daemon: hide AskUserQuestion from sidecode-driven turns

yyq1025 · claude · yyq1025 · commit 7c053508f35d · 2026-06-12T19:38:53.000-05:00
disallowedTools removes the tool from the model's context entirely (not
just permission-denied): V0 iOS has no answer UI, so a turn that called
AskUserQuestion would sit waiting on input the app can't deliver. With
the tool hidden the model phrases questions as plain text instead.

The ask_user detail/render path stays — resumed Desktop sessions can
still contain historical AskUserQuestion calls.

Co-Authored-By: Claude Fable 5 &lt;noreply@anthropic.com&gt;
diff --git a/packages/daemon/src/runtime/run-query.test.ts b/packages/daemon/src/runtime/run-query.test.ts
@@ -1439,6 +1439,9 @@ describe("ensureSessionLoop — mode parameter passes correct option to SDK", ()
       sessionId: "created-uuid",
       cwd: "/proj",
       includePartialMessages: true,
+      // V0 has no iOS answer UI — the tool is hidden from the model so a
+      // turn never blocks on a question the app can't deliver.
+      disallowedTools: ["AskUserQuestion"],
     });
     expect((capturedOptions as { resume?: string }).resume).toBeUndefined();
   });
@@ -1461,6 +1464,7 @@ describe("ensureSessionLoop — mode parameter passes correct option to SDK", ()
     expect(capturedOptions).toMatchObject({
       resume: "existing-uuid",
       includePartialMessages: true,
+      disallowedTools: ["AskUserQuestion"],
     });
     expect(
       (capturedOptions as { sessionId?: string }).sessionId,
diff --git a/packages/daemon/src/runtime/run-query.ts b/packages/daemon/src/runtime/run-query.ts
@@ -268,6 +268,13 @@ export function ensureSessionLoop(
     permissionMode: "bypassPermissions" as const,
     allowDangerouslySkipPermissions: true as const,
   };
+  // Removed from the model's context entirely (not just permission-denied):
+  //   - AskUserQuestion: V0 iOS has no answer UI — if the model called it,
+  //     the turn would sit waiting on input the app can't deliver. Hiding
+  //     the tool makes the model phrase questions as plain text instead.
+  // The ask_user detail/render path stays: resumed Desktop sessions can
+  // still contain historical AskUserQuestion calls.
+  const disallowedTools = ["AskUserQuestion"];
   // SDK requires sessionId XOR resume — they're mutually exclusive
   // (sdk.d.ts:1538-1540 — "Cannot be used with continue or resume unless
   // forkSession is also set"). We use sessionId for new sessions (so the
@@ -285,6 +292,7 @@ export function ensureSessionLoop(
     options.mode === "create"
       ? {
           ...bypassFlags,
+          disallowedTools,
           ...modelOption,
           sessionId: runtime.sessionId,
           includePartialMessages: true as const,
@@ -293,6 +301,7 @@ export function ensureSessionLoop(
         }
       : {
           ...bypassFlags,
+          disallowedTools,
           ...modelOption,
           resume: runtime.sessionId,
           includePartialMessages: true as const,
