fix: KbWatcher late-creation + walkthrough auto-complete + agent setup gate; modal toast for cooperative setup

Three bugs from the v0.0.3 install-test session, plus the architectural
fix the user proposed (agent acts as per-project setup gatekeeper).

**Bug F — KbWatcher silent no-op when .axme-code/ created mid-session.**
attach() returned early if the directory didn't exist at activation time,
so counters never tickled live during the very first cooperative-setup
flow. Fix: split the watcher into two phases. If .axme-code/ exists, run
the steady-state content watcher as before. If not, install a root
watcher on the workspace folder that fires once when .axme-code/ appears
— at that point we tear it down, swap in the content watcher, and emit
both a fresh count and an optional onCreated callback so callers can
react to the transition.

**Bug G — walkthrough step 2 never auto-completes in the cooperative
path.** Step 2's completion event is `onContext:axme.workspaceInitialized`,
and that context flag was only set in `activate()` (snapshot) and in
`runSetup()` after a successful API-key spawn. The cooperative path
(agent inline) writes .axme-code/ from the chat, never touching
runSetup, so the context stayed `false` forever. Fix: the sidebar now
passes an onCreated callback to KbWatcher.attach() which executes
`setContext("axme.workspaceInitialized", true)` AND pushes `setupDone:
true` to the webview — so the moment the agent's first save lands, the
walkthrough page checks the step off and the sidebar pill flips to
"ready".

**Agent-as-setup-gatekeeper.** AXME is per-repo (one .axme-code/ per
project), but until now nothing told the user when they opened a fresh
repo that setup hadn't run there. The sidebar's "setup required" pill is
easy to miss. User suggested: have the agent itself say so on session
start. Implementation: buildInstructions() now checks
existsSync(<project>/.axme-code) at server startup and, when absent,
appends a HIGHEST-PRIORITY directive telling the agent to halt all other
work and ask the user (in their language) whether to perform setup
cooperatively right there in the chat — including the exact MCP tools to
call (axme_oracle, axme_save_decision, axme_save_memory,
axme_update_safety). Cursor passes our instructions to the agent on
every new chat, so this fires automatically per-project, no UI plumbing
needed.

**Setup-controller auth gate.** [Run setup (with API key)] used to spawn
`axme-code setup` blindly; the CLI's TTY-only auth prompt skipped
silently under spawn() and then the first LLM scanner failed with an
opaque exit code. Now runSetup() probes detectCurrentMode() first and,
if no credential is saved, runs ensureAuditorAuth() (the proper modal
paste-key flow) BEFORE spawning. Cancelling the auth modal aborts the
spawn cleanly with a warning toast.

**Cooperative prompt UX.** deliverChatPrompt previously surfaced a
corner toast that users could not see. Replaced with a modal info
message that requires a [Got it] click before continuing, so there is no
scenario where the user clicks [Ask agent to setup] and wonders if
anything happened. Walkthrough setup step + setup.md rewritten to lead
with the cooperative path (recommended) and demote the API-key path to a
clearly-labelled alternative.

Verified: npm test → 608 / 608 pass; self-test 6 / 6 pass; the new
setup-gate instruction fires only when .axme-code/ is absent (smoke-
tested against /tmp/axme-bare2 vs /tmp/axme-bare3).

#!axme pr=none repo=AxmeAI/axme-code

Author: George-iam

extension/package.json

@@ -105,7 +105,7 @@
           {
             "id": "axme.step.setup",
             "title": "Set up the workspace",
-            "description": "Run setup once per project. The recommended path is cooperative — the agent reads your repo and saves architecture decisions / patterns / safety rules through MCP tools, on your Cursor subscription, no separate billing.\n[Ask agent to set up (cooperative)](command:axme.askAgentSetup)\n[Set up with API key (background)](command:axme.setup)",
+            "description": "Run setup once per project. Recommended: ask the agent in chat — no extra API key needed, everything runs on your Cursor subscription.\n\n**How**: click the button below, the prompt copies to your clipboard. Then open or focus a Cursor chat (Cmd/Ctrl+L), paste (Cmd/Ctrl+V), hit Enter. The agent scans the repo and saves architecture decisions / patterns / safety rules through MCP tools.\n\n[Copy setup prompt → paste in chat](command:axme.askAgentSetup)\n\nAlternative (uses your own API key, billed separately):\n[Run setup with API key](command:axme.setup)",
             "media": { "markdown": "walkthroughs/setup.md" },
             "completionEvents": [
               "onContext:axme.workspaceInitialized"

extension/src/chat-prompt.ts

@@ -41,10 +41,20 @@ export async function deliverChatPrompt(opts: ChatPromptOptions): Promise<void>
   // Earlier drafts also fired cursor.chat.newChat to spawn a fresh chat
   // tab. Removed after user feedback: the user is almost always already
   // in a chat when they click [Ask agent to setup] — opening a new tab
-  // moves them off their current context and feels broken. The clipboard
-  // path + an explicit paste keystroke is enough UX.
+  // moves them off their current context and feels broken.
+  //
+  // The clipboard-only path used to surface its result with a corner
+  // toast, which users reported was "microscopic" and easy to miss.
+  // Use a modal dialog instead: it forces a deliberate "OK" click before
+  // execution continues, so there is no scenario where the user clicks
+  // the sidebar button and then wonders if anything happened.
   void vscode.window.showInformationMessage(
-    `AXME: ${opts.label} copied to clipboard. Paste into the chat (Cmd/Ctrl+V).`,
+    `Prompt copied to clipboard.\n\n` +
+      `Next: open or focus a Cursor chat (Cmd/Ctrl+L), paste with Cmd/Ctrl+V, ` +
+      `and hit Enter. The agent will perform the ${opts.label.replace(/ prompt$/, "")} flow ` +
+      `inline using your Cursor subscription — no extra API key needed.`,
+    { modal: true },
+    "Got it",
   );
 }
 

extension/src/kb-watcher.ts

@@ -88,42 +88,102 @@ export function readCounts(workspaceRoot: string): KbCounts {
 }
 
 export class KbWatcher implements vscode.Disposable {
-  private watcher: vscode.FileSystemWatcher | undefined;
+  private contentWatcher: vscode.FileSystemWatcher | undefined;
+  private rootWatcher: vscode.FileSystemWatcher | undefined;
   private listener: ((counts: KbCounts) => void) | undefined;
+  private creationListener: (() => void) | undefined;
   private workspaceRoot: string | undefined;
 
-  attach(workspaceRoot: string, onChange: (counts: KbCounts) => void): void {
+  /**
+   * Attach to a workspace. The watcher handles both states:
+   *
+   *   1. `.axme-code/` already exists → watch its content files for
+   *      add/change/delete (memories, decisions, backlog, safety, open-
+   *      questions) and refresh counts on every event.
+   *   2. `.axme-code/` does NOT exist yet (fresh repo, pre-setup) → watch
+   *      the workspace root for the directory's creation. The moment it
+   *      appears (cooperative setup just ran inside the chat) we switch
+   *      to the content watcher and trigger the optional onCreated
+   *      callback so callers (walkthrough context flag, sidebar
+   *      "Initialised" pill) can react.
+   *
+   * The two states are not mutually exclusive over the lifetime of the
+   * watcher — a workspace that starts uninitialised will transition to
+   * initialised the moment the agent (or the CLI) writes the directory,
+   * and the watcher must pick that up without requiring a re-attach
+   * from the caller.
+   */
+  attach(
+    workspaceRoot: string,
+    onChange: (counts: KbCounts) => void,
+    onCreated?: () => void,
+  ): void {
     this.detach();
     this.workspaceRoot = workspaceRoot;
     this.listener = onChange;
-    if (!existsSync(join(workspaceRoot, ".axme-code"))) {
+    this.creationListener = onCreated;
+
+    if (existsSync(join(workspaceRoot, ".axme-code"))) {
+      this.startContentWatcher(workspaceRoot);
+      onChange(readCounts(workspaceRoot));
+    } else {
       onChange(emptyCounts());
-      return;
+      this.startRootWatcher(workspaceRoot);
     }
-    // Single pattern covering all 5 sources. We use {a,b,c} brace
-    // expansion since createFileSystemWatcher accepts globstar.
+  }
+
+  /**
+   * Watch `<workspaceRoot>/.axme-code/` for content-file events. This is
+   * the steady-state mode once setup has run.
+   */
+  private startContentWatcher(workspaceRoot: string): void {
     const pattern = new vscode.RelativePattern(
       workspaceRoot,
       ".axme-code/{memory/**/*.md,decisions/*.md,backlog/*.md,safety/rules.yaml,open-questions.md}",
     );
-    this.watcher = vscode.workspace.createFileSystemWatcher(pattern);
+    this.contentWatcher = vscode.workspace.createFileSystemWatcher(pattern);
     const refresh = () => {
       try {
         if (!this.workspaceRoot || !this.listener) return;
         try { statSync(join(this.workspaceRoot, ".axme-code")); } catch { return; }
         this.listener(readCounts(this.workspaceRoot));
       } catch { /* swallow */ }
     };
-    this.watcher.onDidCreate(refresh);
-    this.watcher.onDidDelete(refresh);
-    this.watcher.onDidChange(refresh);
-    onChange(readCounts(workspaceRoot));
+    this.contentWatcher.onDidCreate(refresh);
+    this.contentWatcher.onDidDelete(refresh);
+    this.contentWatcher.onDidChange(refresh);
+  }
+
+  /**
+   * Watch the workspace root for `.axme-code` creation. The FS watcher API
+   * matches by glob pattern, so we ask for `.axme-code` literally — when
+   * Code or the agent creates the directory the onDidCreate event fires
+   * once. We then tear down the root watcher, install the content
+   * watcher, push a fresh count, and call the optional onCreated callback
+   * so higher-level surfaces (walkthrough completion, sidebar pill) can
+   * flip from "setup required" to "ready".
+   */
+  private startRootWatcher(workspaceRoot: string): void {
+    const pattern = new vscode.RelativePattern(workspaceRoot, ".axme-code");
+    this.rootWatcher = vscode.workspace.createFileSystemWatcher(pattern, false, true, true);
+    this.rootWatcher.onDidCreate(() => {
+      if (!this.workspaceRoot || !this.listener) return;
+      // Switch into content-watcher mode and emit a fresh count.
+      this.rootWatcher?.dispose();
+      this.rootWatcher = undefined;
+      this.startContentWatcher(this.workspaceRoot);
+      try { this.listener(readCounts(this.workspaceRoot)); } catch { /* swallow */ }
+      try { this.creationListener?.(); } catch { /* swallow */ }
+    });
   }
 
   detach(): void {
-    this.watcher?.dispose();
-    this.watcher = undefined;
+    this.contentWatcher?.dispose();
+    this.contentWatcher = undefined;
+    this.rootWatcher?.dispose();
+    this.rootWatcher = undefined;
     this.listener = undefined;
+    this.creationListener = undefined;
     this.workspaceRoot = undefined;
   }
 

extension/src/setup-controller.ts

@@ -15,6 +15,7 @@ import { spawn } from "node:child_process";
 import { existsSync } from "node:fs";
 import { join } from "node:path";
 import { IdeKind } from "./ide-detect.js";
+import { detectCurrentMode, ensureAuditorAuth } from "./auditor-auth.js";
 import { log, logError, show as showOutput } from "./log.js";
 
 function workspaceRoot(): string | undefined {
@@ -50,6 +51,26 @@ export async function runSetup(binary: string, ide: IdeKind): Promise<void> {
     return;
   }
 
+  // Setup spawns LLM scanners (oracle / decision / safety / deploy) which
+  // each call the agent SDK and need a credential. The CLI's
+  // ensureAuthConfiguredForSetup() interactively prompts when TTY is
+  // present, but we spawn it from VS Code with no TTY — so it silently
+  // skips the prompt and the first scanner fails with an opaque exit code.
+  // Run our extension-side modal first instead: it has paste-key UX,
+  // dashboard links, and matches the same auth flow the auditor uses.
+  // Skip if a credential is already saved (which is why your re-install
+  // appeared to "find" a key — auth.yaml persists across uninstalls).
+  const existingMode = await detectCurrentMode(binary).catch(() => undefined);
+  if (!existingMode) {
+    const picked = await ensureAuditorAuth(binary);
+    if (!picked || picked === "disabled") {
+      void vscode.window.showWarningMessage(
+        "AXME Code: setup cancelled — needs an LLM credential to scan the project. " +
+          "Either paste a key when prompted, or use the cooperative \"Ask agent to setup\" path instead.",
+      );
+      return;
+    }
+  }
   await vscode.window.withProgress(
     {
       location: vscode.ProgressLocation.Notification,

extension/src/sidebar-webview.ts

@@ -95,9 +95,27 @@ export class AxmeSidebarProvider implements vscode.WebviewViewProvider {
       this.kbWatcher = new KbWatcher();
       // Counters + backlog list refresh together — both react to file
       // changes under .axme-code/, and the watcher already debounces.
-      this.kbWatcher.attach(workspaceRoot, (counts) => {
-        this.push({ counts, backlog: readBacklog(workspaceRoot).slice(0, 5) });
-      });
+      // onCreated fires when .axme-code/ appears mid-session (e.g. the
+      // agent just performed cooperative setup); we use it to flip the
+      // sidebar pill to "ready" AND drive the walkthrough step-2
+      // completion key. Without this, neither the sidebar nor the
+      // Getting Started walkthrough would notice that setup completed
+      // until the next window reload.
+      this.kbWatcher.attach(
+        workspaceRoot,
+        (counts) => {
+          this.push({ counts, backlog: readBacklog(workspaceRoot).slice(0, 5) });
+        },
+        () => {
+          this.push({ setupDone: true });
+          void vscode.commands.executeCommand(
+            "setContext",
+            "axme.workspaceInitialized",
+            true,
+          );
+          log("KbWatcher: .axme-code/ created — sidebar + walkthrough updated.");
+        },
+      );
     }
     // Push the live disk state for hooks. This overrides the activation
     // report's snapshot (which can be stale after a reinstall or after

extension/walkthroughs/setup.md

@@ -8,20 +8,33 @@ Setup scans your repo and bootstraps the AXME knowledge base in `.axme-code/`:
 - **`safety/rules.yaml`** — commands and file paths the hooks should block (e.g. `git push --force`, edits to `~/.aws/credentials`).
 - **`backlog/`** — open work that persists across chat sessions.
 
-## Two ways to run setup
+## Recommended path — ask the agent (no extra cost)
 
-### Cooperative (recommended — no extra cost)
+1. In the AXME sidebar (or this walkthrough page), click **Copy setup prompt → paste in chat**.
+2. A short toast confirms the prompt was copied to your clipboard.
+3. Open or focus a Cursor chat with **Cmd / Ctrl + L**.
+4. Paste with **Cmd / Ctrl + V** and hit **Enter**.
 
-Click **Ask agent to set up** in step 2. We copy a setup prompt to your clipboard
-and open a fresh chat tab. Paste, hit enter, and the agent does the scan inside
-the chat using your Cursor subscription. Nothing else is billed.
+The agent calls AXME MCP tools (`axme_oracle`, `axme_save_decision`,
+`axme_save_memory`, `axme_update_safety`) directly inside the chat. Everything
+runs on your **Cursor subscription** — no separate API key, no extra billing.
+The sidebar counters tick up live as files appear in `.axme-code/`.
 
-### Background (one-time fee, more thorough)
+This is the path that step 2 of the walkthrough completes on. Once the agent
+finishes, the **Set up the workspace** step gets checked off automatically.
 
-Click **Set up with API key**. You'll be asked for an Anthropic or Cursor SDK
-API key (saved to `~/.config/axme-code/`). The scan then runs as a separate
-LLM process, more methodical but billed separately. Good for very large repos
-or when you want to do it once and forget about it.
+## Alternative — API key path
 
-Either way, this step completes when `.axme-code/` is created. You can also
-re-run setup any time from the sidebar or `AXME: Set up workspace` command.
+If you'd rather not occupy your chat with a setup pass, click
+**Run setup with API key** in step 2. AXME prompts you (modal) for an
+Anthropic or Cursor SDK API key, saves it to `~/.config/axme-code/`, and
+spawns the scanners as a separate process.
+
+Cost: a few cents per setup depending on repo size — billed against the API
+key you paste in, not your Cursor subscription.
+
+## Re-running setup
+
+Setup is idempotent. You can re-run it any time later from the sidebar
+"Workspace not initialised" section, the command palette `AXME: Set up
+workspace`, or by asking the agent in chat.

src/server.ts

@@ -235,6 +235,35 @@ function buildInstructions(): string {
   } else {
     parts.push("Call axme_context at session start. It returns compact meta and instructions to call axme_oracle, axme_decisions, axme_memories in parallel.");
   }
+
+  // Per-project setup gate: AXME is configured ONCE per repo (writes
+  // .axme-code/ at the project root). When the agent lands in a fresh repo
+  // and the storage is absent, axme_context returns "project not
+  // initialised" — easy for the agent to ignore. Make it impossible to
+  // miss by stating the obligation up-front in the instructions block so
+  // the agent reads it BEFORE the first axme_context call.
+  const axmeDirExists = existsSync(join(defaultProjectPath, ".axme-code"));
+  if (!axmeDirExists) {
+    parts.push(
+      "PROJECT SETUP REQUIRED (HIGHEST PRIORITY): this project has no " +
+        ".axme-code/ directory — AXME setup has never run here. BEFORE " +
+        "doing anything else (before answering the user's actual question, " +
+        "before reading project files), tell the user verbatim in their " +
+        "language: \"AXME knowledge base is not initialized for this " +
+        "project. I can run setup now — it scans the repo and saves " +
+        "architecture decisions, patterns, and safety rules into " +
+        ".axme-code/ so future sessions auto-load context. Want me to do " +
+        "it?\" If the user agrees (any affirmative in any language), " +
+        "perform setup yourself inline: call axme_oracle to scan the " +
+        "project, then axme_save_decision for each architecture finding " +
+        "(scope: workspace), axme_save_memory for each gotcha (type: " +
+        "pattern, scope: workspace), and axme_update_safety for each " +
+        "dangerous pattern. When done, summarize what you saved and only " +
+        "THEN proceed to the user's original request. Do not silently " +
+        "work without setup — the lack of .axme-code/ means your future " +
+        "selves will have no project memory at all.",
+    );
+  }
   parts.push("TRUNCATED OUTPUT RULE: if ANY MCP tool output is truncated or saved to a file (you see 'Output too large' or 'saved to file'), you MUST use the Read tool to read the full file content into your context. Do not proceed with partial data.");
   parts.push("Save memories, decisions, and safety rules immediately when discovered during work.");
   parts.push("GIT COMMIT/PUSH GATE: every git commit and git push command MUST end with `#!axme pr=<NUMBER|none> repo=<OWNER/REPO>`. Example: `git commit -m \"fix bug\" #!axme pr=42 repo=AxmeAI/axme-code`. Use pr=none if no PR exists yet. Without this suffix the command will be blocked.");