Use autoUpdate policy modes in CLI onboarding

[riderx]

What

• Update CLI onboarding config generation to write autoUpdate: \"atBackground\" by default and autoUpdate: \"always\" for instant updates.
• Update bundle upload delta recommendation logic to understand the new autoUpdate policy field while preserving legacy directUpdate compatibility.
• Refresh CLI help/docs wording for instant updates.

Why

• The updater plugin now merges auto-update and direct-update behavior into autoUpdate policy modes.
• New onboarding should emit the new config shape instead of adding directUpdate.

How

• Added a small updater config helper for instant-update detection.
• Updated init config generation, upload delta detection, CLI help text, webdocs, usage skill docs, and guardrail tests.

Testing

• bun run lint
• bun run build
• bun run test:init-guardrails
• bun run test:mcp
• bun run test:bundle
• Pre-commit hook: bun run cli:build && vue-tsc --noEmit

Not Tested

• Full bun run test suite was not run locally.

[coderabbitai]

Warning

Rate limit exceeded

@riderx has exceeded the limit for the number of commits that can be reviewed per hour. Please wait 1 minute and 59 seconds before requesting another review.

You’ve run out of usage credits. Purchase more in the billing tab.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: ASSERTIVE

Plan: Pro

Run ID: b5a4257f-5dda-4e33-b14d-9c1a4d1564c8

📥 Commits

Reviewing files that changed from the base of the PR and between cf9754c and 8e7d014.

📒 Files selected for processing (7)

• cli/skills/usage/SKILL.md
• cli/src/bundle/upload.ts
• cli/src/index.ts
• cli/src/init/command.ts
• cli/src/updaterConfig.ts
• cli/test/test-init-guardrails.mjs
• cli/webdocs/bundle.mdx

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[chatgpt-codex-connector]

You have reached your Codex usage limits for code reviews. You can see your limits in the Codex usage dashboard.

[codspeed-hq]

Merging this PR will not alter performance

✅ 43 untouched benchmarks
⏩ 2 skipped benchmarks¹

---

_{Comparing codex/auto-update-policy-cli (8e7d014) with main (cf9754c)}

Footnotes

1. 2 benchmarks were skipped, so the baseline results were used instead. If they were deleted from the codebase, click here and archive them to remove them from the performance reports. ↩

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud