Summary

• Problem: bundled Control UI assets can return 404 Not Found for global installs when argv1 points at a symlinked wrapper or when auto-detected package-store layouts expose bundled files through hardlinks.
• Why it matters: global installs can ship a valid dashboard but still fail at GET /, while the previous package-root heuristic also widened the file-read boundary for configured roots.
• What changed: make Control UI root discovery symlink-aware, classify auto-detected package-proven roots as bundled, and allow hardlinks only for those bundled roots.
• What did NOT change (scope boundary): explicit gateway.controlUi.root overrides still stay on the strict hardlink boundary and continue to reject hardlinked assets.

Change Type (select all)

• Bug fix
• Feature
• Refactor
• Docs
• Security hardening
• Chore/infra

Scope (select all touched areas)

• Gateway / orchestration
• Skills / tool execution
• Auth / tokens
• Memory / storage
• Integrations
• API / contracts
• UI / DX
• CI/CD / infra

Linked Issue/PR

• Closes [Bug]: Global installation via Bun results in 404 Not Found on native Dashboard URL (Port 18789) #39693
• Related v2026.3.7 dashboard returns plain-text Not Found after upgrade #39621
• Related gateway: fix global Control UI 404s for symlinked wrappers and pnpm hardlinks #39856 (closed dirty; this PR recreates only the intended Control UI fix on a clean branch)

User-visible / Behavior Changes

• Auto-detected global/package installs can serve the bundled Control UI again when the executable is reached through a symlinked wrapper or when bundled files are hardlinked in a package-store layout.
• Explicit gateway.controlUi.root overrides remain strict and still reject hardlinked assets.

Security Impact (required)

• New permissions/capabilities? (No)
• Secrets/tokens handling changed? (No)
• New/changed network calls? (No)
• Command/tool execution surface changed? (No)
• Data access scope changed? (No)
• If any Yes, explain risk + mitigation:

Repro + Verification

Environment

• OS: macOS
• Runtime/container: Node 22 + pnpm
• Model/provider: N/A
• Integration/channel (if any): Gateway Control UI HTTP handler
• Relevant config (redacted): default auto-root plus explicit gateway.controlUi.root fixtures

Steps

1. Point Control UI discovery at a symlinked global wrapper or an auto-detected package root whose bundled files are hardlinked.
2. Request GET / or a bundled asset.
3. Repeat with an explicit gateway.controlUi.root fixture that points at a hardlinked package-store Control UI root.

Expected

• Auto-detected bundled roots serve the dashboard and bundled assets.
• Explicit configured roots still reject hardlinked assets.

Actual

• Verified by focused regression tests below.

Evidence

Attach at least one:

• Failing test/log before + passing after
• Trace/log snippets
• Screenshot/recording
• Perf numbers (if relevant)

Human Verification (required)

What you personally verified (not just CI), and how:

• Verified scenarios: symlinked-wrapper asset discovery, bundled-vs-resolved hardlink handling, explicit configured-root rejection.
• Edge cases checked: hardlinked index.html, hardlinked bundled assets, non-package fallback roots, SPA fallback under bundled roots.
• What you did not verify: full repo-wide gates on this clean branch.

Review Conversations

• I replied to or resolved every bot review conversation I addressed in this PR.
• I left unresolved only the conversations that still need reviewer or maintainer judgment.

Compatibility / Migration

• Backward compatible? (Yes)
• Config/env changes? (No)
• Migration needed? (No)
• If yes, exact upgrade steps:

Failure Recovery (if this breaks)

• How to disable/revert this change quickly: revert this PR or keep using an explicit custom Control UI root with non-hardlinked assets.
• Files/config to restore: src/infra/control-ui-assets.ts, src/gateway/server.impl.ts, src/gateway/control-ui.ts
• Known bad symptoms reviewers should watch for: bundled global installs still returning 404, or configured custom roots unexpectedly serving hardlinked files.

Risks and Mitigations

• Risk: auto-detected bundled roots could be misclassified if package provenance logic is too loose.
  • Mitigation: root classification is package-proven only and has dedicated regression tests for package and fallback roots.