Add vault secrets and prompt variable support

[AviVolah]

Summary

• add a desktop Vault settings page with encrypted secrets and model-visible variables
• wire Vault secrets through the desktop bridge and keep them out of normal server settings
• inject Vault variables into provider prompts as reusable user-defined context
• remove the unfinished connectors surface so Vault is the only settings entry for this workflow

Validation

• bun fmt
• bun lint
• bun typecheck
• bun run --cwd apps/desktop test -- secretVault.test.ts
• bun run --cwd apps/web test -- wsNativeApi.test.ts

Note

Add vault secrets and prompt variable support to settings and AI adapters

• Adds a SecretVault class in the Electron main process that stores named secrets encrypted via safeStorage, with IPC endpoints (desktop:vault:list-secrets, desktop:vault:save-secret, desktop:vault:delete-secret) and push broadcasts to all windows.
• Exposes vault methods on window.desktopBridge and adds a vault namespace to NativeApi, wiring them through a new /settings/secrets route that renders VaultSettingsPanel.
• Adds VaultVariable to ServerSettings and injects variables into user prompts via injectVaultVariablesIntoPrompt in both ClaudeAdapter and CodexAdapter before sending to the model.
• Fixes getWsRpcClient to recreate the RPC client when the WebSocket URL changes and updates createWsNativeApi to call getWsRpcClient() on each API call instead of capturing a snapshot at construction time.
• Adds a per-turn Revert button in MessagesTimeline driven by new revertTurnCountByTurnId and onRevertTurn props passed from ChatView.
• Risk: In development builds, the state directory path changes from BASE_DIR/userdata to BASE_DIR/dev, which may affect existing dev environment state.

📊 Macroscope summarized fad054d. 25 files reviewed, 4 issues evaluated, 0 issues filtered, 3 comments posted

🗂️ Filtered Issues

[coderabbitai]

Important

Review skipped

Auto reviews are disabled on this repository. Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

⚙️ Run configuration

Configuration used: Repository UI

Review profile: CHILL

Plan: Pro

Run ID: 936f535f-8b86-444a-a0d2-80659e074210

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Use the checkbox below for a quick retry:

• 🔍 Trigger review

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[macroscopeapp]

🟢 Low src/secretVault.ts:261

The catch block at line 261 swallows the specific error thrown at line 242 for unsupported vault file versions, replacing it with the generic "Secret vault data is unreadable." message. Users lose the diagnostic information that their vault file needs migration. Consider rethrowing version errors directly or including the original error message in the wrapped error.

🤖 Copy this AI Prompt to have your agent fix this:

In file apps/desktop/src/secretVault.ts around line 261:

The `catch` block at line 261 swallows the specific error thrown at line 242 for unsupported vault file versions, replacing it with the generic "Secret vault data is unreadable." message. Users lose the diagnostic information that their vault file needs migration. Consider rethrowing version errors directly or including the original error message in the wrapped error.

Evidence trail:
apps/desktop/src/secretVault.ts lines 232-262 at REVIEWED_COMMIT:
- Line 232: try block starts
- Line 241: `throw new Error("Unsupported vault file version.");` thrown when version check fails
- Line 260: `} catch {` blanket catch block
- Line 261: `throw new Error("Secret vault data is unreadable.");` replaces any caught error

[macroscopeapp]

🟠 High src/secretVault.ts:217

In ensureLoaded(), this.loaded = true is set before the try block, so if JSON parsing or validation throws, subsequent calls skip loading and operate on an empty namedSecrets map. This causes data loss: saveNamedSecret() can overwrite the original vault file with only new secrets. Move this.loaded = true to after successful loading, or use a separate flag to distinguish "loading attempted" from "loaded successfully".

  private ensureLoaded(): void {
    if (this.loaded) {
      return;
    }
-    this.loaded = true;

     const candidatePaths = [
       this.options.vaultPath,
       ...(this.options.legacyVaultPaths ?? []),
@@ -228,6 +227,7 @@ export class SecretVault {
     }
 
     try {
+      this.loaded = true;
       const raw = FS.readFileSync(existingVaultPath, "utf8");

🤖 Copy this AI Prompt to have your agent fix this:

In file apps/desktop/src/secretVault.ts around lines 217-264:

In `ensureLoaded()`, `this.loaded = true` is set before the try block, so if JSON parsing or validation throws, subsequent calls skip loading and operate on an empty `namedSecrets` map. This causes data loss: `saveNamedSecret()` can overwrite the original vault file with only new secrets. Move `this.loaded = true` to after successful loading, or use a separate flag to distinguish "loading attempted" from "loaded successfully".

Evidence trail:
apps/desktop/src/secretVault.ts lines 217-264 (REVIEWED_COMMIT): `ensureLoaded()` method showing `this.loaded = true` at line 221 before try block at line 232. apps/desktop/src/secretVault.ts lines 139-177 (REVIEWED_COMMIT): `saveNamedSecret()` calls `ensureLoaded()` at line 141, then `persist()` at line 172. apps/desktop/src/secretVault.ts lines 266-276 (REVIEWED_COMMIT): `persist()` writes `namedSecrets` map to disk, overwriting the vault file.

[macroscopeapp]

🟡 Medium src/wsNativeApi.ts:42

terminal.onEvent and orchestration.onDomainEvent register subscriptions on a specific WsRpcClient instance, but getWsRpcClient() creates and switches to a new client when the WebSocket URL changes. The old client is disposed, so existing callbacks stop receiving events permanently even though the code still references them. Consider re-registering subscriptions on the new client when the URL changes, or documenting that callers must re-subscribe after URL changes.

🤖 Copy this AI Prompt to have your agent fix this:

In file apps/web/src/wsNativeApi.ts around line 42:

`terminal.onEvent` and `orchestration.onDomainEvent` register subscriptions on a specific `WsRpcClient` instance, but `getWsRpcClient()` creates and switches to a new client when the WebSocket URL changes. The old client is disposed, so existing callbacks stop receiving events permanently even though the code still references them. Consider re-registering subscriptions on the new client when the URL changes, or documenting that callers must re-subscribe after URL changes.

Evidence trail:
apps/web/src/wsNativeApi.ts lines 41-42, 119 (subscription methods call getRpcClient()); apps/web/src/wsRpcClient.ts lines 98-108 (getWsRpcClient creates new client on URL change and disposes old one); apps/web/src/wsTransport.ts lines 73-107 (subscribe method), lines 117-125 (dispose method sets this.disposed=true causing subscription interruption)

[macroscopeapp]

Approvability

Verdict: Needs human review

2 blocking correctness issues found. This PR adds a significant new feature: vault secrets with encrypted desktop storage and vault variables that are automatically injected into model prompts. The changes span multiple layers (desktop, web, server, contracts) and introduce new user-facing UI, new storage mechanisms, and modify prompt behavior in model adapters—warranting human review for a feature of this scope.

^{You can customize Macroscope's approvability policy. Learn more.}