Skip to content

fix(menubar): support installer HTTP proxies#475

Merged
iamtoruk merged 1 commit into
getagentseal:mainfrom
sleicht:feature/473-menubar-proxy-clean
Jun 11, 2026
Merged

fix(menubar): support installer HTTP proxies#475
iamtoruk merged 1 commit into
getagentseal:mainfrom
sleicht:feature/473-menubar-proxy-clean

Conversation

@sleicht

@sleicht sleicht commented Jun 10, 2026

Copy link
Copy Markdown
Contributor

Summary

Add proxy-aware downloads to the menubar installer so corporate networks can install the macOS menubar app through standard proxy environment variables.

Context

codeburn menubar downloads release metadata, the app zip, and checksum from GitHub. Company networks may block direct GitHub access and require traffic through an HTTP proxy.

Closes #473

Changes

  • Route menubar installer network calls through an Undici ProxyAgent when proxy env vars are set.
  • Honour HTTPS_PROXY / https_proxy for HTTPS requests, falling back to HTTP_PROXY / http_proxy.
  • Honour NO_PROXY / no_proxy for host and domain bypass.
  • Add tests for proxy selection and NO_PROXY bypass.

Key Implementation Details

The PR uses undici@^7.27.2 rather than v8 because the project supports Node >=22.13.0 and Undici v8 requires Node >=22.19.0.

Testing

npm test -- run tests/menubar-installer.test.ts
npx tsc --noEmit

Both commands passed locally on the clean PR branch.

npm run build remains blocked in this environment by network failure in scripts/bundle-litellm.mjs before compilation.

@iamtoruk

iamtoruk commented Jun 11, 2026

Copy link
Copy Markdown
Member

Thanks for this, proxy support is genuinely useful and the implementation is clean. The env var precedence and the NO_PROXY matching look right, and using a per-request dispatcher instead of setGlobalDispatcher is the right call.

One thing to sort before merge: the package-lock entry for undici resolved to a private registry rather than the public npm one:

"resolved": "https://artifactory.gcp.sanet17.ch/artifactory/api/npm/sanitas-npm/undici/-/undici-7.27.2.tgz"

Looks like npm picked that up from your company proxy during install. It would break npm ci for anyone who cannot reach that host (CI, other contributors), and it leaks your internal registry URL into the repo. The integrity hash matches the real public undici@7.27.2, so the package itself is fine, it just needs to resolve from registry.npmjs.org.

Could you regenerate the lockfile against the public registry and recommit? Roughly:

npm install --registry=https://registry.npmjs.org/

Minor and not blocking: a quick codeburn menubar run on a normal network would be good to confirm the switch to undici's fetch did not change the non-proxy download path, since the tests cover proxy resolution but not the actual download.

Thanks again for the contribution.

@iamtoruk iamtoruk mentioned this pull request Jun 11, 2026
Closed
@sleicht
fix(menubar): support installer HTTP proxies
002d49c 
Route installer GitHub downloads through proxy env vars so corporate networks can install the menubar app.

Refs getagentseal#473
@sleicht sleicht force-pushed the feature/473-menubar-proxy-clean branch from fc8de5c to 002d49c Compare June 11, 2026 08:46
@sleicht

sleicht commented Jun 11, 2026

Copy link
Copy Markdown
Contributor Author

Thank you for the review, @iamtoruk. I fixed the lock file and rebased onto main.

@iamtoruk iamtoruk merged commit 04f3fc1 into getagentseal:main Jun 11, 2026
3 checks passed
@sleicht sleicht deleted the feature/473-menubar-proxy-clean branch June 11, 2026 12:45
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Support company HTTP proxies in menubar installer downloads

2 participants

@sleicht @iamtoruk