fix(server): prevent git auth loops during passive status refresh

[ifBars]

What Changed

• Moved upstream refresh for passive git status reads onto a scheduled background path instead of awaiting it inside statusDetails().
• Kept the longer fetchUpstreamRefForStatus timeout so Git Credential Manager login can complete when that scheduled refresh needs auth on Windows.
• Added GitCore regression tests covering scheduled upstream refresh behavior, the extended refresh timeout, and deduplication of concurrent scheduled refreshes.

Why

On Windows, the desktop app could repeatedly open and close the GitHub/GCM auth window while the app was focused.

This happened when passive status polling triggered git fetch in a repo without cached GitHub credentials. In that state, Git Credential Manager needs time for the user to complete interactive login. The previous implementation awaited upstream refresh directly inside statusDetails() with a 5 second timeout, which killed the fetch before auth could finish and restarted the same flow on the next refresh.

This change keeps the longer auth window allowance on the passive refresh path, but removes that auth-sensitive fetch from blocking callers like statusDetails(), pushCurrentBranch(), and pullCurrentBranch().

Fixes #1418

Checklist

• This PR is small and focused
• I explained what changed and why

[coderabbitai]

Important

Review skipped

Auto reviews are disabled on this repository. Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

⚙️ Run configuration

Configuration used: Repository UI

Review profile: CHILL

Plan: Pro

Run ID: d51c0469-5f33-42b8-b5ce-5543a0b505d3

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Use the checkbox below for a quick retry:

• 🔍 Trigger review

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: c36240a448

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".