fix(test): fix CI hang, auth guard tests, and PR #610 test rewrite

[betegon]

Summary

Fixes the CI unit test hang and ~200 test failures caused by three merged PRs (#610, #611). Supersedes #612 with a cleaner approach.

1. CI Hang — telemetry beforeExit handler leak

initSentry(false) in test afterEach hooks never cleaned up the beforeExit handler registered by a prior initSentry(true) call — the removal was gated on client?.getOptions().enabled. SDK-internal handlers from enableLogs and sendClientReports also accumulated on re-init.

Fix (src/lib/telemetry.ts):

• Close previous Sentry client before re-init (Sentry.getClient()?.close(0))
• Move handler removal outside the enabled guard
• Gate enableLogs and sendClientReports on enabled (not just libraryMode)
• Snapshot and clean up ProcessSession beforeExit listeners in telemetry.test.ts

2. Auth guard test failures (PR #611)

buildCommand now calls getAuthConfig() before every command. Tests had no auth token.

Fix:

• Set fake SENTRY_AUTH_TOKEN in test/preload.ts (blocked by global fetch mock)
• Add auth: false to all 34 buildCommand calls in command.test.ts
• Save/clear/restore SENTRY_AUTH_TOKEN in 9 test files that verify unauthenticated behavior
• Add getAuthConfig mock + resolveOrgProjectFromArg mock in log/list tests

3. Dead code tests (PR #610)

PR #610 moved org resolution and DSN detection from createSentryProject to wizard-runner's resolvePreSpinnerOptions. Tests that exercised those flows through handleLocalOp hit the new !options.org guard.

Fix: Rewrote 15 tests to call resolveOrgSlug and detectExistingProject directly, plus 2 new tests for createSentryProject's existing-project check. No test coverage lost.

4. Mtime test flakiness

Replaced Bun.sleep(10) with explicit utimes() calls in dsn-cache and project-root-cache tests for deterministic mtime differences on Linux CI.

Test plan

• bun test — 630 pass, 4 fail (pre-existing: 3 resolve-target timeouts from unmocked fetch, 1 log/list failure from missing generated api-schema.json)
• bun run lint — clean (1 pre-existing warning)

Made with Cursor

[github-actions]

Semver Impact of This PR

🟢 Patch (bug fixes)

📋 Changelog Preview

This is how your changes will appear in the changelog.
Entries from this PR are highlighted with a left border (blockquote style).

---

New Features ✨

• (auth) Enforce auth by default in buildCommand by betegon in #611
• (skill) Add eval framework to measure SKILL.md effectiveness by BYK in #602
• (telemetry) Add seer.outcome span tag for Seer command metrics by BYK in #609
• (upgrade) Show changelog summary during CLI upgrade by BYK in #594

Bug Fixes 🐛

Upgrade

• Prevent spinner freeze during delta patch application by BYK in #608
• Indent changelog, add emoji to heading, hide empty sections by BYK in #604

Other

• (dashboard) Reject MRI queries with actionable tracemetrics guidance by BYK in #601
• (init) Prompt/spinner ordering by betegon in #610
• (skill) Avoid unnecessary auth, reinforce auto-detection, fix field examples by BYK in #599

• (test) Fix CI hang, auth guard tests, and PR fix(init): prompt/spinner ordering #610 test rewrite by betegon in #616

• 2 bug fixes — subcommand crash, negative span depth, pagination JSON parse by cursor in #607

Documentation 📚

• (skill) Document dashboard widget constraints and deprecated datasets by BYK in #605
• Fix documentation gaps and embed skill files at build time by cursor in #606

Internal Changes 🔧

• Regenerate skill files and command docs by github-actions[bot] in 664362ca

---

_{🤖 This preview updates automatically when you update the PR.}

[cursor]

Global client closed during reinitialization

Medium Severity

initSentry now unconditionally calls Sentry.getClient()?.close(0) before every init. In libraryMode, concurrent SDK invocations can close another in-flight invocation’s client, which can drop telemetry and invalidate active spans. It can also close a pre-existing process-wide Sentry client not created by this module.

 

[cursor]

Overbroad beforeExit listener cleanup

Low Severity

afterAll removes every beforeExit listener not present at file load, not just listeners created by this test. In shared test workers, this can unregister unrelated listeners added by other modules, causing cross-test interference and hard-to-reproduce failures.

 

[github-actions]

Codecov Results 📊

✅ 129 passed | Total: 129 | Pass Rate: 100% | Execution Time: 0ms

📊 Comparison with Base Branch

Metric	Change
Total Tests	—
Passed Tests	—
Failed Tests	—
Skipped Tests	—

✨ No test changes detected

All tests are passing successfully.

✅ Patch coverage is 100.00%. Project has 1349 uncovered lines.
❌ Project coverage is 95.46%. Comparing base (base) to head (head).

Coverage diff

@@            Coverage Diff             @@
##          main       #PR       +/-##
==========================================
- Coverage    95.73%    95.46%    -0.27%
==========================================
  Files          204       204         —
  Lines        29877     29738      -139
  Branches         0         0         —
==========================================
+ Hits         28601     28389      -212
- Misses        1276      1349       +73
- Partials         0         0         —

---

Generated by Codecov Action

[cursor]

Cursor Bugbot has reviewed your changes and found 1 potential issue.

There are 3 total unresolved issues (including 2 from previous reviews).

^{Bugbot Autofix is OFF. To automatically fix reported issues with cloud agents, enable autofix in the Cursor dashboard.}

[cursor]

Spy cleanup skipped on assertion failure

Low Severity

The test creates resolveOrgProjectSpy and restores it only at the end of the happy path. If an assertion throws before mockRestore(), the mock remains active and can affect later tests in test/commands/log/list.test.ts, causing cascading failures and misleading CI results.