feat(parser): migrate pi provider

[mariusvniekerk]

Pi is the next JSONL-shaped parser that can move behind the provider facade without introducing a new source framework. Its source layout composes the directory JSONL helper, but keeps provider-owned filtering because legacy discovery validates the session header while raw session lookup only checks the expected filename under encoded-cwd directories.

This keeps that discovery-versus-lookup asymmetry explicit in the provider and preserves symlinked encoded-cwd directory support while parse output continues to come from the existing Pi parser.

[roborev-ci]

roborev: Combined Review (b027db9)

No issues found.

---

Panel: ci_default_security | Synthesis: codex | Members: codex_default (codex/default, done, 2m9s), codex_security (codex/security, done, 1m17s) | Total: 3m26s

[roborev-ci]

roborev: Review Unavailable (5a4c47f)

The review agent repeatedly failed to run (likely an agent or configuration error). roborev will try again on the next commit.

Last error: agent: claude-code failed stream: stream errors: You've hit your session limit · resets 5:50am (UTC): exit status 1

[roborev-ci]

roborev: Combined Review (93fe904)

Summary: One medium issue remains in the Pi provider migration; no security findings were reported.

Medium

• internal/parser/pi_provider.go:189 - Pi is now opted into shadow comparison, but the provider fingerprint never includes a file hash. piProvider.Parse only copies req.Fingerprint.Hash, while the legacy processPi path computes and stores Session.File.Hash, so real Pi shadow comparisons will report a session mismatch that the new test misses.

  Fix: Set Hash: true in the Pi JSONLSourceSetOptions and update the shadow parity test to compare against the legacy sync result or otherwise assert the expected file hash.

---

Panel: ci_default_security | Synthesis: codex, 11s | Members: codex_default (codex/default, done, 4m2s), codex_security (codex/security, done, 1m41s) | Total: 5m54s

[mariusvniekerk]

This change is part of the following stack:

• Design parser provider facade layer #748
  • Add parser provider facade core #751
    • Add JSONL source set helper #752
      • feat(parser): add directory JSONL source helper #756
        • feat(parser): migrate commandcode and iflow providers #757
          • Migrate gptme to parser provider facade #753
            • feat(parser): migrate deepseek tui provider #758
              • feat(parser): migrate amp and zencoder providers #759
                • feat(parser): migrate pi provider #760 ◀
                  • feat(parser): migrate qwen provider #761
                  • feat(parser): migrate workbuddy provider #762
                  • feat(parser): migrate cortex provider #763
                  • feat(parser): migrate kimi provider #764
                  • feat(parser): migrate claw providers #766
                  • feat(parser): migrate qwenpaw provider #767
                  • feat(parser): migrate openhands provider #768
                  • feat(parser): migrate cursor provider #769
                  • feat(parser): migrate vibe provider #770
                  • feat(parser): migrate hermes provider #771
                  • feat(parser): migrate claude provider #772
                  • feat(parser): migrate cowork provider #773
                  • feat(parser): migrate opencode-family providers #774
                  • feat(parser): migrate codex provider #775
                  • feat(parser): migrate gemini copilot providers #776
                  • feat(parser): migrate copilot ide providers #778
                  • feat(parser): migrate positron provider #779
                  • feat(parser): migrate zed shelley providers #780
                  • feat(parser): migrate kiro providers #781
                  • feat(parser): migrate antigravity providers #782
                  • feat(parser): migrate db-backed providers #783
                  • fix(parser): require explicit provider factories #784

_{Change managed by git-spice.}

[roborev-ci]

roborev: Combined Review (28e3ce8)

This PR has one medium-severity issue to address before merge.

Medium

• internal/parser/pi_provider.go:189: The Pi provider fingerprint is configured without Hash: true, so Parse receives an empty Fingerprint.Hash and leaves Session.File.Hash empty. The legacy processPi path computes and stores ComputeFileHash, and shadow comparison compares the full ParsedSession, so every Pi shadow observation will report a session mismatch. A future provider-authoritative switch would also drop the stored hash.

  Fix: Add Hash: true to the Pi JSONLSourceSetOptions and update the Pi shadow test to compare against legacy process behavior or set and verify the expected hash from observation.Fingerprint.Hash.

---

Panel: ci_default_security | Synthesis: codex, 7s | Members: codex_default (codex/default, done, 3m19s), codex_security (codex/security, done, 1m46s) | Total: 5m12s

[roborev-ci]

roborev: Combined Review (66756c4)

Summary verdict: Changes are not ready; the Pi provider migration appears to break OMP discovery and parse-diff support.

High

• Location: internal/parser/types.go:317
• Problem: OMP remains ProviderMigrationLegacyOnly, but its legacy DiscoverFunc/FindSourceFunc were removed and the sync engine no longer has an OMP/Pi legacy processing case. That leaves OhMyPi sessions undiscoverable in full sync and changed-path sync, and any OMP DiscoveredFile would fall through to unknown agent type.
• Fix: Restore the OMP legacy discovery/find/process path, or add a concrete OMP provider that uses AgentOMP/omp: and move OMP to provider-authoritative mode.

Medium

• Location: internal/parser/types.go:307
• Problem: Removing Pi’s DiscoverFunc also removes Pi from parse-diff, which still only supports file-based agents with DiscoverFunc. parse-diff --agent pi will now be rejected, and unrestricted parse-diff runs will classify stored Pi sessions as not discovered instead of re-parsing them.
• Fix: Make parse-diff discover and process provider-authoritative sources, and update the supported-agent checks, or keep Pi’s legacy discovery hook until parse-diff is provider-aware.

---

Panel: ci_default_security | Synthesis: codex, 10s | Members: codex_default (codex/default, done, 3m3s), codex_security (codex/security, done, 2m52s) | Total: 6m5s

[roborev-ci]

roborev: Combined Review (c3da94b)

Medium-risk migration regressions need fixing before merge.

Medium

• internal/parser/pi_provider.go:197: The new Pi/OMP source set does not request content hashes, so normal provider sync leaves req.Fingerprint.Hash empty and piProvider.Parse stores no file_hash. Resyncing existing Pi/OMP rows will clear hashes that the legacy processPi path populated.
  Fix: Set Hash: true in newPiSourceSet or compute the file hash before returning the parse result, and assert stored file_hash in integration coverage.

• internal/parser/provider_migration.go:35: Moving Pi/OMP to the provider-authoritative path drops the legacy processPi size/mtime/data-version skip. processProviderFile only checks the skipped-files cache before parsing, so unchanged Pi/OMP sessions are reparsed and rewritten on every full sync instead of being counted as skipped.
  Fix: Add provider-path DB skip logic using the provider fingerprint and stored file metadata before calling Parse, or keep Pi/OMP on the legacy path until skip parity exists.

• internal/parser/types.go:308: Pi/OMP now have nil DiscoverFunc/FindSourceFunc, but existing call sites still depend on those hooks: internal/ssh/resolve.go filters remote transfer targets by DiscoverFunc, and cmd/agentsview/token_use.go resolves unsynced disk IDs via FindSourceFunc. This regresses remote SSH sync and on-demand session usage/token-use resolution for Pi/OMP sessions.
  Fix: Update those consumers to use provider-aware discoverability/source lookup for provider-authoritative file agents, or retain compatibility hooks until all callers are migrated.

---

Panel: ci_default_security | Synthesis: codex, 10s | Members: codex_default (codex/default, done, 7m13s), codex_security (codex/security, done, 2m19s) | Total: 9m42s