fix(sdk_main): inject session URL as secret using conversation.id

[all-hands-bot]

Problem

The PR review automation posts a progress comment and review body with a session URL, but the URL was wrong — it pointed to https://app.all-hands.dev (the app root) instead of the actual conversation.

Root cause: The correct URL is https://app.all-hands.dev/conversations/{conversation_id}. The conversation_id is only available after Conversation(...) is instantiated in sdk_main.py, but was never being captured and passed to the agent.

Fix

After Conversation(...) is created in sdk_main.py, build the session URL from conversation.id and inject it via conversation.update_secrets({"AUTOMATION_SESSION_URL": session_url}).

The SDK auto-exports secrets as env vars into the agent's bash subprocess when the command text references the key name. So the original prompt's ${AUTOMATION_SESSION_URL} just works — no prompt changes needed.

Why update_secrets() instead of prompt injection?

• sanitized_env() only strips SESSION_API_KEY — AUTOMATION_SESSION_URL passes through fine
• Secrets are auto-exported as env vars when referenced in bash commands (case-insensitive matching)
• The prompt doesn't need any modifications — ${AUTOMATION_SESSION_URL:-fallback} naturally picks up the secret value
• Clean separation: infrastructure concern (URL injection) stays in sdk_main.py, prompt stays focused on agent behavior

Changes

• openhands/automation/presets/plugin/sdk_main.py: After conversation creation, build session_url = f"{api_url}/conversations/{conversation.id}" and inject via conversation.update_secrets()
• openhands/automation/dispatcher.py: No changes (reverted from previous approach that used sandbox_id)

Tested

Triggered via review-this label on OpenHands/software-agent-sdk#3333. The progress comment and review body now contain correct https://app.all-hands.dev/conversations/{uuid} links.

[github-actions]

🚀 Deploy Preview PR Created/Updated

A deploy preview has been created/updated for this PR.

Deploy PR: https://github.com/OpenHands/deploy/pull/4429
Automation SHA: a14efa6e22f5edb7837ff8be993765c734da4ea0
Last updated: May 26, 2026, 05:28:55 PM ET

Once the deploy PR's CI passes, the automation service will be deployed to the feature environment.

[github-actions]

Coverage Report

File	Stmts	Miss	Cover	Missing
__init__.py	1	0	100%
app.py	151	83	45%	41, 44, 47, 53, 55, 58, 61–64, 67, 72–74, 76, 81–82, 84, 86–88, 90, 94, 96–97, 99–100, 103–109, 112–113, 116, 123–124, 127–128, 132, 140–141, 144, 151–152, 154, 157–158, 161, 166–174, 176–178, 284–286, 291–292, 294–295, 297, 300–302, 304–305, 307–308, 313–314, 318, 321, 323
auth.py	160	7	95%	88, 116, 125, 162, 335, 343–344
config.py	158	0	100%
constants.py	17	0	100%
db.py	67	29	56%	60, 74–75, 78–80, 82, 89, 92–93, 96, 104, 111, 144, 147–148, 152–153, 161, 169, 174, 201, 204–210
dispatcher.py	186	45	75%	70, 82, 84–85, 137, 199–202, 237, 240, 255–256, 262–264, 281–282, 288–292, 295–297, 307, 373–374, 399–406, 426, 441–442, 456–457, 466–467, 469
event_router.py	59	19	67%	83, 88, 119–121, 137–138, 156, 158, 160–161, 163, 173, 179–181, 184, 186, 188
exceptions.py	4	0	100%
execution.py	220	133	39%	39–41, 76–79, 87–91, 93, 101–103, 108–112, 114, 128–131, 133, 135, 137–140, 142–147, 149, 151–158, 160–161, 163, 199–201, 207–209, 220–223, 229–231, 271–275, 284, 292, 296, 298–299, 304–305, 310, 388–389, 473–475, 477–483, 486–487, 489, 491–493, 496, 499, 502–505, 507, 510–511, 514–516, 520–521, 525–528, 530, 538–539, 543–545, 547–553, 557, 559, 568–570, 572–574
filter_eval.py	50	2	96%	161–162
logger.py	55	17	69%	37, 50–51, 53–59, 74, 77, 101, 103–106
models.py	81	0	100%
preset_router.py	190	56	70%	143–145, 255–256, 261–268, 273, 276, 278–279, 291–294, 296–300, 305, 314, 386–388, 501–502, 507–514, 519, 522, 524–525, 537–540, 542–546, 551, 561
router.py	142	77	45%	92–93, 113, 115, 118, 120, 134, 147, 149–150, 152–153, 155–156, 159–161, 172–174, 194–196, 202–204, 208–209, 228–229, 231, 234, 259–262, 281, 284, 287, 294, 296, 330–332, 335–337, 341–342, 347, 351–354, 356, 364, 366–367, 372–373, 376, 378, 380–382, 385–388, 393, 395–396, 405, 426–428, 432
scheduler.py	61	9	85%	137–138, 175–176, 191–192, 202–203, 205
schemas.py	270	17	93%	32, 166, 172–174, 233–235, 237, 342–343, 346, 351, 356, 500, 508, 515
trigger_matcher.py	28	3	89%	72–74
uploads.py	107	59	44%	142–145, 153–155, 161–162, 165, 174–175, 178–179, 187–188, 190–193, 196–199, 201, 203–205, 207–210, 212–213, 215, 230, 236–237, 240, 243, 246, 249, 251, 264–265, 279, 282–284, 286–287, 289, 295–296, 309, 317–319, 323
watchdog.py	98	45	54%	55–57, 69–70, 162–163, 204–205, 207, 209, 218, 220–222, 224, 231–233, 235–237, 239–240, 242, 257, 259, 264–267, 269–274, 276–282, 284
webhook_router.py	80	48	40%	57, 82–83, 107–108, 110, 113–114, 116, 126, 128–132, 137, 139, 151, 154, 157, 164–165, 167, 180, 182–183, 188, 204, 206–207, 213–215, 217–218, 220, 235, 237–238, 243–244, 261, 263–264, 270–271, 273, 275
backends
__init__.py	13	0	100%
base.py	29	0	100%
cloud.py	130	62	52%	43–45, 50–52, 103, 116–118, 131–135, 142–143, 145, 147, 159–160, 229–230, 232–233, 235–238, 240–245, 247–255, 257–258, 260, 267–269, 272–273, 275, 282–284, 289–293, 295
local.py	43	0	100%
event_schemas
__init__.py	33	1	96%	53
bitbucket_data_center.py	16	0	100%
custom.py	33	5	84%	52–53, 64–66
detection.py	32	0	100%
github.py	125	4	96%	306, 311, 456, 483
jira_dc.py	16	0	100%
presets
__init__.py	0	0	100%
storage
__init__.py	6	0	100%
factory.py	15	1	93%	36
file_store.py	22	5	77%	21, 30, 35, 40, 64
google_cloud.py	72	11	84%	49, 97–102, 136–137, 190, 192
local.py	68	0	100%
s3.py	112	15	86%	56, 100, 102–103, 107, 109, 190, 213–215, 269–270, 275, 337–338
utils
__init__.py	5	0	100%
agent_server.py	53	0	100%
api_key.py	32	24	25%	40–41, 46–48, 50, 55, 60, 62–65, 67–68, 70–71, 73, 79, 81–82, 89, 91–92, 98
cron.py	45	6	86%	39, 45, 74, 80, 123, 140
log_context.py	10	0	100%
model_profiles.py	11	0	100%
run.py	84	14	83%	74–76, 183–184, 200–202, 207–209, 256, 262–263
sandbox.py	71	61	14%	49–50, 55–58, 60–62, 64–70, 80–81, 86–92, 115–116, 118–122, 124–128, 159–160, 162, 164–167, 172–173, 176, 180–181, 187–189, 194–196, 201–202, 210–212, 214
tarball_validation.py	48	0	100%
time.py	10	0	100%
webhook.py	57	9	84%	49, 54, 122, 132–134, 140, 203–204
TOTAL	3376	867	74%

[all-hands-bot]

🟡 Acceptable — Clean implementation, but incomplete

The session URL injection logic is well-implemented and correctly scoped to Cloud mode. However, the prompt preset has identical structure and needs the same fix for consistency.

[RISK ASSESSMENT]

• [Overall PR] ⚠️ Risk Assessment: 🟢 LOW

Adds optional runtime feature (session URL injection) to plugin preset only. No breaking changes, backward compatible. The missing prompt preset update is a consistency issue, not a functional risk.

VERDICT:
❌ Needs rework: Apply the same fix to both presets for consistency

KEY INSIGHT:
Using update_secrets() for runtime URL injection is elegant — secrets auto-export to bash without prompt changes.

---

Was this automated review useful? React with 👍 or 👎 to this review to help us measure review quality.
Workflow run: https://github.com/OpenHands/automation/actions/runs/26475714804

[all-hands-bot]

🔴 Critical: This same fix must be applied to the prompt preset for consistency.

The file openhands/automation/presets/prompt/sdk_main.py has identical structure:

• Creates a Conversation (line ~326)
• Calls conversation.update_secrets(secrets) (line ~331)
• But is missing the session URL injection

Apply both changes there:

1. Add the runtime-injected secrets docstring section (lines 59-61 here)
2. Add the session URL injection code block (lines 349-354 here)

Even though the PR review automation currently uses the plugin preset, the prompt preset will have the same bug if any automation using it tries to reference $AUTOMATION_SESSION_URL.

[xingyaoww]

Fixed in a14efa6 — applied the same session URL injection and docstring changes to openhands/automation/presets/prompt/sdk_main.py.

This reply was posted by an AI agent (OpenHands) on behalf of the user.

[malhotra5]

LGTM