionConcurrency()
-	assert.Equal(t, 5, val)
-}
-
-func TestResolveProvisionConcurrency_ZeroUnlimited(t *testing.T) {
-	os.Setenv("MOLECULE_PROVISION_CONCURRENCY", "0")
-	defer os.Unsetenv("MOLECULE_PROVISION_CONCURRENCY")
-	val := resolveProvisionConcurrency()
-	// Zero is mapped to 1<<20 (unlimited semantics with finite cap)
-	assert.Equal(t, 1<<20, val)
-}
-
-func TestResolveProvisionConcurrency_NegativeFallsBack(t *testing.T) {
-	os.Setenv("MOLECULE_PROVISION_CONCURRENCY", "-1")
-	defer os.Unsetenv("MOLECULE_PROVISION_CONCURRENCY")
-	val := resolveProvisionConcurrency()
-	assert.Equal(t, defaultProvisionConcurrency, val)
-}
-
-func TestResolveProvisionConcurrency_NonIntegerFallsBack(t *testing.T) {
-	os.Setenv("MOLECULE_PROVISION_CONCURRENCY", "not-a-number")
-	defer os.Unsetenv("MOLECULE_PROVISION_CONCURRENCY")
-	val := resolveProvisionConcurrency()
-	assert.Equal(t, defaultProvisionConcurrency, val)
-}
-
-func TestResolveProvisionConcurrency_WhitespaceOnly(t *testing.T) {
-	os.Setenv("MOLECULE_PROVISION_CONCURRENCY", "   ")
-	defer os.Unsetenv("MOLECULE_PROVISION_CONCURRENCY")
-	val := resolveProvisionConcurrency()
-	assert.Equal(t, defaultProvisionConcurrency, val)
-}
-
-func TestResolveProvisionConcurrency_LargeValue(t *testing.T) {
-	os.Setenv("MOLECULE_PROVISION_CONCURRENCY", "10000")
-	defer os.Unsetenv("MOLECULE_PROVISION_CONCURRENCY")
-	val := resolveProvisionConcurrency()
-	assert.Equal(t, 10000, val)
-}
-
-// errString tests — nil-safe error-to-string wrapper.
-
-func TestErrString_NilError(t *testing.T) {
-	result := errString(nil)
-	assert.Equal(t, "", result)
-}
-
-func TestErrString_WithError(t *testing.T) {
-	err := errors.New("something went wrong")
-	result := errString(err)
-	assert.Equal(t, "something went wrong", result)
-}
-
-func TestErrString_EmptyError(t *testing.T) {
-	err := errors.New("")
-	result := errString(err)
-	assert.Equal(t, "", result)
-}
@@ -952,6 +952,54 @@ type PerWorkspaceUnsatisfied struct {

 // collectPerWorkspaceUnsatisfied recursively walks workspaces and returns
 // per-workspace RequiredEnv entries that are not covered by (a) a global
+// secret key or (b) a key present in the workspace's .env file(s) (org root
+// .env + per-workspace <files_dir>/.env). This complements
+// collectOrgEnv + loadConfiguredGlobalSecretKeys, which together only
+// validate global-level RequiredEnv against global_secrets. The .env
+// lookup mirrors the runtime resolution in createWorkspaceTree so that
+// the preflight result matches what the container actually receives at
+// start time.
+func collectPerWorkspaceUnsatisfied(workspaces []OrgWorkspace, orgBaseDir string, globalSecrets map[string]struct{}) []PerWorkspaceUnsatisfied {
+	var out []PerWorkspaceUnsatisfied
+	var walk func([]OrgWorkspace)
+	walk = func(wsList []OrgWorkspace) {
+		for _, ws := range wsList {
+			// Build the set of keys available to this workspace from .env.
+			// This is the same three-source stack that createWorkspaceTree
+			// injects into the container:
+			//   1. Org root .env (parseEnvFile, no filesDir)
+			//   2. Workspace <files_dir>/.env (if filesDir is set)
+			//   3. Persona bootstrap env (MOLECULE_PERSONA_ROOT/<filesDir>/env)
+			// Items 1+2 are on-disk and testable; item 3 is host-only and
+			// skipped here (persona env does NOT satisfy required_env —
+			// it carries identity tokens, not workspace LLM keys).
+			envFromFiles := loadWorkspaceEnv(orgBaseDir, ws.FilesDir)
+			// Convert map[string]string (from .env files) to map[string]struct{}
+			// to match IsSatisfied's signature.
+			envSet := make(map[string]struct{}, len(envFromFiles))
+			for k := range envFromFiles {
+				envSet[k] = struct{}{}
+			}
+			for _, req := range ws.RequiredEnv {
+				if req.IsSatisfied(globalSecrets) {
+					continue // covered by a global secret
+				}
+				if req.IsSatisfied(envSet) {
+					continue // covered by a per-workspace .env file
+				}
+				out = append(out, PerWorkspaceUnsatisfied{
+					Workspace:   ws.Name,
+					FilesDir:    ws.FilesDir,
+					Unsatisfied: req,
+				})
+			}
+			walk(ws.Children)
+		}
+	}
+	walk(workspaces)
+	return out
+}
+
 func loadConfiguredGlobalSecretKeys(ctx context.Context) (map[string]struct{}, error) {
 	rows, err := db.DB.QueryContext(ctx,
 		`SELECT key FROM global_secrets WHERE octet_length(encrypted_value) > 0 LIMIT $1`,
@@ -17,9 +17,6 @@ import (
 // when one exists, or the workspace's own ID when it is the org root.
 // Returns an empty string if the workspace is not found.
 func resolveOrgID(ctx context.Context, workspaceID string) (string, error) {
-	if db.DB == nil {
-		return "", nil // nil in unit tests
-	}
 	var parentID sql.NullString
 	err := db.DB.QueryRowContext(ctx,
 		`SELECT parent_id FROM workspaces WHERE id = $1`,
@@ -215,9 +215,6 @@ func TestTarWalk_EmptyDirectory(t *testing.T) {
 	}
 }

-// TestTarWalk_NestedDirs is defined in plugins_atomic_tar_test.go to avoid
-// redeclaration. Deeply nested directory walk is tested there.
-
 // TestTarWalk_DirEntryHasTrailingSlash: directory entries must end with '/'
 // per tar format; tar.Header.Typeflag '5' (dir) must produce "name/" not "name".
 func TestTarWalk_DirEntryHasTrailingSlash(t *testing.T) {
@@ -1,80 +0,0 @@
-package handlers
-
-import (
-	"testing"
-
-	"github.com/stretchr/testify/assert"
-)
-
-// supportsRuntime tests — plugin runtime compatibility checking.
-
-func TestSupportsRuntime_EmptyRuntimes(t *testing.T) {
-	// Empty runtimes = unspecified, try it → always compatible.
-	info := pluginInfo{Name: "test", Runtimes: nil}
-	assert.True(t, info.supportsRuntime("claude_code"))
-	assert.True(t, info.supportsRuntime("any_runtime"))
-}
-
-func TestSupportsRuntime_ExactMatch(t *testing.T) {
-	info := pluginInfo{Name: "test", Runtimes: []string{"claude_code", "anthropic"}}
-	assert.True(t, info.supportsRuntime("claude_code"))
-	assert.True(t, info.supportsRuntime("anthropic"))
-}
-
-func TestSupportsRuntime_NoMatch(t *testing.T) {
-	info := pluginInfo{Name: "test", Runtimes: []string{"claude_code"}}
-	assert.False(t, info.supportsRuntime("openai"))
-}
-
-func TestSupportsRuntime_HyphenUnderscoreNormalized(t *testing.T) {
-	// "claude-code" and "claude_code" are considered equal.
-	info := pluginInfo{Name: "test", Runtimes: []string{"claude-code"}}
-	assert.True(t, info.supportsRuntime("claude_code"))
-	assert.True(t, info.supportsRuntime("claude-code")) // symmetric hyphen form
-}
-
-func TestSupportsRuntime_HyphenVsUnderscoreReverse(t *testing.T) {
-	// Plugin declares underscore form; runtime uses hyphen.
-	info := pluginInfo{Name: "test", Runtimes: []string{"claude_code"}}
-	assert.True(t, info.supportsRuntime("claude-code"))
-}
-
-func TestSupportsRuntime_EmptyStringRuntime(t *testing.T) {
-	info := pluginInfo{Name: "test", Runtimes: []string{"claude_code"}}
-	// Empty runtime string: should not match any plugin.
-	assert.False(t, info.supportsRuntime(""))
-}
-
-func TestSupportsRuntime_SingleRuntimeMatch(t *testing.T) {
-	// Multiple declared runtimes: only matching one is sufficient.
-	info := pluginInfo{Name: "test", Runtimes: []string{"python", "nodejs", "claude_code"}}
-	assert.True(t, info.supportsRuntime("claude_code"))
-	assert.False(t, info.supportsRuntime("ruby"))
-}
-
-func TestSupportsRuntime_AllHyphenForms(t *testing.T) {
-	// Both plugin and runtime use hyphen form.
-	info := pluginInfo{Name: "test", Runtimes: []string{"claude-code"}}
-	assert.True(t, info.supportsRuntime("claude-code"))
-}
-
-func TestSupportsRuntime_MultipleHyphenNormalization(t *testing.T) {
-	// Mixed hyphen/underscore forms normalize to the same.
-	info := pluginInfo{Name: "test", Runtimes: []string{"some-runtime-name"}}
-	assert.True(t, info.supportsRuntime("some_runtime_name"))
-	assert.True(t, info.supportsRuntime("some-runtime-name"))
-}
-
-func TestSupportsRuntime_EmptyPluginRuntimesWithAnyInput(t *testing.T) {
-	// Empty Runtimes on plugin = try it regardless of runtime.
-	info := pluginInfo{Name: "test", Runtimes: []string{}}
-	assert.True(t, info.supportsRuntime(""))
-	assert.True(t, info.supportsRuntime("any"))
-	assert.True(t, info.supportsRuntime("unknown"))
-}
-
-func TestSupportsRuntime_ZeroLengthRuntimes(t *testing.T) {
-	// Empty slice vs nil: both should be treated as "unspecified".
-	info := pluginInfo{Name: "test"}
-	assert.True(t, info.supportsRuntime("anything"))
-}
@@ -1,55 +0,0 @@
-package handlers
-
-import (
-	"encoding/json"
-	"net/http"
-	"net/http/httptest"
-	"testing"
-
-	"github.com/gin-gonic/gin"
-)
-
-// ListSources is the only exported function in plugins_sources.go.
-// It calls h.sources.Schemes() and returns the result verbatim,
-// so the test verifies the handler correctly serialises whatever
-// the real registry provides.
-func TestListSources_ReturnsSchemes(t *testing.T) {
-	// Use a real handler — the registry is deterministic (local + github).
-	h := NewPluginsHandler(t.TempDir(), nil, nil)
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Request = httptest.NewRequest("GET", "/plugins/sources", nil)
-
-	h.ListSources(c)
-
-	if w.Code != http.StatusOK {
-		t.Fatalf("expected 200, got %d: %s", w.Code, w.Body.String())
-	}
-
-	var body struct {
-		Schemes []string `json:"schemes"`
-	}
-	if err := json.Unmarshal(w.Body.Bytes(), &body); err != nil {
-		t.Fatalf("failed to unmarshal response: %v", err)
-	}
-
-	// The default registry registers local + github resolvers.
-	if len(body.Schemes) < 1 {
-		t.Fatalf("expected at least 1 scheme, got %d: %v", len(body.Schemes), body.Schemes)
-	}
-
-	// Verify stability — same call always returns same result.
-	w2 := httptest.NewRecorder()
-	c2, _ := gin.CreateTestContext(w2)
-	c2.Request = httptest.NewRequest("GET", "/plugins/sources", nil)
-	h.ListSources(c2)
-
-	var body2 struct {
-		Schemes []string `json:"schemes"`
-	}
-	json.Unmarshal(w2.Body.Bytes(), &body2)
-	if len(body.Schemes) != len(body2.Schemes) {
-		t.Errorf("Schemes() is not stable: first=%v, second=%v", body.Schemes, body2.Schemes)
-	}
-}
@@ -86,9 +86,6 @@ func recordWorkspacePluginInstall(
 // pair. Called by the uninstall path so the row doesn't persist with a stale
 // installed_sha after the plugin has been removed from the container.
 func deleteWorkspacePluginRow(ctx context.Context, workspaceID, pluginName string) error {
-	if db.DB == nil {
-		return nil // nil in unit tests; no-op since the row is test-only
-	}
 	_, err := db.DB.ExecContext(ctx, `
 		DELETE FROM workspace_plugins WHERE workspace_id = $1 AND plugin_name = $2
 	`, workspaceID, pluginName)
@@ -56,11 +56,9 @@ const (
 // (an externally routable address) is used directly.
 func (h *WorkspaceHandler) gracefulPreRestart(ctx context.Context, workspaceID string) {
 	// Non-blocking send — don't stall the restart cycle.
-	// Run in a tracked async goroutine (goAsync, not bare `go`) so the
-	// caller (runRestartCycle) can proceed to stopForRestart without
-	// waiting, while the test harness can still drain it before swapping
-	// the global db.DB (resolveAgentURLForRestartSignal reads db.DB).
-	h.goAsync(func() {
+	// Run in a detached goroutine so the caller (runRestartCycle) can
+	// proceed to stopForRestart without waiting.
+	go func() {
 		signalCtx, cancel := context.WithTimeout(context.Background(), restartSignalTimeout)
 		defer cancel()

@@ -111,7 +109,7 @@ func (h *WorkspaceHandler) gracefulPreRestart(ctx context.Context, workspaceID s
 		} else {
 			log.Printf("A2AGracefulRestart: %s returned status %d — proceeding with stop", workspaceID, resp.StatusCode)
 		}
-	})
+	}()
 }

 // resolveAgentURLForRestartSignal returns the routable URL for the workspace
@@ -1,810 +0,0 @@
-package handlers
-
-import (
-	"bytes"
-	"database/sql"
-	"encoding/json"
-	"net/http"
-	"net/http/httptest"
-	"strings"
-	"testing"
-	"time"
-
-	"github.com/DATA-DOG/go-sqlmock"
-	"github.com/gin-gonic/gin"
-)
-
-// scheduleCols is the full column set returned by List.
-var scheduleCols = []string{
-	"id", "workspace_id", "name", "cron_expr", "timezone", "prompt", "enabled",
-	"last_run_at", "next_run_at", "run_count", "last_status", "last_error",
-	"source", "created_at", "updated_at",
-}
-
-// ==================== List ====================
-
-func TestScheduleHandler_List_EmptyResult(t *testing.T) {
-	mock := setupTestDB(t)
-	handler := NewScheduleHandler()
-
-	mock.ExpectQuery("SELECT .+ FROM workspace_schedules WHERE workspace_id").
-		WithArgs("ws-list-empty").
-		WillReturnRows(sqlmock.NewRows(scheduleCols))
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-list-empty"}}
-	c.Request = httptest.NewRequest("GET", "/workspaces/ws-list-empty/schedules", nil)
-
-	handler.List(c)
-
-	if w.Code != http.StatusOK {
-		t.Fatalf("expected 200, got %d: %s", w.Code, w.Body.String())
-	}
-	var schedules []interface{}
-	if err := json.Unmarshal(w.Body.Bytes(), &schedules); err != nil {
-		t.Fatalf("invalid JSON: %v", err)
-	}
-	if len(schedules) != 0 {
-		t.Errorf("expected empty list, got %d items", len(schedules))
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-func TestScheduleHandler_List_QueryError(t *testing.T) {
-	mock := setupTestDB(t)
-	handler := NewScheduleHandler()
-
-	mock.ExpectQuery("SELECT .+ FROM workspace_schedules WHERE workspace_id").
-		WithArgs("ws-list-err").
-		WillReturnError(sql.ErrConnDone)
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-list-err"}}
-	c.Request = httptest.NewRequest("GET", "/workspaces/ws-list-err/schedules", nil)
-
-	handler.List(c)
-
-	if w.Code != http.StatusInternalServerError {
-		t.Errorf("expected 500, got %d: %s", w.Code, w.Body.String())
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-// ==================== Create ====================
-
-func TestScheduleHandler_Create_MissingCronExpr(t *testing.T) {
-	handler := NewScheduleHandler()
-
-	// prompt only — no cron_expr
-	body := []byte(`{"prompt":"do the thing"}`)
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-1"}}
-	c.Request = httptest.NewRequest("POST", "/workspaces/ws-1/schedules", bytes.NewReader(body))
-	c.Request.Header.Set("Content-Type", "application/json")
-
-	handler.Create(c)
-
-	if w.Code != http.StatusBadRequest {
-		t.Errorf("expected 400 for missing cron_expr, got %d: %s", w.Code, w.Body.String())
-	}
-}
-
-func TestScheduleHandler_Create_MissingPrompt(t *testing.T) {
-	handler := NewScheduleHandler()
-
-	// cron_expr only — no prompt
-	body := []byte(`{"cron_expr":"0 9 * * *"}`)
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-1"}}
-	c.Request = httptest.NewRequest("POST", "/workspaces/ws-1/schedules", bytes.NewReader(body))
-	c.Request.Header.Set("Content-Type", "application/json")
-
-	handler.Create(c)
-
-	if w.Code != http.StatusBadRequest {
-		t.Errorf("expected 400 for missing prompt, got %d: %s", w.Code, w.Body.String())
-	}
-}
-
-func TestScheduleHandler_Create_InvalidTimezone(t *testing.T) {
-	handler := NewScheduleHandler()
-
-	body, _ := json.Marshal(map[string]string{
-		"cron_expr": "0 9 * * *",
-		"prompt":    "do the thing",
-		"timezone":  "Not/A/Timezone",
-	})
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-1"}}
-	c.Request = httptest.NewRequest("POST", "/workspaces/ws-1/schedules", bytes.NewReader(body))
-	c.Request.Header.Set("Content-Type", "application/json")
-
-	handler.Create(c)
-
-	if w.Code != http.StatusBadRequest {
-		t.Errorf("expected 400 for invalid timezone, got %d: %s", w.Code, w.Body.String())
-	}
-	var resp map[string]string
-	json.Unmarshal(w.Body.Bytes(), &resp)
-	if !strings.Contains(resp["error"], "invalid timezone") {
-		t.Errorf("expected 'invalid timezone' error, got: %v", resp)
-	}
-}
-
-func TestScheduleHandler_Create_InvalidCron(t *testing.T) {
-	handler := NewScheduleHandler()
-
-	body, _ := json.Marshal(map[string]string{
-		"cron_expr": "not-a-cron",
-		"prompt":    "do the thing",
-	})
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-1"}}
-	c.Request = httptest.NewRequest("POST", "/workspaces/ws-1/schedules", bytes.NewReader(body))
-	c.Request.Header.Set("Content-Type", "application/json")
-
-	handler.Create(c)
-
-	if w.Code != http.StatusBadRequest {
-		t.Errorf("expected 400 for invalid cron, got %d: %s", w.Code, w.Body.String())
-	}
-	var resp map[string]string
-	json.Unmarshal(w.Body.Bytes(), &resp)
-	if !strings.Contains(resp["error"], "invalid request body") {
-		t.Errorf("expected 'invalid request body' error, got: %v", resp)
-	}
-}
-
-func TestScheduleHandler_Create_CRLFStripped(t *testing.T) {
-	// Use setupTestDBForQueueTests which sets up QueryMatcherEqual for exact
-	// string matching. The INSERT statement is deterministic enough for that.
-	customSqlmock := setupTestDBForQueueTests(t)
-
-	handler := NewScheduleHandler()
-
-	// Prompt with CRLF from a Windows-committed org-template file.
-	// The handler strips \r before inserting so agent doesn't see empty responses.
-	promptWithCRLF := "check\r\ndocs\r\nbefore merge"
-
-	// The handler strips \r → query should receive the LF-only version.
-	customSqlmock.ExpectQuery("INSERT INTO workspace_schedules (workspace_id, name, cron_expr, timezone, prompt, enabled, next_run_at, source) VALUES ($1, $2, $3, $4, $5, $6, $7, 'runtime') RETURNING id").
-		WithArgs("ws-crlf", "", "0 9 * * *", "UTC", "check\ndocs\nbefore merge", true, sqlmock.AnyArg()).
-		WillReturnRows(sqlmock.NewRows([]string{"id"}).AddRow("sched-crlf"))
-
-	body, _ := json.Marshal(map[string]interface{}{
-		"cron_expr": "0 9 * * *",
-		"prompt":    promptWithCRLF,
-	})
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-crlf"}}
-	c.Request = httptest.NewRequest("POST", "/workspaces/ws-crlf/schedules", bytes.NewReader(body))
-	c.Request.Header.Set("Content-Type", "application/json")
-
-	handler.Create(c)
-
-	if w.Code != http.StatusCreated {
-		t.Errorf("expected 201, got %d: %s", w.Code, w.Body.String())
-	}
-	if err := customSqlmock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-func TestScheduleHandler_Create_DefaultEnabled(t *testing.T) {
-	mock := setupTestDB(t)
-	handler := NewScheduleHandler()
-
-	// enabled field absent — must default to true.
-	mock.ExpectQuery("INSERT INTO workspace_schedules").
-		WithArgs("ws-def-enable", "", "0 9 * * *", "UTC", "do thing", true, sqlmock.AnyArg()).
-		WillReturnRows(sqlmock.NewRows([]string{"id"}).AddRow("sched-enable"))
-
-	body, _ := json.Marshal(map[string]string{
-		"cron_expr": "0 9 * * *",
-		"prompt":    "do thing",
-		// no "enabled" field
-	})
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-def-enable"}}
-	c.Request = httptest.NewRequest("POST", "/workspaces/ws-def-enable/schedules", bytes.NewReader(body))
-	c.Request.Header.Set("Content-Type", "application/json")
-
-	handler.Create(c)
-
-	if w.Code != http.StatusCreated {
-		t.Errorf("expected 201, got %d: %s", w.Code, w.Body.String())
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-func TestScheduleHandler_Create_DefaultTimezone(t *testing.T) {
-	mock := setupTestDB(t)
-	handler := NewScheduleHandler()
-
-	// timezone field absent — must default to UTC.
-	mock.ExpectQuery("INSERT INTO workspace_schedules").
-		WithArgs("ws-def-tz", "", "0 9 * * *", "UTC", "do thing", true, sqlmock.AnyArg()).
-		WillReturnRows(sqlmock.NewRows([]string{"id"}).AddRow("sched-tz"))
-
-	body, _ := json.Marshal(map[string]string{
-		"cron_expr": "0 9 * * *",
-		"prompt":    "do thing",
-		// no "timezone" field
-	})
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-def-tz"}}
-	c.Request = httptest.NewRequest("POST", "/workspaces/ws-def-tz/schedules", bytes.NewReader(body))
-	c.Request.Header.Set("Content-Type", "application/json")
-
-	handler.Create(c)
-
-	if w.Code != http.StatusCreated {
-		t.Errorf("expected 201, got %d: %s", w.Code, w.Body.String())
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-func TestScheduleHandler_Create_ExplicitEnabledFalse(t *testing.T) {
-	mock := setupTestDB(t)
-	handler := NewScheduleHandler()
-
-	enabled := false
-	mock.ExpectQuery("INSERT INTO workspace_schedules").
-		WithArgs("ws-dis", "", "0 9 * * *", "UTC", "do thing", enabled, sqlmock.AnyArg()).
-		WillReturnRows(sqlmock.NewRows([]string{"id"}).AddRow("sched-dis"))
-
-	body, _ := json.Marshal(map[string]interface{}{
-		"cron_expr": "0 9 * * *",
-		"prompt":    "do thing",
-		"enabled":   false,
-	})
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-dis"}}
-	c.Request = httptest.NewRequest("POST", "/workspaces/ws-dis/schedules", bytes.NewReader(body))
-	c.Request.Header.Set("Content-Type", "application/json")
-
-	handler.Create(c)
-
-	if w.Code != http.StatusCreated {
-		t.Errorf("expected 201, got %d: %s", w.Code, w.Body.String())
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-func TestScheduleHandler_Create_DBError(t *testing.T) {
-	mock := setupTestDB(t)
-	handler := NewScheduleHandler()
-
-	mock.ExpectQuery("INSERT INTO workspace_schedules").
-		WillReturnError(sql.ErrConnDone)
-
-	body, _ := json.Marshal(map[string]string{
-		"cron_expr": "0 9 * * *",
-		"prompt":    "do thing",
-	})
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-db-err"}}
-	c.Request = httptest.NewRequest("POST", "/workspaces/ws-db-err/schedules", bytes.NewReader(body))
-	c.Request.Header.Set("Content-Type", "application/json")
-
-	handler.Create(c)
-
-	if w.Code != http.StatusInternalServerError {
-		t.Errorf("expected 500 for DB error, got %d: %s", w.Code, w.Body.String())
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-func TestScheduleHandler_Create_NextRunAtReturned(t *testing.T) {
-	mock := setupTestDB(t)
-	handler := NewScheduleHandler()
-
-	mock.ExpectQuery("INSERT INTO workspace_schedules").
-		WithArgs("ws-next", "", "0 9 * * *", "UTC", "do thing", true, sqlmock.AnyArg()).
-		WillReturnRows(sqlmock.NewRows([]string{"id"}).AddRow("sched-next"))
-
-	body, _ := json.Marshal(map[string]string{
-		"cron_expr": "0 9 * * *",
-		"prompt":    "do thing",
-	})
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-next"}}
-	c.Request = httptest.NewRequest("POST", "/workspaces/ws-next/schedules", bytes.NewReader(body))
-	c.Request.Header.Set("Content-Type", "application/json")
-
-	handler.Create(c)
-
-	if w.Code != http.StatusCreated {
-		t.Errorf("expected 201, got %d: %s", w.Code, w.Body.String())
-	}
-	var resp map[string]interface{}
-	json.Unmarshal(w.Body.Bytes(), &resp)
-	if resp["status"] != "created" {
-		t.Errorf("expected status 'created', got %v", resp["status"])
-	}
-	if _, ok := resp["next_run_at"]; !ok {
-		t.Error("expected next_run_at in response")
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-// ==================== Update ====================
-
-func TestScheduleHandler_Update_PartialRecomputeCron(t *testing.T) {
-	// Uses QueryMatcherEqual so query strings are compared verbatim — no escaping needed.
-	mock := setupTestDBForQueueTests(t)
-	handler := NewScheduleHandler()
-
-	mock.ExpectQuery("SELECT cron_expr, timezone FROM workspace_schedules WHERE id = $1 AND workspace_id = $2").
-		WithArgs("sched-recompute-cron", "ws-1").
-		WillReturnRows(sqlmock.NewRows([]string{"cron_expr", "timezone"}).
-			AddRow("0 8 * * *", "UTC"))
-
-	mock.ExpectExec(`UPDATE workspace_schedules SET name = COALESCE($2, name), cron_expr = COALESCE($3, cron_expr), timezone = COALESCE($4, timezone), prompt = COALESCE($5, prompt), enabled = COALESCE($6, enabled), next_run_at = COALESCE($7, next_run_at), updated_at = now() WHERE id = $1 AND workspace_id = $8`).
-		WithArgs("sched-recompute-cron", nil, "0 6 * * *", nil, nil, nil, sqlmock.AnyArg(), "ws-1").
-		WillReturnResult(sqlmock.NewResult(0, 1))
-
-	body, _ := json.Marshal(map[string]string{"cron_expr": "0 6 * * *"})
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-1"}, {Key: "scheduleId", Value: "sched-recompute-cron"}}
-	c.Request = httptest.NewRequest("PATCH", "/workspaces/ws-1/schedules/sched-recompute-cron", bytes.NewReader(body))
-	c.Request.Header.Set("Content-Type", "application/json")
-
-	handler.Update(c)
-
-	if w.Code != http.StatusOK {
-		t.Errorf("expected 200, got %d: %s", w.Code, w.Body.String())
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-func TestScheduleHandler_Update_PartialRecomputeTimezone(t *testing.T) {
-	mock := setupTestDBForQueueTests(t)
-	handler := NewScheduleHandler()
-
-	mock.ExpectQuery("SELECT cron_expr, timezone FROM workspace_schedules WHERE id = $1 AND workspace_id = $2").
-		WithArgs("sched-recompute-tz", "ws-1").
-		WillReturnRows(sqlmock.NewRows([]string{"cron_expr", "timezone"}).
-			AddRow("0 9 * * *", "UTC"))
-
-	mock.ExpectExec(`UPDATE workspace_schedules SET name = COALESCE($2, name), cron_expr = COALESCE($3, cron_expr), timezone = COALESCE($4, timezone), prompt = COALESCE($5, prompt), enabled = COALESCE($6, enabled), next_run_at = COALESCE($7, next_run_at), updated_at = now() WHERE id = $1 AND workspace_id = $8`).
-		WithArgs("sched-recompute-tz", nil, nil, "America/New_York", nil, nil, sqlmock.AnyArg(), "ws-1").
-		WillReturnResult(sqlmock.NewResult(0, 1))
-
-	body, _ := json.Marshal(map[string]string{"timezone": "America/New_York"})
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-1"}, {Key: "scheduleId", Value: "sched-recompute-tz"}}
-	c.Request = httptest.NewRequest("PATCH", "/workspaces/ws-1/schedules/sched-recompute-tz", bytes.NewReader(body))
-	c.Request.Header.Set("Content-Type", "application/json")
-
-	handler.Update(c)
-
-	if w.Code != http.StatusOK {
-		t.Errorf("expected 200, got %d: %s", w.Code, w.Body.String())
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-func TestScheduleHandler_Update_InvalidTimezone(t *testing.T) {
-	mock := setupTestDBForQueueTests(t)
-	handler := NewScheduleHandler()
-
-	mock.ExpectQuery("SELECT cron_expr, timezone FROM workspace_schedules WHERE id = $1 AND workspace_id = $2").
-		WithArgs("sched-bad-tz", "ws-1").
-		WillReturnRows(sqlmock.NewRows([]string{"cron_expr", "timezone"}).
-			AddRow("0 9 * * *", "UTC"))
-
-	body, _ := json.Marshal(map[string]string{"timezone": "Definitely/Not/Real"})
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-1"}, {Key: "scheduleId", Value: "sched-bad-tz"}}
-	c.Request = httptest.NewRequest("PATCH", "/workspaces/ws-1/schedules/sched-bad-tz", bytes.NewReader(body))
-	c.Request.Header.Set("Content-Type", "application/json")
-
-	handler.Update(c)
-
-	if w.Code != http.StatusBadRequest {
-		t.Errorf("expected 400 for invalid timezone, got %d: %s", w.Code, w.Body.String())
-	}
-	var resp map[string]string
-	json.Unmarshal(w.Body.Bytes(), &resp)
-	if !strings.Contains(resp["error"], "invalid timezone") {
-		t.Errorf("expected 'invalid timezone' error, got: %v", resp)
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-func TestScheduleHandler_Update_InvalidCron(t *testing.T) {
-	mock := setupTestDBForQueueTests(t)
-	handler := NewScheduleHandler()
-
-	mock.ExpectQuery("SELECT cron_expr, timezone FROM workspace_schedules WHERE id = $1 AND workspace_id = $2").
-		WithArgs("sched-bad-cron", "ws-1").
-		WillReturnRows(sqlmock.NewRows([]string{"cron_expr", "timezone"}).
-			AddRow("0 9 * * *", "UTC"))
-
-	body, _ := json.Marshal(map[string]string{"cron_expr": "rubbish"})
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-1"}, {Key: "scheduleId", Value: "sched-bad-cron"}}
-	c.Request = httptest.NewRequest("PATCH", "/workspaces/ws-1/schedules/sched-bad-cron", bytes.NewReader(body))
-	c.Request.Header.Set("Content-Type", "application/json")
-
-	handler.Update(c)
-
-	if w.Code != http.StatusBadRequest {
-		t.Errorf("expected 400 for invalid cron, got %d: %s", w.Code, w.Body.String())
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-func TestScheduleHandler_Update_NotFound(t *testing.T) {
-	mock := setupTestDBForQueueTests(t)
-	handler := NewScheduleHandler()
-
-	mock.ExpectExec(`UPDATE workspace_schedules SET name = COALESCE($2, name), cron_expr = COALESCE($3, cron_expr), timezone = COALESCE($4, timezone), prompt = COALESCE($5, prompt), enabled = COALESCE($6, enabled), next_run_at = COALESCE($7, next_run_at), updated_at = now() WHERE id = $1 AND workspace_id = $8`).
-		WithArgs("sched-missing", "renamed", nil, nil, nil, nil, nil, "ws-1").
-		WillReturnResult(sqlmock.NewResult(0, 0)) // no rows affected
-
-	body, _ := json.Marshal(map[string]string{"name": "renamed"})
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-1"}, {Key: "scheduleId", Value: "sched-missing"}}
-	c.Request = httptest.NewRequest("PATCH", "/workspaces/ws-1/schedules/sched-missing", bytes.NewReader(body))
-	c.Request.Header.Set("Content-Type", "application/json")
-
-	handler.Update(c)
-
-	if w.Code != http.StatusNotFound {
-		t.Errorf("expected 404 for not found, got %d: %s", w.Code, w.Body.String())
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-func TestScheduleHandler_Update_DBError(t *testing.T) {
-	mock := setupTestDBForQueueTests(t)
-	handler := NewScheduleHandler()
-
-	mock.ExpectExec(`UPDATE workspace_schedules SET name = COALESCE($2, name), cron_expr = COALESCE($3, cron_expr), timezone = COALESCE($4, timezone), prompt = COALESCE($5, prompt), enabled = COALESCE($6, enabled), next_run_at = COALESCE($7, next_run_at), updated_at = now() WHERE id = $1 AND workspace_id = $8`).
-		WithArgs("sched-update-err", "updated", nil, nil, nil, nil, nil, "ws-1").
-		WillReturnError(sql.ErrConnDone)
-
-	body, _ := json.Marshal(map[string]string{"name": "updated"})
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-1"}, {Key: "scheduleId", Value: "sched-update-err"}}
-	c.Request = httptest.NewRequest("PATCH", "/workspaces/ws-1/schedules/sched-update-err", bytes.NewReader(body))
-	c.Request.Header.Set("Content-Type", "application/json")
-
-	handler.Update(c)
-
-	if w.Code != http.StatusInternalServerError {
-		t.Errorf("expected 500 for DB error, got %d: %s", w.Code, w.Body.String())
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-func TestScheduleHandler_Update_PromptCRLFStripped(t *testing.T) {
-	mock := setupTestDBForQueueTests(t)
-	handler := NewScheduleHandler()
-
-	// Changing prompt with CRLF → handler strips \r before the UPDATE.
-	mock.ExpectExec(`UPDATE workspace_schedules SET name = COALESCE($2, name), cron_expr = COALESCE($3, cron_expr), timezone = COALESCE($4, timezone), prompt = COALESCE($5, prompt), enabled = COALESCE($6, enabled), next_run_at = COALESCE($7, next_run_at), updated_at = now() WHERE id = $1 AND workspace_id = $8`).
-		WithArgs("sched-crlf-upd", nil, nil, nil, "fix\nthat", nil, nil, "ws-1").
-		WillReturnResult(sqlmock.NewResult(0, 1))
-
-	body, _ := json.Marshal(map[string]string{"prompt": "fix\r\nthat"})
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-1"}, {Key: "scheduleId", Value: "sched-crlf-upd"}}
-	c.Request = httptest.NewRequest("PATCH", "/workspaces/ws-1/schedules/sched-crlf-upd", bytes.NewReader(body))
-	c.Request.Header.Set("Content-Type", "application/json")
-
-	handler.Update(c)
-
-	if w.Code != http.StatusOK {
-		t.Errorf("expected 200, got %d: %s", w.Code, w.Body.String())
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-// ==================== Delete ====================
-
-func TestScheduleHandler_Delete_Success(t *testing.T) {
-	mock := setupTestDBForQueueTests(t)
-	handler := NewScheduleHandler()
-
-	mock.ExpectExec(`DELETE FROM workspace_schedules WHERE id = $1 AND workspace_id = $2`).
-		WithArgs("sched-del", "ws-1").
-		WillReturnResult(sqlmock.NewResult(0, 1))
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-1"}, {Key: "scheduleId", Value: "sched-del"}}
-	c.Request = httptest.NewRequest("DELETE", "/workspaces/ws-1/schedules/sched-del", nil)
-
-	handler.Delete(c)
-
-	if w.Code != http.StatusOK {
-		t.Errorf("expected 200, got %d: %s", w.Code, w.Body.String())
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-func TestScheduleHandler_Delete_NotFound(t *testing.T) {
-	mock := setupTestDBForQueueTests(t)
-	handler := NewScheduleHandler()
-
-	// IDOR guard: row belongs to different workspace → 0 rows affected → 404.
-	mock.ExpectExec(`DELETE FROM workspace_schedules WHERE id = $1 AND workspace_id = $2`).
-		WithArgs("sched-idor", "ws-1").
-		WillReturnResult(sqlmock.NewResult(0, 0))
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-1"}, {Key: "scheduleId", Value: "sched-idor"}}
-	c.Request = httptest.NewRequest("DELETE", "/workspaces/ws-1/schedules/sched-idor", nil)
-
-	handler.Delete(c)
-
-	if w.Code != http.StatusNotFound {
-		t.Errorf("expected 404 for not found, got %d: %s", w.Code, w.Body.String())
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-func TestScheduleHandler_Delete_DBError(t *testing.T) {
-	mock := setupTestDBForQueueTests(t)
-	handler := NewScheduleHandler()
-
-	mock.ExpectExec(`DELETE FROM workspace_schedules WHERE id = $1 AND workspace_id = $2`).
-		WithArgs("sched-del-err", "ws-1").
-		WillReturnError(sql.ErrConnDone)
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-1"}, {Key: "scheduleId", Value: "sched-del-err"}}
-	c.Request = httptest.NewRequest("DELETE", "/workspaces/ws-1/schedules/sched-del-err", nil)
-
-	handler.Delete(c)
-
-	if w.Code != http.StatusInternalServerError {
-		t.Errorf("expected 500 for DB error, got %d: %s", w.Code, w.Body.String())
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-// ==================== RunNow ====================
-
-func TestScheduleHandler_RunNow_Success(t *testing.T) {
-	mock := setupTestDB(t)
-	handler := NewScheduleHandler()
-
-	mock.ExpectQuery(`SELECT prompt FROM workspace_schedules WHERE id = \$1 AND workspace_id = \$2`).
-		WithArgs("sched-run-ok", "ws-1").
-		WillReturnRows(sqlmock.NewRows([]string{"prompt"}).AddRow("run this prompt"))
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-1"}, {Key: "scheduleId", Value: "sched-run-ok"}}
-	c.Request = httptest.NewRequest("POST", "/workspaces/ws-1/schedules/sched-run-ok/run", nil)
-
-	handler.RunNow(c)
-
-	if w.Code != http.StatusOK {
-		t.Errorf("expected 200, got %d: %s", w.Code, w.Body.String())
-	}
-	var resp map[string]string
-	json.Unmarshal(w.Body.Bytes(), &resp)
-	if resp["status"] != "fired" {
-		t.Errorf("expected status 'fired', got %v", resp["status"])
-	}
-	if resp["prompt"] != "run this prompt" {
-		t.Errorf("expected prompt 'run this prompt', got %q", resp["prompt"])
-	}
-	if resp["workspace_id"] != "ws-1" {
-		t.Errorf("expected workspace_id 'ws-1', got %q", resp["workspace_id"])
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-func TestScheduleHandler_RunNow_NotFound(t *testing.T) {
-	mock := setupTestDB(t)
-	handler := NewScheduleHandler()
-
-	mock.ExpectQuery(`SELECT prompt FROM workspace_schedules WHERE id = \$1 AND workspace_id = \$2`).
-		WithArgs("sched-run-missing", "ws-1").
-		WillReturnError(sql.ErrNoRows)
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-1"}, {Key: "scheduleId", Value: "sched-run-missing"}}
-	c.Request = httptest.NewRequest("POST", "/workspaces/ws-1/schedules/sched-run-missing/run", nil)
-
-	handler.RunNow(c)
-
-	if w.Code != http.StatusNotFound {
-		t.Errorf("expected 404 for not found, got %d: %s", w.Code, w.Body.String())
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-func TestScheduleHandler_RunNow_DBError(t *testing.T) {
-	mock := setupTestDB(t)
-	handler := NewScheduleHandler()
-
-	mock.ExpectQuery(`SELECT prompt FROM workspace_schedules WHERE id = \$1 AND workspace_id = \$2`).
-		WithArgs("sched-run-err", "ws-1").
-		WillReturnError(sql.ErrConnDone)
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-1"}, {Key: "scheduleId", Value: "sched-run-err"}}
-	c.Request = httptest.NewRequest("POST", "/workspaces/ws-1/schedules/sched-run-err/run", nil)
-
-	handler.RunNow(c)
-
-	if w.Code != http.StatusInternalServerError {
-		t.Errorf("expected 500 for DB error, got %d: %s", w.Code, w.Body.String())
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-// ==================== History ====================
-
-func TestScheduleHandler_History_EmptyResult(t *testing.T) {
-	mock := setupTestDB(t)
-	handler := NewScheduleHandler()
-
-	mock.ExpectQuery(`SELECT created_at, duration_ms, status`).
-		WithArgs("ws-hist-empty", "sched-hist-empty").
-		WillReturnRows(sqlmock.NewRows([]string{"created_at", "duration_ms", "status", "error_detail", "request_body"}))
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-hist-empty"}, {Key: "scheduleId", Value: "sched-hist-empty"}}
-	c.Request = httptest.NewRequest("GET", "/workspaces/ws-hist-empty/schedules/sched-hist-empty/history", nil)
-
-	handler.History(c)
-
-	if w.Code != http.StatusOK {
-		t.Errorf("expected 200, got %d: %s", w.Code, w.Body.String())
-	}
-	var entries []interface{}
-	json.Unmarshal(w.Body.Bytes(), &entries)
-	if len(entries) != 0 {
-		t.Errorf("expected empty history, got %d entries", len(entries))
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-func TestScheduleHandler_History_QueryError(t *testing.T) {
-	mock := setupTestDB(t)
-	handler := NewScheduleHandler()
-
-	mock.ExpectQuery(`SELECT created_at, duration_ms, status`).
-		WithArgs("ws-hist-err", "sched-hist-err").
-		WillReturnError(sql.ErrConnDone)
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-hist-err"}, {Key: "scheduleId", Value: "sched-hist-err"}}
-	c.Request = httptest.NewRequest("GET", "/workspaces/ws-hist-err/schedules/sched-hist-err/history", nil)
-
-	handler.History(c)
-
-	if w.Code != http.StatusInternalServerError {
-		t.Errorf("expected 500 on query error, got %d: %s", w.Code, w.Body.String())
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
-
-func TestScheduleHandler_History_MultipleEntries(t *testing.T) {
-	mock := setupTestDB(t)
-	handler := NewScheduleHandler()
-
-	now := time.Now()
-	cols := []string{"created_at", "duration_ms", "status", "error_detail", "request_body"}
-	mock.ExpectQuery(`SELECT created_at, duration_ms, status`).
-		WithArgs("ws-hist-multi", "sched-hist-multi").
-		WillReturnRows(sqlmock.NewRows(cols).
-			AddRow(now, 1200, "ok", "", `{"schedule_id":"sched-hist-multi"}`).
-			AddRow(now, 3500, "error", "HTTP 502 — upstream timeout", `{"schedule_id":"sched-hist-multi"}`))
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "ws-hist-multi"}, {Key: "scheduleId", Value: "sched-hist-multi"}}
-	c.Request = httptest.NewRequest("GET", "/workspaces/ws-hist-multi/schedules/sched-hist-multi/history", nil)
-
-	handler.History(c)
-
-	if w.Code != http.StatusOK {
-		t.Errorf("expected 200, got %d: %s", w.Code, w.Body.String())
-	}
-	var entries []map[string]interface{}
-	json.Unmarshal(w.Body.Bytes(), &entries)
-	if len(entries) != 2 {
-		t.Errorf("expected 2 entries, got %d: %s", len(entries), w.Body.String())
-	}
-	if entries[1]["error_detail"] != "HTTP 502 — upstream timeout" {
-		t.Errorf("expected error_detail on second entry, got: %v", entries[1]["error_detail"])
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("sqlmock expectations not met: %v", err)
-	}
-}
@@ -63,9 +63,6 @@ func (h *SecretsHandler) List(c *gin.Context) {
 			"updated_at": updatedAt,
 		})
 	}
-	if err := rows.Err(); err != nil {
-		log.Printf("List workspace secrets iteration error: %v", err)
-	}

 	// 2. Global secrets not overridden at workspace level
 	globalRows, err := db.DB.QueryContext(ctx,
@@ -94,9 +91,6 @@ func (h *SecretsHandler) List(c *gin.Context) {
 			"updated_at": updatedAt,
 		})
 	}
-	if err := globalRows.Err(); err != nil {
-		log.Printf("List global secrets iteration error: %v", err)
-	}

 	c.JSON(http.StatusOK, secrets)
 }
@@ -180,9 +174,6 @@ func (h *SecretsHandler) Values(c *gin.Context) {
 				out[k] = string(decrypted)
 			}
 		}
-		if err := globalRows.Err(); err != nil {
-			log.Printf("secrets.Values: global rows iteration error: %v", err)
-		}
 	}

 	wsRows, wErr := db.DB.QueryContext(ctx,
@@ -204,9 +195,6 @@ func (h *SecretsHandler) Values(c *gin.Context) {
 				out[k] = string(decrypted) // workspace override wins over global
 			}
 		}
-		if err := wsRows.Err(); err != nil {
-			log.Printf("secrets.Values: workspace rows iteration error: %v", err)
-		}
 	}

 	if len(failedKeys) > 0 {
@@ -336,9 +324,6 @@ func (h *SecretsHandler) ListGlobal(c *gin.Context) {
 			"scope":      "global",
 		})
 	}
-	if err := rows.Err(); err != nil {
-		log.Printf("ListGlobal iteration error: %v", err)
-	}
 	c.JSON(http.StatusOK, secrets)
 }

@@ -415,9 +400,6 @@ func (h *SecretsHandler) restartAllAffectedByGlobalKey(key string) {
 			ids = append(ids, id)
 		}
 	}
-	if err := rows.Err(); err != nil {
-		log.Printf("restartAllAffectedByGlobalKey: iteration error: %v", err)
-	}
 	if len(ids) == 0 {
 		return
 	}
@@ -1,117 +0,0 @@
-package handlers
-
-// template_files_agent_home_stub_test.go — pins the Phase-1 stub
-// contract for the /agent-home root added by internal#425 RFC.
-//
-// Today (pre-Phase-2b), every Files API verb against `?root=/agent-home`
-// must return HTTP 501 with the canonical pending-message body. The
-// stub MUST NOT:
-//   1. Hit the DB (the workspace might not even exist yet from the
-//      canvas's POV — the root selector is testable without one).
-//   2. Touch the EIC tunnel / Docker / template-dir paths — those
-//      would 500/404/[] depending on the env and confuse the canvas.
-//   3. Accept writes/deletes that the future docker-exec backend
-//      would reject — fail closed.
-//
-// When Phase 2b lands, this file gets replaced by a real
-// docker-exec dispatch test; the stub-message constant in
-// templates.go disappears.
-
-import (
-	"net/http"
-	"net/http/httptest"
-	"strings"
-	"testing"
-
-	"github.com/gin-gonic/gin"
-)
-
-// TestAgentHomeAllowedRoot pins that /agent-home is in the allowedRoots
-// set. Without this, a future refactor that drops the key would
-// silently degrade the canvas root selector to a 400 instead of the
-// stub 501.
-func TestAgentHomeAllowedRoot(t *testing.T) {
-	if !allowedRoots["/agent-home"] {
-		t.Fatal("/agent-home must be in allowedRoots — RFC #425 contract")
-	}
-}
-
-// TestAgentHomeStub_AllVerbs_Return501 pins the canonical stub
-// response across all four verbs. Each must:
-//
-//   - status 501
-//   - body contains the canonical "/agent-home not implemented" prefix
-//   - NOT contain "workspace not found" (proves we short-circuit before
-//     the DB lookup)
-//
-// Driven as a table to keep symmetry — adding a fifth verb in the
-// future means adding one row here.
-func TestAgentHomeStub_AllVerbs_Return501(t *testing.T) {
-	cases := []struct {
-		name   string
-		method string
-		invoke func(c *gin.Context)
-	}{
-		{
-			name:   "ListFiles",
-			method: "GET",
-			invoke: func(c *gin.Context) { (&TemplatesHandler{}).ListFiles(c) },
-		},
-		{
-			name:   "ReadFile",
-			method: "GET",
-			invoke: func(c *gin.Context) { (&TemplatesHandler{}).ReadFile(c) },
-		},
-		{
-			name:   "WriteFile",
-			method: "PUT",
-			invoke: func(c *gin.Context) { (&TemplatesHandler{}).WriteFile(c) },
-		},
-		{
-			name:   "DeleteFile",
-			method: "DELETE",
-			invoke: func(c *gin.Context) { (&TemplatesHandler{}).DeleteFile(c) },
-		},
-	}
-
-	for _, tc := range cases {
-		t.Run(tc.name, func(t *testing.T) {
-			w := httptest.NewRecorder()
-			c, _ := gin.CreateTestContext(w)
-			c.Params = gin.Params{
-				{Key: "id", Value: "ws-stub"},
-				// Path param without leading slash so DeleteFile's
-				// filepath.IsAbs guard doesn't 400 before the root
-				// dispatch runs. The List/Read/Write paths strip the
-				// leading slash themselves and accept either form.
-				{Key: "path", Value: "notes.md"},
-			}
-			// WriteFile binds JSON; provide a minimal valid body so the
-			// short-circuit isn't masked by the bind-error path.
-			var body string
-			if tc.method == "PUT" {
-				body = `{"content":"x"}`
-			}
-			c.Request = httptest.NewRequest(
-				tc.method,
-				"/workspaces/ws-stub/files/notes.md?root=/agent-home",
-				strings.NewReader(body),
-			)
-			if body != "" {
-				c.Request.Header.Set("Content-Type", "application/json")
-			}
-
-			tc.invoke(c)
-
-			if w.Code != http.StatusNotImplemented {
-				t.Fatalf("expected 501, got %d: %s", w.Code, w.Body.String())
-			}
-			if !strings.Contains(w.Body.String(), "/agent-home not implemented") {
-				t.Errorf("body should contain canonical stub message; got %s", w.Body.String())
-			}
-			if strings.Contains(w.Body.String(), "workspace not found") {
-				t.Errorf("stub leaked through to DB lookup; body=%s", w.Body.String())
-			}
-		})
-	}
-}
@@ -18,35 +18,11 @@ import (
 )

 // allowedRoots are the container paths that the Files API can browse.
-//
-// `/agent-home` (added 2026-05-15, internal#425 RFC) is the container's
-// own $HOME — `/root` for openclaw, `/home/agent` for claude-code/hermes
-// — browsed via `docker exec` rather than host-side `find`. The
-// dispatch is stubbed today (returns 501); full implementation lands in
-// Phase 2b of the RFC. The allowedRoots key is added now so the canvas
-// can design its root-selector UI against the final shape and the
-// stub-vs-full transition is server-side only.
 var allowedRoots = map[string]bool{
-	"/configs":    true,
-	"/workspace":  true,
-	"/home":       true,
-	"/plugins":    true,
-	"/agent-home": true,
-}
-
-// agentHomeStubMessage is the body returned by every Files API verb
-// when `?root=/agent-home` is requested before Phase 2b lands. Keep the
-// status code 501 (Not Implemented) — the route exists, the verb is
-// understood, but the handler is unimplemented. Distinguishes from
-// 400/404 so a canvas behind a less-current server can render a clean
-// "feature pending" state instead of a generic error.
-const agentHomeStubMessage = "/agent-home not implemented yet (internal#425 RFC Phase 2b — docker-exec backend pending)"
-
-// isAgentHomeStubRequest returns true when the request targets the
-// stubbed /agent-home root. Centralised so every verb in this file
-// short-circuits with the same response shape.
-func isAgentHomeStubRequest(rootPath string) bool {
-	return rootPath == "/agent-home"
+	"/configs":   true,
+	"/workspace": true,
+	"/home":      true,
+	"/plugins":   true,
 }

 // maxUploadFiles limits the number of files in a single import/replace.
@@ -243,14 +219,7 @@ func (h *TemplatesHandler) ListFiles(c *gin.Context) {
 	//   ?depth= — max depth to recurse (default: 1, max: 5)
 	rootPath := c.DefaultQuery("root", "/configs")
 	if !allowedRoots[rootPath] {
-		c.JSON(http.StatusBadRequest, gin.H{"error": "root must be one of: /configs, /workspace, /home, /plugins, /agent-home"})
-		return
-	}
-	// /agent-home dispatch is stubbed pre-Phase-2b. Short-circuit before
-	// the DB lookup + EIC dance so a canvas exercising the new root key
-	// gets a clean 501 instead of a half-effort response.
-	if isAgentHomeStubRequest(rootPath) {
-		c.JSON(http.StatusNotImplemented, gin.H{"error": agentHomeStubMessage})
+		c.JSON(http.StatusBadRequest, gin.H{"error": "root must be one of: /configs, /workspace, /home, /plugins"})
 		return
 	}
 	subPath := c.DefaultQuery("path", "")
@@ -414,11 +383,7 @@ func (h *TemplatesHandler) ReadFile(c *gin.Context) {
 	ctx := c.Request.Context()
 	rootPath := c.DefaultQuery("root", "/configs")
 	if !allowedRoots[rootPath] {
-		c.JSON(http.StatusBadRequest, gin.H{"error": "root must be one of: /configs, /workspace, /home, /plugins, /agent-home"})
-		return
-	}
-	if isAgentHomeStubRequest(rootPath) {
-		c.JSON(http.StatusNotImplemented, gin.H{"error": agentHomeStubMessage})
+		c.JSON(http.StatusBadRequest, gin.H{"error": "root must be one of: /configs, /workspace, /home, /plugins"})
 		return
 	}

@@ -531,11 +496,7 @@ func (h *TemplatesHandler) WriteFile(c *gin.Context) {
 	ctx := c.Request.Context()
 	rootPath := c.DefaultQuery("root", "/configs")
 	if !allowedRoots[rootPath] {
-		c.JSON(http.StatusBadRequest, gin.H{"error": "root must be one of: /configs, /workspace, /home, /plugins, /agent-home"})
-		return
-	}
-	if isAgentHomeStubRequest(rootPath) {
-		c.JSON(http.StatusNotImplemented, gin.H{"error": agentHomeStubMessage})
+		c.JSON(http.StatusBadRequest, gin.H{"error": "root must be one of: /configs, /workspace, /home, /plugins"})
 		return
 	}
 	var wsName, instanceID, runtime string
@@ -612,11 +573,7 @@ func (h *TemplatesHandler) DeleteFile(c *gin.Context) {
 	ctx := c.Request.Context()
 	rootPath := c.DefaultQuery("root", "/configs")
 	if !allowedRoots[rootPath] {
-		c.JSON(http.StatusBadRequest, gin.H{"error": "root must be one of: /configs, /workspace, /home, /plugins, /agent-home"})
-		return
-	}
-	if isAgentHomeStubRequest(rootPath) {
-		c.JSON(http.StatusNotImplemented, gin.H{"error": agentHomeStubMessage})
+		c.JSON(http.StatusBadRequest, gin.H{"error": "root must be one of: /configs, /workspace, /home, /plugins"})
 		return
 	}
 	var wsName, instanceID, runtime string
@@ -109,11 +109,9 @@ func (h *TerminalHandler) HandleConnect(c *gin.Context) {
 	// provisionWorkspaceCP → migration 038). Null instance_id means the
 	// workspace runs as a local Docker container on this tenant.
 	var instanceID string
-	if db.DB != nil {
-		db.DB.QueryRowContext(ctx,
-			`SELECT COALESCE(instance_id, '') FROM workspaces WHERE id = $1`,
-			workspaceID).Scan(&instanceID)
-	}
+	db.DB.QueryRowContext(ctx,
+		`SELECT COALESCE(instance_id, '') FROM workspaces WHERE id = $1`,
+		workspaceID).Scan(&instanceID)

 	if instanceID != "" {
 		h.handleRemoteConnect(c, workspaceID, instanceID)
@@ -145,7 +143,7 @@ func (h *TerminalHandler) handleLocalConnect(c *gin.Context, workspaceID string)

 	// Look up workspace name for manual container naming
 	var wsName string
-	if db.DB != nil && h.docker != nil {
+	if _, err := h.docker.Ping(ctx); err == nil {
 		db.DB.QueryRowContext(ctx, `SELECT LOWER(REPLACE(name, ' ', '-')) FROM workspaces WHERE id = $1`, workspaceID).Scan(&wsName)
 		if wsName != "" {
 			candidates = append(candidates, wsName)
@@ -24,9 +24,6 @@ import (
 //   - response is HTTP 200 (the endpoint always returns 200; failure is
 //     in the JSON body so callers don't need branch-on-status)
 func TestHandleDiagnose_RoutesToRemote(t *testing.T) {
-	if _, err := exec.LookPath("ssh-keygen"); err != nil {
-		t.Skip("ssh-keygen not available in PATH:", err)
-	}
 	mock := setupTestDB(t)
 	setupTestRedis(t)

@@ -170,12 +167,6 @@ func TestHandleDiagnose_KI005_RejectsCrossWorkspace(t *testing.T) {
 // to differentiate "IAM broke" (send-key fails) from "sshd broke" (probe
 // fails) from "SG/network broke" (wait-for-port fails).
 func TestDiagnoseRemote_StopsAtSSHProbe(t *testing.T) {
-	if _, err := exec.LookPath("ssh-keygen"); err != nil {
-		t.Skip("ssh-keygen not available in PATH:", err)
-	}
-	if _, err := exec.LookPath("nc"); err != nil {
-		t.Skip("nc not available in PATH:", err)
-	}
 	mock := setupTestDB(t)
 	setupTestRedis(t)

@@ -67,9 +67,6 @@ func (h *TokenHandler) List(c *gin.Context) {
 		}
 		tokens = append(tokens, t)
 	}
-	if err := rows.Err(); err != nil {
-		log.Printf("ListTokens rows.Err workspace=%s: %v", workspaceID, err)
-	}

 	c.JSON(http.StatusOK, gin.H{
 		"tokens": tokens,
@@ -15,7 +15,6 @@ import (
 	"os"
 	"path/filepath"
 	"strings"
-	"sync"
 	"time"

 	"github.com/Molecule-AI/molecule-monorepo/platform/internal/crypto"
@@ -74,31 +73,6 @@ type WorkspaceHandler struct {
 	// memory plugin). main.go sets this to plugin.DeleteNamespace
 	// when MEMORY_PLUGIN_URL is configured.
 	namespaceCleanupFn func(ctx context.Context, workspaceID string)
-	// asyncWG tracks goroutines launched by goAsync so tests can wait
-	// for async DB users (restart, provision) before asserting results.
-	// Matches the pattern from main commit 1c3b4ff3.
-	asyncWG sync.WaitGroup
-}
-
-// newHandlerHook, when non-nil, is invoked for every WorkspaceHandler
-// created via NewWorkspaceHandler. It is nil in production (zero cost);
-// the test harness sets it so setupTestDB can drain every handler's
-// in-flight async goroutines before swapping the global db.DB. Without
-// this, a detached restart goroutine (maybeMarkContainerDead ->
-// goAsync(RestartByID) -> runRestartCycle reads db.DB) races the
-// db.DB restore in another test's t.Cleanup.
-var newHandlerHook func(*WorkspaceHandler)
-
-func (h *WorkspaceHandler) goAsync(fn func()) {
-	h.asyncWG.Add(1)
-	go func() {
-		defer h.asyncWG.Done()
-		fn()
-	}()
-}
-
-func (h *WorkspaceHandler) waitAsyncForTest() {
-	h.asyncWG.Wait()
 }

 func NewWorkspaceHandler(b events.EventEmitter, p *provisioner.Provisioner, platformURL, configsDir string) *WorkspaceHandler {
@@ -117,9 +91,6 @@ func NewWorkspaceHandler(b events.EventEmitter, p *provisioner.Provisioner, plat
 	if p != nil {
 		h.provisioner = p
 	}
-	if newHandlerHook != nil {
-		newHandlerHook(h)
-	}
 	return h
 }

@@ -607,7 +578,7 @@ func scanWorkspaceRow(rows interface {
 	var id, name, role, status, url, sampleError, currentTask, runtime, workspaceDir string
 	var tier, activeTasks, maxConcurrentTasks, uptimeSeconds int
 	var errorRate, x, y float64
-	var collapsed, broadcastEnabled, talkToUserEnabled bool
+	var collapsed bool
 	var parentID *string
 	var agentCard []byte
 	var budgetLimit sql.NullInt64
@@ -616,7 +587,7 @@ func scanWorkspaceRow(rows interface {
 	err := rows.Scan(&id, &name, &role, &tier, &status, &agentCard, &url,
 		&parentID, &activeTasks, &maxConcurrentTasks, &errorRate, &sampleError, &uptimeSeconds,
 		&currentTask, &runtime, &workspaceDir, &x, &y, &collapsed,
-		&budgetLimit, &monthlySpend, &broadcastEnabled, &talkToUserEnabled)
+		&budgetLimit, &monthlySpend)
 	if err != nil {
 		return nil, err
 	}
@@ -640,8 +611,6 @@ func scanWorkspaceRow(rows interface {
 		"x":                    x,
 		"y":                    y,
 		"collapsed":            collapsed,
-		"broadcast_enabled":    broadcastEnabled,
-		"talk_to_user_enabled": talkToUserEnabled,
 	}

 	// budget_limit: nil when no limit set, int64 otherwise
@@ -677,8 +646,7 @@ const workspaceListQuery = `
 		   COALESCE(w.current_task, ''), COALESCE(w.runtime, 'langgraph'),
 		   COALESCE(w.workspace_dir, ''),
 		   COALESCE(cl.x, 0), COALESCE(cl.y, 0), COALESCE(cl.collapsed, false),
-		   w.budget_limit, COALESCE(w.monthly_spend, 0),
-		   w.broadcast_enabled, w.talk_to_user_enabled
+		   w.budget_limit, COALESCE(w.monthly_spend, 0)
 	FROM workspaces w
 	LEFT JOIN canvas_layouts cl ON cl.workspace_id = w.id
 	WHERE w.status != 'removed'
@@ -738,8 +706,7 @@ func (h *WorkspaceHandler) Get(c *gin.Context) {
 			   COALESCE(w.current_task, ''), COALESCE(w.runtime, 'langgraph'),
 			   COALESCE(w.workspace_dir, ''),
 			   COALESCE(cl.x, 0), COALESCE(cl.y, 0), COALESCE(cl.collapsed, false),
-			   w.budget_limit, COALESCE(w.monthly_spend, 0),
-			   w.broadcast_enabled, w.talk_to_user_enabled
+			   w.budget_limit, COALESCE(w.monthly_spend, 0)
 		FROM workspaces w
 		LEFT JOIN canvas_layouts cl ON cl.workspace_id = w.id
 		WHERE w.id = $1
@@ -1,82 +0,0 @@
-package handlers
-
-// workspace_abilities.go — PATCH /workspaces/:id/abilities
-//
-// Allows users and admin agents to toggle two workspace-level ability flags:
-//
-//   broadcast_enabled   — workspace may POST /broadcast to send org-wide messages
-//   talk_to_user_enabled — workspace may deliver canvas chat messages via
-//                          send_message_to_user / POST /notify
-//
-// Gated behind AdminAuth so workspace agents cannot self-modify their own
-// ability flags (that would let any agent grant itself broadcast rights or
-// suppress its own chat-silence constraint).
-
-import (
-	"log"
-	"net/http"
-
-	"github.com/Molecule-AI/molecule-monorepo/platform/internal/db"
-	"github.com/gin-gonic/gin"
-)
-
-// AbilitiesPayload carries the subset of ability flags the caller wants to
-// update. Fields are pointers so that the handler can distinguish "caller
-// supplied false" from "caller omitted the field" (omitempty semantics).
-type AbilitiesPayload struct {
-	BroadcastEnabled   *bool `json:"broadcast_enabled"`
-	TalkToUserEnabled  *bool `json:"talk_to_user_enabled"`
-}
-
-// PatchAbilities handles PATCH /workspaces/:id/abilities (AdminAuth).
-func PatchAbilities(c *gin.Context) {
-	id := c.Param("id")
-	if err := validateWorkspaceID(id); err != nil {
-		c.JSON(http.StatusBadRequest, gin.H{"error": "invalid workspace ID"})
-		return
-	}
-
-	var body AbilitiesPayload
-	if err := c.ShouldBindJSON(&body); err != nil {
-		c.JSON(http.StatusBadRequest, gin.H{"error": "invalid request body"})
-		return
-	}
-	if body.BroadcastEnabled == nil && body.TalkToUserEnabled == nil {
-		c.JSON(http.StatusBadRequest, gin.H{"error": "at least one ability field required"})
-		return
-	}
-
-	ctx := c.Request.Context()
-
-	var exists bool
-	if err := db.DB.QueryRowContext(ctx,
-		`SELECT EXISTS(SELECT 1 FROM workspaces WHERE id = $1 AND status != 'removed')`, id,
-	).Scan(&exists); err != nil || !exists {
-		c.JSON(http.StatusNotFound, gin.H{"error": "workspace not found"})
-		return
-	}
-
-	if body.BroadcastEnabled != nil {
-		if _, err := db.DB.ExecContext(ctx,
-			`UPDATE workspaces SET broadcast_enabled = $2, updated_at = now() WHERE id = $1`,
-			id, *body.BroadcastEnabled,
-		); err != nil {
-			log.Printf("PatchAbilities broadcast_enabled for %s: %v", id, err)
-			c.JSON(http.StatusInternalServerError, gin.H{"error": "update failed"})
-			return
-		}
-	}
-
-	if body.TalkToUserEnabled != nil {
-		if _, err := db.DB.ExecContext(ctx,
-			`UPDATE workspaces SET talk_to_user_enabled = $2, updated_at = now() WHERE id = $1`,
-			id, *body.TalkToUserEnabled,
-		); err != nil {
-			log.Printf("PatchAbilities talk_to_user_enabled for %s: %v", id, err)
-			c.JSON(http.StatusInternalServerError, gin.H{"error": "update failed"})
-			return
-		}
-	}
-
-	c.JSON(http.StatusOK, gin.H{"status": "updated"})
-}
@@ -1,297 +0,0 @@
-package handlers
-
-import (
-	"bytes"
-	"context"
-	"database/sql"
-	"encoding/json"
-	"errors"
-	"net/http"
-	"net/http/httptest"
-	"testing"
-
-	"github.com/DATA-DOG/go-sqlmock"
-	"github.com/Molecule-AI/molecule-monorepo/platform/internal/db"
-	"github.com/gin-gonic/gin"
-)
-
-func setupAbilitiesTest(t *testing.T) (sqlmock.Sqlmock, func()) {
-	t.Helper()
-	mockDB, mock, err := sqlmock.New()
-	if err != nil {
-		t.Fatalf("failed to create sqlmock: %v", err)
-	}
-	prev := db.DB
-	db.DB = mockDB
-	return mock, func() {
-		db.DB = prev
-		mockDB.Close()
-	}
-}
-
-func TestPatchAbilities_InvalidWorkspaceID_Returns400(t *testing.T) {
-	_, cleanup := setupAbilitiesTest(t)
-	defer cleanup()
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "not-a-valid-uuid"}}
-	c.Request = httptest.NewRequest("PATCH",
-		"/workspaces/not-a-valid-uuid/abilities",
-		bytes.NewBufferString(`{"broadcast_enabled":true}`))
-	c.Request.Header.Set("Content-Type", "application/json")
-	c.Request = c.Request.WithContext(context.Background())
-
-	PatchAbilities(c)
-
-	if w.Code != http.StatusBadRequest {
-		t.Errorf("expected 400, got %d: %s", w.Code, w.Body.String())
-	}
-	var body map[string]string
-	json.Unmarshal(w.Body.Bytes(), &body)
-	if body["error"] != "invalid workspace ID" {
-		t.Errorf("expected 'invalid workspace ID', got %q", body["error"])
-	}
-}
-
-func TestPatchAbilities_EmptyBody_Returns400(t *testing.T) {
-	_, cleanup := setupAbilitiesTest(t)
-	defer cleanup()
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "550e8400-e29b-41d4-a716-446655440000"}}
-	c.Request = httptest.NewRequest("PATCH",
-		"/workspaces/550e8400-e29b-41d4-a716-446655440000/abilities",
-		bytes.NewBufferString(`{}`))
-	c.Request.Header.Set("Content-Type", "application/json")
-	c.Request = c.Request.WithContext(context.Background())
-
-	PatchAbilities(c)
-
-	if w.Code != http.StatusBadRequest {
-		t.Errorf("expected 400, got %d: %s", w.Code, w.Body.String())
-	}
-	var body map[string]string
-	json.Unmarshal(w.Body.Bytes(), &body)
-	if body["error"] != "at least one ability field required" {
-		t.Errorf("expected 'at least one ability field required', got %q", body["error"])
-	}
-}
-
-func TestPatchAbilities_InvalidJSON_Returns400(t *testing.T) {
-	_, cleanup := setupAbilitiesTest(t)
-	defer cleanup()
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "550e8400-e29b-41d4-a716-446655440000"}}
-	c.Request = httptest.NewRequest("PATCH",
-		"/workspaces/550e8400-e29b-41d4-a716-446655440000/abilities",
-		bytes.NewBufferString(`{invalid json}`))
-	c.Request.Header.Set("Content-Type", "application/json")
-	c.Request = c.Request.WithContext(context.Background())
-
-	PatchAbilities(c)
-
-	if w.Code != http.StatusBadRequest {
-		t.Errorf("expected 400, got %d: %s", w.Code, w.Body.String())
-	}
-	var body map[string]string
-	json.Unmarshal(w.Body.Bytes(), &body)
-	if body["error"] != "invalid request body" {
-		t.Errorf("expected 'invalid request body', got %q", body["error"])
-	}
-}
-
-func TestPatchAbilities_WorkspaceNotFound_Returns404(t *testing.T) {
-	mock, cleanup := setupAbilitiesTest(t)
-	defer cleanup()
-
-	mock.ExpectQuery("SELECT EXISTS").
-		WithArgs("550e8400-e29b-41d4-a716-446655440000").
-		WillReturnError(sql.ErrNoRows)
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "550e8400-e29b-41d4-a716-446655440000"}}
-	c.Request = httptest.NewRequest("PATCH",
-		"/workspaces/550e8400-e29b-41d4-a716-446655440000/abilities",
-		bytes.NewBufferString(`{"broadcast_enabled":true}`))
-	c.Request.Header.Set("Content-Type", "application/json")
-	c.Request = c.Request.WithContext(context.Background())
-
-	PatchAbilities(c)
-
-	if w.Code != http.StatusNotFound {
-		t.Errorf("expected 404, got %d: %s", w.Code, w.Body.String())
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("unmet expectations: %v", err)
-	}
-}
-
-func TestPatchAbilities_WorkspaceDBError_Returns404(t *testing.T) {
-	mock, cleanup := setupAbilitiesTest(t)
-	defer cleanup()
-
-	mock.ExpectQuery("SELECT EXISTS").
-		WithArgs("550e8400-e29b-41d4-a716-446655440000").
-		WillReturnError(errors.New("connection refused"))
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "550e8400-e29b-41d4-a716-446655440000"}}
-	c.Request = httptest.NewRequest("PATCH",
-		"/workspaces/550e8400-e29b-41d4-a716-446655440000/abilities",
-		bytes.NewBufferString(`{"broadcast_enabled":true}`))
-	c.Request.Header.Set("Content-Type", "application/json")
-	c.Request = c.Request.WithContext(context.Background())
-
-	PatchAbilities(c)
-
-	if w.Code != http.StatusNotFound {
-		t.Errorf("expected 404, got %d: %s", w.Code, w.Body.String())
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("unmet expectations: %v", err)
-	}
-}
-
-func TestPatchAbilities_UpdateBroadcastEnabled_Returns200(t *testing.T) {
-	mock, cleanup := setupAbilitiesTest(t)
-	defer cleanup()
-
-	mock.ExpectQuery("SELECT EXISTS").
-		WithArgs("550e8400-e29b-41d4-a716-446655440000").
-		WillReturnRows(sqlmock.NewRows([]string{"exists"}).AddRow(true))
-	mock.ExpectExec("UPDATE workspaces SET broadcast_enabled").
-		WithArgs("550e8400-e29b-41d4-a716-446655440000", true).
-		WillReturnResult(sqlmock.NewResult(0, 1))
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "550e8400-e29b-41d4-a716-446655440000"}}
-	c.Request = httptest.NewRequest("PATCH",
-		"/workspaces/550e8400-e29b-41d4-a716-446655440000/abilities",
-		bytes.NewBufferString(`{"broadcast_enabled":true}`))
-	c.Request.Header.Set("Content-Type", "application/json")
-	c.Request = c.Request.WithContext(context.Background())
-
-	PatchAbilities(c)
-
-	if w.Code != http.StatusOK {
-		t.Errorf("expected 200, got %d: %s", w.Code, w.Body.String())
-	}
-	var body map[string]string
-	json.Unmarshal(w.Body.Bytes(), &body)
-	if body["status"] != "updated" {
-		t.Errorf("expected status=updated, got %v", body)
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("unmet expectations: %v", err)
-	}
-}
-
-func TestPatchAbilities_UpdateTalkToUserEnabled_Returns200(t *testing.T) {
-	mock, cleanup := setupAbilitiesTest(t)
-	defer cleanup()
-
-	mock.ExpectQuery("SELECT EXISTS").
-		WithArgs("550e8400-e29b-41d4-a716-446655440000").
-		WillReturnRows(sqlmock.NewRows([]string{"exists"}).AddRow(true))
-	mock.ExpectExec("UPDATE workspaces SET talk_to_user_enabled").
-		WithArgs("550e8400-e29b-41d4-a716-446655440000", true).
-		WillReturnResult(sqlmock.NewResult(0, 1))
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "550e8400-e29b-41d4-a716-446655440000"}}
-	c.Request = httptest.NewRequest("PATCH",
-		"/workspaces/550e8400-e29b-41d4-a716-446655440000/abilities",
-		bytes.NewBufferString(`{"talk_to_user_enabled":true}`))
-	c.Request.Header.Set("Content-Type", "application/json")
-	c.Request = c.Request.WithContext(context.Background())
-
-	PatchAbilities(c)
-
-	if w.Code != http.StatusOK {
-		t.Errorf("expected 200, got %d: %s", w.Code, w.Body.String())
-	}
-	var body map[string]string
-	json.Unmarshal(w.Body.Bytes(), &body)
-	if body["status"] != "updated" {
-		t.Errorf("expected status=updated, got %v", body)
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("unmet expectations: %v", err)
-	}
-}
-
-func TestPatchAbilities_UpdateBothAbilities_Returns200(t *testing.T) {
-	mock, cleanup := setupAbilitiesTest(t)
-	defer cleanup()
-
-	mock.ExpectQuery("SELECT EXISTS").
-		WithArgs("550e8400-e29b-41d4-a716-446655440000").
-		WillReturnRows(sqlmock.NewRows([]string{"exists"}).AddRow(true))
-	mock.ExpectExec("UPDATE workspaces SET broadcast_enabled").
-		WithArgs("550e8400-e29b-41d4-a716-446655440000", true).
-		WillReturnResult(sqlmock.NewResult(0, 1))
-	mock.ExpectExec("UPDATE workspaces SET talk_to_user_enabled").
-		WithArgs("550e8400-e29b-41d4-a716-446655440000", false).
-		WillReturnResult(sqlmock.NewResult(0, 1))
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "550e8400-e29b-41d4-a716-446655440000"}}
-	c.Request = httptest.NewRequest("PATCH",
-		"/workspaces/550e8400-e29b-41d4-a716-446655440000/abilities",
-		bytes.NewBufferString(`{"broadcast_enabled":true,"talk_to_user_enabled":false}`))
-	c.Request.Header.Set("Content-Type", "application/json")
-	c.Request = c.Request.WithContext(context.Background())
-
-	PatchAbilities(c)
-
-	if w.Code != http.StatusOK {
-		t.Errorf("expected 200, got %d: %s", w.Code, w.Body.String())
-	}
-	var body map[string]string
-	json.Unmarshal(w.Body.Bytes(), &body)
-	if body["status"] != "updated" {
-		t.Errorf("expected status=updated, got %v", body)
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("unmet expectations: %v", err)
-	}
-}
-
-func TestPatchAbilities_UpdateBroadcastDisabled_Returns200(t *testing.T) {
-	mock, cleanup := setupAbilitiesTest(t)
-	defer cleanup()
-
-	mock.ExpectQuery("SELECT EXISTS").
-		WithArgs("550e8400-e29b-41d4-a716-446655440000").
-		WillReturnRows(sqlmock.NewRows([]string{"exists"}).AddRow(true))
-	mock.ExpectExec("UPDATE workspaces SET broadcast_enabled").
-		WithArgs("550e8400-e29b-41d4-a716-446655440000", false).
-		WillReturnResult(sqlmock.NewResult(0, 1))
-
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "550e8400-e29b-41d4-a716-446655440000"}}
-	c.Request = httptest.NewRequest("PATCH",
-		"/workspaces/550e8400-e29b-41d4-a716-446655440000/abilities",
-		bytes.NewBufferString(`{"broadcast_enabled":false}`))
-	c.Request.Header.Set("Content-Type", "application/json")
-	c.Request = c.Request.WithContext(context.Background())
-
-	PatchAbilities(c)
-
-	if w.Code != http.StatusOK {
-		t.Errorf("expected 200, got %d: %s", w.Code, w.Body.String())
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("unmet expectations: %v", err)
-	}
-}
@@ -1,142 +0,0 @@
-package handlers
-
-// workspace_broadcast.go — POST /workspaces/:id/broadcast
-//
-// Allows a workspace with broadcast_enabled=true to send a message to every
-// non-removed agent workspace in the org.  The message is:
-//
-//   • Persisted in each recipient's activity_logs (type='broadcast_receive')
-//     so poll-mode agents pick it up via GET /activity.
-//   • Broadcast via WebSocket BROADCAST_MESSAGE event so canvas panels can
-//     show a real-time banner for each recipient workspace.
-//
-// The sender's own workspace logs a 'broadcast_sent' activity row for
-// traceability.
-//
-// Auth: WorkspaceAuth (the agent triggers this with its own bearer token).
-// The handler re-validates broadcast_enabled inside the DB lookup to prevent
-// TOCTOU — the middleware only proved the token is valid, not the ability.
-
-import (
-	"log"
-	"net/http"
-	"strconv"
-
-	"github.com/Molecule-AI/molecule-monorepo/platform/internal/db"
-	"github.com/Molecule-AI/molecule-monorepo/platform/internal/events"
-	"github.com/gin-gonic/gin"
-)
-
-// BroadcastHandler is constructed once and shared across requests.
-type BroadcastHandler struct {
-	broadcaster *events.Broadcaster
-}
-
-// NewBroadcastHandler creates a BroadcastHandler.
-func NewBroadcastHandler(b *events.Broadcaster) *BroadcastHandler {
-	return &BroadcastHandler{broadcaster: b}
-}
-
-// Broadcast handles POST /workspaces/:id/broadcast.
-func (h *BroadcastHandler) Broadcast(c *gin.Context) {
-	senderID := c.Param("id")
-	if err := validateWorkspaceID(senderID); err != nil {
-		c.JSON(http.StatusBadRequest, gin.H{"error": "invalid workspace ID"})
-		return
-	}
-
-	var body struct {
-		Message string `json:"message" binding:"required"`
-	}
-	if err := c.ShouldBindJSON(&body); err != nil {
-		c.JSON(http.StatusBadRequest, gin.H{"error": "message is required"})
-		return
-	}
-
-	ctx := c.Request.Context()
-
-	// Verify sender exists and has broadcast_enabled=true.
-	var senderName string
-	var broadcastEnabled bool
-	err := db.DB.QueryRowContext(ctx,
-		`SELECT name, broadcast_enabled FROM workspaces WHERE id = $1 AND status != 'removed'`,
-		senderID,
-	).Scan(&senderName, &broadcastEnabled)
-	if err != nil {
-		c.JSON(http.StatusNotFound, gin.H{"error": "workspace not found"})
-		return
-	}
-	if !broadcastEnabled {
-		c.JSON(http.StatusForbidden, gin.H{
-			"error": "broadcast_disabled",
-			"hint":  "This workspace does not have the broadcast ability. Ask a user or admin to enable it via PATCH /workspaces/:id/abilities.",
-		})
-		return
-	}
-
-	// Collect all non-removed agent workspaces (excludes the sender itself).
-	rows, err := db.DB.QueryContext(ctx,
-		`SELECT id FROM workspaces WHERE status != 'removed' AND id != $1`,
-		senderID,
-	)
-	if err != nil {
-		log.Printf("Broadcast: recipient query failed for %s: %v", senderID, err)
-		c.JSON(http.StatusInternalServerError, gin.H{"error": "internal error"})
-		return
-	}
-	defer rows.Close()
-
-	var recipientIDs []string
-	for rows.Next() {
-		var rid string
-		if rows.Scan(&rid) == nil {
-			recipientIDs = append(recipientIDs, rid)
-		}
-	}
-	if err := rows.Err(); err != nil {
-		log.Printf("Broadcast: recipient rows error for %s: %v", senderID, err)
-		c.JSON(http.StatusInternalServerError, gin.H{"error": "internal error"})
-		return
-	}
-
-	broadcastPayload := map[string]interface{}{
-		"message":   body.Message,
-		"sender_id": senderID,
-		"sender":    senderName,
-	}
-
-	// Persist broadcast_receive in each recipient's activity log + emit WS event.
-	delivered := 0
-	for _, rid := range recipientIDs {
-		if _, err := db.DB.ExecContext(ctx, `
-			INSERT INTO activity_logs (workspace_id, activity_type, method, source_id, summary, status)
-			VALUES ($1, 'broadcast_receive', 'broadcast', $2, $3, 'ok')
-		`, rid, senderID, "Broadcast from "+senderName+": "+broadcastTruncate(body.Message, 120)); err != nil {
-			log.Printf("Broadcast: activity_logs insert for recipient %s: %v", rid, err)
-			continue
-		}
-		h.broadcaster.BroadcastOnly(rid, "BROADCAST_MESSAGE", broadcastPayload)
-		delivered++
-	}
-
-	// Record the send on the sender's own log.
-	if _, err := db.DB.ExecContext(ctx, `
-		INSERT INTO activity_logs (workspace_id, activity_type, method, summary, status)
-		VALUES ($1, 'broadcast_sent', 'broadcast', $2, 'ok')
-	`, senderID, "Broadcast sent to "+strconv.Itoa(delivered)+" workspace(s)"); err != nil {
-		log.Printf("Broadcast: sender activity_log for %s: %v", senderID, err)
-	}
-
-	c.JSON(http.StatusOK, gin.H{
-		"status":    "sent",
-		"delivered": delivered,
-	})
-}
-
-func broadcastTruncate(s string, max int) string {
-	runes := []rune(s)
-	if len(runes) <= max {
-		return s
-	}
-	return string(runes[:max]) + "…"
-}
@@ -1,398 +0,0 @@
-package handlers
-
-import (
-	"bytes"
-	"context"
-	"database/sql"
-	"encoding/json"
-	"errors"
-	"net/http"
-	"net/http/httptest"
-	"testing"
-
-	"github.com/DATA-DOG/go-sqlmock"
-	"github.com/Molecule-AI/molecule-monorepo/platform/internal/db"
-	"github.com/gin-gonic/gin"
-)
-
-// -------------------------------------------------------------------------- //
-// broadcastTruncate
-// -------------------------------------------------------------------------- //
-
-func TestBroadcastTruncate_ShortString_ReturnsUnmodified(t *testing.T) {
-	result := broadcastTruncate("hello", 10)
-	if result != "hello" {
-		t.Errorf("expected 'hello', got %q", result)
-	}
-}
-
-func TestBroadcastTruncate_ExactlyMaxLength_ReturnsUnmodified(t *testing.T) {
-	result := broadcastTruncate("hello", 5)
-	if result != "hello" {
-		t.Errorf("expected 'hello', got %q", result)
-	}
-}
-
-func TestBroadcastTruncate_ExceedsMaxLength_TruncatesWithEllipsis(t *testing.T) {
-	result := broadcastTruncate("hello world", 5)
-	if result != "hello…" {
-		t.Errorf("expected 'hello…', got %q", result)
-	}
-}
-
-func TestBroadcastTruncate_Unicode_TruncatesAtRuneBoundary(t *testing.T) {
-	result := broadcastTruncate("日本語テスト", 2)
-	if result != "日本…" {
-		t.Errorf("expected '日本…', got %q", result)
-	}
-}
-
-// -------------------------------------------------------------------------- //
-// BroadcastHandler
-// -------------------------------------------------------------------------- //
-
-func setupBroadcastTest(t *testing.T) (sqlmock.Sqlmock, func()) {
-	t.Helper()
-	mockDB, mock, err := sqlmock.New()
-	if err != nil {
-		t.Fatalf("failed to create sqlmock: %v", err)
-	}
-	prev := db.DB
-	db.DB = mockDB
-	return mock, func() {
-		db.DB = prev
-		mockDB.Close()
-	}
-}
-
-func TestBroadcast_InvalidWorkspaceID_Returns400(t *testing.T) {
-	_, cleanup := setupBroadcastTest(t)
-	defer cleanup()
-
-	h := NewBroadcastHandler(newTestBroadcaster())
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "not-a-uuid"}}
-	c.Request = httptest.NewRequest("POST", "/workspaces/not-a-uuid/broadcast",
-		bytes.NewBufferString(`{"message":"hello"}`))
-	c.Request.Header.Set("Content-Type", "application/json")
-	c.Request = c.Request.WithContext(context.Background())
-
-	h.Broadcast(c)
-
-	if w.Code != http.StatusBadRequest {
-		t.Errorf("expected 400, got %d: %s", w.Code, w.Body.String())
-	}
-	var body map[string]string
-	json.Unmarshal(w.Body.Bytes(), &body)
-	if body["error"] != "invalid workspace ID" {
-		t.Errorf("expected 'invalid workspace ID', got %q", body["error"])
-	}
-}
-
-func TestBroadcast_MissingMessage_Returns400(t *testing.T) {
-	_, cleanup := setupBroadcastTest(t)
-	defer cleanup()
-
-	h := NewBroadcastHandler(newTestBroadcaster())
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "550e8400-e29b-41d4-a716-446655440000"}}
-	c.Request = httptest.NewRequest("POST",
-		"/workspaces/550e8400-e29b-41d4-a716-446655440000/broadcast",
-		bytes.NewBufferString(`{}`))
-	c.Request.Header.Set("Content-Type", "application/json")
-	c.Request = c.Request.WithContext(context.Background())
-
-	h.Broadcast(c)
-
-	if w.Code != http.StatusBadRequest {
-		t.Errorf("expected 400, got %d: %s", w.Code, w.Body.String())
-	}
-	var body map[string]string
-	json.Unmarshal(w.Body.Bytes(), &body)
-	if body["error"] != "message is required" {
-		t.Errorf("expected 'message is required', got %q", body["error"])
-	}
-}
-
-func TestBroadcast_WorkspaceNotFound_Returns404(t *testing.T) {
-	mock, cleanup := setupBroadcastTest(t)
-	defer cleanup()
-
-	mock.ExpectQuery("SELECT name, broadcast_enabled FROM workspaces").
-		WithArgs("550e8400-e29b-41d4-a716-446655440000").
-		WillReturnError(sql.ErrNoRows)
-
-	h := NewBroadcastHandler(newTestBroadcaster())
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "550e8400-e29b-41d4-a716-446655440000"}}
-	c.Request = httptest.NewRequest("POST",
-		"/workspaces/550e8400-e29b-41d4-a716-446655440000/broadcast",
-		bytes.NewBufferString(`{"message":"hello"}`))
-	c.Request.Header.Set("Content-Type", "application/json")
-	c.Request = c.Request.WithContext(context.Background())
-
-	h.Broadcast(c)
-
-	if w.Code != http.StatusNotFound {
-		t.Errorf("expected 404, got %d: %s", w.Code, w.Body.String())
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("unmet expectations: %v", err)
-	}
-}
-
-func TestBroadcast_BroadcastDisabled_Returns403(t *testing.T) {
-	mock, cleanup := setupBroadcastTest(t)
-	defer cleanup()
-
-	mock.ExpectQuery("SELECT name, broadcast_enabled FROM workspaces").
-		WithArgs("550e8400-e29b-41d4-a716-446655440000").
-		WillReturnRows(sqlmock.NewRows([]string{"name", "broadcast_enabled"}).
-			AddRow("test-agent", false))
-
-	h := NewBroadcastHandler(newTestBroadcaster())
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "550e8400-e29b-41d4-a716-446655440000"}}
-	c.Request = httptest.NewRequest("POST",
-		"/workspaces/550e8400-e29b-41d4-a716-446655440000/broadcast",
-		bytes.NewBufferString(`{"message":"hello"}`))
-	c.Request.Header.Set("Content-Type", "application/json")
-	c.Request = c.Request.WithContext(context.Background())
-
-	h.Broadcast(c)
-
-	if w.Code != http.StatusForbidden {
-		t.Errorf("expected 403, got %d: %s", w.Code, w.Body.String())
-	}
-	var body map[string]string
-	json.Unmarshal(w.Body.Bytes(), &body)
-	if body["error"] != "broadcast_disabled" {
-		t.Errorf("expected error='broadcast_disabled', got %v", body)
-	}
-	if _, ok := body["hint"]; !ok {
-		t.Errorf("expected hint field in 403 body, got %v", body)
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("unmet expectations: %v", err)
-	}
-}
-
-func TestBroadcast_RecipientQueryFails_Returns500(t *testing.T) {
-	mock, cleanup := setupBroadcastTest(t)
-	defer cleanup()
-
-	mock.ExpectQuery("SELECT name, broadcast_enabled FROM workspaces").
-		WithArgs("550e8400-e29b-41d4-a716-446655440000").
-		WillReturnRows(sqlmock.NewRows([]string{"name", "broadcast_enabled"}).
-			AddRow("test-agent", true))
-	mock.ExpectQuery("SELECT id FROM workspaces WHERE status != 'removed' AND id != ").
-		WithArgs("550e8400-e29b-41d4-a716-446655440000").
-		WillReturnError(errors.New("connection refused"))
-
-	h := NewBroadcastHandler(newTestBroadcaster())
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "550e8400-e29b-41d4-a716-446655440000"}}
-	c.Request = httptest.NewRequest("POST",
-		"/workspaces/550e8400-e29b-41d4-a716-446655440000/broadcast",
-		bytes.NewBufferString(`{"message":"hello"}`))
-	c.Request.Header.Set("Content-Type", "application/json")
-	c.Request = c.Request.WithContext(context.Background())
-
-	h.Broadcast(c)
-
-	if w.Code != http.StatusInternalServerError {
-		t.Errorf("expected 500, got %d: %s", w.Code, w.Body.String())
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("unmet expectations: %v", err)
-	}
-}
-
-func TestBroadcast_NoRecipients_Returns200(t *testing.T) {
-	mock, cleanup := setupBroadcastTest(t)
-	defer cleanup()
-
-	mock.ExpectQuery("SELECT name, broadcast_enabled FROM workspaces").
-		WithArgs("550e8400-e29b-41d4-a716-446655440000").
-		WillReturnRows(sqlmock.NewRows([]string{"name", "broadcast_enabled"}).
-			AddRow("test-agent", true))
-	mock.ExpectQuery("SELECT id FROM workspaces WHERE status != 'removed' AND id != ").
-		WithArgs("550e8400-e29b-41d4-a716-446655440000").
-		WillReturnRows(sqlmock.NewRows([]string{"id"}))
-	mock.ExpectExec("INSERT INTO activity_logs").
-		WithArgs("550e8400-e29b-41d4-a716-446655440000", "Broadcast sent to 0 workspace(s)").
-		WillReturnResult(sqlmock.NewResult(0, 1))
-
-	h := NewBroadcastHandler(newTestBroadcaster())
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: "550e8400-e29b-41d4-a716-446655440000"}}
-	c.Request = httptest.NewRequest("POST",
-		"/workspaces/550e8400-e29b-41d4-a716-446655440000/broadcast",
-		bytes.NewBufferString(`{"message":"hello"}`))
-	c.Request.Header.Set("Content-Type", "application/json")
-	c.Request = c.Request.WithContext(context.Background())
-
-	h.Broadcast(c)
-
-	if w.Code != http.StatusOK {
-		t.Errorf("expected 200, got %d: %s", w.Code, w.Body.String())
-	}
-	var body map[string]interface{}
-	json.Unmarshal(w.Body.Bytes(), &body)
-	if body["status"] != "sent" {
-		t.Errorf("expected status=sent, got %v", body)
-	}
-	if int(body["delivered"].(float64)) != 0 {
-		t.Errorf("expected delivered=0, got %v", body["delivered"])
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("unmet expectations: %v", err)
-	}
-}
-
-func TestBroadcast_DeliversToOneRecipient_Returns200(t *testing.T) {
-	mock, cleanup := setupBroadcastTest(t)
-	defer cleanup()
-
-	senderID := "550e8400-e29b-41d4-a716-446655440000"
-	recipientID := "660e8400-e29b-41d4-a716-446655440001"
-	senderName := "test-agent"
-
-	mock.ExpectQuery("SELECT name, broadcast_enabled FROM workspaces").
-		WithArgs(senderID).
-		WillReturnRows(sqlmock.NewRows([]string{"name", "broadcast_enabled"}).
-			AddRow(senderName, true))
-	mock.ExpectQuery("SELECT id FROM workspaces WHERE status != 'removed' AND id != ").
-		WithArgs(senderID).
-		WillReturnRows(sqlmock.NewRows([]string{"id"}).AddRow(recipientID))
-	mock.ExpectExec("INSERT INTO activity_logs").
-		WithArgs(recipientID, senderID, "Broadcast from "+senderName+": hello").
-		WillReturnResult(sqlmock.NewResult(0, 1))
-	mock.ExpectExec("INSERT INTO activity_logs").
-		WithArgs(senderID, "Broadcast sent to 1 workspace(s)").
-		WillReturnResult(sqlmock.NewResult(0, 1))
-
-	h := NewBroadcastHandler(newTestBroadcaster())
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: senderID}}
-	c.Request = httptest.NewRequest("POST",
-		"/workspaces/"+senderID+"/broadcast",
-		bytes.NewBufferString(`{"message":"hello"}`))
-	c.Request.Header.Set("Content-Type", "application/json")
-	c.Request = c.Request.WithContext(context.Background())
-
-	h.Broadcast(c)
-
-	if w.Code != http.StatusOK {
-		t.Errorf("expected 200, got %d: %s", w.Code, w.Body.String())
-	}
-	var body map[string]interface{}
-	json.Unmarshal(w.Body.Bytes(), &body)
-	if int(body["delivered"].(float64)) != 1 {
-		t.Errorf("expected delivered=1, got %v", body["delivered"])
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("unmet expectations: %v", err)
-	}
-}
-
-func TestBroadcast_RecipientInsertFails_Continues_Returns200(t *testing.T) {
-	mock, cleanup := setupBroadcastTest(t)
-	defer cleanup()
-
-	senderID := "550e8400-e29b-41d4-a716-446655440000"
-	recipientID := "660e8400-e29b-41d4-a716-446655440001"
-	senderName := "test-agent"
-
-	mock.ExpectQuery("SELECT name, broadcast_enabled FROM workspaces").
-		WithArgs(senderID).
-		WillReturnRows(sqlmock.NewRows([]string{"name", "broadcast_enabled"}).
-			AddRow(senderName, true))
-	mock.ExpectQuery("SELECT id FROM workspaces WHERE status != 'removed' AND id != ").
-		WithArgs(senderID).
-		WillReturnRows(sqlmock.NewRows([]string{"id"}).AddRow(recipientID))
-	mock.ExpectExec("INSERT INTO activity_logs").
-		WithArgs(recipientID, senderID, "Broadcast from "+senderName+": hello").
-		WillReturnError(errors.New("connection refused"))
-	mock.ExpectExec("INSERT INTO activity_logs").
-		WithArgs(senderID, "Broadcast sent to 0 workspace(s)").
-		WillReturnResult(sqlmock.NewResult(0, 1))
-
-	h := NewBroadcastHandler(newTestBroadcaster())
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: senderID}}
-	c.Request = httptest.NewRequest("POST",
-		"/workspaces/"+senderID+"/broadcast",
-		bytes.NewBufferString(`{"message":"hello"}`))
-	c.Request.Header.Set("Content-Type", "application/json")
-	c.Request = c.Request.WithContext(context.Background())
-
-	h.Broadcast(c)
-
-	if w.Code != http.StatusOK {
-		t.Errorf("expected 200, got %d: %s", w.Code, w.Body.String())
-	}
-	var body map[string]interface{}
-	json.Unmarshal(w.Body.Bytes(), &body)
-	if int(body["delivered"].(float64)) != 0 {
-		t.Errorf("expected delivered=0 (failed inserts don't count), got %v", body["delivered"])
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("unmet expectations: %v", err)
-	}
-}
-
-func TestBroadcast_SenderLogFails_StillReturns200(t *testing.T) {
-	mock, cleanup := setupBroadcastTest(t)
-	defer cleanup()
-
-	senderID := "550e8400-e29b-41d4-a716-446655440000"
-	recipientID := "660e8400-e29b-41d4-a716-446655440001"
-	senderName := "test-agent"
-
-	mock.ExpectQuery("SELECT name, broadcast_enabled FROM workspaces").
-		WithArgs(senderID).
-		WillReturnRows(sqlmock.NewRows([]string{"name", "broadcast_enabled"}).
-			AddRow(senderName, true))
-	mock.ExpectQuery("SELECT id FROM workspaces WHERE status != 'removed' AND id != ").
-		WithArgs(senderID).
-		WillReturnRows(sqlmock.NewRows([]string{"id"}).AddRow(recipientID))
-	mock.ExpectExec("INSERT INTO activity_logs").
-		WithArgs(recipientID, senderID, "Broadcast from "+senderName+": hello").
-		WillReturnResult(sqlmock.NewResult(0, 1))
-	mock.ExpectExec("INSERT INTO activity_logs").
-		WithArgs(senderID, "Broadcast sent to 1 workspace(s)").
-		WillReturnError(errors.New("connection refused"))
-
-	h := NewBroadcastHandler(newTestBroadcaster())
-	w := httptest.NewRecorder()
-	c, _ := gin.CreateTestContext(w)
-	c.Params = gin.Params{{Key: "id", Value: senderID}}
-	c.Request = httptest.NewRequest("POST",
-		"/workspaces/"+senderID+"/broadcast",
-		bytes.NewBufferString(`{"message":"hello"}`))
-	c.Request.Header.Set("Content-Type", "application/json")
-	c.Request = c.Request.WithContext(context.Background())
-
-	h.Broadcast(c)
-
-	if w.Code != http.StatusOK {
-		t.Errorf("expected 200, got %d: %s", w.Code, w.Body.String())
-	}
-	var body map[string]interface{}
-	json.Unmarshal(w.Body.Bytes(), &body)
-	if int(body["delivered"].(float64)) != 1 {
-		t.Errorf("expected delivered=1, got %v", body["delivered"])
-	}
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("unmet expectations: %v", err)
-	}
-}
@@ -33,7 +33,6 @@ var wsColumns = []string{
 	"parent_id", "active_tasks", "max_concurrent_tasks", "last_error_rate", "last_sample_error",
 	"uptime_seconds", "current_task", "runtime", "workspace_dir", "x", "y", "collapsed",
 	"budget_limit", "monthly_spend",
-	"broadcast_enabled", "talk_to_user_enabled",
 }

 // ==================== GET — financial fields stripped from open endpoint ====================
@@ -53,10 +52,8 @@ func TestWorkspaceBudget_Get_NilLimit(t *testing.T) {
 				[]byte(`{}`), "http://localhost:9001",
 				nil, 0, 1, 0.0, "", 0, "", "langgraph", "",
 				0.0, 0.0, false,
-				nil,   // budget_limit NULL
-				0,     // monthly_spend 0
-				false, // broadcast_enabled
-				true)) // talk_to_user_enabled
+				nil, // budget_limit NULL
+				0))  // monthly_spend 0

 	w := httptest.NewRecorder()
 	c, _ := gin.CreateTestContext(w)
@@ -99,8 +96,7 @@ func TestWorkspaceBudget_Get_WithLimit(t *testing.T) {
 				nil, 0, 1, 0.0, "", 0, "", "langgraph", "",
 				0.0, 0.0, false,
 				int64(500),  // budget_limit = $5.00 in DB
-				int64(123),  // monthly_spend = $1.23 in DB
-				false, true)) // broadcast_enabled, talk_to_user_enabled
+				int64(123))) // monthly_spend = $1.23 in DB

 	w := httptest.NewRecorder()
 	c, _ := gin.CreateTestContext(w)
@@ -149,19 +149,6 @@ func (h *WorkspaceHandler) Update(c *gin.Context) {
 		}
 	}

-	// Validate workspace_dir early so invalid paths are rejected before the
-	// existence check (consistent with name/role/runtime validation above).
-	if wsDir, ok := body["workspace_dir"]; ok {
-		if wsDir != nil {
-			if dirStr, isStr := wsDir.(string); isStr && dirStr != "" {
-				if err := validateWorkspaceDir(dirStr); err != nil {
-					c.JSON(http.StatusBadRequest, gin.H{"error": "invalid workspace directory"})
-					return
-				}
-			}
-		}
-	}
-
 	ctx := c.Request.Context()

 	// Auth is fully enforced at the router layer (WorkspaceAuth middleware, #680).
@@ -219,8 +206,15 @@ func (h *WorkspaceHandler) Update(c *gin.Context) {
 	}
 	needsRestart := false
 	if wsDir, ok := body["workspace_dir"]; ok {
-		// ValidateWorkspaceDir was already called above before the existence check;
-		// the UPDATE itself is unconditional.
+		// Allow null to clear workspace_dir
+		if wsDir != nil {
+			if dirStr, isStr := wsDir.(string); isStr && dirStr != "" {
+				if err := validateWorkspaceDir(dirStr); err != nil {
+					c.JSON(http.StatusBadRequest, gin.H{"error": "invalid workspace directory"})
+					return
+				}
+			}
+		}
 		if _, err := db.DB.ExecContext(ctx, `UPDATE workspaces SET workspace_dir = $2, updated_at = now() WHERE id = $1`, id, wsDir); err != nil {
 			log.Printf("Update workspace_dir error for %s: %v", id, err)
 		}
@@ -1,165 +0,0 @@
-package handlers
-
-// workspace_crud_helpers_test.go — tests for pure-logic helpers in workspace_crud.go.
-//
-// Covered helpers:
-//   validateWorkspaceDir — bind-mount path safety (CWE-22 defence-in-depth)
-
-import "testing"
-
-// ─────────────────────────────────────────────────────────────────────────────
-// validateWorkspaceDir
-// ─────────────────────────────────────────────────────────────────────────────
-
-func TestValidateWorkspaceDir_AcceptsValidAbsolutePath(t *testing.T) {
-	cases := []string{
-		"/home/ubuntu/workspace",
-		"/opt/myapp/data",
-		"/tmp/molecule-workspace",
-		"/Users/admin/workspace",
-		"/workspace",
-		"/mnt/volumes/data",
-		"/srv/molecule",
-		"/nix/store",
-	}
-	for _, dir := range cases {
-		err := validateWorkspaceDir(dir)
-		if err != nil {
-			t.Errorf("validateWorkspaceDir(%q) returned error: %v; want nil", dir, err)
-		}
-	}
-}
-
-func TestValidateWorkspaceDir_RejectsRelativePath(t *testing.T) {
-	cases := []string{
-		"relative/path",
-		"./local",
-		"../sibling",
-		"workspace",
-		"",
-	}
-	for _, dir := range cases {
-		err := validateWorkspaceDir(dir)
-		if err == nil {
-			t.Errorf("validateWorkspaceDir(%q) = nil; want error (relative path)", dir)
-		}
-	}
-}
-
-func TestValidateWorkspaceDir_RejectsTraversalSequence(t *testing.T) {
-	cases := []string{
-		"/etc/../../../etc/passwd",
-		"/home/user/../../root",
-		"/workspace/../../../sibling",
-		"/foo/bar/..%2f..%2fetc",
-		"/valid/../etc/passwd",
-	}
-	for _, dir := range cases {
-		err := validateWorkspaceDir(dir)
-		if err == nil {
-			t.Errorf("validateWorkspaceDir(%q) = nil; want error (traversal)", dir)
-		}
-	}
-}
-
-func TestValidateWorkspaceDir_RejectsSystemPaths(t *testing.T) {
-	// System paths must be rejected outright — a workspace binding /etc or
-	// /proc would let the agent read host secrets or inspect kernel state.
-	systemPaths := []string{
-		"/etc",
-		"/var",
-		"/proc",
-		"/sys",
-		"/dev",
-		"/boot",
-		"/sbin",
-		"/bin",
-		"/usr",
-	}
-	for _, dir := range systemPaths {
-		err := validateWorkspaceDir(dir)
-		if err == nil {
-			t.Errorf("validateWorkspaceDir(%q) = nil; want error (system path)", dir)
-		}
-	}
-}
-
-func TestValidateWorkspaceDir_RejectsDescendantsOfSystemPaths(t *testing.T) {
-	// A descendant of a system path must also be rejected — /etc/shadow,
-	// /proc/1/cmdline, /dev/null all fall in this category.
-	descendants := []string{
-		"/etc/passwd",
-		"/etc/shadow",
-		"/etc/ssh/sshd_config",
-		"/var/log/syslog",
-		"/proc/self/environ",
-		"/sys/kernel/version",
-		"/dev/null",
-		"/boot/grub/grub.cfg",
-		"/sbin/init",
-		"/bin/bash",
-		"/usr/bin/python3",
-	}
-	for _, dir := range descendants {
-		err := validateWorkspaceDir(dir)
-		if err == nil {
-			t.Errorf("validateWorkspaceDir(%q) = nil; want error (descendant of system path)", dir)
-		}
-	}
-}
-
-func TestValidateWorkspaceDir_AcceptsPathsSimilarToSystemPaths(t *testing.T) {
-	// Paths that LOOK like system paths but are NOT exact matches or
-	// descendants should be accepted. These are valid workspace directories.
-	valid := []string{
-		"/etcworkspace",
-		"/varworkspace",
-		"/procworkspace",
-		"/sysworkspace",
-		"/devworkspace",
-		"/bootworkspace",
-		"/sbinworkspace",
-		"/binworkspace",
-		"/usrworkspace",
-		"/etx",    // typo of /etc but a different path
-		"/vartmp",  // /var/tmp is different from /var
-		"/usrr",    // typo of /usr but a different path
-		"/workspace/etc",
-		"/workspace/var",
-		"/home/user/etc",
-		"/opt/etc",
-	}
-	for _, dir := range valid {
-		err := validateWorkspaceDir(dir)
-		if err != nil {
-			t.Errorf("validateWorkspaceDir(%q) returned error: %v; want nil", dir, err)
-		}
-	}
-}
-
-func TestValidateWorkspaceDir_ErrorMessages(t *testing.T) {
-	// Error messages must be descriptive enough for operators to self-diagnose.
-	relErr := validateWorkspaceDir("relative")
-	if relErr == nil {
-		t.Fatal("relative path: want error, got nil")
-	}
-	if relErr.Error() == "" {
-		t.Error("relative path error message is empty")
-	}
-
-	travErr := validateWorkspaceDir("/etc/../../../etc/passwd")
-	if travErr == nil {
-		t.Fatal("traversal: want error, got nil")
-	}
-	if travErr.Error() == "" {
-		t.Error("traversal error message is empty")
-	}
-
-	sysErr := validateWorkspaceDir("/etc")
-	if sysErr == nil {
-		t.Fatal("system path: want error, got nil")
-	}
-	if sysErr.Error() == "" {
-		t.Error("system path error message is empty")
-	}
-}
@@ -187,43 +187,57 @@ func TestState_QueryError(t *testing.T) {
 // ---------- Update ----------

 func TestUpdate_InvalidUUID(t *testing.T) {
-	err := validateWorkspaceID("not-a-uuid")
-	if err == nil {
-		t.Error("expected error for invalid UUID in PATCH path")
+	_, _ = setupWorkspaceCrudTest(t)
+	h := newWorkspaceCrudHandler(t)
+	r2 := gin.New()
+	r2.PATCH("/workspaces/:id", h.Update)
+
+	body := map[string]interface{}{"name": "Test"}
+	b, _ := json.Marshal(body)
+	req, _ := http.NewRequest("PATCH", "/workspaces/not-a-uuid", bytes.NewReader(b))
+	req.Header.Set("Content-Type", "application/json")
+	w := httptest.NewRecorder()
+	r2.ServeHTTP(w, req)
+
+	if w.Code != http.StatusBadRequest {
+		t.Errorf("expected 400, got %d: %s", w.Code, w.Body.String())
 	}
 }

 func TestUpdate_InvalidBody(t *testing.T) {
-	_, r := setupWorkspaceCrudTest(t)
+	_, _ = setupWorkspaceCrudTest(t)
 	h := newWorkspaceCrudHandler(t)
-	r.PATCH("/workspaces/:id", h.Update)
+	r2 := gin.New()
+	r2.PATCH("/workspaces/:id", h.Update)

 	req, _ := http.NewRequest("PATCH", "/workspaces/aaaaaaaa-aaaa-aaaa-aaaa-aaaaaaaaaaaa", bytes.NewReader([]byte("not json")))
 	req.Header.Set("Content-Type", "application/json")
 	w := httptest.NewRecorder()
-	r.ServeHTTP(w, req)
+	r2.ServeHTTP(w, req)

 	if w.Code != http.StatusBadRequest {
-		t.Errorf("expected 400 for malformed JSON, got %d: %s", w.Code, w.Body.String())
+		t.Errorf("expected 400, got %d", w.Code)
 	}
 }

 func TestUpdate_WorkspaceNotFound(t *testing.T) {
-	wsID := "aaaaaaaa-aaaa-aaaa-aaaa-aaaaaaaaaaaa"
-	mock, r := setupWorkspaceCrudTest(t)
+	mock, _ := setupWorkspaceCrudTest(t)
 	h := newWorkspaceCrudHandler(t)
-	r.PATCH("/workspaces/:id", h.Update)
+	r2 := gin.New()
+	r2.PATCH("/workspaces/:id", h.Update)
+
+	wsID := "aaaaaaaa-aaaa-aaaa-aaaa-aaaaaaaaaaaa"

 	mock.ExpectQuery(`SELECT EXISTS\(SELECT 1 FROM workspaces WHERE id = \$1\)`).
 		WithArgs(wsID).
-		WillReturnRows(sqlmock.NewRows([]string{"count"}).AddRow(0))
+		WillReturnRows(sqlmock.NewRows([]string{"exists"}).AddRow(false))

 	body := map[string]interface{}{"name": "New Name"}
 	b, _ := json.Marshal(body)
 	req, _ := http.NewRequest("PATCH", "/workspaces/"+wsID, bytes.NewReader(b))
 	req.Header.Set("Content-Type", "application/json")
 	w := httptest.NewRecorder()
-	r.ServeHTTP(w, req)
+	r2.ServeHTTP(w, req)

 	if w.Code != http.StatusNotFound {
 		t.Errorf("expected 404, got %d: %s", w.Code, w.Body.String())
@@ -231,78 +245,163 @@ func TestUpdate_WorkspaceNotFound(t *testing.T) {
 }

 func TestUpdate_NameTooLong(t *testing.T) {
+	_, _ = setupWorkspaceCrudTest(t)
+	h := newWorkspaceCrudHandler(t)
+	r2 := gin.New()
+	r2.PATCH("/workspaces/:id", h.Update)
+
 	longName := make([]byte, 256)
 	for i := range longName {
 		longName[i] = 'x'
 	}
-	err := validateWorkspaceFields(string(longName), "", "", "")
-	if err == nil {
-		t.Error("expected error for name > 255 chars")
+	body := map[string]interface{}{"name": string(longName)}
+	b, _ := json.Marshal(body)
+	req, _ := http.NewRequest("PATCH", "/workspaces/aaaaaaaa-aaaa-aaaa-aaaa-aaaaaaaaaaaa", bytes.NewReader(b))
+	req.Header.Set("Content-Type", "application/json")
+	w := httptest.NewRecorder()
+	r2.ServeHTTP(w, req)
+
+	if w.Code != http.StatusBadRequest {
+		t.Errorf("expected 400 for name too long, got %d: %s", w.Code, w.Body.String())
 	}
 }

 func TestUpdate_RoleTooLong(t *testing.T) {
+	_, _ = setupWorkspaceCrudTest(t)
+	h := newWorkspaceCrudHandler(t)
+	r2 := gin.New()
+	r2.PATCH("/workspaces/:id", h.Update)
+
 	longRole := make([]byte, 1001)
 	for i := range longRole {
 		longRole[i] = 'x'
 	}
-	err := validateWorkspaceFields("", string(longRole), "", "")
-	if err == nil {
-		t.Error("expected error for role > 1000 chars")
+	body := map[string]interface{}{"role": string(longRole)}
+	b, _ := json.Marshal(body)
+	req, _ := http.NewRequest("PATCH", "/workspaces/aaaaaaaa-aaaa-aaaa-aaaa-aaaaaaaaaaaa", bytes.NewReader(b))
+	req.Header.Set("Content-Type", "application/json")
+	w := httptest.NewRecorder()
+	r2.ServeHTTP(w, req)
+
+	if w.Code != http.StatusBadRequest {
+		t.Errorf("expected 400 for role too long, got %d: %s", w.Code, w.Body.String())
 	}
 }

 func TestUpdate_NameWithNewline(t *testing.T) {
-	err := validateWorkspaceFields("Name\nwith newline", "", "", "")
-	if err == nil {
-		t.Error("expected error for newline in name")
+	_, _ = setupWorkspaceCrudTest(t)
+	h := newWorkspaceCrudHandler(t)
+	r2 := gin.New()
+	r2.PATCH("/workspaces/:id", h.Update)
+
+	body := map[string]interface{}{"name": "Name\nwith newline"}
+	b, _ := json.Marshal(body)
+	req, _ := http.NewRequest("PATCH", "/workspaces/aaaaaaaa-aaaa-aaaa-aaaa-aaaaaaaaaaaa", bytes.NewReader(b))
+	req.Header.Set("Content-Type", "application/json")
+	w := httptest.NewRecorder()
+	r2.ServeHTTP(w, req)
+
+	if w.Code != http.StatusBadRequest {
+		t.Errorf("expected 400 for newline in name, got %d: %s", w.Code, w.Body.String())
 	}
 }

 func TestUpdate_NameWithYAMLSpecialChars(t *testing.T) {
-	for _, ch := range "{}[]|>*&!" {
-		err := validateWorkspaceFields("namewith"+string(ch), "", "", "")
-		if err == nil {
-			t.Errorf("expected error for YAML special char %c in name", ch)
-		}
+	_, _ = setupWorkspaceCrudTest(t)
+	h := newWorkspaceCrudHandler(t)
+	r2 := gin.New()
+	r2.PATCH("/workspaces/:id", h.Update)
+
+	body := map[string]interface{}{"name": "Name with [brackets]"}
+	b, _ := json.Marshal(body)
+	req, _ := http.NewRequest("PATCH", "/workspaces/aaaaaaaa-aaaa-aaaa-aaaa-aaaaaaaaaaaa", bytes.NewReader(b))
+	req.Header.Set("Content-Type", "application/json")
+	w := httptest.NewRecorder()
+	r2.ServeHTTP(w, req)
+
+	if w.Code != http.StatusBadRequest {
+		t.Errorf("expected 400 for YAML special chars in name, got %d: %s", w.Code, w.Body.String())
 	}
 }

 func TestUpdate_WorkspaceDirSystemPath(t *testing.T) {
-	err := validateWorkspaceDir("/etc/my-workspace")
-	if err == nil {
-		t.Error("expected error for /etc/ system path in workspace_dir")
+	_, _ = setupWorkspaceCrudTest(t)
+	h := newWorkspaceCrudHandler(t)
+	r2 := gin.New()
+	r2.PATCH("/workspaces/:id", h.Update)
+
+	body := map[string]interface{}{"workspace_dir": "/etc/my-workspace"}
+	b, _ := json.Marshal(body)
+	req, _ := http.NewRequest("PATCH", "/workspaces/aaaaaaaa-aaaa-aaaa-aaaa-aaaaaaaaaaaa", bytes.NewReader(b))
+	req.Header.Set("Content-Type", "application/json")
+	w := httptest.NewRecorder()
+	r2.ServeHTTP(w, req)
+
+	if w.Code != http.StatusBadRequest {
+		t.Errorf("expected 400 for system path workspace_dir, got %d: %s", w.Code, w.Body.String())
 	}
 }

 func TestUpdate_WorkspaceDirTraversal(t *testing.T) {
-	err := validateWorkspaceDir("/workspace/../../../etc")
-	if err == nil {
-		t.Error("expected error for traversal in workspace_dir")
+	_, _ = setupWorkspaceCrudTest(t)
+	h := newWorkspaceCrudHandler(t)
+	r2 := gin.New()
+	r2.PATCH("/workspaces/:id", h.Update)
+
+	body := map[string]interface{}{"workspace_dir": "/workspace/../../../etc"}
+	b, _ := json.Marshal(body)
+	req, _ := http.NewRequest("PATCH", "/workspaces/aaaaaaaa-aaaa-aaaa-aaaa-aaaaaaaaaaaa", bytes.NewReader(b))
+	req.Header.Set("Content-Type", "application/json")
+	w := httptest.NewRecorder()
+	r2.ServeHTTP(w, req)
+
+	if w.Code != http.StatusBadRequest {
+		t.Errorf("expected 400 for traversal in workspace_dir, got %d: %s", w.Code, w.Body.String())
 	}
 }

 func TestUpdate_WorkspaceDirRelativePath(t *testing.T) {
-	err := validateWorkspaceDir("relative/path")
-	if err == nil {
-		t.Error("expected error for relative workspace_dir")
+	_, _ = setupWorkspaceCrudTest(t)
+	h := newWorkspaceCrudHandler(t)
+	r2 := gin.New()
+	r2.PATCH("/workspaces/:id", h.Update)
+
+	body := map[string]interface{}{"workspace_dir": "relative/path"}
+	b, _ := json.Marshal(body)
+	req, _ := http.NewRequest("PATCH", "/workspaces/aaaaaaaa-aaaa-aaaa-aaaa-aaaaaaaaaaaa", bytes.NewReader(b))
+	req.Header.Set("Content-Type", "application/json")
+	w := httptest.NewRecorder()
+	r2.ServeHTTP(w, req)
+
+	if w.Code != http.StatusBadRequest {
+		t.Errorf("expected 400 for relative workspace_dir, got %d: %s", w.Code, w.Body.String())
 	}
 }

 // ---------- Delete ----------

 func TestDelete_InvalidUUID(t *testing.T) {
-	err := validateWorkspaceID("not-a-uuid")
-	if err == nil {
-		t.Error("expected error for invalid UUID in DELETE path")
+	_, _ = setupWorkspaceCrudTest(t)
+	h := newWorkspaceCrudHandler(t)
+	r2 := gin.New()
+	r2.DELETE("/workspaces/:id", h.Delete)
+
+	req, _ := http.NewRequest("DELETE", "/workspaces/not-a-uuid", nil)
+	w := httptest.NewRecorder()
+	r2.ServeHTTP(w, req)
+
+	if w.Code != http.StatusBadRequest {
+		t.Errorf("expected 400, got %d: %s", w.Code, w.Body.String())
 	}
 }

 func TestDelete_HasChildrenWithoutConfirm(t *testing.T) {
-	wsID := "aaaaaaaa-aaaa-aaaa-aaaa-aaaaaaaaaaaa"
-	mock, r := setupWorkspaceCrudTest(t)
+	mock, _ := setupWorkspaceCrudTest(t)
 	h := newWorkspaceCrudHandler(t)
-	r.DELETE("/workspaces/:id", h.Delete)
+	r2 := gin.New()
+	r2.DELETE("/workspaces/:id", h.Delete)
+
+	wsID := "aaaaaaaa-aaaa-aaaa-aaaa-aaaaaaaaaaaa"

 	mock.ExpectQuery(`SELECT id, name FROM workspaces WHERE parent_id = \$1 AND status != 'removed'`).
 		WithArgs(wsID).
@@ -312,7 +411,7 @@ func TestDelete_HasChildrenWithoutConfirm(t *testing.T) {
 	req, _ := http.NewRequest("DELETE", "/workspaces/"+wsID, nil)
 	// No ?confirm=true
 	w := httptest.NewRecorder()
-	r.ServeHTTP(w, req)
+	r2.ServeHTTP(w, req)

 	if w.Code != http.StatusConflict {
 		t.Errorf("expected 409, got %d: %s", w.Code, w.Body.String())
@@ -331,10 +430,12 @@ func TestDelete_HasChildrenWithoutConfirm(t *testing.T) {
 }

 func TestDelete_ChildrenCheckQueryError(t *testing.T) {
-	wsID := "aaaaaaaa-aaaa-aaaa-aaaa-aaaaaaaaaaaa"
-	mock, r := setupWorkspaceCrudTest(t)
+	mock, _ := setupWorkspaceCrudTest(t)
 	h := newWorkspaceCrudHandler(t)
-	r.DELETE("/workspaces/:id", h.Delete)
+	r2 := gin.New()
+	r2.DELETE("/workspaces/:id", h.Delete)
+
+	wsID := "aaaaaaaa-aaaa-aaaa-aaaa-aaaaaaaaaaaa"

 	mock.ExpectQuery(`SELECT id, name FROM workspaces WHERE parent_id = \$1 AND status != 'removed'`).
 		WithArgs(wsID).
@@ -342,7 +443,7 @@ func TestDelete_ChildrenCheckQueryError(t *testing.T) {

 	req, _ := http.NewRequest("DELETE", "/workspaces/"+wsID, nil)
 	w := httptest.NewRecorder()
-	r.ServeHTTP(w, req)
+	r2.ServeHTTP(w, req)

 	if w.Code != http.StatusInternalServerError {
 		t.Errorf("expected 500, got %d", w.Code)
@@ -1,167 +0,0 @@
-package handlers
-
-import (
-	"testing"
-)
-
-// ── validateWorkspaceDir ───────────────────────────────────────────────────────
-
-func TestValidateWorkspaceDir_RelativeRejected(t *testing.T) {
-	cases := []string{
-		"relative/path",
-		"./myworkspace",
-		"~/workspaces/dev",
-	}
-	for _, dir := range cases {
-		t.Run(dir, func(t *testing.T) {
-			if err := validateWorkspaceDir(dir); err == nil {
-				t.Errorf("validateWorkspaceDir(%q): expected error (relative path), got nil", dir)
-			}
-		})
-	}
-}
-
-func TestValidateWorkspaceDir_TraversalRejected(t *testing.T) {
-	cases := []string{
-		"/opt/molecule/../../../etc",
-		"/workspaces/dev/../../root",
-		"/opt/../opt/../etc",
-	}
-	for _, dir := range cases {
-		t.Run(dir, func(t *testing.T) {
-			if err := validateWorkspaceDir(dir); err == nil {
-				t.Errorf("validateWorkspaceDir(%q): expected error (traversal), got nil", dir)
-			}
-		})
-	}
-}
-
-func TestValidateWorkspaceDir_SystemPathsRejected(t *testing.T) {
-	cases := []string{
-		"/etc",
-		"/etc/molecule",
-		"/var",
-		"/var/log",
-		"/proc",
-		"/proc/self",
-		"/sys",
-		"/sys/kernel",
-		"/dev",
-		"/dev/null",
-		"/boot",
-		"/sbin",
-		"/bin",
-		"/lib",
-		"/usr",
-		"/usr/local",
-	}
-	for _, dir := range cases {
-		t.Run(dir, func(t *testing.T) {
-			if err := validateWorkspaceDir(dir); err == nil {
-				t.Errorf("validateWorkspaceDir(%q): expected error (system path), got nil", dir)
-			}
-		})
-	}
-}
-
-func TestValidateWorkspaceDir_PrefixMatchesBlocked(t *testing.T) {
-	// The blocklist checks prefix so /etc/foo must also be rejected.
-	cases := []string{
-		"/etc/molecule-config",
-		"/var/log/workspace",
-		"/usr/local/bin",
-		"/usr/bin/molecule",
-	}
-	for _, dir := range cases {
-		t.Run(dir, func(t *testing.T) {
-			if err := validateWorkspaceDir(dir); err == nil {
-				t.Errorf("validateWorkspaceDir(%q): expected error (prefix of blocked path), got nil", dir)
-			}
-		})
-	}
-}
-
-// ── validateWorkspaceFields ────────────────────────────────────────────────────
-
-func TestValidateWorkspaceFields_AllEmpty(t *testing.T) {
-	// All empty → valid (creation uses defaults; empty is allowed)
-	if err := validateWorkspaceFields("", "", "", ""); err != nil {
-		t.Errorf("validateWorkspaceFields with all empty: expected nil, got %v", err)
-	}
-}
-
-func TestValidateWorkspaceFields_ModelTooLong(t *testing.T) {
-	longModel := make([]byte, 101)
-	for i := range longModel {
-		longModel[i] = 'x'
-	}
-	if err := validateWorkspaceFields("", "", string(longModel), ""); err == nil {
-		t.Error("model > 100 chars: expected error, got nil")
-	}
-}
-
-func TestValidateWorkspaceFields_RuntimeTooLong(t *testing.T) {
-	longRuntime := make([]byte, 101)
-	for i := range longRuntime {
-		longRuntime[i] = 'x'
-	}
-	if err := validateWorkspaceFields("", "", "", string(longRuntime)); err == nil {
-		t.Error("runtime > 100 chars: expected error, got nil")
-	}
-}
-
-func TestValidateWorkspaceFields_CRLFInRole(t *testing.T) {
-	if err := validateWorkspaceFields("", "Backend\r\nEngineer", "", ""); err == nil {
-		t.Error("role with \\r\\n: expected error, got nil")
-	}
-}
-
-func TestValidateWorkspaceFields_NewlineInModel(t *testing.T) {
-	if err := validateWorkspaceFields("", "", "gpt-\n4o", ""); err == nil {
-		t.Error("model with \\n: expected error, got nil")
-	}
-}
-
-func TestValidateWorkspaceFields_NewlineInRuntime(t *testing.T) {
-	if err := validateWorkspaceFields("", "", "", "lang\rgraph"); err == nil {
-		t.Error("runtime with \\r: expected error, got nil")
-	}
-}
-
-func TestValidateWorkspaceFields_YAMLSpecialChars(t *testing.T) {
-	// yamlSpecialChars = "{}[]|>*&!"
-	// These must be rejected in name and role.
-	dangerous := []string{
-		"Workspace{evil}",
-		"Workspace[evil]",
-		"Workspace]evil[",
-		"Workspace|evil",
-		"Workspace>evil",
-		"Workspace*evil",
-		"Workspace&evil",
-		"Workspace!evil",
-		"Name{}",
-		"Role[]",
-	}
-	for _, v := range dangerous {
-		t.Run(v, func(t *testing.T) {
-			if err := validateWorkspaceFields(v, "", "", ""); err == nil {
-				t.Errorf("name %q: expected error (YAML special char), got nil", v)
-			}
-		})
-	}
-}
-
-func TestValidateWorkspaceFields_YAMLCharsAllowedInModelRuntime(t *testing.T) {
-	// YAML special chars are only blocked in name/role, not model/runtime.
-	if err := validateWorkspaceFields("", "", "model{}[]", "runtime*&!"); err != nil {
-		t.Errorf("model/runtime with YAML chars: expected nil, got %v", err)
-	}
-}
-
-func TestValidateWorkspaceFields_YAMLCharsAllowedInEmptyName(t *testing.T) {
-	// Empty name is fine; YAML char restriction is only on non-empty values.
-	if err := validateWorkspaceFields("", "Backend Engineer", "", ""); err != nil {
-		t.Errorf("empty name with valid role: expected nil, got %v", err)
-	}
-}
@@ -111,11 +111,11 @@ func (h *WorkspaceHandler) provisionWorkspaceAuto(workspaceID, templatePath stri
 		"sync":         false,
 	})
 	if h.cpProv != nil {
-		h.goAsync(func() { h.provisionWorkspaceCP(workspaceID, templatePath, configFiles, payload) })
+		go h.provisionWorkspaceCP(workspaceID, templatePath, configFiles, payload)
 		return true
 	}
 	if h.provisioner != nil {
-		h.goAsync(func() { h.provisionWorkspace(workspaceID, templatePath, configFiles, payload) })
+		go h.provisionWorkspace(workspaceID, templatePath, configFiles, payload)
 		return true
 	}
 	// No backend wired — mark failed so the workspace doesn't linger in
@@ -275,13 +275,13 @@ func (h *WorkspaceHandler) RestartWorkspaceAutoOpts(ctx context.Context, workspa
 	if h.cpProv != nil {
 		h.cpStopWithRetry(ctx, workspaceID, "RestartWorkspaceAuto")
 		// resetClaudeSession is Docker-only — CP has no session state to clear.
-		h.goAsync(func() { h.provisionWorkspaceCP(workspaceID, templatePath, configFiles, payload) })
+		go h.provisionWorkspaceCP(workspaceID, templatePath, configFiles, payload)
 		return true
 	}
 	if h.provisioner != nil {
 		// Docker.Stop has no retry — see docstring rationale.
 		h.provisioner.Stop(ctx, workspaceID)
-		h.goAsync(func() { h.provisionWorkspaceOpts(workspaceID, templatePath, configFiles, payload, resetClaudeSession) })
+		go h.provisionWorkspaceOpts(workspaceID, templatePath, configFiles, payload, resetClaudeSession)
 		return true
 	}
 	// No backend wired — same shape as provisionWorkspaceAuto's no-backend
@@ -1,165 +0,0 @@
-package handlers
-
-import (
-	"context"
-	"database/sql"
-	"testing"
-
-	"github.com/DATA-DOG/go-sqlmock"
-	"github.com/Molecule-AI/molecule-monorepo/platform/internal/models"
-)
-
-// ==================== resolveDeliveryMode ====================
-// Covers workspace_dispatchers.go / registry.go:resolveDeliveryMode
-
-func TestResolveDeliveryMode_PayloadModeWins(t *testing.T) {
-	mock := setupTestDB(t)
-	setupTestRedis(t)
-	broadcaster := newTestBroadcaster()
-	h := NewRegistryHandler(broadcaster)
-
-	ctx := context.Background()
-	for _, mode := range []string{models.DeliveryModePush, models.DeliveryModePoll} {
-		got, err := h.resolveDeliveryMode(ctx, "ws-any-id", mode)
-		if err != nil {
-			t.Errorf("resolveDeliveryMode(payloadMode=%q) unexpected error: %v", mode, err)
-		}
-		if got != mode {
-			t.Errorf("resolveDeliveryMode(payloadMode=%q) = %q, want %q", mode, got, mode)
-		}
-	}
-
-	// DB must NOT have been queried when payloadMode is set.
-	if err := mock.ExpectationsWereMet(); err != nil {
-		t.Errorf("DB expectations not met: %v", err)
-	}
-}
-
-func TestResolveDeliveryMode_ExistingDeliveryMode(t *testing.T) {
-	mock := setupTestDB(t)
-	setupTestRedis(t)
-	broadcaster := newTestBroadcaster()
-	h := NewRegistryHandler(broadcaster)
-
-	// Workspace row has existing delivery_mode = "poll"
-	mock.ExpectQuery("SELECT delivery_mode, runtime FROM workspaces").
-		WithArgs("ws-poll").
-		WillReturnRows(sqlmock.NewRows([]string{"delivery_mode", "runtime"}).
-			AddRow("poll", "langgraph"))
-
-	ctx := context.Background()
-	got, err := h.resolveDeliveryMode(ctx, "ws-poll", "")
-	if err != nil {
-		t.Errorf("resolveDeliveryMode() unexpected error: %v", err)
-	}
-	if got != models.DeliveryModePoll {
-		t.Errorf("resolveDeliveryMode() = %q, want %q", got, models.DeliveryModePoll)
-	}
-}
-
-func TestResolveDeliveryMode_ExternalRuntime_DefaultsToPoll(t *testing.T) {
-	mock := setupTestDB(t)
-	setupTestRedis(t)
-	broadcaster := newTestBroadcaster()
-	h := NewRegistryHandler(broadcaster)
-
-	// Row exists but delivery_mode is NULL; runtime = "external"
-	mock.ExpectQuery("SELECT delivery_mode, runtime FROM workspaces").
-		WithArgs("ws-external").
-		WillReturnRows(sqlmock.NewRows([]string{"delivery_mode", "runtime"}).
-			AddRow(nil, "external"))
-
-	ctx := context.Background()
-	got, err := h.resolveDeliveryMode(ctx, "ws-external", "")
-	if err != nil {
-		t.Errorf("resolveDeliveryMode() unexpected error: %v", err)
-	}
-	if got != models.DeliveryModePoll {
-		t.Errorf("resolveDeliveryMode() = %q, want %q (external runtime)", got, models.DeliveryModePoll)
-	}
-}
-
-func TestResolveDeliveryMode_SelfHosted_DefaultsToPush(t *testing.T) {
-	mock := setupTestDB(t)
-	setupTestRedis(t)
-	broadcaster := newTestBroadcaster()
-	h := NewRegistryHandler(broadcaster)
-
-	// Row exists; delivery_mode is NULL; runtime = "langgraph"
-	mock.ExpectQuery("SELECT delivery_mode, runtime FROM workspaces").
-		WithArgs("ws-self-hosted").
-		WillReturnRows(sqlmock.NewRows([]string{"delivery_mode", "runtime"}).
-			AddRow(nil, "langgraph"))
-
-	ctx := context.Background()
-	got, err := h.resolveDeliveryMode(ctx, "ws-self-hosted", "")
-	if err != nil {
-		t.Errorf("resolveDeliveryMode() unexpected error: %v", err)
-	}
-	if got != models.DeliveryModePush {
-		t.Errorf("resolveDeliveryMode() = %q, want %q (self-hosted default)", got, models.DeliveryModePush)
-	}
-}
-
-func TestResolveDeliveryMode_NotFound_DefaultsToPush(t *testing.T) {
-	mock := setupTestDB(t)
-	setupTestRedis(t)
-	broadcaster := newTestBroadcaster()
-	h := NewRegistryHandler(broadcaster)
-
-	// Row not found → sql.ErrNoRows → default push
-	mock.ExpectQuery("SELECT delivery_mode, runtime FROM workspaces").
-		WithArgs("ws-nonexistent").
-		WillReturnError(sql.ErrNoRows)
-
-	ctx := context.Background()
-	got, err := h.resolveDeliveryMode(ctx, "ws-nonexistent", "")
-	if err != nil {
-		t.Errorf("resolveDeliveryMode() unexpected error on no-rows: %v", err)
-	}
-	if got != models.DeliveryModePush {
-		t.Errorf("resolveDeliveryMode() = %q, want %q (not-found default)", got, models.DeliveryModePush)
-	}
-}
-
-func TestResolveDeliveryMode_DBError_Propagated(t *testing.T) {
-	mock := setupTestDB(t)
-	setupTestRedis(t)
-	broadcaster := newTestBroadcaster()
-	h := NewRegistryHandler(broadcaster)
-
-	mock.ExpectQuery("SELECT delivery_mode, runtime FROM workspaces").
-		WithArgs("ws-error").
-		WillReturnError(context.DeadlineExceeded)
-
-	ctx := context.Background()
-	_, err := h.resolveDeliveryMode(ctx, "ws-error", "")
-	if err == nil {
-		t.Errorf("resolveDeliveryMode() expected error, got nil")
-	}
-}
-
-func TestResolveDeliveryMode_ExistingDeliveryModeEmptyString(t *testing.T) {
-	// When the DB returns an empty (non-NULL) string for delivery_mode,
-	// it falls through to the runtime check (not the existing.Valid path).
-	mock := setupTestDB(t)
-	setupTestRedis(t)
-	broadcaster := newTestBroadcaster()
-	h := NewRegistryHandler(broadcaster)
-
-	// delivery_mode is explicitly empty string (not NULL), runtime = "langgraph"
-	// → falls through to runtime check → "push" for non-external
-	mock.ExpectQuery("SELECT delivery_mode, runtime FROM workspaces").
-		WithArgs("ws-empty-mode").
-		WillReturnRows(sqlmock.NewRows([]string{"delivery_mode", "runtime"}).
-			AddRow("", "langgraph"))
-
-	ctx := context.Background()
-	got, err := h.resolveDeliveryMode(ctx, "ws-empty-mode", "")
-	if err != nil {
-		t.Errorf("resolveDeliveryMode() unexpected error: %v", err)
-	}
-	if got != models.DeliveryModePush {
-		t.Errorf("resolveDeliveryMode() = %q, want %q", got, models.DeliveryModePush)
-	}
-}
@@ -258,7 +258,7 @@ func (h *WorkspaceHandler) buildProvisionerConfig(
 	// present) wins, matching the existing WorkspaceDir precedence.
 	workspacePath := payload.WorkspaceDir
 	workspaceAccess := payload.WorkspaceAccess
-	if (workspacePath == "" || workspaceAccess == "") && db.DB != nil {
+	if workspacePath == "" || workspaceAccess == "" {
 		var dbDir, dbAccess string
 		if err := db.DB.QueryRow(
 			`SELECT COALESCE(workspace_dir, ''), COALESCE(workspace_access, 'none') FROM workspaces WHERE id = $1`,
@@ -805,9 +805,6 @@ func loadWorkspaceSecrets(ctx context.Context, workspaceID string) (map[string]s
 				envVars[k] = string(decrypted)
 			}
 		}
-		if err := globalRows.Err(); err != nil {
-			log.Printf("Provisioner: global_secrets rows.Err workspace=%s: %v", workspaceID, err)
-		}
 	}
 	wsRows, err := db.DB.QueryContext(ctx,
 		`SELECT key, encrypted_value, encryption_version FROM workspace_secrets WHERE workspace_id = $1`, workspaceID)
@@ -826,9 +823,6 @@ func loadWorkspaceSecrets(ctx context.Context, workspaceID string) (map[string]s
 				envVars[k] = string(decrypted)
 			}
 		}
-		if err := wsRows.Err(); err != nil {
-			log.Printf("Provisioner: workspace_secrets rows.Err workspace=%s: %v", workspaceID, err)
-		}
 	}
 	return envVars, ""
 }
@@ -237,10 +237,10 @@ func (h *WorkspaceHandler) Restart(c *gin.Context) {
 	// the silent-drop bugs PRs #2811/#2824 closed). RestartWorkspaceAuto
 	// enforces CP-FIRST ordering matching the other dispatchers — see
 	// docs/architecture/backends.md.
-	h.goAsync(func() {
+	go func() {
 		h.RestartWorkspaceAutoOpts(context.Background(), id, templatePath, configFiles, payload, resetClaudeSession)
-	})
-	h.goAsync(func() { h.sendRestartContext(id, restartData) })
+	}()
+	go h.sendRestartContext(id, restartData)

 	c.JSON(http.StatusOK, gin.H{"status": "provisioning", "config_dir": configLabel, "reset_session": resetClaudeSession})
 }
@@ -610,9 +610,7 @@ func (h *WorkspaceHandler) runRestartCycle(workspaceID string) {
 	h.provisionWorkspaceAutoSync(workspaceID, "", nil, payload)
 	// sendRestartContext is a one-way notification to the new container; safe
 	// to fire async — the next restart cycle won't depend on it completing.
-	// Tracked via goAsync so the test harness can drain it before the
-	// global db.DB swap (sendRestartContext reads db.DB).
-	h.goAsync(func() { h.sendRestartContext(workspaceID, restartData) })
+	go h.sendRestartContext(workspaceID, restartData)
 }

 // Pause handles POST /workspaces/:id/pause
@@ -29,7 +29,6 @@ func TestWorkspaceGet_Success(t *testing.T) {
 		"parent_id", "active_tasks", "max_concurrent_tasks", "last_error_rate", "last_sample_error",
 		"uptime_seconds", "current_task", "runtime", "workspace_dir", "x", "y", "collapsed",
 		"budget_limit", "monthly_spend",
-		"broadcast_enabled", "talk_to_user_enabled",
 	}
 	mock.ExpectQuery("SELECT w.id, w.name").
 		WithArgs("cccccccc-0001-0000-0000-000000000000").
@@ -37,7 +36,7 @@ func TestWorkspaceGet_Success(t *testing.T) {
 			AddRow("cccccccc-0001-0000-0000-000000000000", "My Agent", "worker", 1, "online", []byte(`{"name":"test"}`),
 				"http://localhost:8001", nil, 2, 1, 0.05, "", 3600, "working", "langgraph",
 				"", 10.0, 20.0, false,
-				nil, 0, false, true))
+				nil, 0))

 	w := httptest.NewRecorder()
 	c, _ := gin.CreateTestContext(w)
@@ -119,7 +118,6 @@ func TestWorkspaceGet_RemovedReturns410(t *testing.T) {
 		"parent_id", "active_tasks", "max_concurrent_tasks", "last_error_rate", "last_sample_error",
 		"uptime_seconds", "current_task", "runtime", "workspace_dir", "x", "y", "collapsed",
 		"budget_limit", "monthly_spend",
-		"broadcast_enabled", "talk_to_user_enabled",
 	}
 	mock.ExpectQuery("SELECT w.id, w.name").
 		WithArgs(id).
@@ -127,7 +125,7 @@ func TestWorkspaceGet_RemovedReturns410(t *testing.T) {
 			AddRow(id, "Old Agent", "worker", 1, string(models.StatusRemoved), []byte(`null`),
 				"", nil, 0, 1, 0.0, "", 0, "", "langgraph",
 				"", 0.0, 0.0, false,
-				nil, 0, false, true))
+				nil, 0))
 	mock.ExpectQuery(`SELECT updated_at FROM workspaces`).
 		WithArgs(id).
 		WillReturnRows(sqlmock.NewRows([]string{"updated_at"}).AddRow(removedAt))
@@ -183,7 +181,6 @@ func TestWorkspaceGet_RemovedReturns410WithNullRemovedAtOnTimestampFetchFailure(
 		"parent_id", "active_tasks", "max_concurrent_tasks", "last_error_rate", "last_sample_error",
 		"uptime_seconds", "current_task", "runtime", "workspace_dir", "x", "y", "collapsed",
 		"budget_limit", "monthly_spend",
-		"broadcast_enabled", "talk_to_user_enabled",
 	}
 	mock.ExpectQuery("SELECT w.id, w.name").
 		WithArgs(id).
@@ -191,7 +188,7 @@ func TestWorkspaceGet_RemovedReturns410WithNullRemovedAtOnTimestampFetchFailure(
 			AddRow(id, "Vanished", "worker", 1, string(models.StatusRemoved), []byte(`null`),
 				"", nil, 0, 1, 0.0, "", 0, "", "langgraph",
 				"", 0.0, 0.0, false,
-				nil, 0, false, true))
+				nil, 0))
 	// Simulate the row vanishing between the two queries.
 	mock.ExpectQuery(`SELECT updated_at FROM workspaces`).
 		WithArgs(id).
@@ -246,7 +243,6 @@ func TestWorkspaceGet_RemovedWithIncludeQueryReturns200(t *testing.T) {
 		"parent_id", "active_tasks", "max_concurrent_tasks", "last_error_rate", "last_sample_error",
 		"uptime_seconds", "current_task", "runtime", "workspace_dir", "x", "y", "collapsed",
 		"budget_limit", "monthly_spend",
-		"broadcast_enabled", "talk_to_user_enabled",
 	}
 	mock.ExpectQuery("SELECT w.id, w.name").
 		WithArgs(id).
@@ -254,7 +250,7 @@ func TestWorkspaceGet_RemovedWithIncludeQueryReturns200(t *testing.T) {
 			AddRow(id, "Audit Agent", "worker", 1, string(models.StatusRemoved), []byte(`null`),
 				"", nil, 0, 1, 0.0, "", 0, "", "langgraph",
 				"", 0.0, 0.0, false,
-				nil, 0, false, true))
+				nil, 0))
 	// last_outbound_at follow-up query (existing path)
 	mock.ExpectQuery(`SELECT last_outbound_at FROM workspaces`).
 		WithArgs(id).
@@ -680,7 +676,6 @@ func TestWorkspaceList_Empty(t *testing.T) {
 			"parent_id", "active_tasks", "last_error_rate", "last_sample_error",
 			"uptime_seconds", "current_task", "runtime", "workspace_dir", "x", "y", "collapsed",
 			"budget_limit", "monthly_spend",
-		"broadcast_enabled", "talk_to_user_enabled",
 		}))

 	w := httptest.NewRecorder()
@@ -1384,7 +1379,6 @@ func TestWorkspaceGet_FinancialFieldsStripped(t *testing.T) {
 		"parent_id", "active_tasks", "max_concurrent_tasks", "last_error_rate", "last_sample_error",
 		"uptime_seconds", "current_task", "runtime", "workspace_dir", "x", "y", "collapsed",
 		"budget_limit", "monthly_spend",
-		"broadcast_enabled", "talk_to_user_enabled",
 	}
 	// Populate with non-zero financial values to confirm they are stripped.
 	mock.ExpectQuery("SELECT w.id, w.name").
@@ -1393,7 +1387,7 @@ func TestWorkspaceGet_FinancialFieldsStripped(t *testing.T) {
 			AddRow("cccccccc-0010-0000-0000-000000000000", "Finance Test", "worker", 1, "online", []byte(`{}`),
 				"http://localhost:9001", nil, 0, 1, 0.0, "", 0, "", "langgraph",
 				"", 0.0, 0.0, false,
-				int64(50000), int64(12500), false, true)) // budget_limit=500 USD, spend=125 USD
+				int64(50000), int64(12500))) // budget_limit=500 USD, spend=125 USD

 	w := httptest.NewRecorder()
 	c, _ := gin.CreateTestContext(w)
@@ -1441,7 +1435,6 @@ func TestWorkspaceGet_SensitiveFieldsStripped(t *testing.T) {
 		"parent_id", "active_tasks", "max_concurrent_tasks", "last_error_rate", "last_sample_error",
 		"uptime_seconds", "current_task", "runtime", "workspace_dir", "x", "y", "collapsed",
 		"budget_limit", "monthly_spend",
-		"broadcast_enabled", "talk_to_user_enabled",
 	}
 	mock.ExpectQuery("SELECT w.id, w.name").
 		WithArgs("cccccccc-0955-0000-0000-000000000000").
@@ -1454,7 +1447,7 @@ func TestWorkspaceGet_SensitiveFieldsStripped(t *testing.T) {
 				"langgraph",
 				"/home/user/secret-projects/client-work",
 				0.0, 0.0, false,
-				nil, 0, false, true))
+				nil, 0))

 	w := httptest.NewRecorder()
 	c, _ := gin.CreateTestContext(w)
--- a/Show More
+++ b/Show More