feat: Epic 2 Logic Hardening (Full C# Changes)

[mkalhitti-cloud]

User description

User description

Restores the actual Epic 2 C# logic changes for Bob's perfection loop to process across all 28 bots.

---

Summary by cubic

Restores Epic 2 logic hardening, adds a Windows NUnit testing pyramid, and tightens CI/quality gates. Fixes order-state regressions and StickyState races, and adds CSharpier auto-formatting with an opt-in formatter script.

• Bug Fixes

  • Order safety: roll back symmetry dispatch on submission exceptions (H01); centralized follower-cancel processor (H06); orphaned FSM detection with a 10s grace (log-only).
  • StickyState/UI: build snapshots on the strategy thread; route saves via an injectable service with a 50ms debounce; guard uninitialized service during load; 500ms backoff in sizing/state sync; added null/brace guards.
  • Cleanup: closure-scope fixes, dead-code removal, coalescing gates across UI/sizing/snapshot; resolved DeepSource anti-patterns and suppressed CS‑R1140 for LoadStickyState() (single-pass hydration by design).

• New Features

  • Sentinel Testing Pyramid (Windows, .NET 8 with NinjaTrader mocks, NUnit) and Epic1DeltaTests covering H01/H02/H03/H06/H07.
  • CI/quality: mandatory scripts/verify_pr_hygiene.ps1; path-filtered CodeQL/SonarCloud/StyleCop; Codacy C# only with .codacyignore and Markdown disabled; expanded DeepSource excludes; Markdown link checks on .md only; removed the legacy custom Jules workflow.
  • Formatting: CSharpier setup (.csharpierrc.json, VS Code format-on-save) and scripts/format_all_csharp.ps1 for batch runs.

^{Written for commit 696684a. Summary will update on new commits. Review in cubic}

---

Summary by Gitar

• Order Logic Hardening:
  • Implemented SymmetryGuardRollbackDispatch in V12_002.Symmetry.cs to prevent orphaned state on order submission failures.
  • Added ProcessFollowerCancellationSafe and ProcessFollowerCancellationUnconditional to V12_002.Orders.Callbacks.AccountOrders.cs for centralized order cleanup.
• Diagnostic Tracking:
  • Added _orphanedPositionFirstSeen in V12_002.REAPER.Audit.cs to detect and log TOCTOU race conditions in FSM rollback logic.
• Tooling & Infrastructure:
  • Added scripts/format_all_csharp.ps1 and .csharpierrc.json for automated code formatting.
  • Implemented scripts/verify_pr_hygiene.ps1 as a mandatory PR gate.
• Quality Gates:
  • Integrated .codacyignore and updated .deepsource.toml to enforce standards while reducing noise.
• Testing:
  • Added Epic1DeltaTests.cs covering H01-H07 logic hardening validation.

_{This will update automatically on new commits.}

[qodo-code-review]

Qodo reviews are paused for this user.

Troubleshooting steps vary by plan Learn more →

On a Teams plan?
Reviews resume once this user has a paid seat and their Git account is linked in Qodo.
Link Git account →

Using GitHub Enterprise Server, GitLab Self-Managed, or Bitbucket Data Center?
These require an Enterprise plan - Contact us
Contact us →

[codeant-ai]

CodeAnt AI is reviewing your PR.

---

Thanks for using CodeAnt! 🎉

We're free for open-source projects. if you're enjoying it, help us grow by sharing.

Share on X ·
Reddit ·
LinkedIn

[greptile-apps]

Your free trial has ended. If you'd like to continue receiving code reviews, you can add a payment method here.

[sourcery-ai]

Sorry @mkalhitti-cloud, your pull request is larger than the review limit of 150000 diff characters

[coderabbitai]

📝 Walkthrough

Walkthrough

Hardening fixes for Orders/REAPER/SIMA and StickyState persistence refactor; new Epic1 concurrency tests; CI/workflow path scoping and Sentinel pipeline with ASCII gate; tooling exclude updates; PR-hygiene script and pr-loop doc; assorted docs and roadmap updates.

Changes

Core concurrency & runtime safety

Layer / File(s)	Summary
Follower cancellation gates src/V12_002.Orders.Callbacks.AccountOrders.cs	Adds top-level cancellation handlers and unconditional cancellation scan to short-circuit matched-entry and queued-order flows.
REAPER orphan detection & atomic guards src/V12_002.REAPER.cs, src/V12_002.REAPER.Audit.cs, src/V12_002.REAPER.Repair.cs	Adds _orphanedPositionFirstSeen, _isTerminating guards, uses atomic TryAdd/TryRemove, and snapshots orders/positions before iteration.
SIMA submission & symmetry rollback src/V12_002.SIMA.Execution.cs, src/V12_002.Symmetry.cs	Wraps local unmanaged submissions in try/catch, rolls back symmetry dispatch on exception/null, and adds SymmetryGuardRollbackDispatch.

StickyState persistence refactor

Layer / File(s)	Summary
StickyState snapshot service src/V12_002.StickyState.cs	Replaces INI-based persistence with snapshot + _stickyStateService serialize/deserialize, debounced writes, strategy-thread snapshot capture, and typed position-state hydration.

UI & Snapshot formatting

Layer / File(s)	Summary
UI snapshot and sizing readability src/V12_002.UI.Snapshot.cs, src/V12_002.UI.Panel.StateSync.cs, src/V12_002.UI.Sizing.cs	Adds explicit null guard for EMA, refactors guard blocks and signatures for readability while preserving behavior.

Tests

Layer / File(s)	Summary
Epic1DeltaTests H01–H07 tests/Epic1DeltaTests.cs	New NUnit suite exercising concurrency hardening scenarios including rollback cleanup, clear-before-release, abort-time unsubscribes, atomic rollback counters, cancellation stress, and TOCTOU elimination.

CI / GitHub Actions

Layer / File(s)	Summary
Workflow trigger path filters .github/workflows/codeql.yml, .github/workflows/sonarcloud.yml, .github/workflows/stylecop-enforcement.yml	Add paths filters so these workflows run only for relevant C#/workflow changes.
Sentinel testing pyramid & ASCII Gate .github/workflows/sentinel-pyramid.yml	Adds Sentinel pipeline with .NET test phases, TDD concurrency tests, ASCII Gate to fail on non-ASCII bytes in src/**/*.cs, and TRX artifact upload.
Markdown link-check trigger scoping .github/workflows/markdown-link-check.yml	Restrict markdown link-check workflow to **/*.md changes.

Tooling & config

Layer / File(s)	Summary
Codacy / DeepSource excludes .codacy.yaml, .deepsource.toml, .codacyignore	Enable csharp and expand excludes to focus analysis on C# sources and ignore scripts/docs/config globs.
EditorConfig & gitignore .editorconfig, .gitignore	Disable SA1101 in C# config and add .antigravitycli/ plus project-pollution ignore entries.

Scripts & operational docs

Layer / File(s)	Summary
PR hygiene script and pr-loop doc scripts/verify_pr_hygiene.ps1, .bob/commands/pr-loop.md	Add PR hygiene gate (branch ancestry and src/ diff-size limit) and document an enforced PHS-driven iterative repair/verification loop.
Launch helper launch_classic.bat	Batch script to restart AntigravityClassic.exe with user data and remote debugging options.

Docs & roadmap

Layer / File(s)	Summary
Agent protocols & Graphify updates AGENTS.md	ASCII-normalize agent docs, tighten STRICT DIFF LIMIT to <10,000 chars for src/, and update Graphify guidance.
GEMINI, roadmap, workflow health GEMINI.md, docs/brain/master_roadmap.md, docs/brain/workflow_health.md, docs/brain/workflow_health_iteration3.md	Add PR-monitor sleep intervals, refresh roadmap phases/status, and add workflow health reports enumerating P1 fixes and verification logs.
Minor docs metadata README.md, extract-plan-ProcessBracketEvent*.md	Update PR Report link and correct extract-plan source-location metadata.

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~75 minutes

Possibly related PRs

• mkalhitti-cloud/universal-or-strategy#35: Overlaps on REAPER in-flight guard and ConcurrentDictionary atomic-change patterns.
• mkalhitti-cloud/universal-or-strategy#94: Related follower-order cancellation and HandleMatchedFollowerOrder refactor work.

Suggested labels

Orders / Callbacks, Core Strategy, SIMA / Fleet, UI / Compliance, Deploy / Scripts

"🐰
I hop through diffs with careful paws,
I guard the locks and tidy up the cause.
Tests drum steady, pipelines hum,
Docs and scripts keep steady drum.
Merge when green — that's all because."

🚥 Pre-merge checks | ✅ 3 | ❌ 2

❌ Failed checks (2 warnings)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 59.32% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.
Description check	⚠️ Warning	PR description lacks mandatory gates and test results sections from the template. Missing ASCII Gate, Lock-Free Audit, Lint Pass, Build Readiness, AMAL Gate, Deploy Sync verification, and test output documentation.	Add comprehensive Pre-Flight Checklist with all mandatory gates (ASCII, Lock-Free Audit, Lint Pass, Build Readiness, AMAL, Deploy Sync, BUILD_TAG Banner verification) and Test Results section with AMAL benchmark summary and checkpoint ID.

✅ Passed checks (3 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title 'feat: Epic 2 Logic Hardening (Full C# Changes)' directly and clearly describes the main objective of the PR—implementing Epic 2 logic hardening changes in C#.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

📝 Generate docstrings

• Create stacked PR
• Commit on current branch

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch feature/photon-spsc-hardening-epic2-logic

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[amazon-q-developer]

The PR implements comprehensive logic hardening for Epic 2 changes across the multi-account trading system. The changes focus on architectural improvements, refactoring for maintainability, and enhanced error handling.

Key Changes:

• Orders.Callbacks.AccountOrders.cs: Refactored follower cancellation logic by extracting common patterns into helper methods (ProcessFollowerCancellationSafe, ProcessFollowerCancellationUnconditional), reducing code duplication and improving maintainability
• REAPER.Audit.cs: Added diagnostic orphaned position detection, fixed TOCTOU races with atomic TryAdd operations, added collection snapshots to prevent concurrent modification exceptions, and added termination guards
• SIMA.Execution.cs: Enhanced exception handling with proper symmetry dispatch rollback on order submission failures
• StickyState.cs: Refactored from custom INI serialization to service-based architecture, improving separation of concerns and eliminating ~400 lines of parsing code

All changes are working refactorings that improve code quality without introducing functional defects.

---

You can now have the agent implement changes and create commits directly on your pull request's source branch. Simply comment with /q followed by your request in natural language to ask the agent to make changes.

[deepsource-io]

DeepSource Code Review

We reviewed changes in 93c0720...86c6e50 on this pull request. Below is the summary for the review, and you can see the individual issues we found as inline review comments.

See full review on DeepSource ↗

Code Review Summary

Analyzer	Status	Updated (UTC)	Details
C#		May 21, 2026 1:41a.m.	Review ↗
Secrets		May 21, 2026 1:41a.m.	Review ↗

---

Important

AI Review is run only on demand for your team. We're only showing results of static analysis review right now. To trigger AI Review, comment @deepsourcebot review on this thread.

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@docs/brain/workflow_health_iteration3.md`:
- Line 95: The markdown references to _stickyStateService (and occurrences like
_stickyStateService.Serialize) should be wrapped in backticks to prevent
Markdown from interpreting the leading underscore as emphasis; update the
document by replacing plain `_stickyStateService` identifiers with inline
code-style backtick-wrapped versions (e.g., `_stickyStateService` and
`_stickyStateService.Serialize`) so they render and lint correctly.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 5c389d60-6ce6-467f-b0d3-2506686ebb7a

📥 Commits

Reviewing files that changed from the base of the PR and between 76da3f9 and fc35722.

📒 Files selected for processing (3)

• docs/brain/workflow_health_iteration3.md
• src/V12_002.SIMA.Execution.cs
• src/V12_002.StickyState.cs

[cubic-dev-ai]

2 issues found across 3 files (changes from recent commits).

Prompt for AI agents (unresolved issues)

Check if these issues are valid — if so, understand the root cause of each and fix them. If appropriate, use sub-agents to investigate and fix each issue separately.


<file name=".github/workflows/sonarcloud.yml">

<violation number="1" location=".github/workflows/sonarcloud.yml:8">
P2: The new `paths` filters are too narrow and can skip SonarCloud for impactful build/config changes (e.g., `.csproj`/`.sln`/props), reducing CI coverage for PRs that still affect analysis results.</violation>
</file>

<file name=".github/workflows/stylecop-enforcement.yml">

<violation number="1" location=".github/workflows/stylecop-enforcement.yml:7">
P2: The new `paths` filter is too narrow and can skip StyleCop enforcement when lint configuration/project files change (for example `.editorconfig` or `Linting.csproj`). Include those files in the trigger paths so the gate still runs when lint behavior is modified.</violation>
</file>

<file name="AGENTS.md">

<violation number="1" location="AGENTS.md:33">
P2: Avoid hardcoding a machine-specific Python executable path in the documented command; use the project’s standard PATH-based invocation so the command works across environments.</violation>
</file>

<file name=".codacy.yaml">

<violation number="1" location=".codacy.yaml:2">
P2: This `engines` block won’t enforce tool enable/disable in Codacy; use `languages.<name>.enabled` for language scope (and configure tool toggles in Codacy UI).</violation>
</file>

<file name=".bob/commands/pr-loop.md">

<violation number="1" location=".bob/commands/pr-loop.md:46">
P2: Step 1 omits the required `[ACCESS_BLOCKED]` audit category, creating an inconsistent forensic classification flow.</violation>

<violation number="2" location=".bob/commands/pr-loop.md:66">
P2: Retry flow skips the mandatory hygiene gate by restarting at Step 1 instead of Step 0.</violation>
</file>

<file name="docs/brain/master_roadmap.md">

<violation number="1" location="docs/brain/master_roadmap.md:152">
P2: This section still marks M3/P7 as an active pending gate, but other newly added lines mark it closed/complete. The conflicting status can misdirect planning and release decisions.</violation>
</file>

<file name="docs/brain/workflow_health.md">

<violation number="1" location="docs/brain/workflow_health.md:201">
P3: The "No Unicode / no emoji" compliance line contradicts the document’s own content, reducing trust in the report’s verification claims.</violation>

<violation number="2" location="docs/brain/workflow_health.md:217">
P2: Build readiness is reported as both pending and complete in the same document, which makes the status unreliable for go/no-go decisions.</violation>
</file>

<sub>Tip: Review your code locally with the cubic CLI to iterate faster.

Re-trigger cubic</sub>

[kilo-code-bot]

Code Review Summary

Status: No New Issues Found | Recommendation: No action required

This incremental review covers commit 696684a which contains only formatting changes and a DeepSource suppression attribute. No new logic changes were introduced.

Incremental Diff Analysis

The changes are limited to:

• Whitespace/formatting adjustments (comment alignment, line breaks)
• Added SuppressMessage attribute for DeepSource CS-R1140 (high cyclomatic complexity)

Previous Issues Status

File	Line	Issue	Status
src/V12_002.StickyState.cs	278	_stickyStateService dereferenced without null validation	FIXED - Null check now exists at lines 277-282
src/V12_002.StickyState.cs	417	data.FleetToggles iteration without null validation	CARRY FORWARD - Unchanged line, requires attention

Other Observations (unchanged files in diff)

File	Line	Issue
src/V12_002.REAPER.Repair.cs	264	finally block removed from _repairInFlight cleanup (unchanged, carried forward)
src/V12_002.Orders.Callbacks.AccountOrders.cs	796	fsm != null guard removed (unchanged, carried forward)

Files Reviewed (1 file)

• src/V12_002.StickyState.cs - No new issues (formatting-only changes)

---

_{Reviewed by laguna-m.1-20260312:free · 916,277 tokens}

[cubic-dev-ai]

2 issues found across 4 files (changes from recent commits).

Prompt for AI agents (unresolved issues)

Check if these issues are valid — if so, understand the root cause of each and fix them. If appropriate, use sub-agents to investigate and fix each issue separately.


<file name=".github/workflows/sonarcloud.yml">

<violation number="1" location=".github/workflows/sonarcloud.yml:8">
P2: The new `paths` filters are too narrow and can skip SonarCloud for impactful build/config changes (e.g., `.csproj`/`.sln`/props), reducing CI coverage for PRs that still affect analysis results.</violation>
</file>

<file name=".github/workflows/stylecop-enforcement.yml">

<violation number="1" location=".github/workflows/stylecop-enforcement.yml:7">
P2: The new `paths` filter is too narrow and can skip StyleCop enforcement when lint configuration/project files change (for example `.editorconfig` or `Linting.csproj`). Include those files in the trigger paths so the gate still runs when lint behavior is modified.</violation>
</file>

<file name="AGENTS.md">

<violation number="1" location="AGENTS.md:33">
P2: Avoid hardcoding a machine-specific Python executable path in the documented command; use the project’s standard PATH-based invocation so the command works across environments.</violation>
</file>

<file name=".bob/commands/pr-loop.md">

<violation number="1" location=".bob/commands/pr-loop.md:46">
P2: Step 1 omits the required `[ACCESS_BLOCKED]` audit category, creating an inconsistent forensic classification flow.</violation>

<violation number="2" location=".bob/commands/pr-loop.md:66">
P2: Retry flow skips the mandatory hygiene gate by restarting at Step 1 instead of Step 0.</violation>
</file>

<file name="docs/brain/master_roadmap.md">

<violation number="1" location="docs/brain/master_roadmap.md:152">
P2: This section still marks M3/P7 as an active pending gate, but other newly added lines mark it closed/complete. The conflicting status can misdirect planning and release decisions.</violation>
</file>

<file name="docs/brain/workflow_health.md">

<violation number="1" location="docs/brain/workflow_health.md:201">
P3: The "No Unicode / no emoji" compliance line contradicts the document’s own content, reducing trust in the report’s verification claims.</violation>

<violation number="2" location="docs/brain/workflow_health.md:217">
P2: Build readiness is reported as both pending and complete in the same document, which makes the status unreliable for go/no-go decisions.</violation>
</file>

<file name="src/V12_002.StickyState.cs">

<violation number="1" location="src/V12_002.StickyState.cs:175">
P2: The retry flow clears `_stickyWritePending` too early, which can allow duplicate writes to be scheduled before the re-queued snapshot task executes.</violation>
</file>

<file name="src/V12_002.SIMA.Execution.cs">

<violation number="1" location="src/V12_002.SIMA.Execution.cs:611">
P1: Missing `EnableSIMA` runtime guard before the fleet loop can dispatch follower orders even when SIMA is disabled.</violation>
</file>

<sub>Tip: Review your code locally with the cubic CLI to iterate faster.

Re-trigger cubic</sub>

[cubic-dev-ai]

1 issue found across 2 files (changes from recent commits).

<sub>Tip: Review your code locally with the cubic CLI to iterate faster.

Re-trigger cubic</sub>

[coderabbitai]

Actionable comments posted: 1

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

src/V12_002.StickyState.cs (1)

407-412: ⚠️ Potential issue | 🟠 Major | ⚡ Quick win

data.FleetToggles can be null, causing NullReferenceException.

The save path (line 97-99) explicitly allows FleetToggles = null, but this load path iterates without a null guard. If persisted state has null fleet toggles, load fails and discards all state.

Proposed fix

             // Apply fleet
             _stickyLeaderAccount = data.LeaderAccount;
-            foreach (var kvp in data.FleetToggles)
-            {
-                if (_pendingStickyFleetToggles == null)
-                    _pendingStickyFleetToggles = new Dictionary<string, bool>();
-                _pendingStickyFleetToggles[kvp.Key] = kvp.Value;
-            }
+            if (data.FleetToggles != null)
+            {
+                foreach (var kvp in data.FleetToggles)
+                {
+                    if (_pendingStickyFleetToggles == null)
+                        _pendingStickyFleetToggles = new Dictionary<string, bool>();
+                    _pendingStickyFleetToggles[kvp.Key] = kvp.Value;
+                }
+            }

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@src/V12_002.StickyState.cs` around lines 407 - 412, The load loop assumes
data.FleetToggles is non-null and will throw if persisted state had FleetToggles
= null; guard the iteration by checking data.FleetToggles != null before the
foreach and only allocate/update _pendingStickyFleetToggles when entries exist;
update the block that references data.FleetToggles and
_pendingStickyFleetToggles to skip the loop when data.FleetToggles is null (or
empty) so loading doesn't throw and existing state isn't discarded.

♻️ Duplicate comments (1)

src/V12_002.Orders.Callbacks.AccountOrders.cs (1)

815-816: ⚠️ Potential issue | 🟡 Minor | ⚡ Quick win

Null guard added here but missing in ProcessFollowerCancellationSafe.

The P2-FIX correctly guards order.Name at line 816, but line 398 in ProcessFollowerCancellationSafe still accesses order.Name.StartsWith(...) without a null check. A cancelled order with a null Name would throw NullReferenceException in the safe path but not in the unconditional path.

Apply the same guard for consistency:

Proposed fix

         // Check 3: Stop replacement (follower stops arrive via OnAccountOrderUpdate)
-        if (order.Name.StartsWith("Stop_") || order.Name.StartsWith("S_"))
+        if (order.Name != null && (order.Name.StartsWith("Stop_") || order.Name.StartsWith("S_")))

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@src/V12_002.Orders.Callbacks.AccountOrders.cs` around lines 815 - 816,
ProcessFollowerCancellationSafe still calls order.Name.StartsWith(...) without
checking for null; add the same null guard used at the other call site so the
method first verifies order.Name != null before invoking StartsWith (i.e.,
update the conditional in ProcessFollowerCancellationSafe to short-circuit when
order.Name is null and then check StartsWith("Stop_") || StartsWith("S_")).
Locate the usage inside ProcessFollowerCancellationSafe and mirror the guard
logic around the order.Name checks to avoid NullReferenceException.

🧹 Nitpick comments (1)

.deepsource.toml (1)

29-31: ⚡ Quick win

Excluding production source files from static analysis is risky.

These patterns exclude files that are actively modified in this PR (V12_002.StickyState.cs, V12_002.SIMA.*.cs, V12_002.UI.*.cs). This suppresses DeepSource feedback on the hardened logic being introduced.

If these exclusions address false positives, consider using inline suppression comments (// deepsource-ignore) for specific lines instead of blanket file exclusions.

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In @.deepsource.toml around lines 29 - 31, The .deepsource.toml currently
excludes production files "src/V12_002.UI.*.cs", "src/V12_002.StickyState.cs",
and "src/V12_002.SIMA.*.cs" which silences static analysis for the changes in
this PR; remove these three patterns from the exclusions so DeepSource can run
against the modified files, and if any flagged items are false positives add
targeted inline suppressions (e.g., // deepsource-ignore) inside
V12_002.StickyState.cs, V12_002.UI.*.cs, or V12_002.SIMA.*.cs rather than
re-adding blanket file exclusions.

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@src/V12_002.StickyState.cs`:
- Around line 154-179: The retry path currently bypasses the coalescing gate by
calling Enqueue(state => state.BuildStickySnapshotAndScheduleWrite()) directly
when _stickyStateService becomes non-null; change the retry logic inside the
Task.Run to call MarkStickyDirty() (which will re-schedule via the existing
coalescing gate and Enqueue/BuildStickySnapshotAndScheduleWrite flow) instead of
directly invoking Enqueue, so concurrent writes are prevented while still
retrying when _stickyStateDirty is true; keep the Interlocked.Exchange(ref
_stickyWritePending, 0) finally behavior as-is.

---

Outside diff comments:
In `@src/V12_002.StickyState.cs`:
- Around line 407-412: The load loop assumes data.FleetToggles is non-null and
will throw if persisted state had FleetToggles = null; guard the iteration by
checking data.FleetToggles != null before the foreach and only allocate/update
_pendingStickyFleetToggles when entries exist; update the block that references
data.FleetToggles and _pendingStickyFleetToggles to skip the loop when
data.FleetToggles is null (or empty) so loading doesn't throw and existing state
isn't discarded.

---

Duplicate comments:
In `@src/V12_002.Orders.Callbacks.AccountOrders.cs`:
- Around line 815-816: ProcessFollowerCancellationSafe still calls
order.Name.StartsWith(...) without checking for null; add the same null guard
used at the other call site so the method first verifies order.Name != null
before invoking StartsWith (i.e., update the conditional in
ProcessFollowerCancellationSafe to short-circuit when order.Name is null and
then check StartsWith("Stop_") || StartsWith("S_")). Locate the usage inside
ProcessFollowerCancellationSafe and mirror the guard logic around the order.Name
checks to avoid NullReferenceException.

---

Nitpick comments:
In @.deepsource.toml:
- Around line 29-31: The .deepsource.toml currently excludes production files
"src/V12_002.UI.*.cs", "src/V12_002.StickyState.cs", and "src/V12_002.SIMA.*.cs"
which silences static analysis for the changes in this PR; remove these three
patterns from the exclusions so DeepSource can run against the modified files,
and if any flagged items are false positives add targeted inline suppressions
(e.g., // deepsource-ignore) inside V12_002.StickyState.cs, V12_002.UI.*.cs, or
V12_002.SIMA.*.cs rather than re-adding blanket file exclusions.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: a9dedaef-4d8f-48e1-994d-e0d4093b6160

📥 Commits

Reviewing files that changed from the base of the PR and between fc35722 and 8980086.

📒 Files selected for processing (10)

• .codacy.yaml
• .deepsource.toml
• README.md
• docs/brain/workflow_health_iteration3.md
• extract-plan-ProcessBracketEvent-REVISED.md
• extract-plan-ProcessBracketEvent.md
• src/V12_002.Orders.Callbacks.AccountOrders.cs
• src/V12_002.SIMA.Execution.cs
• src/V12_002.StickyState.cs
• tests/Epic1DeltaTests.cs

✅ Files skipped from review due to trivial changes (4)

• extract-plan-ProcessBracketEvent.md
• README.md
• extract-plan-ProcessBracketEvent-REVISED.md
• docs/brain/workflow_health_iteration3.md

[coderabbitai]

Actionable comments posted: 1

♻️ Duplicate comments (3)

src/V12_002.StickyState.cs (3)

97-99: ⚠️ Potential issue | 🟠 Major | ⚡ Quick win

Do not let a null fleet snapshot abort the whole load.

Line 99 can persist FleetToggles = null, but Line 407 still iterates data.FleetToggles unconditionally. One save before fleet discovery turns the next load into the outer catch and drops the rest of the snapshot.

Proposed fix

-                var activeFleetSnapshot = activeFleetAccounts != null
-                    ? new Dictionary<string, bool>(activeFleetAccounts)
-                    : null;
+                var activeFleetSnapshot = activeFleetAccounts != null
+                    ? new Dictionary<string, bool>(activeFleetAccounts)
+                    : new Dictionary<string, bool>();
...
-                foreach (var kvp in data.FleetToggles)
-                {
-                    if (_pendingStickyFleetToggles == null)
-                        _pendingStickyFleetToggles = new Dictionary<string, bool>();
-                    _pendingStickyFleetToggles[kvp.Key] = kvp.Value;
-                }
+                if (data.FleetToggles != null)
+                {
+                    foreach (var kvp in data.FleetToggles)
+                    {
+                        if (_pendingStickyFleetToggles == null)
+                            _pendingStickyFleetToggles = new Dictionary<string, bool>();
+                        _pendingStickyFleetToggles[kvp.Key] = kvp.Value;
+                    }
+                }

Also applies to: 405-412

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@src/V12_002.StickyState.cs` around lines 97 - 99, The code allows
activeFleetSnapshot to be null which sets FleetToggles to null but later code
(iteration at data.FleetToggles around the load/iteration block) assumes it's
non-null; ensure you always initialize FleetToggles to an empty Dictionary when
no activeFleetAccounts exist (replace null assignment of
activeFleetSnapshot/FleetToggles with an empty new Dictionary<string,bool>()),
and/or guard the iteration over data.FleetToggles by checking for null (e.g.,
skip iteration if data.FleetToggles is null) near the loop at data.FleetToggles
to prevent a save-before-discovery from aborting the load; update both the
assignment (activeFleetSnapshot / FleetToggles) and the iteration block (the
loop around data.FleetToggles) accordingly.

---

120-151: ⚠️ Potential issue | 🟠 Major | ⚡ Quick win

Restore persisted mode flags before replaying config values.

The snapshot writes IsRMAModeActive and both stop multipliers, but LoadStickyState() never reapplies them before Line 343 decides which stop slot gets STR. After restart, the restored stop value can land in the wrong mode state.

Proposed fix

                 var data = _stickyStateService.Deserialize(_stickyStatePath);
                 if (data == null)
                     return false;
 
+                isRMAModeActive = data.IsRMAModeActive;
+                isTRENDModeActive = data.IsTRENDModeActive;
+                isRetestModeActive = data.IsRetestModeActive;
+                isMOMOModeActive = data.IsMOMOModeActive;
+                isFFMAModeArmed = data.IsFFMAModeArmed;
+                StopMultiplier = data.StopMultiplier;
+                RMAStopATRMultiplier = data.RMAStopATRMultiplier;
+
                 // Apply config values
                 if (data.ConfigValues.TryGetValue("COUNT", out object cntObj) && cntObj is int)

Also applies to: 274-347

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@src/V12_002.StickyState.cs` around lines 120 - 151, The snapshot persists
mode flags and stop multipliers (IsRMAModeActive, IsTRENDModeActive,
IsRetestModeActive, IsMOMOModeActive, IsFFMAModeArmed, StopMultiplier,
RMAStopATRMultiplier, IsTrendRmaMode, IsRetestRmaMode, Anchor) but
LoadStickyState() currently reapplies config values before restoring those
flags, causing restored stop values to be placed in the wrong slot; modify
LoadStickyState() so it first rehydrates the persisted mode flags and multiplier
fields from Services.StickyStateSnapshot (e.g., assign IsRMAModeActive,
IsTRENDModeActive, IsRetestModeActive, IsMOMOModeActive, IsFFMAModeArmed,
StopMultiplier, RMAStopATRMultiplier, IsTrendRmaMode, IsRetestRmaMode, Anchor)
into the runtime state (and cachedMnlPrice/LeaderAccount if applicable) before
the logic that decides which stop slot gets STR (the decision currently
referencing those flags), ensuring restored stop/mode state is applied prior to
replaying config values.

---

154-177: ⚠️ Potential issue | 🟡 Minor | ⚡ Quick win

Retry should reacquire the write gate instead of bypassing it.

Line 166 enqueues BuildStickySnapshotAndScheduleWrite() directly while _stickyWritePending is still held by the current task. Once Line 175 clears the gate, a concurrent MarkStickyDirty() can schedule a second write, so the retry path loses the intended coalescing.

Proposed fix

                 if (_stickyStateService == null)
                 {
                     Print("[STICKY] Service not initialized -- scheduling retry in 500ms");
                     Task.Run(async () =>
                     {
+                        bool shouldRetry = false;
                         try
                         {
                             await Task.Delay(500); // Retry delay for transient initialization
                             if (_stickyStateService != null && _stickyStateDirty)
                             {
-                                // Retry: re-enqueue to capture fresh snapshot
-                                Enqueue(state => state.BuildStickySnapshotAndScheduleWrite());
+                                shouldRetry = true;
                             }
                             else
                             {
                                 Print("[STICKY] Service still null or state no longer dirty -- save abandoned");
                             }
                         }
                         finally
                         {
                             Interlocked.Exchange(ref _stickyWritePending, 0);
+                            if (shouldRetry)
+                                MarkStickyDirty();
                         }
                     });
                     return;
                 }

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@src/V12_002.StickyState.cs` around lines 154 - 177, When retrying because
_stickyStateService was null, do not bypass the write gate: attempt to reacquire
the pending-write gate (use Interlocked.CompareExchange on _stickyWritePending
to set it to 1) and only call Enqueue(state =>
state.BuildStickySnapshotAndScheduleWrite()) if you successfully set the gate;
if you fail to acquire the gate, do nothing. Also ensure the finally block only
clears _stickyWritePending when this retry actually owns the gate (i.e., only
call Interlocked.Exchange(ref _stickyWritePending, 0) when the CompareExchange
succeeded). Reference symbols: _stickyStateService, _stickyStateDirty,
_stickyWritePending, Enqueue, BuildStickySnapshotAndScheduleWrite,
MarkStickyDirty.

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@src/V12_002.Orders.Callbacks.AccountOrders.cs`:
- Around line 795-797: Restore a null-check for the snapshot value before
dereferencing it: when iterating the _followerReplaceSpecs snapshot and
assigning FollowerReplaceSpec fsm = kvp.Value, guard with a null test (e.g., if
(fsm == null) continue) before evaluating fsm.State,
FollowerReplaceState.PendingCancel and fsm.CancellingOrderId == order.OrderId so
the cancellation fast-path won't throw and follower cleanup paths still run
correctly.

---

Duplicate comments:
In `@src/V12_002.StickyState.cs`:
- Around line 97-99: The code allows activeFleetSnapshot to be null which sets
FleetToggles to null but later code (iteration at data.FleetToggles around the
load/iteration block) assumes it's non-null; ensure you always initialize
FleetToggles to an empty Dictionary when no activeFleetAccounts exist (replace
null assignment of activeFleetSnapshot/FleetToggles with an empty new
Dictionary<string,bool>()), and/or guard the iteration over data.FleetToggles by
checking for null (e.g., skip iteration if data.FleetToggles is null) near the
loop at data.FleetToggles to prevent a save-before-discovery from aborting the
load; update both the assignment (activeFleetSnapshot / FleetToggles) and the
iteration block (the loop around data.FleetToggles) accordingly.
- Around line 120-151: The snapshot persists mode flags and stop multipliers
(IsRMAModeActive, IsTRENDModeActive, IsRetestModeActive, IsMOMOModeActive,
IsFFMAModeArmed, StopMultiplier, RMAStopATRMultiplier, IsTrendRmaMode,
IsRetestRmaMode, Anchor) but LoadStickyState() currently reapplies config values
before restoring those flags, causing restored stop values to be placed in the
wrong slot; modify LoadStickyState() so it first rehydrates the persisted mode
flags and multiplier fields from Services.StickyStateSnapshot (e.g., assign
IsRMAModeActive, IsTRENDModeActive, IsRetestModeActive, IsMOMOModeActive,
IsFFMAModeArmed, StopMultiplier, RMAStopATRMultiplier, IsTrendRmaMode,
IsRetestRmaMode, Anchor) into the runtime state (and
cachedMnlPrice/LeaderAccount if applicable) before the logic that decides which
stop slot gets STR (the decision currently referencing those flags), ensuring
restored stop/mode state is applied prior to replaying config values.
- Around line 154-177: When retrying because _stickyStateService was null, do
not bypass the write gate: attempt to reacquire the pending-write gate (use
Interlocked.CompareExchange on _stickyWritePending to set it to 1) and only call
Enqueue(state => state.BuildStickySnapshotAndScheduleWrite()) if you
successfully set the gate; if you fail to acquire the gate, do nothing. Also
ensure the finally block only clears _stickyWritePending when this retry
actually owns the gate (i.e., only call Interlocked.Exchange(ref
_stickyWritePending, 0) when the CompareExchange succeeded). Reference symbols:
_stickyStateService, _stickyStateDirty, _stickyWritePending, Enqueue,
BuildStickySnapshotAndScheduleWrite, MarkStickyDirty.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: db502f9d-fdf9-4b87-b812-dfb4a01f805e

📥 Commits

Reviewing files that changed from the base of the PR and between 8980086 and 2bd493c.

📒 Files selected for processing (4)

• src/V12_002.Orders.Callbacks.AccountOrders.cs
• src/V12_002.REAPER.Repair.cs
• src/V12_002.StickyState.cs
• tests/Epic1DeltaTests.cs

[cubic-dev-ai]

2 issues found across 4 files (changes from recent commits).

<sub>Tip: Review your code locally with the cubic CLI to iterate faster.

Re-trigger cubic</sub>

[codeant-ai]

CodeAnt AI is running Incremental review

---

Thanks for using CodeAnt! 🎉

We're free for open-source projects. if you're enjoying it, help us grow by sharing.

Share on X ·
Reddit ·
LinkedIn

[cubic-dev-ai]

You're iterating quickly on this pull request. To help protect your rate limits, cubic has paused automatic reviews on new pushes for now—when you're ready for another review, comment @cubic-dev-ai review.

[codeant-ai]

CodeAnt AI Incremental review completed.

[gitar-bot]

Important

You are using the Gitar free plan. Upgrade to unlock code review, CI analysis, auto-apply, custom automations, and more.

_Gitar

[sonarqubecloud]

Quality Gate passed

Issues
5 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud