fix(decopilot): defer ensureVm() so POST /messages doesn't require a sandbox

[tlgimenes]

What is this contribution about?

Fixes the multi-pod CI failure (tests/multi-pod/scenarios/attach-cross-pod.test.ts → 500 "No link daemon registered for user ..." on POST /api/:org/decopilot/threads/:id/messages). PR #3417 added an eager ensureVm() to that handler, which provisions a sandbox via resolveDefaultSandboxProviderKind → defaults to "remote-user" when no link is registered AND STUDIO_SANDBOX_RUNNER is unset (the multi-pod compose), then throws inside provisionSandbox because there is no link daemon. Since resolveDispatchTarget only ever read vm.sandboxProviderKind off the returned entry, this refactors it to take the kind directly and drops the eager ensureVm call from the POST handler — the built-in tools layer already provisions the sandbox lazily on the first VM-tool invocation (ensureHandle in apps/mesh/src/harnesses/decopilot/built-in-tools/index.ts), so runs that never touch a VM-backed tool no longer pay the provisioning cost (or its hard prerequisites).

How to Test

1. Re-run the Multi-Pod Tests workflow on this branch — attach-cross-pod.test.ts should pass.
2. cd apps/mesh && bun test src/links/resolve-dispatch-target.test.ts src/api/routes/decopilot/routes.test.ts — all 18 tests pass.
3. Open Decopilot locally with bun run dev, send a message that triggers bash/read/write — the VM is provisioned on first tool call (unchanged behavior).

Migration Notes

None — resolveDispatchTarget is internal to mesh and has one production caller.

Review Checklist

• PR title is clear and descriptive
• Changes are tested and working
• Documentation is updated (if needed)
• No breaking changes

---

Summary by cubic

Defers VM provisioning for Decopilot so POST /api/:org/decopilot/threads/:id/messages no longer requires a sandbox, fixing 500s in multi-pod CI without a link daemon. Dispatch target is now resolved from the sandbox provider kind, and the VM is created lazily on first tool use.

• Bug Fixes

  • Prevent 500 "No link daemon registered…" by removing eager ensureVm() in POST /messages.
  • Multi-pod CI path works again; runs that never use VM-backed tools skip provisioning.

• Refactors

  • resolveDispatchTarget now takes sandboxProviderKind instead of a VM entry and avoids provisioning.
  • Route handler resolves and persists the kind, and tests were updated to stub kind resolution instead of ensureVm.

^{Written for commit 8fa7d10. Summary will update on new commits. Review in cubic}

[github-actions]

🧪 Benchmark

Should we run the Virtual MCP strategy benchmark for this PR?

React with 👍 to run the benchmark.

Reaction	Action
👍	Run quick benchmark (10 & 128 tools)

Benchmark will run on the next push after you react.

[github-actions]

Release Options

Suggested: Patch (2.339.11) — based on fix: prefix

React with an emoji to override the release type:

Reaction	Type	Next Version
👍	Prerelease	2.339.11-alpha.1
🎉	Patch	2.339.11
❤️	Minor	2.340.0
🚀	Major	3.0.0

Current version: 2.339.10

Note: If multiple reactions exist, the smallest bump wins. If no reactions, the suggested bump is used (default: patch).

[cubic-dev-ai]

No issues found across 4 files

_{Re-trigger cubic}