fix(agent): refresh delegation surface on mid-session Composio connect/revoke

[sanil-23]

Summary

• Orchestrator now sees Composio toolkits that get connected (or revoked) mid-conversation without requiring the user to start a new thread or restart the app.
• Refresh is schema-only — the system prompt is deliberately left untouched, so the provider's KV cache prefix stays valid for the rest of the conversation.
• Cache invalidation + eager warm decoupled from toolkit-provider routing, so toolkits without a registered provider (most of the 119 Composio toolkits — e.g. googlecalendar, github) get the same fast-path as ones with providers (gmail, notion, slack).
• refresh_delegation_tools is now a full reconcile of the synthesised subset, not append-only — stale delegate_<toolkit> tools after a revoke are cleanly removed.

Problem

PR #1670 (bd72d78b) fixed the synchronous-builder ↔ async-Composio-fetch gap on turn 1: it added Agent::refresh_delegation_tools and wired it into the if self.history.is_empty() branch of Agent::turn. From that point onward, fresh threads (and resumed threads on app restart) correctly see delegate_gmail, delegate_notion, etc. in the function-calling schema.

But the else branch — every turn after the first — deliberately skips the rebuild to preserve the KV-cache prefix the provider already tokenised. So once a session is running, the orchestrator's tool surface is frozen on the turn-1 snapshot.

User-visible symptom: in an active conversation, the user clicks "Connect Slack" in Settings, completes OAuth, types "check my unread slack threads" — orchestrator's schema still only has delegate_gmail / delegate_notion from turn 1, model deflects with "Slack isn't connected" or routes the call into delegate_tools_agent which correctly refuses Composio work. The fix is to start a new thread.

The same problem hits the reverse: revoking a toolkit mid-session leaves a zombie delegate_<toolkit> in the schema; the model can still emit calls against it and they fail downstream at the Composio dispatch layer.

PR #1670's author flagged this as a follow-up TODO. Issue #1679 has the full design discussion.

Solution

Three coordinated changes across composio/ and agent/harness/session/.

1. Read-only cache probe + connection-set hash (composio/ops.rs)

pub fn cached_active_integrations(config: &Config) -> Option<Vec<ConnectedIntegration>>;
pub fn connected_set_hash(integrations: &[ConnectedIntegration]) -> u64;

cached_active_integrations is the cheap "what does Layer 1 currently say?" probe over the existing INTEGRATIONS_CACHE. try_read so a writer (the desktop UI's 5 s composio_list_connections poll, or the event-driven invalidator) never blocks a turn. Returns None on cache miss, expired entry, or writer-held lock — the agent treats that as "no signal, leave current state alone".

connected_set_hash returns a stable u64 over the sorted connected toolkit slug set. Order-independent. Deliberately description-insensitive so cosmetic Composio catalogue edits don't invalidate the agent's surface — only membership changes do. Unconnected toolkits don't contribute because collect_orchestrator_tools filters them anyway, so churn among the unconnected set never alters the agent's schema and shouldn't trigger a refresh.

2. Eager cache warm, decoupled from provider hooks (composio/bus.rs + revoke path)

Pre-existing flow: composio_authorize publishes ComposioConnectionCreated; ComposioConnectionCreatedSubscriber waits for the connection to go ACTIVE and then calls invalidate_connected_integrations_cache(). After that, the cache is empty until something else fetches.

This PR extends that path so the subscriber also calls fetch_connected_integrations() immediately after invalidating — repopulating the cache eagerly. Net effect: the cache is hot with the new toolkit ~1-2 s after OAuth completes, instead of waiting up to 5 s for the desktop UI's next composio_list_connections poll to repopulate it.

The non-obvious part: the previous subscriber shape gated the entire tokio::spawn (containing wait_for_connection_active + invalidate) on get_provider(toolkit).is_some() — toolkits without a registered provider returned early and the cache was never invalidated at all. Layer 1 only refreshed via the desktop UI's 5 s diff-poll. This PR moves the get_provider lookup downstream of the invalidate + warm so it only gates the optional provider hook; cache refresh now fires for every connection-active event regardless of provider registration. Same fix applied symmetrically in composio_delete_connection so revokes propagate equally fast.

3. Per-turn schema-only refresh + full reconcile (agent/harness/session/turn.rs + types.rs + builder.rs)

The Agent struct gains two fields:

• last_seen_integrations_hash: u64 — initialised to 0, written at the end of every refresh.
• synthesized_tool_names: HashSet<String> — explicit mask of what collect_orchestrator_tools produced on the previous reconcile.

At the top of every subsequent turn (the else branch of if self.history.is_empty()), the agent reads cached_active_integrations, hashes the result, and compares to its stored hash. On diff, it calls refresh_delegation_tools. No build_system_prompt rebuild; no history[0] mutation. The schema is sent fresh on every API call, so the model picks up the new tools without any KV-cache invalidation. The system prompt's ## Connected Integrations block stays frozen — slightly stale until next session, but the schema is the source of truth the model routes against.

refresh_delegation_tools itself is rewritten from PR #1670's append-only shape into a full reconcile of the synthesised subset:

1. Drop every tool whose name was in synthesized_tool_names from the previous synthesis. Direct tools (query_memory, cron_add, …) are untouched because their names are never in that mask.
2. Append the freshly collected synthesis output verbatim.
3. Replace synthesized_tool_names with the new set so the next refresh has a clean mask to undo.

Three correctness wins over append-only:

• Stale tools after a revoke can never leak — anything from the previous synthesis is unconditionally dropped, the new set is authoritative.
• Direct tools can never be accidentally removed — only names in synthesized_tool_names are touched.
• Duplicate registration is impossible — retain+extend guarantees every final entry is either a non-synthesised direct tool or a member of the fresh synthed set.

On Arc::get_mut failure (sub-agent captured a snapshot before turn boundary — shouldn't happen but defended against), the previous synthesized_tool_names is restored so the next refresh attempts the full transition cleanly rather than resuming from a partial state.

Validation

Tested end-to-end on a desktop dev build pointed at staging-api.tinyhumans.ai. All scenarios validated with logged evidence:

Scenario	Result
Turn-1 sync, fresh thread	✅ unchanged from PR #1670
Turn-1 sync, app-restart-resumed thread	✅ unchanged from PR #1670
Mid-session connect, provider-having toolkit (slack)	✅ connection set changed mid-session (hash X -> Y); refreshing tool schema; added=["delegate_slack"] on next turn
Mid-session connect, no-provider toolkit (googlecalendar)	✅ same fast path; [composio:bus] connection observed active; invalidating + eagerly warming integrations cache toolkit=googlecalendar; added=["delegate_googlecalendar"]
Mid-session connect, no-provider toolkit (github)	✅ same
Three incremental connects on the same thread without Agent reconstruction	✅ each turn adds exactly one tool, removes none; hash transitions tracked; system prompt never re-rendered
Mid-session revoke (notion)	✅ cache invalidated + warmed via revoke path; post-revoke delegate_notion correctly absent
Steady-state cost on a turn with no integration change	✅ one try_read + u64 compare; KV cache preserved

Submission Checklist

• Tests added or updated (happy path + at least one failure / edge case) per Testing Strategy
• N/A: end-to-end Composio behaviour validated against staging; pure-unit coverage for the per-turn refresh would need an async Composio fixture + an Arc::get_mut harness that doesn't exist yet in the test suite. Happy to add follow-up tests if reviewers want them gated.
• Diff coverage ≥ 80% — changed lines (Vitest + cargo-llvm-cov merged via diff-cover) meet the gate enforced by .github/workflows/coverage.yml. Run pnpm test:coverage and pnpm test:rust locally; PRs below 80% on changed lines will not merge.
• N/A: behaviour-only change — no docs/TEST-COVERAGE-MATRIX.md rows added/removed/renamed.
• N/A: no new feature IDs from the matrix affected.
• No new external network dependencies introduced (mock backend used per Testing Strategy)
• N/A: not a release-cut surface change — internal tool synthesis only; manual smoke checklist untouched.
• Linked issue closed via Closes #NNN in the ## Related section

Impact

• Runtime: desktop. Affects every chat session where the user toggles a Composio connection during an active conversation.
• Performance: zero overhead per turn in the common case (no integration change). One backend list_connections round-trip per OAuth completion / revoke in a background task — same call the UI's 5 s poll was going to make anyway, just moved ~5 s earlier.
• KV cache: preserved across mid-session refreshes. System prompt is never re-rendered for this reason; the schema-only refresh rides on the tools array of the next API call.
• Compatibility: backwards-compatible. Agents without subagents declarations or signed-out users hit no-op branches.
• Security: none — same data already used for turn-1 rendering.

Related

• Closes Refresh orchestrator delegation surface on ComposioConnectionCreated / Deleted, not only at turn 1 #1679
• Builds on PR fix(agent): synthesise delegate_<toolkit> tools after live integrations fetch #1670 (bd72d78b) — fix(agent): synthesise delegate_<toolkit> tools after live integrations fetch. Adds the mid-session refresh that PR fix(agent): synthesise delegate_<toolkit> tools after live integrations fetch #1670's author flagged as a follow-up TODO.
• Reuses existing infrastructure: DomainEvent::ComposioConnectionCreated / …Deleted (src/core/event_bus/events.rs:255, :261), ComposioConnectionCreatedSubscriber pattern (src/openhuman/composio/bus.rs:330), and INTEGRATIONS_CACHE (src/openhuman/composio/ops.rs:675).
• Follow-up to file separately: Composio's action-execution gateway has a 30-60 s lag after connection.status == ACTIVE before the new OAuth token is usable for action calls. The first delegate_<toolkit> dispatch immediately after OAuth often returns Connection error, try to authenticate and succeeds on retry. Not addressable in this PR — needs a retry / readiness-probe inside integrations_agent.

---

AI Authored PR Metadata (required for Codex/Linear PRs)

Linear Issue

• Key: N/A
• URL: N/A

Commit & Branch

• Branch: fix/orchestrator-mid-session-tool-refresh
• Commit SHA: 6ed41e44

Validation Run

• cargo check --manifest-path Cargo.toml --lib — clean (18 pre-existing warnings)
• Focused live tests on staging build: turn-1 sync, mid-session connect (provider + no-provider variants), mid-session revoke, multi-incremental-connect-same-thread
• PR fix(agent): synthesise delegate_<toolkit> tools after live integrations fetch #1670's existing 6 orchestrator_tools unit tests still pass
• N/A: no frontend changes — pnpm typecheck / pnpm format:check / pnpm lint would all be no-ops for this diff
• N/A: Tauri shell unchanged

Validation Blocked

• command: N/A
• error: N/A
• impact: N/A

Behavior Changes

• Intended behavior change: orchestrator picks up Composio connect/revoke events mid-conversation, instead of staying frozen on the turn-1 snapshot until session restart.
• User-visible effect: connecting a toolkit mid-thread → the very next message can use it; revoking mid-thread → no zombie delegate_<toolkit> left in the schema.

Parity Contract

• Legacy behavior preserved: agents with empty subagents or no connected toolkits hit no-op branches. Turn-1 path unchanged. KV cache prefix preserved (system prompt is never mutated by this PR).
• Guard/fallback/dispatch parity checks: Arc::get_mut guard restores the previous synthesized_tool_names on shared-Arc failure so the next refresh retries the full transition. Cache try_read (not read) so a writer in progress never blocks a turn. Both connect-side and revoke-side eager warms are best-effort; failure falls back to the existing UI-poll-based path within ~5 s.

Duplicate / Superseded PR Handling

• Duplicate PR(s): none
• Canonical PR: this one
• Resolution: N/A

🤖 Generated with Claude Code

Summary by CodeRabbit

• New Features

  • Agent sessions now track integration snapshots and synthesized delegation tool sets for safer mid-session updates.
  • Added cached lookup and a stable connected-set hash for integrations.

• Improvements

  • Mid-session integration refreshes reconcile synthesized delegation tools atomically and log precise added/removed deltas.
  • Post-connection cache warming now runs eagerly and provider hooks are invoked after cache refresh.

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 9218a008-7172-427f-864e-90d780a42623

📥 Commits

Reviewing files that changed from the base of the PR and between 4052a45 and d7b142e.

📒 Files selected for processing (7)

• src/openhuman/agent/debug/mod.rs
• src/openhuman/agent/harness/session/builder.rs
• src/openhuman/agent/harness/session/turn.rs
• src/openhuman/agent/harness/session/types.rs
• src/openhuman/composio/bus.rs
• src/openhuman/composio/mod.rs
• src/openhuman/composio/ops.rs

✅ Files skipped from review due to trivial changes (2)

• src/openhuman/agent/harness/session/builder.rs
• src/openhuman/agent/debug/mod.rs

🚧 Files skipped from review as they are similar to previous changes (5)

• src/openhuman/composio/mod.rs
• src/openhuman/agent/harness/session/types.rs
• src/openhuman/composio/ops.rs
• src/openhuman/agent/harness/session/turn.rs
• src/openhuman/composio/bus.rs

---

📝 Walkthrough

Walkthrough

This PR makes agents detect mid-session Composio connected-integration set changes via a cached snapshot, seed and track a connection-set hash per Agent, eagerly warm/invalidate the integrations cache on connection events, and atomically reconcile synthesized delegation tools and visible tool specs when the set changes.

Changes

Mid-session integration-set refresh for orchestrator delegation tools

Layer / File(s)	Summary
Agent state fields for integration tracking src/openhuman/agent/harness/session/types.rs, src/openhuman/agent/harness/session/builder.rs	Agent gains last_seen_integrations_hash: u64 and synthesized_tool_names: HashSet<String>, both initialized in the builder and used to detect and reconcile integration-set changes.
Integration-set cache and hash helpers src/openhuman/composio/ops.rs, src/openhuman/composio/mod.rs	Adds cached_active_integrations(config) (non-blocking cached read) and connected_set_hash(integrations) (stable u64 hash over connected toolkit slugs); both are re-exported from mod.rs.
Connection event handling and cache warming src/openhuman/composio/ops.rs, src/openhuman/composio/bus.rs	ComposioConnectionCreatedSubscriber now invalidates and eagerly warms the integrations cache for all toolkits on ACTIVE connections; provider hook dispatch is optional and moved after the cache warm. composio_delete_connection also eagerly warms after invalidation.
Turn-level integration-set change detection src/openhuman/agent/harness/session/turn.rs	On turn 1, last_seen_integrations_hash is seeded from live connected_integrations. On later turns, the agent reads the cached integrations and, when connected_set_hash differs from the stored hash, updates connected_integrations, calls refresh_delegation_tools(), and records the new hash.
Delegation-tool reconciliation logic src/openhuman/agent/harness/session/turn.rs	refresh_delegation_tools now fully rebuilds the synthesized delegation-tool set, early-returns when old and new synthesized sets are both empty, drops previous synthesized tools/specs and extends with newly synthesized ones when Arc ownership allows, restores the prior synthesized-name mask on failure, updates visible tool names/specs, and logs added/removed tool-name deltas.
Debug dumper binding src/openhuman/agent/debug/mod.rs	The debug renderer captures and discards the boolean return from refresh_delegation_tools() (let _ = ...) where Arc-contention failure is unreachable.

Sequence Diagram

sequenceDiagram
  participant Agent
  participant INTEGRATIONS_CACHE
  participant ComposioBus
  participant RefreshLogic
  Agent->>INTEGRATIONS_CACHE: cached_active_integrations(config)
  INTEGRATIONS_CACHE-->>Agent: cached integrations (or None)
  Agent->>Agent: compute current_hash = connected_set_hash(integrations)
  alt Hash differs
    Agent->>RefreshLogic: refresh_delegation_tools()
    RefreshLogic->>RefreshLogic: compute new synthesized names/specs
    RefreshLogic->>Agent: update tools/specs, visible names
    Agent->>Agent: update connected_integrations & last_seen_integrations_hash
  end
  ComposioBus->>INTEGRATIONS_CACHE: invalidate_connected_integrations_cache()
  ComposioBus->>INTEGRATIONS_CACHE: fetch_connected_integrations(config) (eager warm)
  INTEGRATIONS_CACHE-->>ComposioBus: warmed cache

Loading

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

Possibly related issues

• Orchestrator's delegate_{toolkit} contract from PR #1314 broken on web channel — model emits delegate_gmail, runtime resolves to delegate_tools_agent #1659: Addresses the mid-session staleness where orchestrator can't pick newly connected toolkits mid-thread.
• Composio action calls fail with 'Connection error, try to authenticate' for 30-60s after OAuth completes — add retry / readiness probe #1688: Touches the same composio/bus cache-warm/invalidate behavior and may be related.

Possibly related PRs

• tinyhumansai/openhuman#1670: Introduced turn-1 synthesis of delegate_ tools; this PR extends that work to mid-session refreshes.
• tinyhumansai/openhuman#776: Changes to integrations cache/TTL that interact with these helpers.
• tinyhumansai/openhuman#544: Dynamic orchestrator tool collection and delegation-tool synthesis previously related to this codepath.

Suggested reviewers

• senamakel
• graycyrus

Poem

🐰 A hash and a hop, the tools rearrange,
Cache warmed, names synced — no need to change page,
Delegate hops in, or quietly departs,
The agent keeps singing with reconciled hearts.

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title clearly and specifically summarizes the main change: detecting Composio toolkit connection/revocation events mid-session and refreshing the delegation tool surface accordingly.
Linked Issues check	✅ Passed	All coding requirements from issue #1679 are met: mid-session connect/revoke detection with dirty-flag pattern, atomic refresh of both tool surface and system prompt, zero-cost steady state via cached_active_integrations and hashing, and reconcile-based tool refresh avoiding stale duplicates.
Out of Scope Changes check	✅ Passed	All changes are directly aligned with #1679 objectives: integration hash tracking, synthesized tool name tracking, cache warming on connection events, and the reconcile-based refresh mechanism.
Docstring Coverage	✅ Passed	Docstring coverage is 100.00% which is sufficient. The required threshold is 80.00%.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 2

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@src/openhuman/agent/harness/session/turn.rs`:
- Around line 171-172: The formatting of the binding for new_hash calling
crate::openhuman::composio::connected_set_hash(&cache_view) is not
rustfmt-compliant; run rustfmt (cargo fmt) on the changed Rust file (or the
whole crate) to fix the binding shape and update the whitespace/line breaks
around the let new_hash =
crate::openhuman::composio::connected_set_hash(&cache_view); expression so it
matches project formatting standards before merging.
- Around line 179-182: The code updates self.last_seen_integrations_hash even
when self.refresh_delegation_tools() can fail, which prevents future
reconciliation; change the flow so you only advance last_seen_integrations_hash
after refresh_delegation_tools() completes successfully. Concretely, call
refresh_delegation_tools() and check its Result/return (or catch the failure
from the shared Arc path) before assigning self.last_seen_integrations_hash =
new_hash — if refresh_delegation_tools() returns Err, leave
last_seen_integrations_hash unchanged (and keep self.connected_integrations set
or roll it back as appropriate) so retries remain possible; reference the
methods/fields refresh_delegation_tools, connected_integrations, and
last_seen_integrations_hash to locate and modify the logic.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 3378ac8f-66f9-436e-a371-979622b4f8e6

📥 Commits

Reviewing files that changed from the base of the PR and between 3e13ada and 6ed41e4.

📒 Files selected for processing (6)

• src/openhuman/agent/harness/session/builder.rs
• src/openhuman/agent/harness/session/turn.rs
• src/openhuman/agent/harness/session/types.rs
• src/openhuman/composio/bus.rs
• src/openhuman/composio/mod.rs
• src/openhuman/composio/ops.rs

[coderabbitai]

Actionable comments posted: 3

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@src/openhuman/composio/ops.rs`:
- Around line 739-747: The cached_active_integrations helper currently has
multiple branches (lock contention, cache miss, expired entry, and hit) but no
diagnostics; update the function cached_active_integrations to emit
development-oriented tracing/logging (use the tracing or log crate at
trace/debug level) on each branch with stable, easily searchable prefixes (e.g.
"cached_active_integrations:lock_contended", "cached_active_integrations:miss",
"cached_active_integrations:expired", "cached_active_integrations:hit") and
include key context like the derived key and elapsed duration for the expired
case so the hot-path probe behavior is observable without changing control flow.
- Around line 773-782: The current connected_set_hash implementation treats
duplicates as distinct because it hashes the sorted slugs Vec directly; to
enforce set semantics deduplicate the sorted slugs before hashing (e.g., call
dedup() on the sorted Vec<&str> named slugs) so only unique toolkit slugs are
hashed; keep the existing sort() then call slugs.dedup() and proceed to hash
slugs into hasher as before.
- Around line 177-181: fetch_connected_integrations currently returns Vec and
conflates "authoritative empty" with backend failures, so change its signature
to return Result<Vec<Integration>, E> (e.g., anyhow::Error or a concrete error
type), update its internal error paths to return Err on backend/unavailable
cases, and update callers such as the call in ops.rs where
fetch_connected_integrations(config).await is used: match on the Result and only
log the eager-warm success when Ok(_) (and distinguish Ok(Vec::new()) if you
want a separate debug message), and log an error/warn with the returned error
when Err(e) occurs so backend/auth failures are visible in logs.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 355ead27-3343-440a-9ffd-27f698c6eb02

📥 Commits

Reviewing files that changed from the base of the PR and between 6ed41e4 and 4052a45.

📒 Files selected for processing (6)

• src/openhuman/agent/harness/session/builder.rs
• src/openhuman/agent/harness/session/turn.rs
• src/openhuman/agent/harness/session/types.rs
• src/openhuman/composio/bus.rs
• src/openhuman/composio/mod.rs
• src/openhuman/composio/ops.rs

🚧 Files skipped from review as they are similar to previous changes (4)

• src/openhuman/agent/harness/session/builder.rs
• src/openhuman/composio/mod.rs
• src/openhuman/composio/bus.rs
• src/openhuman/agent/harness/session/turn.rs

[coderabbitai]

⚠️ Potential issue | 🟡 Minor | ⚡ Quick win

Enforce true set semantics in connected_set_hash.

The docs state set-equivalence semantics, but duplicates in input would currently change the hash. Dedup the sorted slugs before hashing to match the contract.

Proposed fix

     let mut slugs: Vec<&str> = integrations
         .iter()
         .filter(|i| i.connected)
         .map(|i| i.toolkit.as_str())
         .collect();
     slugs.sort();
+    slugs.dedup();
 
     let mut hasher = DefaultHasher::new();
     slugs.hash(&mut hasher);

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	let mut slugs: Vec<&str> = integrations
	.iter()
	.filter(|i| i.connected)
	.map(|i| i.toolkit.as_str())
	.collect();
	slugs.sort();
	let mut hasher = DefaultHasher::new();
	slugs.hash(&mut hasher);
	hasher.finish()
	let mut slugs: Vec<&str> = integrations
	.iter()
	.filter(|i| i.connected)
	.map(|i| i.toolkit.as_str())
	.collect();
	slugs.sort();
	slugs.dedup();
	let mut hasher = DefaultHasher::new();
	slugs.hash(&mut hasher);
	hasher.finish()

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@src/openhuman/composio/ops.rs` around lines 773 - 782, The current
connected_set_hash implementation treats duplicates as distinct because it
hashes the sorted slugs Vec directly; to enforce set semantics deduplicate the
sorted slugs before hashing (e.g., call dedup() on the sorted Vec<&str> named
slugs) so only unique toolkit slugs are hashed; keep the existing sort() then
call slugs.dedup() and proceed to hash slugs into hasher as before.