Exécutez n'importe quel Skill dans Manus
en un clic

Exécutez n'importe quel Skill dans Manus en un clic

$pwd:

sandbox-lifecycle-debug

Name: Sandbox Lifecycle Debug
Author: vercel-labs

// Sandbox lifecycle debugging for vercel-openclaw: create, resume, stop, snapshotting, reset, stale-running reconciliation, persistent Sandbox v2 behavior, hot spares, and lifecycle locks. Use when sandbox state transitions, status polling, stop/resume, reset, or lifecycle recovery is wrong.

Exécuter dans Manus

$ git log --oneline --stat

stars:112

forks:24

updated:9 mai 2026 à 21:35

SKILL.md

readonly

name	sandbox-lifecycle-debug
description	Sandbox lifecycle debugging for vercel-openclaw: create, resume, stop, snapshotting, reset, stale-running reconciliation, persistent Sandbox v2 behavior, hot spares, and lifecycle locks. Use when sandbox state transitions, status polling, stop/resume, reset, or lifecycle recovery is wrong.

Sandbox Lifecycle Debug

Use this skill when the sandbox state machine is the primary suspect.

For Sandbox v2 truth-model work, also load sandbox-v2-lifecycle. Official Vercel Sandbox v2 docs override older repo guidance that treats manual snapshots as the normal restore source.

Start Here

Read lat.md/sandbox-lifecycle.md sections Status State Machine, Triggers -- What Causes State Transitions, and the specific trigger involved. Run lat locate "Sandbox Lifecycle" or lat search "sandbox lifecycle <symptom>" when unsure.

Collect before edits:

GET /api/status and any UI state that triggered the action.
GET /api/admin/sandbox-diag.
GET /api/admin/logs filtered for sandbox., gateway., watchdog., proxy..
Local git rev-parse HEAD, remote git ls-remote origin main, and live deployment proof.

Split The State

Report these separately:

metadata status in SingleMeta.status
Vercel Sandbox SDK status
gateway readiness on port 3000
persistent auto-saved state availability
manual snapshot/checkpoint availability when relevant
lifecycle lock and start lock state when visible
UI polling status

Do not use running as shorthand for gateway-ready or user-ready.

Common Paths

Admin ensure: /api/admin/ensure -> ensureSandboxRunning() / ensureSandboxReady().
Gateway request: auth -> ensureSandboxRunning() -> token refresh -> touchRunningSandbox() -> proxy.
Stop/auto-save: stopSandbox() -> cleanup -> cron persistence -> sandbox.stop({ blocking: false }) -> snapshotting host metadata while v2 persists state.
Status polling: GET /api/status -> stale running or snapshotting reconciliation.
Reset: resetSandbox() destroys active sandbox and snapshots, clears cron and token metadata.

Sandbox v2 Rules

Main OpenClaw sandbox is one named persistent sandbox.
Normal resume uses the persistent name and auto-saved state, not manual snapshotId.
Observation of stopped/snapshotting state must use resume:false.
Manual snapshot() is explicit/debug/checkpoint only and shuts the sandbox down.
Worker/debug sandboxes are short-lived and must use persistent:false.

Fix Boundaries

Primary: src/server/sandbox/lifecycle.ts, src/server/sandbox/controller.ts.
Routes: src/app/api/admin/{ensure,stop,snapshot,reset,status}/** and src/app/api/status/route.ts.
Tests: lifecycle and harness tests under src/server/sandbox/**.test.ts and src/test-utils/harness.
Docs: lat.md/sandbox-lifecycle.md, docs/lifecycle-and-restore.md.

Verification

Use the narrowest command that covers the path, then run the repo verifier when the change has broad lifecycle impact:

node scripts/verify.mjs --steps=test,typecheck
lat check

For live lifecycle incidents, include before/after /api/status, /api/admin/sandbox-diag, and relevant log events.

related-skills.json

même dépôt

sandbox-v2-lifecycle.md

from "vercel-labs/vercel-openclaw"

Vercel Sandbox v2 lifecycle expertise for vercel-openclaw: named persistent OpenClaw sandbox create/resume/stop/delete, persistent auto-save truth, manual snapshot diagnostics, short-lived worker sandboxes, hot spares, and SDK v2 semantics.

2026-05-09112

admin-ui-debug.md

from "vercel-labs/vercel-openclaw"

Admin UI and operator surface debugging for vercel-openclaw: command shell design, admin actions, request core, status panels, launch verification UI, channel readiness UI, and local read-only production-data workflows. Use when the root admin UI, controls, visual state, or operator copy is wrong.

2026-05-08112

auth-store-debug.md

from "vercel-labs/vercel-openclaw"

Auth and store debugging for vercel-openclaw: admin-secret mode, Sign in with Vercel, session cookies, CSRF, LOCAL_READ_ONLY, Redis vs memory store, keyspace namespacing, and metadata shape migrations. Use when login, route authorization, Redis persistence, or metadata state is suspect.

2026-05-08112

cron-watchdog-debug.md

from "vercel-labs/vercel-openclaw"

Cron and watchdog debugging for vercel-openclaw: Vercel Cron auth, persisted OpenClaw jobs, cron wake keys, token refresh, restore oracle, hot spare, and watchdog reports. Use when scheduled OpenClaw jobs fail to wake or run, watchdog status is wrong, cron persistence is suspect, or /api/cron/watchdog behavior changes.

2026-05-08112

firewall-ai-gateway-debug.md

from "vercel-labs/vercel-openclaw"

Firewall and Vercel AI Gateway debugging for vercel-openclaw: network policy allowlists, OIDC token refresh, AI Gateway transform rules, firewall learning/enforcement, and sandbox.update networkPolicy calls. Use when model calls, egress, token refresh, or firewall policy application fails.

2026-05-08112

gateway-proxy-debug.md

from "vercel-labs/vercel-openclaw"

Gateway and proxy debugging for vercel-openclaw: /gateway routing, HTML injection, WebSocket rewrite, gateway-token handoff, waiting page, status heartbeat, sandbox port URL cache, and proxy auth. Use when the OpenClaw UI, WebSockets, gateway proxying, or waiting-page flow breaks.

2026-05-08112

package.json

"author": "vercel-labs"

"repository": "vercel-labs/vercel-openclaw"

Ouvrir le dépôt GitHub Voir les dépôts du créateur

$ install --global

$ download --local

Exécuter dans Manus

$ useful --forSOC

Administrateurs de réseaux et de systèmes informatiquesProfessions informatiques et mathématiques15-1244L4

name	sandbox-lifecycle-debug
description	Sandbox lifecycle debugging for vercel-openclaw: create, resume, stop, snapshotting, reset, stale-running reconciliation, persistent Sandbox v2 behavior, hot spares, and lifecycle locks. Use when sandbox state transitions, status polling, stop/resume, reset, or lifecycle recovery is wrong.

Sandbox Lifecycle Debug

Use this skill when the sandbox state machine is the primary suspect.

For Sandbox v2 truth-model work, also load sandbox-v2-lifecycle. Official Vercel Sandbox v2 docs override older repo guidance that treats manual snapshots as the normal restore source.

Start Here

Collect before edits:

GET /api/status and any UI state that triggered the action.
GET /api/admin/sandbox-diag.
GET /api/admin/logs filtered for sandbox., gateway., watchdog., proxy..
Local git rev-parse HEAD, remote git ls-remote origin main, and live deployment proof.

Split The State

Report these separately:

metadata status in SingleMeta.status
Vercel Sandbox SDK status
gateway readiness on port 3000
persistent auto-saved state availability
manual snapshot/checkpoint availability when relevant
lifecycle lock and start lock state when visible
UI polling status

Do not use running as shorthand for gateway-ready or user-ready.

Common Paths

Admin ensure: /api/admin/ensure -> ensureSandboxRunning() / ensureSandboxReady().
Gateway request: auth -> ensureSandboxRunning() -> token refresh -> touchRunningSandbox() -> proxy.
Stop/auto-save: stopSandbox() -> cleanup -> cron persistence -> sandbox.stop({ blocking: false }) -> snapshotting host metadata while v2 persists state.
Status polling: GET /api/status -> stale running or snapshotting reconciliation.
Reset: resetSandbox() destroys active sandbox and snapshots, clears cron and token metadata.

Sandbox v2 Rules

Main OpenClaw sandbox is one named persistent sandbox.
Normal resume uses the persistent name and auto-saved state, not manual snapshotId.
Observation of stopped/snapshotting state must use resume:false.
Manual snapshot() is explicit/debug/checkpoint only and shuts the sandbox down.
Worker/debug sandboxes are short-lived and must use persistent:false.

Fix Boundaries

Primary: src/server/sandbox/lifecycle.ts, src/server/sandbox/controller.ts.
Routes: src/app/api/admin/{ensure,stop,snapshot,reset,status}/** and src/app/api/status/route.ts.
Tests: lifecycle and harness tests under src/server/sandbox/**.test.ts and src/test-utils/harness.
Docs: lat.md/sandbox-lifecycle.md, docs/lifecycle-and-restore.md.

Verification

Use the narrowest command that covers the path, then run the repo verifier when the change has broad lifecycle impact:

node scripts/verify.mjs --steps=test,typecheck
lat check

For live lifecycle incidents, include before/after /api/status, /api/admin/sandbox-diag, and relevant log events.

sandbox-lifecycle-debug

Sandbox Lifecycle Debug

Start Here

Split The State

Common Paths

Sandbox v2 Rules

Fix Boundaries

Verification

Plus depuis ce dépôt

Sandbox Lifecycle Debug

Start Here

Split The State

Common Paths

Sandbox v2 Rules

Fix Boundaries

Verification

Plus depuis ce dépôt