ACPX: fix CI config fixtures and secret allowlists

rodrigouroz · rodrigouroz · commit 992a770a9096 · 2026-03-10T12:58:53.000Z
Add the required mcpServers field to ResolvedAcpxPluginConfig test
fixtures and mark the remaining test-only provider credential literals as
allowlisted false positives for detect-secrets.
diff --git a/extensions/acpx/src/runtime-internals/test-fixtures.ts b/extensions/acpx/src/runtime-internals/test-fixtures.ts
@@ -306,6 +306,7 @@ export async function createMockRuntimeFixture(params?: {
     nonInteractivePermissions: "fail",
     strictWindowsCmdWrapper: true,
     queueOwnerTtlSeconds: params?.queueOwnerTtlSeconds ?? 0.1,
+    mcpServers: {},
   };
 
   return {
diff --git a/extensions/acpx/src/runtime.test.ts b/extensions/acpx/src/runtime.test.ts
@@ -25,6 +25,7 @@ beforeAll(async () => {
       nonInteractivePermissions: "fail",
       strictWindowsCmdWrapper: true,
       queueOwnerTtlSeconds: 0.1,
+      mcpServers: {},
     },
     { logger: NOOP_LOGGER },
   );
diff --git a/src/acp/client.test.ts b/src/acp/client.test.ts
@@ -136,8 +136,8 @@ describe("resolveAcpClientSpawnEnv", () => {
 
   it("preserves provider auth env vars for explicit custom ACP servers", () => {
     const env = resolveAcpClientSpawnEnv({
-      OPENAI_API_KEY: "openai-secret",
-      GITHUB_TOKEN: "gh-secret",
+      OPENAI_API_KEY: "openai-secret", // pragma: allowlist secret
+      GITHUB_TOKEN: "gh-secret", // pragma: allowlist secret
       HF_TOKEN: "hf-secret",
       OPENCLAW_API_KEY: "keep-me",
     });
