feat(cli): add --name <sandbox-name> flag to nemoclaw onboard

[latenighthackathon]

Summary

Closes #2543.

The wizard already honors NEMOCLAW_SANDBOX_NAME via promptValidatedSandboxName (non-interactive: used as the sandbox name; interactive: used as the prompt default), but the env var is undiscoverable from nemoclaw onboard --help. This blocks scripted/CI workflows that pass --from <Dockerfile> and need to spin up a second sandbox alongside an existing one — the only documented path is openshell sandbox create, which leaves the new sandbox unregistered in ~/.nemoclaw/sandboxes.json (invisible to nemoclaw status).

Problem

@mayank6136 hit this in #2543 while running multiple sandboxes for A/B testing. The fix is purely a CLI surface addition — surface the existing env-var override as a discoverable --name flag.

What changed

• src/lib/onboard-command.ts — parse --name <sandbox-name> with fail-fast rejection for missing values or values that look like another flag (--name --from ...). Detailed validation (lowercase, leading-letter, hyphen rules, reserved-name list) still happens later in promptValidatedSandboxName, so error messages stay consistent across CLI-flag and env-var entry paths.
• runOnboardCommand assigns deps.env.NEMOCLAW_SANDBOX_NAME from the parsed flag before calling runOnboard, so the existing wizard pickup keeps working unchanged — no new code path on the inner onboard side.
• Usage line updated to show --name <sandbox-name> between --from <Dockerfile> and --agent <name>.

Test plan

• Unit: 18 onboard-command tests pass, including 5 new ones for the --name flag (parsing, missing-value rejection, --name --flag rejection, env propagation, no-touch when --name absent).
• Wider regression: 157 onboard + onboard-command tests pass together (npx vitest run --project cli --testTimeout=180000 test/onboard.test.ts src/lib/onboard-command.test.ts).
• Existing 7 option-shape .toEqual assertions extended to include the new sandboxName: null field.
• Build clean, signed commit, DCO ✅.

Workflow this unblocks

# Before: required openshell sandbox create (sandbox not registered in NemoClaw)
openshell sandbox create --name my-deepobs --from Dockerfile --policy ...

# After: registered + visible to nemoclaw status
nemoclaw onboard --name my-deepobs --from Dockerfile --non-interactive

Signed-off-by: latenighthackathon latenighthackathon@users.noreply.github.com

Summary by CodeRabbit

• New Features

  • Added --name support for the onboarding CLI; non-interactive onboarding now requires a sandbox name (via flag or NEMOCLAW_SANDBOX_NAME) except when resuming.

• Tests

  • Updated unit and end-to-end tests to cover --name behavior and non-interactive validation; CI e2e commands now specify the sandbox name.

• Documentation

  • Updated onboarding, command reference, deployment, and troubleshooting docs to document the new non-interactive sandbox-name requirement.

[copy-pr-bot]

This pull request requires additional validation before any workflows can run on NVIDIA's runners.

Pull request vetters can view their responsibilities here.

Contributors can view more details about this message here.

[coderabbitai]

Note

Reviews paused

It looks like this branch is under active development. To avoid overwhelming you with review comments due to an influx of new commits, CodeRabbit has automatically paused this review. You can configure this behavior by changing the reviews.auto_review.auto_pause_after_reviewed_commits setting.

Use the following commands to manage reviews:

• @coderabbitai resume to resume automatic reviews.
• @coderabbitai review to trigger a single review.

Use the checkboxes below for quick actions:

• ▶️ Resume reviews
• 🔍 Trigger review

📝 Walkthrough

Walkthrough

Adds a --name <sandbox-name> option to nemoclaw onboard, parses and validates the flag, enforces non-interactive requirements (or env var fallback), and propagates the sandbox name into the onboarding runtime; accompanying tests, docs, and e2e scripts were updated.

Changes

Cohort / File(s)	Summary
Core Implementation src/lib/onboard-command.ts	Add `sandboxName: string
Unit Tests src/lib/onboard-command.test.ts	Expand tests to include sandboxName in expectations; cover --name parsing, missing-value and flag-as-value errors, non-interactive validation rules, env-var interactions, and --resume exemption.
E2E / Shell test/e2e/brev-e2e.test.ts, test/e2e/e2e-cloud-experimental/test-port8080-conflict.sh	Force sandbox identity in remote onboarding invocations by setting NEMOCLAW_SANDBOX_NAME="e2e-test" or passing NEMOCLAW_SANDBOX_NAME="$SANDBOX_NAME" to ensure onboarding runs target the intended sandbox.
Documentation docs/deployment/set-up-telegram-bridge.md, docs/inference/use-local-inference.md, docs/reference/commands.md, docs/reference/network-policies.md, docs/reference/troubleshooting.md	Update CLI examples and guidance to include --name <sandbox-name> or NEMOCLAW_SANDBOX_NAME=<name> for non-interactive onboarding, and reflect the new required/expected usage in examples.

Sequence Diagram

sequenceDiagram
    rect rgba(200,200,255,0.5)
    actor CLI as CLI User
    participant Parser as parseOnboardArgs
    participant Validator as Validation
    participant Runner as runOnboardCommand
    participant Env as Environment
    end

    CLI->>Parser: nemoclaw onboard --name "my-sandbox" --non-interactive
    Parser->>Validator: Extract `--name` and validate value
    alt invalid name (empty or flag-like)
        Validator-->>Parser: Reject -> print usage & exit
        Parser-->>CLI: Exit with error
    else valid name
        Validator-->>Parser: Return sandboxName
    end

    alt non-interactive and no `--name`
        Parser->>Env: Check NEMOCLAW_SANDBOX_NAME
        alt env empty or whitespace and not `--resume`
            Env-->>Parser: Fail -> print usage & exit
            Parser-->>CLI: Exit with error
        else env present or `--resume`
            Env-->>Parser: OK
        end
    end

    Parser-->>Runner: options { sandboxName: "my-sandbox" }
    Runner->>Env: Set NEMOCLAW_SANDBOX_NAME = "my-sandbox"
    Runner->>Runner: Execute onboard flow targeting sandbox
    Runner-->>CLI: Completion / status output

Loading

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~22 minutes

Poem

🐰 I hopped along the CLI plain,

"Name your warren!" — now it's plain.
Flags and envs in tidy frame,
Each sandbox called by rightful name.
🥕✨

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 66.67% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title directly and clearly summarizes the main change: adding a --name flag with sandbox-name argument to the nemoclaw onboard command.
Linked Issues check	✅ Passed	The PR implements all primary coding objectives from issue #2543: adds --name flag to nemoclaw onboard, integrates it with CLI parsing and env propagation, handles non-interactive validation, and ensures sandboxes are registered.
Out of Scope Changes check	✅ Passed	All changes directly support the --name flag feature: implementation in onboard-command.ts, unit/e2e tests, and documentation updates reflecting the new flag usage across examples.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

src/lib/onboard-command.ts (1)

128-139: ⚠️ Potential issue | 🟠 Major

Enforce sandbox name for --non-interactive mode before returning parsed options.

Line 129 currently allows --non-interactive without --name (and without checking deps.env.NEMOCLAW_SANDBOX_NAME). That does not satisfy the linked objective requiring a clean error in non-interactive runs when name is missing.

Proposed patch

   const resume = parsedArgs.includes("--resume");
   const fresh = parsedArgs.includes("--fresh");
+  const nonInteractive = parsedArgs.includes("--non-interactive");
   if (resume && fresh) {
     error("  --resume and --fresh are mutually exclusive.");
     printOnboardUsage(error, noticeAcceptFlag);
     exit(1);
   }
+
+  if (
+    nonInteractive &&
+    !sandboxName &&
+    !String(deps.env.NEMOCLAW_SANDBOX_NAME ?? "").trim()
+  ) {
+    error(
+      "  --non-interactive requires --name <sandbox-name> (or NEMOCLAW_SANDBOX_NAME).",
+    );
+    printOnboardUsage(error, noticeAcceptFlag);
+    exit(1);
+  }
 
   return {
-    nonInteractive: parsedArgs.includes("--non-interactive"),
+    nonInteractive,
     resume,
     fresh,
     recreateSandbox: parsedArgs.includes("--recreate-sandbox"),
     fromDockerfile,

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@src/lib/onboard-command.ts` around lines 128 - 139, The returned options
allow nonInteractive=true without ensuring sandboxName is set; add a pre-return
check in the same function to enforce that if nonInteractive
(parsedArgs.includes("--non-interactive")) is true and sandboxName is falsy and
deps.env[noticeAcceptEnv] (or specifically deps.env.NEMOCLAW_SANDBOX_NAME) is
not provided, the function should throw or report a clear error and abort rather
than returning options; place this check just before the current return block so
nonInteractive, sandboxName, parsedArgs, and deps.env are validated and a clean
error is produced when name is missing.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Outside diff comments:
In `@src/lib/onboard-command.ts`:
- Around line 128-139: The returned options allow nonInteractive=true without
ensuring sandboxName is set; add a pre-return check in the same function to
enforce that if nonInteractive (parsedArgs.includes("--non-interactive")) is
true and sandboxName is falsy and deps.env[noticeAcceptEnv] (or specifically
deps.env.NEMOCLAW_SANDBOX_NAME) is not provided, the function should throw or
report a clear error and abort rather than returning options; place this check
just before the current return block so nonInteractive, sandboxName, parsedArgs,
and deps.env are validated and a clean error is produced when name is missing.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Enterprise

Run ID: e4a31bd8-d0ab-41ac-a930-2b2d20d2842d

📥 Commits

Reviewing files that changed from the base of the PR and between 0b49851 and 2bec1a4.

📒 Files selected for processing (2)

• src/lib/onboard-command.test.ts
• src/lib/onboard-command.ts

[coderabbitai]

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (2)

test/e2e/brev-e2e.test.ts (1)

510-519: ⚠️ Potential issue | 🟠 Major

Keep the onboard sandbox name consistent with the rest of this suite.

This override makes nemoclaw onboard create e2e-brev, but every downstream check here still targets e2e-test on Line 552, Line 591, Line 626, and Line 703. The launchable path will now poll for the wrong sandbox and fail even when onboard succeeds.

Suggested fix

-        `NEMOCLAW_SANDBOX_NAME="e2e-brev" nohup nemoclaw onboard --non-interactive </dev/null >/tmp/nemoclaw-onboard.log 2>&1 & disown`,
+        `nohup nemoclaw onboard --non-interactive </dev/null >/tmp/nemoclaw-onboard.log 2>&1 & disown`,

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@test/e2e/brev-e2e.test.ts` around lines 510 - 519, The sshEnv invocation
launches nemoclaw with NEMOCLAW_SANDBOX_NAME="e2e-brev" which is inconsistent
with the rest of the suite that expects "e2e-test"; update the command string in
the sshEnv call (the array building the chained shell commands used to run
nemoclaw onboard) to use NEMOCLAW_SANDBOX_NAME="e2e-test" so the onboarding
target matches downstream checks (or alternatively change the downstream checks
that reference "e2e-test" to "e2e-brev" if you prefer the new name) and ensure
all references to the sandbox name (the NEMOCLAW_SANDBOX_NAME env var in the
sshEnv command and test assertions that look for "e2e-test"/"e2e-brev") are
consistent.

test/e2e/test-inference-routing.sh (1)

204-209: ⚠️ Potential issue | 🟠 Major

Don't override NEMOCLAW_SANDBOX_NAME a second time in these onboard calls.

In bash, the later inline assignment wins. These new entries override the earlier $SANDBOX_NAME / $sbx_name values, so onboard creates a different sandbox than the one the test later SSHes into, asserts on, and destroys. TC-INF-07 only duplicates the same value, but the other four cases now target the wrong sandbox.

Suggested fix

   NEMOCLAW_SANDBOX_NAME="$SANDBOX_NAME" \
     NEMOCLAW_NON_INTERACTIVE=1 \
     NEMOCLAW_ACCEPT_THIRD_PARTY_SOFTWARE=1 \
     NEMOCLAW_POLICY_TIER="open" \
-    NEMOCLAW_SANDBOX_NAME="e2e-inf-routing" \
     nemoclaw onboard --non-interactive --yes-i-accept-third-party-software \

   output=$(NVIDIA_API_KEY="nvapi-valid-format-but-fake-key-1234567890" \
     NEMOCLAW_NON_INTERACTIVE=1 \
     NEMOCLAW_ACCEPT_THIRD_PARTY_SOFTWARE=1 \
     NEMOCLAW_SANDBOX_NAME="e2e-unreachable" \
     NEMOCLAW_PROVIDER="custom" \
     NEMOCLAW_ENDPOINT_URL="https://nemoclaw-e2e.invalid/v1" \
     NEMOCLAW_MODEL="test-model" \
     COMPATIBLE_API_KEY="fake-key-for-unreachable-test" \
-    NEMOCLAW_SANDBOX_NAME="e2e-unreachable" \
     run_with_timeout 120 nemoclaw onboard --non-interactive --yes-i-accept-third-party-software \

   NEMOCLAW_SANDBOX_NAME="$sbx_name" \
     NEMOCLAW_NON_INTERACTIVE=1 \
     NEMOCLAW_ACCEPT_THIRD_PARTY_SOFTWARE=1 \
     NEMOCLAW_POLICY_TIER="open" \
     NEMOCLAW_PROVIDER="openai" \
     NEMOCLAW_MODEL="$model" \
     OPENAI_API_KEY="$api_key" \
-    NEMOCLAW_SANDBOX_NAME="e2e-inf-openai" \
     run_with_timeout 300 nemoclaw onboard --non-interactive --yes-i-accept-third-party-software \

   NEMOCLAW_SANDBOX_NAME="$sbx_name" \
     NEMOCLAW_NON_INTERACTIVE=1 \
     NEMOCLAW_ACCEPT_THIRD_PARTY_SOFTWARE=1 \
     NEMOCLAW_POLICY_TIER="open" \
     NEMOCLAW_PROVIDER="anthropic" \
     NEMOCLAW_MODEL="$model" \
     ANTHROPIC_API_KEY="$api_key" \
-    NEMOCLAW_SANDBOX_NAME="e2e-inf-anthropic" \
     run_with_timeout 300 nemoclaw onboard --non-interactive --yes-i-accept-third-party-software \

   NEMOCLAW_SANDBOX_NAME="$sbx_name" \
     NEMOCLAW_NON_INTERACTIVE=1 \
     NEMOCLAW_ACCEPT_THIRD_PARTY_SOFTWARE=1 \
     NEMOCLAW_POLICY_TIER="open" \
     NEMOCLAW_PROVIDER="custom" \
     NEMOCLAW_ENDPOINT_URL="$endpoint_url" \
     NEMOCLAW_MODEL="$endpoint_model" \
     COMPATIBLE_API_KEY="$endpoint_key" \
-    NEMOCLAW_SANDBOX_NAME="e2e-inf-custom" \
     run_with_timeout 300 nemoclaw onboard --non-interactive --yes-i-accept-third-party-software \

Also applies to: 362-371, 431-439, 506-514, 593-602

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@test/e2e/test-inference-routing.sh` around lines 204 - 209, The inline
environment variable NEMOCLAW_SANDBOX_NAME is being set twice before the
nemoclaw onboard invocation, which causes the later literal "e2e-inf-routing" to
override the earlier $SANDBOX_NAME/$sbx_name; remove the duplicate
NEMOCLAW_SANDBOX_NAME="e2e-inf-routing" assignment so the onboard call uses the
intended $SANDBOX_NAME value, and apply the same removal for the other onboard
blocks that duplicate NEMOCLAW_SANDBOX_NAME (the blocks around the nemoclaw
onboard command at the other mentioned locations).

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Outside diff comments:
In `@test/e2e/brev-e2e.test.ts`:
- Around line 510-519: The sshEnv invocation launches nemoclaw with
NEMOCLAW_SANDBOX_NAME="e2e-brev" which is inconsistent with the rest of the
suite that expects "e2e-test"; update the command string in the sshEnv call (the
array building the chained shell commands used to run nemoclaw onboard) to use
NEMOCLAW_SANDBOX_NAME="e2e-test" so the onboarding target matches downstream
checks (or alternatively change the downstream checks that reference "e2e-test"
to "e2e-brev" if you prefer the new name) and ensure all references to the
sandbox name (the NEMOCLAW_SANDBOX_NAME env var in the sshEnv command and test
assertions that look for "e2e-test"/"e2e-brev") are consistent.

In `@test/e2e/test-inference-routing.sh`:
- Around line 204-209: The inline environment variable NEMOCLAW_SANDBOX_NAME is
being set twice before the nemoclaw onboard invocation, which causes the later
literal "e2e-inf-routing" to override the earlier $SANDBOX_NAME/$sbx_name;
remove the duplicate NEMOCLAW_SANDBOX_NAME="e2e-inf-routing" assignment so the
onboard call uses the intended $SANDBOX_NAME value, and apply the same removal
for the other onboard blocks that duplicate NEMOCLAW_SANDBOX_NAME (the blocks
around the nemoclaw onboard command at the other mentioned locations).

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Enterprise

Run ID: 9ba34616-1400-46c1-ac4d-520b8a5edba0

📥 Commits

Reviewing files that changed from the base of the PR and between 2bec1a4 and 03e1756.

📒 Files selected for processing (5)

• src/lib/onboard-command.test.ts
• src/lib/onboard-command.ts
• test/e2e/brev-e2e.test.ts
• test/e2e/e2e-cloud-experimental/test-port8080-conflict.sh
• test/e2e/test-inference-routing.sh

🚧 Files skipped from review as they are similar to previous changes (2)

• src/lib/onboard-command.ts
• src/lib/onboard-command.test.ts

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@docs/reference/troubleshooting.md`:
- Around line 340-341: Update the documented non-interactive recovery examples
for the `nemoclaw onboard` command that currently show `--non-interactive` with
new `TELEGRAM_BOT_TOKEN`, `DISCORD_BOT_TOKEN`, or `SLACK_BOT_TOKEN` so they also
include acceptance of third‑party software; specifically, append
`--yes-i-accept-third-party-software` to each `nemoclaw onboard
--non-interactive` example (or show the equivalent
`NEMOCLAW_ACCEPT_THIRD_PARTY_SOFTWARE=1` prefix) so the commands run
successfully in non-interactive automation.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Enterprise

Run ID: 6afa4972-85fb-41f4-8e1e-9fba5fdc008c

📥 Commits

Reviewing files that changed from the base of the PR and between 03e1756 and 40c6c32.

📒 Files selected for processing (5)

• docs/deployment/set-up-telegram-bridge.md
• docs/inference/use-local-inference.md
• docs/reference/commands.md
• docs/reference/network-policies.md
• docs/reference/troubleshooting.md

✅ Files skipped from review due to trivial changes (3)

• docs/deployment/set-up-telegram-bridge.md
• docs/reference/network-policies.md
• docs/inference/use-local-inference.md

[wscurran]

✨ Thanks for submitting this PR that proposes a new feature to add a --name flag to the nemoclaw onboard command. This change surfaces the existing env-var override as a discoverable flag, improving the usability of the sandbox resource.

---

Related open issues:

• #2543 nemoclaw onboard --from lacks --name flag — blocks creating a second sandbox alongside an existing one in non-interactive mode

[coderabbitai]

Actionable comments posted: 1

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

docs/reference/troubleshooting.md (1)

349-353: ⚠️ Potential issue | 🟡 Minor

Show the updated token in the rerun example.

The credential-rotation check only has something new to detect when the updated TELEGRAM_BOT_TOKEN, DISCORD_BOT_TOKEN, or SLACK_BOT_TOKEN is in the environment. As written, the sample command only re-targets the sandbox, so readers can follow it and still keep using the stale credential.

Suggested doc fix

 ```console
-$ NEMOCLAW_SANDBOX_NAME=my-assistant nemoclaw onboard --non-interactive --yes-i-accept-third-party-software
+$ TELEGRAM_BOT_TOKEN=<new-token> NEMOCLAW_SANDBOX_NAME=<sandbox-name> nemoclaw onboard --non-interactive --yes-i-accept-third-party-software

</details>

<details>
<summary>🤖 Prompt for AI Agents</summary>

Verify each finding against the current code and only fix it if needed.

In @docs/reference/troubleshooting.md around lines 349 - 353, Update the re-run
example to export the updated token in the environment so the
credential-rotation check picks it up: include one of TELEGRAM_BOT_TOKEN,
DISCORD_BOT_TOKEN, or SLACK_BOT_TOKEN (depending on the integration) before the
NEMOCLAW_SANDBOX_NAME and call to the "nemoclaw onboard" command (refer to the
existing example line with "nemoclaw onboard"); replace the placeholder sandbox
name with and show TELEGRAM_BOT_TOKEN= (or the
appropriate token variable) so readers set the new token when re-running
onboarding.

</details>

</blockquote></details>

</blockquote></details>

🧹 Nitpick comments (1)

test/e2e/brev-e2e.test.ts (1)

514-514: Avoid adding another hard-coded sandbox-name literal here.

"e2e-test" is already duplicated across env setup, polling, manual registry writes, and assertions. This extra inline assignment makes future renames easy to miss; extracting a shared E2E_SANDBOX_NAME constant would keep the background onboard path aligned with the rest of the file.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@test/e2e/brev-e2e.test.ts` at line 514, Replace the hard-coded "e2e-test"
literal with a shared constant (e.g., E2E_SANDBOX_NAME) and use that constant
when building the background onboard command string in the test; locate the
inline command string containing NEMOCLAW_SANDBOX_NAME="e2e-test" nohup ... in
test/e2e/brev-e2e.test.ts, add a top-level const E2E_SANDBOX_NAME = 'e2e-test'
(or reuse an existing shared constant), and update the command to interpolate
the constant instead of the literal so the sandbox name is centralized and
consistent with the other env setup, polling, manual registry writes, and
assertions.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@src/lib/onboard-command.ts`:
- Around line 149-165: The new guard in onboard-command.ts blocks "nemoclaw
onboard --non-interactive" unless nonInteractive, resume, sandboxName, or env
NEMOCLAW_SANDBOX_NAME is set; update the failing test
(test-gpu-double-onboard.sh) to either export NEMOCLAW_SANDBOX_NAME with the
expected SANDBOX_NAME before re-invoking onboard or invoke the command with
--name "${SANDBOX_NAME}" (i.e., replace the failing call to "nemoclaw onboard
--non-interactive" with one of those two options so sandboxName is provided).

---

Outside diff comments:
In `@docs/reference/troubleshooting.md`:
- Around line 349-353: Update the re-run example to export the updated token in
the environment so the credential-rotation check picks it up: include one of
TELEGRAM_BOT_TOKEN, DISCORD_BOT_TOKEN, or SLACK_BOT_TOKEN (depending on the
integration) before the NEMOCLAW_SANDBOX_NAME and call to the "nemoclaw onboard"
command (refer to the existing example line with "nemoclaw onboard"); replace
the placeholder sandbox name with <sandbox-name> and show
TELEGRAM_BOT_TOKEN=<new-token> (or the appropriate token variable) so readers
set the new token when re-running onboarding.

---

Nitpick comments:
In `@test/e2e/brev-e2e.test.ts`:
- Line 514: Replace the hard-coded "e2e-test" literal with a shared constant
(e.g., E2E_SANDBOX_NAME) and use that constant when building the background
onboard command string in the test; locate the inline command string containing
NEMOCLAW_SANDBOX_NAME="e2e-test" nohup ... in test/e2e/brev-e2e.test.ts, add a
top-level const E2E_SANDBOX_NAME = 'e2e-test' (or reuse an existing shared
constant), and update the command to interpolate the constant instead of the
literal so the sandbox name is centralized and consistent with the other env
setup, polling, manual registry writes, and assertions.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Enterprise

Run ID: 163108ed-92be-4ca8-b831-8729ebe8b31a

📥 Commits

Reviewing files that changed from the base of the PR and between e84311f and 6ae8328.

📒 Files selected for processing (9)

• docs/deployment/set-up-telegram-bridge.md
• docs/inference/use-local-inference.md
• docs/reference/commands.md
• docs/reference/network-policies.md
• docs/reference/troubleshooting.md
• src/lib/onboard-command.test.ts
• src/lib/onboard-command.ts
• test/e2e/brev-e2e.test.ts
• test/e2e/e2e-cloud-experimental/test-port8080-conflict.sh

✅ Files skipped from review due to trivial changes (2)

• docs/reference/network-policies.md
• docs/deployment/set-up-telegram-bridge.md

🚧 Files skipped from review as they are similar to previous changes (4)

• test/e2e/e2e-cloud-experimental/test-port8080-conflict.sh
• docs/inference/use-local-inference.md
• docs/reference/commands.md
• src/lib/onboard-command.test.ts

[latenighthackathon]

Closing — #2591 by @laitingsheng landed the same --name flag (with a fuller plumb through OnboardCommandOptions / OnboardOptions, flag-wins-over-env, and the no-TTY env-var seeding path). Superseded. Cheers!