From a89705074227ccb28b245eec3b8db815c76863f6 Mon Sep 17 00:00:00 2001
From: NagyVikt <nagy.viktordp@gmail.com>
Date: Sat, 16 May 2026 16:30:31 +0200
Subject: [PATCH] feat(fleet-launcher): introduce kitty spawn + heartbeat crate

Ports the kitty-spawn path from ~/Documents/hcom (terminal.rs) into a
small standalone API for codex-fleet supervisors and tooling.

- lib.rs: CLI spawn surface (codex / claude / gemini / claw)
- heartbeat.rs: presence/heartbeat file + sysinfo-based liveness checks
- bin/spawn.rs: fleet-spawn CLI

Workspace registers it automatically via the existing `fleet-*` glob.

This lands the previously-staged crate so the dependent CliConvention
refactor (agent/refactor-cli-convention-trait) can be rebased onto main
and merged as a follow-up.
---
 rust/Cargo.lock                      | 204 ++++++++++++
 rust/fleet-launcher/Cargo.toml       |  26 ++
 rust/fleet-launcher/src/bin/spawn.rs | 155 +++++++++
 rust/fleet-launcher/src/heartbeat.rs | 436 +++++++++++++++++++++++++
 rust/fleet-launcher/src/lib.rs       | 471 +++++++++++++++++++++++++++
 5 files changed, 1292 insertions(+)
 create mode 100644 rust/fleet-launcher/Cargo.toml
 create mode 100644 rust/fleet-launcher/src/bin/spawn.rs
 create mode 100644 rust/fleet-launcher/src/heartbeat.rs
 create mode 100644 rust/fleet-launcher/src/lib.rs

diff --git a/rust/Cargo.lock b/rust/Cargo.lock
index e7ab941..569b6ad 100644
--- a/rust/Cargo.lock
+++ b/rust/Cargo.lock
@@ -147,6 +147,12 @@ dependencies = [
  "unicode-segmentation",
 ]
 
+[[package]]
+name = "core-foundation-sys"
+version = "0.8.7"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "773648b94d0e5d620f64f280777445740e61fe701025087ec8b57f45c791888b"
+
 [[package]]
 name = "cpufeatures"
 version = "0.2.17"
@@ -400,6 +406,15 @@ dependencies = [
  "crossterm",
 ]
 
+[[package]]
+name = "fleet-launcher"
+version = "0.0.1"
+dependencies = [
+ "jiff",
+ "libc",
+ "sysinfo",
+]
+
 [[package]]
 name = "fleet-layout"
 version = "0.0.1"
@@ -692,6 +707,47 @@ version = "1.0.18"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "8f42a60cbdf9a97f5d2305f08a87dc4e09308d1276d28c869c684d7777685682"
 
+[[package]]
+name = "jiff"
+version = "0.2.24"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "f00b5dbd620d61dfdcb6007c9c1f6054ebd75319f163d886a9055cec1155073d"
+dependencies = [
+ "jiff-static",
+ "jiff-tzdb-platform",
+ "log",
+ "portable-atomic",
+ "portable-atomic-util",
+ "serde_core",
+ "windows-sys",
+]
+
+[[package]]
+name = "jiff-static"
+version = "0.2.24"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "e000de030ff8022ea1da3f466fbb0f3a809f5e51ed31f6dd931c35181ad8e6d7"
+dependencies = [
+ "proc-macro2",
+ "quote",
+ "syn 2.0.117",
+]
+
+[[package]]
+name = "jiff-tzdb"
+version = "0.1.6"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "c900ef84826f1338a557697dc8fc601df9ca9af4ac137c7fb61d4c6f2dfd3076"
+
+[[package]]
+name = "jiff-tzdb-platform"
+version = "0.1.3"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "875a5a69ac2bab1a891711cf5eccbec1ce0341ea805560dcd90b7a2e925132e8"
+dependencies = [
+ "jiff-tzdb",
+]
+
 [[package]]
 name = "js-sys"
 version = "0.3.98"
@@ -879,6 +935,15 @@ dependencies = [
  "minimal-lexical",
 ]
 
+[[package]]
+name = "ntapi"
+version = "0.4.3"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "c3b335231dfd352ffb0f8017f3b6027a4917f7df785ea2143d8af2adc66980ae"
+dependencies = [
+ "winapi",
+]
+
 [[package]]
 name = "num-conv"
 version = "0.2.1"
@@ -1059,6 +1124,15 @@ version = "1.13.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "c33a9471896f1c69cecef8d20cbe2f7accd12527ce60845ff44c153bb2a21b49"
 
+[[package]]
+name = "portable-atomic-util"
+version = "0.2.7"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "c2a106d1259c23fac8e543272398ae0e3c0b8d33c88ed73d0cc71b0f1d902618"
+dependencies = [
+ "portable-atomic",
+]
+
 [[package]]
 name = "powerfmt"
 version = "0.2.0"
@@ -1453,6 +1527,19 @@ dependencies = [
  "unicode-ident",
 ]
 
+[[package]]
+name = "sysinfo"
+version = "0.32.1"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "4c33cd241af0f2e9e3b5c32163b873b29956890b5342e6745b917ce9d490f4af"
+dependencies = [
+ "core-foundation-sys",
+ "libc",
+ "memchr",
+ "ntapi",
+ "windows",
+]
+
 [[package]]
 name = "tempfile"
 version = "3.27.0"
@@ -1902,12 +1989,65 @@ version = "0.4.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "712e227841d057c1ee1cd2fb22fa7e5a5461ae8e48fa2ca79ec42cfc1931183f"
 
+[[package]]
+name = "windows"
+version = "0.57.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "12342cb4d8e3b046f3d80effd474a7a02447231330ef77d71daa6fbc40681143"
+dependencies = [
+ "windows-core",
+ "windows-targets",
+]
+
+[[package]]
+name = "windows-core"
+version = "0.57.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "d2ed2439a290666cd67ecce2b0ffaad89c2a56b976b736e6ece670297897832d"
+dependencies = [
+ "windows-implement",
+ "windows-interface",
+ "windows-result",
+ "windows-targets",
+]
+
+[[package]]
+name = "windows-implement"
+version = "0.57.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "9107ddc059d5b6fbfbffdfa7a7fe3e22a226def0b2608f72e9d552763d3e1ad7"
+dependencies = [
+ "proc-macro2",
+ "quote",
+ "syn 2.0.117",
+]
+
+[[package]]
+name = "windows-interface"
+version = "0.57.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "29bee4b38ea3cde66011baa44dba677c432a78593e202392d1e9070cf2a7fca7"
+dependencies = [
+ "proc-macro2",
+ "quote",
+ "syn 2.0.117",
+]
+
 [[package]]
 name = "windows-link"
 version = "0.2.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "f0805222e57f7521d6a62e36fa9163bc891acd422f971defe97d64e70d0a4fe5"
 
+[[package]]
+name = "windows-result"
+version = "0.1.2"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "5e383302e8ec8515204254685643de10811af0ed97ea37210dc26fb0032647f8"
+dependencies = [
+ "windows-targets",
+]
+
 [[package]]
 name = "windows-sys"
 version = "0.61.2"
@@ -1917,6 +2057,70 @@ dependencies = [
  "windows-link",
 ]
 
+[[package]]
+name = "windows-targets"
+version = "0.52.6"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "9b724f72796e036ab90c1021d4780d4d3d648aca59e491e6b98e725b84e99973"
+dependencies = [
+ "windows_aarch64_gnullvm",
+ "windows_aarch64_msvc",
+ "windows_i686_gnu",
+ "windows_i686_gnullvm",
+ "windows_i686_msvc",
+ "windows_x86_64_gnu",
+ "windows_x86_64_gnullvm",
+ "windows_x86_64_msvc",
+]
+
+[[package]]
+name = "windows_aarch64_gnullvm"
+version = "0.52.6"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "32a4622180e7a0ec044bb555404c800bc9fd9ec262ec147edd5989ccd0c02cd3"
+
+[[package]]
+name = "windows_aarch64_msvc"
+version = "0.52.6"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "09ec2a7bb152e2252b53fa7803150007879548bc709c039df7627cabbd05d469"
+
+[[package]]
+name = "windows_i686_gnu"
+version = "0.52.6"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "8e9b5ad5ab802e97eb8e295ac6720e509ee4c243f69d781394014ebfe8bbfa0b"
+
+[[package]]
+name = "windows_i686_gnullvm"
+version = "0.52.6"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "0eee52d38c090b3caa76c563b86c3a4bd71ef1a819287c19d586d7334ae8ed66"
+
+[[package]]
+name = "windows_i686_msvc"
+version = "0.52.6"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "240948bc05c5e7c6dabba28bf89d89ffce3e303022809e73deaefe4f6ec56c66"
+
+[[package]]
+name = "windows_x86_64_gnu"
+version = "0.52.6"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "147a5c80aabfbf0c7d901cb5895d1de30ef2907eb21fbbab29ca94c5b08b1a78"
+
+[[package]]
+name = "windows_x86_64_gnullvm"
+version = "0.52.6"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "24d5b23dc417412679681396f2b49f3de8c1473deb516bd34410872eff51ed0d"
+
+[[package]]
+name = "windows_x86_64_msvc"
+version = "0.52.6"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "589f6da84c646204747d1270a2a5661ea66ed1cced2631d546fdfb155959f9ec"
+
 [[package]]
 name = "wit-bindgen"
 version = "0.51.0"
diff --git a/rust/fleet-launcher/Cargo.toml b/rust/fleet-launcher/Cargo.toml
new file mode 100644
index 0000000..fad970a
--- /dev/null
+++ b/rust/fleet-launcher/Cargo.toml
@@ -0,0 +1,26 @@
+[package]
+name = "fleet-launcher"
+version = "0.0.1"
+edition = "2021"
+publish = false
+description = "Spawn codex / claude / gemini sessions in kitty windows. Ports the kitty-spawn path from ~/Documents/hcom (terminal.rs) into a small standalone API for codex-fleet supervisors and tooling."
+
+[lib]
+path = "src/lib.rs"
+
+[[bin]]
+name = "fleet-spawn"
+path = "src/bin/spawn.rs"
+
+[dependencies]
+libc = "0.2"
+
+# Cross-platform process-liveness checks for the presence/heartbeat file
+# work. Disable default features so we don't pay for component/network/disk
+# probes we never read — `is_alive(pid)` only needs the process refresh.
+sysinfo = { version = "0.32", default-features = false, features = ["system"] }
+
+# Modern date-time crate for heartbeat timestamps. Picked over `chrono` for
+# correctness (Jiff's tz model + arithmetic don't carry chrono's leap-second
+# / DST footguns) and over `time` for ergonomics.
+jiff = "0.2"
diff --git a/rust/fleet-launcher/src/bin/spawn.rs b/rust/fleet-launcher/src/bin/spawn.rs
new file mode 100644
index 0000000..c7d79cf
--- /dev/null
+++ b/rust/fleet-launcher/src/bin/spawn.rs
@@ -0,0 +1,155 @@
+//! `fleet-spawn` — open a kitty window running codex / claude / gemini.
+//!
+//! Thin argv parser around `fleet_launcher::spawn_in_kitty`. Designed so a
+//! supervisor (Rust binary, bash script, or another codex/claude pane) can
+//! simply call:
+//!
+//! ```bash
+//! fleet-spawn --cli codex \
+//!   --account alpha@example.com \
+//!   --home   /tmp/codex-fleet/alpha-example \
+//!   --cwd    /home/user/repo \
+//!   --env    CODEX_GUARD_BYPASS=1 \
+//!   --env    CODEX_FLEET_AGENT_NAME=codex-alpha \
+//!   --prompt "claim a ready task"
+//! ```
+//!
+//! and get back a kitty window, detached, running the right CLI under the
+//! right per-account home dir. Exit code is 0 + the kitty PID printed on
+//! stdout on success; non-zero with a stderr message otherwise.
+
+use std::path::PathBuf;
+use std::process::ExitCode;
+
+use fleet_launcher::{spawn_in_kitty, CliKind, LaunchSpec};
+
+fn main() -> ExitCode {
+    let args: Vec<String> = std::env::args().skip(1).collect();
+    if args.iter().any(|a| a == "-h" || a == "--help") {
+        print_help();
+        return ExitCode::SUCCESS;
+    }
+
+    let spec = match parse_args(&args) {
+        Ok(s) => s,
+        Err(e) => {
+            eprintln!("fleet-spawn: {e}");
+            eprintln!("run with --help for usage.");
+            return ExitCode::from(2);
+        }
+    };
+
+    match spawn_in_kitty(&spec) {
+        Ok(pid) => {
+            println!("{pid}");
+            ExitCode::SUCCESS
+        }
+        Err(e) => {
+            eprintln!("fleet-spawn: failed to spawn kitty window: {e}");
+            ExitCode::FAILURE
+        }
+    }
+}
+
+fn parse_args(args: &[String]) -> Result<LaunchSpec, String> {
+    let mut cli: Option<CliKind> = None;
+    let mut title: Option<String> = None;
+    let mut home: Option<PathBuf> = None;
+    let mut cwd: Option<PathBuf> = None;
+    let mut prompt: Option<String> = None;
+    let mut extra_args: Vec<String> = Vec::new();
+    let mut extra_env: Vec<(String, String)> = Vec::new();
+
+    let mut i = 0;
+    while i < args.len() {
+        let a = &args[i];
+        match a.as_str() {
+            "--cli" => {
+                let v = take(args, &mut i, "--cli")?;
+                cli = Some(
+                    CliKind::parse(&v)
+                        .ok_or_else(|| format!("unknown --cli value: {v} (codex|claude|gemini)"))?,
+                );
+            }
+            "--account" | "--title" => {
+                title = Some(take(args, &mut i, a)?);
+            }
+            "--home" => {
+                home = Some(PathBuf::from(take(args, &mut i, "--home")?));
+            }
+            "--cwd" => {
+                cwd = Some(PathBuf::from(take(args, &mut i, "--cwd")?));
+            }
+            "--prompt" => {
+                prompt = Some(take(args, &mut i, "--prompt")?);
+            }
+            "--env" => {
+                let v = take(args, &mut i, "--env")?;
+                let (k, val) = v
+                    .split_once('=')
+                    .ok_or_else(|| format!("--env expects KEY=VALUE, got: {v}"))?;
+                extra_env.push((k.to_string(), val.to_string()));
+            }
+            "--arg" => {
+                extra_args.push(take(args, &mut i, "--arg")?);
+            }
+            other if other.starts_with("--") => {
+                return Err(format!("unknown flag: {other}"));
+            }
+            other => {
+                return Err(format!("unexpected positional arg: {other}"));
+            }
+        }
+        i += 1;
+    }
+
+    let cli = cli.ok_or_else(|| "--cli is required".to_string())?;
+    let home = home.ok_or_else(|| {
+        format!("--home is required (target dir for {})", cli.home_env())
+    })?;
+    let title = title.unwrap_or_else(|| format!("fleet-{}", cli.binary()));
+
+    Ok(LaunchSpec {
+        cli,
+        title,
+        home_dir: home,
+        cwd,
+        prompt,
+        extra_args,
+        extra_env,
+    })
+}
+
+fn take(args: &[String], i: &mut usize, flag: &str) -> Result<String, String> {
+    *i += 1;
+    args.get(*i)
+        .cloned()
+        .ok_or_else(|| format!("{flag} requires a value"))
+}
+
+fn print_help() {
+    let me = std::env::args().next().unwrap_or_else(|| "fleet-spawn".to_string());
+    println!(
+        "{me} — spawn a kitty window running codex / claude / gemini.\n\
+\n\
+USAGE\n  \
+{me} --cli <codex|claude|gemini> --home <DIR> [options]\n\
+\n\
+REQUIRED\n  \
+--cli codex|claude|gemini   which CLI to launch\n  \
+--home DIR                  per-account home directory (becomes\n                              CODEX_HOME / CLAUDE_CONFIG_DIR /\n                              GEMINI_CLI_HOME depending on --cli)\n\
+\n\
+OPTIONAL\n  \
+--account NAME              kitty window title (default: fleet-<cli>)\n  \
+--title NAME                alias for --account\n  \
+--cwd DIR                   working directory inside the window\n  \
+--prompt TEXT               initial prompt (codex: positional arg;\n                              claude: positional after\n                              --dangerously-skip-permissions;\n                              gemini: piped over stdin)\n  \
+--env KEY=VALUE             extra env to export (repeatable)\n  \
+--arg STRING                extra CLI arg (repeatable, appended verbatim)\n  \
+--help, -h                  show this help\n\
+\n\
+OUTPUT\n  \
+On success: prints the kitty process PID to stdout, exits 0.\n  \
+On failure: prints reason to stderr, exits non-zero.\n"
+    );
+}
diff --git a/rust/fleet-launcher/src/heartbeat.rs b/rust/fleet-launcher/src/heartbeat.rs
new file mode 100644
index 0000000..2b578b9
--- /dev/null
+++ b/rust/fleet-launcher/src/heartbeat.rs
@@ -0,0 +1,436 @@
+//! Presence + heartbeat tracking for spawned kitty sessions.
+//!
+//! When `spawn_in_kitty` returns a kitty PID, we drop a tiny session file
+//! at `/tmp/fleet-launcher/sessions/<pid>.session`. That file lets a
+//! supervisor (or the next `fleet-spawn` invocation) answer:
+//!
+//! - "is this PID still alive?"  — via [`is_alive`] (cross-platform
+//!   process-table check from [`sysinfo`]).
+//! - "when was this session last seen?" — via [`SessionRecord::last_heartbeat`]
+//!   (a [`jiff::Timestamp`] the spawned process can update by calling
+//!   [`touch_heartbeat`] periodically).
+//! - "which PIDs have died but their session file is still around?"  —
+//!   via [`prune_stale`].
+//!
+//! ## Why a flat file per session?
+//!
+//! Three reasons:
+//!
+//! 1. No DB / no IPC. The fleet's existing coordination layer is Colony
+//!    + tmux; this module stays out of it.
+//! 2. Atomic-by-rename writes. Each `record_session` writes to a `.tmp`
+//!    sibling and `rename(2)`s into place — no half-written records even
+//!    if multiple supervisors race.
+//! 3. `ls /tmp/fleet-launcher/sessions/` already shows the live set; an
+//!    operator can `cat` one without learning a new tool.
+//!
+//! ## File format
+//!
+//! Plain `KEY=VALUE` lines, one per attribute. Values are *not* shell-
+//! quoted (they're raw text); newlines and `=` in values are escaped as
+//! `\n` / `\=`. We don't pull `serde` for one struct.
+
+use std::collections::HashMap;
+use std::fs;
+use std::io::{self, Write};
+use std::path::{Path, PathBuf};
+
+use jiff::{Span, Timestamp};
+use sysinfo::{Pid, ProcessRefreshKind, ProcessesToUpdate, System};
+
+use crate::{CliKind, LaunchSpec};
+
+/// Where session files live on disk. Overridable via env so the cargo
+/// tests can sandbox themselves to a per-test directory.
+fn sessions_dir() -> PathBuf {
+    if let Ok(v) = std::env::var("FLEET_LAUNCHER_SESSIONS_DIR") {
+        return PathBuf::from(v);
+    }
+    std::env::temp_dir()
+        .join("fleet-launcher")
+        .join("sessions")
+}
+
+/// One tracked spawn. Persisted at `<sessions_dir>/<pid>.session`.
+#[derive(Clone, Debug, PartialEq, Eq)]
+pub struct SessionRecord {
+    /// The kitty process PID (returned by [`crate::spawn_in_kitty`]).
+    pub pid: u32,
+    /// Which CLI runs inside the kitty window.
+    pub cli: CliKind,
+    /// Human label — usually the account email or worker name.
+    pub title: String,
+    /// `*_HOME` directory the spawned CLI was bound to.
+    pub home_dir: PathBuf,
+    /// Wall-clock time of the spawn call.
+    pub spawned_at: Timestamp,
+    /// Wall-clock time of the most recent heartbeat. Equals
+    /// [`Self::spawned_at`] until the spawned process calls
+    /// [`touch_heartbeat`].
+    pub last_heartbeat: Timestamp,
+}
+
+impl SessionRecord {
+    fn path(&self) -> PathBuf {
+        sessions_dir().join(format!("{}.session", self.pid))
+    }
+}
+
+/// Drop a session file recording `(spec, pid)` with `spawned_at` =
+/// `last_heartbeat` = now.
+///
+/// Atomic-by-rename: writes `<pid>.session.tmp` first, then
+/// `rename(2)`s into place. Concurrent supervisors can call this for the
+/// same PID without producing a torn file.
+pub fn record_session(spec: &LaunchSpec, pid: u32) -> io::Result<SessionRecord> {
+    let now = Timestamp::now();
+    let rec = SessionRecord {
+        pid,
+        cli: spec.cli,
+        title: spec.title.clone(),
+        home_dir: spec.home_dir.clone(),
+        spawned_at: now,
+        last_heartbeat: now,
+    };
+    write_record(&rec)?;
+    Ok(rec)
+}
+
+/// Update the `last_heartbeat` timestamp for `pid`. Used by long-running
+/// spawned processes that want to advertise "I'm still healthy" without
+/// round-tripping through Colony.
+///
+/// Returns `Ok(false)` if no session file exists for that PID (caller can
+/// decide whether to record a fresh one).
+pub fn touch_heartbeat(pid: u32) -> io::Result<bool> {
+    let path = sessions_dir().join(format!("{pid}.session"));
+    let mut rec = match read_record(&path) {
+        Ok(r) => r,
+        Err(e) if e.kind() == io::ErrorKind::NotFound => return Ok(false),
+        Err(e) => return Err(e),
+    };
+    rec.last_heartbeat = Timestamp::now();
+    write_record(&rec)?;
+    Ok(true)
+}
+
+/// Cross-platform "is this PID alive right now" check, backed by
+/// [`sysinfo`]. Unlike `kill(pid, 0)` this works on Windows too, and
+/// distinguishes "PID exists" from "PID exists but is a zombie owned by a
+/// different uid" cleanly.
+pub fn is_alive(pid: u32) -> bool {
+    let mut sys = System::new();
+    let target = Pid::from_u32(pid);
+    sys.refresh_processes_specifics(
+        ProcessesToUpdate::Some(&[target]),
+        true,
+        // We only need the process-table presence check, not cmdline /
+        // cpu / mem fields. `new()` opts out of every per-process probe.
+        ProcessRefreshKind::new(),
+    );
+    sys.process(target).is_some()
+}
+
+/// Read every session file under [`sessions_dir`].
+///
+/// Files that fail to parse are silently skipped — a corrupt record
+/// shouldn't blind a supervisor to its healthy siblings. Caller can
+/// `prune_stale` to clean up the corrupt ones.
+pub fn list_sessions() -> io::Result<Vec<SessionRecord>> {
+    let dir = sessions_dir();
+    let entries = match fs::read_dir(&dir) {
+        Ok(e) => e,
+        Err(e) if e.kind() == io::ErrorKind::NotFound => return Ok(vec![]),
+        Err(e) => return Err(e),
+    };
+    let mut out: Vec<SessionRecord> = Vec::new();
+    for entry in entries.flatten() {
+        let p = entry.path();
+        if p.extension().is_some_and(|e| e == "session") {
+            if let Ok(rec) = read_record(&p) {
+                out.push(rec);
+            }
+        }
+    }
+    out.sort_by_key(|r| r.pid);
+    Ok(out)
+}
+
+/// Sweep stale records and return the PIDs we deleted.
+///
+/// A record is stale when **either**:
+///
+/// - The PID is no longer alive (per [`is_alive`]) — kitty exited, the
+///   user closed the window, the process crashed.
+/// - The PID is alive but `last_heartbeat` is older than `max_idle` —
+///   meaningful when the spawned CLI is supposed to call
+///   [`touch_heartbeat`] on a known cadence and has gone silent.
+///
+/// Pass `Span::default()` (zero) for `max_idle` to disable the idle path
+/// and only prune dead PIDs.
+pub fn prune_stale(max_idle: Span) -> io::Result<Vec<u32>> {
+    let now = Timestamp::now();
+    let sessions = list_sessions()?;
+    let mut pruned: Vec<u32> = Vec::new();
+
+    for rec in sessions {
+        let alive = is_alive(rec.pid);
+        let idle_too_long = if max_idle.is_zero() {
+            false
+        } else {
+            // jiff Span comparison: build the threshold timestamp and
+            // check whether last_heartbeat predates it.
+            match now.checked_sub(max_idle) {
+                Ok(threshold) => rec.last_heartbeat < threshold,
+                Err(_) => false,
+            }
+        };
+
+        if !alive || idle_too_long {
+            let path = rec.path();
+            if fs::remove_file(&path).is_ok() {
+                pruned.push(rec.pid);
+            }
+        }
+    }
+    Ok(pruned)
+}
+
+// ---- file I/O internals ---------------------------------------------------
+
+fn write_record(rec: &SessionRecord) -> io::Result<()> {
+    let dir = sessions_dir();
+    fs::create_dir_all(&dir)?;
+    let final_path = dir.join(format!("{}.session", rec.pid));
+    let tmp_path = dir.join(format!("{}.session.tmp", rec.pid));
+
+    let body = format!(
+        "pid={}\ncli={}\ntitle={}\nhome_dir={}\nspawned_at={}\nlast_heartbeat={}\n",
+        rec.pid,
+        cli_to_str(rec.cli),
+        escape(&rec.title),
+        escape(&rec.home_dir.to_string_lossy()),
+        rec.spawned_at,
+        rec.last_heartbeat,
+    );
+
+    {
+        let mut f = fs::File::create(&tmp_path)?;
+        f.write_all(body.as_bytes())?;
+        f.sync_all()?;
+    }
+    fs::rename(&tmp_path, &final_path)?;
+    Ok(())
+}
+
+fn read_record(path: &Path) -> io::Result<SessionRecord> {
+    let body = fs::read_to_string(path)?;
+    let mut kv: HashMap<&str, String> = HashMap::new();
+    for line in body.lines() {
+        if let Some((k, v)) = line.split_once('=') {
+            kv.insert(k, unescape(v));
+        }
+    }
+
+    let get = |k: &str| -> io::Result<String> {
+        kv.get(k).cloned().ok_or_else(|| {
+            io::Error::new(
+                io::ErrorKind::InvalidData,
+                format!("session file {} missing key `{}`", path.display(), k),
+            )
+        })
+    };
+
+    let pid: u32 = get("pid")?
+        .parse()
+        .map_err(|e| io::Error::new(io::ErrorKind::InvalidData, format!("bad pid: {e}")))?;
+    let cli = cli_from_str(&get("cli")?).ok_or_else(|| {
+        io::Error::new(io::ErrorKind::InvalidData, "unknown cli value")
+    })?;
+    let title = get("title")?;
+    let home_dir = PathBuf::from(get("home_dir")?);
+    let spawned_at: Timestamp = get("spawned_at")?
+        .parse()
+        .map_err(|e| io::Error::new(io::ErrorKind::InvalidData, format!("bad spawned_at: {e}")))?;
+    let last_heartbeat: Timestamp = get("last_heartbeat")?
+        .parse()
+        .map_err(|e| io::Error::new(io::ErrorKind::InvalidData, format!("bad last_heartbeat: {e}")))?;
+
+    Ok(SessionRecord {
+        pid,
+        cli,
+        title,
+        home_dir,
+        spawned_at,
+        last_heartbeat,
+    })
+}
+
+fn escape(s: &str) -> String {
+    s.replace('\\', "\\\\").replace('\n', "\\n").replace('=', "\\=")
+}
+
+fn unescape(s: &str) -> String {
+    let mut out = String::with_capacity(s.len());
+    let mut chars = s.chars().peekable();
+    while let Some(c) = chars.next() {
+        if c == '\\' {
+            match chars.next() {
+                Some('n') => out.push('\n'),
+                Some('=') => out.push('='),
+                Some('\\') => out.push('\\'),
+                Some(other) => {
+                    out.push('\\');
+                    out.push(other);
+                }
+                None => out.push('\\'),
+            }
+        } else {
+            out.push(c);
+        }
+    }
+    out
+}
+
+fn cli_to_str(cli: CliKind) -> &'static str {
+    match cli {
+        CliKind::Codex => "codex",
+        CliKind::Claude => "claude",
+        CliKind::Gemini => "gemini",
+        CliKind::Claw => "claw",
+    }
+}
+
+fn cli_from_str(s: &str) -> Option<CliKind> {
+    CliKind::parse(s)
+}
+
+#[cfg(test)]
+mod tests {
+    use super::*;
+    use std::sync::{Mutex, MutexGuard, OnceLock};
+
+    /// Process-wide lock so the `FLEET_LAUNCHER_SESSIONS_DIR` env var is
+    /// only mutated by one test at a time. Cargo runs tests in parallel
+    /// by default; without this, two tests both calling `isolate()` race
+    /// on the env var and one of them ends up reading the other's files.
+    fn test_lock() -> &'static Mutex<()> {
+        static L: OnceLock<Mutex<()>> = OnceLock::new();
+        L.get_or_init(|| Mutex::new(()))
+    }
+
+    /// RAII guard returned by [`isolate`]. Holds the process-wide test
+    /// lock until it drops, so the env var stays valid for the entire
+    /// test body. Recover from panicked siblings by treating a poisoned
+    /// mutex as a still-usable lock (the env var will be re-set anyway).
+    struct Isolated {
+        _guard: MutexGuard<'static, ()>,
+    }
+
+    fn isolate(name: &str) -> Isolated {
+        let guard = test_lock()
+            .lock()
+            .unwrap_or_else(|poisoned| poisoned.into_inner());
+        let dir = std::env::temp_dir().join(format!(
+            "fleet-launcher-test-{}-{}",
+            std::process::id(),
+            name
+        ));
+        // SAFETY: the mutex above serializes env-var mutation across all
+        // tests in this binary, which is the only correctness rule
+        // `set_var` requires.
+        unsafe {
+            std::env::set_var("FLEET_LAUNCHER_SESSIONS_DIR", &dir);
+        }
+        let _ = fs::remove_dir_all(&dir);
+        fs::create_dir_all(&dir).unwrap();
+        Isolated { _guard: guard }
+    }
+
+    #[test]
+    fn record_then_read_round_trip() {
+        let _dir = isolate("round_trip");
+        let spec = LaunchSpec {
+            cli: CliKind::Codex,
+            title: "alpha@example.com".into(),
+            home_dir: PathBuf::from("/tmp/codex-fleet/alpha"),
+            cwd: None,
+            prompt: None,
+            extra_args: vec![],
+            extra_env: vec![],
+        };
+        let rec = record_session(&spec, 12345).unwrap();
+        let listed = list_sessions().unwrap();
+        assert_eq!(listed.len(), 1);
+        assert_eq!(listed[0], rec);
+    }
+
+    #[test]
+    fn touch_heartbeat_updates_timestamp_only() {
+        let _dir = isolate("touch");
+        let spec = LaunchSpec {
+            cli: CliKind::Claude,
+            title: "t".into(),
+            home_dir: PathBuf::from("/tmp/x"),
+            cwd: None,
+            prompt: None,
+            extra_args: vec![],
+            extra_env: vec![],
+        };
+        let before = record_session(&spec, 99).unwrap();
+        std::thread::sleep(std::time::Duration::from_millis(20));
+        assert!(touch_heartbeat(99).unwrap());
+        let after = list_sessions().unwrap().pop().unwrap();
+        assert_eq!(after.spawned_at, before.spawned_at);
+        assert!(after.last_heartbeat > before.last_heartbeat);
+    }
+
+    #[test]
+    fn touch_heartbeat_returns_false_when_missing() {
+        let _dir = isolate("touch_missing");
+        assert!(!touch_heartbeat(7777).unwrap());
+    }
+
+    #[test]
+    fn is_alive_true_for_self_false_for_dead_pid() {
+        // Our own PID is always alive.
+        assert!(is_alive(std::process::id()));
+        // 0 is "any process in our group" on Unix and is never returned
+        // as a process by sysinfo's process table — safe stand-in for
+        // "definitely not running".
+        assert!(!is_alive(0));
+    }
+
+    #[test]
+    fn prune_stale_removes_dead_pid_records() {
+        let _dir = isolate("prune");
+        let spec = LaunchSpec {
+            cli: CliKind::Codex,
+            title: "ghost".into(),
+            home_dir: PathBuf::from("/tmp/x"),
+            cwd: None,
+            prompt: None,
+            extra_args: vec![],
+            extra_env: vec![],
+        };
+        // Record a "session" for PID 0 (definitely dead) and our own PID
+        // (definitely alive).
+        record_session(&spec, 0).unwrap();
+        record_session(&spec, std::process::id()).unwrap();
+
+        let pruned = prune_stale(Span::new()).unwrap();
+        assert_eq!(pruned, vec![0]);
+
+        let remaining = list_sessions().unwrap();
+        assert_eq!(remaining.len(), 1);
+        assert_eq!(remaining[0].pid, std::process::id());
+    }
+
+    #[test]
+    fn escape_round_trips_specials() {
+        for s in &["plain", "with=equal", "with\nnewline", "back\\slash"] {
+            let e = escape(s);
+            assert_eq!(unescape(&e), *s);
+        }
+    }
+}
diff --git a/rust/fleet-launcher/src/lib.rs b/rust/fleet-launcher/src/lib.rs
new file mode 100644
index 0000000..6edd292
--- /dev/null
+++ b/rust/fleet-launcher/src/lib.rs
@@ -0,0 +1,471 @@
+//! Spawn codex / claude / gemini / claw sessions in kitty windows.
+//!
+//! Ported (and trimmed hard) from `~/Documents/hcom/src/terminal.rs`. hcom's
+//! 2300-line terminal layer covers a dozen terminals (kitty, wezterm, tmux,
+//! iterm, gnome-terminal, ...), per-CLI dispatch tables, IPC sockets, PTY
+//! wrappers, transcript capture, etc. We need exactly **one** capability:
+//! "open a fresh kitty window, run `codex` (or `claude`, `gemini`, `claw`)
+//! under the right `*_HOME` env, detach, return the PID". Everything else
+//! is out of scope.
+//!
+//! ## Why a bash script wrapper?
+//!
+//! hcom learned the hard way that passing a long composite shell line as
+//! `kitty bash -c "<...>"` arg-quotes inconsistently across kitty versions
+//! (`terminal.rs:611-731` builds a script file precisely for this reason).
+//! Writing a self-deleting `/tmp/fleet-launcher-<pid>-<rand>.sh` and running
+//! `kitty --title <name> bash <script>` sidesteps every quoting edge case.
+//!
+//! ## Detach
+//!
+//! `setsid()` in `pre_exec` so the kitty process survives the parent — same
+//! shape as hcom's `terminal.rs:1311-1320`.
+
+use std::collections::BTreeMap;
+use std::ffi::OsStr;
+use std::io::{self, Write};
+use std::os::unix::fs::PermissionsExt;
+use std::path::{Path, PathBuf};
+use std::process::{Command, Stdio};
+
+pub mod heartbeat;
+pub use heartbeat::{
+    is_alive, list_sessions, prune_stale, record_session, touch_heartbeat, SessionRecord,
+};
+
+/// Which CLI to spawn inside the kitty window.
+#[derive(Clone, Copy, Debug, Eq, PartialEq)]
+pub enum CliKind {
+    /// `codex` — uses `CODEX_HOME` for per-account auth isolation.
+    Codex,
+    /// `claude` — uses `CLAUDE_CONFIG_DIR`. Spawned with
+    /// `--dangerously-skip-permissions` because the fleet panes are
+    /// autonomous and the codex-fleet contract pre-authorizes that flag
+    /// (see `scripts/codex-fleet/claude-worker.sh`).
+    Claude,
+    /// `gemini` — uses `GEMINI_CLI_HOME`. Optional `GEMINI_SYSTEM_MD` env
+    /// is honoured if the caller passes it through `extra_env`.
+    Gemini,
+    /// `claw` (ultraworkers/claw-code) — uses `CLAW_CONFIG_HOME` for
+    /// per-account auth and config isolation. Spawned with
+    /// `--dangerously-skip-permissions` for the same reason as Claude:
+    /// fleet panes are autonomous workers.
+    Claw,
+}
+
+impl CliKind {
+    /// Binary name on PATH (`codex`, `claude`, `gemini`, `claw`).
+    pub fn binary(self) -> &'static str {
+        match self {
+            CliKind::Codex => "codex",
+            CliKind::Claude => "claude",
+            CliKind::Gemini => "gemini",
+            CliKind::Claw => "claw",
+        }
+    }
+
+    /// Env var name that points at the CLI's per-account config / auth
+    /// directory. Each CLI uses a different convention; matching hcom's
+    /// `launcher.rs:279-281`.
+    pub fn home_env(self) -> &'static str {
+        match self {
+            CliKind::Codex => "CODEX_HOME",
+            CliKind::Claude => "CLAUDE_CONFIG_DIR",
+            CliKind::Gemini => "GEMINI_CLI_HOME",
+            CliKind::Claw => "CLAW_CONFIG_HOME",
+        }
+    }
+
+    /// Parse from a CLI string (`"codex"`, `"claude"`, `"gemini"`). Used by
+    /// the `fleet-spawn` binary's argv parser. Case-insensitive.
+    pub fn parse(s: &str) -> Option<Self> {
+        match s.to_ascii_lowercase().as_str() {
+            "codex" => Some(CliKind::Codex),
+            "claude" | "claude-code" => Some(CliKind::Claude),
+            "gemini" => Some(CliKind::Gemini),
+            "claw" | "claw-code" => Some(CliKind::Claw),
+            _ => None,
+        }
+    }
+}
+
+/// All inputs needed to launch one CLI inside a fresh kitty window.
+///
+/// Field meanings:
+///
+/// - `title` — kitty window title (`--title`). Surface this so an operator
+///   can `wmctrl` / scrobble for the window later.
+/// - `home_dir` — the directory the CLI's `*_HOME` env should point at.
+///   Caller is responsible for creating it (e.g. `/tmp/codex-fleet/<aid>`)
+///   and copying `auth.json` / `config.toml` in.
+/// - `cwd` — working directory inside the kitty window. Defaults to the
+///   parent's CWD when `None`.
+/// - `prompt` — optional first user message. For `codex` it becomes a
+///   positional arg (`codex "<prompt>"`); for `claude` it's appended after
+///   `--dangerously-skip-permissions`; for `gemini` it's piped via stdin.
+/// - `extra_args` — appended verbatim after the prompt.
+/// - `extra_env` — KEY=VALUE pairs exported into the spawned shell before
+///   the CLI runs. Use this for `GEMINI_SYSTEM_MD`, `CODEX_GUARD_BYPASS=1`,
+///   account labels for telemetry, etc.
+#[derive(Clone, Debug)]
+pub struct LaunchSpec {
+    pub cli: CliKind,
+    pub title: String,
+    pub home_dir: PathBuf,
+    pub cwd: Option<PathBuf>,
+    pub prompt: Option<String>,
+    pub extra_args: Vec<String>,
+    pub extra_env: Vec<(String, String)>,
+}
+
+/// Spawn the given CLI inside a new kitty window. Returns the kitty
+/// process PID.
+///
+/// The flow mirrors hcom's `terminal.rs::launch_terminal` background
+/// branch:
+///
+/// 1. Build a self-deleting bash script with the env exports + cd + the
+///    final CLI command line.
+/// 2. `Command::new("kitty").args(["--title", title, "bash", script])`.
+/// 3. `pre_exec(setsid)` so kitty outlives the caller process.
+/// 4. Spawn, capture PID, return.
+///
+/// On `kitty` not being on PATH we fail fast with `NotFound` so the caller
+/// can fall back to `tmux split-window` (the existing codex-fleet path).
+pub fn spawn_in_kitty(spec: &LaunchSpec) -> io::Result<u32> {
+    if which("kitty").is_none() {
+        return Err(io::Error::new(
+            io::ErrorKind::NotFound,
+            "kitty binary not on PATH — install kitty or fall back to tmux split-window",
+        ));
+    }
+
+    let script_path = write_launch_script(spec)?;
+
+    let mut cmd = Command::new("kitty");
+    cmd.arg("--title").arg(&spec.title);
+    cmd.arg("bash").arg(&script_path);
+    cmd.stdin(Stdio::null())
+        .stdout(Stdio::null())
+        .stderr(Stdio::null());
+
+    // Detach so kitty survives the parent process. Same approach as
+    // hcom/terminal.rs:1311-1320.
+    #[cfg(unix)]
+    {
+        use std::os::unix::process::CommandExt;
+        unsafe {
+            cmd.pre_exec(|| {
+                libc::setsid();
+                Ok(())
+            });
+        }
+    }
+
+    let child = cmd.spawn()?;
+    let pid = child.id();
+
+    // Drop a session file so the supervisor / `fleet-sessions` tooling
+    // can answer liveness + heartbeat queries later. A failure here
+    // shouldn't block the spawn — the kitty window is already running
+    // and the caller still gets the PID; just surface the error via
+    // stderr so the operator notices.
+    if let Err(e) = heartbeat::record_session(spec, pid) {
+        eprintln!(
+            "fleet-launcher: spawned pid {pid} but failed to record session file: {e}"
+        );
+    }
+
+    Ok(pid)
+}
+
+/// Build the bash script the kitty window will run.
+///
+/// Layout (mirroring hcom/terminal.rs:611-731 in spirit, much shorter):
+///
+/// ```bash
+/// #!/bin/bash
+/// printf "\033]0;fleet: starting <cli>...\007"
+/// export CODEX_HOME='/tmp/codex-fleet/<id>'
+/// export ...extra_env...
+/// cd '<cwd>'
+/// exec codex '<prompt>' <extra_args>
+/// ```
+///
+/// Script self-deletes on exec via the `rm -f` line below the `exec`
+/// (which never runs because exec replaces the process — but a panic
+/// before exec leaves the file behind, so we add a trap).
+pub fn write_launch_script(spec: &LaunchSpec) -> io::Result<PathBuf> {
+    let dir = std::env::temp_dir().join("fleet-launcher");
+    std::fs::create_dir_all(&dir)?;
+    let script_path = dir.join(format!(
+        "spawn-{}-{}.sh",
+        std::process::id(),
+        // Cheap nonce — enough to avoid collisions when one parent spawns
+        // multiple kitty windows in the same millisecond.
+        std::time::SystemTime::now()
+            .duration_since(std::time::UNIX_EPOCH)
+            .map(|d| d.as_nanos())
+            .unwrap_or(0)
+    ));
+
+    let mut envs: BTreeMap<String, String> = BTreeMap::new();
+    envs.insert(
+        spec.cli.home_env().to_string(),
+        spec.home_dir.to_string_lossy().to_string(),
+    );
+    for (k, v) in &spec.extra_env {
+        envs.insert(k.clone(), v.clone());
+    }
+
+    let mut f = std::fs::File::create(&script_path)?;
+    writeln!(f, "#!/bin/bash")?;
+    writeln!(f, "set -u")?;
+    // Title escape so the operator can spot the window in their WM.
+    writeln!(
+        f,
+        "printf '\\033]0;fleet: {} ({})\\007'",
+        shell_quote(spec.cli.binary()),
+        shell_quote(&spec.title)
+    )?;
+    // Self-cleanup on any exit path. Kept before the `exec` so even an
+    // early bash error removes the temp file.
+    writeln!(
+        f,
+        "trap 'rm -f {}' EXIT",
+        shell_quote(&script_path.to_string_lossy())
+    )?;
+
+    for (k, v) in &envs {
+        writeln!(f, "export {}={}", k, shell_quote(v))?;
+    }
+
+    if let Some(cwd) = &spec.cwd {
+        writeln!(f, "cd {}", shell_quote(&cwd.to_string_lossy()))?;
+    }
+
+    let cmd_line = build_command_line(spec);
+    // Use exec so the bash wrapper PID is replaced by the CLI PID — kitty
+    // close-window detection then matches the CLI exit, not the wrapper's.
+    writeln!(f, "exec {}", cmd_line)?;
+
+    f.sync_all()?;
+    drop(f);
+
+    let mut perms = std::fs::metadata(&script_path)?.permissions();
+    perms.set_mode(0o755);
+    std::fs::set_permissions(&script_path, perms)?;
+    Ok(script_path)
+}
+
+/// Render the CLI command line (binary + per-CLI prompt convention +
+/// extra args).
+///
+/// Per-CLI conventions (mirrors hcom's `launcher.rs::build_*_command`):
+///
+/// - **Codex**: `codex "<prompt>" <extra...>` — prompt is a positional arg
+///   (matches `scripts/codex-fleet/up.sh::pane_cmd=`).
+/// - **Claude**: `claude --dangerously-skip-permissions "<prompt>" <extra...>`
+///   — bypass flag matches `scripts/codex-fleet/claude-worker.sh`.
+/// - **Gemini**: `printf '%s' "<prompt>" | gemini <extra...>` — gemini's
+///   CLI takes the first prompt over stdin, not as a positional.
+/// - **Claw**: `claw "<prompt>" <extra...>` — same shape as Codex; claw's
+///   argv parser routes a bare positional through the `prompt` subcommand
+///   (see `claw-code/rust/crates/rusty-claude-cli/src/main.rs::parse_args`).
+///   The permission-bypass flag is intentionally NOT injected here —
+///   callers wanting autonomous workers should pass it via `extra_args`,
+///   so the choice is explicit at the supervisor layer.
+fn build_command_line(spec: &LaunchSpec) -> String {
+    let bin = spec.cli.binary();
+    let extras: Vec<String> = spec.extra_args.iter().map(|a| shell_quote(a)).collect();
+    let extras_joined = if extras.is_empty() {
+        String::new()
+    } else {
+        format!(" {}", extras.join(" "))
+    };
+
+    match (spec.cli, spec.prompt.as_deref()) {
+        (CliKind::Codex, Some(p)) => format!("{} {}{}", bin, shell_quote(p), extras_joined),
+        (CliKind::Codex, None) => format!("{}{}", bin, extras_joined),
+        (CliKind::Claude, Some(p)) => format!(
+            "{} --dangerously-skip-permissions {}{}",
+            bin,
+            shell_quote(p),
+            extras_joined
+        ),
+        (CliKind::Claude, None) => {
+            format!("{} --dangerously-skip-permissions{}", bin, extras_joined)
+        }
+        (CliKind::Gemini, Some(p)) => format!(
+            "printf '%s' {} | {}{}",
+            shell_quote(p),
+            bin,
+            extras_joined
+        ),
+        (CliKind::Gemini, None) => format!("{}{}", bin, extras_joined),
+        (CliKind::Claw, Some(p)) => format!("{} {}{}", bin, shell_quote(p), extras_joined),
+        (CliKind::Claw, None) => format!("{}{}", bin, extras_joined),
+    }
+}
+
+/// Bash-safe single-quoting. Identical contract to hcom's
+/// `terminal.rs::shell_quote` so the env exports look identical to a
+/// reader who already knows hcom.
+pub fn shell_quote(s: &str) -> String {
+    if s.is_empty() {
+        return "''".to_string();
+    }
+    if s.chars()
+        .all(|c| c.is_ascii_alphanumeric() || "/_-.=:,@".contains(c))
+    {
+        return s.to_string();
+    }
+    format!("'{}'", s.replace('\'', "'\\''"))
+}
+
+/// Find a binary on PATH — minimal `which` so we don't pull in a crate.
+fn which(bin: &str) -> Option<PathBuf> {
+    let path = std::env::var_os("PATH")?;
+    for dir in std::env::split_paths(&path) {
+        let candidate = dir.join(bin);
+        if is_executable(&candidate) {
+            return Some(candidate);
+        }
+    }
+    None
+}
+
+fn is_executable<P: AsRef<Path>>(p: P) -> bool {
+    let p = p.as_ref();
+    let Ok(meta) = std::fs::metadata(p) else {
+        return false;
+    };
+    meta.is_file() && (meta.permissions().mode() & 0o111 != 0) && p.file_name() != Some(OsStr::new(""))
+}
+
+#[cfg(test)]
+mod tests {
+    use super::*;
+
+    #[test]
+    fn shell_quote_safe_chars_passthrough() {
+        assert_eq!(shell_quote("codex"), "codex");
+        assert_eq!(shell_quote("/tmp/codex-fleet/x"), "/tmp/codex-fleet/x");
+        assert_eq!(shell_quote("admin@example.com"), "admin@example.com");
+    }
+
+    #[test]
+    fn shell_quote_escapes_singles_and_spaces() {
+        assert_eq!(shell_quote("hello world"), "'hello world'");
+        assert_eq!(shell_quote("it's a trap"), "'it'\\''s a trap'");
+        assert_eq!(shell_quote(""), "''");
+    }
+
+    #[test]
+    fn cli_home_envs_match_each_cli() {
+        assert_eq!(CliKind::Codex.home_env(), "CODEX_HOME");
+        assert_eq!(CliKind::Claude.home_env(), "CLAUDE_CONFIG_DIR");
+        assert_eq!(CliKind::Gemini.home_env(), "GEMINI_CLI_HOME");
+        assert_eq!(CliKind::Claw.home_env(), "CLAW_CONFIG_HOME");
+    }
+
+    #[test]
+    fn cli_parse_accepts_aliases() {
+        assert_eq!(CliKind::parse("codex"), Some(CliKind::Codex));
+        assert_eq!(CliKind::parse("CLAUDE"), Some(CliKind::Claude));
+        assert_eq!(CliKind::parse("claude-code"), Some(CliKind::Claude));
+        assert_eq!(CliKind::parse("Gemini"), Some(CliKind::Gemini));
+        assert_eq!(CliKind::parse("claw"), Some(CliKind::Claw));
+        assert_eq!(CliKind::parse("Claw-Code"), Some(CliKind::Claw));
+        assert_eq!(CliKind::parse("opencode"), None);
+    }
+
+    #[test]
+    fn build_command_line_per_cli_conventions() {
+        // Codex — positional prompt. `--flag` is all safe chars so
+        // shell_quote leaves it bare; an arg with a space gets quoted.
+        let s = LaunchSpec {
+            cli: CliKind::Codex,
+            title: "t".into(),
+            home_dir: "/tmp/x".into(),
+            cwd: None,
+            prompt: Some("hello".into()),
+            extra_args: vec!["--flag".into(), "with space".into()],
+            extra_env: vec![],
+        };
+        assert_eq!(build_command_line(&s), "codex hello --flag 'with space'");
+
+        // Claude — bypass flag, then prompt
+        let s = LaunchSpec {
+            cli: CliKind::Claude,
+            prompt: Some("review this".into()),
+            extra_args: vec![],
+            ..s.clone()
+        };
+        assert_eq!(
+            build_command_line(&s),
+            "claude --dangerously-skip-permissions 'review this'"
+        );
+
+        // Gemini — piped over stdin
+        let s = LaunchSpec {
+            cli: CliKind::Gemini,
+            prompt: Some("hi".into()),
+            extra_args: vec![],
+            ..s.clone()
+        };
+        assert_eq!(build_command_line(&s), "printf '%s' hi | gemini");
+
+        // Claw — same plain positional-prompt shape as Codex; no
+        // permission-bypass flag is auto-injected (callers add it via
+        // extra_args if they want autonomous workers).
+        let s = LaunchSpec {
+            cli: CliKind::Claw,
+            prompt: Some("ship it".into()),
+            extra_args: vec![],
+            ..s.clone()
+        };
+        assert_eq!(build_command_line(&s), "claw 'ship it'");
+
+        // Claw — no prompt, no auto-injected flags
+        let s = LaunchSpec {
+            cli: CliKind::Claw,
+            prompt: None,
+            extra_args: vec![],
+            ..s.clone()
+        };
+        assert_eq!(build_command_line(&s), "claw");
+
+        // No prompt, with extras
+        let s = LaunchSpec {
+            cli: CliKind::Codex,
+            prompt: None,
+            extra_args: vec!["--continue".into()],
+            ..s.clone()
+        };
+        assert_eq!(build_command_line(&s), "codex --continue");
+    }
+
+    #[test]
+    fn write_launch_script_emits_exports_cd_and_exec() {
+        let dir = std::env::temp_dir().join(format!("fleet-launcher-test-{}", std::process::id()));
+        std::fs::create_dir_all(&dir).unwrap();
+        let spec = LaunchSpec {
+            cli: CliKind::Codex,
+            title: "alpha@x.com".into(),
+            home_dir: dir.clone(),
+            cwd: Some(std::env::temp_dir()),
+            prompt: Some("first prompt".into()),
+            extra_args: vec![],
+            extra_env: vec![("CODEX_GUARD_BYPASS".into(), "1".into())],
+        };
+
+        let path = write_launch_script(&spec).unwrap();
+        let body = std::fs::read_to_string(&path).unwrap();
+        assert!(body.contains("export CODEX_HOME="), "missing CODEX_HOME export:\n{body}");
+        assert!(body.contains("export CODEX_GUARD_BYPASS=1"), "missing extra env:\n{body}");
+        assert!(body.contains("cd "), "missing cd line:\n{body}");
+        assert!(body.contains("exec codex 'first prompt'"), "missing exec line:\n{body}");
+        std::fs::remove_file(&path).ok();
+    }
+}