feat(commands): preserve META by default on talm reset

[lexfrei]

What

Flip the talm reset default away from upstream's destructive --wipe-mode=all toward the META-preserving recipe (--system-labels-to-wipe=STATE,EPHEMERAL). The flip only fires when the operator passed neither --wipe-mode nor --system-labels-to-wipe on the CLI; explicit operator intent on either axis is honored unchanged.

Why

Upstream talosctl reset defaults to --wipe-mode=all, which wipes the Talos META partition along with STATE and EPHEMERAL. With META gone the node cannot self-recover and comes up in maintenance mode requiring a full re-apply — one of the most common operator-confusion classes ("I reset the node, why doesn't it come back?"). The friendly recipe operators reach for anyway, --system-labels-to-wipe=STATE,EPHEMERAL, leaves META intact and the node rejoins from its META-stored bootstrap config within ~90s on the next boot.

Talm already diverges from upstream defaults where the friendly path should be the default — kubeconfig --force=true is the established precedent. This PR extends that pattern to reset so the operator-friendly path is the default.

Behaviour matrix

Invocation	Outcome
talm reset (no wipe flags)	Wrapper populates --system-labels-to-wipe=STATE,EPHEMERAL; META preserved; node self-recovers.
talm reset --wipe-mode=all	Explicit destructive opt-in — wrapper does NOT add the safety override. Upstream's previous default.
talm reset --system-labels-to-wipe=STATE	Operator's narrower list honored byte-for-byte; wrapper does NOT silently expand to STATE,EPHEMERAL.
talm reset --wipe-mode=X --system-labels-to-wipe=Y	Both flags stated; wrapper does not interfere with either.

Server-side, when SystemPartitionsToWipe is non-empty the reset takes the label-driven path and "keep[s] other partitions intact" per upstream's flag doc at cmd/talosctl/cmd/talos/reset.go:193. The issue's manual reproduction confirms META survives empirically.

Surface

• pkg/commands/reset_handler.go (new) — wrapResetCommand, the resetSafeDefaultLabels="STATE,EPHEMERAL" const, and the resetCmdName const. PreRunE chain mirrors the crashdump / rotate-ca wrappers.
• pkg/commands/talosctl_wrapper.go — one dispatch entry after the TUI block.
• pkg/commands/reset_handler_test.go (new) — six tests: positive default-applies, negative skip-on-explicit-opt-out (three variations), help-text override pin, end-to-end real-upstream dispatch pin.
• README.md — operator-facing section under "Using talosctl commands" describing the divergence + three call shapes.
• docs/manual-test-plan.md — section H rewritten around the new default; H2a/H2b/H2c/H2d added for the boundary cases (explicit destructive, narrower operator list, --graceful=false, modeline-bearing project root).

Drive-by

The first commit (fix(commands): dedupe stdinIsTTY) clears a build break on main introduced by the interaction of two independently-developed PRs that both added a package-level stdinIsTTY injection-seam (init.go:968 from #173 + tui_handler.go:39 from #197). Git's 3-way merge accepted both because the declarations live in different files; the resulting package fails to build with stdinIsTTY redeclared in this block. The hot-fix removes the init.go copy (canonical lives in tui_handler.go); callers in resolveOverwritePolicy resolve against the package-level var unchanged. Filed inline here rather than as a separate PR to unblock this branch's test run.

Verification

Local CI (host):

• go build ./... clean
• go test ./... -race all packages green
• golangci-lint run ./... 0 issues
• GOOS=windows go vet ./... clean

Empirical smokes against a 3-node OCI Talos v1.12.6 stand follow the regression-anchor matrix in docs/manual-test-plan.md section H2-H2d.

Closes #185

[coderabbitai]

Warning

Rate limit exceeded

@lexfrei has exceeded the limit for the number of commits that can be reviewed per hour. Please wait 14 minutes and 52 seconds before requesting another review.

You’ve run out of usage credits. Purchase more in the billing tab.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 625baacf-3aaf-448d-a09c-9876a2d8605e

📥 Commits

Reviewing files that changed from the base of the PR and between a00581e and a5d61ea.

📒 Files selected for processing (6)

• README.md
• docs/manual-test-plan.md
• pkg/commands/init.go
• pkg/commands/reset_handler.go
• pkg/commands/reset_handler_test.go
• pkg/commands/talosctl_wrapper.go

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch feat/reset-meta-safe-default

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[gemini-code-assist]

Code Review

This pull request introduces a safer default behavior for the talm reset command, diverging from the upstream talosctl reset by preserving the Talos META partition by default. This change ensures that nodes can self-recover and rejoin the cluster after a reset without manual intervention. The implementation includes a new reset_handler.go to manage flag defaults and usage strings, corresponding unit tests in reset_handler_test.go, and updated documentation in the README and manual test plan. Additionally, unused terminal-related code was removed from init.go. I have no feedback to provide.