fix(api): clone request body per retry + classify timeouts (CLI-1D6)#829
Merged
fix(api): clone request body per retry + classify timeouts (CLI-1D6)#829
Conversation
The authenticated fetch retry loop reused the same `(input, init)` pair across attempts. On the SDK path (a `Request` object with a stream body) or any non-primitive `init.body`, the body was consumed on attempt 1 and every retry after a timeout/5xx/401-refresh failed with `TypeError: Request body already used`. That bubbled up as the misleading "Unable to reach Sentry API. Cause: Request body already used" surfaced in CLI-1D6. Three linked fixes, all internal to `src/lib/sentry-client.ts`: 1. `buildAttemptFactory` yields a fresh `Request.clone()` per attempt (SDK path) or materializes streams/FormData/Blobs once to an ArrayBuffer (defensive path). String bodies pass through unchanged, so the common `apiRequestToRegion`/`rawApiRequest` hot path has zero allocation overhead on retry. 2. Distinguish our internal per-request timeout from user-initiated aborts and generic network errors. The timeout's abort now tags the thrown error with a `Symbol` marker; on the last retry, `handleFetchError` surfaces a `TimeoutError` with "Request timed out after Ns." plus an actionable hint instead of the opaque "Network error" envelope. `isUserAbort` semantics are unchanged. 3. Per-endpoint timeout allowlist (`ENDPOINT_TIMEOUT_OVERRIDES`). Seer `/autofix/` POSTs trigger server-side root-cause analysis that can exceed 30s; they now get 120s. Default stays 30s for everything else. Adding new slow endpoints is a one-line change. No caller changes needed — `TimeoutError` and `ApiError` both extend `CliError` so existing error handlers (explain.ts/plan.ts) keep working. Adds first test coverage for sentry-client.ts (9 focused tests covering body-reuse, timeout classification, user-abort passthrough, and the per-endpoint allowlist).
Contributor
|
![sentry[bot]](https://avatars.githubusercontent.com/in/12637?s=60&v=4){kind=small}
Cleanup pass after self-review: - File-level recap block, `ENDPOINT_TIMEOUT_OVERRIDES` multi-paragraph docstring, and narrating inline comments collapsed to single-line forms consistent with the rest of the file. - Dropped the unused `reason` field from `TimeoutOverride`. It wasn't read at runtime, only documented the pattern — the inline comment next to each entry does the same job. - Replaced the try/catch in `resolveTimeoutMs` with a call to the existing `extractUrlPath` helper, which already handles unparseable URLs consistently. - Renamed `getRequestTimeoutMs` to `__resolveRequestTimeoutMsForTests` to match the sibling `__injectTimeoutOverrideForTests` naming and signal the test-only intent. - Replaced `Object.defineProperty` calls in `fetchWithTimeout` with a typed cast + direct assignment. `enumerable: false` wasn't load- bearing; Symbol-keyed properties are non-enumerable by default and `timeoutMs` doesn't need to be hidden. - Removed the `401 refresh path` test — its own 10-line block comment admitted it only exercised the no-refresh-token early-return and not the actual refresh path. Dead coverage. - Removed the `survives unparseable URLs` test for the same reason (now redundant with `extractUrlPath`'s own coverage). - Removed ASCII `==========` section dividers (AGENTS.md prohibits decorative section markers) and the file-header numbered test list.
Contributor
Codecov Results 📊✅ 138 passed | Total: 138 | Pass Rate: 100% | Execution Time: 0ms 📊 Comparison with Base Branch
✨ No test changes detected All tests are passing successfully. ✅ Patch coverage is 100.00%. Project has 1933 uncovered lines. Coverage diff@@ Coverage Diff @@
## main #PR +/-##
==========================================
+ Coverage 95.27% 95.32% +0.05%
==========================================
Files 284 284 —
Lines 41152 41297 +145
Branches 0 0 —
==========================================
+ Hits 39206 39364 +158
- Misses 1946 1933 -13
- Partials 0 0 —Generated by Codecov Action |
![cursor[bot]](https://avatars.githubusercontent.com/in/1210556?s=60&v=4){kind=small}
Contributor
There was a problem hiding this comment.
Cursor Bugbot has reviewed your changes and found 1 potential issue.
❌ Bugbot Autofix is OFF. To automatically fix reported issues with cloud agents, enable autofix in the Cursor dashboard.
Reviewed by Cursor Bugbot for commit 78dea18. Configure here.
Cursor Bugbot caught a real regression: buildAttemptFactory was materializing FormData to an ArrayBuffer on the "streams / Blobs / FormData" defensive path. fetch auto-negotiates `Content-Type: multipart/form-data; boundary=...` only for FormData bodies, so the materialized ArrayBuffer arrived at the server with no Content-Type header. The sourcemap chunk upload (src/lib/api/sourcemaps.ts) sends FormData through this path — even the first upload attempt would fail with a server 400/415. FormData, Blob, and URLSearchParams are all re-readable by fetch (each call re-serializes / re-opens a new stream). Only a bare ReadableStream is single-use. Narrow the materialization branch to ReadableStream and let everything else pass through. Adds a regression test that posts FormData, fails the first attempt with 503, and asserts both attempts carry a well-formed multipart Content-Type and the FormData contents.
BYK
added a commit
that referenced
this pull request
Apr 23, 2026
## Summary Fix the flaky `sentry-client.test.ts` unit tests — #829's merge commit then tripped on [run 24835339085](https://github.com/getsentry/cli/actions/runs/24835339085/job/72694061015) with `expect(callCount).toBe(2) → Received: 7`. The test replaced `globalThis.fetch` with a counting mock and asserted the exact number of calls, but during the 1 s retry backoff window five foreign HTTP calls leaked through — `/api/0/organizations/1/`, `/api/0/projects/1/4510776311808000/`, etc., i.e. this CLI's own Sentry telemetry project. They came from async work in a prior test that outlived that test's `afterEach` fetch restore, so by the time the promises resolved they hit whatever `globalThis.fetch` pointed at — my counting mock. ## Fix Introduce `scopedFetchMock(marker, handler)` that only invokes `handler` for URLs containing the unique per-test marker (`__test_string_body__`, `__test_request_body__`, `__test_stream_body__`, `__test_formdata_body__`, `__test_user_abort__`, `___timeout-test___`). Any URL without the marker is delegated to the captured `originalFetch` — which is the preload.ts blocker in the common case, so foreign calls fail fast in their own context without polluting this test's `callCount`. No production code touched. ## Verification - `bun test test/lib/sentry-client.test.ts` — 8/8 pass. - `bun test test/lib/sentry-client.test.ts --rerun-each 30` — 240/240 pass. - `bun test test/lib/sentry-client.test.ts test/lib/api/ test/commands/issue/` — 221/221 pass. - `bunx tsc --noEmit` — clean. - `bun run lint` — clean (unrelated pre-existing `markdown.ts` warning). Also simulated the pollution scenario locally by running a parallel test file that fires `setTimeout` → `globalThis.fetch('https://foreign.example/…')` calls during `sentry-client.test.ts` — the scoped mock correctly ignores them and the assertions hold.
5 tasks
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Fixes CLI-1D6. The authenticated fetch retry loop reused the same
(input, init)pair across attempts; anyRequestwith a body (SDK path) or aReadableStreaminit.bodyhad its body consumed on attempt 1, so every retry after a timeout/5xx/401-refresh failed withTypeError: Request body already used. That bubbled up as the misleadingApiError: Unable to reach Sentry API. Cause: Request body already used— seen in the wild on aPOST /autofix/that timed out at 30s and couldn't retry.Changes
All in
src/lib/sentry-client.ts:Body re-use fix —
buildAttemptFactoryyields a fresh(input, init)per attempt:Requestinput →request.clone()per attempt (teed body stream).ReadableStreambody → materialized once to anArrayBuffer(single-use shape).ArrayBuffer/TypedArray/Blob/FormData/URLSearchParams/ none) passes through unchanged.fetchre-serializes these on every call, and re-serialization is required forFormDataso the auto-negotiatedContent-Type: multipart/form-data; boundary=...header is regenerated (used by sourcemap chunk upload).Internal-timeout classification — Our per-request
setTimeout-triggered abort now tags the caught error with aSymbolmarker plustimeoutMs.handleFetchErrorsurfaces aTimeoutErrorwith"Request timed out after Ns."+ actionable hint on the last attempt instead of the opaque "Network error" wrapper. User aborts (external signal) still propagate the originalAbortErrorunchanged.Per-endpoint timeout allowlist —
ENDPOINT_TIMEOUT_OVERRIDEStable. Seer/autofix/POSTs trigger server-side root-cause analysis that can take ~2 minutes; they now get 120s. Default stays 30s. Adding new slow endpoints is a one-line change.No caller changes needed —
TimeoutErrorandApiErrorboth extendCliError, so the central error handler and existinginstanceof ApiErrorbranches inexplain.ts/plan.tskeep working.User-facing effect
Before:
sentry issue explain <issue>against a Seer-slow backend producedApiError: Unable to reach Sentry API. Cause: Request body already usedafter ~33s (30s timeout + 3s retry backoff that always failed).After: the request either succeeds thanks to the 120s budget, or produces a clean
TimeoutError: Request timed out after 120s.with a link to https://status.sentry.io.Tests
New
test/lib/sentry-client.test.ts— first test coverage this file has had. 8 tests:Requestbody (SDK path, was CLI-1D6 root cause).ReadableStreambody via one-time materialization.Content-Typeon aFormDatabody (regression from Cursor Bugbot finding on 78dea18).TimeoutErrorafter exhausting retries (uses__injectTimeoutOverrideForTestsso the test doesn't wait 30s).AbortErrorunchanged.resolveTimeoutMsreturns 120_000 for/autofix/paths (with/without trailing slash, with query params).resolveTimeoutMsreturns 30_000 for non-overridden paths, including substring false-positives like/autofixation-report/.Verification
bunx tsc --noEmit— cleanbun run lint— clean (one pre-existing warning inmarkdown.ts, unrelated)bun test test/lib/sentry-client.test.ts— 8/8 passbun test test/lib/api/ test/commands/issue/— broader suite greenNotes
apiRequestToRegion/rawApiRequest) is allocation-free on retry — no regressions for the typical call.FormDatastripped the multipart boundary. Fixed in f659777 by narrowing the materialization branch to justReadableStream.