{/* Color Theme Dropdown */}
{
variant?: 'primary' | 'secondary' | 'ghost' | 'success' | 'danger'
size?: 'sm' | 'md' | 'lg'
pill?: boolean
}
function Button({
children,
variant = 'primary',
size = 'md',
pill = false,
className,
...props
}: ButtonProps) {
const baseStyles = 'inline-flex items-center justify-center font-medium transition-all duration-200 focus:outline-none focus:ring-2 focus:ring-offset-2'
const variants = {
primary: 'bg-[var(--color-accent-primary)] text-[var(--color-text-inverse)] hover:bg-[var(--color-accent-primary-hover)] focus:ring-[var(--color-accent-primary)]',
secondary: 'bg-transparent border border-[var(--color-border-default)] text-[var(--color-text-primary)] hover:bg-[var(--color-background-secondary)]',
ghost: 'bg-transparent text-[var(--color-text-secondary)] hover:bg-[var(--color-background-secondary)]',
success: 'bg-[var(--color-semantic-success)] text-white hover:opacity-90',
danger: 'bg-[var(--color-semantic-error)] text-white hover:opacity-90'
}
const sizes = {
sm: 'h-8 px-3 text-xs',
md: 'h-10 px-4 text-sm',
lg: 'h-12 px-6 text-base'
}
const radius = pill ? 'rounded-full' : 'rounded-[var(--radius-md)]'
return (
)
}
// Badge Component
interface BadgeProps {
children: React.ReactNode
variant?: 'default' | 'primary' | 'success' | 'warning' | 'error' | 'outline'
}
function Badge({ children, variant = 'default' }: BadgeProps) {
const variants = {
default: 'bg-[var(--color-background-secondary)] text-[var(--color-text-secondary)]',
primary: 'bg-[var(--color-accent-primary-light)] text-[var(--color-accent-primary)]',
success: 'bg-[var(--color-semantic-success-light)] text-[var(--color-semantic-success)]',
warning: 'bg-[var(--color-semantic-warning-light)] text-[var(--color-semantic-warning)]',
error: 'bg-[var(--color-semantic-error-light)] text-[var(--color-semantic-error)]',
outline: 'bg-transparent border border-[var(--color-border-default)] text-[var(--color-text-secondary)]'
}
return (
{children}
)
}
// Avatar Component
interface AvatarProps {
src?: string
name?: string
size?: 'xs' | 'sm' | 'md' | 'lg' | 'xl' | '2xl'
}
function Avatar({ src, name = 'User', size = 'md', color }: AvatarProps & { color?: string }) {
const sizes = {
xs: 'w-6 h-6 text-[10px]',
sm: 'w-8 h-8 text-xs',
md: 'w-10 h-10 text-sm',
lg: 'w-14 h-14 text-base',
xl: 'w-20 h-20 text-xl',
'2xl': 'w-[120px] h-[120px] text-3xl'
}
const initials = name.split(' ').map(n => n[0]).join('').slice(0, 2).toUpperCase()
// Default to neutral gray, can be overridden with color prop
const bgStyle = color
? { backgroundColor: color }
: {}
return (
) {
return (
)
}
// Toggle Component
function Toggle({ checked, onChange }: { checked: boolean; onChange: (checked: boolean) => void }) {
return (
)
}
// ============================================
// DEMO COMPONENTS (Matching the screenshot)
// ============================================
// Profile Card
function ProfileCard() {
return (
UI/UX Design
Project management
Agile methodologies
)
}
// Notifications Card
function NotificationsCard() {
return (
6
)
}
// Calendar Card
function CalendarCard() {
const days = ['M', 'T', 'W', 'T', 'F', 'S', 'S']
const dates = [
[29, 30, 31, 1, 2, 3, 4],
[5, 6, 7, 8, 9, 10, 11],
[12, 13, 14, 15, 16, 17, 18],
[19, 20, 21, 22, 23, 24, 25],
[26, 27, 28, 29, 30, 31, 1]
]
return (
)
}
// Team Members Card
function TeamMembersCard() {
const members = [
{ name: 'Julie Andrews', role: 'Project manager' },
{ name: 'Kevin Conroy', role: 'Project manager' },
{ name: 'Jim Connor', role: 'Project manager' },
{ name: 'Tom Kinley', role: 'Project manager' }
]
return (
)
}
// Project Status Card
function ProjectStatusCard() {
return (
)
}
// Milestone Card
function MilestoneCard() {
return (
)
}
// Integrations Card
function IntegrationsCard() {
const [slack, setSlack] = useState(true)
const [meet, setMeet] = useState(true)
const [github, setGithub] = useState(false)
const integrations = [
{ icon: Slack, name: 'Slack', desc: 'Used as a main source of communication', enabled: slack, toggle: setSlack, color: '#E91E63' },
{ icon: Video, name: 'Google meet', desc: 'Used for all types of calls', enabled: meet, toggle: setMeet, color: '#00897B' },
{ icon: Github, name: 'Github', desc: 'Enables automated workflows, code synchronization', enabled: github, toggle: setGithub, color: '#333' }
]
return (
)
}
// ============================================
// MAIN APP
// ============================================
export default function App() {
const [activeSection, setActiveSection] = useState('overview')
const { colorTheme, mode, setColorTheme, toggleMode, themes } = useTheme()
const sections = [
{ id: 'overview', label: 'Overview' },
{ id: 'colors', label: 'Colors' },
{ id: 'typography', label: 'Typography' },
{ id: 'components', label: 'Components' },
{ id: 'animations', label: 'Animations' },
{ id: 'themes', label: 'Themes' }
]
const currentThemeInfo = themes.find(t => t.id === colorTheme) || themes[0]
return (
{code && (
)}
)
}
// Interactive hover card demo
function HoverCardDemo() {
return (
Hover me
)
}
// Button press demo
function ButtonPressDemo() {
return (
Press me
)
}
// Staggered list demo
function StaggeredListDemo() {
const items = ['First item', 'Second item', 'Third item', 'Fourth item']
const container = {
hidden: { opacity: 0 },
show: {
opacity: 1,
transition: {
staggerChildren: 0.1
}
}
}
const item = {
hidden: { opacity: 0, x: -20 },
show: { opacity: 1, x: 0 }
}
return (
{items.map((text, i) => (
{text}
))}
)
}
// Notification toast demo
function ToastDemo() {
const [show, setShow] = useState(true)
useEffect(() => {
if (!show) {
const timer = setTimeout(() => setShow(true), 500)
return () => clearTimeout(timer)
}
}, [show])
return (
{show && (
)}
)
}
// Modal demo
function ModalDemo() {
const [isOpen, setIsOpen] = useState(false)
return (
{isOpen && (
<>
setIsOpen(false)}
/>
)}
)
}
// Counter animation demo
function CounterDemo() {
const [count, setCount] = useState(0)
return (
setCount(c => c - 1)}
className="w-10 h-10 rounded-full bg-[var(--color-background-secondary)] flex items-center justify-center border border-[var(--color-border-default)]"
>
{count}
setCount(c => c + 1)}
className="w-10 h-10 rounded-full bg-[var(--color-accent-primary)] text-[var(--color-text-inverse)] flex items-center justify-center"
>
)
}
// Loading spinner demo
function LoadingDemo() {
return (
Drag
)
}
// Progress animation demo
function ProgressAnimationDemo() {
const [progress, setProgress] = useState(0)
useEffect(() => {
const timer = setTimeout(() => {
setProgress(75)
}, 300)
return () => clearTimeout(timer)
}, [])
return (
setIsOpen(!isOpen)}
className="w-full p-4 flex items-center justify-between text-left"
>
Accordion Item
{isOpen && (
)}
)
}
// Main Animations Section Component
function AnimationsSection({ theme, colorTheme }: { theme: 'light' | 'dark'; colorTheme: string }) {
return (
{/* Mini UI Preview */}
{/* Color swatches */}
)
}
function ThemesSection({
currentTheme,
currentMode,
themes,
onThemeChange,
onModeChange
}: {
currentTheme: ColorTheme
currentMode: Mode
themes: typeof COLOR_THEMES
onThemeChange: (theme: ColorTheme) => void
onModeChange: () => void
}) {
return (
(() => {
if (typeof window !== 'undefined') {
const stored = localStorage.getItem('design-system-theme-config')
if (stored) {
try {
const parsed = JSON.parse(stored)
// Validate that the stored theme still exists
const themeExists = COLOR_THEMES.some(t => t.id === parsed.colorTheme)
if (themeExists) {
return parsed
}
// Fall back to default if theme was removed
return {
colorTheme: 'default' as ColorTheme,
mode: parsed.mode || 'light'
}
} catch {}
}
return {
colorTheme: 'default' as ColorTheme,
mode: window.matchMedia('(prefers-color-scheme: dark)').matches ? 'dark' : 'light'
}
}
return { colorTheme: 'default', mode: 'light' }
})
useEffect(() => {
const root = document.documentElement
// Set color theme
if (config.colorTheme === 'default') {
root.removeAttribute('data-theme')
} else {
root.setAttribute('data-theme', config.colorTheme)
}
// Set mode
if (config.mode === 'dark') {
root.classList.add('dark')
} else {
root.classList.remove('dark')
}
localStorage.setItem('design-system-theme-config', JSON.stringify(config))
}, [config])
const setColorTheme = (colorTheme: ColorTheme) => setConfig(c => ({ ...c, colorTheme }))
const setMode = (mode: Mode) => setConfig(c => ({ ...c, mode }))
const toggleMode = () => setConfig(c => ({ ...c, mode: c.mode === 'light' ? 'dark' : 'light' }))
return {
colorTheme: config.colorTheme,
mode: config.mode,
setColorTheme,
setMode,
toggleMode,
themes: COLOR_THEMES
}
}
// Theme Selector Component
function ThemeSelector({
colorTheme,
mode,
onColorThemeChange,
onModeToggle,
themes
}: {
colorTheme: ColorTheme
mode: Mode
onColorThemeChange: (theme: ColorTheme) => void
onModeToggle: () => void
themes: typeof COLOR_THEMES
}) {
const [isOpen, setIsOpen] = useState(false)
// Find theme with fallback to first theme (default)
const currentTheme = themes.find(t => t.id === colorTheme) || themes[0]
return (
{isOpen && (
<>
)
}
// ============================================
// DESIGN SYSTEM COMPONENTS
// ============================================
// Button Component
interface ButtonProps extends React.ButtonHTMLAttributes setIsOpen(false)}
/>
{/* Light/Dark Toggle */}
{themes.map((theme) => (
))}
)}
{src ? (
) : (
{initials}
)}
)
}
// Avatar Group
function AvatarGroup({ avatars, max = 4 }: { avatars: { name: string; src?: string }[]; max?: number }) {
const visible = avatars.slice(0, max)
const remaining = avatars.length - max
return (
{visible.map((avatar, i) => (
)
}
// Progress Circle Component
function ProgressCircle({
value,
size = 'md',
color = 'var(--color-accent-primary)'
}: {
value: number
size?: 'sm' | 'md' | 'lg'
color?: string
}) {
const sizes = {
sm: { width: 40, stroke: 4, fontSize: 'text-[10px]' },
md: { width: 56, stroke: 5, fontSize: 'text-xs' },
lg: { width: 80, stroke: 6, fontSize: 'text-base' }
}
const { width, stroke, fontSize } = sizes[size]
const radius = (width - stroke) / 2
const circumference = 2 * Math.PI * radius
const offset = circumference - (value / 100) * circumference
return (
+{remaining}
)}
{value}%
)
}
// Card Component
function Card({
children,
className,
padding = true
}: {
children: React.ReactNode
className?: string
padding?: boolean
}) {
return (
{children}
)
}
// Input Component
function Input({
placeholder,
className,
...props
}: React.InputHTMLAttributesChristine Thompson
Project manager
Notifications
Unread
Ashlynn George · 1h
has invited you to access "Magma project"
Ashlynn George · 1h
changed status of task in "Magma project"
February, 2021
{days.map((day, i) => (
{day}
))}
{dates.flat().map((date, i) => {
const isCurrentMonth = (i < 3 && date > 20) || (i > 30 && date < 10) ? false : true
const isSelected = date === 26 && isCurrentMonth
const isToday = date === 16 && isCurrentMonth
return (
)
})}
{members.map((member, i) => (
{member.name}
{member.role}
VISA
PayPal
Amber website redesign
In today's fast-paced digital landscape, our mission is to transform our website into a more intuitive, engaging, and user-friendly platfor...
Wireframes milestone
Due date:
March 20th
Asignees:
Integrations
{integrations.map((int, i) => (
{int.name}
{int.desc}
{/* Header */}
{/* Content */}
)
}
// ============================================
// ANIMATIONS SECTION
// ============================================
// Animation Variants - Reusable motion configs
const animationVariants = {
// Fade animations
fadeIn: {
initial: { opacity: 0 },
animate: { opacity: 1 },
exit: { opacity: 0 }
},
// Scale animations
scaleIn: {
initial: { opacity: 0, scale: 0.9 },
animate: { opacity: 1, scale: 1 },
exit: { opacity: 0, scale: 0.9 }
},
// Slide animations
slideUp: {
initial: { opacity: 0, y: 20 },
animate: { opacity: 1, y: 0 },
exit: { opacity: 0, y: -20 }
},
slideDown: {
initial: { opacity: 0, y: -20 },
animate: { opacity: 1, y: 0 },
exit: { opacity: 0, y: 20 }
},
slideLeft: {
initial: { opacity: 0, x: 20 },
animate: { opacity: 1, x: 0 },
exit: { opacity: 0, x: -20 }
},
slideRight: {
initial: { opacity: 0, x: -20 },
animate: { opacity: 1, x: 0 },
exit: { opacity: 0, x: 20 }
},
// Spring pop
pop: {
initial: { opacity: 0, scale: 0.5 },
animate: {
opacity: 1,
scale: 1,
transition: { type: 'spring', stiffness: 500, damping: 25 }
},
exit: { opacity: 0, scale: 0.5 }
},
// Bounce
bounce: {
initial: { opacity: 0, y: -50 },
animate: {
opacity: 1,
y: 0,
transition: { type: 'spring', stiffness: 300, damping: 10 }
}
}
}
// Transition presets
const transitions = {
instant: { duration: 0.05 },
fast: { duration: 0.15 },
normal: { duration: 0.25 },
slow: { duration: 0.4 },
spring: { type: 'spring', stiffness: 400, damping: 25 },
springBouncy: { type: 'spring', stiffness: 300, damping: 10 },
springSmooth: { type: 'spring', stiffness: 200, damping: 20 },
easeOut: { duration: 0.25, ease: [0, 0, 0.2, 1] },
easeIn: { duration: 0.25, ease: [0.4, 0, 1, 1] },
easeInOut: { duration: 0.25, ease: [0.4, 0, 0.2, 1] }
}
// Demo component for showcasing an animation
function AnimationDemo({
title,
description,
children,
code
}: {
title: string
description: string
children: React.ReactNode
code?: string
}) {
const [key, setKey] = useState(0)
return (
Auto-Build Design System
A modern, friendly design system for building beautiful interfaces
{/* Theme Selector */}
{sections.map((section) => (
))}
{activeSection === 'overview' && (
{/* Theme-specific color values */}
)}
{activeSection === 'typography' && (
)}
{activeSection === 'components' && (
{/* Demo Cards Grid - Replicating the screenshot layout */}
)}
{activeSection === 'colors' && (
Component Showcase
Color Palette
Currently showing: {currentThemeInfo.name} theme
Background
Primary
--bg-primary
Secondary
--bg-secondary
Accent
Primary
--accent
Hover
--accent-hover
Light
--accent-light
Semantic
Success
--success
Warning
--warning
Error
--error
Info
--info
Text
Primary
--text-primary
Secondary
--text-secondary
Tertiary
--text-tertiary
Note: Colors vary by theme and mode. Switch themes using the dropdown above to see different palettes.
For specific hex values, see the Themes tab or check design.json.
Typography Scale
Display Large • 36px / 700
The quick brown fox jumps
Display Medium • 30px / 700
The quick brown fox jumps over
Heading Large • 24px / 600
The quick brown fox jumps over the lazy dog
Heading Medium • 20px / 600
The quick brown fox jumps over the lazy dog
Heading Small • 16px / 600
The quick brown fox jumps over the lazy dog
Body Large • 16px / 400
The quick brown fox jumps over the lazy dog. Pack my box with five dozen liquor jugs.
Body Medium • 14px / 400
The quick brown fox jumps over the lazy dog. Pack my box with five dozen liquor jugs.
Body Small • 12px / 400
The quick brown fox jumps over the lazy dog. Pack my box with five dozen liquor jugs.
{/* Buttons */}
{/* Badges */}
Default
Primary
Success
Warning
Error
Outline
{/* Avatars */}
{/* Progress */}
{/* Inputs */}
{/* Toggles */}
{}} />
Off
{}} />
On
{/* Cards */}
)}
{activeSection === 'animations' && (
Buttons
Variants
Pill Buttons
Sizes
Badges
Avatars
Sizes
Avatar Group
Progress Circles
Inputs
Toggles
Cards
Card Title
This is a basic card with some content inside.
Large Radius
This card uses the 2xl border radius.
{title}
{description}
{children}
{code}
Success!
Action completed
Modal Title
This is a modal dialog with smooth enter/exit animations.
{/* Spinning loader */}
)
}
// Drag demo
function DragDemo() {
return (
{[0, 1, 2].map((i) => (
{/* Bouncing dots */}
{[0, 1, 2].map((i) => (
Progress
{progress}%
{/* Heart like animation */}
setLiked(!liked)}
className="p-3 rounded-full bg-[var(--color-surface-card)] border border-[var(--color-border-default)]"
>
{/* Star animation */}
setStarred(!starred)}
className="p-3 rounded-full bg-[var(--color-surface-card)] border border-[var(--color-border-default)]"
>
{/* Continuous sparkle */}
)
}
// Accordion demo
function AccordionDemo() {
const [isOpen, setIsOpen] = useState(false)
return (
This content smoothly animates in and out with height transitions.
{/* Header */}
{/* Basic Transitions */}
Faded In
Scaled In
Slid Up
Popped!
{/* Interactive Animations */}
{/* Component Animations */}
{/* Utility Animations */}
{/* Animation Guidelines */}
)
}
// ============================================
// THEMES SECTION
// ============================================
function ThemePreviewCard({
theme,
isActive,
mode,
onClick
}: {
theme: typeof COLOR_THEMES[0]
isActive: boolean
mode: 'light' | 'dark'
onClick: () => void
}) {
// Preview colors based on mode
const bgColor = mode === 'light' ? theme.previewColors.bg : theme.previewColors.darkBg
const cardColor = mode === 'light' ? '#FFFFFF' : '#1A1A1A'
const accentColor = mode === 'dark' && theme.previewColors.darkAccent
? theme.previewColors.darkAccent
: theme.previewColors.accent
return (
Animation System
Powered by Framer Motion • {colorTheme} theme in {theme} mode
Duration Presets
instant (50ms) → slow (400ms)
Easing Functions
spring, easeOut, easeInOut
Interaction Types
hover, tap, drag, gesture
Basic Transitions
Interactive Animations
Component Animations
Utility Animations
Animation Guidelines
✓ Do
- • Use animations to provide feedback
- • Keep durations short (150-400ms)
- • Use spring physics for natural feel
- • Animate transforms and opacity (GPU)
- • Respect reduced-motion preferences
- • Use consistent timing across similar elements
✗ Don't
- • Animate for decoration's sake
- • Use slow animations that block users
- • Animate layout properties (slow)
- • Create jarring or unexpected motions
- • Overuse bouncy springs
- • Animate critical error states
Accessibility Note: Always wrap animations in a check for prefers-reduced-motion and provide static alternatives.
{/* Mini header */}
{/* Mini cards */}
{/* Mini button */}
{/* Theme info */}
{theme.name}
{isActive && (
Active
)}
{theme.description}
{/* Header */}
{/* Theme Grid */}
{/* Current Theme Details */}
{/* Usage Instructions */}
)
}
================================================
FILE: .design-system/src/App.tsx.original
================================================
import { useState, useEffect } from 'react'
import {
User,
Bell,
Calendar,
Settings,
Check,
X,
MoreVertical,
MessageSquare,
ChevronLeft,
ChevronRight,
Slack,
Github,
Video,
Sun,
Moon,
Play,
RotateCcw,
Sparkles,
Zap,
Heart,
Star,
ArrowRight,
Plus,
Minus
} from 'lucide-react'
import { motion, AnimatePresence, useMotionValue, useTransform, useSpring } from 'framer-motion'
import { cn } from './lib/utils'
// ============================================
// THEME SYSTEM
// ============================================
type ColorTheme = 'default' | 'dusk' | 'lime' | 'ocean' | 'retro' | 'neo' | 'forest'
type Mode = 'light' | 'dark'
interface ThemeConfig {
colorTheme: ColorTheme
mode: Mode
}
const COLOR_THEMES: { id: ColorTheme; name: string; description: string; previewColors: { bg: string; accent: string; darkBg: string; darkAccent?: string } }[] = [
{
id: 'default',
name: 'Default',
description: 'Oscura-inspired with pale yellow accent',
previewColors: { bg: '#F2F2ED', accent: '#E6E7A3', darkBg: '#0B0B0F', darkAccent: '#E6E7A3' }
},
{
id: 'dusk',
name: 'Dusk',
description: 'Warmer variant with slightly lighter dark mode',
previewColors: { bg: '#F5F5F0', accent: '#E6E7A3', darkBg: '#131419', darkAccent: '#E6E7A3' }
},
{
id: 'lime',
name: 'Lime',
description: 'Fresh, energetic lime with purple accents',
previewColors: { bg: '#E8F5A3', accent: '#7C3AED', darkBg: '#0F0F1A' }
},
{
id: 'ocean',
name: 'Ocean',
description: 'Calm, professional blue tones',
previewColors: { bg: '#E0F2FE', accent: '#0284C7', darkBg: '#082F49' }
},
{
id: 'retro',
name: 'Retro',
description: 'Warm, nostalgic amber vibes',
previewColors: { bg: '#FEF3C7', accent: '#D97706', darkBg: '#1C1917' }
},
{
id: 'neo',
name: 'Neo',
description: 'Modern cyberpunk pink/magenta',
previewColors: { bg: '#FDF4FF', accent: '#D946EF', darkBg: '#0F0720' }
},
{
id: 'forest',
name: 'Forest',
description: 'Natural, earthy green tones',
previewColors: { bg: '#DCFCE7', accent: '#16A34A', darkBg: '#052E16' }
}
]
function useTheme() {
const [config, setConfig] = useStateTheme Gallery
{themes.length} color themes × 2 modes = {themes.length * 2} combinations
Color Themes
{themes.map((theme) => (
onThemeChange(theme.id)}
/>
))}
Current Theme Colors
Background
Primary
Secondary
Surface
Card
Elevated
Accent
Primary
Light
Semantic
Success
Error
Using Themes
HTML Setup
{`
`}
CSS Variables
{`/* Use in your CSS */
background: var(--color-background-primary);
color: var(--color-text-primary);
border: 1px solid var(--color-border-default);`}
Tip: All themes automatically support light and dark modes. Just toggle the .dark class!
{/* Color Theme Dropdown */}
{
variant?: 'primary' | 'secondary' | 'ghost' | 'success' | 'danger'
size?: 'sm' | 'md' | 'lg'
pill?: boolean
}
function Button({
children,
variant = 'primary',
size = 'md',
pill = false,
className,
...props
}: ButtonProps) {
const baseStyles = 'inline-flex items-center justify-center font-medium transition-all duration-200 focus:outline-none focus:ring-2 focus:ring-offset-2'
const variants = {
primary: 'bg-[var(--color-accent-primary)] text-[var(--color-text-inverse)] hover:bg-[var(--color-accent-primary-hover)] focus:ring-[var(--color-accent-primary)]',
secondary: 'bg-transparent border border-[var(--color-border-default)] text-[var(--color-text-primary)] hover:bg-[var(--color-background-secondary)]',
ghost: 'bg-transparent text-[var(--color-text-secondary)] hover:bg-[var(--color-background-secondary)]',
success: 'bg-[var(--color-semantic-success)] text-white hover:opacity-90',
danger: 'bg-[var(--color-semantic-error)] text-white hover:opacity-90'
}
const sizes = {
sm: 'h-8 px-3 text-xs',
md: 'h-10 px-4 text-sm',
lg: 'h-12 px-6 text-base'
}
const radius = pill ? 'rounded-full' : 'rounded-[var(--radius-md)]'
return (
)
}
// Badge Component
interface BadgeProps {
children: React.ReactNode
variant?: 'default' | 'primary' | 'success' | 'warning' | 'error' | 'outline'
}
function Badge({ children, variant = 'default' }: BadgeProps) {
const variants = {
default: 'bg-[var(--color-background-secondary)] text-[var(--color-text-secondary)]',
primary: 'bg-[var(--color-accent-primary-light)] text-[var(--color-accent-primary)]',
success: 'bg-[var(--color-semantic-success-light)] text-[var(--color-semantic-success)]',
warning: 'bg-[var(--color-semantic-warning-light)] text-[var(--color-semantic-warning)]',
error: 'bg-[var(--color-semantic-error-light)] text-[var(--color-semantic-error)]',
outline: 'bg-transparent border border-[var(--color-border-default)] text-[var(--color-text-secondary)]'
}
return (
{children}
)
}
// Avatar Component
interface AvatarProps {
src?: string
name?: string
size?: 'xs' | 'sm' | 'md' | 'lg' | 'xl' | '2xl'
}
function Avatar({ src, name = 'User', size = 'md', color }: AvatarProps & { color?: string }) {
const sizes = {
xs: 'w-6 h-6 text-[10px]',
sm: 'w-8 h-8 text-xs',
md: 'w-10 h-10 text-sm',
lg: 'w-14 h-14 text-base',
xl: 'w-20 h-20 text-xl',
'2xl': 'w-[120px] h-[120px] text-3xl'
}
const initials = name.split(' ').map(n => n[0]).join('').slice(0, 2).toUpperCase()
// Default to neutral gray, can be overridden with color prop
const bgStyle = color
? { backgroundColor: color }
: {}
return (
) {
return (
)
}
// Toggle Component
function Toggle({ checked, onChange }: { checked: boolean; onChange: (checked: boolean) => void }) {
return (
)
}
// ============================================
// DEMO COMPONENTS (Matching the screenshot)
// ============================================
// Profile Card
function ProfileCard() {
return (
UI/UX Design
Project management
Agile methodologies
)
}
// Notifications Card
function NotificationsCard() {
return (
6
)
}
// Calendar Card
function CalendarCard() {
const days = ['M', 'T', 'W', 'T', 'F', 'S', 'S']
const dates = [
[29, 30, 31, 1, 2, 3, 4],
[5, 6, 7, 8, 9, 10, 11],
[12, 13, 14, 15, 16, 17, 18],
[19, 20, 21, 22, 23, 24, 25],
[26, 27, 28, 29, 30, 31, 1]
]
return (
)
}
// Team Members Card
function TeamMembersCard() {
const members = [
{ name: 'Julie Andrews', role: 'Project manager' },
{ name: 'Kevin Conroy', role: 'Project manager' },
{ name: 'Jim Connor', role: 'Project manager' },
{ name: 'Tom Kinley', role: 'Project manager' }
]
return (
)
}
// Project Status Card
function ProjectStatusCard() {
return (
)
}
// Milestone Card
function MilestoneCard() {
return (
)
}
// Integrations Card
function IntegrationsCard() {
const [slack, setSlack] = useState(true)
const [meet, setMeet] = useState(true)
const [github, setGithub] = useState(false)
const integrations = [
{ icon: Slack, name: 'Slack', desc: 'Used as a main source of communication', enabled: slack, toggle: setSlack, color: '#E91E63' },
{ icon: Video, name: 'Google meet', desc: 'Used for all types of calls', enabled: meet, toggle: setMeet, color: '#00897B' },
{ icon: Github, name: 'Github', desc: 'Enables automated workflows, code synchronization', enabled: github, toggle: setGithub, color: '#333' }
]
return (
)
}
// ============================================
// MAIN APP
// ============================================
export default function App() {
const [activeSection, setActiveSection] = useState('overview')
const { colorTheme, mode, setColorTheme, toggleMode, themes } = useTheme()
const sections = [
{ id: 'overview', label: 'Overview' },
{ id: 'colors', label: 'Colors' },
{ id: 'typography', label: 'Typography' },
{ id: 'components', label: 'Components' },
{ id: 'animations', label: 'Animations' },
{ id: 'themes', label: 'Themes' }
]
const currentThemeInfo = themes.find(t => t.id === colorTheme) || themes[0]
return (
{code && (
)}
)
}
// Interactive hover card demo
function HoverCardDemo() {
return (
Hover me
)
}
// Button press demo
function ButtonPressDemo() {
return (
Press me
)
}
// Staggered list demo
function StaggeredListDemo() {
const items = ['First item', 'Second item', 'Third item', 'Fourth item']
const container = {
hidden: { opacity: 0 },
show: {
opacity: 1,
transition: {
staggerChildren: 0.1
}
}
}
const item = {
hidden: { opacity: 0, x: -20 },
show: { opacity: 1, x: 0 }
}
return (
{items.map((text, i) => (
{text}
))}
)
}
// Notification toast demo
function ToastDemo() {
const [show, setShow] = useState(true)
useEffect(() => {
if (!show) {
const timer = setTimeout(() => setShow(true), 500)
return () => clearTimeout(timer)
}
}, [show])
return (
{show && (
)}
)
}
// Modal demo
function ModalDemo() {
const [isOpen, setIsOpen] = useState(false)
return (
{isOpen && (
<>
setIsOpen(false)}
/>
)}
)
}
// Counter animation demo
function CounterDemo() {
const [count, setCount] = useState(0)
return (
setCount(c => c - 1)}
className="w-10 h-10 rounded-full bg-[var(--color-background-secondary)] flex items-center justify-center border border-[var(--color-border-default)]"
>
{count}
setCount(c => c + 1)}
className="w-10 h-10 rounded-full bg-[var(--color-accent-primary)] text-[var(--color-text-inverse)] flex items-center justify-center"
>
)
}
// Loading spinner demo
function LoadingDemo() {
return (
Drag
)
}
// Progress animation demo
function ProgressAnimationDemo() {
const [progress, setProgress] = useState(0)
useEffect(() => {
const timer = setTimeout(() => {
setProgress(75)
}, 300)
return () => clearTimeout(timer)
}, [])
return (
setIsOpen(!isOpen)}
className="w-full p-4 flex items-center justify-between text-left"
>
Accordion Item
{isOpen && (
)}
)
}
// Main Animations Section Component
function AnimationsSection({ theme, colorTheme }: { theme: 'light' | 'dark'; colorTheme: string }) {
return (
{/* Mini UI Preview */}
{/* Color swatches */}
)
}
function ThemesSection({
currentTheme,
currentMode,
themes,
onThemeChange,
onModeChange
}: {
currentTheme: ColorTheme
currentMode: Mode
themes: typeof COLOR_THEMES
onThemeChange: (theme: ColorTheme) => void
onModeChange: () => void
}) {
return (
{
variant?: 'primary' | 'secondary' | 'ghost' | 'success' | 'danger'
size?: 'sm' | 'md' | 'lg'
pill?: boolean
}
export function Button({
children,
variant = 'primary',
size = 'md',
pill = false,
className,
...props
}: ButtonProps) {
const baseStyles = 'inline-flex items-center justify-center font-medium transition-all duration-200 focus:outline-none focus:ring-2 focus:ring-offset-2'
const variants = {
primary: 'bg-(--color-accent-primary) text-(--color-text-inverse) hover:bg-(--color-accent-primary-hover) focus:ring-(--color-accent-primary)',
secondary: 'bg-transparent border border-(--color-border-default) text-(--color-text-primary) hover:bg-(--color-background-secondary)',
ghost: 'bg-transparent text-(--color-text-secondary) hover:bg-(--color-background-secondary)',
success: 'bg-(--color-semantic-success) text-white hover:opacity-90',
danger: 'bg-(--color-semantic-error) text-white hover:opacity-90'
}
const sizes = {
sm: 'h-8 px-3 text-xs',
md: 'h-10 px-4 text-sm',
lg: 'h-12 px-6 text-base'
}
const radius = pill ? 'rounded-full' : 'rounded-md'
return (
)
}
================================================
FILE: .design-system/src/components/Card.tsx
================================================
import React from 'react'
import { cn } from '../lib/utils'
export interface CardProps {
children: React.ReactNode
className?: string
padding?: boolean
}
export function Card({
children,
className,
padding = true
}: CardProps) {
return (
) {
return (
)
}
================================================
FILE: .design-system/src/components/ProgressCircle.tsx
================================================
import React from 'react'
import { cn } from '../lib/utils'
export interface ProgressCircleProps {
value: number
size?: 'sm' | 'md' | 'lg'
color?: string
}
export function ProgressCircle({
value,
size = 'md',
color = 'var(--color-accent-primary)'
}: ProgressCircleProps) {
const sizes = {
sm: { width: 40, stroke: 4, fontSize: 'text-[10px]' },
md: { width: 56, stroke: 5, fontSize: 'text-xs' },
lg: { width: 80, stroke: 6, fontSize: 'text-base' }
}
const { width, stroke, fontSize } = sizes[size]
const radius = (width - stroke) / 2
const circumference = 2 * Math.PI * radius
const offset = circumference - (value / 100) * circumference
return (
)
}
================================================
FILE: .design-system/src/demo-cards/IntegrationsCard.tsx
================================================
import { useState } from 'react'
import { Slack, Video, Github } from 'lucide-react'
import { Card, Toggle } from '../components'
export function IntegrationsCard() {
const [slack, setSlack] = useState(true)
const [meet, setMeet] = useState(true)
const [github, setGithub] = useState(false)
const integrations = [
{ icon: Slack, name: 'Slack', desc: 'Used as a main source of communication', enabled: slack, toggle: setSlack, color: '#E91E63' },
{ icon: Video, name: 'Google meet', desc: 'Used for all types of calls', enabled: meet, toggle: setMeet, color: '#00897B' },
{ icon: Github, name: 'Github', desc: 'Enables automated workflows, code synchronization', enabled: github, toggle: setGithub, color: '#333' }
]
return (
)
}
================================================
FILE: .design-system/src/demo-cards/MilestoneCard.tsx
================================================
import { Card, Button, ProgressCircle, AvatarGroup } from '../components'
export function MilestoneCard() {
return (
)
}
================================================
FILE: .design-system/src/demo-cards/NotificationsCard.tsx
================================================
import { MoreVertical, Check, X } from 'lucide-react'
import { Card, Avatar, Badge, Button } from '../components'
export function NotificationsCard() {
return (
6
)
}
================================================
FILE: .design-system/src/demo-cards/ProfileCard.tsx
================================================
import { MoreVertical } from 'lucide-react'
import { Card, Avatar, Badge } from '../components'
export function ProfileCard() {
return (
UI/UX Design
Project management
Agile methodologies
)
}
================================================
FILE: .design-system/src/demo-cards/ProjectStatusCard.tsx
================================================
import { MoreVertical } from 'lucide-react'
import { Card, ProgressCircle, AvatarGroup } from '../components'
export function ProjectStatusCard() {
return (
)
}
================================================
FILE: .design-system/src/demo-cards/TeamMembersCard.tsx
================================================
import { MoreVertical, MessageSquare } from 'lucide-react'
import { Card, Avatar } from '../components'
export function TeamMembersCard() {
const members = [
{ name: 'Julie Andrews', role: 'Project manager' },
{ name: 'Kevin Conroy', role: 'Project manager' },
{ name: 'Jim Connor', role: 'Project manager' },
{ name: 'Tom Kinley', role: 'Project manager' }
]
return (
)
}
================================================
FILE: .design-system/src/demo-cards/index.ts
================================================
export * from './ProfileCard'
export * from './NotificationsCard'
export * from './CalendarCard'
export * from './TeamMembersCard'
export * from './ProjectStatusCard'
export * from './MilestoneCard'
export * from './IntegrationsCard'
================================================
FILE: .design-system/src/lib/icons.ts
================================================
/**
* Centralized Icon Exports for Design System
*
* This file serves as the single source of truth for all lucide-react icons used
* throughout the design system demo app. By consolidating imports here, we enable:
*
* 1. Better tracking of which icons are actually used
* 2. Potential code-splitting opportunities
* 3. Easier future migration to alternative icon solutions
* 4. Reduced bundle size through optimized tree-shaking
*
* Usage:
* import { Check, ChevronLeft, X } from '../lib/icons';
*
* When adding new icons:
* 1. Import the icon from 'lucide-react'
* 2. Add it to the export statement in alphabetical order
*/
export {
Check,
ChevronLeft,
ChevronRight,
Github,
Heart,
MessageSquare,
Minus,
Moon,
MoreVertical,
Plus,
RotateCcw,
Slack,
Sparkles,
Star,
Sun,
Video,
X,
Zap,
} from 'lucide-react';
================================================
FILE: .design-system/src/lib/utils.ts
================================================
import { type ClassValue, clsx } from 'clsx'
import { twMerge } from 'tailwind-merge'
export function cn(...inputs: ClassValue[]) {
return twMerge(clsx(inputs))
}
================================================
FILE: .design-system/src/main.tsx
================================================
import React from 'react'
import ReactDOM from 'react-dom/client'
import App from './App'
import './styles.css'
ReactDOM.createRoot(document.getElementById('root')!).render(
,
)
================================================
FILE: .design-system/src/styles.css
================================================
@import "tailwindcss";
/* ============================================
AUTO-BUILD DESIGN SYSTEM
Multi-Theme Support: Light/Dark × Color Themes
============================================ */
@theme {
/* Font family */
--font-sans: 'Inter', -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, sans-serif;
--font-mono: 'JetBrains Mono', 'Fira Code', 'SF Mono', monospace;
/* Border radius */
--radius-sm: 4px;
--radius-md: 8px;
--radius-lg: 12px;
--radius-xl: 16px;
--radius-2xl: 20px;
--radius-3xl: 24px;
--radius-full: 9999px;
}
/* ============================================
DEFAULT THEME (Light)
Oscura-inspired warm, muted palette
============================================ */
:root {
/* Background colors */
--color-background-primary: #F2F2ED;
--color-background-secondary: #E8E8E3;
--color-background-neutral: #EDEDE8;
/* Surface colors */
--color-surface-card: #FFFFFF;
--color-surface-elevated: #FFFFFF;
--color-surface-overlay: rgba(0, 0, 0, 0.5);
/* Text colors */
--color-text-primary: #0B0B0F;
--color-text-secondary: #5C6974;
--color-text-tertiary: #868F97;
--color-text-inverse: #0B0B0F;
/* Accent colors - muted olive/yellow */
--color-accent-primary: #A5A66A;
--color-accent-primary-hover: #8E8F5A;
--color-accent-primary-light: #EFEFE0;
/* Semantic colors */
--color-semantic-success: #4EBE96;
--color-semantic-success-light: #E0F5ED;
--color-semantic-warning: #D2D714;
--color-semantic-warning-light: #F5F5D0;
--color-semantic-error: #D84F68;
--color-semantic-error-light: #FCE8EC;
--color-semantic-info: #479FFA;
--color-semantic-info-light: #E8F4FF;
/* Border colors */
--color-border-default: #DEDED9;
--color-border-focus: #A5A66A;
/* Shadows */
--shadow-sm: 0 1px 2px 0 rgba(0, 0, 0, 0.05);
--shadow-md: 0 4px 6px -1px rgba(0, 0, 0, 0.07), 0 2px 4px -2px rgba(0, 0, 0, 0.05);
--shadow-lg: 0 10px 15px -3px rgba(0, 0, 0, 0.08), 0 4px 6px -4px rgba(0, 0, 0, 0.05);
--shadow-xl: 0 20px 25px -5px rgba(0, 0, 0, 0.08), 0 8px 10px -6px rgba(0, 0, 0, 0.04);
--shadow-focus: 0 0 0 3px rgba(165, 166, 106, 0.2);
}
/* ============================================
DEFAULT THEME (Dark)
Oscura Midnight - deepest dark with pale yellow accent
Inspired by Fey/Oscura
============================================ */
.dark {
--color-background-primary: #0B0B0F;
--color-background-secondary: #121216;
--color-background-neutral: #0E0E12;
--color-surface-card: #121216;
--color-surface-elevated: #1A1A1F;
--color-surface-overlay: rgba(0, 0, 0, 0.85);
--color-text-primary: #E6E6E6;
--color-text-secondary: #868F97;
--color-text-tertiary: #5C6974;
--color-text-inverse: #0B0B0F;
/* More saturated yellow accent for better contrast */
--color-accent-primary: #D6D876;
--color-accent-primary-hover: #C5C85A;
--color-accent-primary-light: #2A2A1F;
/* Semantic colors - muted versions */
--color-semantic-success: #4EBE96;
--color-semantic-success-light: #1A2924;
--color-semantic-warning: #D2D714;
--color-semantic-warning-light: #262618;
--color-semantic-error: #FF5C5C;
--color-semantic-error-light: #2A1A1A;
--color-semantic-info: #479FFA;
--color-semantic-info-light: #1A2230;
--color-border-default: #232323;
--color-border-focus: #E6E7A3;
/* Minimal shadows in true dark mode */
--shadow-sm: 0 1px 2px 0 rgba(0, 0, 0, 0.6);
--shadow-md: 0 4px 6px -1px rgba(0, 0, 0, 0.7);
--shadow-lg: 0 10px 15px -3px rgba(0, 0, 0, 0.8);
--shadow-xl: 0 20px 25px -5px rgba(0, 0, 0, 0.9);
--shadow-focus: 0 0 0 2px rgba(230, 231, 163, 0.2);
}
/* ============================================
DUSK THEME (Light)
Warm, muted palette inspired by Fey/Oscura
============================================ */
[data-theme="dusk"] {
--color-background-primary: #F5F5F0;
--color-background-secondary: #EAEAE5;
--color-background-neutral: #F0F0EB;
--color-surface-card: #FFFFFF;
--color-surface-elevated: #FFFFFF;
--color-surface-overlay: rgba(0, 0, 0, 0.5);
--color-text-primary: #131419;
--color-text-secondary: #5C6974;
--color-text-tertiary: #868F97;
--color-text-inverse: #131419;
--color-accent-primary: #B8B978;
--color-accent-primary-hover: #A5A66A;
--color-accent-primary-light: #F0F0E0;
--color-semantic-success: #4EBE96;
--color-semantic-success-light: #E0F5ED;
--color-semantic-warning: #D2D714;
--color-semantic-warning-light: #F5F5D0;
--color-semantic-error: #D84F68;
--color-semantic-error-light: #FCE8EC;
--color-semantic-info: #479FFA;
--color-semantic-info-light: #E8F4FF;
--color-border-default: #E0E0DB;
--color-border-focus: #B8B978;
--shadow-focus: 0 0 0 3px rgba(184, 185, 120, 0.2);
}
/* Dusk Dark - Fey-inspired dark theme */
[data-theme="dusk"].dark {
--color-background-primary: #131419;
--color-background-secondary: #1A1B21;
--color-background-neutral: #16171D;
--color-surface-card: #1A1B21;
--color-surface-elevated: #222329;
--color-surface-overlay: rgba(0, 0, 0, 0.8);
--color-text-primary: #E6E6E6;
--color-text-secondary: #868F97;
--color-text-tertiary: #5C6974;
--color-text-inverse: #131419;
--color-accent-primary: #E6E7A3;
--color-accent-primary-hover: #D6D876;
--color-accent-primary-light: #2A2B1F;
--color-semantic-success: #4EBE96;
--color-semantic-success-light: #1A2E28;
--color-semantic-warning: #D2D714;
--color-semantic-warning-light: #2A2B1A;
--color-semantic-error: #D84F68;
--color-semantic-error-light: #2E1A1F;
--color-semantic-info: #479FFA;
--color-semantic-info-light: #1A2433;
--color-border-default: #282828;
--color-border-focus: #E6E7A3;
--shadow-sm: 0 1px 2px 0 rgba(0, 0, 0, 0.5);
--shadow-md: 0 4px 6px -1px rgba(0, 0, 0, 0.6);
--shadow-lg: 0 10px 15px -3px rgba(0, 0, 0, 0.7);
--shadow-xl: 0 20px 25px -5px rgba(0, 0, 0, 0.8);
--shadow-focus: 0 0 0 2px rgba(230, 231, 163, 0.25);
}
/* ============================================
LIME THEME (Light)
Fresh, energetic lime/chartreuse theme
============================================ */
[data-theme="lime"] {
--color-background-primary: #E8F5A3;
--color-background-secondary: #F5F9E8;
--color-background-neutral: #F8FAFC;
--color-surface-card: #FFFFFF;
--color-surface-elevated: #FFFFFF;
--color-surface-overlay: rgba(0, 0, 0, 0.5);
--color-text-primary: #1A1A2E;
--color-text-secondary: #64748B;
--color-text-tertiary: #94A3B8;
--color-text-inverse: #FFFFFF;
--color-accent-primary: #7C3AED;
--color-accent-primary-hover: #6D28D9;
--color-accent-primary-light: #EDE9FE;
--color-border-default: #E2E8F0;
--color-border-focus: #7C3AED;
--shadow-focus: 0 0 0 3px rgba(124, 58, 237, 0.2);
}
/* Lime Dark */
[data-theme="lime"].dark {
--color-background-primary: #0F0F1A;
--color-background-secondary: #1A1A2E;
--color-background-neutral: #13131F;
--color-surface-card: #1E1E2E;
--color-surface-elevated: #262638;
--color-surface-overlay: rgba(0, 0, 0, 0.7);
--color-text-primary: #F8FAFC;
--color-text-secondary: #A1A1B5;
--color-text-tertiary: #6B6B80;
--color-text-inverse: #1A1A2E;
--color-accent-primary: #8B5CF6;
--color-accent-primary-hover: #A78BFA;
--color-accent-primary-light: #2E2350;
--color-border-default: #2E2E40;
--color-border-focus: #8B5CF6;
--shadow-focus: 0 0 0 3px rgba(139, 92, 246, 0.3);
}
/* ============================================
OCEAN THEME (Light)
Calm, professional blue tones
============================================ */
[data-theme="ocean"] {
--color-background-primary: #E0F2FE;
--color-background-secondary: #F0F9FF;
--color-background-neutral: #F8FAFC;
--color-surface-card: #FFFFFF;
--color-surface-elevated: #FFFFFF;
--color-surface-overlay: rgba(0, 0, 0, 0.5);
--color-text-primary: #0C4A6E;
--color-text-secondary: #64748B;
--color-text-tertiary: #94A3B8;
--color-text-inverse: #FFFFFF;
--color-accent-primary: #0284C7;
--color-accent-primary-hover: #0369A1;
--color-accent-primary-light: #E0F2FE;
--color-semantic-success: #059669;
--color-semantic-success-light: #D1FAE5;
--color-semantic-warning: #D97706;
--color-semantic-warning-light: #FEF3C7;
--color-semantic-error: #DC2626;
--color-semantic-error-light: #FEE2E2;
--color-semantic-info: #2563EB;
--color-semantic-info-light: #DBEAFE;
--color-border-default: #BAE6FD;
--color-border-focus: #0284C7;
--shadow-focus: 0 0 0 3px rgba(2, 132, 199, 0.2);
}
/* Ocean Dark */
[data-theme="ocean"].dark {
--color-background-primary: #082F49;
--color-background-secondary: #0C4A6E;
--color-background-neutral: #0A3D5C;
--color-surface-card: #164E63;
--color-surface-elevated: #1E6B8A;
--color-surface-overlay: rgba(0, 0, 0, 0.7);
--color-text-primary: #F0F9FF;
--color-text-secondary: #7DD3FC;
--color-text-tertiary: #38BDF8;
--color-text-inverse: #082F49;
--color-accent-primary: #38BDF8;
--color-accent-primary-hover: #7DD3FC;
--color-accent-primary-light: #0C4A6E;
--color-semantic-success: #34D399;
--color-semantic-success-light: #134E4A;
--color-semantic-warning: #FBBF24;
--color-semantic-warning-light: #451A03;
--color-semantic-error: #F87171;
--color-semantic-error-light: #450A0A;
--color-semantic-info: #60A5FA;
--color-semantic-info-light: #1E3A8A;
--color-border-default: #0E7490;
--color-border-focus: #38BDF8;
--shadow-focus: 0 0 0 3px rgba(56, 189, 248, 0.3);
}
/* ============================================
RETRO THEME (Light)
Warm, nostalgic orange/amber vibes
============================================ */
[data-theme="retro"] {
--color-background-primary: #FEF3C7;
--color-background-secondary: #FFFBEB;
--color-background-neutral: #FEFCE8;
--color-surface-card: #FFFFFF;
--color-surface-elevated: #FFFFFF;
--color-surface-overlay: rgba(0, 0, 0, 0.5);
--color-text-primary: #78350F;
--color-text-secondary: #92400E;
--color-text-tertiary: #B45309;
--color-text-inverse: #FFFFFF;
--color-accent-primary: #D97706;
--color-accent-primary-hover: #B45309;
--color-accent-primary-light: #FEF3C7;
--color-semantic-success: #15803D;
--color-semantic-success-light: #DCFCE7;
--color-semantic-warning: #CA8A04;
--color-semantic-warning-light: #FEF9C3;
--color-semantic-error: #B91C1C;
--color-semantic-error-light: #FEE2E2;
--color-semantic-info: #1D4ED8;
--color-semantic-info-light: #DBEAFE;
--color-border-default: #FDE68A;
--color-border-focus: #D97706;
--shadow-focus: 0 0 0 3px rgba(217, 119, 6, 0.2);
}
/* Retro Dark */
[data-theme="retro"].dark {
--color-background-primary: #1C1917;
--color-background-secondary: #292524;
--color-background-neutral: #1C1917;
--color-surface-card: #44403C;
--color-surface-elevated: #57534E;
--color-surface-overlay: rgba(0, 0, 0, 0.7);
--color-text-primary: #FEFCE8;
--color-text-secondary: #FDE68A;
--color-text-tertiary: #FCD34D;
--color-text-inverse: #1C1917;
--color-accent-primary: #FBBF24;
--color-accent-primary-hover: #FCD34D;
--color-accent-primary-light: #451A03;
--color-semantic-success: #4ADE80;
--color-semantic-success-light: #14532D;
--color-semantic-warning: #FACC15;
--color-semantic-warning-light: #422006;
--color-semantic-error: #F87171;
--color-semantic-error-light: #450A0A;
--color-semantic-info: #60A5FA;
--color-semantic-info-light: #1E3A8A;
--color-border-default: #78716C;
--color-border-focus: #FBBF24;
--shadow-focus: 0 0 0 3px rgba(251, 191, 36, 0.3);
}
/* ============================================
NEO THEME (Light)
Modern, cyberpunk-inspired pink/cyan
============================================ */
[data-theme="neo"] {
--color-background-primary: #FDF4FF;
--color-background-secondary: #FAF5FF;
--color-background-neutral: #F5F3FF;
--color-surface-card: #FFFFFF;
--color-surface-elevated: #FFFFFF;
--color-surface-overlay: rgba(0, 0, 0, 0.5);
--color-text-primary: #581C87;
--color-text-secondary: #7C3AED;
--color-text-tertiary: #A855F7;
--color-text-inverse: #FFFFFF;
--color-accent-primary: #D946EF;
--color-accent-primary-hover: #C026D3;
--color-accent-primary-light: #FAE8FF;
--color-semantic-success: #06B6D4;
--color-semantic-success-light: #CFFAFE;
--color-semantic-warning: #F59E0B;
--color-semantic-warning-light: #FEF3C7;
--color-semantic-error: #E11D48;
--color-semantic-error-light: #FFE4E6;
--color-semantic-info: #8B5CF6;
--color-semantic-info-light: #EDE9FE;
--color-border-default: #F0ABFC;
--color-border-focus: #D946EF;
--shadow-focus: 0 0 0 3px rgba(217, 70, 239, 0.2);
}
/* Neo Dark */
[data-theme="neo"].dark {
--color-background-primary: #0F0720;
--color-background-secondary: #1A0A30;
--color-background-neutral: #150825;
--color-surface-card: #2D1B4E;
--color-surface-elevated: #3D2563;
--color-surface-overlay: rgba(0, 0, 0, 0.7);
--color-text-primary: #FAF5FF;
--color-text-secondary: #E879F9;
--color-text-tertiary: #D946EF;
--color-text-inverse: #0F0720;
--color-accent-primary: #F0ABFC;
--color-accent-primary-hover: #F5D0FE;
--color-accent-primary-light: #581C87;
--color-semantic-success: #22D3EE;
--color-semantic-success-light: #164E63;
--color-semantic-warning: #FBBF24;
--color-semantic-warning-light: #451A03;
--color-semantic-error: #FB7185;
--color-semantic-error-light: #4C0519;
--color-semantic-info: #A78BFA;
--color-semantic-info-light: #4C1D95;
--color-border-default: #581C87;
--color-border-focus: #F0ABFC;
--shadow-sm: 0 1px 2px 0 rgba(0, 0, 0, 0.4), 0 0 20px rgba(217, 70, 239, 0.1);
--shadow-md: 0 4px 6px -1px rgba(0, 0, 0, 0.5), 0 0 30px rgba(217, 70, 239, 0.1);
--shadow-lg: 0 10px 15px -3px rgba(0, 0, 0, 0.6), 0 0 40px rgba(217, 70, 239, 0.15);
--shadow-xl: 0 20px 25px -5px rgba(0, 0, 0, 0.6), 0 0 50px rgba(217, 70, 239, 0.2);
--shadow-focus: 0 0 0 3px rgba(240, 171, 252, 0.4);
}
/* ============================================
FOREST THEME (Light)
Natural, earthy green tones
============================================ */
[data-theme="forest"] {
--color-background-primary: #DCFCE7;
--color-background-secondary: #F0FDF4;
--color-background-neutral: #ECFDF5;
--color-surface-card: #FFFFFF;
--color-surface-elevated: #FFFFFF;
--color-surface-overlay: rgba(0, 0, 0, 0.5);
--color-text-primary: #14532D;
--color-text-secondary: #166534;
--color-text-tertiary: #22C55E;
--color-text-inverse: #FFFFFF;
--color-accent-primary: #16A34A;
--color-accent-primary-hover: #15803D;
--color-accent-primary-light: #DCFCE7;
--color-semantic-success: #059669;
--color-semantic-success-light: #D1FAE5;
--color-semantic-warning: #CA8A04;
--color-semantic-warning-light: #FEF9C3;
--color-semantic-error: #DC2626;
--color-semantic-error-light: #FEE2E2;
--color-semantic-info: #0284C7;
--color-semantic-info-light: #E0F2FE;
--color-border-default: #86EFAC;
--color-border-focus: #16A34A;
--shadow-focus: 0 0 0 3px rgba(22, 163, 74, 0.2);
}
/* Forest Dark */
[data-theme="forest"].dark {
--color-background-primary: #052E16;
--color-background-secondary: #14532D;
--color-background-neutral: #0A3D1F;
--color-surface-card: #166534;
--color-surface-elevated: #15803D;
--color-surface-overlay: rgba(0, 0, 0, 0.7);
--color-text-primary: #F0FDF4;
--color-text-secondary: #86EFAC;
--color-text-tertiary: #4ADE80;
--color-text-inverse: #052E16;
--color-accent-primary: #4ADE80;
--color-accent-primary-hover: #86EFAC;
--color-accent-primary-light: #14532D;
--color-semantic-success: #34D399;
--color-semantic-success-light: #064E3B;
--color-semantic-warning: #FBBF24;
--color-semantic-warning-light: #451A03;
--color-semantic-error: #F87171;
--color-semantic-error-light: #450A0A;
--color-semantic-info: #38BDF8;
--color-semantic-info-light: #0C4A6E;
--color-border-default: #166534;
--color-border-focus: #4ADE80;
--shadow-focus: 0 0 0 3px rgba(74, 222, 128, 0.3);
}
/* ============================================
BASE STYLES
============================================ */
body {
font-family: var(--font-sans);
color: var(--color-text-primary);
background-color: var(--color-background-primary);
-webkit-font-smoothing: antialiased;
-moz-osx-font-smoothing: grayscale;
transition: background-color 0.3s ease, color 0.3s ease;
}
/* ============================================
UTILITY CLASSES
============================================ */
.card {
background: var(--color-surface-card);
border-radius: var(--radius-xl);
box-shadow: var(--shadow-md);
padding: 24px;
transition: background-color 0.3s ease, box-shadow 0.3s ease;
}
.card-2xl {
border-radius: var(--radius-2xl);
}
/* Dark mode card border for better definition */
.dark .card {
border: 1px solid var(--color-border-default);
}
/* ============================================
TYPOGRAPHY CLASSES
============================================ */
.text-display-large {
font-size: 36px;
line-height: 44px;
font-weight: 700;
letter-spacing: -0.02em;
}
.text-display-medium {
font-size: 30px;
line-height: 38px;
font-weight: 700;
letter-spacing: -0.02em;
}
.text-heading-large {
font-size: 24px;
line-height: 32px;
font-weight: 600;
letter-spacing: -0.01em;
}
.text-heading-medium {
font-size: 20px;
line-height: 28px;
font-weight: 600;
letter-spacing: -0.01em;
}
.text-heading-small {
font-size: 16px;
line-height: 24px;
font-weight: 600;
}
.text-body-large {
font-size: 16px;
line-height: 24px;
font-weight: 400;
}
.text-body-medium {
font-size: 14px;
line-height: 20px;
font-weight: 400;
}
.text-body-small {
font-size: 12px;
line-height: 16px;
font-weight: 400;
}
.text-label {
font-size: 14px;
line-height: 20px;
font-weight: 500;
}
.text-label-small {
font-size: 12px;
line-height: 16px;
font-weight: 500;
letter-spacing: 0.02em;
}
/* ============================================
SCROLLBAR STYLING
============================================ */
::-webkit-scrollbar {
width: 8px;
height: 8px;
}
::-webkit-scrollbar-track {
background: var(--color-background-secondary);
border-radius: var(--radius-full);
}
::-webkit-scrollbar-thumb {
background: var(--color-border-default);
border-radius: var(--radius-full);
}
::-webkit-scrollbar-thumb:hover {
background: var(--color-text-tertiary);
}
================================================
FILE: .design-system/src/theme/ThemeSelector.tsx
================================================
import { useState } from 'react'
import { ChevronLeft, Check, Sun, Moon } from 'lucide-react'
import { cn } from '../lib/utils'
import { ColorTheme, Mode, ColorThemeDefinition } from './types'
interface ThemeSelectorProps {
colorTheme: ColorTheme
mode: Mode
onColorThemeChange: (theme: ColorTheme) => void
onModeToggle: () => void
themes: ColorThemeDefinition[]
}
export function ThemeSelector({
colorTheme,
mode,
onColorThemeChange,
onModeToggle,
themes
}: ThemeSelectorProps) {
const [isOpen, setIsOpen] = useState(false)
// Find theme with fallback to first theme (default)
const currentTheme = themes.find(t => t.id === colorTheme) || themes[0]
return (
{isOpen && (
<>
)
}
// ============================================
// DESIGN SYSTEM COMPONENTS
// ============================================
// Button Component
interface ButtonProps extends React.ButtonHTMLAttributes setIsOpen(false)}
/>
{/* Light/Dark Toggle */}
{themes.map((theme) => (
))}
)}
{src ? (
) : (
{initials}
)}
)
}
// Avatar Group
function AvatarGroup({ avatars, max = 4 }: { avatars: { name: string; src?: string }[]; max?: number }) {
const visible = avatars.slice(0, max)
const remaining = avatars.length - max
return (
{visible.map((avatar, i) => (
)
}
// Progress Circle Component
function ProgressCircle({
value,
size = 'md',
color = 'var(--color-accent-primary)'
}: {
value: number
size?: 'sm' | 'md' | 'lg'
color?: string
}) {
const sizes = {
sm: { width: 40, stroke: 4, fontSize: 'text-[10px]' },
md: { width: 56, stroke: 5, fontSize: 'text-xs' },
lg: { width: 80, stroke: 6, fontSize: 'text-base' }
}
const { width, stroke, fontSize } = sizes[size]
const radius = (width - stroke) / 2
const circumference = 2 * Math.PI * radius
const offset = circumference - (value / 100) * circumference
return (
+{remaining}
)}
{value}%
)
}
// Card Component
function Card({
children,
className,
padding = true
}: {
children: React.ReactNode
className?: string
padding?: boolean
}) {
return (
{children}
)
}
// Input Component
function Input({
placeholder,
className,
...props
}: React.InputHTMLAttributesChristine Thompson
Project manager
Notifications
Unread
Ashlynn George · 1h
has invited you to access "Magma project"
Ashlynn George · 1h
changed status of task in "Magma project"
February, 2021
{days.map((day, i) => (
{day}
))}
{dates.flat().map((date, i) => {
const isCurrentMonth = (i < 3 && date > 20) || (i > 30 && date < 10) ? false : true
const isSelected = date === 26 && isCurrentMonth
const isToday = date === 16 && isCurrentMonth
return (
)
})}
{members.map((member, i) => (
{member.name}
{member.role}
VISA
PayPal
Amber website redesign
In today's fast-paced digital landscape, our mission is to transform our website into a more intuitive, engaging, and user-friendly platfor...
Wireframes milestone
Due date:
March 20th
Asignees:
Integrations
{integrations.map((int, i) => (
{int.name}
{int.desc}
{/* Header */}
{/* Content */}
)
}
// ============================================
// ANIMATIONS SECTION
// ============================================
// Animation Variants - Reusable motion configs
const animationVariants = {
// Fade animations
fadeIn: {
initial: { opacity: 0 },
animate: { opacity: 1 },
exit: { opacity: 0 }
},
// Scale animations
scaleIn: {
initial: { opacity: 0, scale: 0.9 },
animate: { opacity: 1, scale: 1 },
exit: { opacity: 0, scale: 0.9 }
},
// Slide animations
slideUp: {
initial: { opacity: 0, y: 20 },
animate: { opacity: 1, y: 0 },
exit: { opacity: 0, y: -20 }
},
slideDown: {
initial: { opacity: 0, y: -20 },
animate: { opacity: 1, y: 0 },
exit: { opacity: 0, y: 20 }
},
slideLeft: {
initial: { opacity: 0, x: 20 },
animate: { opacity: 1, x: 0 },
exit: { opacity: 0, x: -20 }
},
slideRight: {
initial: { opacity: 0, x: -20 },
animate: { opacity: 1, x: 0 },
exit: { opacity: 0, x: 20 }
},
// Spring pop
pop: {
initial: { opacity: 0, scale: 0.5 },
animate: {
opacity: 1,
scale: 1,
transition: { type: 'spring', stiffness: 500, damping: 25 }
},
exit: { opacity: 0, scale: 0.5 }
},
// Bounce
bounce: {
initial: { opacity: 0, y: -50 },
animate: {
opacity: 1,
y: 0,
transition: { type: 'spring', stiffness: 300, damping: 10 }
}
}
}
// Transition presets
const transitions = {
instant: { duration: 0.05 },
fast: { duration: 0.15 },
normal: { duration: 0.25 },
slow: { duration: 0.4 },
spring: { type: 'spring', stiffness: 400, damping: 25 },
springBouncy: { type: 'spring', stiffness: 300, damping: 10 },
springSmooth: { type: 'spring', stiffness: 200, damping: 20 },
easeOut: { duration: 0.25, ease: [0, 0, 0.2, 1] },
easeIn: { duration: 0.25, ease: [0.4, 0, 1, 1] },
easeInOut: { duration: 0.25, ease: [0.4, 0, 0.2, 1] }
}
// Demo component for showcasing an animation
function AnimationDemo({
title,
description,
children,
code
}: {
title: string
description: string
children: React.ReactNode
code?: string
}) {
const [key, setKey] = useState(0)
return (
Auto-Build Design System
A modern, friendly design system for building beautiful interfaces
{/* Theme Selector */}
{sections.map((section) => (
))}
{activeSection === 'overview' && (
{/* Theme-specific color values */}
)}
{activeSection === 'typography' && (
)}
{activeSection === 'components' && (
{/* Demo Cards Grid - Replicating the screenshot layout */}
)}
{activeSection === 'colors' && (
Component Showcase
Color Palette
Currently showing: {currentThemeInfo.name} theme
Background
Primary
--bg-primary
Secondary
--bg-secondary
Accent
Primary
--accent
Hover
--accent-hover
Light
--accent-light
Semantic
Success
--success
Warning
--warning
Error
--error
Info
--info
Text
Primary
--text-primary
Secondary
--text-secondary
Tertiary
--text-tertiary
Note: Colors vary by theme and mode. Switch themes using the dropdown above to see different palettes.
For specific hex values, see the Themes tab or check design.json.
Typography Scale
Display Large • 36px / 700
The quick brown fox jumps
Display Medium • 30px / 700
The quick brown fox jumps over
Heading Large • 24px / 600
The quick brown fox jumps over the lazy dog
Heading Medium • 20px / 600
The quick brown fox jumps over the lazy dog
Heading Small • 16px / 600
The quick brown fox jumps over the lazy dog
Body Large • 16px / 400
The quick brown fox jumps over the lazy dog. Pack my box with five dozen liquor jugs.
Body Medium • 14px / 400
The quick brown fox jumps over the lazy dog. Pack my box with five dozen liquor jugs.
Body Small • 12px / 400
The quick brown fox jumps over the lazy dog. Pack my box with five dozen liquor jugs.
{/* Buttons */}
{/* Badges */}
Default
Primary
Success
Warning
Error
Outline
{/* Avatars */}
{/* Progress */}
{/* Inputs */}
{/* Toggles */}
{}} />
Off
{}} />
On
{/* Cards */}
)}
{activeSection === 'animations' && (
Buttons
Variants
Pill Buttons
Sizes
Badges
Avatars
Sizes
Avatar Group
Progress Circles
Inputs
Toggles
Cards
Card Title
This is a basic card with some content inside.
Large Radius
This card uses the 2xl border radius.
{title}
{description}
{children}
{code}
Success!
Action completed
Modal Title
This is a modal dialog with smooth enter/exit animations.
{/* Spinning loader */}
)
}
// Drag demo
function DragDemo() {
return (
{[0, 1, 2].map((i) => (
{/* Bouncing dots */}
{[0, 1, 2].map((i) => (
Progress
{progress}%
{/* Heart like animation */}
setLiked(!liked)}
className="p-3 rounded-full bg-[var(--color-surface-card)] border border-[var(--color-border-default)]"
>
{/* Star animation */}
setStarred(!starred)}
className="p-3 rounded-full bg-[var(--color-surface-card)] border border-[var(--color-border-default)]"
>
{/* Continuous sparkle */}
)
}
// Accordion demo
function AccordionDemo() {
const [isOpen, setIsOpen] = useState(false)
return (
This content smoothly animates in and out with height transitions.
{/* Header */}
{/* Basic Transitions */}
Faded In
Scaled In
Slid Up
Popped!
{/* Interactive Animations */}
{/* Component Animations */}
{/* Utility Animations */}
{/* Animation Guidelines */}
)
}
// ============================================
// THEMES SECTION
// ============================================
function ThemePreviewCard({
theme,
isActive,
mode,
onClick
}: {
theme: typeof COLOR_THEMES[0]
isActive: boolean
mode: 'light' | 'dark'
onClick: () => void
}) {
// Preview colors based on mode
const bgColor = mode === 'light' ? theme.previewColors.bg : theme.previewColors.darkBg
const cardColor = mode === 'light' ? '#FFFFFF' : '#1A1A1A'
const accentColor = mode === 'dark' && theme.previewColors.darkAccent
? theme.previewColors.darkAccent
: theme.previewColors.accent
return (
Animation System
Powered by Framer Motion • {colorTheme} theme in {theme} mode
Duration Presets
instant (50ms) → slow (400ms)
Easing Functions
spring, easeOut, easeInOut
Interaction Types
hover, tap, drag, gesture
Basic Transitions
Interactive Animations
Component Animations
Utility Animations
Animation Guidelines
✓ Do
- • Use animations to provide feedback
- • Keep durations short (150-400ms)
- • Use spring physics for natural feel
- • Animate transforms and opacity (GPU)
- • Respect reduced-motion preferences
- • Use consistent timing across similar elements
✗ Don't
- • Animate for decoration's sake
- • Use slow animations that block users
- • Animate layout properties (slow)
- • Create jarring or unexpected motions
- • Overuse bouncy springs
- • Animate critical error states
Accessibility Note: Always wrap animations in a check for prefers-reduced-motion and provide static alternatives.
{/* Mini header */}
{/* Mini cards */}
{/* Mini button */}
{/* Theme info */}
{theme.name}
{isActive && (
Active
)}
{theme.description}
{/* Header */}
{/* Theme Grid */}
{/* Current Theme Details */}
{/* Usage Instructions */}
)
}
================================================
FILE: .design-system/src/animations/constants.ts
================================================
export const animationVariants = {
// Fade animations
fadeIn: {
initial: { opacity: 0 },
animate: { opacity: 1 },
exit: { opacity: 0 }
},
// Scale animations
scaleIn: {
initial: { opacity: 0, scale: 0.9 },
animate: { opacity: 1, scale: 1 },
exit: { opacity: 0, scale: 0.9 }
},
// Slide animations
slideUp: {
initial: { opacity: 0, y: 20 },
animate: { opacity: 1, y: 0 },
exit: { opacity: 0, y: -20 }
},
slideDown: {
initial: { opacity: 0, y: -20 },
animate: { opacity: 1, y: 0 },
exit: { opacity: 0, y: 20 }
},
slideLeft: {
initial: { opacity: 0, x: 20 },
animate: { opacity: 1, x: 0 },
exit: { opacity: 0, x: -20 }
},
slideRight: {
initial: { opacity: 0, x: -20 },
animate: { opacity: 1, x: 0 },
exit: { opacity: 0, x: 20 }
},
// Spring pop
pop: {
initial: { opacity: 0, scale: 0.5 },
animate: {
opacity: 1,
scale: 1,
transition: { type: 'spring', stiffness: 500, damping: 25 }
},
exit: { opacity: 0, scale: 0.5 }
},
// Bounce
bounce: {
initial: { opacity: 0, y: -50 },
animate: {
opacity: 1,
y: 0,
transition: { type: 'spring', stiffness: 300, damping: 10 }
}
}
}
// Transition presets
export const transitions = {
instant: { duration: 0.05 },
fast: { duration: 0.15 },
normal: { duration: 0.25 },
slow: { duration: 0.4 },
spring: { type: 'spring' as const, stiffness: 400, damping: 25 },
springBouncy: { type: 'spring' as const, stiffness: 300, damping: 10 },
springSmooth: { type: 'spring' as const, stiffness: 200, damping: 20 },
easeOut: { duration: 0.25, ease: [0, 0, 0.2, 1] as [number, number, number, number] },
easeIn: { duration: 0.25, ease: [0.4, 0, 1, 1] as [number, number, number, number] },
easeInOut: { duration: 0.25, ease: [0.4, 0, 0.2, 1] as [number, number, number, number] }
}
================================================
FILE: .design-system/src/animations/index.ts
================================================
export * from './constants'
================================================
FILE: .design-system/src/components/Avatar.tsx
================================================
import React from 'react'
import { cn } from '../lib/utils'
export interface AvatarProps {
src?: string
name?: string
size?: 'xs' | 'sm' | 'md' | 'lg' | 'xl' | '2xl'
color?: string
}
export function Avatar({ src, name = 'User', size = 'md', color }: AvatarProps) {
const sizes = {
xs: 'w-6 h-6 text-[10px]',
sm: 'w-8 h-8 text-xs',
md: 'w-10 h-10 text-sm',
lg: 'w-14 h-14 text-base',
xl: 'w-20 h-20 text-xl',
'2xl': 'w-[120px] h-[120px] text-3xl'
}
const initials = name.split(' ').map(n => n[0]).join('').slice(0, 2).toUpperCase()
// Default to neutral gray, can be overridden with color prop
const bgStyle = color
? { backgroundColor: color }
: {}
return (
Theme Gallery
{themes.length} color themes × 2 modes = {themes.length * 2} combinations
Color Themes
{themes.map((theme) => (
onThemeChange(theme.id)}
/>
))}
Current Theme Colors
Background
Primary
Secondary
Surface
Card
Elevated
Accent
Primary
Light
Semantic
Success
Error
Using Themes
HTML Setup
{`
`}
CSS Variables
{`/* Use in your CSS */
background: var(--color-background-primary);
color: var(--color-text-primary);
border: 1px solid var(--color-border-default);`}
Tip: All themes automatically support light and dark modes. Just toggle the .dark class!
{src ? (
) : (
{initials}
)}
)
}
interface AvatarGroupProps {
avatars: { name: string; src?: string }[]
max?: number
}
export function AvatarGroup({ avatars, max = 4 }: AvatarGroupProps) {
const visible = avatars.slice(0, max)
const remaining = avatars.length - max
return (
{visible.map((avatar, i) => (
)
}
================================================
FILE: .design-system/src/components/Badge.tsx
================================================
import React from 'react'
import { cn } from '../lib/utils'
export interface BadgeProps {
children: React.ReactNode
variant?: 'default' | 'primary' | 'success' | 'warning' | 'error' | 'outline'
}
export function Badge({ children, variant = 'default' }: BadgeProps) {
const variants = {
default: 'bg-(--color-background-secondary) text-(--color-text-secondary)',
primary: 'bg-(--color-accent-primary-light) text-(--color-accent-primary)',
success: 'bg-(--color-semantic-success-light) text-(--color-semantic-success)',
warning: 'bg-(--color-semantic-warning-light) text-(--color-semantic-warning)',
error: 'bg-(--color-semantic-error-light) text-(--color-semantic-error)',
outline: 'bg-transparent border border-(--color-border-default) text-(--color-text-secondary)'
}
return (
{children}
)
}
================================================
FILE: .design-system/src/components/Button.tsx
================================================
import React from 'react'
import { cn } from '../lib/utils'
export interface ButtonProps extends React.ButtonHTMLAttributes
+{remaining}
)}
{children}
)
}
================================================
FILE: .design-system/src/components/Input.tsx
================================================
import React from 'react'
import { cn } from '../lib/utils'
export function Input({
placeholder,
className,
...props
}: React.InputHTMLAttributes
{value}%
)
}
================================================
FILE: .design-system/src/components/Toggle.tsx
================================================
import React from 'react'
import { cn } from '../lib/utils'
export interface ToggleProps {
checked: boolean
onChange: (checked: boolean) => void
}
export function Toggle({ checked, onChange }: ToggleProps) {
return (
)
}
================================================
FILE: .design-system/src/components/index.ts
================================================
export * from './Button'
export * from './Badge'
export * from './Avatar'
export * from './Card'
export * from './Input'
export * from './Toggle'
export * from './ProgressCircle'
================================================
FILE: .design-system/src/demo-cards/CalendarCard.tsx
================================================
import { ChevronLeft, ChevronRight } from 'lucide-react'
import { cn } from '../lib/utils'
import { Card } from '../components'
export function CalendarCard() {
const days = ['M', 'T', 'W', 'T', 'F', 'S', 'S']
const dates = [
[29, 30, 31, 1, 2, 3, 4],
[5, 6, 7, 8, 9, 10, 11],
[12, 13, 14, 15, 16, 17, 18],
[19, 20, 21, 22, 23, 24, 25],
[26, 27, 28, 29, 30, 31, 1]
]
return (
February, 2021
{days.map((day, i) => (
{day}
))}
{dates.flat().map((date, i) => {
const isCurrentMonth = (i < 3 && date > 20) || (i > 30 && date < 10) ? false : true
const isSelected = date === 26 && isCurrentMonth
const isToday = date === 16 && isCurrentMonth
return (
)
})}
Integrations
{integrations.map((int, i) => (
{int.name}
{int.desc}
Wireframes milestone
Due date:
March 20th
Asignees:
Notifications
Unread
Ashlynn George · 1h
has invited you to access "Magma project"
Ashlynn George · 1h
changed status of task in "Magma project"
Christine Thompson
Project manager
Amber website redesign
In today's fast-paced digital landscape, our mission is to transform our website into a more intuitive, engaging, and user-friendly platfor...
{members.map((member, i) => (
{member.name}
{member.role}
VISA
PayPal
{/* Color Theme Dropdown */}
(() => {
if (typeof window !== 'undefined') {
const stored = localStorage.getItem('design-system-theme-config')
if (stored) {
try {
const parsed = JSON.parse(stored)
// Validate that the stored theme still exists
const themeExists = COLOR_THEMES.some(t => t.id === parsed.colorTheme)
if (themeExists) {
return parsed
}
// Fall back to default if theme was removed
return {
colorTheme: 'default' as ColorTheme,
mode: parsed.mode || 'light'
}
} catch {}
}
return {
colorTheme: 'default' as ColorTheme,
mode: window.matchMedia('(prefers-color-scheme: dark)').matches ? 'dark' : 'light'
}
}
return { colorTheme: 'default', mode: 'light' }
})
useEffect(() => {
const root = document.documentElement
// Set color theme
if (config.colorTheme === 'default') {
root.removeAttribute('data-theme')
} else {
root.setAttribute('data-theme', config.colorTheme)
}
// Set mode
if (config.mode === 'dark') {
root.classList.add('dark')
} else {
root.classList.remove('dark')
}
localStorage.setItem('design-system-theme-config', JSON.stringify(config))
}, [config])
const setColorTheme = (colorTheme: ColorTheme) => setConfig(c => ({ ...c, colorTheme }))
const setMode = (mode: Mode) => setConfig(c => ({ ...c, mode }))
const toggleMode = () => setConfig(c => ({ ...c, mode: c.mode === 'light' ? 'dark' : 'light' }))
return {
colorTheme: config.colorTheme,
mode: config.mode,
setColorTheme,
setMode,
toggleMode,
themes: COLOR_THEMES
}
}
================================================
FILE: .design-system/tsconfig.json
================================================
{
"compilerOptions": {
"target": "ES2020",
"useDefineForClassFields": true,
"lib": ["ES2020", "DOM", "DOM.Iterable"],
"module": "ESNext",
"skipLibCheck": true,
"moduleResolution": "bundler",
"allowImportingTsExtensions": true,
"resolveJsonModule": true,
"isolatedModules": true,
"noEmit": true,
"jsx": "react-jsx",
"strict": true,
"noUnusedLocals": false,
"noUnusedParameters": false,
"noFallthroughCasesInSwitch": true
},
"include": ["src"]
}
================================================
FILE: .design-system/vite.config.ts
================================================
import { defineConfig } from 'vite'
import react from '@vitejs/plugin-react'
export default defineConfig({
plugins: [react()],
server: {
port: 5180,
open: true
}
})
================================================
FILE: .github/FUNDING.yml
================================================
# These are supported funding model platforms
github: AndyMik90
================================================
FILE: .github/ISSUE_TEMPLATE/bug_report.yml
================================================
name: 🐛 Bug Report
description: Something isn't working
labels: ["bug", "needs-triage"]
body:
- type: checkboxes
id: checklist
attributes:
label: Checklist
options:
- label: I searched existing issues and this hasn't been reported
required: true
- type: dropdown
id: area
attributes:
label: Area
options:
- Frontend
- Backend
- Fullstack
- Not sure
validations:
required: true
- type: dropdown
id: os
attributes:
label: Operating System
options:
- macOS
- Windows
- Linux
validations:
required: true
- type: input
id: version
attributes:
label: Version
placeholder: "e.g., 2.5.5"
validations:
required: true
- type: textarea
id: description
attributes:
label: What happened?
placeholder: Describe the bug clearly and concisely. Include any error messages you encountered.
validations:
required: true
- type: textarea
id: steps
attributes:
label: Steps to reproduce
placeholder: |
1. Run command '...' or click on '...'
2. Observe behavior '...'
3. See error or unexpected result
validations:
required: true
- type: textarea
id: expected
attributes:
label: Expected behavior
placeholder: What did you expect to happen instead? Describe the correct behavior.
validations:
required: true
- type: textarea
id: logs
attributes:
label: Logs / Screenshots
description: Required for UI bugs. Attach relevant logs, screenshots, or error output.
render: shell
================================================
FILE: .github/ISSUE_TEMPLATE/config.yml
================================================
blank_issues_enabled: false
contact_links:
- name: 💡 Feature Request
url: https://github.com/AndyMik90/Auto-Claude/discussions
about: Suggest new features in GitHub Discussions
- name: 💬 Discord Community
url: https://discord.gg/QhRnz9m5HE
about: Questions and discussions - join our Discord!
================================================
FILE: .github/ISSUE_TEMPLATE/docs.yml
================================================
name: 📚 Documentation
description: Improvements or additions to documentation
labels: ["documentation", "needs-triage", "help wanted"]
body:
- type: dropdown
id: type
attributes:
label: Type
options:
- Missing documentation
- Incorrect/outdated info
- Improvement suggestion
- Typo/grammar fix
validations:
required: true
- type: input
id: location
attributes:
label: Location
description: Which file or page?
placeholder: "e.g., README.md or guides/setup.md"
- type: textarea
id: description
attributes:
label: Description
description: What needs to change?
validations:
required: true
- type: checkboxes
id: contribute
attributes:
label: Contribution
options:
- label: I'm willing to submit a PR for this
================================================
FILE: .github/ISSUE_TEMPLATE/question.yml
================================================
name: ❓ Question
description: Needs clarification
labels: ["question", "needs-triage"]
body:
- type: markdown
attributes:
value: |
**Before asking:** Check [Discord](https://discord.gg/QhRnz9m5HE) - your question may already be answered there!
- type: checkboxes
id: checklist
attributes:
label: Checklist
options:
- label: I searched existing issues and Discord for similar questions
required: true
- type: dropdown
id: area
attributes:
label: Area
options:
- Setup/Installation
- Frontend
- Backend
- Configuration
- Other
validations:
required: true
- type: input
id: version
attributes:
label: Version
description: Which version are you using?
placeholder: "e.g., 2.7.1"
validations:
required: true
- type: textarea
id: question
attributes:
label: Question
placeholder: "Describe your question in detail..."
validations:
required: true
- type: textarea
id: context
attributes:
label: Context
description: What are you trying to achieve?
validations:
required: true
- type: textarea
id: attempts
attributes:
label: What have you already tried?
description: What steps have you taken to resolve this?
placeholder: "e.g., I tried reading the docs, searched for..."
================================================
FILE: .github/PULL_REQUEST_TEMPLATE.md
================================================
## Base Branch
- [ ] This PR targets the `develop` branch (required for all feature/fix PRs)
- [ ] This PR targets `main` (hotfix only - maintainers)
## Description
## Related Issue
Closes #
## Type of Change
- [ ] 🐛 Bug fix
- [ ] ✨ New feature
- [ ] 📚 Documentation
- [ ] ♻️ Refactor
- [ ] 🧪 Test
## Area
- [ ] Frontend
- [ ] Backend
- [ ] Fullstack
## Commit Message Format
Follow conventional commits: `: `
**Types:** feat, fix, docs, style, refactor, test, chore
**Example:** `feat: add user authentication system`
## AI Disclosure
- [ ] This PR includes AI-generated code (Claude, Codex, Copilot, etc.)
**Tool(s) used:**
**Testing level:**
- [ ] Untested -- AI output not yet verified
- [ ] Lightly tested -- ran the app / spot-checked key paths
- [ ] Fully tested -- all tests pass, manually verified behavior
- [ ] I understand what this PR does and how the underlying code works
## Checklist
- [ ] I've synced with `develop` branch
- [ ] I've tested my changes locally
- [ ] I've followed the code principles (SOLID, DRY, KISS)
- [ ] My PR is small and focused (< 400 lines ideally)
## Platform Testing Checklist
**CRITICAL:** This project supports Windows, macOS, and Linux. Platform-specific bugs are a common source of breakage.
- [ ] **Windows tested** (either on Windows or via CI)
- [ ] **macOS tested** (either on macOS or via CI)
- [ ] **Linux tested** (CI covers this)
- [ ] Used centralized `platform/` module instead of direct `process.platform` checks
- [ ] No hardcoded paths (used `findExecutable()` or platform abstractions)
**If you only have access to one OS:** CI now tests on all platforms. Ensure all checks pass before submitting.
## CI/Testing Requirements
- [ ] All CI checks pass on **all platforms** (Windows, macOS, Linux)
- [ ] All existing tests pass
- [ ] New features include test coverage
- [ ] Bug fixes include regression tests
## Screenshots
| Before | After |
|--------|-------|
| | |
## Feature Toggle
- [ ] Behind localStorage flag: `use_feature_name`
- [ ] Behind settings toggle
- [ ] Behind environment variable/config
- [ ] N/A - Feature is complete and ready for all users
## Breaking Changes
**Breaking:** Yes / No
**Details:**
================================================
FILE: .github/actions/finalize-macos-notarization/action.yml
================================================
name: 'Finalize macOS Notarization'
description: 'Wait for Apple notarization to complete and staple tickets to DMG files'
inputs:
apple-id:
description: 'Apple ID for notarization'
required: true
apple-app-specific-password:
description: 'Apple app-specific password'
required: true
apple-team-id:
description: 'Apple Team ID'
required: true
intel-notarization-id:
description: 'Notarization request ID for Intel build'
required: false
default: ''
arm64-notarization-id:
description: 'Notarization request ID for ARM64 build'
required: false
default: ''
intel-dmg-file:
description: 'Filename of the Intel DMG'
required: false
default: ''
arm64-dmg-file:
description: 'Filename of the ARM64 DMG'
required: false
default: ''
intel-artifact-path:
description: 'Path to Intel build artifacts'
required: false
default: 'intel'
arm64-artifact-path:
description: 'Path to ARM64 build artifacts'
required: false
default: 'arm64'
timeout:
description: 'Timeout in seconds for notarization wait'
required: false
default: '3600'
outputs:
intel-stapled:
description: 'Whether Intel DMG was successfully stapled'
value: ${{ steps.staple.outputs.intel_stapled }}
arm64-stapled:
description: 'Whether ARM64 DMG was successfully stapled'
value: ${{ steps.staple.outputs.arm64_stapled }}
runs:
using: 'composite'
steps:
- name: Wait for notarization and staple
id: staple
shell: bash
env:
APPLE_ID: ${{ inputs.apple-id }}
APPLE_APP_SPECIFIC_PASSWORD: ${{ inputs.apple-app-specific-password }}
APPLE_TEAM_ID: ${{ inputs.apple-team-id }}
INTEL_NOTARIZATION_ID: ${{ inputs.intel-notarization-id }}
ARM64_NOTARIZATION_ID: ${{ inputs.arm64-notarization-id }}
INTEL_DMG: ${{ inputs.intel-dmg-file }}
ARM64_DMG: ${{ inputs.arm64-dmg-file }}
INTEL_PATH: ${{ inputs.intel-artifact-path }}
ARM64_PATH: ${{ inputs.arm64-artifact-path }}
TIMEOUT: ${{ inputs.timeout }}
run: |
intel_stapled=false
arm64_stapled=false
if [ -z "$APPLE_ID" ]; then
echo "Skipping notarization wait: APPLE_ID not configured"
echo "intel_stapled=false" >> "$GITHUB_OUTPUT"
echo "arm64_stapled=false" >> "$GITHUB_OUTPUT"
exit 0
fi
# Warn if no notarization IDs provided (could indicate submission failure)
if [ -z "$INTEL_NOTARIZATION_ID" ] && [ -z "$ARM64_NOTARIZATION_ID" ]; then
echo "::warning::No notarization IDs provided - nothing to finalize. Check if notarization submission succeeded."
echo "intel_stapled=false" >> "$GITHUB_OUTPUT"
echo "arm64_stapled=false" >> "$GITHUB_OUTPUT"
exit 0
fi
# Wait for Intel notarization
if [ -n "$INTEL_NOTARIZATION_ID" ]; then
echo "Waiting for Intel notarization: $INTEL_NOTARIZATION_ID"
if ! xcrun notarytool wait "$INTEL_NOTARIZATION_ID" \
--apple-id "$APPLE_ID" \
--password "$APPLE_APP_SPECIFIC_PASSWORD" \
--team-id "$APPLE_TEAM_ID" \
--timeout "$TIMEOUT"; then
echo "::error::Intel notarization failed or timed out"
exit 1
fi
# Verify notarization was accepted (not just processed)
INTEL_STATUS=$(xcrun notarytool info "$INTEL_NOTARIZATION_ID" \
--apple-id "$APPLE_ID" \
--password "$APPLE_APP_SPECIFIC_PASSWORD" \
--team-id "$APPLE_TEAM_ID" \
--output-format json | jq -r '.status // "Unknown"')
if [ "$INTEL_STATUS" != "Accepted" ]; then
echo "::error::Intel notarization status is '$INTEL_STATUS', expected 'Accepted'"
exit 1
fi
echo "Intel notarization status: $INTEL_STATUS"
# Verify DMG file exists before stapling
if [ ! -f "$INTEL_PATH/$INTEL_DMG" ]; then
echo "::error::Intel DMG not found at $INTEL_PATH/$INTEL_DMG"
exit 1
fi
echo "Stapling Intel DMG: $INTEL_PATH/$INTEL_DMG"
if ! xcrun stapler staple "$INTEL_PATH/$INTEL_DMG"; then
echo "::error::Failed to staple Intel DMG"
exit 1
fi
echo "Successfully stapled Intel DMG"
intel_stapled=true
fi
# Wait for ARM64 notarization
if [ -n "$ARM64_NOTARIZATION_ID" ]; then
echo "Waiting for ARM64 notarization: $ARM64_NOTARIZATION_ID"
if ! xcrun notarytool wait "$ARM64_NOTARIZATION_ID" \
--apple-id "$APPLE_ID" \
--password "$APPLE_APP_SPECIFIC_PASSWORD" \
--team-id "$APPLE_TEAM_ID" \
--timeout "$TIMEOUT"; then
echo "::error::ARM64 notarization failed or timed out"
exit 1
fi
# Verify notarization was accepted (not just processed)
ARM64_STATUS=$(xcrun notarytool info "$ARM64_NOTARIZATION_ID" \
--apple-id "$APPLE_ID" \
--password "$APPLE_APP_SPECIFIC_PASSWORD" \
--team-id "$APPLE_TEAM_ID" \
--output-format json | jq -r '.status // "Unknown"')
if [ "$ARM64_STATUS" != "Accepted" ]; then
echo "::error::ARM64 notarization status is '$ARM64_STATUS', expected 'Accepted'"
exit 1
fi
echo "ARM64 notarization status: $ARM64_STATUS"
# Verify DMG file exists before stapling
if [ ! -f "$ARM64_PATH/$ARM64_DMG" ]; then
echo "::error::ARM64 DMG not found at $ARM64_PATH/$ARM64_DMG"
exit 1
fi
echo "Stapling ARM64 DMG: $ARM64_PATH/$ARM64_DMG"
if ! xcrun stapler staple "$ARM64_PATH/$ARM64_DMG"; then
echo "::error::Failed to staple ARM64 DMG"
exit 1
fi
echo "Successfully stapled ARM64 DMG"
arm64_stapled=true
fi
echo "intel_stapled=$intel_stapled" >> "$GITHUB_OUTPUT"
echo "arm64_stapled=$arm64_stapled" >> "$GITHUB_OUTPUT"
================================================
FILE: .github/actions/merge-macos-manifests/action.yml
================================================
name: 'Merge macOS Manifests'
description: 'Merge Intel and ARM64 macOS manifests for electron-updater'
inputs:
dist-path:
description: 'Path to the dist directory containing build artifacts'
required: false
default: 'dist'
output-path:
description: 'Path to output the merged manifest'
required: false
default: 'release-assets'
copy-other-manifests:
description: 'Whether to copy Windows/Linux manifests as well'
required: false
default: 'true'
yq-version:
description: 'Version of yq to use for YAML merging'
required: false
default: 'v4.44.3'
outputs:
merged:
description: 'Whether manifests were merged (true) or single architecture used (false)'
value: ${{ steps.merge.outputs.merged }}
file-count:
description: 'Number of files in the merged manifest'
value: ${{ steps.validate.outputs.file_count }}
runs:
using: 'composite'
steps:
- name: Merge macOS manifests
id: merge
shell: bash
env:
# yq SHA256 checksum for v4.44.3 linux_amd64
# When updating yq-version, update this checksum and the one in validate step
YQ_SHA256: "a2c097180dd884a8d50c956ee16a9cec070f30a7947cf4ebf87d5f36213e9ed7"
run: |
echo "=== Merging macOS update manifests ==="
# Find all latest-mac.yml files from different build artifacts
intel_manifest=$(find "${{ inputs.dist-path }}" -path "*/macos-intel-builds/latest-mac.yml" -type f 2>/dev/null | head -1)
arm64_manifest=$(find "${{ inputs.dist-path }}" -path "*/macos-arm64-builds/latest-mac.yml" -type f 2>/dev/null | head -1)
echo "Intel manifest: ${intel_manifest:-not found}"
echo "ARM64 manifest: ${arm64_manifest:-not found}"
mkdir -p "${{ inputs.output-path }}"
if [ -n "$intel_manifest" ] && [ -n "$arm64_manifest" ]; then
echo "Both architectures found - merging manifests..."
echo "merged=true" >> "$GITHUB_OUTPUT"
# Install yq for YAML merging (pinned version with checksum verification)
YQ_VERSION="${{ inputs.yq-version }}"
YQ_URL="https://github.com/mikefarah/yq/releases/download/${YQ_VERSION}/yq_linux_amd64"
echo "Downloading yq ${YQ_VERSION}..."
if ! wget -qO /tmp/yq "$YQ_URL"; then
echo "::error::Failed to download yq ${YQ_VERSION}"
exit 1
fi
# Verify checksum
echo "Verifying yq checksum..."
ACTUAL_SHA256=$(sha256sum /tmp/yq | cut -d' ' -f1)
if [ "$ACTUAL_SHA256" != "$YQ_SHA256" ]; then
echo "::error::yq checksum verification failed!"
echo "Expected: $YQ_SHA256"
echo "Actual: $ACTUAL_SHA256"
rm -f /tmp/yq
exit 1
fi
echo "Checksum verified successfully"
sudo mv /tmp/yq /usr/local/bin/yq
sudo chmod +x /usr/local/bin/yq
echo "Installed yq version:"
yq --version
# Merge the files arrays from both manifests using two-step approach
# Step 1: Collect all files from both manifests into a temp file
yq eval-all '[.files] | flatten' "$intel_manifest" "$arm64_manifest" > /tmp/merged-files.yml
# Step 2: Replace files array in first manifest with merged files
yq eval '.files = load("/tmp/merged-files.yml")' "$intel_manifest" > "${{ inputs.output-path }}/latest-mac.yml"
echo "Merged manifest contents:"
cat "${{ inputs.output-path }}/latest-mac.yml"
elif [ -n "$intel_manifest" ]; then
echo "Only Intel manifest found - using as-is"
echo "merged=false" >> "$GITHUB_OUTPUT"
cp "$intel_manifest" "${{ inputs.output-path }}/latest-mac.yml"
elif [ -n "$arm64_manifest" ]; then
echo "Only ARM64 manifest found - using as-is"
echo "merged=false" >> "$GITHUB_OUTPUT"
cp "$arm64_manifest" "${{ inputs.output-path }}/latest-mac.yml"
else
echo "::error::No macOS manifests found - this will cause auto-update to fail"
exit 1
fi
- name: Validate merged manifest
id: validate
shell: bash
env:
# Single source of truth for yq checksum - must match merge step
YQ_SHA256: "a2c097180dd884a8d50c956ee16a9cec070f30a7947cf4ebf87d5f36213e9ed7"
run: |
manifest_file="${{ inputs.output-path }}/latest-mac.yml"
echo "=== Validating merged manifest ==="
# Check file exists
if [ ! -f "$manifest_file" ]; then
echo "::error::Merged manifest file not found at $manifest_file"
exit 1
fi
# Install yq if not already installed (for single-arch case)
if ! command -v yq &> /dev/null; then
YQ_VERSION="${{ inputs.yq-version }}"
YQ_URL="https://github.com/mikefarah/yq/releases/download/${YQ_VERSION}/yq_linux_amd64"
echo "Downloading yq ${YQ_VERSION}..."
wget -qO /tmp/yq "$YQ_URL"
# Verify checksum (YQ_SHA256 from env)
ACTUAL_SHA256=$(sha256sum /tmp/yq | cut -d' ' -f1)
if [ "$ACTUAL_SHA256" != "$YQ_SHA256" ]; then
echo "::error::yq checksum verification failed!"
echo "Expected: $YQ_SHA256"
echo "Actual: $ACTUAL_SHA256"
exit 1
fi
sudo mv /tmp/yq /usr/local/bin/yq
sudo chmod +x /usr/local/bin/yq
fi
# Validate YAML is parseable
if ! yq eval '.' "$manifest_file" > /dev/null 2>&1; then
echo "::error::Merged manifest is not valid YAML"
cat "$manifest_file"
exit 1
fi
echo "YAML syntax is valid"
# Count files in manifest
file_count=$(yq eval '.files | length' "$manifest_file")
echo "file_count=$file_count" >> "$GITHUB_OUTPUT"
echo "Manifest contains $file_count file entries"
# Validate file count
if [ "$file_count" -eq 0 ]; then
echo "::error::Merged manifest contains no files"
exit 1
fi
# If we merged both architectures, expect at least 2 files (one per arch)
if [ "${{ steps.merge.outputs.merged }}" = "true" ] && [ "$file_count" -lt 2 ]; then
echo "::warning::Merged manifest has fewer than 2 files - merge may have failed"
fi
# Validate required fields exist
if ! yq eval '.version' "$manifest_file" | grep -q .; then
echo "::error::Manifest missing 'version' field"
exit 1
fi
echo "Version field present: $(yq eval '.version' "$manifest_file")"
echo "Manifest validation passed"
- name: Copy other manifests
if: inputs.copy-other-manifests == 'true'
shell: bash
run: |
echo "=== Copying other update manifests ==="
# Copy other manifests (Windows, Linux) - these don't have the duplicate issue
for manifest in latest.yml latest-linux.yml latest-linux-arm64.yml; do
found=$(find "${{ inputs.dist-path }}" -name "$manifest" -type f 2>/dev/null | head -1)
if [ -n "$found" ]; then
echo "Copying $manifest"
cp "$found" "${{ inputs.output-path }}/"
fi
done
echo ""
echo "=== Manifest files in ${{ inputs.output-path }} ==="
ls -la "${{ inputs.output-path }}"/*.yml 2>/dev/null || echo "No manifest files found"
================================================
FILE: .github/actions/setup-node-frontend/action.yml
================================================
name: 'Setup Node.js Frontend'
description: 'Set up Node.js with npm and cached dependencies for the frontend'
inputs:
node-version:
description: 'Node.js version to use'
required: false
default: '24'
ignore-scripts:
description: 'Whether to use --ignore-scripts flag during npm ci'
required: false
default: 'false'
outputs:
cache-hit:
description: 'Whether npm cache was hit'
value: ${{ steps.cache.outputs.cache-hit }}
runs:
using: 'composite'
steps:
- name: Setup Node.js ${{ inputs.node-version }}
uses: actions/setup-node@v4
with:
node-version: ${{ inputs.node-version }}
- name: Get npm cache directory
id: npm-cache-dir
shell: bash
run: echo "dir=$(npm config get cache)" >> "$GITHUB_OUTPUT"
- name: Cache npm dependencies
id: cache
uses: actions/cache@v4
with:
path: ${{ steps.npm-cache-dir.outputs.dir }}
key: ${{ runner.os }}-npm-${{ hashFiles('package-lock.json') }}
restore-keys: ${{ runner.os }}-npm-
- name: Install dependencies
shell: bash
# Run npm ci from root to properly handle workspace dependencies.
# With npm workspaces, the lock file is at root and dependencies are hoisted there.
# Running npm ci in apps/desktop would fail to populate node_modules correctly.
run: |
if [ "${{ inputs.ignore-scripts }}" == "true" ]; then
npm ci --ignore-scripts
else
npm ci
fi
- name: Link node_modules for electron-builder
shell: bash
# electron-builder expects node_modules in apps/desktop for native module rebuilding.
# With npm workspaces, packages are hoisted to root. Create a link so electron-builder
# can find the modules during packaging and code signing.
# Uses symlink on Unix, directory junction on Windows (works without admin privileges).
#
# IMPORTANT: npm workspaces may create a partial node_modules in apps/desktop for
# packages that couldn't be hoisted. We must remove it and create a proper link to root.
run: |
# Verify npm ci succeeded
if [ ! -d "node_modules" ]; then
echo "::error::Root node_modules does not exist. npm ci may have failed."
exit 1
fi
# Remove any existing node_modules in apps/desktop
# This handles: partial directories from npm workspaces, AND broken symlinks
if [ -e "apps/desktop/node_modules" ] || [ -L "apps/desktop/node_modules" ]; then
# Check if it's a valid symlink pointing to root node_modules
if [ -L "apps/desktop/node_modules" ]; then
target=$(readlink apps/desktop/node_modules 2>/dev/null || echo "")
if [ "$target" = "../../node_modules" ] && [ -d "apps/desktop/node_modules" ]; then
echo "Correct symlink already exists: apps/desktop/node_modules -> ../../node_modules"
else
echo "Removing incorrect/broken symlink (was: $target)..."
rm -f "apps/desktop/node_modules"
fi
else
echo "Removing partial node_modules directory created by npm workspaces..."
rm -rf "apps/desktop/node_modules"
fi
fi
# Create link if it doesn't exist or was removed
if [ ! -L "apps/desktop/node_modules" ]; then
if [ "$RUNNER_OS" == "Windows" ]; then
# Use directory junction on Windows (works without admin privileges)
# Use PowerShell's New-Item -ItemType Junction for reliable path handling
abs_target=$(cygpath -w "$(pwd)/node_modules")
link_path=$(cygpath -w "$(pwd)/apps/desktop/node_modules")
powershell -Command "New-Item -ItemType Junction -Path '$link_path' -Target '$abs_target'" > /dev/null
if [ $? -eq 0 ]; then
echo "Created junction: apps/desktop/node_modules -> $abs_target"
else
echo "::error::Failed to create directory junction on Windows"
exit 1
fi
else
# Use symlink on Unix (macOS/Linux)
if ln -s ../../node_modules apps/desktop/node_modules; then
echo "Created symlink: apps/desktop/node_modules -> ../../node_modules"
else
echo "::error::Failed to create symlink"
exit 1
fi
fi
fi
# Final verification - the link must exist and resolve correctly
# Note: On Windows, junctions don't show as symlinks (-L), so we check if the directory exists
# and can be listed. On Unix, we also verify it's a symlink.
if [ "$RUNNER_OS" != "Windows" ] && [ ! -L "apps/desktop/node_modules" ]; then
echo "::error::apps/desktop/node_modules symlink was not created"
exit 1
fi
# Verify the link resolves to a valid directory with content
if ! ls apps/desktop/node_modules/electron >/dev/null 2>&1; then
echo "::error::apps/desktop/node_modules does not resolve correctly (electron not found)"
ls -la apps/desktop/ || true
ls apps/desktop/node_modules 2>&1 | head -5 || true
exit 1
fi
count=$(ls apps/desktop/node_modules 2>/dev/null | wc -l)
echo "Verified: apps/desktop/node_modules resolves correctly ($count entries)"
================================================
FILE: .github/actions/submit-macos-notarization/action.yml
================================================
name: 'Submit macOS Notarization'
description: 'Submit a macOS DMG file for Apple notarization asynchronously'
inputs:
apple-id:
description: 'Apple ID for notarization'
required: true
apple-app-specific-password:
description: 'Apple app-specific password'
required: true
apple-team-id:
description: 'Apple Team ID'
required: true
dmg-path:
description: 'Path to the dist directory containing the DMG file'
required: false
default: 'apps/desktop/dist'
outputs:
notarization-id:
description: 'The notarization request ID'
value: ${{ steps.submit.outputs.notarization_id }}
dmg-file:
description: 'The DMG filename that was submitted'
value: ${{ steps.submit.outputs.dmg_file }}
runs:
using: 'composite'
steps:
- name: Submit notarization (async)
id: submit
shell: bash
env:
APPLE_ID: ${{ inputs.apple-id }}
APPLE_APP_SPECIFIC_PASSWORD: ${{ inputs.apple-app-specific-password }}
APPLE_TEAM_ID: ${{ inputs.apple-team-id }}
DMG_PATH: ${{ inputs.dmg-path }}
run: |
if [ -z "$APPLE_ID" ]; then
echo "Skipping notarization: APPLE_ID not configured"
echo "notarization_id=" >> "$GITHUB_OUTPUT"
echo "dmg_file=" >> "$GITHUB_OUTPUT"
exit 0
fi
# Find the DMG file
DMG_FILE=$(find "$DMG_PATH" -name "*.dmg" -type f | head -1)
if [ -z "$DMG_FILE" ]; then
echo "::error::No DMG file found in $DMG_PATH"
exit 1
fi
echo "Submitting $DMG_FILE for notarization (async)..."
# Submit for notarization without waiting
# Capture both stdout and exit code
set +e
RESULT=$(xcrun notarytool submit "$DMG_FILE" \
--apple-id "$APPLE_ID" \
--password "$APPLE_APP_SPECIFIC_PASSWORD" \
--team-id "$APPLE_TEAM_ID" \
--no-wait \
--output-format json 2>&1)
SUBMIT_EXIT_CODE=$?
set -e
echo "$RESULT"
# Check if submission command itself failed (not just missing ID)
if [ $SUBMIT_EXIT_CODE -ne 0 ]; then
echo "::error::notarytool submit failed with exit code $SUBMIT_EXIT_CODE"
exit 1
fi
# Extract the notarization ID from JSON response
# jq is always available on macOS runners
NOTARIZATION_ID=$(echo "$RESULT" | jq -r '.id // empty' 2>/dev/null)
if [ -z "$NOTARIZATION_ID" ]; then
echo "::error::Failed to get notarization ID from response"
echo "Response was: $RESULT"
exit 1
fi
echo "Notarization submitted with ID: $NOTARIZATION_ID"
echo "notarization_id=$NOTARIZATION_ID" >> "$GITHUB_OUTPUT"
echo "dmg_file=$(basename "$DMG_FILE")" >> "$GITHUB_OUTPUT"
================================================
FILE: .github/dependabot.yml
================================================
version: 2
updates:
# npm dependencies
- package-ecosystem: npm
directory: /apps/desktop
schedule:
interval: weekly
open-pull-requests-limit: 5
labels:
- dependencies
- javascript
commit-message:
prefix: "chore(deps)"
# GitHub Actions
- package-ecosystem: github-actions
directory: /
schedule:
interval: weekly
open-pull-requests-limit: 5
labels:
- dependencies
- ci
commit-message:
prefix: "ci(deps)"
================================================
FILE: .github/release-drafter.yml
================================================
name-template: 'v$RESOLVED_VERSION'
tag-template: 'v$RESOLVED_VERSION'
categories:
- title: '## New Features'
labels:
- 'feature'
- 'enhancement'
- title: '## Bug Fixes'
labels:
- 'bug'
- 'fix'
- title: '## Improvements'
labels:
- 'improvement'
- 'refactor'
- title: '## Documentation'
labels:
- 'documentation'
- title: '## Other Changes'
labels:
- '*'
change-template: '* $TITLE (#$NUMBER) @$AUTHOR'
sort-by: merged_at
sort-direction: ascending
template: |
$CHANGES
**Full Changelog**: https://github.com/$OWNER/$REPOSITORY/compare/$PREVIOUS_TAG...$RESOLVED_VERSION
## Contributors
$CONTRIBUTORS
================================================
FILE: .github/workflows/beta-release.yml
================================================
name: Beta Release
# Manual trigger for beta releases from develop branch
on:
workflow_dispatch:
inputs:
version:
description: 'Beta version (e.g., 2.8.0-beta.1)'
required: true
type: string
dry_run:
description: 'Test build without creating release'
required: false
default: false
type: boolean
jobs:
validate-version:
name: Validate beta version format
runs-on: ubuntu-latest
steps:
- name: Validate version format
run: |
VERSION="${{ github.event.inputs.version }}"
# Check if version matches beta semver pattern
if [[ ! "$VERSION" =~ ^[0-9]+\.[0-9]+\.[0-9]+-(beta|alpha|rc)\.[0-9]+$ ]]; then
echo "::error::Invalid version format: $VERSION"
echo "Version must match pattern: X.Y.Z-beta.N (e.g., 2.8.0-beta.1)"
exit 1
fi
echo "Valid beta version: $VERSION"
create-tag:
name: Create beta tag
needs: validate-version
runs-on: ubuntu-latest
permissions:
contents: write
outputs:
version: ${{ github.event.inputs.version }}
steps:
- uses: actions/checkout@v4
with:
ref: develop
- name: Create and push tag
if: ${{ github.event.inputs.dry_run != 'true' }}
run: |
VERSION="${{ github.event.inputs.version }}"
git config user.name "github-actions[bot]"
git config user.email "github-actions[bot]@users.noreply.github.com"
git tag -a "v$VERSION" -m "Beta release v$VERSION"
git push origin "v$VERSION"
echo "Created tag v$VERSION"
- name: Create tag only (dry run)
if: ${{ github.event.inputs.dry_run == 'true' }}
run: |
VERSION="${{ github.event.inputs.version }}"
echo "DRY RUN: Would create tag v$VERSION"
# Intel build on Intel runner for native compilation
build-macos-intel:
needs: create-tag
runs-on: macos-15-intel
outputs:
notarization_id: ${{ steps.notarize.outputs.notarization-id }}
dmg_file: ${{ steps.notarize.outputs.dmg-file }}
steps:
- uses: actions/checkout@v4
with:
# Use tag for real releases, develop branch for dry runs
ref: ${{ github.event.inputs.dry_run == 'true' && 'develop' || format('v{0}', needs.create-tag.outputs.version) }}
- name: Setup Node.js and install dependencies
uses: ./.github/actions/setup-node-frontend
- name: Build application
run: cd apps/desktop && npm run build
env:
SENTRY_DSN: ${{ secrets.SENTRY_DSN }}
SENTRY_TRACES_SAMPLE_RATE: ${{ secrets.SENTRY_TRACES_SAMPLE_RATE }}
SENTRY_PROFILES_SAMPLE_RATE: ${{ secrets.SENTRY_PROFILES_SAMPLE_RATE }}
- name: Package macOS (Intel)
run: |
VERSION="${{ needs.create-tag.outputs.version }}"
cd apps/desktop && npm run package:mac -- --x64 --config.extraMetadata.version="$VERSION"
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
CSC_LINK: ${{ secrets.MAC_CERTIFICATE }}
CSC_KEY_PASSWORD: ${{ secrets.MAC_CERTIFICATE_PASSWORD }}
SENTRY_DSN: ${{ secrets.SENTRY_DSN }}
SENTRY_TRACES_SAMPLE_RATE: ${{ secrets.SENTRY_TRACES_SAMPLE_RATE }}
SENTRY_PROFILES_SAMPLE_RATE: ${{ secrets.SENTRY_PROFILES_SAMPLE_RATE }}
- name: Submit notarization (async)
id: notarize
uses: ./.github/actions/submit-macos-notarization
with:
apple-id: ${{ secrets.APPLE_ID }}
apple-app-specific-password: ${{ secrets.APPLE_APP_SPECIFIC_PASSWORD }}
apple-team-id: ${{ secrets.APPLE_TEAM_ID }}
- name: Upload artifacts
uses: actions/upload-artifact@v4
with:
name: macos-intel-builds
path: |
apps/desktop/dist/*.dmg
apps/desktop/dist/*.zip
apps/desktop/dist/*.yml
# Apple Silicon build on ARM64 runner for native compilation
build-macos-arm64:
needs: create-tag
runs-on: macos-15
outputs:
notarization_id: ${{ steps.notarize.outputs.notarization-id }}
dmg_file: ${{ steps.notarize.outputs.dmg-file }}
steps:
- uses: actions/checkout@v4
with:
# Use tag for real releases, develop branch for dry runs
ref: ${{ github.event.inputs.dry_run == 'true' && 'develop' || format('v{0}', needs.create-tag.outputs.version) }}
- name: Setup Node.js and install dependencies
uses: ./.github/actions/setup-node-frontend
- name: Build application
run: cd apps/desktop && npm run build
env:
SENTRY_DSN: ${{ secrets.SENTRY_DSN }}
SENTRY_TRACES_SAMPLE_RATE: ${{ secrets.SENTRY_TRACES_SAMPLE_RATE }}
SENTRY_PROFILES_SAMPLE_RATE: ${{ secrets.SENTRY_PROFILES_SAMPLE_RATE }}
- name: Package macOS (Apple Silicon)
run: |
VERSION="${{ needs.create-tag.outputs.version }}"
cd apps/desktop && npm run package:mac -- --arm64 --config.extraMetadata.version="$VERSION"
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
CSC_LINK: ${{ secrets.MAC_CERTIFICATE }}
CSC_KEY_PASSWORD: ${{ secrets.MAC_CERTIFICATE_PASSWORD }}
SENTRY_DSN: ${{ secrets.SENTRY_DSN }}
SENTRY_TRACES_SAMPLE_RATE: ${{ secrets.SENTRY_TRACES_SAMPLE_RATE }}
SENTRY_PROFILES_SAMPLE_RATE: ${{ secrets.SENTRY_PROFILES_SAMPLE_RATE }}
- name: Submit notarization (async)
id: notarize
uses: ./.github/actions/submit-macos-notarization
with:
apple-id: ${{ secrets.APPLE_ID }}
apple-app-specific-password: ${{ secrets.APPLE_APP_SPECIFIC_PASSWORD }}
apple-team-id: ${{ secrets.APPLE_TEAM_ID }}
- name: Upload artifacts
uses: actions/upload-artifact@v4
with:
name: macos-arm64-builds
path: |
apps/desktop/dist/*.dmg
apps/desktop/dist/*.zip
apps/desktop/dist/*.yml
build-windows:
needs: create-tag
runs-on: windows-latest
permissions:
id-token: write # Required for OIDC authentication with Azure
contents: read
env:
# Job-level env so AZURE_CLIENT_ID is available for step-level if conditions
AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }}
steps:
- uses: actions/checkout@v4
with:
# Use tag for real releases, develop branch for dry runs
ref: ${{ github.event.inputs.dry_run == 'true' && 'develop' || format('v{0}', needs.create-tag.outputs.version) }}
- name: Setup Node.js and install dependencies
uses: ./.github/actions/setup-node-frontend
- name: Build application
run: cd apps/desktop && npm run build
env:
SENTRY_DSN: ${{ secrets.SENTRY_DSN }}
SENTRY_TRACES_SAMPLE_RATE: ${{ secrets.SENTRY_TRACES_SAMPLE_RATE }}
SENTRY_PROFILES_SAMPLE_RATE: ${{ secrets.SENTRY_PROFILES_SAMPLE_RATE }}
- name: Package Windows
shell: bash
run: |
VERSION="${{ needs.create-tag.outputs.version }}"
cd apps/desktop && npm run package:win -- --config.extraMetadata.version="$VERSION"
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
# Disable electron-builder's built-in signing (we use Azure Trusted Signing instead)
CSC_IDENTITY_AUTO_DISCOVERY: false
SENTRY_DSN: ${{ secrets.SENTRY_DSN }}
SENTRY_TRACES_SAMPLE_RATE: ${{ secrets.SENTRY_TRACES_SAMPLE_RATE }}
SENTRY_PROFILES_SAMPLE_RATE: ${{ secrets.SENTRY_PROFILES_SAMPLE_RATE }}
- name: Azure Login (OIDC)
if: env.AZURE_CLIENT_ID != ''
uses: azure/login@v2
with:
client-id: ${{ secrets.AZURE_CLIENT_ID }}
tenant-id: ${{ secrets.AZURE_TENANT_ID }}
subscription-id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
- name: Sign Windows executable with Azure Trusted Signing
if: env.AZURE_CLIENT_ID != ''
uses: azure/trusted-signing-action@v0.5.11
with:
endpoint: https://neu.codesigning.azure.net/
trusted-signing-account-name: ${{ secrets.AZURE_SIGNING_ACCOUNT }}
certificate-profile-name: ${{ secrets.AZURE_CERTIFICATE_PROFILE }}
files-folder: apps/desktop/dist
files-folder-filter: exe
file-digest: SHA256
timestamp-rfc3161: http://timestamp.acs.microsoft.com
timestamp-digest: SHA256
- name: Verify Windows executable is signed
if: env.AZURE_CLIENT_ID != ''
shell: pwsh
run: |
cd apps/desktop/dist
$exeFile = Get-ChildItem -Filter "*.exe" | Select-Object -First 1
if ($exeFile) {
Write-Host "Verifying signature on $($exeFile.Name)..."
$sig = Get-AuthenticodeSignature -FilePath $exeFile.FullName
if ($sig.Status -ne 'Valid') {
Write-Host "::error::Signature verification failed: $($sig.Status)"
Write-Host "::error::Status Message: $($sig.StatusMessage)"
exit 1
}
Write-Host "✅ Signature verified successfully"
Write-Host " Subject: $($sig.SignerCertificate.Subject)"
Write-Host " Issuer: $($sig.SignerCertificate.Issuer)"
Write-Host " Thumbprint: $($sig.SignerCertificate.Thumbprint)"
} else {
Write-Host "::error::No .exe file found to verify"
exit 1
}
- name: Regenerate checksums after signing
if: env.AZURE_CLIENT_ID != ''
shell: pwsh
run: |
$ErrorActionPreference = "Stop"
cd apps/desktop/dist
# Find the installer exe (electron-builder names it with "Setup" or just the app name)
# electron-builder produces one installer exe per build
$exeFiles = Get-ChildItem -Filter "*.exe"
if ($exeFiles.Count -eq 0) {
Write-Host "::error::No .exe files found in dist folder"
exit 1
}
Write-Host "Found $($exeFiles.Count) exe file(s): $($exeFiles.Name -join ', ')"
$ymlFile = "latest.yml"
if (-not (Test-Path $ymlFile)) {
Write-Host "::error::$ymlFile not found - cannot update checksums"
exit 1
}
$content = Get-Content $ymlFile -Raw
$originalContent = $content
# Process each exe file and update its hash in latest.yml
foreach ($exeFile in $exeFiles) {
Write-Host "Processing $($exeFile.Name)..."
# Compute SHA512 hash and convert to base64 (electron-builder format)
$bytes = [System.IO.File]::ReadAllBytes($exeFile.FullName)
$sha512 = [System.Security.Cryptography.SHA512]::Create()
$hashBytes = $sha512.ComputeHash($bytes)
$hash = [System.Convert]::ToBase64String($hashBytes)
$size = $exeFile.Length
Write-Host " Hash: $hash"
Write-Host " Size: $size"
}
# For electron-builder, latest.yml has a single file entry for the installer
# Update the sha512 and size for the primary exe (first one, typically the installer)
$primaryExe = $exeFiles | Select-Object -First 1
$bytes = [System.IO.File]::ReadAllBytes($primaryExe.FullName)
$sha512 = [System.Security.Cryptography.SHA512]::Create()
$hashBytes = $sha512.ComputeHash($bytes)
$hash = [System.Convert]::ToBase64String($hashBytes)
$size = $primaryExe.Length
# Update sha512 hash (base64 pattern: alphanumeric, +, /, =)
$content = $content -replace 'sha512: [A-Za-z0-9+/=]+', "sha512: $hash"
# Update size
$content = $content -replace 'size: \d+', "size: $size"
if ($content -eq $originalContent) {
Write-Host "::error::Checksum replacement failed - content unchanged. Check if latest.yml format has changed."
exit 1
}
Set-Content -Path $ymlFile -Value $content -NoNewline
Write-Host "✅ Updated $ymlFile with new base64 hash and size for $($primaryExe.Name)"
- name: Skip signing notice
if: env.AZURE_CLIENT_ID == ''
run: echo "::warning::Windows signing skipped - AZURE_CLIENT_ID not configured. The .exe will be unsigned."
- name: Upload artifacts
uses: actions/upload-artifact@v4
with:
name: windows-builds
path: |
apps/desktop/dist/*.exe
apps/desktop/dist/*.yml
build-linux:
needs: create-tag
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
with:
# Use tag for real releases, develop branch for dry runs
ref: ${{ github.event.inputs.dry_run == 'true' && 'develop' || format('v{0}', needs.create-tag.outputs.version) }}
- name: Setup Node.js and install dependencies
uses: ./.github/actions/setup-node-frontend
- name: Setup Flatpak and verification tools
run: |
set -e
sudo apt-get update
sudo apt-get install -y flatpak flatpak-builder squashfs-tools
flatpak remote-add --user --if-not-exists flathub https://flathub.org/repo/flathub.flatpakrepo
flatpak install -y --user flathub org.freedesktop.Platform//25.08 org.freedesktop.Sdk//25.08
flatpak install -y --user flathub org.electronjs.Electron2.BaseApp//25.08
- name: Build application
run: cd apps/desktop && npm run build
env:
SENTRY_DSN: ${{ secrets.SENTRY_DSN }}
SENTRY_TRACES_SAMPLE_RATE: ${{ secrets.SENTRY_TRACES_SAMPLE_RATE }}
SENTRY_PROFILES_SAMPLE_RATE: ${{ secrets.SENTRY_PROFILES_SAMPLE_RATE }}
- name: Package Linux
run: |
VERSION="${{ needs.create-tag.outputs.version }}"
cd apps/desktop && npm run package:linux -- --config.extraMetadata.version="$VERSION"
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SENTRY_DSN: ${{ secrets.SENTRY_DSN }}
SENTRY_TRACES_SAMPLE_RATE: ${{ secrets.SENTRY_TRACES_SAMPLE_RATE }}
SENTRY_PROFILES_SAMPLE_RATE: ${{ secrets.SENTRY_PROFILES_SAMPLE_RATE }}
- name: Verify Linux packages
run: cd apps/desktop && npm run verify:linux
- name: Upload artifacts
uses: actions/upload-artifact@v4
with:
name: linux-builds
path: |
apps/desktop/dist/*.AppImage
apps/desktop/dist/*.deb
apps/desktop/dist/*.flatpak
apps/desktop/dist/*.yml
# Finalize macOS notarization (runs in parallel with Windows/Linux builds)
finalize-notarization:
needs: [build-macos-intel, build-macos-arm64]
runs-on: macos-latest
steps:
- uses: actions/checkout@v4
- name: Download Intel DMG
uses: actions/download-artifact@v7
with:
name: macos-intel-builds
path: intel
- name: Download ARM64 DMG
uses: actions/download-artifact@v7
with:
name: macos-arm64-builds
path: arm64
- name: Wait for notarization and staple
uses: ./.github/actions/finalize-macos-notarization
with:
apple-id: ${{ secrets.APPLE_ID }}
apple-app-specific-password: ${{ secrets.APPLE_APP_SPECIFIC_PASSWORD }}
apple-team-id: ${{ secrets.APPLE_TEAM_ID }}
intel-notarization-id: ${{ needs.build-macos-intel.outputs.notarization_id }}
arm64-notarization-id: ${{ needs.build-macos-arm64.outputs.notarization_id }}
intel-dmg-file: ${{ needs.build-macos-intel.outputs.dmg_file }}
arm64-dmg-file: ${{ needs.build-macos-arm64.outputs.dmg_file }}
- name: Upload stapled Intel DMG
uses: actions/upload-artifact@v4
with:
name: macos-intel-stapled
path: intel/*.dmg
- name: Upload stapled ARM64 DMG
uses: actions/upload-artifact@v4
with:
name: macos-arm64-stapled
path: arm64/*.dmg
create-release:
needs: [create-tag, finalize-notarization, build-windows, build-linux]
runs-on: ubuntu-latest
if: ${{ github.event.inputs.dry_run != 'true' }}
permissions:
contents: write
steps:
- uses: actions/checkout@v4
with:
ref: v${{ needs.create-tag.outputs.version }}
fetch-depth: 0
- name: Download all artifacts
uses: actions/download-artifact@v7
with:
path: dist
- name: Flatten binary artifacts
run: |
mkdir -p release-assets
# Copy stapled macOS DMGs (from finalize-notarization job)
# Validate that stapled DMGs exist before copying
if ! find dist/macos-intel-stapled dist/macos-arm64-stapled -type f -name "*.dmg" 2>/dev/null | grep -q .; then
echo "::warning::No stapled DMGs found. Using un-stapled DMGs from build artifacts."
find dist/macos-intel-builds dist/macos-arm64-builds -type f -name "*.dmg" -exec cp {} release-assets/ \; 2>/dev/null || true
else
find dist/macos-intel-stapled dist/macos-arm64-stapled -type f -name "*.dmg" -exec cp {} release-assets/ \; 2>/dev/null || true
fi
# Copy other macOS artifacts (zip, yml, blockmap for delta updates) from original build
find dist/macos-intel-builds dist/macos-arm64-builds -type f \( -name "*.zip" -o -name "*.yml" -o -name "*.blockmap" \) -exec cp {} release-assets/ \; 2>/dev/null || true
# Copy Windows and Linux artifacts (including blockmap for delta updates)
find dist/windows-builds dist/linux-builds -type f \( -name "*.exe" -o -name "*.AppImage" -o -name "*.deb" -o -name "*.flatpak" -o -name "*.yml" -o -name "*.blockmap" \) -exec cp {} release-assets/ \; 2>/dev/null || true
# Validate that at least one artifact was copied
artifact_count=$(find release-assets -type f \( -name "*.dmg" -o -name "*.zip" -o -name "*.exe" -o -name "*.AppImage" -o -name "*.deb" -o -name "*.flatpak" \) | wc -l)
if [ "$artifact_count" -eq 0 ]; then
echo "::error::No build artifacts found! Expected .dmg, .zip, .exe, .AppImage, .deb, or .flatpak files."
exit 1
fi
echo "Found $artifact_count binary artifact(s):"
ls -la release-assets/
# Merge macOS manifests from Intel and ARM64 builds
# See: https://github.com/electron-userland/electron-builder/issues/5592
- name: Merge macOS manifests
uses: ./.github/actions/merge-macos-manifests
with:
dist-path: dist
output-path: release-assets
copy-other-manifests: 'true'
- name: Rename and validate beta manifests
run: |
cd release-assets
echo "=== Current manifest files ==="
ls -la *.yml 2>/dev/null || echo "No yml files found yet"
# electron-builder generates latest*.yml files by default
# For beta channel, electron-updater expects beta*.yml files
# Rename: latest.yml -> beta.yml, latest-mac.yml -> beta-mac.yml, latest-linux.yml -> beta-linux.yml
# Windows: latest.yml -> beta.yml
if [ -f "latest.yml" ]; then
echo "Renaming latest.yml -> beta.yml (Windows)"
mv latest.yml beta.yml
fi
# macOS: latest-mac.yml -> beta-mac.yml
if [ -f "latest-mac.yml" ]; then
echo "Renaming latest-mac.yml -> beta-mac.yml (macOS)"
mv latest-mac.yml beta-mac.yml
fi
# Linux: latest-linux.yml -> beta-linux.yml
if [ -f "latest-linux.yml" ]; then
echo "Renaming latest-linux.yml -> beta-linux.yml (Linux)"
mv latest-linux.yml beta-linux.yml
fi
# Linux ARM64: latest-linux-arm64.yml -> beta-linux-arm64.yml (if exists)
if [ -f "latest-linux-arm64.yml" ]; then
echo "Renaming latest-linux-arm64.yml -> beta-linux-arm64.yml (Linux ARM64)"
mv latest-linux-arm64.yml beta-linux-arm64.yml
fi
echo ""
echo "=== Beta manifest files after rename ==="
ls -la *.yml 2>/dev/null || echo "No yml files found"
# Validate required beta manifests exist
missing_manifests=""
if [ ! -f "beta-mac.yml" ]; then
missing_manifests="$missing_manifests beta-mac.yml"
fi
if [ ! -f "beta.yml" ]; then
missing_manifests="$missing_manifests beta.yml"
fi
if [ ! -f "beta-linux.yml" ]; then
missing_manifests="$missing_manifests beta-linux.yml"
fi
if [ -n "$missing_manifests" ]; then
echo "::error::Missing required beta manifests:$missing_manifests"
echo "::error::Auto-update will fail on affected platforms without these files!"
exit 1
fi
echo ""
echo "All required beta manifests present:"
echo " - beta-mac.yml (macOS)"
echo " - beta.yml (Windows)"
echo " - beta-linux.yml (Linux)"
- name: Generate checksums
run: |
cd release-assets
sha256sum ./* > checksums.sha256
cat checksums.sha256
- name: Create Beta Release
uses: softprops/action-gh-release@v2
with:
tag_name: v${{ needs.create-tag.outputs.version }}
name: v${{ needs.create-tag.outputs.version }} (Beta)
body: |
## Beta Release v${{ needs.create-tag.outputs.version }}
This is a **beta release** for testing new features. It may contain bugs or incomplete functionality.
### How to opt-in to beta updates
1. Open Auto Claude
2. Go to Settings > Updates
3. Enable "Beta Updates" toggle
### Reporting Issues
Please report any issues at https://github.com/AndyMik90/Auto-Claude/issues
---
**Full Changelog**: https://github.com/${{ github.repository }}/compare/main...v${{ needs.create-tag.outputs.version }}
files: release-assets/*
draft: false
prerelease: true
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
dry-run-summary:
needs: [create-tag, finalize-notarization, build-windows, build-linux]
runs-on: ubuntu-latest
if: ${{ github.event.inputs.dry_run == 'true' }}
steps:
- uses: actions/checkout@v4
- name: Download all artifacts
uses: actions/download-artifact@v7
with:
path: dist
- name: Flatten binary artifacts
run: |
mkdir -p release-assets
# Copy stapled macOS DMGs (from finalize-notarization job)
find dist/macos-intel-stapled dist/macos-arm64-stapled -type f -name "*.dmg" -exec cp {} release-assets/ \; 2>/dev/null || true
# Copy other macOS artifacts (zip, yml, blockmap for delta updates) from original build
find dist/macos-intel-builds dist/macos-arm64-builds -type f \( -name "*.zip" -o -name "*.yml" -o -name "*.blockmap" \) -exec cp {} release-assets/ \; 2>/dev/null || true
# Copy Windows and Linux artifacts (including blockmap for delta updates)
find dist/windows-builds dist/linux-builds -type f \( -name "*.exe" -o -name "*.AppImage" -o -name "*.deb" -o -name "*.flatpak" -o -name "*.yml" -o -name "*.blockmap" \) -exec cp {} release-assets/ \; 2>/dev/null || true
# Merge macOS manifests (same logic as real release)
- name: Merge macOS manifests
uses: ./.github/actions/merge-macos-manifests
with:
dist-path: dist
output-path: release-assets
copy-other-manifests: 'true'
- name: Validate and rename beta manifests
run: |
cd release-assets
# Rename latest*.yml to beta*.yml
[ -f "latest.yml" ] && mv latest.yml beta.yml
[ -f "latest-mac.yml" ] && mv latest-mac.yml beta-mac.yml
[ -f "latest-linux.yml" ] && mv latest-linux.yml beta-linux.yml
[ -f "latest-linux-arm64.yml" ] && mv latest-linux-arm64.yml beta-linux-arm64.yml
# Validate required manifests
missing=""
[ ! -f "beta-mac.yml" ] && missing="$missing beta-mac.yml"
[ ! -f "beta.yml" ] && missing="$missing beta.yml"
[ ! -f "beta-linux.yml" ] && missing="$missing beta-linux.yml"
if [ -n "$missing" ]; then
echo "::warning::DRY RUN: Missing required beta manifests:$missing"
echo "MANIFEST_STATUS=FAILED" >> $GITHUB_ENV
else
echo "MANIFEST_STATUS=PASSED" >> $GITHUB_ENV
# Show merged manifest content for verification
echo ""
echo "=== beta-mac.yml content (should have both architectures) ==="
cat beta-mac.yml
fi
- name: Dry run summary
run: |
echo "## Beta Release Dry Run Complete" >> $GITHUB_STEP_SUMMARY
echo "" >> $GITHUB_STEP_SUMMARY
echo "**Version:** ${{ needs.create-tag.outputs.version }}" >> $GITHUB_STEP_SUMMARY
echo "" >> $GITHUB_STEP_SUMMARY
echo "### Build Artifacts" >> $GITHUB_STEP_SUMMARY
echo "\`\`\`" >> $GITHUB_STEP_SUMMARY
find dist -type f \( -name "*.dmg" -o -name "*.zip" -o -name "*.exe" -o -name "*.AppImage" -o -name "*.deb" -o -name "*.flatpak" \) >> $GITHUB_STEP_SUMMARY
echo "\`\`\`" >> $GITHUB_STEP_SUMMARY
echo "" >> $GITHUB_STEP_SUMMARY
echo "### Update Manifests (Required for Auto-Update)" >> $GITHUB_STEP_SUMMARY
if [ "$MANIFEST_STATUS" = "PASSED" ]; then
echo "All required beta manifests present:" >> $GITHUB_STEP_SUMMARY
echo "- beta-mac.yml (macOS)" >> $GITHUB_STEP_SUMMARY
echo "- beta.yml (Windows)" >> $GITHUB_STEP_SUMMARY
echo "- beta-linux.yml (Linux)" >> $GITHUB_STEP_SUMMARY
else
echo "**WARNING: Missing required manifests! Auto-update will fail.**" >> $GITHUB_STEP_SUMMARY
echo "Check build logs for details." >> $GITHUB_STEP_SUMMARY
fi
echo "" >> $GITHUB_STEP_SUMMARY
echo "To create a real release, run this workflow again with dry_run unchecked." >> $GITHUB_STEP_SUMMARY
================================================
FILE: .github/workflows/build-prebuilds.yml
================================================
name: Build Native Module Prebuilds
on:
# Build on releases
release:
types: [published]
# Manual trigger for testing
workflow_dispatch:
inputs:
electron_version:
description: 'Electron version to build for'
required: false
default: '40.0.0'
env:
# Default Electron version - update when upgrading Electron in package.json
ELECTRON_VERSION: ${{ github.event.inputs.electron_version || '40.0.0' }}
jobs:
build-windows:
runs-on: windows-latest
strategy:
matrix:
arch: [x64]
# Add arm64 when GitHub Actions supports Windows ARM runners
# arch: [x64, arm64]
steps:
- name: Checkout
uses: actions/checkout@v4
- name: Setup Node.js
uses: actions/setup-node@v6
with:
node-version: '24'
- name: Install Visual Studio Build Tools
uses: microsoft/setup-msbuild@v2
- name: Install node-pty and rebuild for Electron
working-directory: apps/desktop
shell: pwsh
run: |
# Install only node-pty
npm install node-pty@1.1.0-beta42
# Get Electron ABI version
$electronAbi = (npx electron-abi $env:ELECTRON_VERSION)
Write-Host "Building for Electron $env:ELECTRON_VERSION (ABI: $electronAbi)"
# Rebuild node-pty for Electron
npx @electron/rebuild --version $env:ELECTRON_VERSION --module-dir node_modules/node-pty --arch ${{ matrix.arch }}
- name: Package prebuilt binaries
working-directory: apps/desktop
shell: pwsh
run: |
$electronAbi = (npx electron-abi $env:ELECTRON_VERSION)
$prebuildDir = "prebuilds/win32-${{ matrix.arch }}-electron-$electronAbi"
New-Item -ItemType Directory -Force -Path $prebuildDir
# Copy all built native files
$buildDir = "node_modules/node-pty/build/Release"
if (Test-Path $buildDir) {
Copy-Item "$buildDir/*.node" $prebuildDir/ -Force
Copy-Item "$buildDir/*.dll" $prebuildDir/ -Force -ErrorAction SilentlyContinue
Copy-Item "$buildDir/*.exe" $prebuildDir/ -Force -ErrorAction SilentlyContinue
# Also copy conpty files if they exist in subdirectory
if (Test-Path "$buildDir/conpty") {
Copy-Item "$buildDir/conpty/*" $prebuildDir/ -Force
}
}
# List what we packaged
Write-Host "Packaged prebuilds:"
Get-ChildItem $prebuildDir
- name: Create archive
working-directory: apps/desktop
shell: pwsh
run: |
$electronAbi = (npx electron-abi $env:ELECTRON_VERSION)
$archiveName = "node-pty-win32-${{ matrix.arch }}-electron-$electronAbi.zip"
Compress-Archive -Path "prebuilds/*" -DestinationPath $archiveName
Write-Host "Created archive: $archiveName"
Get-ChildItem $archiveName
- name: Upload artifact
uses: actions/upload-artifact@v4
with:
name: node-pty-win32-${{ matrix.arch }}
path: apps/desktop/node-pty-*.zip
retention-days: 90
- name: Upload to release
if: github.event_name == 'release'
uses: softprops/action-gh-release@v1
with:
files: apps/desktop/node-pty-*.zip
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
# Create a combined prebuilds package
package-prebuilds:
needs: build-windows
runs-on: ubuntu-latest
steps:
- name: Download all artifacts
uses: actions/download-artifact@v7
with:
path: artifacts
- name: List artifacts
run: |
echo "Downloaded artifacts:"
find artifacts -type f -name "*.zip"
- name: Upload combined artifact
uses: actions/upload-artifact@v4
with:
name: node-pty-prebuilds-all
path: artifacts/**/*.zip
retention-days: 90
================================================
FILE: .github/workflows/ci.yml
================================================
# Cross-Platform CI Pipeline
#
# Tests on all target platforms (Linux, Windows, macOS) to catch
# platform-specific bugs before they merge. ALL platforms must pass.
#
# Optimized: Frontend-only matrix, path filters to skip on docs-only changes.
name: CI
on:
push:
branches: [main, develop]
paths:
- 'apps/**'
- 'package*.json'
- 'tsconfig*.json'
- 'biome.jsonc'
- '.github/workflows/ci.yml'
- '.github/actions/**'
pull_request:
branches: [main, develop]
paths:
- 'apps/**'
- 'package*.json'
- 'tsconfig*.json'
- 'biome.jsonc'
- '.github/workflows/ci.yml'
- '.github/actions/**'
concurrency:
group: ci-${{ github.event.pull_request.number || github.ref }}
cancel-in-progress: true
permissions:
contents: read
actions: read
pull-requests: write
jobs:
# --------------------------------------------------------------------------
# Frontend Tests - All Platforms
# --------------------------------------------------------------------------
test-frontend:
name: test-frontend (${{ matrix.os }})
runs-on: ${{ matrix.os }}
strategy:
fail-fast: false
matrix:
os: [ubuntu-latest, windows-latest, macos-latest]
steps:
- name: Checkout repository
uses: actions/checkout@v4
- name: Setup Node.js frontend
uses: ./.github/actions/setup-node-frontend
with:
ignore-scripts: 'true'
- name: Run TypeScript type check
working-directory: apps/desktop
run: npm run typecheck
- name: Run unit tests with coverage
if: matrix.os == 'ubuntu-latest'
working-directory: apps/desktop
run: npm run test:coverage
- name: Run unit tests
if: matrix.os != 'ubuntu-latest'
working-directory: apps/desktop
run: npm run test:unit
- name: Run integration tests
working-directory: apps/desktop
run: npm run test:integration
- name: Upload coverage report
if: matrix.os == 'ubuntu-latest' && always()
uses: actions/upload-artifact@v4
with:
name: coverage-report
path: apps/desktop/coverage/
retention-days: 14
- name: Coverage PR comment
if: matrix.os == 'ubuntu-latest' && github.event_name == 'pull_request'
uses: davelosert/vitest-coverage-report-action@v2
with:
working-directory: apps/desktop
json-summary-path: coverage/coverage-summary.json
json-final-path: coverage/coverage-final.json
- name: Build application
working-directory: apps/desktop
run: npm run build
# --------------------------------------------------------------------------
# Gate Job - Single check for branch protection
# --------------------------------------------------------------------------
ci-complete:
name: CI Complete
runs-on: ubuntu-latest
needs: [test-frontend]
if: always()
steps:
- name: Check all CI jobs passed
run: |
echo "CI Job Results:"
echo " test-frontend: ${{ needs.test-frontend.result }}"
echo ""
if [[ "${{ needs.test-frontend.result }}" != "success" ]]; then
echo "❌ One or more CI jobs failed"
exit 1
fi
echo "✅ All CI checks passed"
================================================
FILE: .github/workflows/discord-release.yml
================================================
name: Discord Release Notification
on:
release:
types: [published]
workflow_dispatch:
jobs:
discord-notification:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v4
- name: Send to Discord
uses: SethCohen/github-releases-to-discord@v1.19.0
with:
webhook_url: ${{ secrets.DISCORD_WEBHOOK_URL }}
color: "5793266"
username: "Auto Claude Releases"
avatar_url: "https://github.githubassets.com/images/modules/logos_page/GitHub-Mark.png"
footer_title: "Auto Claude Changelog"
footer_timestamp: true
reduce_headings: true
remove_github_reference_links: true
================================================
FILE: .github/workflows/e2e.yml
================================================
# E2E Tests
#
# Runs Playwright E2E tests for the Electron desktop app on Linux.
# Ubuntu-only since Electron E2E is platform-agnostic (Chromium renderer).
# Non-blocking initially — separate from ci-complete gate while stabilizing.
name: E2E
on:
push:
branches: [main, develop]
paths:
- 'apps/**'
- '.github/workflows/e2e.yml'
pull_request:
branches: [main, develop]
paths:
- 'apps/**'
- '.github/workflows/e2e.yml'
concurrency:
group: e2e-${{ github.event.pull_request.number || github.ref }}
cancel-in-progress: true
permissions:
contents: read
jobs:
e2e:
name: E2E Tests
runs-on: ubuntu-latest
timeout-minutes: 15
steps:
- name: Checkout repository
uses: actions/checkout@v4
- name: Setup Node.js frontend
uses: ./.github/actions/setup-node-frontend
- name: Install Playwright browsers
working-directory: apps/desktop
run: npx playwright install --with-deps chromium
- name: Build application
working-directory: apps/desktop
run: npm run build
- name: Run E2E tests
working-directory: apps/desktop
continue-on-error: true # Non-blocking while stabilizing — pre-existing __dirname ESM issue
run: xvfb-run --auto-servernum npm run test:e2e
- name: Upload E2E report
if: failure()
uses: actions/upload-artifact@v4
with:
name: e2e-report
path: |
apps/desktop/e2e/playwright-report/
apps/desktop/e2e/test-results/
retention-days: 14
================================================
FILE: .github/workflows/issue-auto-label.yml
================================================
name: Issue Auto Label
on:
issues:
types: [opened]
jobs:
label-area:
runs-on: ubuntu-latest
permissions:
issues: write
steps:
- name: Add area label from form
uses: actions/github-script@v8
with:
script: |
const issue = context.payload.issue;
const body = issue.body || '';
console.log(`Processing issue #${issue.number}: ${issue.title}`);
// Map form selection to label
const areaMap = {
'Frontend': 'area/frontend',
'Backend': 'area/backend',
'Fullstack': 'area/fullstack'
};
const labels = [];
for (const [key, label] of Object.entries(areaMap)) {
if (body.includes(key)) {
console.log(`Found area: ${key}, adding label: ${label}`);
labels.push(label);
break;
}
}
if (labels.length > 0) {
try {
await github.rest.issues.addLabels({
owner: context.repo.owner,
repo: context.repo.repo,
issue_number: issue.number,
labels: labels
});
console.log(`Successfully added labels: ${labels.join(', ')}`);
} catch (error) {
core.setFailed(`Failed to add labels: ${error.message}`);
}
} else {
console.log('No matching area found in issue body');
}
================================================
FILE: .github/workflows/lint.yml
================================================
name: Lint
on:
push:
branches: [main, develop]
paths:
- 'apps/desktop/**'
- '.github/workflows/lint.yml'
- '.github/actions/**'
- 'apps/desktop/biome.jsonc'
pull_request:
branches: [main, develop]
paths:
- 'apps/desktop/**'
- '.github/workflows/lint.yml'
- '.github/actions/**'
- 'apps/desktop/biome.jsonc'
concurrency:
group: lint-${{ github.event.pull_request.number || github.ref }}
cancel-in-progress: true
jobs:
# TypeScript/JavaScript linting (Biome) - 15-25x faster than ESLint
typescript:
name: TypeScript (Biome)
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v4
# Pin version to match package.json for consistent behavior
- name: Setup Biome
uses: biomejs/setup-biome@v2
with:
version: 2.3.11
- name: Run Biome
working-directory: apps/desktop
# biome ci fails on errors by default; warnings are reported but don't block
# Use --error-on-warnings when ready to enforce all rules
run: biome ci .
# --------------------------------------------------------------------------
# Gate Job - Single check for branch protection
# --------------------------------------------------------------------------
lint-complete:
name: Lint Complete
runs-on: ubuntu-latest
needs: [typescript]
if: always()
steps:
- name: Check lint results
run: |
if [[ "${{ needs.typescript.result }}" != "success" ]]; then
echo "❌ Linting failed"
echo " TypeScript: ${{ needs.typescript.result }}"
exit 1
fi
echo "✅ All linting passed"
================================================
FILE: .github/workflows/pr-labeler.yml
================================================
name: PR Labeler
on:
pull_request:
types: [opened, synchronize, reopened]
concurrency:
group: pr-labeler-${{ github.event.pull_request.number }}
cancel-in-progress: true
permissions:
contents: read
pull-requests: write
jobs:
label:
name: Auto Label PR
runs-on: ubuntu-latest
# Security: Prevent fork PRs from modifying labels (they don't have write access)
if: github.event.pull_request.head.repo.full_name == github.repository
timeout-minutes: 5
steps:
- name: Label PR
uses: actions/github-script@v8
with:
retries: 3
retry-exempt-status-codes: 400,401,403,404,422
script: |
// ═══════════════════════════════════════════════════════════════
// CONFIGURATION - Single source of truth for all settings
// ═══════════════════════════════════════════════════════════════
const CONFIG = {
// Size thresholds (lines changed)
SIZE_THRESHOLDS: {
XS: 10,
S: 100,
M: 500,
L: 1000
},
// Conventional commit type mappings
TYPE_MAP: Object.freeze({
'feat': 'feature',
'fix': 'bug',
'docs': 'documentation',
'refactor': 'refactor',
'test': 'test',
'ci': 'ci',
'chore': 'chore',
'perf': 'performance',
'style': 'style',
'build': 'build'
}),
// Area detection paths
AREA_PATHS: Object.freeze({
frontend: 'apps/desktop/',
ci: '.github/'
}),
// Label definitions
LABELS: Object.freeze({
SIZE: ['size/XS', 'size/S', 'size/M', 'size/L', 'size/XL'],
AREA: ['area/frontend', 'area/ci']
}),
// Pagination
MAX_FILES_PER_PAGE: 100
};
// ═══════════════════════════════════════════════════════════════
// HELPER FUNCTIONS - Small, focused, single responsibility
// ═══════════════════════════════════════════════════════════════
/**
* Safely parse conventional commit type from PR title
* @param {string} title - PR title
* @returns {{type: string|null, isBreaking: boolean}}
*/
function parseConventionalCommit(title) {
if (!title || typeof title !== 'string') {
return { type: null, isBreaking: false };
}
// Limit input length to prevent ReDoS attacks
const safeTitle = title.slice(0, 200);
const match = safeTitle.match(/^(\w{1,20})(\([^)]{0,50}\))?(!)?:/);
if (!match) {
return { type: null, isBreaking: false };
}
return {
type: match[1].toLowerCase(),
isBreaking: match[3] === '!'
};
}
/**
* Determine size label based on lines changed
* @param {number} totalLines - Total lines changed
* @returns {string} Size label
*/
function determineSizeLabel(totalLines) {
const { SIZE_THRESHOLDS } = CONFIG;
if (totalLines < SIZE_THRESHOLDS.XS) return 'size/XS';
if (totalLines < SIZE_THRESHOLDS.S) return 'size/S';
if (totalLines < SIZE_THRESHOLDS.M) return 'size/M';
if (totalLines < SIZE_THRESHOLDS.L) return 'size/L';
return 'size/XL';
}
/**
* Detect areas affected by file changes
* @param {Array} files - List of changed files
* @returns {{frontend: boolean, ci: boolean}}
*/
function detectAreas(files) {
const areas = { frontend: false, ci: false };
const { AREA_PATHS } = CONFIG;
for (const file of files) {
const path = file.filename || '';
if (path.startsWith(AREA_PATHS.frontend)) areas.frontend = true;
if (path.startsWith(AREA_PATHS.ci)) areas.ci = true;
}
return areas;
}
/**
* Determine area label based on detected areas
* @param {{frontend: boolean, ci: boolean}} areas
* @returns {string|null} Area label or null
*/
function determineAreaLabel(areas) {
if (areas.frontend) return 'area/frontend';
if (areas.ci) return 'area/ci';
return null;
}
/**
* Remove labels from PR (with error handling)
* @param {Array} labels - Labels to remove
* @param {number} prNumber - PR number
*/
async function removeLabels(labels, prNumber) {
const { owner, repo } = context.repo;
await Promise.allSettled(labels.map(async (label) => {
try {
await github.rest.issues.removeLabel({
owner,
repo,
issue_number: prNumber,
name: label
});
console.log(` ✓ Removed: ${label}`);
} catch (e) {
// 404 means label wasn't present - that's fine
if (e.status !== 404) {
console.log(` ⚠ Failed to remove ${label}: ${e.message}`);
}
}
}));
}
/**
* Add labels to PR (with error handling)
* @param {Array} labels - Labels to add
* @param {number} prNumber - PR number
*/
async function addLabels(labels, prNumber) {
if (labels.length === 0) return;
const { owner, repo } = context.repo;
try {
await github.rest.issues.addLabels({
owner,
repo,
issue_number: prNumber,
labels
});
console.log(` ✓ Added: ${labels.join(', ')}`);
} catch (e) {
if (e.status === 404) {
core.warning(`One or more labels do not exist. Create them in repository settings.`);
} else {
throw e;
}
}
}
/**
* Fetch PR files with full pagination support
* @param {number} prNumber - PR number
* @returns {Array} List of all files (paginated)
*/
async function fetchPRFiles(prNumber) {
const { owner, repo } = context.repo;
try {
// Use paginate to fetch ALL files, not just first 100
const files = await github.paginate(
github.rest.pulls.listFiles,
{ owner, repo, pull_number: prNumber, per_page: CONFIG.MAX_FILES_PER_PAGE }
);
return files;
} catch (e) {
console.log(` ⚠ Could not fetch files: ${e.message}`);
return [];
}
}
// ═══════════════════════════════════════════════════════════════
// MAIN LOGIC - Orchestrates the labeling process
// ═══════════════════════════════════════════════════════════════
const { owner, repo } = context.repo;
const pr = context.payload.pull_request;
const prNumber = pr.number;
const title = pr.title || '';
console.log(`::group::PR #${prNumber} - Auto-labeling`);
console.log(`Title: ${title.slice(0, 100)}${title.length > 100 ? '...' : ''}`);
console.log(`Action: ${context.payload.action}`);
const labelsToAdd = new Set();
const labelsToRemove = new Set();
// 1. Parse conventional commit type
const { type, isBreaking } = parseConventionalCommit(title);
if (type && CONFIG.TYPE_MAP[type]) {
labelsToAdd.add(CONFIG.TYPE_MAP[type]);
console.log(` 📝 Type: ${type} → ${CONFIG.TYPE_MAP[type]}`);
} else {
console.log(` ℹ️ No conventional commit prefix detected`);
}
if (isBreaking) {
labelsToAdd.add('breaking-change');
console.log(` ⚠️ Breaking change detected`);
}
// 2. Detect areas from changed files
const files = await fetchPRFiles(prNumber);
const areas = detectAreas(files);
const areaLabel = determineAreaLabel(areas);
if (areaLabel) {
labelsToAdd.add(areaLabel);
CONFIG.LABELS.AREA.filter(l => l !== areaLabel).forEach(l => labelsToRemove.add(l));
console.log(` 📁 Area: ${areaLabel.replace('area/', '')}`);
}
// 3. Calculate size label
const totalLines = (pr.additions || 0) + (pr.deletions || 0);
const sizeLabel = determineSizeLabel(totalLines);
labelsToAdd.add(sizeLabel);
CONFIG.LABELS.SIZE.filter(l => l !== sizeLabel).forEach(l => labelsToRemove.add(l));
console.log(` 📏 Size: ${sizeLabel} (${totalLines} lines)`);
console.log('::endgroup::');
// 4. Apply label changes
console.log(`::group::Applying labels`);
// Remove labels that should be replaced (exclude ones we're adding)
const removeList = [...labelsToRemove].filter(l => !labelsToAdd.has(l));
await removeLabels(removeList, prNumber);
// Add new labels
await addLabels([...labelsToAdd], prNumber);
console.log('::endgroup::');
console.log(`✅ PR #${prNumber} labeled successfully`);
// 5. Write job summary
const summaryType = type ? CONFIG.TYPE_MAP[type] || 'unknown' : 'none';
const summaryArea = areaLabel ? areaLabel.replace('area/', '') : 'other';
await core.summary
.addHeading(`PR #${prNumber} Auto-Labels`, 3)
.addTable([
[{ data: 'Category', header: true }, { data: 'Label', header: true }],
['Type', summaryType],
['Area', summaryArea],
['Size', sizeLabel]
])
.addRaw(`\n**Files:** ${files.length} | **Lines:** +${pr.additions || 0} / -${pr.deletions || 0}\n`)
.write();
================================================
FILE: .github/workflows/prepare-release.yml
================================================
name: Prepare Release
# Triggers when code is pushed to main (e.g., merging develop → main)
# If package.json version is newer than the latest tag:
# 1. Validates CHANGELOG.md has an entry for this version (FAILS if missing)
# 2. Extracts release notes from CHANGELOG.md
# 3. Creates a new tag which triggers release.yml
on:
push:
branches: [main]
paths:
- 'apps/desktop/package.json'
- 'package.json'
workflow_dispatch:
inputs:
force:
description: 'Force release even if version check fails (use with caution)'
required: false
default: false
type: boolean
jobs:
check-and-tag:
runs-on: ubuntu-latest
permissions:
contents: write
outputs:
should_release: ${{ steps.check.outputs.should_release }}
new_version: ${{ steps.check.outputs.new_version }}
steps:
# Fail fast with clear error if PAT_TOKEN is not configured
- name: Validate PAT_TOKEN is configured
run: |
if [ -z "${{ secrets.PAT_TOKEN }}" ]; then
echo "::error::PAT_TOKEN secret is not configured."
echo "::error::This secret is required for automatic release triggering."
echo "::error::See https://github.com/AndyMik90/Auto-Claude/pull/1043 for setup instructions."
exit 1
fi
# IMPORTANT: Use PAT_TOKEN instead of GITHUB_TOKEN
# When GITHUB_TOKEN pushes a tag, it does NOT trigger other workflows (GitHub security feature)
# PAT_TOKEN allows the tag push to trigger release.yml automatically
- uses: actions/checkout@v4
with:
fetch-depth: 0
token: ${{ secrets.PAT_TOKEN }}
- name: Get package version
id: package
run: |
VERSION=$(node -p "require('./apps/desktop/package.json').version")
echo "version=$VERSION" >> $GITHUB_OUTPUT
echo "Package version: $VERSION"
- name: Get latest tag version
id: latest_tag
run: |
# Get the latest version tag (v*)
LATEST_TAG=$(git tag -l 'v*' --sort=-version:refname | head -n1)
if [ -z "$LATEST_TAG" ]; then
echo "No existing tags found"
echo "version=0.0.0" >> $GITHUB_OUTPUT
else
# Remove 'v' prefix
LATEST_VERSION=${LATEST_TAG#v}
echo "version=$LATEST_VERSION" >> $GITHUB_OUTPUT
echo "Latest tag: $LATEST_TAG (version: $LATEST_VERSION)"
fi
- name: Check if release needed
id: check
run: |
PACKAGE_VERSION="${{ steps.package.outputs.version }}"
LATEST_VERSION="${{ steps.latest_tag.outputs.version }}"
FORCE="${{ github.event.inputs.force }}"
echo "Comparing: package=$PACKAGE_VERSION vs latest_tag=$LATEST_VERSION"
# Use npx semver for proper semantic version comparison
# This correctly handles pre-release versions (2.7.3 > 2.7.3-beta.1)
if npx -y semver "$PACKAGE_VERSION" -r ">$LATEST_VERSION" > /dev/null 2>&1; then
echo "should_release=true" >> $GITHUB_OUTPUT
echo "new_version=$PACKAGE_VERSION" >> $GITHUB_OUTPUT
echo "✅ New release needed: v$PACKAGE_VERSION"
elif [ "$FORCE" = "true" ]; then
echo "should_release=true" >> $GITHUB_OUTPUT
echo "new_version=$PACKAGE_VERSION" >> $GITHUB_OUTPUT
echo "⚠️ Force release enabled: v$PACKAGE_VERSION"
else
echo "should_release=false" >> $GITHUB_OUTPUT
echo "⏭️ No release needed (package version not newer than latest tag)"
fi
# CRITICAL: Validate CHANGELOG.md has entry for this version BEFORE creating tag
- name: Validate and extract changelog
if: steps.check.outputs.should_release == 'true'
id: changelog
run: |
VERSION="${{ steps.check.outputs.new_version }}"
CHANGELOG_FILE="CHANGELOG.md"
echo "🔍 Validating CHANGELOG.md for version $VERSION..."
if [ ! -f "$CHANGELOG_FILE" ]; then
echo "::error::CHANGELOG.md not found! Please create CHANGELOG.md with release notes."
exit 1
fi
# Extract changelog section for this version
# Looks for "## X.Y.Z" header and captures until next "## " or "---" or end
CHANGELOG_CONTENT=$(awk -v ver="$VERSION" '
BEGIN { found=0; content="" }
/^## / {
if (found) exit
# Match version at start of header (e.g., "## 2.7.3 -" or "## 2.7.3")
if ($2 == ver || $2 ~ "^"ver"[[:space:]]*-") {
found=1
# Skip the header line itself, we will add our own
next
}
}
/^---$/ { if (found) exit }
found { content = content $0 "\n" }
END {
if (!found) {
print "NOT_FOUND"
exit 1
}
# Trim leading/trailing whitespace
gsub(/^[[:space:]]+|[[:space:]]+$/, "", content)
print content
}
' "$CHANGELOG_FILE")
if [ "$CHANGELOG_CONTENT" = "NOT_FOUND" ] || [ -z "$CHANGELOG_CONTENT" ]; then
echo ""
echo "::error::═══════════════════════════════════════════════════════════════════════"
echo "::error:: CHANGELOG VALIDATION FAILED"
echo "::error::═══════════════════════════════════════════════════════════════════════"
echo "::error::"
echo "::error:: Version $VERSION not found in CHANGELOG.md!"
echo "::error::"
echo "::error:: Before releasing, please update CHANGELOG.md with an entry like:"
echo "::error::"
echo "::error:: ## $VERSION - Your Release Title"
echo "::error::"
echo "::error:: ### ✨ New Features"
echo "::error:: - Feature description"
echo "::error::"
echo "::error:: ### 🐛 Bug Fixes"
echo "::error:: - Fix description"
echo "::error::"
echo "::error::═══════════════════════════════════════════════════════════════════════"
echo ""
# Also add to job summary for visibility
echo "## ❌ Release Blocked: Missing Changelog" >> $GITHUB_STEP_SUMMARY
echo "" >> $GITHUB_STEP_SUMMARY
echo "Version **$VERSION** was not found in CHANGELOG.md." >> $GITHUB_STEP_SUMMARY
echo "" >> $GITHUB_STEP_SUMMARY
echo "### How to fix:" >> $GITHUB_STEP_SUMMARY
echo "1. Update CHANGELOG.md with release notes for version $VERSION" >> $GITHUB_STEP_SUMMARY
echo "2. Commit and push the changes" >> $GITHUB_STEP_SUMMARY
echo "3. The release will automatically retry" >> $GITHUB_STEP_SUMMARY
echo "" >> $GITHUB_STEP_SUMMARY
echo "### Expected format:" >> $GITHUB_STEP_SUMMARY
echo "\`\`\`markdown" >> $GITHUB_STEP_SUMMARY
echo "## $VERSION - Release Title" >> $GITHUB_STEP_SUMMARY
echo "" >> $GITHUB_STEP_SUMMARY
echo "### ✨ New Features" >> $GITHUB_STEP_SUMMARY
echo "- Feature description" >> $GITHUB_STEP_SUMMARY
echo "" >> $GITHUB_STEP_SUMMARY
echo "### 🐛 Bug Fixes" >> $GITHUB_STEP_SUMMARY
echo "- Fix description" >> $GITHUB_STEP_SUMMARY
echo "\`\`\`" >> $GITHUB_STEP_SUMMARY
exit 1
fi
echo "✅ Found changelog entry for version $VERSION"
echo ""
echo "--- Extracted Release Notes ---"
echo "$CHANGELOG_CONTENT"
echo "--- End Release Notes ---"
# Save changelog to file for artifact upload
echo "$CHANGELOG_CONTENT" > changelog-extract.md
# Also save to output (for short changelogs)
# Using heredoc for multiline output
{
echo "content<> $GITHUB_OUTPUT
echo "changelog_valid=true" >> $GITHUB_OUTPUT
# Upload changelog as artifact for release.yml to use
- name: Upload changelog artifact
if: steps.check.outputs.should_release == 'true' && steps.changelog.outputs.changelog_valid == 'true'
uses: actions/upload-artifact@v4
with:
name: changelog-${{ steps.check.outputs.new_version }}
path: changelog-extract.md
retention-days: 1
- name: Create and push tag
if: steps.check.outputs.should_release == 'true' && steps.changelog.outputs.changelog_valid == 'true'
run: |
VERSION="${{ steps.check.outputs.new_version }}"
TAG="v$VERSION"
git config user.name "github-actions[bot]"
git config user.email "github-actions[bot]@users.noreply.github.com"
echo "Creating tag: $TAG"
git tag -a "$TAG" -m "Release $TAG"
git push origin "$TAG"
echo "✅ Tag $TAG created and pushed"
echo "🚀 This will trigger the release workflow"
- name: Summary
run: |
if [ "${{ steps.check.outputs.should_release }}" = "true" ] && [ "${{ steps.changelog.outputs.changelog_valid }}" = "true" ]; then
echo "## 🚀 Release Triggered" >> $GITHUB_STEP_SUMMARY
echo "" >> $GITHUB_STEP_SUMMARY
echo "**Version:** v${{ steps.check.outputs.new_version }}" >> $GITHUB_STEP_SUMMARY
echo "" >> $GITHUB_STEP_SUMMARY
echo "✅ Changelog validated and extracted from CHANGELOG.md" >> $GITHUB_STEP_SUMMARY
echo "" >> $GITHUB_STEP_SUMMARY
echo "The release workflow has been triggered and will:" >> $GITHUB_STEP_SUMMARY
echo "1. Build binaries for all platforms" >> $GITHUB_STEP_SUMMARY
echo "2. Use changelog from CHANGELOG.md" >> $GITHUB_STEP_SUMMARY
echo "3. Create GitHub release" >> $GITHUB_STEP_SUMMARY
echo "4. Update README with new version" >> $GITHUB_STEP_SUMMARY
elif [ "${{ steps.check.outputs.should_release }}" = "false" ]; then
echo "## ⏭️ No Release Needed" >> $GITHUB_STEP_SUMMARY
echo "" >> $GITHUB_STEP_SUMMARY
echo "**Package version:** ${{ steps.package.outputs.version }}" >> $GITHUB_STEP_SUMMARY
echo "**Latest tag:** v${{ steps.latest_tag.outputs.version }}" >> $GITHUB_STEP_SUMMARY
echo "" >> $GITHUB_STEP_SUMMARY
echo "The package version is not newer than the latest tag." >> $GITHUB_STEP_SUMMARY
echo "To trigger a release, bump the version using:" >> $GITHUB_STEP_SUMMARY
echo "\`\`\`bash" >> $GITHUB_STEP_SUMMARY
echo "node scripts/bump-version.js patch # or minor/major" >> $GITHUB_STEP_SUMMARY
echo "\`\`\`" >> $GITHUB_STEP_SUMMARY
fi
================================================
FILE: .github/workflows/quality-security.yml
================================================
name: Quality Security
# CodeQL runs on all PRs, pushes to main, and weekly schedule
# Note: CodeQL takes 20-30 min
on:
push:
branches: [main]
paths:
- 'apps/desktop/**'
- 'package.json'
- '.github/workflows/quality-security.yml'
pull_request:
branches: [main, develop]
paths:
- 'apps/desktop/**'
- 'package.json'
- '.github/workflows/quality-security.yml'
schedule:
- cron: '0 0 * * 1' # Weekly on Monday at midnight UTC
concurrency:
group: security-${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true
permissions:
contents: read
security-events: write
actions: read
jobs:
codeql:
name: CodeQL (${{ matrix.language }})
runs-on: ubuntu-latest
timeout-minutes: 30
strategy:
fail-fast: false
matrix:
language: [javascript-typescript]
steps:
- name: Checkout
uses: actions/checkout@v4
- name: Initialize CodeQL
uses: github/codeql-action/init@v3
with:
languages: ${{ matrix.language }}
queries: +security-extended,security-and-quality
- name: Autobuild
uses: github/codeql-action/autobuild@v3
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v3
with:
category: "/language:${{ matrix.language }}"
# --------------------------------------------------------------------------
# Gate Job - Single check for branch protection
# --------------------------------------------------------------------------
security-summary:
name: Security Summary
runs-on: ubuntu-latest
needs: [codeql]
if: always()
timeout-minutes: 5
steps:
- name: Check security results
uses: actions/github-script@v8
with:
script: |
const codeql = '${{ needs.codeql.result }}';
console.log('Security Check Results:');
console.log(` CodeQL: ${codeql}`);
// Only 'failure' is a real failure; 'skipped' is acceptable (e.g., path filters, PR skipping CodeQL)
const acceptable = ['success', 'skipped'];
const codeqlOk = acceptable.includes(codeql);
if (codeqlOk) {
console.log('\n✅ All security checks passed');
core.summary.addRaw('## ✅ Security Checks Passed\n\nAll security scans completed successfully.');
} else {
console.log('\n❌ Some security checks failed');
core.summary.addRaw('## ❌ Security Checks Failed\n\nOne or more security scans found issues.');
core.setFailed('Security checks failed');
}
await core.summary.write();
================================================
FILE: .github/workflows/release.yml
================================================
name: Release
# Triggers on version tags (v*) to build and publish releases
#
# IMPORTANT: If branch protection is enabled on 'main', the update-readme job
# requires a PAT or GitHub App token with bypass permissions to push directly.
# Currently uses GITHUB_TOKEN which works if "Allow GitHub Actions to create
# and approve pull requests" is enabled OR branch protection is not configured.
on:
push:
tags:
- 'v*'
workflow_dispatch:
inputs:
dry_run:
description: 'Test build without creating release'
required: false
default: false
type: boolean
jobs:
# Intel build on Intel runner for native compilation
# Note: macos-15-intel is the last Intel runner, supported until Fall 2027
build-macos-intel:
runs-on: macos-15-intel
outputs:
notarization_id: ${{ steps.notarize.outputs.notarization-id }}
dmg_file: ${{ steps.notarize.outputs.dmg-file }}
steps:
- uses: actions/checkout@v4
- name: Setup Node.js and install dependencies
uses: ./.github/actions/setup-node-frontend
- name: Build application
run: cd apps/desktop && npm run build
env:
SENTRY_DSN: ${{ secrets.SENTRY_DSN }}
SENTRY_TRACES_SAMPLE_RATE: ${{ secrets.SENTRY_TRACES_SAMPLE_RATE }}
SENTRY_PROFILES_SAMPLE_RATE: ${{ secrets.SENTRY_PROFILES_SAMPLE_RATE }}
- name: Package macOS (Intel)
run: cd apps/desktop && npm run package:mac -- --x64
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
CSC_LINK: ${{ secrets.MAC_CERTIFICATE }}
CSC_KEY_PASSWORD: ${{ secrets.MAC_CERTIFICATE_PASSWORD }}
SENTRY_DSN: ${{ secrets.SENTRY_DSN }}
SENTRY_TRACES_SAMPLE_RATE: ${{ secrets.SENTRY_TRACES_SAMPLE_RATE }}
SENTRY_PROFILES_SAMPLE_RATE: ${{ secrets.SENTRY_PROFILES_SAMPLE_RATE }}
- name: Submit notarization (async)
id: notarize
uses: ./.github/actions/submit-macos-notarization
with:
apple-id: ${{ secrets.APPLE_ID }}
apple-app-specific-password: ${{ secrets.APPLE_APP_SPECIFIC_PASSWORD }}
apple-team-id: ${{ secrets.APPLE_TEAM_ID }}
- name: Upload artifacts
uses: actions/upload-artifact@v4
with:
name: macos-intel-builds
path: |
apps/desktop/dist/*.dmg
apps/desktop/dist/*.zip
apps/desktop/dist/*.yml
apps/desktop/dist/*.blockmap
# Apple Silicon build on ARM64 runner for native compilation
build-macos-arm64:
runs-on: macos-15
outputs:
notarization_id: ${{ steps.notarize.outputs.notarization-id }}
dmg_file: ${{ steps.notarize.outputs.dmg-file }}
steps:
- uses: actions/checkout@v4
- name: Setup Node.js and install dependencies
uses: ./.github/actions/setup-node-frontend
- name: Build application
run: cd apps/desktop && npm run build
env:
SENTRY_DSN: ${{ secrets.SENTRY_DSN }}
SENTRY_TRACES_SAMPLE_RATE: ${{ secrets.SENTRY_TRACES_SAMPLE_RATE }}
SENTRY_PROFILES_SAMPLE_RATE: ${{ secrets.SENTRY_PROFILES_SAMPLE_RATE }}
- name: Package macOS (Apple Silicon)
run: cd apps/desktop && npm run package:mac -- --arm64
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
CSC_LINK: ${{ secrets.MAC_CERTIFICATE }}
CSC_KEY_PASSWORD: ${{ secrets.MAC_CERTIFICATE_PASSWORD }}
SENTRY_DSN: ${{ secrets.SENTRY_DSN }}
SENTRY_TRACES_SAMPLE_RATE: ${{ secrets.SENTRY_TRACES_SAMPLE_RATE }}
SENTRY_PROFILES_SAMPLE_RATE: ${{ secrets.SENTRY_PROFILES_SAMPLE_RATE }}
- name: Submit notarization (async)
id: notarize
uses: ./.github/actions/submit-macos-notarization
with:
apple-id: ${{ secrets.APPLE_ID }}
apple-app-specific-password: ${{ secrets.APPLE_APP_SPECIFIC_PASSWORD }}
apple-team-id: ${{ secrets.APPLE_TEAM_ID }}
- name: Upload artifacts
uses: actions/upload-artifact@v4
with:
name: macos-arm64-builds
path: |
apps/desktop/dist/*.dmg
apps/desktop/dist/*.zip
apps/desktop/dist/*.yml
apps/desktop/dist/*.blockmap
build-windows:
runs-on: windows-latest
permissions:
id-token: write # Required for OIDC authentication with Azure
contents: read
env:
# Job-level env so AZURE_CLIENT_ID is available for step-level if conditions
AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }}
steps:
- uses: actions/checkout@v4
- name: Setup Node.js and install dependencies
uses: ./.github/actions/setup-node-frontend
- name: Build application
run: cd apps/desktop && npm run build
env:
SENTRY_DSN: ${{ secrets.SENTRY_DSN }}
SENTRY_TRACES_SAMPLE_RATE: ${{ secrets.SENTRY_TRACES_SAMPLE_RATE }}
SENTRY_PROFILES_SAMPLE_RATE: ${{ secrets.SENTRY_PROFILES_SAMPLE_RATE }}
- name: Package Windows
run: cd apps/desktop && npm run package:win
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
# Disable electron-builder's built-in signing (we use Azure Trusted Signing instead)
CSC_IDENTITY_AUTO_DISCOVERY: false
SENTRY_DSN: ${{ secrets.SENTRY_DSN }}
SENTRY_TRACES_SAMPLE_RATE: ${{ secrets.SENTRY_TRACES_SAMPLE_RATE }}
SENTRY_PROFILES_SAMPLE_RATE: ${{ secrets.SENTRY_PROFILES_SAMPLE_RATE }}
- name: Azure Login (OIDC)
if: env.AZURE_CLIENT_ID != ''
uses: azure/login@v2
with:
client-id: ${{ secrets.AZURE_CLIENT_ID }}
tenant-id: ${{ secrets.AZURE_TENANT_ID }}
subscription-id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
- name: Sign Windows executable with Azure Trusted Signing
if: env.AZURE_CLIENT_ID != ''
uses: azure/trusted-signing-action@v0.5.11
with:
endpoint: https://neu.codesigning.azure.net/
trusted-signing-account-name: ${{ secrets.AZURE_SIGNING_ACCOUNT }}
certificate-profile-name: ${{ secrets.AZURE_CERTIFICATE_PROFILE }}
files-folder: apps/desktop/dist
files-folder-filter: exe
file-digest: SHA256
timestamp-rfc3161: http://timestamp.acs.microsoft.com
timestamp-digest: SHA256
- name: Verify Windows executable is signed
if: env.AZURE_CLIENT_ID != ''
shell: pwsh
run: |
cd apps/desktop/dist
$exeFile = Get-ChildItem -Filter "*.exe" | Select-Object -First 1
if ($exeFile) {
Write-Host "Verifying signature on $($exeFile.Name)..."
$sig = Get-AuthenticodeSignature -FilePath $exeFile.FullName
if ($sig.Status -ne 'Valid') {
Write-Host "::error::Signature verification failed: $($sig.Status)"
Write-Host "::error::Status Message: $($sig.StatusMessage)"
exit 1
}
Write-Host "✅ Signature verified successfully"
Write-Host " Subject: $($sig.SignerCertificate.Subject)"
Write-Host " Issuer: $($sig.SignerCertificate.Issuer)"
Write-Host " Thumbprint: $($sig.SignerCertificate.Thumbprint)"
} else {
Write-Host "::error::No .exe file found to verify"
exit 1
}
- name: Regenerate checksums after signing
if: env.AZURE_CLIENT_ID != ''
shell: pwsh
run: |
$ErrorActionPreference = "Stop"
cd apps/desktop/dist
# Find the installer exe (electron-builder names it with "Setup" or just the app name)
# electron-builder produces one installer exe per build
$exeFiles = Get-ChildItem -Filter "*.exe"
if ($exeFiles.Count -eq 0) {
Write-Host "::error::No .exe files found in dist folder"
exit 1
}
Write-Host "Found $($exeFiles.Count) exe file(s): $($exeFiles.Name -join ', ')"
$ymlFile = "latest.yml"
if (-not (Test-Path $ymlFile)) {
Write-Host "::error::$ymlFile not found - cannot update checksums"
exit 1
}
$content = Get-Content $ymlFile -Raw
$originalContent = $content
# Process each exe file and update its hash in latest.yml
foreach ($exeFile in $exeFiles) {
Write-Host "Processing $($exeFile.Name)..."
# Compute SHA512 hash and convert to base64 (electron-builder format)
$bytes = [System.IO.File]::ReadAllBytes($exeFile.FullName)
$sha512 = [System.Security.Cryptography.SHA512]::Create()
$hashBytes = $sha512.ComputeHash($bytes)
$hash = [System.Convert]::ToBase64String($hashBytes)
$size = $exeFile.Length
Write-Host " Hash: $hash"
Write-Host " Size: $size"
}
# For electron-builder, latest.yml has a single file entry for the installer
# Update the sha512 and size for the primary exe (first one, typically the installer)
$primaryExe = $exeFiles | Select-Object -First 1
$bytes = [System.IO.File]::ReadAllBytes($primaryExe.FullName)
$sha512 = [System.Security.Cryptography.SHA512]::Create()
$hashBytes = $sha512.ComputeHash($bytes)
$hash = [System.Convert]::ToBase64String($hashBytes)
$size = $primaryExe.Length
# Update sha512 hash (base64 pattern: alphanumeric, +, /, =)
$content = $content -replace 'sha512: [A-Za-z0-9+/=]+', "sha512: $hash"
# Update size
$content = $content -replace 'size: \d+', "size: $size"
if ($content -eq $originalContent) {
Write-Host "::error::Checksum replacement failed - content unchanged. Check if latest.yml format has changed."
exit 1
}
Set-Content -Path $ymlFile -Value $content -NoNewline
Write-Host "✅ Updated $ymlFile with new base64 hash and size for $($primaryExe.Name)"
- name: Skip signing notice
if: env.AZURE_CLIENT_ID == ''
run: echo "::warning::Windows signing skipped - AZURE_CLIENT_ID not configured. The .exe will be unsigned."
- name: Upload artifacts
uses: actions/upload-artifact@v4
with:
name: windows-builds
path: |
apps/desktop/dist/*.exe
apps/desktop/dist/*.yml
apps/desktop/dist/*.blockmap
build-linux:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Setup Node.js and install dependencies
uses: ./.github/actions/setup-node-frontend
- name: Setup Flatpak and verification tools
run: |
sudo apt-get update
sudo apt-get install -y flatpak flatpak-builder squashfs-tools
flatpak remote-add --user --if-not-exists flathub https://flathub.org/repo/flathub.flatpakrepo
flatpak install -y --user flathub org.freedesktop.Platform//25.08 org.freedesktop.Sdk//25.08
flatpak install -y --user flathub org.electronjs.Electron2.BaseApp//25.08
- name: Build application
run: cd apps/desktop && npm run build
env:
SENTRY_DSN: ${{ secrets.SENTRY_DSN }}
SENTRY_TRACES_SAMPLE_RATE: ${{ secrets.SENTRY_TRACES_SAMPLE_RATE }}
SENTRY_PROFILES_SAMPLE_RATE: ${{ secrets.SENTRY_PROFILES_SAMPLE_RATE }}
- name: Package Linux
run: cd apps/desktop && npm run package:linux
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SENTRY_DSN: ${{ secrets.SENTRY_DSN }}
SENTRY_TRACES_SAMPLE_RATE: ${{ secrets.SENTRY_TRACES_SAMPLE_RATE }}
SENTRY_PROFILES_SAMPLE_RATE: ${{ secrets.SENTRY_PROFILES_SAMPLE_RATE }}
- name: Verify Linux packages
run: cd apps/desktop && npm run verify:linux
- name: Upload artifacts
uses: actions/upload-artifact@v4
with:
name: linux-builds
path: |
apps/desktop/dist/*.AppImage
apps/desktop/dist/*.deb
apps/desktop/dist/*.flatpak
apps/desktop/dist/*.yml
apps/desktop/dist/*.blockmap
# Finalize macOS notarization (runs in parallel with Windows/Linux builds)
finalize-notarization:
needs: [build-macos-intel, build-macos-arm64]
runs-on: macos-latest
steps:
- uses: actions/checkout@v4
- name: Download Intel DMG
uses: actions/download-artifact@v7
with:
name: macos-intel-builds
path: intel
- name: Download ARM64 DMG
uses: actions/download-artifact@v7
with:
name: macos-arm64-builds
path: arm64
- name: Wait for notarization and staple
uses: ./.github/actions/finalize-macos-notarization
with:
apple-id: ${{ secrets.APPLE_ID }}
apple-app-specific-password: ${{ secrets.APPLE_APP_SPECIFIC_PASSWORD }}
apple-team-id: ${{ secrets.APPLE_TEAM_ID }}
intel-notarization-id: ${{ needs.build-macos-intel.outputs.notarization_id }}
arm64-notarization-id: ${{ needs.build-macos-arm64.outputs.notarization_id }}
intel-dmg-file: ${{ needs.build-macos-intel.outputs.dmg_file }}
arm64-dmg-file: ${{ needs.build-macos-arm64.outputs.dmg_file }}
- name: Upload stapled Intel DMG
uses: actions/upload-artifact@v4
with:
name: macos-intel-stapled
path: intel/*.dmg
- name: Upload stapled ARM64 DMG
uses: actions/upload-artifact@v4
with:
name: macos-arm64-stapled
path: arm64/*.dmg
create-release:
needs: [build-macos-intel, build-macos-arm64, finalize-notarization, build-windows, build-linux]
runs-on: ubuntu-latest
permissions:
contents: write
steps:
- uses: actions/checkout@v4
with:
fetch-depth: 0
- name: Download all artifacts
uses: actions/download-artifact@v7
with:
path: dist
- name: Flatten binary artifacts
run: |
mkdir -p release-assets
# Copy stapled macOS DMGs (from finalize-notarization job)
# Validate that stapled DMGs exist before copying
if ! find dist/macos-intel-stapled dist/macos-arm64-stapled -type f -name "*.dmg" 2>/dev/null | grep -q .; then
echo "::warning::No stapled DMGs found. Using un-stapled DMGs from build artifacts."
find dist/macos-intel-builds dist/macos-arm64-builds -type f -name "*.dmg" -exec cp {} release-assets/ \; 2>/dev/null || true
else
find dist/macos-intel-stapled dist/macos-arm64-stapled -type f -name "*.dmg" -exec cp {} release-assets/ \; 2>/dev/null || true
fi
# Copy other macOS artifacts (zip, yml, blockmap) from original build
find dist/macos-intel-builds dist/macos-arm64-builds -type f \( -name "*.zip" -o -name "*.yml" -o -name "*.blockmap" \) -exec cp {} release-assets/ \; 2>/dev/null || true
# Copy Windows and Linux artifacts
find dist/windows-builds dist/linux-builds -type f \( -name "*.exe" -o -name "*.AppImage" -o -name "*.deb" -o -name "*.flatpak" -o -name "*.yml" -o -name "*.blockmap" \) -exec cp {} release-assets/ \; 2>/dev/null || true
# Validate that installer files exist
installer_count=$(find release-assets -type f \( -name "*.dmg" -o -name "*.zip" -o -name "*.exe" -o -name "*.AppImage" -o -name "*.deb" -o -name "*.flatpak" \) | wc -l)
if [ "$installer_count" -eq 0 ]; then
echo "::error::No installer artifacts found! Expected .dmg, .zip, .exe, .AppImage, .deb, or .flatpak files."
exit 1
fi
echo "Found $installer_count binary artifact(s):"
find release-assets -type f \( -name "*.dmg" -o -name "*.zip" -o -name "*.exe" -o -name "*.AppImage" -o -name "*.deb" -o -name "*.flatpak" \) -exec basename {} \;
# Merge macOS manifests from Intel and ARM64 builds
# See: https://github.com/electron-userland/electron-builder/issues/5592
- name: Merge macOS manifests
uses: ./.github/actions/merge-macos-manifests
with:
dist-path: dist
output-path: release-assets
copy-other-manifests: 'true'
- name: Validate manifests
run: |
# Validate that electron-updater manifest files are present (required for auto-updates)
yml_count=$(find release-assets -type f -name "*.yml" | wc -l)
if [ "$yml_count" -eq 0 ]; then
echo "::error::No update manifest (.yml) files found! Auto-update will not work."
exit 1
fi
echo "Found $yml_count manifest file(s):"
find release-assets -type f -name "*.yml" -exec basename {} \;
# Validate required manifests exist
missing=""
[ ! -f "release-assets/latest-mac.yml" ] && missing="$missing latest-mac.yml"
[ ! -f "release-assets/latest.yml" ] && missing="$missing latest.yml"
[ ! -f "release-assets/latest-linux.yml" ] && missing="$missing latest-linux.yml"
if [ -n "$missing" ]; then
echo "::error::Missing required manifests:$missing"
echo "::error::Auto-update will fail on affected platforms!"
exit 1
fi
echo ""
echo "All required manifests present:"
echo " - latest-mac.yml (macOS)"
echo " - latest.yml (Windows)"
echo " - latest-linux.yml (Linux)"
echo ""
echo "All release assets:"
ls -la release-assets/
- name: Generate checksums
run: |
cd release-assets
sha256sum ./* > checksums.sha256
cat checksums.sha256
- name: Dry run summary
if: ${{ github.event_name == 'workflow_dispatch' && inputs.dry_run == true }}
run: |
echo "## Dry Run Complete" >> $GITHUB_STEP_SUMMARY
echo "Build artifacts created successfully:" >> $GITHUB_STEP_SUMMARY
echo "\`\`\`" >> $GITHUB_STEP_SUMMARY
ls -la release-assets/ >> $GITHUB_STEP_SUMMARY
echo "\`\`\`" >> $GITHUB_STEP_SUMMARY
echo "### Checksums" >> $GITHUB_STEP_SUMMARY
echo "\`\`\`" >> $GITHUB_STEP_SUMMARY
cat release-assets/checksums.sha256 >> $GITHUB_STEP_SUMMARY
echo "\`\`\`" >> $GITHUB_STEP_SUMMARY
- name: Extract changelog from CHANGELOG.md
if: ${{ github.event_name == 'push' }}
id: changelog
run: |
# Extract version from tag (v2.7.2 -> 2.7.2)
VERSION=${GITHUB_REF_NAME#v}
CHANGELOG_FILE="CHANGELOG.md"
echo "📋 Extracting release notes for version $VERSION from CHANGELOG.md..."
if [ ! -f "$CHANGELOG_FILE" ]; then
echo "::warning::CHANGELOG.md not found, using minimal release notes"
echo "body=Release v$VERSION" >> $GITHUB_OUTPUT
exit 0
fi
# Extract changelog section for this version
# Looks for "## X.Y.Z" header and captures until next "## " or "---"
CHANGELOG_CONTENT=$(awk -v ver="$VERSION" '
BEGIN { found=0; content="" }
/^## / {
if (found) exit
# Match version at start of header (e.g., "## 2.7.3 -" or "## 2.7.3")
if ($2 == ver || $2 ~ "^"ver"[[:space:]]*-") {
found=1
next
}
}
/^---$/ { if (found) exit }
found { content = content $0 "\n" }
END {
if (!found) {
print "NOT_FOUND"
exit 0
}
# Trim leading/trailing whitespace
gsub(/^[[:space:]]+|[[:space:]]+$/, "", content)
print content
}
' "$CHANGELOG_FILE")
if [ "$CHANGELOG_CONTENT" = "NOT_FOUND" ] || [ -z "$CHANGELOG_CONTENT" ]; then
echo "::warning::Version $VERSION not found in CHANGELOG.md, using minimal release notes"
REPO="${{ github.repository }}"
CHANGELOG_CONTENT="Release v$VERSION"$'\n\n'"See [CHANGELOG.md](https://github.com/${REPO}/blob/main/CHANGELOG.md) for details."
fi
echo "✅ Extracted changelog content"
# Save to file first (more reliable for multiline)
echo "$CHANGELOG_CONTENT" > changelog-body.md
# Use file-based output for multiline content
{
echo "body<> $GITHUB_OUTPUT
- name: Create Release
if: ${{ github.event_name == 'push' }}
uses: softprops/action-gh-release@v2
with:
body: |
${{ steps.changelog.outputs.body }}
---
**Full Changelog**: https://github.com/${{ github.repository }}/blob/main/CHANGELOG.md
_VirusTotal scan results will be added automatically after release._
files: release-assets/*
draft: false
prerelease: ${{ contains(github.ref, 'beta') || contains(github.ref, 'alpha') }}
env:
GITHUB_TOKEN: ${{ secrets.PAT_TOKEN || secrets.GITHUB_TOKEN }}
# Update README with new version after successful release
update-readme:
needs: [create-release]
runs-on: ubuntu-latest
# Only update README on actual releases (tag push), not dry runs
if: ${{ github.event_name == 'push' }}
permissions:
contents: write
steps:
- uses: actions/checkout@v4
with:
ref: main
# Use PAT_TOKEN to bypass branch protection rules on main
token: ${{ secrets.PAT_TOKEN }}
- name: Extract version and detect release type
id: version
run: |
# Extract version from tag (v2.7.2 -> 2.7.2)
VERSION=${GITHUB_REF_NAME#v}
echo "version=$VERSION" >> $GITHUB_OUTPUT
# Detect if this is a prerelease (contains - after version, e.g., 2.7.2-beta.10)
if [[ "$VERSION" == *-* ]]; then
echo "is_prerelease=true" >> $GITHUB_OUTPUT
echo "Detected PRERELEASE: $VERSION"
else
echo "is_prerelease=false" >> $GITHUB_OUTPUT
echo "Detected STABLE release: $VERSION"
fi
- name: Update README.md
run: |
VERSION="${{ steps.version.outputs.version }}"
IS_PRERELEASE="${{ steps.version.outputs.is_prerelease }}"
if [ "$IS_PRERELEASE" = "true" ]; then
node scripts/update-readme.mjs "$VERSION" --prerelease
else
node scripts/update-readme.mjs "$VERSION"
fi
echo "--- Verifying update ---"
grep -E "(stable-|beta-|version-)[0-9]" README.md | head -5
- name: Commit and push README update
run: |
git config user.name "github-actions[bot]"
git config user.email "github-actions[bot]@users.noreply.github.com"
# Check if there are changes to commit
if git diff --quiet README.md; then
echo "No changes to README.md, skipping commit"
exit 0
fi
git add README.md
git commit -m "docs: update README to v${{ steps.version.outputs.version }} [skip ci]"
git push origin main
================================================
FILE: .github/workflows/stale.yml
================================================
name: Stale Issues
on:
schedule:
- cron: '0 0 * * 0' # Every Sunday
workflow_dispatch:
jobs:
stale:
runs-on: ubuntu-latest
permissions:
issues: write
steps:
- uses: actions/stale@v9
with:
stale-issue-message: |
This issue has been inactive for 60 days. It will be closed in 14 days if there's no activity.
- If this is still relevant, please comment or update the issue
- If you're working on this, add the `in-progress` label
close-issue-message: 'Closed due to inactivity. Feel free to reopen if still relevant.'
stale-issue-label: 'stale'
days-before-stale: 60
days-before-close: 14
exempt-issue-labels: 'priority/critical,priority/high,in-progress,blocked'
================================================
FILE: .github/workflows/test-azure-auth.yml
================================================
name: Test Azure Auth
on:
workflow_dispatch:
jobs:
test-auth:
runs-on: windows-latest
permissions:
id-token: write
contents: read
steps:
- name: Azure Login (OIDC)
uses: azure/login@v2
with:
client-id: ${{ secrets.AZURE_CLIENT_ID }}
tenant-id: ${{ secrets.AZURE_TENANT_ID }}
subscription-id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
- name: Success
run: echo "Azure authentication successful!"
================================================
FILE: .github/workflows/virustotal-scan.yml
================================================
name: VirusTotal Scan
# Runs AFTER release is published to avoid blocking release creation
# VirusTotal scans can take 5+ minutes per file, which delays releases
on:
release:
types: [published]
workflow_dispatch:
inputs:
tag:
description: 'Release tag to scan (e.g., v2.8.0)'
required: true
type: string
# Prevent TOCTOU race condition when updating release notes
# If two runs target the same tag, queue them instead of running in parallel
concurrency:
group: virustotal-${{ github.event.inputs.tag || github.event.release.tag_name }}
cancel-in-progress: false
jobs:
scan:
name: Scan release assets
runs-on: ubuntu-latest
permissions:
contents: write # Required to update release notes
steps:
- name: Determine release tag
id: tag
run: |
if [ "${{ github.event_name }}" = "workflow_dispatch" ]; then
echo "tag=${{ github.event.inputs.tag }}" >> $GITHUB_OUTPUT
else
echo "tag=${{ github.event.release.tag_name }}" >> $GITHUB_OUTPUT
fi
- name: Check for API key
id: check-key
env:
VT_KEY: ${{ secrets.VIRUSTOTAL_API_KEY }}
run: |
if [ -z "$VT_KEY" ]; then
echo "::warning::VIRUSTOTAL_API_KEY not configured, skipping scan"
echo "has_key=false" >> $GITHUB_OUTPUT
else
echo "has_key=true" >> $GITHUB_OUTPUT
fi
- name: Download release assets
if: steps.check-key.outputs.has_key == 'true'
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
run: |
TAG="${{ steps.tag.outputs.tag }}"
echo "Downloading assets for release $TAG..."
mkdir -p release-assets
# First verify the release exists
if ! gh release view "$TAG" --repo "${{ github.repository }}" >/dev/null 2>&1; then
echo "::error::Release $TAG not found"
exit 1
fi
# Download assets, distinguishing between "no matching assets" and real errors
set +e
gh release download "$TAG" \
--repo "${{ github.repository }}" \
--pattern "*.exe" \
--pattern "*.dmg" \
--pattern "*.AppImage" \
--pattern "*.deb" \
--pattern "*.flatpak" \
--dir release-assets 2>&1
exit_code=$?
set -e
if [ $exit_code -ne 0 ]; then
# Check if it's just "no assets matched" vs a real error
asset_count=$(gh release view "$TAG" --repo "${{ github.repository }}" --json assets -q '.assets | length')
if [ "$asset_count" -eq 0 ]; then
echo "Release has no assets yet (this is OK for new releases)"
else
# Check if any scannable assets exist that should have been downloaded
scannable_assets=$(gh release view "$TAG" --repo "${{ github.repository }}" --json assets \
-q '.assets[].name | select(test("\\.(exe|dmg|AppImage|deb|flatpak)$"))' | wc -l)
if [ "$scannable_assets" -gt 0 ]; then
echo "::error::Download failed - $scannable_assets scannable asset(s) exist but download failed"
exit 1
fi
echo "No assets matched the patterns (exe, dmg, AppImage, deb, flatpak)"
fi
fi
echo "Downloaded assets:"
ls -la release-assets/ || echo "No assets found"
- name: Scan with VirusTotal
if: steps.check-key.outputs.has_key == 'true'
id: virustotal
env:
VT_API_KEY: ${{ secrets.VIRUSTOTAL_API_KEY }}
run: |
echo "## VirusTotal Scan Results" > vt_results.md
echo "" >> vt_results.md
# Check if there are any files to scan
shopt -s nullglob
files=(release-assets/*.{exe,dmg,AppImage,deb,flatpak})
if [ ${#files[@]} -eq 0 ]; then
echo "No scannable files found in release assets"
echo "- No executable files found in release" >> vt_results.md
echo "vt_results<> $GITHUB_OUTPUT
cat vt_results.md >> $GITHUB_OUTPUT
echo "EOF" >> $GITHUB_OUTPUT
exit 0
fi
for file in "${files[@]}"; do
[ -f "$file" ] || continue
filename=$(basename "$file")
filesize=$(stat -c%s "$file" 2>/dev/null || stat -f%z "$file")
echo "Scanning $filename (${filesize} bytes)..."
# VirusTotal requires special upload URL for files > 32MB
LARGE_FILE_THRESHOLD=33554432 # 32 MB in bytes
if [ "$filesize" -gt "$LARGE_FILE_THRESHOLD" ]; then
echo " Large file detected, requesting upload URL..."
upload_http_response=$(curl -s -w '\n%{http_code}' --request GET \
--url "https://www.virustotal.com/api/v3/files/upload_url" \
--header "x-apikey: $VT_API_KEY")
upload_http_code=$(echo "$upload_http_response" | tail -1)
upload_url_response=$(echo "$upload_http_response" | sed '$d')
if [ "$upload_http_code" != "200" ]; then
echo "::warning::Failed to get upload URL for large file $filename (HTTP $upload_http_code)"
echo "- $filename - ⚠️ Upload failed (large file, HTTP $upload_http_code)" >> vt_results.md
continue
fi
upload_url=$(echo "$upload_url_response" | jq -r '.data // empty')
if [ -z "$upload_url" ]; then
echo "::warning::Failed to get upload URL for large file $filename"
echo "Response: $upload_url_response"
echo "- $filename - ⚠️ Upload failed (large file)" >> vt_results.md
continue
fi
api_url="$upload_url"
else
api_url="https://www.virustotal.com/api/v3/files"
fi
# Upload file to VirusTotal (capture HTTP status code)
http_response=$(curl -s -w '\n%{http_code}' --request POST \
--url "$api_url" \
--header "x-apikey: $VT_API_KEY" \
--form "file=@$file")
http_code=$(echo "$http_response" | tail -1)
response=$(echo "$http_response" | sed '$d')
# Check HTTP status code first
if [ "$http_code" != "200" ]; then
echo "::warning::VirusTotal returned HTTP $http_code for $filename"
if [ "$http_code" = "429" ]; then
echo "- $filename - ⚠️ Scan failed (rate limited)" >> vt_results.md
elif [ "$http_code" = "403" ]; then
echo "- $filename - ⚠️ Scan failed (forbidden - check API key)" >> vt_results.md
else
echo "- $filename - ⚠️ Scan failed (HTTP $http_code)" >> vt_results.md
fi
continue
fi
# Check if response is valid JSON before parsing
if ! echo "$response" | jq -e . >/dev/null 2>&1; then
echo "::warning::VirusTotal returned invalid JSON for $filename"
echo "Response (first 500 chars): ${response:0:500}"
echo "- $filename - ⚠️ Scan failed (invalid response)" >> vt_results.md
continue
fi
# Check for API error response
error_code=$(echo "$response" | jq -r '.error.code // empty')
if [ -n "$error_code" ]; then
error_msg=$(echo "$response" | jq -r '.error.message // "Unknown error"')
echo "::warning::VirusTotal API error for $filename: $error_code - $error_msg"
echo "- $filename - ⚠️ Scan failed ($error_code)" >> vt_results.md
continue
fi
# Extract analysis ID
analysis_id=$(echo "$response" | jq -r '.data.id // empty')
if [ -z "$analysis_id" ]; then
echo "::warning::Failed to upload $filename to VirusTotal"
echo "Response: $response"
echo "- $filename - ⚠️ Upload failed" >> vt_results.md
continue
fi
echo "Uploaded $filename, analysis ID: $analysis_id"
# Wait for analysis to complete (max 5 minutes per file)
analysis=""
for i in {1..30}; do
sleep 10
analysis_http_response=$(curl -s -w '\n%{http_code}' --request GET \
--url "https://www.virustotal.com/api/v3/analyses/$analysis_id" \
--header "x-apikey: $VT_API_KEY")
analysis_http_code=$(echo "$analysis_http_response" | tail -1)
analysis=$(echo "$analysis_http_response" | sed '$d')
# Check HTTP status code
if [ "$analysis_http_code" != "200" ]; then
echo " Warning: HTTP $analysis_http_code on attempt $i, retrying..."
if [ "$analysis_http_code" = "429" ]; then
echo " Rate limited, waiting longer..."
sleep 30
fi
continue
fi
# Validate JSON response
if ! echo "$analysis" | jq -e . >/dev/null 2>&1; then
echo " Warning: Invalid JSON response on attempt $i, retrying..."
continue
fi
status=$(echo "$analysis" | jq -r '.data.attributes.status // "unknown"')
echo " Status: $status (attempt $i/30)"
if [ "$status" = "completed" ]; then
break
fi
done
# Handle analysis timeout - if loop completed without status=completed
if [ "$status" != "completed" ]; then
echo "::warning::Analysis timed out for $filename (status: $status after 5 minutes)"
file_hash=$(sha256sum "$file" | cut -d' ' -f1)
echo "- [$filename](https://www.virustotal.com/gui/file/$file_hash) - ⚠️ Analysis timed out" >> vt_results.md
continue
fi
# Final validation that we have valid analysis data
if ! echo "$analysis" | jq -e '.data.attributes.stats' >/dev/null 2>&1; then
echo "::warning::Could not get complete analysis for $filename, using local hash"
file_hash=$(sha256sum "$file" | cut -d' ' -f1)
echo "- [$filename](https://www.virustotal.com/gui/file/$file_hash) - ⚠️ Analysis incomplete" >> vt_results.md
continue
fi
# Get file hash for permanent URL
file_hash=$(echo "$analysis" | jq -r '.meta.file_info.sha256 // empty')
if [ -z "$file_hash" ]; then
# Fallback: calculate hash locally
file_hash=$(sha256sum "$file" | cut -d' ' -f1)
fi
# Get detection stats
malicious=$(echo "$analysis" | jq -r '.data.attributes.stats.malicious // 0')
suspicious=$(echo "$analysis" | jq -r '.data.attributes.stats.suspicious // 0')
undetected=$(echo "$analysis" | jq -r '.data.attributes.stats.undetected // 0')
vt_url="https://www.virustotal.com/gui/file/$file_hash"
if [ "$malicious" -gt 0 ] || [ "$suspicious" -gt 0 ]; then
echo "::warning::$filename has $malicious malicious and $suspicious suspicious detections (likely false positives)"
echo "- [$filename]($vt_url) - ⚠️ **$malicious malicious, $suspicious suspicious** detections (review recommended)" >> vt_results.md
else
echo "$filename is clean ($undetected engines, 0 detections)"
echo "- [$filename]($vt_url) - ✅ Clean ($undetected engines, 0 detections)" >> vt_results.md
fi
done
echo "" >> vt_results.md
# Save results for next step
cat vt_results.md
echo "vt_results<> $GITHUB_OUTPUT
cat vt_results.md >> $GITHUB_OUTPUT
echo "EOF" >> $GITHUB_OUTPUT
- name: Update release notes with scan results
if: steps.check-key.outputs.has_key == 'true' && steps.virustotal.outputs.vt_results != ''
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
run: |
TAG="${{ steps.tag.outputs.tag }}"
# Get current release body with error checking
if ! current_body=$(gh release view "$TAG" --repo "${{ github.repository }}" --json body -q '.body'); then
echo "::error::Failed to fetch current release body for $TAG"
exit 1
fi
# Additional safeguard for empty body
if [ -z "$current_body" ]; then
echo "::warning::Release body is empty, this may indicate a problem"
fi
# Check if VirusTotal results already exist in the body
if echo "$current_body" | grep -q "## VirusTotal Scan Results"; then
echo "VirusTotal results already in release notes, skipping update"
exit 0
fi
# Use file-based approach to avoid shell expansion issues
# First, write current body to file
echo "$current_body" > release-body.md
# Remove placeholder text if present (portable sed approach)
sed '/_VirusTotal scan results will be added automatically after release\./d' release-body.md > release-body.tmp && mv release-body.tmp release-body.md
# Append separator and VT results
echo "" >> release-body.md
echo "---" >> release-body.md
echo "" >> release-body.md
cat vt_results.md >> release-body.md
# Update release using --notes-file to avoid shell quoting issues
gh release edit "$TAG" \
--repo "${{ github.repository }}" \
--notes-file release-body.md
echo "✅ Updated release notes with VirusTotal scan results"
- name: Summary
if: always()
run: |
echo "## VirusTotal Scan Summary" >> $GITHUB_STEP_SUMMARY
echo "" >> $GITHUB_STEP_SUMMARY
echo "**Release:** ${{ steps.tag.outputs.tag }}" >> $GITHUB_STEP_SUMMARY
echo "" >> $GITHUB_STEP_SUMMARY
if [ "${{ steps.check-key.outputs.has_key }}" = "false" ]; then
echo "⚠️ Scan skipped: VIRUSTOTAL_API_KEY not configured" >> $GITHUB_STEP_SUMMARY
elif [ -f vt_results.md ]; then
cat vt_results.md >> $GITHUB_STEP_SUMMARY
else
echo "No scan results available" >> $GITHUB_STEP_SUMMARY
fi
================================================
FILE: .github/workflows/welcome.yml
================================================
name: Welcome
on:
pull_request_target:
types: [opened]
issues:
types: [opened]
jobs:
welcome:
runs-on: ubuntu-latest
permissions:
issues: write
pull-requests: write
steps:
- uses: actions/first-interaction@v1
with:
repo-token: ${{ secrets.GITHUB_TOKEN }}
issue-message: |
👋 Thanks for opening your first issue!
A maintainer will triage this soon. In the meantime:
- Make sure you've provided all the requested info
- Join our [Discord](https://discord.gg/QhRnz9m5HE) for faster help
pr-message: |
🎉 Thanks for your first PR!
A maintainer will review it soon. Please make sure:
- Your branch is synced with `develop`
- CI checks pass
- You've followed our [contribution guide](https://github.com/AndyMik90/Auto-Claude/blob/develop/CONTRIBUTING.md)
Welcome to the Auto Claude community!
================================================
FILE: .gitignore
================================================
# ===========================
# OS Files
# ===========================
.DS_Store
.DS_Store?
._*
Thumbs.db
ehthumbs.db
Desktop.ini
nul
# ===========================
# Security - Environment & Secrets
# ===========================
.env
.env.*
!.env.example
/config.json
*.pem
*.key
*.crt
*.p12
*.pfx
.secrets
secrets/
credentials/
# ===========================
# IDE & Editors
# ===========================
.idea/
.vscode/
*.swp
*.swo
*.sublime-workspace
*.sublime-project
.project
.classpath
.settings/
# ===========================
# Logs
# ===========================
logs/
*.log
npm-debug.log*
yarn-debug.log*
yarn-error.log*
lerna-debug.log*
# ===========================
# Git Worktrees (parallel builds)
# ===========================
.worktrees/
# ===========================
# Auto Claude Generated
# ===========================
.auto-claude/
.planning/
.planning-archive/
.auto-build-security.json
.auto-claude-security.json
.auto-claude-status
.claude_settings.json
.update-metadata.json
# ===========================
# Node.js (apps/desktop)
# ===========================
node_modules
apps/desktop/node_modules
.npm
.yarn/
.pnp.*
# Build output
dist/
out/
*.tsbuildinfo
# Cache
.cache/
.parcel-cache/
.turbo/
.eslintcache
.prettiercache
# ===========================
# Electron
# ===========================
apps/desktop/dist/
apps/desktop/out/
*.asar
*.blockmap
*.snap
*.deb
*.rpm
*.AppImage
*.dmg
*.exe
*.msi
# ===========================
# Testing
# ===========================
coverage/
.nyc_output/
test-results/
playwright-report/
playwright/.cache/
# ===========================
# Python
# ===========================
__pycache__/
*.pyc
# ===========================
# Misc
# ===========================
*.local
*.bak
*.tmp
*.temp
# Development
dev/
_bmad/
_bmad-output/
.claude/
/docs
OPUS_ANALYSIS_AND_IDEAS.md
/.github/agents
# Auto Claude generated files
.security-key
/shared_docs
logs/security/
Agents.md
================================================
FILE: .husky/commit-msg
================================================
#!/bin/sh
# Commit message validation
# Enforces conventional commit format: type(scope)!?: description
#
# Valid types: feat, fix, docs, style, refactor, perf, test, build, ci, chore, revert
# Scope allows: letters, numbers, hyphens, underscores, slashes, dots
# Optional ! for breaking changes
# Examples:
# feat(tasks): add drag and drop support
# fix(terminal): resolve scroll position issue
# feat!: breaking change without scope
# feat(api)!: breaking change with scope
# docs: update README with setup instructions
# chore: update dependencies
commit_msg_file=$1
commit_msg=$(cat "$commit_msg_file")
# Regex for conventional commits
# Format: type(optional-scope)!?: description
# Scope allows: letters, numbers, hyphens, underscores, slashes, dots (consistent with GitHub workflow)
# Optional ! for breaking changes: feat!: or feat(scope)!:
pattern="^(feat|fix|docs|style|refactor|perf|test|build|ci|chore|revert)(\([a-zA-Z0-9_/.-]+\))?!?: .{1,100}$"
# Allow merge commits
if echo "$commit_msg" | grep -qE "^Merge "; then
exit 0
fi
# Allow revert commits
if echo "$commit_msg" | grep -qE "^Revert "; then
exit 0
fi
# Check first line against pattern
first_line=$(echo "$commit_msg" | head -n 1)
if ! echo "$first_line" | grep -qE "$pattern"; then
echo ""
echo "ERROR: Invalid commit message format!"
echo ""
echo "Your message: $first_line"
echo ""
echo "Expected format: type(scope)!?: description"
echo ""
echo "Valid types:"
echo " feat - A new feature"
echo " fix - A bug fix"
echo " docs - Documentation changes"
echo " style - Code style changes (formatting, semicolons, etc.)"
echo " refactor - Code refactoring (no feature/fix)"
echo " perf - Performance improvements"
echo " test - Adding or updating tests"
echo " build - Build system or dependencies"
echo " ci - CI/CD configuration"
echo " chore - Other changes (maintenance)"
echo " revert - Reverting a previous commit"
echo ""
echo "Examples:"
echo " feat(tasks): add drag and drop support"
echo " fix(terminal): resolve scroll position issue"
echo " feat!: breaking change without scope"
echo " feat(api)!: breaking change with scope"
echo " docs: update README"
echo " chore: update dependencies"
echo ""
exit 1
fi
# Check description length (max 100 chars for first line)
if [ ${#first_line} -gt 100 ]; then
echo ""
echo "ERROR: Commit message first line is too long!"
echo "Maximum: 100 characters"
echo "Current: ${#first_line} characters"
echo ""
exit 1
fi
exit 0
================================================
FILE: .husky/pre-commit
================================================
#!/bin/sh
# =============================================================================
# GIT WORKTREE ENVIRONMENT CLEANUP
# =============================================================================
# Git automatically sets GIT_DIR (and CWD to the working tree root) before
# running hooks -- even in worktrees. We do NOT need to manually parse .git
# files or export GIT_DIR/GIT_WORK_TREE.
#
# However, external tools (IDEs, agents, parent shells) may leave stale
# GIT_DIR/GIT_WORK_TREE values in the environment. If these point to a
# different repo or worktree, git commands in this hook would target the
# wrong repository. Unsetting them lets git re-resolve the correct values
# from the working directory.
# =============================================================================
unset GIT_DIR
unset GIT_WORK_TREE
# =============================================================================
# SAFETY CHECK: Detect and fix corrupted core.worktree configuration
# =============================================================================
# core.worktree lives in the SHARED .git/config (not per-worktree). If any
# process accidentally writes it (e.g., running `git init` with a leaked
# GIT_WORK_TREE), ALL repos and worktrees see the wrong working tree root,
# causing files from one worktree to "leak" into others.
#
# This check runs from both main repo and worktree contexts since the config
# is shared and corruption can happen from either.
CORE_WORKTREE=$(git config --get core.worktree 2>/dev/null || true)
if [ -n "$CORE_WORKTREE" ]; then
echo "Warning: Detected corrupted core.worktree setting ('$CORE_WORKTREE'), removing it..."
if ! git config --unset core.worktree 2>/dev/null; then
echo "Warning: Failed to unset core.worktree. Manual intervention may be needed."
fi
fi
echo "Running pre-commit checks..."
# =============================================================================
# VERSION SYNC - Keep all version references in sync with root package.json
# =============================================================================
# Check if package.json is staged
if git diff --cached --name-only | grep -q "^package.json$"; then
echo "package.json changed, syncing version to all files..."
# Extract version from root package.json
VERSION=$(node -p "require('./package.json').version")
if [ -n "$VERSION" ]; then
# Sync to apps/desktop/package.json
if [ -f "apps/desktop/package.json" ]; then
node -e "
const fs = require('fs');
const pkg = require('./apps/desktop/package.json');
if (pkg.version !== '$VERSION') {
pkg.version = '$VERSION';
fs.writeFileSync('./apps/desktop/package.json', JSON.stringify(pkg, null, 2) + '\n');
console.log(' Updated apps/desktop/package.json to $VERSION');
}
"
git add apps/desktop/package.json
fi
# Sync to README.md - section-aware updates (stable vs beta)
if [ -f "README.md" ]; then
# Escape hyphens for shields.io badge format (shields.io uses -- for literal hyphens)
ESCAPED_VERSION=$(echo "$VERSION" | sed 's/-/--/g')
# Detect if this is a prerelease (contains - after base version, e.g., 2.7.2-beta.10)
if echo "$VERSION" | grep -q '-'; then
# PRERELEASE: Update only beta sections
echo " Detected PRERELEASE version: $VERSION"
# Update beta version badge (orange)
sed -i.bak "s/beta-[0-9]*\.[0-9]*\.[0-9]*\(--[a-z]*\.[0-9]*\)*-orange/beta-$ESCAPED_VERSION-orange/g" README.md
# Update beta version badge link (within BETA_VERSION_BADGE section)
sed -i.bak '//,//s|releases/tag/v[0-9.a-z-]*)|releases/tag/v'"$VERSION"')|g' README.md
# Update beta download links (within BETA_DOWNLOADS section only)
# Use perl for cross-platform compatibility (BSD sed doesn't support {block} syntax)
for SUFFIX in "win32-x64.exe" "darwin-arm64.dmg" "darwin-x64.dmg" "linux-x86_64.AppImage" "linux-amd64.deb" "linux-x86_64.flatpak"; do
perl -i -pe 'if (// .. //) { s|Auto-Claude-[0-9.a-z-]*-'"$SUFFIX"'\]\(https://github.com/AndyMik90/Auto-Claude/releases/download/v[^/]*/Auto-Claude-[^)]*-'"$SUFFIX"'\)|Auto-Claude-'"$VERSION"'-'"$SUFFIX"'](https://github.com/AndyMik90/Auto-Claude/releases/download/v'"$VERSION"'/Auto-Claude-'"$VERSION"'-'"$SUFFIX"')|g }' README.md
done
else
# STABLE: Update stable sections and top badge
echo " Detected STABLE version: $VERSION"
# Update top version badge (blue) - within TOP_VERSION_BADGE section
sed -i.bak '//,//s/version-[0-9]*\.[0-9]*\.[0-9]*\(--[a-z]*\.[0-9]*\)*-blue/version-'"$ESCAPED_VERSION"'-blue/g' README.md
sed -i.bak '//,//s|releases/tag/v[0-9.a-z-]*)|releases/tag/v'"$VERSION"')|g' README.md
# Update stable version badge (blue) - within STABLE_VERSION_BADGE section
sed -i.bak '//,//s/stable-[0-9]*\.[0-9]*\.[0-9]*\(--[a-z]*\.[0-9]*\)*-blue/stable-'"$ESCAPED_VERSION"'-blue/g' README.md
sed -i.bak '//,//s|releases/tag/v[0-9.a-z-]*)|releases/tag/v'"$VERSION"')|g' README.md
# Update stable download links (within STABLE_DOWNLOADS section only)
# Use perl for cross-platform compatibility (BSD sed doesn't support {block} syntax)
for SUFFIX in "win32-x64.exe" "darwin-arm64.dmg" "darwin-x64.dmg" "linux-x86_64.AppImage" "linux-amd64.deb"; do
perl -i -pe 'if (// .. //) { s|Auto-Claude-[0-9.a-z-]*-'"$SUFFIX"'\]\(https://github.com/AndyMik90/Auto-Claude/releases/download/v[^/]*/Auto-Claude-[^)]*-'"$SUFFIX"'\)|Auto-Claude-'"$VERSION"'-'"$SUFFIX"'](https://github.com/AndyMik90/Auto-Claude/releases/download/v'"$VERSION"'/Auto-Claude-'"$VERSION"'-'"$SUFFIX"')|g }' README.md
done
fi
rm -f README.md.bak
git add README.md
echo " Updated README.md to $VERSION"
fi
echo "Version sync complete: $VERSION"
fi
fi
# =============================================================================
# DESKTOP APP CHECKS (TypeScript/React)
# =============================================================================
# Check if there are staged files in apps/desktop
if git diff --cached --name-only | grep -q "^apps/desktop/"; then
echo "Desktop app changes detected, running checks..."
# Detect if we're in a worktree and check if dependencies are available
IS_WORKTREE=false
DEPS_AVAILABLE=true
if [ -f ".git" ]; then
# .git is a file (not directory) in worktrees
IS_WORKTREE=true
echo "Detected git worktree environment"
fi
# Check if node_modules has actual dependencies by looking for a known package
# @lydell/node-pty is required for terminal code and is a common source of TypeScript errors
# It may be in root node_modules (hoisted) or apps/desktop/node_modules
# Note: -d follows symlinks automatically, so this works for both real dirs and symlinks
# We check for the full package path (@lydell/node-pty) rather than just the namespace
# for precise detection - ensures the actual dependency is installed, not just any @lydell package
if [ ! -d "node_modules/@lydell/node-pty" ] && [ ! -d "apps/desktop/node_modules/@lydell/node-pty" ]; then
DEPS_AVAILABLE=false
fi
if [ "$DEPS_AVAILABLE" = false ]; then
if [ "$IS_WORKTREE" = true ]; then
# In worktree without dependencies - warn but allow commit
echo ""
echo "⚠️ WARNING: node_modules not available in this worktree."
echo " TypeScript and lint checks will be skipped."
echo " This is expected for auto-claude worktrees."
echo " Full validation will occur when PR is created/merged."
echo ""
else
# Main repo without dependencies - this is an error
echo "Error: node_modules not found. Run 'npm install' first."
exit 1
fi
else
# Dependencies available - run full frontend checks
# Use subshell to isolate directory changes and prevent worktree corruption
(
cd apps/desktop
# Run lint-staged (handles staged .ts/.tsx files)
npm exec lint-staged
if [ $? -ne 0 ]; then
echo "lint-staged failed. Please fix linting errors before committing."
exit 1
fi
# Run TypeScript type check (incremental: only rechecks changed files after first run)
echo "Running type check..."
NODE_OPTIONS="--max-old-space-size=2048" npm run typecheck
if [ $? -ne 0 ]; then
echo "Type check failed. Please fix TypeScript errors before committing."
exit 1
fi
# Check for vulnerabilities (only critical severity)
# Note: Using critical level because electron-builder has a known high-severity
# tar vulnerability (CVE-2026-23745) that cannot be fixed until electron-builder
# releases an update with tar@7.x support. This is a build dependency, not runtime.
echo "Checking for vulnerabilities..."
npm audit --audit-level=critical
if [ $? -ne 0 ]; then
echo "Critical severity vulnerabilities found. Run 'npm audit fix' to resolve."
exit 1
fi
)
if [ $? -ne 0 ]; then
exit 1
fi
echo "Frontend checks passed!"
fi
fi
echo "All pre-commit checks passed!"
================================================
FILE: .pre-commit-config.yaml
================================================
repos:
# Version sync - propagate root package.json version to all files
# NOTE: Skip in worktrees - version sync modifies root files which don't exist in worktree
- repo: local
hooks:
- id: version-sync
name: Version Sync
entry: bash
args:
- -c
- |
# Skip in worktrees - .git is a file pointing to main repo, not a directory
# Version sync modifies root-level files that may not exist in worktree context
if [ -f ".git" ]; then
echo "Skipping version-sync in worktree (root files not accessible)"
exit 0
fi
VERSION=$(node -p "require('./package.json').version")
if [ -n "$VERSION" ]; then
# Sync to apps/desktop/package.json
node -e "
const fs = require('fs');
const p = require('./apps/desktop/package.json');
const v = process.argv[1];
if (p.version !== v) {
p.version = v;
fs.writeFileSync('./apps/desktop/package.json', JSON.stringify(p, null, 2) + '\n');
}
" "$VERSION"
# Sync to README.md - section-aware updates (stable vs beta)
ESCAPED_VERSION=$(echo "$VERSION" | sed 's/-/--/g')
# Detect if this is a prerelease (contains - after base version)
if echo "$VERSION" | grep -q '-'; then
# PRERELEASE: Update only beta sections
echo " Detected PRERELEASE version: $VERSION"
# Update beta version badge (orange)
sed -i.bak "s/beta-[0-9]*\.[0-9]*\.[0-9]*\(--[a-z]*\.[0-9]*\)*-orange/beta-$ESCAPED_VERSION-orange/g" README.md
# Update beta version badge link
sed -i.bak '//,//s|releases/tag/v[0-9.a-z-]*)|releases/tag/v'"$VERSION"')|g' README.md
# Update beta download links (within BETA_DOWNLOADS section only)
for SUFFIX in "win32-x64.exe" "darwin-arm64.dmg" "darwin-x64.dmg" "linux-x86_64.AppImage" "linux-amd64.deb" "linux-x86_64.flatpak"; do
sed -i.bak '//,//{s|Auto-Claude-[0-9.a-z-]*-'"$SUFFIX"'](https://github.com/AndyMik90/Auto-Claude/releases/download/v[^/]*/Auto-Claude-[^)]*-'"$SUFFIX"')|Auto-Claude-'"$VERSION"'-'"$SUFFIX"'](https://github.com/AndyMik90/Auto-Claude/releases/download/v'"$VERSION"'/Auto-Claude-'"$VERSION"'-'"$SUFFIX"')|g}' README.md
done
else
# STABLE: Update stable sections and top badge
echo " Detected STABLE version: $VERSION"
# Update top version badge (blue)
sed -i.bak '//,//s/version-[0-9]*\.[0-9]*\.[0-9]*\(--[a-z]*\.[0-9]*\)*-blue/version-'"$ESCAPED_VERSION"'-blue/g' README.md
sed -i.bak '//,//s|releases/tag/v[0-9.a-z-]*)|releases/tag/v'"$VERSION"')|g' README.md
# Update stable version badge (blue)
sed -i.bak '//,//s/stable-[0-9]*\.[0-9]*\.[0-9]*\(--[a-z]*\.[0-9]*\)*-blue/stable-'"$ESCAPED_VERSION"'-blue/g' README.md
sed -i.bak '//,//s|releases/tag/v[0-9.a-z-]*)|releases/tag/v'"$VERSION"')|g' README.md
# Update stable download links (within STABLE_DOWNLOADS section only)
for SUFFIX in "win32-x64.exe" "darwin-arm64.dmg" "darwin-x64.dmg" "linux-x86_64.AppImage" "linux-amd64.deb"; do
sed -i.bak '//,//{s|Auto-Claude-[0-9.a-z-]*-'"$SUFFIX"'](https://github.com/AndyMik90/Auto-Claude/releases/download/v[^/]*/Auto-Claude-[^)]*-'"$SUFFIX"')|Auto-Claude-'"$VERSION"'-'"$SUFFIX"'](https://github.com/AndyMik90/Auto-Claude/releases/download/v'"$VERSION"'/Auto-Claude-'"$VERSION"'-'"$SUFFIX"')|g}' README.md
done
fi
rm -f README.md.bak
# Stage changes
git add apps/desktop/package.json README.md 2>/dev/null || true
fi
language: system
files: ^package\.json$
pass_filenames: false
# Frontend linting (apps/desktop/) - Biome is 15-25x faster than ESLint
# NOTE: These hooks check for worktree context to avoid npm/node_modules issues
- repo: local
hooks:
- id: biome
name: Biome (lint + format)
entry: bash
args:
- -c
- |
# Skip in worktrees if node_modules doesn't exist (Biome not installed)
if [ -f ".git" ] && [ ! -d "apps/desktop/node_modules" ]; then
echo "Skipping Biome in worktree (node_modules not found)"
exit 0
fi
cd apps/desktop && npx biome check --write --no-errors-on-unmatched .
language: system
files: ^apps/desktop/.*\.(ts|tsx|js|jsx|json)$
pass_filenames: false
- id: typecheck
name: TypeScript Check
entry: bash
args:
- -c
- |
# Skip in worktrees if node_modules doesn't exist (dependencies not installed)
if [ -f ".git" ] && [ ! -d "apps/desktop/node_modules" ]; then
echo "Skipping TypeScript check in worktree (node_modules not found)"
exit 0
fi
cd apps/desktop && npm run typecheck
language: system
files: ^apps/desktop/.*\.(ts|tsx)$
pass_filenames: false
# General checks
- repo: https://github.com/pre-commit/pre-commit-hooks
rev: v6.0.0
hooks:
- id: trailing-whitespace
- id: end-of-file-fixer
- id: check-yaml
exclude: pnpm-lock\.yaml$
- id: check-added-large-files
================================================
FILE: .secretsignore.example
================================================
# .secretsignore - Patterns to exclude from secret scanning
# Copy this to your project root as .secretsignore and customize
#
# Each line is a regex pattern matched against file paths
# Lines starting with # are comments
# Test fixtures and mocks
test_fixtures/
tests/mocks/
\.test\.
\.spec\.
_test\.py$
_mock\.py$
# Example/template files (already excluded by default, but explicit)
\.example$
\.sample$
\.template$
# Generated files
\.min\.js$
bundle\.js$
vendor/
# Documentation (already excluded by default)
docs/
\.md$
# Specific files with known false positives
# path/to/specific/file.py
================================================
FILE: CHANGELOG.md
================================================
## 2.7.6 - Stability & Feature Enhancements
### ✨ New Features
- **Multi-profile account management** — Unified profile swapping with automatic token refresh and rate limit recovery for both OAuth and API-compatible providers
- **Enhanced terminal experience** — Customizable terminal fonts with OS-specific defaults, Claude Code CLI settings injection, and improved worktree integration
- **Advanced roadmap management** — Expand/collapse functionality for phase features and real-time sync with task lifecycle
- **Queue System v2** — Smart task prioritization with auto-promotion and intelligent rate limit recovery
- **GitHub integration enhancements** — AI-powered PR template generation, user-friendly API error handling, and improved review visibility
- **UI/UX improvements** — Spell check support for text inputs, collapsible sidebar toggle, task screenshot capture, expandable task descriptions, and bulk worktree operations
- **Evidence-based PR validation** — Advanced review system with trigger-driven exploration and enhanced recovery mechanisms
### 🛠️ Improvements
- **Performance optimizations** — Async parallel worktree listing prevents UI freezes and improves responsiveness
- **Robustness enhancements** — Atomic file writes, better error detection in AI responses, and improved OOM/orphaned agent management for overnight builds
- **Terminal stability** — Fixed GPU context exhaustion from large pastes, SIGABRT crashes on macOS shutdown, and session restoration on app restart
- **Build & packaging** — XState bundling for packaged apps, aligned Linux package builds, and improved auto-updater for beta releases and DMG installations
- **Diagnostic improvements** — Sentry instrumentation for Python subprocesses and better error tracking across the system
### 🐛 Bug Fixes
- **Terminal & PTY** — Fixed paste size limits, race conditions, rendering issues, text alignment, worktree crashes, and terminal content resizing on expansion
- **PR review system** — Resolved error visibility in bundled apps, improved structured output validation with three-tier recovery, preserved findings during crashes, and fixed UTC timestamp detection for comment tracking
- **Planning & task execution** — Fixed handling of empty/greenfield projects, atomic writes to prevent 0-byte file corruption, planning phase crashes, and implementation plan file watching
- **Authentication & profiles** — Resolved OAuth token revocation loops, API profile mode support without OAuth requirement, subscription type preservation during token refresh, and Linux credential file detection
- **Windows/cross-platform** — Complete System32 executable path fixes for where.exe and taskkill.exe, Windows credential normalization, and proper shell detection for Windows terminals
- **Agent management** — Fixed infinite retry loops for tool concurrency errors, auth error detection, and title generator production path resolution
- **UI/UX fixes** — Resolved Insights scroll-to-blank-space issues, infinite re-render loops in terminal font settings, kanban board scaling collisions, ideation stuck states, and panel constraint errors during terminal exit
- **Worktree & Git** — Improved branch pattern validation, removed auto-commit on deletion, support for detached HEAD state during PR creation, and better merge conflict resolution with progress tracking
- **Integrations** — Fixed Ollama infinite subprocess spawning, Graphiti import paths, OpenRouter API URL suffix, and GitLab authentication bugs
- **Settings & configuration** — Corrected .auto-claude path discovery timeout, z.AI China preset URL, log order sorting, and onboarding completion state persistence
### 📚 Documentation
- Added Awesome Claude Code badge to README
- Added instructions for resetting PR review state in CLAUDE.md
---
## What's Changed
- fix: handle unknown SDK message types (rate_limit_event) to prevent session crashes by @AndyMik90 in 4a75ea9f9
- fix: PR review error visibility and gh CLI resolution in bundled apps by @AndyMik90 in 732fc1cd3
- fix: handle empty/greenfield projects in spec creation (#1426) (#1841) by @Andy in 819f98d9f
- fix: clear terminalEventSeen on task restart to prevent stuck-after-planning (#1828) (#1840) by @Andy in 28a620079
- fix: watch worktree path for implementation_plan.json changes (#1805) (#1842) by @Andy in fb3a3fbda
- fix: resolve Claude CLI not found on Windows - PATH, prompt size, cwd (#1661) (#1843) by @Andy in 76d1d3b03
- fix: handle planning phase crash and resume recovery (#1562) (#1844) by @Andy in 3cb05781f
- fix: show dismissed PR review findings in UI instead of silently dropping them (#1852) by @Andy in d98ff7d19
- fix: preserve file/line info in PR review extraction recovery (#1857) by @Andy in 635b53eea
- docs: add Awesome Claude Code badge to README (#1838) by @Andy in 2e4b5ac65
- test: achieve 100% test coverage for backend CLI commands (#1772) by @StillKnotKnown in 385f04414
- fix: cap terminal paste size to 1MB to prevent GPU context exhaustion by @AndyMik90 in 7b0f3a2c0
- fix: prevent OOM, orphaned agents, and unbounded growth during overnight builds (#1813) by @Andy in 4091d1d4b
- docs: add instructions for resetting PR review state in CLAUDE.md by @AndyMik90 in ecb615802
- auto-claude: 217-investigate-symlink-issues-in-work-tree-creation-f (#1808) by @Andy in ae13ce14c
- auto-claude: 218-enable-claude-code-features-in-worktree-terminals (#1809) by @Andy in e3b219288
- auto-claude: 219-investigate-and-fix-authentication-subscription-sy (#1810) by @Andy in 6204d5fc2
- feat(roadmap): add expand/collapse functionality for phase features (#1796) by @Burak in f735f0b49
- auto-claude: 216-display-ongoing-pr-review-logs-in-progress (#1807) by @Andy in a4870fa0c
- fix(pr-review): reduce structured output failures and preserve findings in recovery (#1806) by @Andy in f1b8cd3a7
- fix(sentry): enable Sentry for Python subprocesses and add diagnostic instrumentation (#1804) by @Andy in 4d4234378
- fix(pr-review): add three-tier recovery for structured output validation failure (#1797) by @Andy in d1fbccde3
- test: improve backend agent test coverage to 94% (#1779) by @StillKnotKnown in ed93df698
- fix(github): use UTC timestamps for reviewed_at to fix comment detection (#1795) by @Andy in 8872d33e3
- feat: add user-friendly GitHub API error handling (#1790) by @StillKnotKnown in 8ece0009e
- fix(roadmap): sync roadmap features with task lifecycle (#1791) by @Andy in 115576e85
- fix(github): resolve PR review hanging in bundled app (#1793) by @Andy in 3791b37bb
- feat(profiles): implement unified profile swapping across OAuth and API accounts (#1794) by @StillKnotKnown in 282387356
- test: improve backend memory system test coverage to 100% (#1780) by @StillKnotKnown in 4f1b7b2a9
- fix(ideation): guard against non-string properties in IdeaCard badges by @AndyMik90 in 5e78d748e
- fix(updater): convert HTML release notes to markdown before rendering by @AndyMik90 in aa5fc7f95
- fix(pr-review): simplify structured output schema to reduce validation failures (#1787) by @Andy in cd8914700
- fix(qa): enforce visual verification for UI changes and inject startup commands (#1784) by @Andy in f149a7fbd
- fix(plan-files): use atomic writes to prevent 0-byte corruption (#1785) by @Andy in c2245b812
- fix(terminal): make worktree dropdown scrollable and show all items by @AndyMik90 in 950da45e4
- auto-claude: subtask-1-1 - Add adaptive thinking badge to thinking level label (#1782) by @Andy in 25acf2826
- auto-claude: subtask-1-1 - Add overflow-hidden and break-words to subtask cards by @AndyMik90 in 39aa08872
- refactor(app-updater): disable automatic downloads and allow intentional downgrades by @AndyMik90 in 8de8039db
- fix(auth): detect auth errors in AI response text and prevent retry loops (#1776) by @Andy in f4788e4af
- test: achieve 100% coverage for backend core workspace module (#1774) by @StillKnotKnown in 3f95765cf
- fix(title-generator): add production path resolution for backend source (#1778) by @Andy in 923880f5b
- fix(fast-mode): use setting_sources instead of env var for CLI fast mode (#1771) by @Andy in 390ba6a58
- fix(windows): complete System32 executable path fixes for where.exe and taskkill.exe (#1715) by @VDT-91 in aa7f56e5d
- fix(worktree): remove auto-commit on deletion and add uncommitted changes warning by @AndyMik90 in cec8e65ee
- Smart PR Status Polling System (#1766) by @Andy in 48d5f7a32
- feat: simplify thinking system and remove opus-1m model variant (#1760) by @Andy in bb7e18937
- auto-claude: 203-fix-pr-review-ui-update-issue (#1732) by @Andy in 7589f8e4f
- auto-claude: subtask-2-1 - Create isAPIProfileAuthenticated() function to val (#1745) by @Andy in 57e38a692
- auto-claude: 202-fix-kanban-board-scaling-collisions (#1731) by @Andy in d09ebb850
- auto-claude: 204-fix-pr-review-ui-not-updating-without-manual-navig (#1734) by @Andy in 087091cef
- auto-claude: 203-fix-ui-not-updating-during-pr-review-operations (#1733) by @Andy in f085c08bd
- auto-claude: 205-fix-insights-chat-only-shows-last-task-suggestion- (#1735) by @Andy in f121f9cdd
- auto-claude: 197-roadmap-generation-stuck-at-50-file-locking-race-c (#1746) by @Andy in f41f15e59
- auto-claude: 193-fix-update-context7-mcp-tool-name-from-get-library (#1744) by @Andy in bdff9141a
- auto-claude: 192-changelog-generation-multiple-critical-bugs-tasks- (#1725) by @Andy in 8c9a504df
- auto-claude: 194-bug-rate-limit-during-task-execution-causes-subtas (#1726) by @Andy in 8a7443d24
- auto-claude: 201-bug-pr-review-logs-and-analysis (#1730) by @Andy in e0d53adb4
- auto-claude: 196-fix-worktrees-dialog-auto-close-race-condition-and (#1727) by @Andy in 323b0d3be
- auto-claude: 199-bug-logs-disappear-after-restart (#1728) by @Andy in d639f6ef8
- auto-claude: 198-critical-oauth-token-revocation-causes-infinite-40 (#1747) by @Andy in 4438c0b10
- Fix Panel Constraints Error During Terminal Exit (#1757) by @Andy in 32bf353da
- auto-claude: 190-bug-context-page-crash-multiple-root-causes-when-v (#1724) by @Andy in 2db36982f
- feat: add search/filter to WorktreeSelector dropdown (#1754) by @Andy in 09f059ca3
- fix(terminal): push worktree branch to remote with tracking on creation (#1753) by @Andy in b5de0d9ff
- auto-claude: 189-subtask-execution-stuck-in-infinite-retry-loop-whe (#1723) by @Andy in 445da186c
- auto-claude: 188-terminal-claude-sessions-require-manual-click-to-r (#1743) by @Andy in f8499e965
- auto-claude: 200-bug-changelog-and-release-generation (#1729) by @Andy in 826583b82
- fix(terminal): use each terminal's cwd for invoke Claude all button (#1756) by @Andy in ac4fe4f42
- feat(terminal): read Claude Code CLI settings and inject env vars into PTY sessions (#1750) by @Andy in 152e54093
- fix: correct .auto-claude path mismatch causing discovery phase timeout (#1748) by @VDT-91 in 2c2a8a754
- fix: remove incorrect /v1 suffix from OpenRouter API URL (#1749) by @StillKnotKnown in 7e799ee57
- fix: prevent terminal worktree crash with race condition fixes (#1586) (#1658) by @VDT-91 in 216b58bcf
- fix: correct log order sorting and add configurable log order setting (#1720) by @Burak in 2e2b82365
- fix(ollama): stop infinite subprocess spawning from useEffect re-render loop (#1716) by @Quentin Veys in acb131b72
- fix(graphiti): migrate graphiti_memory imports to canonical paths (#1714) by @Quentin Veys in df528f065
- fix: improve auto-updater for beta releases and DMG installs (#1681) by @Andy in ff91a1af0
- feat: unified operation registry for intelligent auth/rate limit recovery (#1698) by @Andy in 6d0222fa9
- fix: Prevent stale worktree data from overriding correct task status (#1710) by @Burak in fe08c644c
- feat: add subscriptionType and rateLimitTier to ClaudeProfile (#1688) by @Andy in a5e3cc9a2
- auto-claude: subtask-1-1 - Add useTaskStore import and update task state after successful PR creation (#1683) by @Andy in 4587162e4
- auto-claude: 182-implement-pagination-and-filtering-for-github-pr-l (#1654) by @Andy in b4e6b2fe4
- auto-claude: 181-add-expand-button-for-long-task-descriptions (#1653) by @Andy in d9cd300fe
- fix(terminal): resolve text alignment issues on expand/minimize (#1650) by @VDT-91 in f5a7e26d9
- fix(windows): use full path to where.exe for reliable executable lookup (#1659) by @VDT-91 in 5f63daa3c
- fix: resolve ideation stuck at 3/6 types bug (#1660) by @VDT-91 in e6e8da17c
- Clarify Local and Origin Branch Distinction (#1652) by @Andy in 9317148b6
- auto-claude: 186-set-default-dark-mode-on-startup (#1656) by @Andy in 473020621
- auto-claude: subtask-1-1 - Add min-h-0 to enable scrolling in Roadmap tabs (#1655) by @Andy in ae703be9f
- fix: XState status lifecycle & cross-project contamination fixes (#1647) by @kaigler in 5293fb399
- refactor(frontend): complete XState task state machine migration (#1338) (#1575) by @kaigler in e2f9abadb
- Merge conflict resolution progress bar and log viewer (#1620) by @Andy in d16be3077
- fix: align Linux package builds (AppImage/deb/Flatpak) with target-specific extraResources (#1623) by @StillKnotKnown in bad1a9b2c
- Fix/gitlab bugs (#1519 and #1521) (#1544) by @bu5hm4nn in cd423c65c
- feat(kanban): add bulk task delete and worktree cleanup improvements (#1588) by @kaigler in 02ed91c91
- fix: add worktree isolation warning to prevent agent escape (#1528) by @kaigler in fe5cc582b
- feat(ui): add spell check support for text inputs (#1304) by @kaigler in 8f02a5129
- fix(windows): complete Windows credential fixes with path normalization (#1585) by @kaigler in 1e1997167
- AI-Powered GitHub PR Template Generation (#1618) by @Andy in 900dd4360
- Fix pty.node SIGABRT crash on macOS shutdown (#1619) by @Andy in f355e09d7
- fix(merge): use git merge for diverged branches with progress tracking (#1605) by @Andy in bde2ca4b2
- Surface Billing/Credit Exhaustion Errors to UI (Issue #1580) (#1617) by @Andy in 7bf12e856
- auto-claude: subtask-1-1 - Change $teamId type from ID! to String! in the team query (#1627) by @Andy in 54d0cd2f4
- fix(auth): support API profile mode without OAuth requirement (#1616) by @StillKnotKnown in f8cc63af4
- fix: agent retry loop for tool concurrency errors (#1546) [v3] (#1606) by @Michael Ludlow in 0aea4fb5e
- fix(queue): enforce max parallel tasks and auto-refresh UI (#1594) by @Andy in 4070a4c29
- Persist Kanban column collapse state per project via main process (#1579) by @Andy in a1114664e
- feat(pr-review): evidence-based validation and trigger-driven exploration (#1593) by @Andy in bfc232825
- fix(ui): smart auto-scroll for Insights streaming responses (#1591) by @kaigler in eee97e7ea
- fix(changelog): validate Claude CLI exists before generation (#1305) by @kaigler in c1f24c07f
- auto-claude: subtask-1-1 - Add min-w-0 class to subtask title row flex container (#1578) by @Andy in 286591c02
- auto-claude: subtask-1-1 - Remove Popover wrapper and related functionality from ClaudeCodeStatusBadge (#1566) by @Andy in 8d18cc81a
- fix(claude-profile): preserve subscriptionType and rateLimitTier during token refresh (#1556) by @Andy in 52e426a48
- auto-claude: subtask-1-1 - Update cancelReview callback to handle both success and failure cases (#1551) by @Andy in d8f00fe5a
- fix(backend): prioritize git remote detection over env var for repo (#1555) by @Andy in 9b07ed464
- fix(backend): handle detached HEAD state when pushing branch for PR creation (#1560) by @Andy in 2b72694d0
- fix: add explicit UTF-8 encoding across all Electron main process I/O (#1554) by @Andy in 4243530e9
- fix(backend): pass OAuth token to Python subprocess for authentication by @AndyMik90 in 6f1002dd7
- perf(frontend): async parallel worktree listing to prevent UI freezes (#1553) by @Andy in 399a7e736
- auto-claude: subtask-1-1 - Remove amber lock indicator line from kanban resize handle (#1557) by @Andy in 83a64b88e
- fix(frontend): resolve TerminalFontSettings infinite re-render loop (#1536) by @StillKnotKnown in 1c6266025
- fix(frontend): respect hasCompletedOnboarding from ~/.claude.json (#1537) by @StillKnotKnown in 1860c2c43
- fix: prevent planner from generating invalid verification types (#1388) (#1529) by @kaigler in 94d941333
- fix(frontend): resolve Insights scroll-to-blank-space issue on macOS (ACS-382) (#1535) by @StillKnotKnown in 496b2b96a
- feat: add customizable terminal fonts with OS-specific defaults (#1412) by @StillKnotKnown in f289107b8
- Add dev mode screenshot capture warning (#1516) by @Andy in 16eeb301a
- fix: add worktree isolation warnings to prevent agent escape (ACS-394) (#1495) by @StillKnotKnown in 1e453653b
- fix: resolve flaky subprocess-spawn test on Windows CI (ACS-392) (#1494) by @StillKnotKnown in f6b264d56
- feat(task-logger): strip ANSI escape codes from logs and extend coverage (#1411) by @StillKnotKnown in 988ec0c25
- fix(frontend): use spawn() instead of exec() for Windows terminal launching (#1498) by @StillKnotKnown in 26c9083d3
- fix(api-profiles): correct z.AI China preset URL and rename provider presets (#1500) by @StillKnotKnown in 05cf0a516
- fix: validate branch pattern before worktree cleanup to prevent deleting wrong branch (#1493) by @StillKnotKnown in 8576754a1
- Real-Time Updates for Insights Chat (#1511) by @Andy in d940b6ade
- Fix Terminal UI Rendering Issues (#1514) by @Andy in 8d8306b8e
- Fix terminal content resizing on expansion (#1512) by @Andy in 9f6c0026b
- Restore Terminal Session History on App Restart (#1515) by @Andy in 63e2847fc
- Move Reference Images Above Task Title & Fix Image Display Issues (#1513) by @Andy in b269ac305
- auto-claude: 143-fix-github-integration-ui-refresh-issues (#1467) by @Andy in aa2cb4fa6
- feat: Multi-profile account swapping with token refresh and queue routing (#1496) by @Andy in 1e72c8d77
- Simplified Testing Strategy for Regression Prevention (#1379) by @Andy in ae4e48e8b
- auto-claude: 152-persist-tasks-during-roadmap-regeneration (#1463) by @Andy in 9bd3d7e3b
- Debug Kanban Memory & Add Sentry Monitoring (#1380) by @Andy in bc5f550ee
- auto-claude: 147-remove-outdated-compatibility-shims (#1465) by @Andy in 53111dbb9
- auto-claude: 162-fix-worktree-error-on-repeated-task-starts (#1453) by @Andy in b955badf7
- auto-claude: 155-fix-pr-list-diff-display-metrics (#1458) by @Andy in 31f116db5
- auto-claude: 151-fix-pr-review-agent-token-refresh-on-account-swap (#1456) by @Andy in d081af042
- auto-claude: 148-add-progress-persistence-and-status-indicators (#1464) by @Andy in 4937d5745
- auto-claude: 154-fix-task-modal-conflict-check-status-refresh (#1462) by @Andy in 0299009df
- auto-claude: 153-widen-kanban-columns-and-add-collapse-feature (#1457) by @Andy in d65973075
- auto-claude: subtask-1-1 - Add filter after map operation to remove empty str (#1466) by @Andy in 783f0fe0e
- fix: add formatReleaseNotes helper for markdown changelog rendering (#1468) by @Andy in 43a97e1b3
- feat(sidebar): add collapsible sidebar toggle (#1501) by @Michael Ludlow in d17c17887
- fix(auth): check .credentials.json for Linux profile authentication (#1492) by @StillKnotKnown in 8d2f66291
- auto-claude: subtask-1-1 - Replace ReleaseNotesRenderer with ReactMarkdown (#1454) by @Andy in 1185a558c
- auto-claude: 156-fix-electron-app-version-detection-bug (#1459) by @Andy in 9a3b48c25
- auto-claude: subtask-1-1 - Add --no-track flag to git worktree add command (#1455) by @Andy in 0c2990815
- auto-claude: subtask-1-1 - Change task.specId to taskId in 3 startSpecCreation calls (#1461) by @Andy in 91edc0e14
- fix(onboarding): align MemoryStep layout with Settings MemoryBackendSection (#1445) by @Michael Ludlow in e9de26d59
- auto-claude: subtask-1-1 - Add metadata?.requireReviewBeforeCoding check (#1460) by @Andy in 426d56571
- fix: use API profile environment variables for task title generation (#1471) by @JoshuaRileyDev in c5a0f042d
- fix(auth): Long-lived OAuth authentication with multi-profile usage display (#1443) by @Andy in 12e788417
- feat: Add screenshot capture to task creation modal (#1429) by @JoshuaRileyDev in 1a2a1b1fc
- fix: prevent queue settings modal from disappearing when tasks change (#1430) by @JoshuaRileyDev in 33acc1430
- feat: Queue System v2 with Auto-Promotion and Smart Task Management (#1203) by @JoshuaRileyDev in 3b87e24d7
- feat: Add API profile providers usage endpoints support (#1279) by @StillKnotKnown in cfe7dedd0
## Thanks to all contributors
@AndyMik90, @Andy, @Burak, @StillKnotKnown, @VDT-91, @kaigler, @Michael Ludlow, @JoshuaRileyDev, @Quentin Veys, @bu5hm4nn
## 2.7.5 - Security & Platform Improvements
### ✨ New Features
- One-time version 2.7.5 reauthentication warning modal for improved security awareness
- Enhanced authentication failure detection and handling with improved error recovery
- PR review validation pipeline with context enrichment and cross-validation support
- Terminal "Others" section in worktree dropdown for better organization
- Keyboard shortcut to toggle terminal expand/collapse for improved usability
- Searchable branch combobox in worktree creation dialog for easier branch selection
- Update Branch button in PR detail view for streamlined workflow
- Bulk select and create PR functionality for human review column
- Draggable Kanban task reordering for flexible task management
- YOLO mode to invoke Claude with --dangerously-skip-permissions for advanced users
- File and screenshot upload to QA feedback interface for better feedback submission
- Task worktrees section with terminal limit removal for expanded parallel work
- Claude Code version rollback feature for version management
- Linux secret-service support for OAuth token storage (ACS-293)
### 🛠️ Improvements
- Replace setup-token with embedded /login terminal flow for streamlined authentication
- Refactored authentication using platform abstraction for cross-platform reliability
- Removed redundant backend CLI detection (~230 lines) for cleaner codebase
- Replaced Select with Combobox for branch selection UI improvements
- Replace dangerouslySetInnerHTML with Trans component for better security practice
- Wait for CI checks before starting AI PR review for more accurate results
- Improved Claude CLI detection with installation selector
- Terminal rendering, persistence, and link handling improvements
- Enhanced terminal recreation logic with retry mechanism for reliability
- Improved worktree name input UX with better validation
- Made worktree isolation prominent in UI for user awareness
- Reduce ultrathink value from 65536 to 60000 for Opus 4.5 compatibility
- Standardized workflow naming and consolidated linting workflow
- Added gate jobs to CI/CD pipeline for better quality control
- Fast-path detection for merge commits without finding overlap in PR review
- Show progress percentage during planning phase on task cards
- PTY write improvements using PtyManager.writeToPty for safer terminal operations
- Consolidated package-lock.json to root level for simpler dependency management
- Graphiti memory feature fixes on macOS
- Model versions updated to Claude 4.5 with connected insights to frontend settings
### 🐛 Bug Fixes
- Fixed task logs disappearing after app restart in development mode (issue #1657)
- Fixed Kanban board status flip-flopping and multi-location task deletion
- Fixed Windows CLI detection and version selection UX issues
- Fixed Windows coding phase not starting after spec/planning
- Fixed Windows UTF-8 encoding errors across entire backend (251 instances)
- Fixed 401 authentication errors by reading tokens from profile configDir
- Fixed Windows packaging by using SDK bundled Claude CLI
- Fixed false stuck detection during planning phase
- Fixed PR list update on post status click
- Fixed screenshot state persistence bug in task modals
- Fixed non-functional '+ Add' button for multiple Claude accounts
- Fixed GitHub Issues/PRs infinite scroll auto-fetch behavior
- Fixed GitHub PR state management and follow-up review trigger bug
- Fixed terminal output freezing on project switch
- Fixed terminal rendering on app close to prevent zombie processes
- Fixed stale terminal metadata filtering with auto-cleanup
- Fixed worktree configuration sync after PTY creation
- Fixed cross-worktree file leakage via environment variables
- Fixed .gitignore auto-commit during project initialization
- Fixed PR review verdict message contradiction and blocked status limbo
- Fixed re-review functionality when previous review failed
- Fixed agent profile resolution before falling back to defaults
- Fixed Windows shell command support in Claude CLI invocation
- Fixed model resolution using resolve_model_id() instead of hardcoded fallbacks
- Fixed ultrathink token budget correction from 64000 to 63999
- Fixed Windows pywin32 DLL loading failure on Python 3.8+
- Fixed circular import between spec.pipeline and core.client
- Fixed pywin32 bundling in Windows binary
- Fixed secretstorage bundling in Linux binary
- Fixed gh CLI detection for PR creation
- Fixed PYTHONPATH isolation to prevent pollution of external projects
- Fixed structured output capture from SDK ResultMessage in PR review
- Fixed CI status refresh before returning cached verdict
- Fixed Python environment readiness before spawning tasks
- Fixed pywintypes import errors during dependency validation
- Fixed Node.js and npm path detection on Windows packaged apps
- Fixed Windows PowerShell command separator usage
- Fixed require is not defined error in terminal handler
- Fixed Sentry DSN initialization error handling
- Fixed requestAnimationFrame fallback for flaky Ubuntu CI tests
- Fixed file drag-and-drop to terminals and task modals with branch status refresh
- Fixed GitHub issues pagination and infinite scroll
- Fixed delete worktree status regression
- Fixed Mac crash on Invoke Claude button
- Fixed worktree symlink for node_modules to enable TypeScript support
- Fixed PTY wait on Windows before recreating terminal
- Fixed terminal aggressive renaming on Claude invocation
- Fixed worktree dropdown scroll area to prevent overflow
- Fixed GitHub PR preloading currently under review
- Fixed actual base branch name display instead of hardcoded main
- Fixed Claude CLI detection with improved installation selector
- Fixed broken pipe errors with Sentry integration
- Fixed app update persistence for Install button visibility
- Fixed Claude exit detection and label reset
- Fixed file merging to include files with content changes
- Fixed worktree config sync on terminal restoration
- Fixed security profile inheritance in worktrees and shell -c validation
- Fixed terminal drag and drop reordering collision detection
- Fixed "already up to date" case handling in worktree operations
- Fixed Windows UTF-8 encoding and path handling issues
- Fixed Terminal label persistence after app restart
- Fixed worktree dropdown enhancement with scrolling support
- Fixed enforcement of 12 terminal limit per project
- Fixed macOS UTF-8 encoding errors (251 instances)
### 📚 Documentation
- Added fork configuration guidance to CONTRIBUTING.md
- Updated README download links to v2.7.4
### 🔧 Other Changes
- Removed node_modules symlink and cleaned up package-lock.json
- Added .planning/ to gitignore
- Migrated ESLint to Biome with optimized workflows
- Fixed tar vulnerability in dependencies
- Added minimatch to externalized dependencies
- Added exception handling for malformed DSN during Sentry initialization
- Corrected roadmap import path in roadmap_runner.py
- Added require polyfill for ESM/Sentry compatibility
- Addressed CodeQL security alerts and code quality issues
- Added shell: true and argument sanitization for Windows packaging
- Packaged runtime dependencies with pydantic_core validation
---
## What's Changed
- test(subprocess): add comprehensive auth failure detection tests by @AndyMik90 in ccaf82db
- fix(security): replace dangerouslySetInnerHTML with Trans component and persist version warning by @AndyMik90 in 7aec35c3
- chore: remove node_modules symlink and clean up package-lock.json by @AndyMik90 in 9768af8e
- fix: address PR review issues and improve code quality by @AndyMik90 in 23a7e5a2
- fix(auth): read tokens from profile configDir to fix 401 errors (#1385) by @Andy in 55857d6d
- fix: Kanban board status flip-flopping and multi-location task deletion (#1387) by @Adam Slaker in 7dcb7bbe
- fix(windows): use SDK bundled Claude CLI for Windows packaged apps (#1382) by @Andy in cd4e2d38
- feat(auth): enhance authentication failure detection and handling by @AndyMik90 in 7ab10cd5
- refactor(subprocess): use platform abstraction for auth failure process killing by @AndyMik90 in 17cffecc
- feat(ui): add one-time version 2.7.5 reauthentication warning modal by @AndyMik90 in f49ef92a
- refactor: remove redundant backend CLI detection (~230 lines) (#1367) by @Andy in c7bc01d5
- feat(pr-review): add validation pipeline, context enrichment, and cross-validation (#1354) by @Andy in d8f4de9a
- fix(terminal): rename Claude terminals only once on initial message (#1366) by @Andy in b2d2d7e9
- feat(auth): add auth failure detection modal for Claude CLI 401 errors (#1361) by @Andy in 317d5e94
- docs: add fork configuration guidance to CONTRIBUTING.md (#1364) by @Andy in c57534c3
- Fix #609: Windows coding phase not starting after spec/planning (#1347) by @TamerineSky in 6da1b170
- Fix Windows UTF-8 encoding errors across entire backend (251 instances) (#782) by @TamerineSky in 6a6247bb
- chore: add .planning/ to gitignore by @AndyMik90 in 8df66245
- feat(auth): replace setup-token with embedded /login terminal flow (#1321) by @Andy in 11f8d572
- fix: Windows CLI detection and version selection UX improvements (#1341) by @StillKnotKnown in 8a2f3acd
- fix: add shell: true and argument sanitization for Windows packaging (#1340) by @StillKnotKnown in e482fdf1
- fix: package runtime deps and validate pydantic_core (#1336) by @StillKnotKnown in 141f44f6
- fix(test): update mock profile manager and relax audit level by @Test User in 86ba0246
- 2.7.4 release stable by @Test User in 3e2d6ef4
- fix(tests): update claude-integration-handler tests for PtyManager.writeToPty by @Test User in 56743ff7
- chore: consolidate package-lock.json to root level by @Test User in d4044d26
- build: add minimatch to externalized dependencies by @Test User in 95f7f222
- refactor(terminal): use PtyManager.writeToPty for safer PTY writes by @Test User in 4637a1a9
- fix: correct ultrathink token budget from 64000 to 63999 by @Test User in efdb8c71
- ci: migrate ESLint to Biome, optimize workflows, fix tar vulnerability (#1289) by @Andy in 0b2cf9b0
- Fix API 401 - Token Decryption Before SDK Initialization (#1283) by @Andy in 4b740928
- Fix Ultrathink Token Limit Bug (#1284) by @Andy in e989300b
- fix(security): address CodeQL security alerts and code quality issues (#1286) by @Andy in f700b18d
- fix(ui): make prose-invert conditional on dark mode for light theme support (#1160) by @youngmrz in 439ed86a
- fix(terminal): add require polyfill for ESM/Sentry compatibility (#1275) by @VDT-91 in eb739afe
- fix: add retry logic for planning-to-coding transition (#1276) by @kaigler in b8655904
- fix(worktree): prevent cross-worktree file leakage via environment variables (#1267) by @Andy in 7cb9e0a3
- Fix/cleanup 2.7.5 (#1271) by @Andy in f0c3e508
- Fix False Stuck Detection During Planning Phase (#1236) by @Andy in 44304a61
- fix(pr-review): allow re-review when previous review failed (#1268) by @Andy in 4cc8f4db
- fix: enforce 12 terminal limit per project (#1264) by @Andy in d7ed770e
- Draggable Kanban Task Reordering (#1217) by @Andy in 3606a632
- fix(terminal): sync worktree config after PTY creation to fix first-attempt failure (#1213) by @Andy in 39236f18
- fix: auto-commit .gitignore changes during project initialization (#1087) (#1124) by @youngmrz in ba089c5b
- Fix terminal rendering, persistence, and link handling (#1215) by @Andy in 75a3684c
- fix(windows): prevent zombie process accumulation on app close (#1259) by @VDT-91 in 90204469
- update gitignore by @AndyMik90 in c13d9a40
- Fix PR List Update on Post Status Click (#1207) by @Andy in 3085e392
- Fix screenshot state persistence bug in task modals (#1235) by @Andy in 3024d547
- Fix non-functional '+ Add' button for multiple Claude accounts (#1216) by @Andy in e27ff344
- Fix GitHub Issues/PRs Infinite Scroll Auto-Fetch (#1239) by @Andy in b74b628b
- Add bulk delete functionality to worktree overview (#1208) by @Andy in 8833feb2
- Fix GitHub PR State Management - Follow-up Review Trigger Bug (#1238) by @Andy in 76f07720
- auto-claude: subtask-1-1 - Add useEffect hook to reset expandedTerminalId when projectPath changes (#1240) by @Andy in d1131080
- Fix Terminal Output Freezing on Project Switch (#1241) by @Andy in 193d2ed9
- Add Update Branch Button to PR Detail View (#1242) by @Andy in 87c84073
- Bulk Select All & Create PR for Human Review Column (#1248) by @Andy in 715202b8
- fix(windows): resolve pywin32 DLL loading failure on Python 3.8+ (#1244) by @VDT-91 in cb786cac
- fix(gh-cli): use get_gh_executable() and pass GITHUB_CLI_PATH from GUI (ACS-321) (#1232) by @StillKnotKnown in 14fbc2eb
- auto-claude: subtask-1-1 - Replace Select with Combobox for branch selection (#1250) by @Andy in ed45ece5
- fix(sentry): add exception handling for malformed DSN during Sentry initialization by @AndyMik90 in 4f86742b
- dev dependecnies using npm install all by @AndyMik90 in e52a1ba4
- hotfix/dev-dependency-missing by @AndyMik90 in a0033b1e
- fix(frontend): resolve require is not defined error in terminal handler (#1243) by @Antti in 9117b59e
- hotfix/node by @AndyMik90 in bb620044
- fix(windows): add Node.js and npm paths to COMMON_BIN_PATHS for packaged apps (#1158) by @youngmrz in f0319bc8
- fix/stale-task-creation by @AndyMik90 in 9612cf8d
- fix/sentry-local-build by @AndyMik90 in b822797f
- hotfix/tar-vurnability by @AndyMik90 in 2096b0e2
- fix(tests): add requestAnimationFrame fallback for flaky Ubuntu CI tests by @AndyMik90 in 9739b338
- fix(windows): use correct command separator for PowerShell terminals (#1159) by @youngmrz in cb8e46ca
- fix(ui): show progress percentage during planning phase on task cards (#1162) by @youngmrz in 515aada1
- fix(tests): isolate git operations in test fixtures from parent repository (#1205) by @Andy in 596b1e0c
- feat(terminal): add "Others" section to worktree dropdown (#1209) by @Andy in 219cc068
- fix(linux): ensure secretstorage is bundled in Linux binary (ACS-310) (#1211) by @StillKnotKnown in 48bd4a9c
- fix(terminal): persist worktree label after app restart (#1210) by @Andy in ba7358af
- fix: Graphiti memory feature on macOS (#1174) by @Alexander Penzin in c2e53d58
- fix(windows): ensure pywin32 is bundled in Windows binary (ACS-306) (#1197) by @StillKnotKnown in 76af0aaa
- fix(spec): resolve circular import between spec.pipeline and core.client (ACS-302) (#1192) by @StillKnotKnown in 648cf3fc
- Fix Mac Crash on Invoke Claude Button (#1185) by @Andy in ae40f819
- fix(worktree): symlink node_modules to worktrees for TypeScript support (#1148) by @Andy in d7c7ce8e
- fix(terminal): wait for PTY exit on Windows before recreating terminal (#1184) by @Andy in d5d56975
- fix(runners): use resolve_model_id() for model resolution instead of hardcoded fallbacks (ACS-294) (#1170) by @StillKnotKnown in 5199fdbf
- fix(frontend): support Windows shell commands in Claude CLI invocation (ACS-261) (#1152) by @StillKnotKnown in 3a1966bd
- feat(terminal): add keyboard shortcut to toggle expand/collapse (#1180) by @Andy in 1edfe333
- fix(kanban): remove error column and add backend JSON repair (#1143) by @Andy in 51f67c5d
- fix(ci): add gate jobs and consolidate linting workflow (#1182) by @Andy in 4b43f074
- fix(ci): standardize workflow naming and remove redundant workflows (#1178) by @Andy in 4a3391b2
- fix(terminal): enable scrolling in worktree dropdown when many items exist (#1175) by @Andy in 5525f36d
- fix: windows (#1056) by @Alex in d6234f52
- fix(backend): reduce ultrathink value from 65536 to 60000 for Opus 4.5 compatibility (#1173) by @StillKnotKnown in 30638c2f
- feat(backend): add Linux secret-service support for OAuth token storage (ACS-293) (#1168) by @StillKnotKnown in a6934a8e
- fix(terminal): prevent aggressive renaming on Claude invocation (#1147) by @Andy in 10bceac9
- fix(pr-review): resolve verdict message contradiction and blocked status limbo (#1151) by @Andy in 8b269fea
- feat(pr-review): add fast-path detection for merge commits without finding overlap (#1145) by @Andy in 32811142
- fix(frontend): resolve agent profile before falling back to defaults (ACS-255) (#1068) by @StillKnotKnown in 33014682
- fix(terminal): add scroll area to worktree dropdown to prevent overflow (#1146) by @Andy in 200bb3bc
- fix(frontend): add windowsVerbatimArguments for Windows .cmd validation (ACS-252) (#1075) by @StillKnotKnown in 658f26cb
- fix(backend): improve gh CLI detection for PR creation (ACS-247) (#1071) by @StillKnotKnown in 2eef82bf
- fix(terminal): filter stale worktree metadata and auto-cleanup (#1038) by @Andy in 16bc37ce
- Fix Delete Worktree Status Regression (#1076) by @Andy in 97f98ed7
- 117-sidebar-update-banner (#1078) by @Andy in 4fd25b01
- fix(ci): add beta manifest renaming and validation (#1002) (#1080) by @Andy in c6c6525b
- fix: update all model versions to Claude 4.5 and connect insights to frontend settings (#1082) by @Andy in 58f4f30b
- fix: file drag-and-drop to terminals and task modals + branch status refresh (#1092) by @Andy in b5c0e631
- fix(github-issues): add pagination and infinite scroll for issues tab (#1042) by @Andy in f1674923
- fix(ci): enable automatic release workflow triggering (#1043) by @Andy in 2ff9ccab
- fix(backend): isolate PYTHONPATH to prevent pollution of external projects (ACS-251) (#1065) by @StillKnotKnown in 18d9b6cf
- add time sensitive AI review logic (#1137) by @Andy in 5fb7574b
- fix(pr-review): use list instead of tuple for line_range to fix SDK structured output (#1140) by @Andy in 45060ca3
- feat(github-review): wait for CI checks before starting AI PR review (#1131) by @Andy in a55e4f68
- fix(frontend): pass CLAUDE_CLI_PATH to Python backend subprocess (ACS-230) (#1081) by @StillKnotKnown in 5e91c3a7
- fix(runners): correct roadmap import path in roadmap_runner.py (ACS-264) (#1091) by @StillKnotKnown in 767dd5c3
- fix(pr-review): properly capture structured output from SDK ResultMessage (#1133) by @Andy in f28d2298
- fix(github-review): refresh CI status before returning cached verdict (#1083) by @Andy in c3bdd4f8
- fix(agent): ensure Python env is ready before spawning tasks (ACS-254) (#1061) by @StillKnotKnown in 7dc54f23
- fix(windows): prevent pywintypes import errors before dependency validation (ACS-253) (#1057) by @StillKnotKnown in 71a9fc84
- fix(docs): update README download links to v2.7.4 by @Test User in 67b39e52
- fix readme for 2.7.4 by @Test User in a0800646
- changelog 2.7.4 by @AndyMik90 in 1b5aecdd
- 2.7.4 release by @AndyMik90 in 72797ac0
- fix(frontend): validate Windows claude.cmd reliably in GUI (#1023) by @Umaru in 1ae3359b
- fix(auth): await profile manager initialization before auth check (#1010) by @StillKnotKnown in c8374bc1
- Add file/screenshot upload to QA feedback interface (#1018) by @Andy in 88277f84
- feat(terminal): add task worktrees section and remove terminal limit (#1033) by @Andy in 17118b07
- fix(terminal): enhance terminal recreation logic with retry mechanism (#1013) by @Andy in df1b8a3f
- fix(terminal): improve worktree name input UX (#1012) by @Andy in 54e9f228
- Make worktree isolation prominent in UI (#1020) by @Andy in 4dbb7ee4
- feat(terminal): add YOLO mode to invoke Claude with --dangerously-skip-permissions (#1016) by @Andy in d48e5f68
- Fix Duplicate Kanban Task Creation on Rapid Button Clicks (#1021) by @Andy in 2d1d3ef1
- feat(sentry): embed Sentry DSN at build time for packaged apps (#1025) by @Andy in aed28c5f
- fix(github): resolve circular import issues in context_gatherer and services (#1026) by @Andy in 0307a4a9
- hotfix/sentry-backend-build by @AndyMik90 in e7b38d49
- chore: bump version to 2.7.4 by @AndyMik90 in 432e985b
- fix(github-prs): prevent preloading of PRs currently under review (#1006) by @Andy in 1babcc86
- fix(ui): display actual base branch name instead of hardcoded main (#969) by @Andy in 5d07d5f1
- ci(release): move VirusTotal scan to separate post-release workflow (#980) by @Andy in 553d1e8d
- fix: improve Claude CLI detection and add installation selector (#1004) by @Andy in e07a0dbd
- fix(backend): add Sentry integration and fix broken pipe errors (#991) by @Andy in aa9fbe9d
- fix(app-update): persist downloaded update state for Install button visibility (#992) by @Andy in 6f059bb5
- fix(terminal): detect Claude exit and reset label when user closes Claude (#990) by @Andy in 14982e66
- fix(merge): include files with content changes even when semantic analysis is empty (#986) by @Andy in 4736b6b6
- fix(frontend): sync worktree config to renderer on terminal restoration (#982) by @Andy in 68fe0860
- feat(frontend): add searchable branch combobox to worktree creation dialog (#979) by @Andy in 2a2dc3b8
- fix(security): inherit security profiles in worktrees and validate shell -c commands (#971) by @Andy in 750ea8d1
- feat(frontend): add Claude Code version rollback feature (#983) by @Andy in 8d21978f
- fix(ACS-181): enable auto-switch on 401 auth errors & OAuth-only profiles (#900) by @Michael Ludlow in e7427321
- fix(terminal): add collision detection for terminal drag and drop reordering (#985) by @Andy in 1701160b
- fix(worktree): handle "already up to date" case correctly (ACS-226) (#961) by @StillKnotKnown in 74ed4320
- ci: add Azure auth test workflow by @AndyMik90 in d12eb523
## Thanks to all contributors
@AndyMik90, @Andy, @Adam Slaker, @TamerineSky, @StillKnotKnown, @Test User, @youngmrz, @VDT-91, @kaigler, @Alexander Penzin, @Antti, @Alex, @Michael Ludlow, @Umaru
## 2.7.4 - Terminal & Workflow Enhancements
### ✨ New Features
- Added task worktrees section in terminal with ability to invoke Claude with YOLO mode (--dangerously-skip-permissions)
- Added searchable branch combobox to worktree creation dialog for easier branch selection
- Added Claude Code version rollback feature to switch between installed versions
- Embedded Sentry DSN at build time for better error tracking in packaged apps
### 🛠️ Improvements
- Made worktree isolation prominent in UI to help users understand workspace isolation
- Enhanced terminal recreation logic with retry mechanism for more reliable terminal recovery
- Improved worktree name input UX for better user experience
- Improved Claude CLI detection with installation selector when multiple versions found
- Enhanced terminal drag and drop reordering with collision detection
- Synced worktree config to renderer on terminal restoration for consistency
### 🐛 Bug Fixes
- Fixed Windows claude.cmd validation in GUI to work reliably across different setups
- Fixed profile manager initialization timing issue before auth checks
- Fixed terminal recreation and label reset when user closes Claude
- Fixed duplicate Kanban task creation that occurred on rapid button clicks
- Fixed GitHub PR preloading to prevent loading PRs currently under review
- Fixed UI to display actual base branch name instead of hardcoded "main"
- Fixed Claude CLI detection to properly identify available installations
- Fixed broken pipe errors in backend with Sentry integration
- Fixed app update state persistence for Install button visibility
- Fixed merge logic to include files with content changes even when semantic analysis is empty
- Fixed security profile inheritance in worktrees and shell -c command validation
- Fixed auth auto-switch on 401 errors and improved OAuth-only profile handling
- Fixed "already up to date" case handling in worktree operations
- Resolved circular import issues in GitHub context gatherer and services
---
## What's Changed
- fix: validate Windows claude.cmd reliably in GUI by @Umaru in 1ae3359b
- fix: await profile manager initialization before auth check by @StillKnotKnown in c8374bc1
- feat: add file/screenshot upload to QA feedback interface by @Andy in 88277f84
- feat(terminal): add task worktrees section and remove terminal limit by @Andy in 17118b07
- fix(terminal): enhance terminal recreation logic with retry mechanism by @Andy in df1b8a3f
- fix(terminal): improve worktree name input UX by @Andy in 54e9f228
- feat(ui): make worktree isolation prominent in UI by @Andy in 4dbb7ee4
- feat(terminal): add YOLO mode to invoke Claude with --dangerously-skip-permissions by @Andy in d48e5f68
- fix(ui): prevent duplicate Kanban task creation on rapid button clicks by @Andy in 2d1d3ef1
- feat(sentry): embed Sentry DSN at build time for packaged apps by @Andy in aed28c5f
- fix(github): resolve circular import issues in context_gatherer and services by @Andy in 0307a4a9
- fix(github-prs): prevent preloading of PRs currently under review by @Andy in 1babcc86
- fix(ui): display actual base branch name instead of hardcoded main by @Andy in 5d07d5f1
- ci(release): move VirusTotal scan to separate post-release workflow by @Andy in 553d1e8d
- fix: improve Claude CLI detection and add installation selector by @Andy in e07a0dbd
- fix(backend): add Sentry integration and fix broken pipe errors by @Andy in aa9fbe9d
- fix(app-update): persist downloaded update state for Install button visibility by @Andy in 6f059bb5
- fix(terminal): detect Claude exit and reset label when user closes Claude by @Andy in 14982e66
- fix(merge): include files with content changes even when semantic analysis is empty by @Andy in 4736b6b6
- fix(frontend): sync worktree config to renderer on terminal restoration by @Andy in 68fe0860
- feat(frontend): add searchable branch combobox to worktree creation dialog by @Andy in 2a2dc3b8
- fix(security): inherit security profiles in worktrees and validate shell -c commands by @Andy in 750ea8d1
- feat(frontend): add Claude Code version rollback feature by @Andy in 8d21978f
- fix(ACS-181): enable auto-switch on 401 auth errors & OAuth-only profiles by @Michael Ludlow in e7427321
- fix(terminal): add collision detection for terminal drag and drop reordering by @Andy in 1701160b
- fix(worktree): handle "already up to date" case correctly by @StillKnotKnown in 74ed4320
## Thanks to all contributors
@Umaru, @StillKnotKnown, @Andy, @Michael Ludlow, @AndyMik90
## 2.7.3 - Reliability & Stability Focus
### ✨ New Features
- Add terminal copy/paste keyboard shortcuts for Windows/Linux
- Add Sentry environment variables to CI build workflows for error monitoring
- Add Claude Code changelog link to version notifiers
- Enhance PR merge readiness checks with branch state validation
- Add PR creation workflow for task worktrees
- Add prominent verdict summary to PR review comments
- Add Dart/Flutter/Melos support to security profiles
- Custom Anthropic compatible API profile management
- Add terminal dropdown with inbuilt and external options in task review
- Centralize CLI tool path management
- Add terminal support for worktrees
- Add Files tab to task details panel
- Enhance PR review page to include PRs filters
- Add GitLab integration
- Add Flatpak packaging support for Linux
- Bundle Python 3.12 with packaged Electron app
- Add iOS/Swift project detection
- Add automated PR review with follow-up support
- Add i18n internationalization system
- Add OpenRouter as LLM/embedding provider
- Add UI scale feature with 75-200% range
### 🛠️ Improvements
- Extract shared task form components for consistent modals
- Simplify task description handling and improve modal layout
- Replace confidence scoring with evidence-based validation in GitHub reviews
- Convert synchronous I/O to async operations in worktree handlers
- Remove top bars from UI
- Improve task card title readability
- Add path-aware AI merge resolution and device code streaming
- Increase Claude SDK JSON buffer size to 10MB
- Improve performance by removing projectTabs from useEffect dependencies
- Normalize feature status values for Kanban display
- Improve GLM presets, ideation auth, and Insights env
- Detect and clear cross-platform CLI paths in settings
- Improve CLI tool detection and add Claude CLI path settings
- Multiple bug fixes including binary file handling and semantic tracking
- Centralize Claude CLI invocation across the application
- Improve PR review with structured outputs and fork support
- Improve task card description truncation for better display
- Improve GitHub PR review with better evidence-based findings
### 🐛 Bug Fixes
- Implement atomic JSON writes to prevent file corruption
- Prevent "Render frame was disposed" crash in frontend
- Strip ANSI escape codes from roadmap/ideation progress messages
- Resolve integrations freeze and improve rate limit handling
- Use shared project-wide memory for cross-spec learning
- Add isinstance(dict) validation to Graphiti to prevent AttributeError
- Enforce implementation_plan schema in planner
- Remove obsolete @lydell/node-pty extraResources entry from build
- Add Post Clean Review button for clean PR reviews
- Fix Kanban status flip-flop and phase state inconsistency
- Resolve multiple merge-related issues affecting worktree operations
- Show running review state when switching back to PR with in-progress review
- Properly quote Windows .cmd/.bat paths in spawn() calls
- Improve Claude CLI detection on Windows with space-containing paths
- Display subtask titles instead of UUIDs in UI
- Use HTTP for Azure Trusted Signing timestamp URL in CI
- Fix Kanban state transitions and status flip-flop bug
- Use selectedPR from hook to restore Files changed list
- Automate auto labeling based on comments
- Fix subtasks tab not updating on Linux
- Add PYTHONPATH to subprocess environment for bundled packages
- Prevent crash after worktree creation in terminal
- Ensure PATH includes system directories when launched from Electron
- Grant worktree access to original project directories
- Filter task IPC events by project to prevent cross-project interference
- Verify critical packages exist, not just marker file during Python bundling
- Await async sendMessage to prevent race condition in insights
- Add pywin32 dependency for LadybugDB on Windows
- Handle Ollama version errors during model pull
- Add helpful error message when Python dependencies are missing
- Prevent app freeze by making Claude CLI detection non-blocking
- Use Homebrew for Ollama installation on macOS
- Use --continue instead of --resume for Claude session restoration
- Add context menu for keyboard-accessible task status changes
- Security allowlist now works correctly in worktree mode
- Fix InvestigationDialog overflow issue
- Auto-create .env from .env.example during backend install
- Show OAuth terminal during profile authentication
- Pass augmented env to Claude CLI validation on macOS
- Fix Git bash path detection on Windows
- Support API profiles in auth check and model resolution
- Window size adjustment on Hi-DPI displays
- Centralize Claude CLI invocation
- Pass OAuth token to Python runner subprocesses for GitHub operations
- Resolve React Fast Refresh hook error in usePtyProcess
- Detect @lydell/node-pty prebuilts in postinstall
- Detect Claude CLI installed via NVM on Linux/macOS
- Allow toggle deselection and improve embedding model name matching
- Sanitize environment to prevent PYTHONHOME contamination
- Check .claude.json for OAuth auth in profile scorer
- Use shell mode for Windows command spawning in MCP
- Update TaskCard description truncation for improved display
- Change hardcoded Opus defaults to Sonnet
- Include update manifests for architecture-specific auto-updates
- Fix security hook cwd extraction and PATH issues
- Filter empty env vars to prevent OAuth token override
- Persist human_review status (worktree plan path fix)
- Resolve PATH and PYTHONPATH issues in insights and changelog services
- Pass electron version explicitly to electron-rebuild on Windows
- Complete refresh button implementation for Kanban
- Fixed version-specific links in readme and pre-commit hook
- Preserve terminal state when switching projects
- Close parent modal when Edit dialog opens
- Solve LadybugDB problem on Windows during npm install
- Handle Windows CRLF line endings in regex fallback
- Respect preferred terminal setting for Windows PTY shell
- Detect and clear cross-platform CLI paths in settings
- Preserve original task description after spec creation
- Fix learning loop to retrieve patterns and gotchas
- Resolve frontend lag and update dependencies
- Allow external HTTPS images in Content-Security-Policy
- Use temporary worktree for PR review isolation
- Prefer versioned Homebrew Python over system python3
- Support bun.lock text format for Bun 1.2.0+
- Create spec.md during roadmap-to-task conversion
- Treat LOW-only findings as ready to merge in PR review
- Prevent infinite re-render loop in task selection
- Accept Python 3.12+ in install-backend.js
- Infinite loop in useTaskDetail merge preview loading
- Resolve EINVAL error when opening worktree in VS Code on Windows
- Add fallback to prevent tasks stuck in ai_review status
- Add spec_dir to SDK permissions
- Add --base-branch argument support to spec_runner
- Allow Windows to run PR Reviewer
- Respect task_metadata.json model selection
- Add .js extension to electron-log/main imports
- Move Swift detection before Ruby detection in analyzer
- Prevent TaskEditDialog from unmounting when opened
- Add iOS/Swift project detection
- Memory Status card respects configured embedding provider
- Remove projectTabs from useEffect dependencies to fix re-render loop
- Invalidate profile cache when file is created/modified
- Handle Python paths with spaces in subprocess
- Preserve terminal state when switching projects
- Add C#/Java/Swift/Kotlin project files to security hash
- Make backend tests pass on Windows
- Stop tracking spec files in git
- Sync status to worktree implementation plan to prevent reset
- Fix task status persistence reverting on refresh
- Proper semver comparison for pre-release versions
- Use venv Python for all services to fix dotenv errors
- Use explicit Windows System32 tar path in build
- Use PowerShell for tar extraction on Windows
- Add --force-local flag to tar on Windows
- Add explicit GET method to gh api comment fetches
- Support archiving tasks across all worktree locations
- Validate backend source path before using it
- Resolve spawn python ENOENT error on Linux
- Resolve CodeQL file system race conditions and unused variables
- Use correct electron-builder arch flags
- Use develop branch for dry-run builds in beta-release workflow
- Accept bug_fix workflow_type alias during planning
- Normalize relative paths to posix
- Update path resolution for ollama_model_detector.py in memory handlers
- Resolve Python detection and backend packaging issues
- Add future annotations import to discovery.py
- Add global spec numbering lock to prevent collisions
- Add Python 3.10+ version validation and GitHub Actions Python setup
- Correct welcome workflow PR message
- Hide status badge when execution phase badge is showing
- Stop running process when task status changes away from in_progress
- Remove legacy path from auto-claude source detection
- Resolve Python environment race condition
- Persist staged task state across app restarts
- Update progress calculation to include just-completed ideation type
- Add missing ARIA attributes for screen reader accessibility
- Restore missing aria-label attributes on icon buttons
- Enable scrolling in Project Files list in Task Creation Wizard
---
## What's Changed
- chore: bump version to 2.7.3 by @Test User in 53e2ef6c
- fix(core): implement atomic JSON writes to prevent file corruption (ACS-209) (#915) by @StillKnotKnown in 3c56a1ba
- fix(frontend): prevent "Render frame was disposed" crash (ACS-211) (#918) by @StillKnotKnown in 179744e2
- fix(frontend): strip ANSI escape codes from roadmap/ideation progress messages (ACS-219) (#933) by @StillKnotKnown in 9e86de76
- fix(ACS-175): Resolve integrations freeze and improve rate limit handling (#839) by @Michael Ludlow in 3ca15e1c
- fix(memory): use shared project-wide memory for cross-spec learning (#905) by @StillKnotKnown in 0c139add
- fix(graphiti): add isinstance(dict) validation to prevent AttributeError (ACS-215) (#924) by @StillKnotKnown in d9e3b286
- fix(planner): enforce implementation_plan schema (issue #884) (#912) by @Umaru in 29d28bf0
- fix(build): remove obsolete @lydell/node-pty extraResources entry by @Test User in c4e08aee
- fix(ui): add Post Clean Review button for clean PR reviews (ACS-201) (#894) by @StillKnotKnown in f43c7c51
- fix(ACS-203): Fix Kanban status flip-flop and phase state inconsistency (#898) by @StillKnotKnown in 96fc6129
- fix(merge): resolve multiple merge-related issues (ACS-194, ACS-179, ACS-174, ACS-163) (#885) by @StillKnotKnown in d024eec1
- fix(github-prs): show running review state when switching back to PR with in-progress review (ACS-200) (#890) by @StillKnotKnown in d9ed8179
- fix: properly quote Windows .cmd/.bat paths in spawn() calls (#889) by @StillKnotKnown in 6dc538c8
- Fix/worktree branch selection (#854) by @Andy in a6bd8842
- refactor(ui): extract shared task form components for consistent modals (#765) by @Andy in df540ec5
- fix(ui): persist staged task state across app restarts (#800) by @Andy in 91bd2401
- fix: improve Claude CLI detection on Windows with space-containing paths (#827) by @Umaru in 11710c55
- fix(ui): display subtask titles instead of UUIDs (#844) (#849) by @Andy in 660e1ada
- fix(ci): use HTTP for Azure Trusted Signing timestamp URL (#843) by @Andy in 152678bd
- fix(ACS-51, ACS-55, ACS-71): Fix Kanban state transitions and status flip-flop bug (#824) by @Adam Slaker in dc29794e
- fix(github): use selectedPR from hook to restore Files changed list (#822) by @StillKnotKnown in c623ab00
- ci(release): add Azure Trusted Signing for Windows builds (#805) by @Andy in 20458849
- feat: Add Sentry environment variables to CI build workflows (#803) by @Andy in 63e142ae
- Fix pydantic_core missing module error during packaging (#806) by @Maxim Kosterin in 07ae1ef7
- feat: add Claude Code changelog link to version notifiers (#820) by @StillKnotKnown in ada91fb1
- feat(github): enhance PR merge readiness checks with branch state validation (#751) by @Andy in cbb1cb81
- fix: automate auto labeling based on comments (#812) by @Alex in 32e8fee3
- feat: add PR creation workflow for task worktrees (#677) by @ThrownLemon in a74bd865
- fix: increase Claude SDK JSON buffer size to 10MB (#815) by @StillKnotKnown in e310d56f
- fix(a11y): restore missing aria-label attributes on icon buttons (#808) by @Orinks in ab3149fc
- feat: Add terminal copy/paste keyboard shortcuts for Windows/Linux (#786) by @StillKnotKnown in a6ffd0e1
- fix(ui): enable scrolling in Project Files list in Task Creation Wizard (#757) (#785) by @Ashwinhegde19 in 05c652e4
- fix: resolve subtasks tab not updating on Linux (#794) by @StillKnotKnown in 29ef46d7
- fix: add PYTHONPATH to subprocess environment for bundled packages (#139) (#777) by @Andy in a47354b4
- fix(terminal): prevent crash after worktree creation (#771) by @Andy in 40fc7e4d
- feat(pr-review): add prominent verdict summary to PR review comments (#780) by @Andy in 63766f76
- fix(frontend): ensure PATH includes system directories when launched (#748) by @Marcelo Czerewacz in 4cc9198a
- fix(permissions): grant worktree access to original project directories (#385) (#776) by @Andy in 42033412
- fix(multi-project): filter task IPC events by project to prevent cross-project interference (#723) (#775) by @Andy in cc78d7ae
- fix(python-bundling): verify critical packages exist, not just marker file (#416) (#774) by @Andy in 061411d7
- fix(insights): await async sendMessage to prevent race condition (#613) (#773) by @Andy in cbd47f2c
- fix(windows): add pywin32 dependency for LadybugDB (#627) (#778) by @Andy in fbaf2e7a
- fix(memory): handle Ollama version errors during model pull (#760) by @Brett Bonner in 01decaeb
- ACS-103 Windows can finish a task (#739) by @Alex in 96b7eb4a
- fix(roadmap): normalize feature status values for Kanban display [ACS-115] (#763) by @Michael Ludlow in 5e783908
- fix: add helpful error message when Python dependencies are missing (ACS-145) (#755) by @StillKnotKnown in 31519c2a
- fix(startup): prevent app freeze by making Claude CLI detection non-blocking (#680 regression) (#720) by @Adam Slaker in f4069590
- refactor: simplify task description handling and improve modal layout (#750) by @Andy in e3d72d64
- fix(memory): use Homebrew for Ollama installation on macOS (#742) by @Michael Ludlow in e9c859cc
- fix: use --continue instead of --resume for Claude session restoration (#699) by @Andy in 7fda36ad
- fix: Multiple bug fixes including binary file handling and semantic tracking (#732) by @Andy in 78b80bca
- fix(a11y): Add context menu for keyboard-accessible task status changes (#710) by @Orinks in 724ad827
- Fix: Security allowlist not working in worktree mode (#646) by @arcker in 2f321fb2
- fix: InvestigationDialog overflow issue (#669) by @Masanori Uehara in df57fbf8
- fix(setup): auto-create .env from .env.example during backend install (#713) by @Crimson341 in 84bc5226
- fix: show OAuth terminal during profile authentication (#671) by @Bogdan Dragomir in 8a4b5066
- fix: pass augmented env to Claude CLI validation on macOS (#640) by @tallinn102 in 574cd117
- fix: WIndows not finding the gith bash path (#724) by @Alex in 09aa4f4f
- fix(profiles): support API profiles in auth check and model resolution (#608) by @Ginanjar Noviawan in 78aceaed
- Fix Window Size on Hi-DPI Displays (#696) by @aaronson2012 in 5005e56e
- fix: centralize Claude CLI invocation (#680) by @StillKnotKnown in ec4441c1
- fix(github): pass OAuth token to Python runner subprocesses (fixes #563) (#698) by @Michael Ludlow in 97f34496
- chore: Update Linux app icon to use multiple resolution sizes and fix .deb icon (#672) by @Rooki in 2c9fcbf4
- fix(a11y): Add missing ARIA attributes for screen reader accessibility (#634) by @Orinks in 3930b12c
- docs: add stars badge and star history chart to README (#675) by @eddie333016 in e2937320
- fix(terminal): resolve React Fast Refresh hook error in usePtyProcess by @AndyMik90 in 81afc3d2
- sentry dev support + sessions handling in terminals by @AndyMik90 in 63f46173
- fix(frontend): detect @lydell/node-pty prebuilts in postinstall (#673) by @Vinícius Santos in 35573fd5
- Fix/small fixes all around (#645) by @Andy in 7b4993e9
- fix: detect Claude CLI installed via NVM on Linux/macOS (#623) by @StillKnotKnown in c2713543
- fix: improve GLM presets, ideation auth, and Insights env (#648) by @StillKnotKnown in 6fb2d484
- Fix/update app (#594) by @Andy in 1e3e8bda
- feat(sentry): add anonymous error reporting with privacy controls (#636) by @Andy in 8be0e6ff
- fix(settings): allow toggle deselection and improve embedding model name matching (#661) by @Michael Ludlow in 234d44f6
- fix(python): sanitize environment to prevent PYTHONHOME contamination (#664) by @Michael Ludlow in 65f60898
- fix: check .claude.json for OAuth auth in profile scorer (#652) by @Michael Ludlow in eeef8a3d
- fix(mcp): use shell mode for Windows command spawning (#572) by @Andy in e1e89430
- fix(ui): update TaskCard description truncation for improved display (#637) by @Andy in b7203124
- fix: change hardcoded Opus defaults to Sonnet (fix #433) (#633) by @Michael Ludlow in 46c41f8f
- Fix/small fixes 2.7.3 (#631) by @Andy in 39da8193
- fix(ci): include update manifests for architecture-specific auto-updates (#611) by @Hunter Luisi in f7b02e87
- fix: security hook cwd extraction and PATH issues (#555, #556) (#587) by @Hunter Luisi in 4ec9db8c
- fix(frontend): filter empty env vars to prevent OAuth token override (#520) by @Ashwinhegde19 in 556f0b21
- refactor(github-review): replace confidence scoring with evidence-based validation (#628) by @Andy in acdd7d9b
- feat(terminal): add worktree support for terminals (#625) by @Andy in 13535f1b
- fix: human_review status persistence bug (worktree plan path fix) (#605) by @Michael Ludlow in 7177c799
- fix(frontend): resolve PATH and PYTHONPATH issues in insights and changelog services (#558) (#610) by @Hunter Luisi in f5be7943
- fix: pass electron version explicitly to electron-rebuild on Windows (#622) by @Vinícius Santos in 14b3db56
- fix(kanban): complete refresh button implementation (#584) by @Michael Ludlow in 6c855905
- feat: add Dart/Flutter/Melos support to security profiles (#583) by @Mitsu in 4a833048
- docs: update stable download links to v2.7.2 (#579) by @Alex in 5efc2c56
- Improving Task Card Title Readability (#461) by @Vinícius Santos in 3086233f
- feat: custom Anthropic compatible API profile management (#181) by @Ginanjar Noviawan in d278963b
- 2.7.2 release by @AndyMik90 in 6ac3012f
- fix: Solve ladybug problem on running npm install all on windows (#576) by @Alex in effaa681
- fix(merge): handle Windows CRLF line endings in regex fallback by @AndyMik90 in 04de8c78
- ci(release): add CHANGELOG.md validation and fix release workflow by @AndyMik90 in 6d4231ed
- 🔥 hotfix(electron): restore app functionality on Windows broken by GPU cache errors (#569) by @sniggl in dedd0757
- fix(ci): cache pip wheels to speed up Intel Mac builds by @AndyMik90 in 90dddc28
- feat(terminal): respect preferred terminal setting for Windows PTY shell by @AndyMik90 in 90a20320
- fix(ci): add Python setup to beta-release and fix PR status gate checks (#565) by @Andy in c2148bb9
- fix: detect and clear cross-platform CLI paths in settings (#535) by @Andy in 29e45505
- fix(ui): preserve original task description after spec creation (#536) by @Andy in 7990dcb4
- fix(memory): fix learning loop to retrieve patterns and gotchas (#530) by @Andy in f58c2578
- fix: resolve frontend lag and update dependencies (#526) by @Andy in 30f7951a
- fix(csp): allow external HTTPS images in Content-Security-Policy (#549) by @Michael Ludlow in 3db02c5d
- fix(pr-review): use temporary worktree for PR review isolation (#532) by @Andy in 344ec65e
- fix: prefer versioned Homebrew Python over system python3 (#494) by @Navid in 8d58dd6f
- fix(detection): support bun.lock text format for Bun 1.2.0+ (#525) by @Andy in 4da8cd66
- chore: bump version to 2.7.2-beta.12 (#460) by @Andy in 8e5c11ac
- Fix/windows issues (#471) by @Andy in 72106109
- fix(ci): add Rust toolchain for Intel Mac builds (#459) by @Andy in 52a4fcc6
- fix: create spec.md during roadmap-to-task conversion (#446) by @Mulaveesala Pranaveswar in fb6b7fc6
- fix(pr-review): treat LOW-only findings as ready to merge (#455) by @Andy in 0f9c5b84
- Fix/2.7.2 beta12 (#424) by @Andy in 5d8ede23
- feat: remove top bars (#386) by @Vinícius Santos in da31b687
- fix: prevent infinite re-render loop in task selection useEffect (#442) by @Abe Diaz in 2effa535
- fix: accept Python 3.12+ in install-backend.js (#443) by @Abe Diaz in c15bb311
- fix: infinite loop in useTaskDetail merge preview loading (#444) by @Abe Diaz in 203a970a
- fix(windows): resolve EINVAL error when opening worktree in VS Code (#434) by @Vinícius Santos in 3c0708b7
- feat(frontend): Add Files tab to task details panel (#430) by @Mitsu in 666794b5
- refactor: remove deprecated TaskDetailPanel component (#432) by @Mitsu in ac8dfcac
- fix(ui): add fallback to prevent tasks stuck in ai_review status (#397) by @Michael Ludlow in 798ca79d
- feat: Enhance the look of the PR Detail area (#427) by @Alex in bdb01549
- ci: remove conventional commits PR title validation workflow by @AndyMik90 in 515b73b5
- fix(client): add spec_dir to SDK permissions (#429) by @Mitsu in 88c76059
- fix(spec_runner): add --base-branch argument support (#428) by @Mitsu in 62a75515
- feat: enhance pr review page to include PRs filters (#423) by @Alex in 717fba04
- feat: add gitlab integration (#254) by @Mitsu in 0a571d3a
- fix: Allow windows to run CC PR Reviewer (#406) by @Alex in 2f662469
- fix(model): respect task_metadata.json model selection (#415) by @Andy in e7e6b521
- feat(build): add Flatpak packaging support for Linux (#404) by @Mitsu in 230de5fc
- fix(github): pass repo parameter to GHClient for explicit PR resolution (#413) by @Andy in 4bdf7a0c
- chore(ci): remove redundant CLA GitHub Action workflow by @AndyMik90 in a39ea49d
- fix(frontend): add .js extension to electron-log/main imports by @AndyMik90 in 9aef0dd0
- fix: 2.7.2 bug fixes and improvements (#388) by @Andy in 05131217
- fix(analyzer): move Swift detection before Ruby detection (#401) by @Michael Ludlow in 321c9712
- fix(ui): prevent TaskEditDialog from unmounting when opened (#395) by @Michael Ludlow in 98b12ed8
- fix: improve CLI tool detection and add Claude CLI path settings (#393) by @Joe in aaa83131
- feat(analyzer): add iOS/Swift project detection (#389) by @Michael Ludlow in 68548e33
- fix(github): improve PR review with structured outputs and fork support (#363) by @Andy in 7751588e
- fix(ideation): update progress calculation to include just-completed ideation type (#381) by @Illia Filippov in 8b4ce58c
- Fixes failing spec - "gh CLI Check Handler - should return installed: true when gh CLI is found" (#370) by @Ian in bc220645
- fix: Memory Status card respects configured embedding provider (#336) (#373) by @Michael Ludlow in db0cbea3
- fix: fixed version-specific links in readme and pre-commit hook that updates them (#378) by @Ian in 0ca2e3f6
- docs: add security research documentation (#361) by @Brian in 2d3b7fb4
- fix/Improving UX for Display/Scaling Changes (#332) by @Kevin Rajan in 9bbdef09
- fix(perf): remove projectTabs from useEffect deps to fix re-render loop (#362) by @Michael Ludlow in 753dc8bb
- fix(security): invalidate profile cache when file is created/modified (#355) by @Michael Ludlow in 20f20fa3
- fix(subprocess): handle Python paths with spaces (#352) by @Michael Ludlow in eabe7c7d
- fix: Resolve pre-commit hook failures with version sync, pytest path, ruff version, and broken quality-dco workflow (#334) by @Ian in 1fa7a9c7
- fix(terminal): preserve terminal state when switching projects (#358) by @Andy in 7881b2d1
- fix(analyzer): add C#/Java/Swift/Kotlin project files to security hash (#351) by @Michael Ludlow in 4e71361b
- fix: make backend tests pass on Windows (#282) by @Oluwatosin Oyeladun in 4dcc5afa
- fix(ui): close parent modal when Edit dialog opens (#354) by @Michael Ludlow in e9782db0
- chore: bump version to 2.7.2-beta.10 by @AndyMik90 in 40d04d7c
- feat: add terminal dropdown with inbuilt and external options in task review (#347) by @JoshuaRileyDev in fef07c95
- refactor: remove deprecated code across backend and frontend (#348) by @Mitsu in 9d43abed
- feat: centralize CLI tool path management (#341) by @HSSAINI Saad in d51f4562
- refactor(components): remove deprecated TaskDetailPanel re-export (#344) by @Mitsu in 787667e9
- chore: Refactor/kanban realtime status sync (#249) by @souky-byte in 9734b70b
- refactor(settings): remove deprecated ProjectSettings modal and hooks (#343) by @Mitsu in fec6b9f3
- perf: convert synchronous I/O to async operations in worktree handlers (#337) by @JoshuaRileyDev in d3a63b09
- feat: bump version (#329) by @Alex in 50e3111a
- fix(ci): remove version bump to fix branch protection conflict (#325) by @Michael Ludlow in 8a80b1d5
- fix(tasks): sync status to worktree implementation plan to prevent reset (#243) (#323) by @Alex in cb6b2165
- fix(ci): add auto-updater manifest files and version auto-update (#317) by @Michael Ludlow in 661e47c3
- fix(project): fix task status persistence reverting on refresh (#246) (#318) by @Michael Ludlow in e80ef79d
- fix(updater): proper semver comparison for pre-release versions (#313) by @Michael Ludlow in e1b0f743
- fix(python): use venv Python for all services to fix dotenv errors (#311) by @Alex in 92c6f278
- chore(ci): cancel in-progress runs (#302) by @Oluwatosin Oyeladun in 1c142273
- fix(build): use explicit Windows System32 tar path (#308) by @Andy in c0a02a45
- fix(github): add augmented PATH env to all gh CLI calls by @AndyMik90 in 086429cb
- fix(build): use PowerShell for tar extraction on Windows by @AndyMik90 in d9fb8f29
- fix(build): add --force-local flag to tar on Windows (#303) by @Andy in d0b0b3df
- fix: stop tracking spec files in git (#295) by @Andy in 937a60f8
- Fix/2.7.2 fixes (#300) by @Andy in 7a51cbd5
- feat(merge,oauth): add path-aware AI merge resolution and device code streaming (#296) by @Andy in 26beefe3
- feat: enhance the logs for the commit linting stage (#293) by @Alex in 8416f307
- fix(github): add explicit GET method to gh api comment fetches (#294) by @Andy in 217249c8
- fix(frontend): support archiving tasks across all worktree locations (#286) by @Andy in 8bb3df91
- Potential fix for code scanning alert no. 224: Uncontrolled command line (#285) by @Andy in 5106c6e9
- fix(frontend): validate backend source path before using it (#287) by @Andy in 3ff61274
- feat(python): bundle Python 3.12 with packaged Electron app (#284) by @Andy in 7f19c2e1
- fix: resolve spawn python ENOENT error on Linux by using getAugmentedEnv() (#281) by @Todd W. Bucy in d98e2830
- fix(ci): add write permissions to beta-release update-version job by @AndyMik90 in 0b874d4b
- chore(deps): bump @xterm/xterm from 5.5.0 to 6.0.0 in /apps/desktop (#270) by @dependabot[bot] in 50dd1078
- fix(github): resolve follow-up review API issues by @AndyMik90 in f1cc5a09
- fix(security): resolve CodeQL file system race conditions and unused variables (#277) by @Andy in b005fa5c
- fix(ci): use correct electron-builder arch flags (#278) by @Andy in d79f2da4
- chore(deps): bump jsdom from 26.1.0 to 27.3.0 in /apps/desktop (#268) by @dependabot[bot] in 5ac566e2
- chore(deps): bump typescript-eslint in /apps/desktop (#269) by @dependabot[bot] in f49d4817
- fix(ci): use develop branch for dry-run builds in beta-release workflow (#276) by @Andy in 1e1d7d9b
- fix: accept bug_fix workflow_type alias during planning (#240) by @Daniel Frey in e74a3dff
- fix(paths): normalize relative paths to posix (#239) by @Daniel Frey in 6ac8250b
- chore(deps): bump @electron/rebuild in /apps/desktop (#271) by @dependabot[bot] in a2cee694
- chore(deps): bump vitest from 4.0.15 to 4.0.16 in /apps/desktop (#272) by @dependabot[bot] in d4cad80a
- feat(github): add automated PR review with follow-up support (#252) by @Andy in 596e9513
- ci: implement enterprise-grade PR quality gates and security scanning (#266) by @Alex in d42041c5
- fix: update path resolution for ollama_model_detector.py in memory handlers (#263) by @delyethan in a3f87540
- feat: add i18n internationalization system (#248) by @Mitsu in f8438112
- Revert "Feat/Auto Fix Github issues and do extensive AI PR reviews (#250)" (#251) by @Andy in 5e8c5308
- Feat/Auto Fix Github issues and do extensive AI PR reviews (#250) by @Andy in 348de6df
- fix: resolve Python detection and backend packaging issues (#241) by @HSSAINI Saad in 0f7d6e05
- fix: add future annotations import to discovery.py (#229) by @Joris Slagter in 5ccdb6ab
- Fix/ideation status sync (#212) by @souky-byte in 6ec8549f
- fix(core): add global spec numbering lock to prevent collisions (#209) by @Andy in 53527293
- feat: Add OpenRouter as LLM/embedding provider (#162) by @Fernando Possebon in 02bef954
- fix: Add Python 3.10+ version validation and GitHub Actions Python setup (#180 #167) (#208) by @Fernando Possebon in f168bdc3
- fix(ci): correct welcome workflow PR message (#206) by @Andy in e3eec68a
- Feat/beta release (#193) by @Andy in 407a0bee
- feat/beta-release (#190) by @Andy in 8f766ad1
- fix/PRs from old main setup to apps structure (#185) by @Andy in ced2ad47
- fix: hide status badge when execution phase badge is showing (#154) by @Andy in 05f5d303
- feat: Add UI scale feature with 75-200% range (#125) by @Enes Cingöz in 6951251b
- fix(task): stop running process when task status changes away from in_progress by @AndyMik90 in 30e7536b
- Fix/linear 400 error by @Andy in 220faf0f
- fix: remove legacy path from auto-claude source detection (#148) by @Joris Slagter in f96c6301
- fix: resolve Python environment race condition (#142) by @Joris Slagter in ebd8340d
- Feat: Ollama download progress tracking with new apps structure (#141) by @rayBlock in df779530
- Feature/apps restructure v2.7.2 (#138) by @Andy in 0adaddac
- docs: Add Git Flow branching strategy to CONTRIBUTING.md by @AndyMik90 in 91f7051d
## Thanks to all contributors
@Test User, @StillKnotKnown, @Umaru, @Andy, @Adam Slaker, @Michael Ludlow, @Maxim Kosterin, @ThrownLemon, @Ashwinhegde19, @Orinks, @Marcelo Czerewacz, @Brett Bonner, @Alex, @Rooki, @eddie333016, @AndyMik90, @Vinícius Santos, @arcker, @Masanori Uehara, @Crimson341, @Bogdan Dragomir, @tallinn102, @Ginanjar Noviawan, @aaronson2012, @Hunter Luisi, @Navid, @Mulaveesala Pranaveswar, @sniggl, @Abe Diaz, @Mitsu, @Joe, @Illia Filippov, @Ian, @Brian, @Kevin Rajan, @HSSAINI Saad, @JoshuaRileyDev, @souky-byte, @Alex, @Oluwatosin Oyeladun, @Daniel Frey, @delyethan, @Joris Slagter, @Fernando Possebon, @Enes Cingöz, @Todd W. Bucy, @dependabot[bot], @rayBlock
## 2.7.2 - Stability & Performance Enhancements
### ✨ New Features
- Added refresh button to Kanban board for manually reloading tasks
- Terminal dropdown with built-in and external options in task review
- Centralized CLI tool path management with customizable settings
- Files tab in task details panel for better file organization
- Enhanced PR review page with filtering capabilities
- GitLab integration support
- Automated PR review with follow-up support and structured outputs
- UI scale feature with 75-200% range for accessibility
- Python 3.12 bundled with packaged Electron app
- OpenRouter support as LLM/embedding provider
- Internationalization (i18n) system for multi-language support
- Flatpak packaging support for Linux
- Path-aware AI merge resolution with device code streaming
### 🛠️ Improvements
- Improved terminal experience with persistent state when switching projects
- Enhanced PR review with structured outputs and fork support
- Better UX for display and scaling changes
- Convert synchronous I/O to async operations in worktree handlers
- Enhanced logs for commit linting stage
- Remove top navigation bars for cleaner UI
- Enhanced PR detail area visual design
- Improved CLI tool detection with more language support
- Added iOS/Swift project detection
- Optimize performance by removing projectTabs from useEffect dependencies
- Improved Python detection and version validation for compatibility
### 🐛 Bug Fixes
- Fixed CI Python setup and PR status gate checks
- Fixed cross-platform CLI path detection and clearing in settings
- Preserve original task description after spec creation
- Fixed learning loop to retrieve patterns and gotchas from memory
- Resolved frontend lag and updated dependencies
- Fixed Content-Security-Policy to allow external HTTPS images
- Fixed PR review isolation by using temporary worktree
- Fixed Homebrew Python detection to prefer versioned Python over system python3
- Added support for Bun 1.2.0+ lock file format detection
- Fixed infinite re-render loop in task selection
- Fixed infinite loop in task detail merge preview loading
- Resolved Windows EINVAL error when opening worktree in VS Code
- Fixed fallback to prevent tasks stuck in ai_review status
- Fixed SDK permissions to include spec_dir
- Added --base-branch argument support to spec_runner
- Allow Windows to run CC PR Reviewer
- Fixed model selection to respect task_metadata.json
- Improved GitHub PR review by passing repo parameter explicitly
- Fixed electron-log imports with .js extension
- Fixed Swift detection order in project analyzer
- Prevent TaskEditDialog from unmounting when opened
- Fixed subprocess handling for Python paths with spaces
- Fixed file system race conditions and unused variables in security scanning
- Resolved Python detection and backend packaging issues
- Fixed version-specific links in README and pre-commit hooks
- Fixed task status persistence reverting on refresh
- Proper semver comparison for pre-release versions
- Use virtual environment Python for all services to fix dotenv errors
- Fixed explicit Windows System32 tar path for builds
- Added augmented PATH environment to all GitHub CLI calls
- Use PowerShell for tar extraction on Windows
- Added --force-local flag to tar on Windows
- Stop tracking spec files in git
- Fixed GitHub API calls with explicit GET method for comment fetches
- Support archiving tasks across all worktree locations
- Validated backend source path before using it
- Resolved spawn Python ENOENT error on Linux
- Fixed CodeQL alerts for uncontrolled command line
- Resolved GitHub follow-up review API issues
- Fixed relative path normalization to POSIX format
- Accepted bug_fix workflow_type alias during planning
- Added global spec numbering lock to prevent collisions
- Fixed ideation status sync
- Stopped running process when task status changes away from in_progress
- Removed legacy path from auto-claude source detection
- Resolved Python environment race condition
---
## What's Changed
- fix(ci): add Python setup to beta-release and fix PR status gate checks (#565) by @Andy in c2148bb9
- fix: detect and clear cross-platform CLI paths in settings (#535) by @Andy in 29e45505
- fix(ui): preserve original task description after spec creation (#536) by @Andy in 7990dcb4
- fix(memory): fix learning loop to retrieve patterns and gotchas (#530) by @Andy in f58c2578
- fix: resolve frontend lag and update dependencies (#526) by @Andy in 30f7951a
- feat(kanban): add refresh button to manually reload tasks (#548) by @Adryan Serage in 252242f9
- fix(csp): allow external HTTPS images in Content-Security-Policy (#549) by @Michael Ludlow in 3db02c5d
- fix(pr-review): use temporary worktree for PR review isolation (#532) by @Andy in 344ec65e
- fix: prefer versioned Homebrew Python over system python3 (#494) by @Navid in 8d58dd6f
- fix(detection): support bun.lock text format for Bun 1.2.0+ (#525) by @Andy in 4da8cd66
- chore: bump version to 2.7.2-beta.12 (#460) by @Andy in 8e5c11ac
- Fix/windows issues (#471) by @Andy in 72106109
- fix(ci): add Rust toolchain for Intel Mac builds (#459) by @Andy in 52a4fcc6
- fix: create spec.md during roadmap-to-task conversion (#446) by @Mulaveesala Pranaveswar in fb6b7fc6
- fix(pr-review): treat LOW-only findings as ready to merge (#455) by @Andy in 0f9c5b84
- Fix/2.7.2 beta12 (#424) by @Andy in 5d8ede23
- feat: remove top bars (#386) by @Vinícius Santos in da31b687
- fix: prevent infinite re-render loop in task selection useEffect (#442) by @Abe Diaz in 2effa535
- fix: accept Python 3.12+ in install-backend.js (#443) by @Abe Diaz in c15bb311
- fix: infinite loop in useTaskDetail merge preview loading (#444) by @Abe Diaz in 203a970a
- fix(windows): resolve EINVAL error when opening worktree in VS Code (#434) by @Vinícius Santos in 3c0708b7
- feat(frontend): Add Files tab to task details panel (#430) by @Mitsu in 666794b5
- refactor: remove deprecated TaskDetailPanel component (#432) by @Mitsu in ac8dfcac
- fix(ui): add fallback to prevent tasks stuck in ai_review status (#397) by @Michael Ludlow in 798ca79d
- feat: Enhance the look of the PR Detail area (#427) by @Alex in bdb01549
- ci: remove conventional commits PR title validation workflow by @AndyMik90 in 515b73b5
- fix(client): add spec_dir to SDK permissions (#429) by @Mitsu in 88c76059
- fix(spec_runner): add --base-branch argument support (#428) by @Mitsu in 62a75515
- feat: enhance pr review page to include PRs filters (#423) by @Alex in 717fba04
- feat: add gitlab integration (#254) by @Mitsu in 0a571d3a
- fix: Allow windows to run CC PR Reviewer (#406) by @Alex in 2f662469
- fix(model): respect task_metadata.json model selection (#415) by @Andy in e7e6b521
- feat(build): add Flatpak packaging support for Linux (#404) by @Mitsu in 230de5fc
- fix(github): pass repo parameter to GHClient for explicit PR resolution (#413) by @Andy in 4bdf7a0c
- chore(ci): remove redundant CLA GitHub Action workflow by @AndyMik90 in a39ea49d
- fix(frontend): add .js extension to electron-log/main imports by @AndyMik90 in 9aef0dd0
- fix: 2.7.2 bug fixes and improvements (#388) by @Andy in 05131217
- fix(analyzer): move Swift detection before Ruby detection (#401) by @Michael Ludlow in 321c9712
- fix(ui): prevent TaskEditDialog from unmounting when opened (#395) by @Michael Ludlow in 98b12ed8
- fix: improve CLI tool detection and add Claude CLI path settings (#393) by @Joe in aaa83131
- feat(analyzer): add iOS/Swift project detection (#389) by @Michael Ludlow in 68548e33
- fix(github): improve PR review with structured outputs and fork support (#363) by @Andy in 7751588e
- fix(ideation): update progress calculation to include just-completed ideation type (#381) by @Illia Filippov in 8b4ce58c
- Fixes failing spec - "gh CLI Check Handler - should return installed: true when gh CLI is found" (#370) by @Ian in bc220645
- fix: Memory Status card respects configured embedding provider (#336) (#373) by @Michael Ludlow in db0cbea3
- fix: fixed version-specific links in readme and pre-commit hook that updates them (#378) by @Ian in 0ca2e3f6
- docs: add security research documentation (#361) by @Brian in 2d3b7fb4
- fix/Improving UX for Display/Scaling Changes (#332) by @Kevin Rajan in 9bbdef09
- fix(perf): remove projectTabs from useEffect deps to fix re-render loop (#362) by @Michael Ludlow in 753dc8bb
- fix(security): invalidate profile cache when file is created/modified (#355) by @Michael Ludlow in 20f20fa3
- fix(subprocess): handle Python paths with spaces (#352) by @Michael Ludlow in eabe7c7d
- fix: Resolve pre-commit hook failures with version sync, pytest path, ruff version, and broken quality-dco workflow (#334) by @Ian in 1fa7a9c7
- fix(terminal): preserve terminal state when switching projects (#358) by @Andy in 7881b2d1
- fix(analyzer): add C#/Java/Swift/Kotlin project files to security hash (#351) by @Michael Ludlow in 4e71361b
- fix: make backend tests pass on Windows (#282) by @Oluwatosin Oyeladun in 4dcc5afa
- fix(ui): close parent modal when Edit dialog opens (#354) by @Michael Ludlow in e9782db0
- chore: bump version to 2.7.2-beta.10 by @AndyMik90 in 40d04d7c
- feat: add terminal dropdown with inbuilt and external options in task review (#347) by @JoshuaRileyDev in fef07c95
- refactor: remove deprecated code across backend and frontend (#348) by @Mitsu in 9d43abed
- feat: centralize CLI tool path management (#341) by @HSSAINI Saad in d51f4562
- refactor(components): remove deprecated TaskDetailPanel re-export (#344) by @Mitsu in 787667e9
- chore: Refactor/kanban realtime status sync (#249) by @souky-byte in 9734b70b
- refactor(settings): remove deprecated ProjectSettings modal and hooks (#343) by @Mitsu in fec6b9f3
- perf: convert synchronous I/O to async operations in worktree handlers (#337) by @JoshuaRileyDev in d3a63b09
- feat: bump version (#329) by @Alex in 50e3111a
- fix(ci): remove version bump to fix branch protection conflict (#325) by @Michael Ludlow in 8a80b1d5
- fix(tasks): sync status to worktree implementation plan to prevent reset (#243) (#323) by @Alex in cb6b2165
- fix(ci): add auto-updater manifest files and version auto-update (#317) by @Michael Ludlow in 661e47c3
- fix(project): fix task status persistence reverting on refresh (#246) (#318) by @Michael Ludlow in e80ef79d
- fix(updater): proper semver comparison for pre-release versions (#313) by @Michael Ludlow in e1b0f743
- fix(python): use venv Python for all services to fix dotenv errors (#311) by @Alex in 92c6f278
- chore(ci): cancel in-progress runs (#302) by @Oluwatosin Oyeladun in 1c142273
- fix(build): use explicit Windows System32 tar path (#308) by @Andy in c0a02a45
- fix(github): add augmented PATH env to all gh CLI calls by @AndyMik90 in 086429cb
- fix(build): use PowerShell for tar extraction on Windows by @AndyMik90 in d9fb8f29
- fix(build): add --force-local flag to tar on Windows (#303) by @Andy in d0b0b3df
- fix: stop tracking spec files in git (#295) by @Andy in 937a60f8
- Fix/2.7.2 fixes (#300) by @Andy in 7a51cbd5
- feat(merge,oauth): add path-aware AI merge resolution and device code streaming (#296) by @Andy in 26beefe3
- feat: enhance the logs for the commit linting stage (#293) by @Alex in 8416f307
- fix(github): add explicit GET method to gh api comment fetches (#294) by @Andy in 217249c8
- fix(frontend): support archiving tasks across all worktree locations (#286) by @Andy in 8bb3df91
- Potential fix for code scanning alert no. 224: Uncontrolled command line (#285) by @Andy in 5106c6e9
- fix(frontend): validate backend source path before using it (#287) by @Andy in 3ff61274
- feat(python): bundle Python 3.12 with packaged Electron app (#284) by @Andy in 7f19c2e1
- fix: resolve spawn python ENOENT error on Linux by using getAugmentedEnv() (#281) by @Todd W. Bucy in d98e2830
- fix(ci): add write permissions to beta-release update-version job by @AndyMik90 in 0b874d4b
- chore(deps): bump @xterm/xterm from 5.5.0 to 6.0.0 in /apps/desktop (#270) by @dependabot[bot] in 50dd1078
- fix(github): resolve follow-up review API issues by @AndyMik90 in f1cc5a09
- fix(security): resolve CodeQL file system race conditions and unused variables (#277) by @Andy in b005fa5c
- fix(ci): use correct electron-builder arch flags (#278) by @Andy in d79f2da4
- chore(deps): bump jsdom from 26.1.0 to 27.3.0 in /apps/desktop (#268) by @dependabot[bot] in 5ac566e2
- chore(deps): bump typescript-eslint in /apps/desktop (#269) by @dependabot[bot] in f49d4817
- fix(ci): use develop branch for dry-run builds in beta-release workflow (#276) by @Andy in 1e1d7d9b
- fix: accept bug_fix workflow_type alias during planning (#240) by @Daniel Frey in e74a3dff
- fix(paths): normalize relative paths to posix (#239) by @Daniel Frey in 6ac8250b
- chore(deps): bump @electron/rebuild in /apps/desktop (#271) by @dependabot[bot] in a2cee694
- chore(deps): bump vitest from 4.0.15 to 4.0.16 in /apps/desktop (#272) by @dependabot[bot] in d4cad80a
- feat(github): add automated PR review with follow-up support (#252) by @Andy in 596e9513
- ci: implement enterprise-grade PR quality gates and security scanning (#266) by @Alex in d42041c5
- fix: update path resolution for ollama_model_detector.py in memory handlers (#263) by @delyethan in a3f87540
- feat: add i18n internationalization system (#248) by @Mitsu in f8438112
- Revert "Feat/Auto Fix Github issues and do extensive AI PR reviews (#250)" (#251) by @Andy in 5e8c5308
- Feat/Auto Fix Github issues and do extensive AI PR reviews (#250) by @Andy in 348de6df
- fix: resolve Python detection and backend packaging issues (#241) by @HSSAINI Saad in 0f7d6e05
- fix: add future annotations import to discovery.py (#229) by @Joris Slagter in 5ccdb6ab
- Fix/ideation status sync (#212) by @souky-byte in 6ec8549f
- fix(core): add global spec numbering lock to prevent collisions (#209) by @Andy in 53527293
- feat: Add OpenRouter as LLM/embedding provider (#162) by @Fernando Possebon in 02bef954
- fix: Add Python 3.10+ version validation and GitHub Actions Python setup (#180 #167) (#208) by @Fernando Possebon in f168bdc3
- fix(ci): correct welcome workflow PR message (#206) by @Andy in e3eec68a
- Feat/beta release (#193) by @Andy in 407a0bee
- feat/beta-release (#190) by @Andy in 8f766ad1
- fix/PRs from old main setup to apps structure (#185) by @Andy in ced2ad47
- fix: hide status badge when execution phase badge is showing (#154) by @Andy in 05f5d303
- feat: Add UI scale feature with 75-200% range (#125) by @Enes Cingöz in 6951251b
- fix(task): stop running process when task status changes away from in_progress by @AndyMik90 in 30e7536b
- Fix/linear 400 error by @Andy in 220faf0f
- fix: remove legacy path from auto-claude source detection (#148) by @Joris Slagter in f96c6301
- fix: resolve Python environment race condition (#142) by @Joris Slagter in ebd8340d
- Feat: Ollama download progress tracking with new apps structure (#141) by @rayBlock in df779530
- Feature/apps restructure v2.7.2 (#138) by @Andy in 0adaddac
- docs: Add Git Flow branching strategy to CONTRIBUTING.md by @AndyMik90 in 91f7051d
## Thanks to all contributors
@Andy, @Adryan Serage, @Michael Ludlow, @Navid, @Mulaveesala Pranaveswar, @Vinícius Santos, @Abe Diaz, @Mitsu, @Alex, @AndyMik90, @Joe, @Illia Filippov, @Ian, @Brian, @Kevin Rajan, @Oluwatosin Oyeladun, @JoshuaRileyDev, @HSSAINI Saad, @souky-byte, @Todd W. Bucy, @dependabot[bot], @Daniel Frey, @delyethan, @Joris Slagter, @Fernando Possebon, @Enes Cingöz, @rayBlock
## 2.7.1 - Build Pipeline Enhancements
### 🛠️ Improvements
- Enhanced VirusTotal scan error handling in release workflow with graceful failure recovery and improved reporting visibility
- Refactored macOS build workflow to support both Intel and ARM64 architectures with notarization for Intel builds and improved artifact handling
- Streamlined CI/CD processes with updated caching strategies and enhanced error handling for external API interactions
### 📚 Documentation
- Clarified README documentation
---
## What's Changed
- chore: Enhance VirusTotal scan error handling in release workflow by @AndyMik90 in d23fcd8
- chore: Refactor macOS build workflow to support Intel and ARM64 architectures by @AndyMik90 in 326118b
- docs: readme clarification by @AndyMik90 in 6afcc92
- fix: version by @AndyMik90 in 2c93890
## Thanks to all contributors
@AndyMik90
## 2.7.0 - Tab Persistence & Memory System Modernization
### ✨ New Features
- Project tab bar with persistent tab management and GitHub organization initialization on project creation
- Task creation enhanced with @ autocomplete for agent profiles and improved drag-and-drop support
- Keyboard shortcuts and tooltips added to project tabs for better navigation
- Agent task restart functionality with new profile support for flexible task recovery
- Ollama embedding model support with automatic dimension detection for self-hosted deployments
### 🛠️ Improvements
- Memory system completely redesigned with embedded LadybugDB, eliminating Docker/FalkorDB dependency and improving performance
- Tab persistence implemented via IPC-based mechanism for reliable session state management
- Terminal environment improved by using virtual environment Python for proper terminal name generation
- AI merge operations timeout increased from 2 to 10 minutes for reliability with larger changes
- Merge operations now use stored baseBranch metadata for consistent branch targeting
- Memory configuration UI simplified and rebranded with improved Ollama integration and detection
- CI/CD workflows enhanced with code signing support and automated release process
- Cross-platform compatibility improved by replacing Unix shell syntax with portable git commands
- Python venv created in userData for packaged applications to ensure proper environment isolation
### 🐛 Bug Fixes
- Task title no longer blocks edit/close buttons in UI
- Tab persistence and terminal shortcuts properly scoped to prevent conflicts
- Agent profile fallback corrected from 'Balanced' to 'Auto (Optimized)'
- macOS notarization made optional and improved with private artifact storage
- Embedding provider changes now properly detected during migration
- Memory query CLI respects user's memory enabled flag
- CodeRabbit review issues and linting errors resolved across codebase
- F-string prefixes removed from strings without placeholders
- Import ordering fixed for ruff compliance
- Preview panel now receives projectPath prop correctly for image component functionality
- Default database path unified to ~/.auto-claude/memories for consistency
- @lydell/node-pty build scripts compatibility improved for pnpm v10
---
## What's Changed
- feat(ui): add project tab bar from PR #101 by @AndyMik90 in c400fe9
- feat: improve task creation UX with @ autocomplete and better drag-drop by @AndyMik90 in 20d1487
- feat(ui): add keyboard shortcuts and tooltips for project tabs by @AndyMik90 in ed73265
- feat(agent): enhance task restart functionality with new profile support by @AndyMik90 in c8452a5
- feat: add Ollama embedding model support with auto-detected dimensions by @AndyMik90 in 45901f3
- feat(memory): replace FalkorDB with LadybugDB embedded database by @AndyMik90 in 87d0b52
- feat: add automated release workflow with code signing by @AndyMik90 in 6819b00
- feat: add embedding provider change detection and fix import ordering by @AndyMik90 in 36f8006
- fix(tests): update tab management tests for IPC-based persistence by @AndyMik90 in ea25d6e
- fix(ui): address CodeRabbit PR review issues by @AndyMik90 in 39ce754
- fix: address CodeRabbit review issues by @AndyMik90 in 95ae0b0
- fix: prevent task title from blocking edit/close buttons by @AndyMik90 in 8a0fb26
- fix: use venv Python for terminal name generation by @AndyMik90 in 325cb54
- fix(merge): increase AI merge timeout from 2 to 10 minutes by @AndyMik90 in 4477538
- fix(merge): use stored baseBranch from task metadata for merge operations by @AndyMik90 in 8d56474
- fix: unify default database path to ~/.auto-claude/memories by @AndyMik90 in 684e3f9
- fix(ui): fix tab persistence and scope terminal shortcuts by @AndyMik90 in 2d1168b
- fix: create Python venv in userData for packaged apps by @AndyMik90 in b83377c
- fix(ui): change agent profile fallback from 'Balanced' to 'Auto (Optimized)' by @AndyMik90 in 385dcc1
- fix: check APPLE_ID in shell instead of workflow if condition by @AndyMik90 in 9eece01
- fix: allow @lydell/node-pty build scripts in pnpm v10 by @AndyMik90 in 1f6963f
- fix: use shell guard for notarization credentials check by @AndyMik90 in 4cbddd3
- fix: improve migrate_embeddings robustness and correctness by @AndyMik90 in 61f0238
- fix: respect user's memory enabled flag in query_memory CLI by @AndyMik90 in 45b2c83
- fix: save notarization logs to private artifact instead of public logs by @AndyMik90 in a82525d
- fix: make macOS notarization optional by @AndyMik90 in f2b7b56
- fix: add author email for Linux builds by @AndyMik90 in 5f66127
- fix: add GH_TOKEN and homepage for release workflow by @AndyMik90 in 568ea18
- fix(ci): quote GITHUB_OUTPUT for shell safety by @AndyMik90 in 1e891e1
- fix: address CodeRabbit review feedback by @AndyMik90 in 8e4b1da
- fix: update test and apply ruff formatting by @AndyMik90 in a087ba3
- fix: address additional CodeRabbit review comments by @AndyMik90 in 461fad6
- fix: sort imports in memory.py for ruff I001 by @AndyMik90 in b3c257d
- fix: address CodeRabbit review comments from PR #100 by @AndyMik90 in 1ed237a
- fix: remove f-string prefixes from strings without placeholders by @AndyMik90 in bcd453a
- fix: resolve remaining CI failures by @AndyMik90 in cfbccda
- fix: resolve all CI failures in PR #100 by @AndyMik90 in c493d6c
- fix(cli): update graphiti status display for LadybugDB by @AndyMik90 in 049c60c
- fix(ui): replace Unix shell syntax with cross-platform git commands by @AndyMik90 in 83aa3f0
- fix: correct model name and release workflow conditionals by @AndyMik90 in de41dfc
- style: fix ruff linting errors in graphiti queries by @AndyMik90 in 127559f
- style: apply ruff formatting to 4 files by @AndyMik90 in 9d5d075
- refactor: update memory test suite for LadybugDB by @AndyMik90 in f0b5efc
- refactor(ui): simplify reference files and images handling in task modal by @AndyMik90 in 1975e4d
- refactor: rebrand memory system UI and simplify configuration by @AndyMik90 in 2b3cd49
- refactor: replace Docker/FalkorDB with embedded LadybugDB for memory system by @AndyMik90 in 325458d
- docs: add CodeRabbit review response tracking by @AndyMik90 in 3452548
- chore: use GitHub noreply email for author field by @AndyMik90 in 18f2045
- chore: simplify notarization step after successful setup by @AndyMik90 in e4fe7cd
- chore: update CI and release workflows, remove changelog config by @AndyMik90 in 6f891b7
- chore: remove docker-compose.yml (FalkorDB no longer used) by @AndyMik90 in 68f3f06
- fix: Replace space with hyphen in productName to fix PTY daemon spawn (#65) by @Craig Van in 8f1f7a7
- fix: update npm scripts to use hyphenated product name by @AndyMik90 in 89978ed
- fix(ui): improve Ollama UX in memory settings by @AndyMik90 in dea1711
- auto-claude: subtask-1-1 - Add projectPath prop to PreviewPanel and implement custom img component by @AndyMik90 in e6529e0
- Project tab persistence and github org init on project creation by @AndyMik90 in ae1dac9
- Readme for installors by @AndyMik90 in 1855d7d
---
## Thanks to all contributors
@AndyMik90, @Craig Van
## 2.6.0 - Improved User Experience and Agent Configuration
### ✨ New Features
- Add customizable phase configuration in app settings, allowing users to tailor the AI build pipeline to their workflow
- Implement parallel AI merge functionality for faster integration of completed builds
- Add Google AI as LLM and embedding provider for Graphiti memory system
- Implement device code authentication flow with timeout handling, browser launch fallback, and comprehensive testing
### 🛠️ Improvements
- Move Agent Profiles from dashboard to Settings for better organization and discoverability
- Default agent profile to 'Auto (Optimized)' for streamlined out-of-the-box experience
- Enhance WorkspaceStatus component UI with improved visual design
- Refactor task management from sidebar to modal interface for cleaner navigation
- Add comprehensive theme system with multiple color schemes (Forest, Neo, Retro, Dusk, Ocean, Lime) and light/dark mode support
- Extract human-readable feature titles from spec.md for better task identification
- Improve task description display for specs with compact markdown formatting
### 🐛 Bug Fixes
- Fix asyncio coroutine creation in worker threads to properly support async operations
- Improve UX for phase configuration in task creation workflow
- Address CodeRabbit PR #69 feedback and additional review comments
- Fix auto-close behavior for task modal when marking tasks as done
- Resolve Python lint errors and import sorting issues (ruff I001 compliance)
- Ensure planner agent properly writes implementation_plan.json
- Add platform detection for terminal profile commands on Windows
- Set default selected agent profile to 'auto' across all users
- Fix display of correct merge target branch in worktree UI
- Add validation for invalid colorTheme fallback to prevent UI errors
- Remove outdated Sun/Moon toggle button from sidebar
---
## What's Changed
- feat: add customizable phase configuration in app settings by @AndyMik90 in aee0ba4
- feat: implement parallel AI merge functionality by @AndyMik90 in 458d4bb
- feat(graphiti): add Google AI as LLM and embedding provider by @adryserage in fe69106
- fix: create coroutine inside worker thread for asyncio.run by @AndyMik90 in f89e4e6
- fix: improve UX for phase configuration in task creation by @AndyMik90 in b9797cb
- fix: address CodeRabbit PR #69 feedback by @AndyMik90 in cc38a06
- fix: sort imports in workspace.py to pass ruff I001 check by @AndyMik90 in 9981ee4
- fix(ui): auto-close task modal when marking task as done by @AndyMik90 in 297d380
- fix: resolve Python lint errors in workspace.py by @AndyMik90 in 0506256
- refactor: move Agent Profiles from dashboard to Settings by @AndyMik90 in 1094990
- fix(planning): ensure planner agent writes implementation_plan.json by @AndyMik90 in 9ab5a4f
- fix(windows): add platform detection for terminal profile commands by @AndyMik90 in f0a6a0a
- fix: default agent profile to 'Auto (Optimized)' for all users by @AndyMik90 in 08aa2ff
- fix: update default selected agent profile to 'auto' by @AndyMik90 in 37ace0a
- style: enhance WorkspaceStatus component UI by @AndyMik90 in 3092155
- fix: display correct merge target branch in worktree UI by @AndyMik90 in 2b96160
- Improvement/refactor task sidebar to task modal by @AndyMik90 in 2a96f85
- fix: extract human-readable title from spec.md when feature field is spec ID by @AndyMik90 in 8b59375
- fix: task descriptions not showing for specs with compact markdown by @AndyMik90 in 7f12ef0
- Add comprehensive theme system with Forest, Neo, Retro, Dusk, Ocean, and Lime color schemes by @AndyMik90 in ba776a3, e2b24e2, 7589046, e248256, 76c1bd7, bcbced2
- Add ColorTheme type and configuration to app settings by @AndyMik90 in 2ca89ce, c505d6e, a75c0a9
- Implement device code authentication flow with timeout handling and fallback URL display by @AndyMik90 in 5f26d39, 81e1536, 1a7cf40, 4a4ad6b, 6a4c1b4, b75a09c, e134c4c
- fix(graphiti): address CodeRabbit review comments by @adryserage in 679b8cd
- fix(lint): sort imports in Google provider files by @adryserage in 1a38a06
## 2.6.0 - Multi-Provider Graphiti Support & Platform Fixes
### ✨ New Features
- **Google AI Provider for Graphiti**: Full Google AI (Gemini) support for both LLM and embeddings in the Memory Layer
- Add GoogleLLMClient with gemini-2.0-flash default model
- Add GoogleEmbedder with text-embedding-004 default model
- UI integration for Google API key configuration with link to Google AI Studio
- **Ollama LLM Provider in UI**: Add Ollama as an LLM provider option in Graphiti onboarding wizard
- Ollama runs locally and doesn't require an API key
- Configure Base URL instead of API key for local inference
- **LLM Provider Selection UI**: Add provider selection dropdown to Graphiti setup wizard for flexible backend configuration
- **Per-Project GitHub Configuration**: UI clarity improvements for per-project GitHub org/repo settings
### 🛠️ Improvements
- Enhanced Graphiti provider factory to support Google AI alongside existing providers
- Updated env-handlers to properly populate graphitiProviderConfig from .env files
- Improved type definitions with proper Graphiti provider config properties in AppSettings
- Better API key loading when switching between providers in settings
### 🐛 Bug Fixes
- **node-pty Migration**: Replaced node-pty with @lydell/node-pty for prebuilt Windows binaries
- Updated all imports to use @lydell/node-pty directly
- Fixed "Cannot find module 'node-pty'" startup error
- **GitHub Organization Support**: Fixed repository support for GitHub organization accounts
- Add defensive array validation for GitHub issues API response
- **Asyncio Deprecation**: Fixed asyncio deprecation warning by using get_running_loop() instead of get_event_loop()
- Applied ruff formatting and fixed import sorting (I001) in Google provider files
### 🔧 Other Changes
- Added google-generativeai dependency to requirements.txt
- Updated provider validation to include Google/Groq/HuggingFace type assertions
---
## What's Changed
- fix(graphiti): address CodeRabbit review comments by @adryserage in 679b8cd
- fix(lint): sort imports in Google provider files by @adryserage in 1a38a06
- feat(graphiti): add Google AI as LLM and embedding provider by @adryserage in fe69106
- fix: GitHub organization repository support by @mojaray2k in 873cafa
- feat(ui): add LLM provider selection to Graphiti onboarding by @adryserage in 4750869
- fix(types): add missing AppSettings properties for Graphiti providers by @adryserage in 6680ed4
- feat(ui): add Ollama as LLM provider option for Graphiti by @adryserage in a3eee92
- fix(ui): address PR review feedback for Graphiti provider selection by @adryserage in b8a419a
- fix(deps): update imports to use @lydell/node-pty directly by @adryserage in 2b61ebb
- fix(deps): replace node-pty with @lydell/node-pty for prebuilt binaries by @adryserage in e1aee6a
- fix: add UI clarity for per-project GitHub configuration by @mojaray2k in c9745b6
- fix: add defensive array validation for GitHub issues API response by @mojaray2k in b3636a5
---
## 2.5.5 - Enhanced Agent Reliability & Build Workflow
### ✨ New Features
- Required GitHub setup flow after Auto Claude initialization to ensure proper configuration
- Atomic log saving mechanism to prevent log file corruption during concurrent operations
- Per-session model and thinking level selection in insights management
- Multi-auth token support and ANTHROPIC_BASE_URL passthrough for flexible authentication
- Comprehensive DEBUG logging at Claude SDK invocation points for improved troubleshooting
- Auto-download of prebuilt node-pty binaries for Windows environments
- Enhanced merge workflow with current branch detection for accurate change previews
- Phase configuration module and enhanced agent profiles for improved flexibility
- Stage-only merge handling with comprehensive verification checks
- Authentication failure detection system with patterns and validation checks across agent pipeline
### 🛠️ Improvements
- Changed default agent profile from 'balanced' to 'auto' for more adaptive behavior
- Better GitHub issue tracking and improved user experience in issue management
- Improved merge preview accuracy using git diff counts for file statistics
- Preserved roadmap generation state when switching between projects
- Enhanced agent profiles with phase configuration support
### 🐛 Bug Fixes
- Resolved CI test failures and improved merge preview reliability
- Fixed CI failures related to linting, formatting, and tests
- Prevented dialog skip during project initialization flow
- Updated model IDs for Sonnet and Haiku to match current Claude versions
- Fixed branch namespace conflict detection to prevent worktree creation failures
- Removed duplicate LINEAR_API_KEY checks and consolidated imports
- Python 3.10+ version requirement enforced with proper version checking
- Prevented command injection vulnerabilities in GitHub API calls
### 🔧 Other Changes
- Code cleanup and test fixture updates
- Removed redundant auto-claude/specs directory structure
- Untracked .auto-claude directory to respect gitignore rules
---
## What's Changed
- fix: resolve CI test failures and improve merge preview by @AndyMik90 in de2eccd
- chore: code cleanup and test fixture updates by @AndyMik90 in 948db57
- refactor: change default agent profile from 'balanced' to 'auto' by @AndyMik90 in f98a13e
- security: prevent command injection in GitHub API calls by @AndyMik90 in 24ff491
- fix: resolve CI failures (lint, format, test) by @AndyMik90 in a8f2d0b
- fix: use git diff count for totalFiles in merge preview by @AndyMik90 in 46d2536
- feat: enhance stage-only merge handling with verification checks by @AndyMik90 in 7153558
- feat: introduce phase configuration module and enhance agent profiles by @AndyMik90 in 2672528
- fix: preserve roadmap generation state when switching projects by @AndyMik90 in 569e921
- feat: add required GitHub setup flow after Auto Claude initialization by @AndyMik90 in 03ccce5
- chore: remove redundant auto-claude/specs directory by @AndyMik90 in 64d5170
- chore: untrack .auto-claude directory (should be gitignored) by @AndyMik90 in 0710c13
- fix: prevent dialog skip during project initialization by @AndyMik90 in 56cedec
- feat: enhance merge workflow by detecting current branch by @AndyMik90 in c0c8067
- fix: update model IDs for Sonnet and Haiku by @AndyMik90 in 059315d
- feat: add comprehensive DEBUG logging and fix lint errors by @AndyMik90 in 99cf21e
- feat: implement atomic log saving to prevent corruption by @AndyMik90 in da5e26b
- feat: add better github issue tracking and UX by @AndyMik90 in c957eaa
- feat: add comprehensive DEBUG logging to Claude SDK invocation points by @AndyMik90 in 73d01c0
- feat: auto-download prebuilt node-pty binaries for Windows by @AndyMik90 in 41a507f
- feat(insights): add per-session model and thinking level selection by @AndyMik90 in e02aa59
- fix: require Python 3.10+ and add version check by @AndyMik90 in 9a5ca8c
- fix: detect branch namespace conflict blocking worktree creation by @AndyMik90 in 63a1d3c
- fix: remove duplicate LINEAR_API_KEY check and consolidate imports by @Jacob in 7d351e3
- feat: add multi-auth token support and ANTHROPIC_BASE_URL passthrough by @Jacob in 9dea155
## 2.5.0 - Roadmap Intelligence & Workflow Refinements
### ✨ New Features
- Interactive competitor analysis viewer for roadmap planning with real-time data visualization
- GitHub issue label mapping to task categories for improved organization and tracking
- GitHub issue comment selection in task creation workflow for better context integration
- TaskCreationWizard enhanced with drag-and-drop support for file references and inline @mentions
- Roadmap generation now includes stop functionality and comprehensive debug logging
### 🛠️ Improvements
- Refined visual drop zone feedback in file reference system for more subtle user guidance
- Remove auto-expand behavior for referenced files on draft restore to improve UX
- Always-visible referenced files section in TaskCreationWizard for better discoverability
- Drop zone wrapper added around main modal content area for improved drag-and-drop ergonomics
- Stuck task detection now enabled for ai_review status to better track blocked work
- Enhanced React component stability with proper key usage in RoadmapHeader and PhaseProgressIndicator
### 🐛 Bug Fixes
- Corrected CompetitorAnalysisViewer type definitions for proper TypeScript compliance
- Fixed multiple CodeRabbit review feedback items for improved code quality
- Resolved React key warnings in PhaseProgressIndicator component
- Fixed git status parsing in merge preview for accurate worktree state detection
- Corrected path resolution in runners for proper module imports and .env loading
- Resolved CI lint and TypeScript errors across codebase
- Fixed HTTP error handling and path resolution issues in core modules
- Corrected worktree test to match intended branch detection behavior
- Refined TaskReview component conditional rendering for proper staged task display
---
## What's Changed
- feat: add interactive competitor analysis viewer for roadmap by @AndyMik90 in 7ff326d
- fix: correct CompetitorAnalysisViewer to match type definitions by @AndyMik90 in 4f1766b
- fix: address multiple CodeRabbit review feedback items by @AndyMik90 in 48f7c3c
- fix: use stable React keys instead of array indices in RoadmapHeader by @AndyMik90 in 892e01d
- fix: additional fixes for http error handling and path resolution by @AndyMik90 in 54501cb
- fix: update worktree test to match intended branch detection behavior by @AndyMik90 in f1d578f
- fix: resolve CI lint and TypeScript errors by @AndyMik90 in 2e3a5d9
- feat: enhance roadmap generation with stop functionality and debug logging by @AndyMik90 in a6dad42
- fix: correct path resolution in runners for module imports and .env loading by @AndyMik90 in 3d24f8f
- fix: resolve React key warning in PhaseProgressIndicator by @AndyMik90 in 9106038
- fix: enable stuck task detection for ai_review status by @AndyMik90 in 895ed9f
- feat: map GitHub issue labels to task categories by @AndyMik90 in cbe14fd
- feat: add GitHub issue comment selection and fix auto-start bug by @AndyMik90 in 4c1dd89
- feat: enhance TaskCreationWizard with drag-and-drop support for file references and inline @mentions by @AndyMik90 in d93eefe
- cleanup docs by @AndyMik90 in 8e891df
- fix: correct git status parsing in merge preview by @AndyMik90 in c721dc2
- Update TaskReview component to refine conditional rendering for staged tasks, ensuring proper display when staging is unsuccessful by @AndyMik90 in 1a2b7a1
- auto-claude: subtask-2-3 - Refine visual drop zone feedback to be more subtle by @AndyMik90 in 6cff442
- auto-claude: subtask-2-1 - Remove showFiles auto-expand on draft restore by @AndyMik90 in 12bf69d
- auto-claude: subtask-1-3 - Create an always-visible referenced files section by @AndyMik90 in 3818b46
- auto-claude: subtask-1-2 - Add drop zone wrapper around main modal content area by @AndyMik90 in 219b66d
- auto-claude: subtask-1-1 - Remove Reference Files toggle button by @AndyMik90 in 4e63e85
## 2.4.0 - Enhanced Cross-Platform Experience with OAuth & Auto-Updates
### ✨ New Features
- Claude account OAuth implementation on onboarding for seamless token setup
- Integrated release workflow with AI-powered version suggestion capabilities
- Auto-upgrading functionality supporting Windows, Linux, and macOS with automatic app updates
- Git repository initialization on app startup with project addition checks
- Debug logging for app updater to track update processes
- Auto-open settings to updates section when app update is ready
### 🛠️ Improvements
- Major Windows and Linux compatibility enhancements for cross-platform reliability
- Enhanced task status handling to support 'done' status in limbo state with worktree existence checks
- Better handling of lock files from worktrees upon merging
- Improved README documentation and build process
- Refined visual drop zone feedback for more subtle user experience
- Removed showFiles auto-expand on draft restore for better UX consistency
- Created always-visible referenced files section in task creation wizard
- Removed Reference Files toggle button for streamlined interface
- Worktree manual deletion enforcement for early access safety (prevents accidental work loss)
### 🐛 Bug Fixes
- Corrected git status parsing in merge preview functionality
- Fixed ESLint warnings and failing tests
- Fixed Windows/Linux Python handling for cross-platform compatibility
- Fixed Windows/Linux source path detection
- Refined TaskReview component conditional rendering for proper staged task display
---
## What's Changed
- docs: cleanup docs by @AndyMik90 in 8e891df
- fix: correct git status parsing in merge preview by @AndyMik90 in c721dc2
- refactor: Update TaskReview component to refine conditional rendering for staged tasks by @AndyMik90 in 1a2b7a1
- feat: Enhance task status handling to allow 'done' status in limbo state by @AndyMik90 in a20b8cf
- improvement: Worktree needs to be manually deleted for early access safety by @AndyMik90 in 0ed6afb
- feat: Claude account OAuth implementation on onboarding by @AndyMik90 in 914a09d
- fix: Better handling of lock files from worktrees upon merging by @AndyMik90 in e44202a
- feat: GitHub OAuth integration upon onboarding by @AndyMik90 in 4249644
- chore: lock update by @AndyMik90 in b0fc497
- improvement: Improved README and build process by @AndyMik90 in 462edcd
- fix: ESLint warnings and failing tests by @AndyMik90 in affbc48
- feat: Major Windows and Linux compatibility enhancements with auto-upgrade by @AndyMik90 in d7fd1a2
- feat: Add debug logging to app updater by @AndyMik90 in 96dd04d
- feat: Auto-open settings to updates section when app update is ready by @AndyMik90 in 1d0566f
- feat: Add integrated release workflow with AI version suggestion by @AndyMik90 in 7f3cd59
- fix: Windows/Linux Python handling by @AndyMik90 in 0ef0e15
- feat: Implement Electron app auto-updater by @AndyMik90 in efc112a
- fix: Windows/Linux source path detection by @AndyMik90 in d33a0aa
- refactor: Refine visual drop zone feedback to be more subtle by @AndyMik90 in 6cff442
- refactor: Remove showFiles auto-expand on draft restore by @AndyMik90 in 12bf69d
- feat: Create always-visible referenced files section by @AndyMik90 in 3818b46
- feat: Add drop zone wrapper around main modal content by @AndyMik90 in 219b66d
- feat: Remove Reference Files toggle button by @AndyMik90 in 4e63e85
- docs: Update README with git initialization and folder structure by @AndyMik90 in 2fa3c51
- chore: Version bump to 2.3.2 by @AndyMik90 in 59b091a
## 2.3.2 - UI Polish & Build Improvements
### 🛠️ Improvements
- Restructured SortableFeatureCard badge layout for improved visual presentation
Bug Fixes:
- Fixed spec runner path configuration for more reliable task execution
---
## What's Changed
- fix: fix to spec runner paths by @AndyMik90 in 9babdc2
- feat: auto-claude: subtask-1-1 - Restructure SortableFeatureCard badge layout by @AndyMik90 in dc886dc
## 2.3.1 - Linux Compatibility Fix
### 🐛 Bug Fixes
- Resolved path handling issues on Linux systems for improved cross-platform compatibility
---
## What's Changed
- fix: Fix to linux path issue by @AndyMik90 in 3276034
## 2.2.0 - 2025-12-17
### ✨ New Features
- Add usage monitoring with profile swap detection to prevent cascading resource issues
- Option to stash changes before merge operations for safer branch integration
- Add hideCloseButton prop to DialogContent component for improved UI flexibility
### 🛠️ Improvements
- Enhance AgentManager to manage task context cleanup and preserve swapCount on restarts
- Improve changelog feature with version tracking, markdown/preview, and persistent styling options
- Refactor merge conflict handling to use branch names instead of commit hashes for better clarity
- Streamline usage monitoring logic by removing unnecessary dynamic imports
- Better handling of lock files during merge conflicts
- Refactor code for improved readability and maintainability
- Refactor IdeationHeader and update handleDeleteSelected logic
### 🐛 Bug Fixes
- Fix worktree merge logic to correctly handle branch operations
- Fix spec_runner.py path resolution after move to runners/ directory
- Fix Discord release webhook failing on large changelogs
- Fix branch logic for merge AI operations
- Hotfix for spec-runner path location
---
## What's Changed
- fix: hotfix/spec-runner path location by @AndyMik90 in f201f7e
- refactor: Remove unnecessary dynamic imports of getUsageMonitor in terminal-handlers.ts to streamline usage monitoring logic by @AndyMik90 in 0da4bc4
- feat: Improve changelog feature, version tracking, markdown/preview, persistent styling options by @AndyMik90 in a0d142b
- refactor: Refactor code for improved readability and maintainability by @AndyMik90 in 473b045
- feat: Enhance AgentManager to manage task context cleanup and preserve swapCount on restarts. Update UsageMonitor to delay profile usage checks to prevent cascading swaps by @AndyMik90 in e5b9488
- feat: Usage-monitoring by @AndyMik90 in de33b2c
- feat: option to stash changes before merge by @AndyMik90 in 7e09739
- refactor: Refactor merge conflict check to use branch names instead of commit hashes by @AndyMik90 in e6d6cea
- fix: worktree merge logic by @AndyMik90 in dfb5cf9
- test: Sign off - all verification passed by @AndyMik90 in 34631c3
- feat: Pass hideCloseButton={showFileExplorer} to DialogContent by @AndyMik90 in 7c327ed
- feat: Add hideCloseButton prop to DialogContent component by @AndyMik90 in 5f9653a
- fix: branch logic for merge AI by @AndyMik90 in 2d2a813
- fix: spec_runner.py path resolution after move to runners/ directory by @AndyMik90 in ce9c2cd
- refactor: Better handling of lock files during merge conflicts by @AndyMik90 in 460c76d
- fix: Discord release webhook failing on large changelogs by @AndyMik90 in 4eb66f5
- chore: Update CHANGELOG with new features, improvements, bug fixes, and other changes by @AndyMik90 in 788b8d0
- refactor: Enhance merge conflict handling by excluding lock files by @AndyMik90 in 957746e
- refactor: Refactor IdeationHeader and update handleDeleteSelected logic by @AndyMik90 in 36338f3
## What's New
### ✨ New Features
- Added GitHub OAuth integration for seamless authentication
- Implemented roadmap feature management with kanban board and drag-and-drop support
- Added ability to select AI model during task creation with agent profiles
- Introduced file explorer integration and referenced files section in task creation wizard
- Added .gitignore entry management during project initialization
- Created comprehensive onboarding wizard with OAuth configuration, Graphiti setup, and first spec guidance
- Introduced Electron MCP for debugging and validation support
- Added BMM workflow status tracking and project scan reporting
### 🛠️ Improvements
- Refactored IdeationHeader component and improved deleteSelected logic
- Refactored backend for upcoming features with improved architecture
- Enhanced RouteDetector to exclude specific directories from route detection
- Improved merge conflict resolution with parallel processing and AI-assisted resolution
- Optimized merge conflict resolution performance and context sending
- Refactored AI resolver to use async context manager and Claude SDK patterns
- Enhanced merge orchestrator logic and frontend UX for conflict handling
- Refactored components for better maintainability and faster development
- Refactored changelog formatter for GitHub Release compatibility
- Enhanced onboarding wizard completion logic and step progression
- Updated README to clarify Auto Claude's role as an AI coding companion
### 🐛 Bug Fixes
- Fixed GraphitiStep TypeScript compilation error
- Added missing onRerunWizard prop to AppSettingsDialog
- Improved merge lock file conflict handling
### 🔧 Other Changes
- Removed .auto-claude and _bmad-output from git tracking (already in .gitignore)
- Updated Python versions in CI workflows
- General linting improvements and code cleanup
---
## What's Changed
- feat: New github oauth integration by @AndyMik90 in afeb54f
- feat: Implement roadmap feature management kanban with drag-and-drop support by @AndyMik90 in 9403230
- feat: Agent profiles, be able to select model on task creation by @AndyMik90 in d735c5c
- feat: Add Referenced Files Section and File Explorer Integration in Task Creation Wizard by @AndyMik90 in 31e4e87
- feat: Add functionality to manage .gitignore entries during project initialization by @AndyMik90 in 2ac00a9
- feat: Introduce electron mcp for electron debugging/validation by @AndyMik90 in 3eb2ead
- feat: Add BMM workflow status tracking and project scan report by @AndyMik90 in 7f6456f
- refactor: Refactor IdeationHeader and update handleDeleteSelected logic by @AndyMik90 in 36338f3
- refactor: Big backend refactor for upcoming features by @AndyMik90 in 11fcdf4
- refactor: Refactoring for better codebase by @AndyMik90 in feb0d4e
- refactor: Refactor Roadmap component to utilize RoadmapGenerationProgress for better status display by @AndyMik90 in d8e5784
- refactor: refactoring components for better future maintence and more rapid coding by @AndyMik90 in 131ec4c
- refactor: Enhance RouteDetector to exclude specific directories from route detection by @AndyMik90 in 08dc24c
- refactor: Update AI resolver to use Claude Opus model and improve error logging by @AndyMik90 in 1d830ba
- refactor: Use claude sdk pattern for ai resolver by @AndyMik90 in 4bba9d1
- refactor: Refactor AI resolver to use async context manager for client connection by @AndyMik90 in 579ea40
- refactor: Update changelog formatter for GitHub Release compatibility by @AndyMik90 in 3b832db
- refactor: Enhance onboarding wizard completion logic by @AndyMik90 in 7c01638
- refactor: Update GraphitiStep to proceed to the next step after successful configuration save by @AndyMik90 in a5a1eb1
- fix: Add onRerunWizard prop to AppSettingsDialog (qa-requested) by @AndyMik90 in 6b5b714
- fix: Add first-run detection to App.tsx by @AndyMik90 in 779e36f
- fix: Add TypeScript compilation check - fix GraphitiStep type error by @AndyMik90 in f90fa80
- improve: ideation improvements and linting by @AndyMik90 in 36a69fc
- improve: improve merge conflicts for lock files by @AndyMik90 in a891225
- improve: Roadmap competitor analysis by @AndyMik90 in ddf47ae
- improve: parallell merge conflict resolution by @AndyMik90 in f00aa33
- improve: improvement to speed of merge conflict resolution by @AndyMik90 in 56ff586
- improve: improve context sending to merge agent by @AndyMik90 in e409ae8
- improve: better conflict handling in the frontend app for merge contlicts (better UX) by @AndyMik90 in 65937e1
- improve: resolve claude agent sdk by @AndyMik90 in 901e83a
- improve: Getting ready for BMAD integration by @AndyMik90 in b94eb65
- improve: Enhance AI resolver and debugging output by @AndyMik90 in bf787ad
- improve: Integrate profile environment for OAuth token in task handlers by @AndyMik90 in 01e801a
- chore: Remove .auto-claude from tracking (already in .gitignore) by @AndyMik90 in 87f353c
- chore: Update Python versions in CI workflows by @AndyMik90 in 43a338c
- chore: Linting gods pleased now? by @AndyMik90 in 6aea4bb
- chore: Linting and test fixes by @AndyMik90 in 140f11f
- chore: Remove _bmad-output from git tracking by @AndyMik90 in 4cd7500
- chore: Add _bmad-output to .gitignore by @AndyMik90 in dbe27f0
- chore: Linting gods are happy by @AndyMik90 in 3fc1592
- chore: Getting ready for the lint gods by @AndyMik90 in 142cd67
- chore: CLI testing/linting by @AndyMik90 in d8ad17d
- chore: CLI and tests by @AndyMik90 in 9a59b7e
- chore: Update implementation_plan.json - fixes applied by @AndyMik90 in 555a46f
- chore: Update parallel merge conflict resolution metrics in workspace.py by @AndyMik90 in 2e151ac
- chore: merge logic v0.3 by @AndyMik90 in c5d33cd
- chore: merge orcehestrator logic by @AndyMik90 in e8b6669
- chore: Merge-orchestrator by @AndyMik90 in d8ba532
- chore: merge orcehstrator logic by @AndyMik90 in e8b6669
- chore: Electron UI fix for merge orcehstrator by @AndyMik90 in e08ab62
- chore: Frontend lints by @AndyMik90 in 488bbfa
- docs: Revise README.md to enhance clarity and focus on Auto Claude's capabilities by @AndyMik90 in f9ef7ea
- qa: Sign off - all verification passed by @AndyMik90 in b3f4803
- qa: Rejected - fixes required by @AndyMik90 in 5e56890
- qa: subtask-6-2 - Run existing tests to verify no regressions by @AndyMik90 in 5f989a4
- qa: subtask-5-2 - Enhance OAuthStep to detect and display if token is already configured by @AndyMik90 in 50f22da
- qa: subtask-5-1 - Add settings migration logic - set onboardingCompleted by @AndyMik90 in f57c28e
- qa: subtask-4-1 - Add 'Re-run Wizard' button to AppSettings navigation by @AndyMik90 in 9144e7f
- qa: subtask-3-1 - Add first-run detection to App.tsx by @AndyMik90 in 779e36f
- qa: subtask-2-8 - Create index.ts barrel export for onboarding components by @AndyMik90 in b0af2dc
- qa: subtask-2-7 - Create OnboardingWizard component by @AndyMik90 in 3de8928
- qa: subtask-2-6 - Create CompletionStep component - success message by @AndyMik90 in aa0f608
- qa: subtask-2-5 - Create FirstSpecStep component - guided first spec by @AndyMik90 in 32f17a1
- qa: subtask-2-4 - Create GraphitiStep component - optional Graphiti/FalkorDB configuration by @AndyMik90 in 61184b0
- qa: subtask-2-3 - Create OAuthStep component - Claude OAuth token configuration step by @AndyMik90 in 79d622e
- qa: subtask-2-2 - Create WelcomeStep component by @AndyMik90 in a97f697
- qa: subtask-2-1 - Create WizardProgress component - step progress indicator by @AndyMik90 in b6e604c
- qa: subtask-1-2 - Add onboardingCompleted to DEFAULT_APP_SETTINGS by @AndyMik90 in c5a0331
- qa: subtask-1-1 - Add onboardingCompleted to AppSettings type interface by @AndyMik90 in 7c24b48
- chore: Version 2.0.1 by @AndyMik90 in 4b242c4
- test: Merge-orchestrator by @AndyMik90 in d8ba532
- test: test for ai merge AI by @AndyMik90 in 9d9cf16
## What's New in 2.0.1
### 🚀 New Features
- **Update Check with Release URLs**: Enhanced update checking functionality to include release URLs, allowing users to easily access release information
- **Markdown Renderer for Release Notes**: Added markdown renderer in advanced settings to properly display formatted release notes
- **Terminal Name Generator**: New feature for generating terminal names
### 🔧 Improvements
- **LLM Provider Naming**: Updated project settings to reflect new LLM provider name
- **IPC Handlers**: Improved IPC handlers for external link management
- **UI Simplification**: Refactored App component to simplify project selection display by removing unnecessary wrapper elements
- **Docker Infrastructure**: Updated FalkorDB service container naming in docker-compose configuration
- **Documentation**: Improved README with dedicated CLI documentation and infrastructure status information
### 📚 Documentation
- Enhanced README with comprehensive CLI documentation and setup instructions
- Added Docker infrastructure status documentation
## What's New in v2.0.0
### New Features
- **Task Integration**: Connected ideas to tasks with "Go to Task" functionality across the UI
- **File Explorer Panel**: Implemented file explorer panel with directory listing capabilities
- **Terminal Task Selection**: Added task selection dropdown in terminal with auto-context loading
- **Task Archiving**: Introduced task archiving functionality
- **Graphiti MCP Server Integration**: Added support for Graphiti memory integration
- **Roadmap Functionality**: New roadmap visualization and management features
### Improvements
- **File Tree Virtualization**: Refactored FileTree component to use efficient virtualization for improved performance with large file structures
- **Agent Parallelization**: Improved Claude Code agent decision-making for parallel task execution
- **Terminal Experience**: Enhanced terminal with task features and visual feedback for better user experience
- **Python Environment Detection**: Auto-detect Python environment readiness before task execution
- **Version System**: Cleaner version management system
- **Project Initialization**: Simpler project initialization process
### Bug Fixes
- Fixed project settings bug
- Fixed insight UI sidebar
- Resolved Kanban and terminal integration issues
### Changed
- Updated project-store.ts to use proper Dirent type for specDirs variable
- Refactored codebase for better code quality
- Removed worktree-worker logic in favor of Claude Code's internal agent system
- Removed obsolete security configuration file (.auto-claude-security.json)
### Documentation
- Added CONTRIBUTING.md with development guidelines
## What's New in v1.1.0
### New Features
- **Follow-up Tasks**: Continue working on completed specs by adding new tasks to existing implementations. The system automatically re-enters planning mode and integrates with your existing documentation and context.
- **Screenshot Support for Feedback**: Attach screenshots to your change requests when reviewing tasks, providing visual context for your feedback alongside text comments.
- **Unified Task Editing**: The Edit Task dialog now includes all the same options as the New Task dialog—classification metadata, image attachments, and review settings—giving you full control when modifying tasks.
### Improvements
- **Enhanced Kanban Board**: Improved visual design and interaction patterns for task cards, making it easier to scan status, understand progress, and work with tasks efficiently.
- **Screenshot Handling**: Paste screenshots directly into task descriptions using Ctrl+V (Cmd+V on Mac) for faster documentation.
- **Draft Auto-Save**: Task creation state is now automatically saved when you navigate away, preventing accidental loss of work-in-progress.
### Bug Fixes
- Fixed task editing to support the same comprehensive options available in new task creation
================================================
FILE: CLA.md
================================================
# Auto Claude Individual Contributor License Agreement
Thank you for your interest in contributing to Auto Claude. This Contributor License Agreement ("Agreement") documents the rights granted by contributors to the Project.
By signing this Agreement, you accept and agree to the following terms and conditions for your present and future Contributions submitted to the Project.
## 1. Definitions
**"You" (or "Your")** means the individual who submits a Contribution to the Project.
**"Contribution"** means any original work of authorship, including any modifications or additions to an existing work, that is intentionally submitted by You to the Project for inclusion in, or documentation of, the Project. For the purposes of this definition, "submitted" means any form of electronic, verbal, or written communication sent to the Project or its representatives, including but not limited to communication on electronic mailing lists, source code control systems, and issue tracking systems that are managed by, or on behalf of, the Project for the purpose of discussing and improving the Project.
**"Project"** means Auto Claude, a multi-agent autonomous coding framework, currently available at https://github.com/AndyMik90/Auto-Claude.
**"Project Owner"** means Andre Mikalsen and any designated successors or assignees.
## 2. Grant of Copyright License
Subject to the terms and conditions of this Agreement, You hereby grant to the Project Owner and to recipients of software distributed by the Project Owner a perpetual, worldwide, non-exclusive, no-charge, royalty-free, irrevocable copyright license to:
- Reproduce, prepare derivative works of, publicly display, publicly perform, and distribute Your Contributions and such derivative works
- Sublicense any or all of the foregoing rights to third parties
## 3. Grant of Patent License
Subject to the terms and conditions of this Agreement, You hereby grant to the Project Owner and to recipients of software distributed by the Project Owner a perpetual, worldwide, non-exclusive, no-charge, royalty-free, irrevocable patent license to make, have made, use, offer to sell, sell, import, and otherwise transfer Your Contributions, where such license applies only to those patent claims licensable by You that are necessarily infringed by Your Contribution(s) alone or by combination of Your Contribution(s) with the Project to which such Contribution(s) was submitted.
## 4. Future Licensing Flexibility
You understand and agree that the Project Owner may, in the future, license the Project, including Your Contributions, under additional licenses beyond the current GNU Affero General Public License version 3.0 (AGPL-3.0). Such additional licenses may include commercial or enterprise licenses.
This provision ensures the Project has proper licensing flexibility should such licensing options be introduced in the future. The open source version of the Project will continue to be available under AGPL-3.0.
## 5. Representations
You represent that:
(a) You are legally entitled to grant the above licenses. If your employer(s) has rights to intellectual property that you create that includes your Contributions, you represent that you have received permission to make Contributions on behalf of that employer, or that your employer has waived such rights for your Contributions to the Project.
(b) Each of Your Contributions is Your original creation. You represent that Your Contribution submissions include complete details of any third-party license or other restriction (including, but not limited to, related patents and trademarks) of which you are personally aware and which are associated with any part of Your Contributions.
(c) Your Contribution does not violate any third-party rights, including but not limited to intellectual property rights, privacy rights, or contractual obligations.
## 6. Support and Warranty Disclaimer
You are not expected to provide support for Your Contributions, except to the extent You desire to provide support. You may provide support for free, for a fee, or not at all.
UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING, YOU PROVIDE YOUR CONTRIBUTIONS ON AN "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED, INCLUDING, WITHOUT LIMITATION, ANY WARRANTIES OR CONDITIONS OF TITLE, NON-INFRINGEMENT, MERCHANTABILITY, OR FITNESS FOR A PARTICULAR PURPOSE.
## 7. No Obligation to Use
You understand that the decision to include Your Contribution in any project or source repository is entirely at the discretion of the Project Owner, and this Agreement does not guarantee that Your Contributions will be included in any product.
## 8. Contributor Rights
You retain full copyright ownership of Your Contributions. Nothing in this Agreement shall be interpreted to prohibit you from licensing Your Contributions under different terms to third parties or from using Your Contributions for any other purpose.
## 9. Notification
You agree to notify the Project Owner of any facts or circumstances of which you become aware that would make these representations inaccurate in any respect.
---
## How to Sign
To sign this CLA, comment on your Pull Request with:
```
I have read the CLA Document and I hereby sign the CLA
```
Your signature will be recorded automatically.
---
*This CLA is based on the Apache Software Foundation Individual Contributor License Agreement v2.0.*
================================================
FILE: CLAUDE.md
================================================
# CLAUDE.md
This file provides guidance to Claude Code when working with this repository.
Auto Claude is an autonomous multi-agent coding framework that plans, builds, and validates software for you. It's a TypeScript-first Electron desktop application with a self-contained AI agent layer (Vercel AI SDK v6). A lightweight Python sidecar provides the optional Graphiti memory system.
> **Deep-dive reference:** [ARCHITECTURE.md](shared_docs/ARCHITECTURE.md) | **Frontend contributing:** [apps/desktop/CONTRIBUTING.md](apps/desktop/CONTRIBUTING.md)
## Product Overview
Auto Claude is a desktop application (+ CLI) where users describe a goal and AI agents autonomously handle planning, implementation, and QA validation. All work happens in isolated git worktrees so the main branch stays safe.
**Core workflow:** User creates a task → Spec creation pipeline assesses complexity and writes a specification → Planner agent breaks it into subtasks → Coder agent implements (can spawn parallel subagents) → QA reviewer validates → QA fixer resolves issues → User reviews and merges.
**Main features:**
- **Autonomous Tasks** — Multi-agent pipeline (planner, coder, QA) that builds features end-to-end
- **Kanban Board** — Visual task management from planning through completion
- **Agent Terminals** — Up to 12 parallel AI-powered terminals with task context injection
- **Insights** — AI chat interface for exploring and understanding your codebase
- **Roadmap** — AI-assisted feature planning with strategic roadmap generation
- **Ideation** — Discover improvements, performance issues, and security vulnerabilities
- **GitHub/GitLab Integration** — Import issues, AI-powered investigation, PR/MR review and creation
- **Changelog** — Generate release notes from completed tasks
- **Memory System** — Graphiti-based knowledge graph retains insights across sessions
- **Isolated Workspaces** — Git worktree isolation for every build; AI-powered semantic merge
- **Flexible Authentication** — Use a Claude Code subscription (OAuth) or API profiles with any Anthropic-compatible endpoint (e.g., Anthropic API, z.ai for GLM models)
- **Multi-Account Swapping** — Register multiple Claude accounts; when one hits a rate limit, Auto Claude automatically switches to an available account
- **Cross-Platform** — Native desktop app for Windows, macOS, and Linux with auto-updates
## Critical Rules
**Vercel AI SDK only** — All AI interactions use the Vercel AI SDK v6 (`ai` package) via the TypeScript agent layer in `apps/desktop/src/main/ai/`. NEVER use `@anthropic-ai/sdk` or `anthropic.Anthropic()` directly. Use `createProvider()` from `ai/providers/factory.ts` and `streamText()`/`generateText()` from the `ai` package. Provider-specific adapters (e.g., `@ai-sdk/anthropic`, `@ai-sdk/openai`) are managed through the provider registry.
**i18n required** — All frontend user-facing text uses `react-i18next` translation keys. Hardcoded strings in JSX/TSX break localization for non-English users. Add keys to both `en/*.json` and `fr/*.json`.
**Platform abstraction** — Never use `process.platform` directly. Import from `apps/desktop/src/main/platform/`. CI tests all three platforms.
**No time estimates** — Provide priority-based ordering instead of duration predictions.
**PR target** — Always target the `develop` branch for PRs, not `main`. Main is reserved for releases.
**No console.log in production code** — `console.log` output is invisible in bundled Electron apps. Use Sentry for error tracking in production; reserve `console.log` for development only.
## Work Approach: Orchestrator-First
You are an orchestrator. Your primary role is to understand what needs to be done, break it into workstreams, and delegate execution to agent teams. This keeps your context window focused on coordination and decision-making rather than filling up with implementation details.
When given a task, follow this pattern:
1. **Investigate first** — Read the actual code before forming any hypothesis. Use targeted searches (Glob, Grep, Read) for simple lookups. For broader exploration, spawn an Explore agent.
2. **Plan the approach** — Identify what needs to change, which files are involved, and whether work can be parallelized. For multi-step tasks, create a task list to track workstreams.
3. **Delegate execution** — Spawn agent teams to do the implementation work. Each agent gets a clear, self-contained assignment with all the context it needs: relevant file paths, the specific change to make, and acceptance criteria. Run independent workstreams in parallel.
4. **Verify and integrate** — Review agent outputs, run tests, and ensure changes work together. Fix integration issues or spawn follow-up agents as needed.
**When to delegate vs. do directly:**
- Delegate: multi-file changes, research across the codebase, independent parallel workstreams, tasks that would consume significant context
- Do directly: single-file edits, simple bug fixes, quick lookups, tasks where you already have the context
**Giving agents good assignments** — Each agent works with a fresh context. Include: the specific goal, relevant file paths, code patterns to follow, and what "done" looks like. Agents perform better with explicit, complete instructions than with vague references to "the current task."
**Minimal changes only** — Prefer the simplest approach (e.g., prompt-only changes, single guard clause) before suggesting multi-component solutions. If the user asks for X, implement X — don't bundle additional fixes they didn't request.
**Default to action** — When the user's intent implies making changes, implement them rather than only suggesting. If something is unclear, read the relevant code to fill in the gaps rather than asking. Only ask when genuine ambiguity remains about what the user wants.
## Context Management
Your context window will be automatically compacted as it approaches its limit, allowing you to continue working indefinitely. Do not stop tasks early due to context concerns — instead, persist progress and keep going.
**For long-running tasks:** Use git commits, task lists, and structured notes to track state. When context compacts, review git log and any progress files to re-orient. Focus on incremental progress — complete one component before moving to the next, and commit working states along the way.
**Parallel tool calls** — When reading multiple files, running independent searches, or executing unrelated commands, make all calls in parallel rather than sequentially. This significantly speeds up investigation and implementation.
## Known Gotchas
**Electron path resolution** — For bug fixes in the Electron app, check path resolution differences between dev and production builds (`app.isPackaged`, `process.resourcesPath`). Paths that work in dev often break when Electron is bundled for production — verify both contexts.
### Resetting PR Review State
To fully clear all PR review data so reviews run fresh, delete/reset these three things in `.auto-claude/github/`:
1. `rm .auto-claude/github/pr/logs_*.json` — review log files
2. `rm .auto-claude/github/pr/review_*.json` — review result files
3. Reset `pr/index.json` to `{"reviews": [], "last_updated": null}`
4. Reset `bot_detection_state.json` to `{"reviewed_commits": {}}` — this is the gatekeeper; without clearing it, the bot detector skips already-seen commits
## Project Structure
```
autonomous-coding/
├── apps/
│ └── desktop/ # Electron desktop application (sole app)
│ ├── prompts/ # Agent system prompts (.md)
│ └── src/
│ ├── main/ # Electron main process
│ │ ├── ai/ # TypeScript AI agent layer (Vercel AI SDK v6)
│ │ │ ├── providers/ # Multi-provider registry + factory (9+ providers)
│ │ │ ├── tools/ # Builtin tools (Read, Write, Edit, Bash, Glob, Grep, etc.)
│ │ │ ├── security/ # Bash validator, command parser, path containment
│ │ │ ├── config/ # Agent configs (25+ types), phase config, model resolution
│ │ │ ├── session/ # streamText() agent loop, error classification, progress
│ │ │ ├── agent/ # Worker thread executor + bridge
│ │ │ ├── orchestration/ # Build pipeline (planner → coder → QA)
│ │ │ ├── runners/ # Utility runners (insights, roadmap, PR review, etc.)
│ │ │ ├── mcp/ # MCP client integration
│ │ │ ├── client/ # Client factory convenience constructors
│ │ │ └── auth/ # Token resolution (reuses claude-profile/)
│ │ ├── agent/ # Agent queue, process, state, events
│ │ ├── claude-profile/ # Multi-profile credentials, token refresh, usage
│ │ ├── terminal/ # PTY daemon, lifecycle, Claude integration
│ │ ├── platform/ # Cross-platform abstraction
│ │ ├── ipc-handlers/# 40+ handler modules by domain
│ │ ├── services/ # Session recovery, profile service
│ │ └── changelog/ # Changelog generation and formatting
│ ├── preload/ # Electron preload scripts (electronAPI bridge)
│ ├── renderer/ # React UI
│ │ ├── components/ # UI components (onboarding, settings, task, terminal, github, etc.)
│ │ ├── stores/ # 24+ Zustand state stores
│ │ ├── contexts/ # React contexts (ViewStateContext)
│ │ ├── hooks/ # Custom hooks (useIpc, useTerminal, etc.)
│ │ ├── styles/ # CSS / Tailwind styles
│ │ └── App.tsx # Root component
│ ├── shared/ # Shared types, i18n, constants, utils
│ │ ├── i18n/locales/# en/*.json, fr/*.json
│ │ ├── constants/ # themes.ts, etc.
│ │ ├── types/ # 19+ type definition files
│ │ └── utils/ # ANSI sanitizer, shell escape, provider detection
│ └── types/ # TypeScript type definitions
├── guides/ # Documentation
└── scripts/ # Build and utility scripts
```
## Commands Quick Reference
### Setup
```bash
npm run install:all # Install all dependencies from root
# Or separately:
cd apps/desktop && npm install
```
### Testing
| Stack | Command | Tool |
|-------|---------|------|
| Frontend unit | `cd apps/desktop && npm test` | Vitest |
| Frontend E2E | `cd apps/desktop && npm run test:e2e` | Playwright |
### Releases
```bash
node scripts/bump-version.js patch|minor|major # Bump version
git push && gh pr create --base main # PR to main triggers release
```
See [RELEASE.md](RELEASE.md) for full release process.
## AI Agent Layer (`apps/desktop/src/main/ai/`)
All AI agent logic lives in TypeScript using the Vercel AI SDK v6. This replaces the previous Python `claude-agent-sdk` integration.
### Architecture Overview
- **Provider Layer** (`providers/`) — Multi-provider support via `createProviderRegistry()`. Supports Anthropic, OpenAI, Google, Bedrock, Azure, Mistral, Groq, xAI, and Ollama. Provider-specific transforms handle thinking token normalization and prompt caching.
- **Session Runtime** (`session/`) — `runAgentSession()` uses `streamText()` with `stopWhen: stepCountIs(N)` for agentic tool-use loops. Includes error classification (429/401/400) and progress tracking.
- **Worker Threads** (`agent/`) — Agent sessions run in `worker_threads` to avoid blocking the Electron main process. The `WorkerBridge` relays `postMessage()` events to the existing `AgentManagerEvents` interface.
- **Build Orchestration** (`orchestration/`) — Full planner → coder → QA pipeline. Parallel subagent execution via `Promise.allSettled()`.
- **Tools** (`tools/`) — 8 builtin tools (Read, Write, Edit, Bash, Glob, Grep, WebFetch, WebSearch) defined with Zod schemas via AI SDK `tool()`.
- **Security** (`security/`) — Bash validator, command parser, and path containment ported from Python with identical allowlist behavior.
- **Config** (`config/`) — `AGENT_CONFIGS` registry (25+ agent types), phase-aware model resolution, thinking budgets.
### Key Patterns
```typescript
// Agent session using streamText()
import { streamText, stepCountIs } from 'ai';
const result = streamText({
model: provider,
system: systemPrompt,
messages: conversationHistory,
tools: toolRegistry.getToolsForAgent(agentType),
stopWhen: stepCountIs(1000),
onStepFinish: ({ toolCalls, text, usage }) => {
progressTracker.update(toolCalls, text);
},
});
// Tool definition with Zod schema
import { tool } from 'ai';
import { z } from 'zod';
const readTool = tool({
description: 'Read a file from the filesystem',
inputSchema: z.object({
file_path: z.string(),
offset: z.number().optional(),
limit: z.number().optional(),
}),
execute: async ({ file_path, offset, limit }) => { /* ... */ },
});
```
### Agent Prompts (`apps/desktop/prompts/`)
| Prompt | Purpose |
|--------|---------|
| planner.md | Implementation plan with subtasks |
| coder.md / coder_recovery.md | Subtask implementation / recovery |
| qa_reviewer.md / qa_fixer.md | Acceptance validation / issue fixes |
| spec_gatherer/researcher/writer/critic.md | Spec creation pipeline |
| complexity_assessor.md | AI-based complexity assessment |
### Spec Directory Structure
Each spec in `.auto-claude/specs/XXX-name/` contains: `spec.md`, `requirements.json`, `context.json`, `implementation_plan.json`, `qa_report.md`, `QA_FIX_REQUEST.md`
### Memory System (Graphiti)
Graph-based semantic memory accessed via a Python MCP sidecar (lives outside `apps/desktop/`). The AI layer connects to it via `createMCPClient` from `@ai-sdk/mcp`. Configured through the Electron app's onboarding/settings UI. See [ARCHITECTURE.md](shared_docs/ARCHITECTURE.md#memory-system) for details.
## Frontend Development
### Tech Stack
React 19, TypeScript (strict), Electron 39, Vercel AI SDK v6, Zustand 5, Tailwind CSS v4, Radix UI, xterm.js 6, Vite 7, Vitest 4, Biome 2, Motion (Framer Motion)
### Path Aliases (tsconfig.json)
| Alias | Maps to |
|-------|---------|
| `@/*` | `src/renderer/*` |
| `@shared/*` | `src/shared/*` |
| `@preload/*` | `src/preload/*` |
| `@features/*` | `src/renderer/features/*` |
| `@components/*` | `src/renderer/shared/components/*` |
| `@hooks/*` | `src/renderer/shared/hooks/*` |
| `@lib/*` | `src/renderer/shared/lib/*` |
### State Management (Zustand)
All state lives in `src/renderer/stores/`. Key stores:
- `project-store.ts` — Active project, project list
- `task-store.ts` — Tasks/specs management
- `terminal-store.ts` — Terminal sessions and state
- `settings-store.ts` — User preferences
- `github/issues-store.ts`, `github/pr-review-store.ts` — GitHub integration
- `insights-store.ts`, `roadmap-store.ts`, `kanban-settings-store.ts`
Main process also has stores: `src/main/project-store.ts`, `src/main/terminal-session-store.ts`
### Styling
- **Tailwind CSS v4** with `@tailwindcss/postcss` plugin
- **7 color themes** (Default, Dusk, Lime, Ocean, Retro, Neo + more) defined in `src/shared/constants/themes.ts`
- Each theme has light/dark mode variants via CSS custom properties
- Utility: `clsx` + `tailwind-merge` via `cn()` helper
- Component variants: `class-variance-authority` (CVA)
### IPC Communication
Main ↔ Renderer communication via Electron IPC:
- **Handlers:** `src/main/ipc-handlers/` — organized by domain (github, gitlab, ideation, context, etc.)
- **Preload:** `src/preload/` — exposes safe APIs to renderer
- Pattern: renderer calls via `window.electronAPI.*`, main handles in IPC handler modules
### Agent Management (`src/main/agent/`)
The frontend manages agent lifecycle end-to-end:
- **`agent-queue.ts`** — Queue routing, prioritization, spec number locking
- **`agent-process.ts`** — Spawns worker threads via `WorkerBridge` for agent execution
- **`agent-state.ts`** — Tracks running agent state and status
- **`agent-events.ts`** — Agent lifecycle events and state transitions (structured events from worker threads)
### Claude Profile System (`src/main/claude-profile/`)
Multi-profile credential management for switching between Claude accounts:
- **`credential-utils.ts`** — OS credential storage (Keychain/Windows Credential Manager)
- **`token-refresh.ts`** — OAuth token lifecycle and automatic refresh
- **`usage-monitor.ts`** — API usage tracking and rate limiting per profile
- **`profile-scorer.ts`** — Scores profiles by usage and availability
### Terminal System (`src/main/terminal/`)
Full PTY-based terminal integration:
- **`pty-daemon.ts`** / **`pty-manager.ts`** — Background PTY process management
- **`terminal-lifecycle.ts`** — Session creation, cleanup, event handling
- **`claude-integration-handler.ts`** — Claude SDK integration within terminals
- Renderer: xterm.js 6 with WebGL, fit, web-links, serialize addons. Store: `terminal-store.ts`
## Code Quality
### Frontend
- **Linting:** Biome (`npm run lint` / `npm run lint:fix`)
- **Type checking:** `npm run typecheck` (strict mode)
- **Pre-commit:** Husky + lint-staged runs Biome on staged `.ts/.tsx/.js/.jsx/.json`
- **Testing:** Vitest + React Testing Library + jsdom
## i18n Guidelines
All frontend UI text uses `react-i18next`. Translation files: `apps/desktop/src/shared/i18n/locales/{en,fr}/*.json`
**Namespaces:** `common`, `navigation`, `settings`, `dialogs`, `tasks`, `errors`, `onboarding`, `welcome`
```tsx
import { useTranslation } from 'react-i18next';
const { t } = useTranslation(['navigation', 'common']);
{t('navigation:items.githubPRs')} // CORRECT
GitHub PRs // WRONG
// With interpolation:
{t('errors:task.parseError', { error })}
```
When adding new UI text: add keys to ALL language files, use `namespace:section.key` format.
## Cross-Platform
Supports Windows, macOS, Linux. CI tests all three.
**Platform modules:** `apps/desktop/src/main/platform/`
| Function | Purpose |
|----------|---------|
| `isWindows()` / `isMacOS()` / `isLinux()` | OS detection |
| `getPathDelimiter()` | `;` (Win) or `:` (Unix) |
| `findExecutable(name)` | Cross-platform executable lookup |
| `requiresShell(command)` | `.cmd/.bat` shell detection (Win) |
Use `findExecutable()` and `joinPaths()` instead of hardcoded paths. See [ARCHITECTURE.md](shared_docs/ARCHITECTURE.md#cross-platform-development) for extended guide.
## E2E Testing (Electron MCP)
QA agents can interact with the running Electron app via Chrome DevTools Protocol:
1. Start app: `npm run dev:debug` (debug mode for AI self-validation via Electron MCP)
2. Enable Electron MCP in settings
3. QA runs automatically through the TypeScript agent pipeline
Tools: `take_screenshot`, `click_by_text`, `fill_input`, `get_page_structure`, `send_keyboard_shortcut`, `eval`. See [ARCHITECTURE.md](shared_docs/ARCHITECTURE.md#end-to-end-testing) for full capabilities.
## Running the Application
```bash
# Desktop app
npm start # Production build + run
npm run dev # Development mode with HMR
npm run dev:debug # Debug mode with verbose output
npm run dev:mcp # Electron MCP server for AI debugging
# Project data: .auto-claude/specs/ (gitignored)
```
================================================
FILE: CODEX_RATE_LIMITS_RESEARCH.md
================================================
# Codex Rate Limit Monitoring — Full System Research
> Temporary research file. Delete after implementation.
## Table of Contents
1. [Codex Usage API](#1-codex-usage-api)
2. [Current System Architecture](#2-current-system-architecture)
3. [Anthropic-Hardcoded Locations](#3-anthropic-hardcoded-locations)
4. [Provider-Agnostic Parts (No Changes Needed)](#4-provider-agnostic-parts)
5. [Implementation Plan](#5-implementation-plan)
---
## 1. Codex Usage API
**Sources:** OpenAI Codex source code (`github.com/openai/codex`, Rust codebase), CodexBar macOS app (`github.com/steipete/CodexBar`), Context7 Codex developer docs.
### 1.1 Active Polling Endpoint
```
GET https://chatgpt.com/backend-api/wham/usage
```
Fallback (when base URL doesn't contain `/backend-api`):
```
GET {base_url}/api/codex/usage
```
**Required Headers:**
```http
Authorization: Bearer
ChatGPT-Account-Id:
Content-Type: application/json
Accept: application/json
```
- `access_token` — The OAuth access token from `auth.openai.com` (same token our `codex-oauth.ts` already obtains)
- `account_id` — Account UUID from OAuth token data. Stored in `~/.codex/auth.json` under `tokens.account_id`. Optional per CodexBar ("when available") but may be required.
### 1.2 Response Schema
From `codex-rs/codex-backend-openapi-models/src/models/rate_limit_status_payload.rs`:
```json
{
"plan_type": "plus",
"rate_limit": {
"allowed": true,
"limit_reached": false,
"primary_window": {
"used_percent": 96,
"limit_window_seconds": 18000,
"reset_after_seconds": 673,
"reset_at": 1730947200
},
"secondary_window": {
"used_percent": 70,
"limit_window_seconds": 604800,
"reset_after_seconds": 43200,
"reset_at": 1730980800
}
},
"credits": {
"has_credits": false,
"unlimited": true,
"balance": null
},
"additional_rate_limits": [
{
"limit_name": "codex_other",
"metered_feature": "codex_other",
"rate_limit": {
"allowed": true,
"limit_reached": false,
"primary_window": {
"used_percent": 70,
"limit_window_seconds": 3600,
"reset_after_seconds": 1800,
"reset_at": 1730947200
}
}
}
]
}
```
- `primary_window` = 5h session (18000s). Maps to our `sessionPercent`.
- `secondary_window` = Weekly (604800s = 7d). Maps to our `weeklyPercent`.
- `reset_at` = Unix timestamp (seconds). Convert to ms for our `sessionResetTimestamp`/`weeklyResetTimestamp`.
- `plan_type` values: `guest`, `free`, `go`, `plus`, `pro`, `free_workspace`, `team`, `business`, `education`, `quorum`, `k12`, `enterprise`, `edu`
### 1.3 Passive Headers (From API Responses)
Rate limit data is also returned in HTTP response headers on every `/v1/responses` call:
```
x-codex-primary-used-percent → float (e.g., "25.0")
x-codex-primary-window-minutes → integer (e.g., "300" for 5h)
x-codex-primary-reset-at → unix timestamp seconds
x-codex-secondary-used-percent → float (weekly)
x-codex-secondary-window-minutes → integer
x-codex-secondary-reset-at → unix timestamp seconds
x-codex-credits-has-credits → "true" or "false"
x-codex-credits-unlimited → "true" or "false"
x-codex-credits-balance → decimal string e.g. "9.99"
```
SSE event type `codex.rate_limits` also carries this data inline in streaming responses.
### 1.4 Token Details
Our `codex-oauth.ts` already uses the correct flow:
- **Client ID:** `app_EMoamEEZ73f0CkXaXp7hrann` (same as Codex CLI)
- **Auth endpoint:** `https://auth.openai.com/oauth/authorize`
- **Token endpoint:** `https://auth.openai.com/oauth/token`
- **Scopes:** `openid profile email offline_access`
- **Refresh:** `POST https://auth.openai.com/oauth/token` with `grant_type=refresh_token`
**Missing:** `account_id` for the `ChatGPT-Account-Id` header. Options:
1. Decode from the JWT access token
2. Read from `~/.codex/auth.json` (`tokens.account_id`)
3. Extract during OAuth token exchange (may be in response)
4. Try without it first (optional per CodexBar docs)
---
## 2. Current System Architecture
### 2.1 Two Parallel Account Systems
The app has TWO account management systems that don't fully integrate:
**System A: Legacy Claude Profile Manager (Main Process)**
- `claude-profile-manager.ts` — Manages OAuth profiles, rate limits, usage, auto-swap
- `claude-profiles.json` — Stores profiles with `activeProfileId`, `accountPriorityOrder`
- `usage-monitor.ts` — Polls Anthropic's `/api/oauth/usage` endpoint every 30s
- `token-refresh.ts` — Refreshes tokens via `console.anthropic.com/v1/oauth/token`
- `rate-limit-detector.ts` — Detects rate limits, triggers auto-swap
- `profile-scorer.ts` — Scores profiles by availability for auto-swap
- **100% Anthropic-specific.** Only knows about Anthropic OAuth tokens, Anthropic endpoints, Anthropic keychain format.
**System B: Multi-Provider Accounts (Renderer + Settings)**
- `ProviderAccount[]` in `settings-store.ts` — All connected accounts (any provider)
- `globalPriorityOrder: string[]` in AppSettings — Manual priority queue
- `useActiveProvider()` hook — First account in priority order = active
- **Provider-agnostic.** Works for all 10 providers. But has NO usage monitoring, NO auto-swap.
**The gap:** System A handles usage monitoring + auto-swap but only for Anthropic. System B handles multi-provider accounts but has no usage awareness.
### 2.2 Data Flow: Usage Polling
```
UsageMonitor.start() → 30s interval
↓
checkUsageAndSwap()
├─ determineActiveProfile() ← Hardcoded: defaults to anthropic baseUrl
├─ getCredential() ← Hardcoded: reads from Anthropic keychain
│ └─ ensureValidToken(configDir) ← Hardcoded: refreshes via Anthropic endpoint
├─ fetchUsageViaAPI() ← Hardcoded: only allows anthropic/zai/zhipu domains
│ ├─ getUsageEndpoint(provider) ← Only 3 providers configured
│ ├─ Add anthropic-specific headers ← if (provider === 'anthropic') add beta headers
│ └─ Parse response ← Provider-specific normalization
├─ emit('usage-updated') → IPC 'claude:usageUpdated' → renderer
├─ emit('all-profiles-usage-updated') → IPC 'claude:allProfilesUsageUpdated' → renderer
└─ checkThresholdsExceeded()
└─ performProactiveSwap() ← Only swaps Anthropic profiles
```
### 2.3 Data Flow: Account Swapping
**Manual swap (UI):**
```
User clicks account in UsageIndicator popover
→ handleSwapAccount(accountId)
→ setQueueOrder([accountId, ...rest]) ← Reorders globalPriorityOrder
→ requestUsageUpdate() ← Refreshes usage display
```
**Automatic swap (rate limit hit):**
```
SDK operation fails with 429
→ detectRateLimit(output) ← Pattern: "Limit reached · resets..."
→ recordRateLimitEvent(profileId)
→ getBestAvailableProfileEnv()
→ profileManager.setActiveProfile() ← Only updates claude-profiles.json
→ usageMonitor.getAllProfilesUsage() ← Refreshes UI
← Returns new profile env vars
```
**Problem:** Auto-swap updates `claude-profiles.json` but NOT `globalPriorityOrder`. The renderer's priority queue may be out of sync.
### 2.4 UI Components
| Component | What it shows | Provider-specific? |
|---|---|---|
| `AuthStatusIndicator` | Provider badge (OpenAI/Anthropic) + auth type label | Codex = green "Codex", Anthropic = orange "OAuth" |
| `UsageIndicator` | Usage bars OR "Subscription" OR "Unlimited" | Anthropic OAuth = bars, Codex OAuth = "Subscription", API = "Unlimited" |
| `ProviderAccountCard` | Account card in settings with usage bars | Shows usage bars only when `account.usage` populated (Anthropic only) |
| `ProviderAccountsList` | All accounts grouped by provider | Generic, but re-auth routes differ per provider |
| `AddAccountDialog` | OAuth flow + account creation | Different flows: Codex → `codexAuthLogin()`, Anthropic → `claudeAuthLoginSubprocess()` |
| `ProviderSection` | Provider group with "Add" buttons | Button label: "Add Codex Subscription" vs "Add OAuth" |
### 2.5 Type Naming
Types use "Claude" prefix but are structurally generic:
```typescript
ClaudeUsageSnapshot → { sessionPercent, weeklyPercent, resetTimestamps, profileId, ... }
ClaudeUsageData → { sessionUsagePercent, weeklyUsagePercent }
ClaudeRateLimitEvent → { type, hitAt, resetAt }
ProfileUsageSummary → { sessionPercent, weeklyPercent, availabilityScore, ... }
AllProfilesUsage → { activeProfile, allProfiles[], fetchedAt }
```
These types work perfectly for Codex data — same session/weekly model. No structural changes needed, just need to populate them.
---
## 3. Anthropic-Hardcoded Locations
### 3.1 CRITICAL — Must Change
| File | Line(s) | What's hardcoded | What to do |
|---|---|---|---|
| `usage-monitor.ts:45-49` | `ALLOWED_USAGE_API_DOMAINS` | Only `api.anthropic.com`, `api.z.ai`, `open.bigmodel.cn` | Add `chatgpt.com` |
| `usage-monitor.ts:60-73` | `PROVIDER_USAGE_ENDPOINTS` | Only anthropic/zai/zhipu paths | Add `{ provider: 'openai', usagePath: '/wham/usage' }` |
| `usage-monitor.ts:662,1069,1346,1359` | `baseUrl: 'https://api.anthropic.com'` | Hardcoded fallback for all OAuth profiles | Detect provider from account, use `chatgpt.com/backend-api` for Codex |
| `usage-monitor.ts:1424` | `if (provider === 'anthropic')` adds beta headers | Anthropic-specific `anthropic-beta` header | Add `else if (provider === 'openai')` to add `ChatGPT-Account-Id` header |
| `token-refresh.ts:31` | `ANTHROPIC_TOKEN_ENDPOINT = 'https://console.anthropic.com/v1/oauth/token'` | Only Anthropic refresh endpoint | Route to `auth.openai.com/oauth/token` for Codex |
| `token-refresh.ts:37` | `CLAUDE_CODE_CLIENT_ID = '9d1c250a-...'` | Only Anthropic client ID | Use `app_EMoamEEZ73f0CkXaXp7hrann` for Codex |
| `UsageIndicator.tsx:118` | `provider === 'anthropic' && authType === 'oauth'` | Only Anthropic gets usage bars | Add `\|\| provider === 'openai'` |
### 3.2 MODERATE — Should Change
| File | Line(s) | What's hardcoded | What to do |
|---|---|---|---|
| `usage-monitor.ts:1040-1072` | `determineActiveProfile()` | Returns `baseUrl: 'https://api.anthropic.com'` for all OAuth | Detect provider, return `chatgpt.com/backend-api` for Codex |
| `credential-utils.ts` | Keychain service names | `"Claude Code-credentials"` | Codex tokens stored differently (file-based, not keychain) |
| `usage-monitor.ts:1513` | `if (provider === 'zai' \|\| provider === 'zhipu')` | Provider-specific response unwrapping | Add Codex response parsing (different JSON structure) |
| `rate-limit-detector.ts:14` | `RATE_LIMIT_PATTERN` | Claude-specific: `"Limit reached · resets..."` | Add Codex-specific patterns |
| IPC channel names | `'claude:usageUpdated'`, `'claude:allProfilesUsageUpdated'` | "claude" prefix | Cosmetic — rename to `'usage:updated'` etc. (optional, low priority) |
### 3.3 LOW PRIORITY — Nice to Have
| Item | What | Why low priority |
|---|---|---|
| Type naming | `ClaudeUsageSnapshot` → `UsageSnapshot` | Structural refactor, types work as-is for Codex |
| IPC method names | `requestUsageUpdate` returns `ClaudeUsageSnapshot` | Works fine, just naming |
| `claudeProfileId` on `ProviderAccount` | Only used for Anthropic OAuth | Codex doesn't need it |
---
## 4. Provider-Agnostic Parts
These components already work for any provider and need NO changes:
| Component/Module | Why it's already generic |
|---|---|
| `profile-scorer.ts` | Scores by `billingModel`, usage thresholds, rate limit events — no provider checks |
| `rate-limit-manager.ts` | Stores/checks rate limit events — pure data, no provider logic |
| `operation-registry.ts` | Tracks running operations — no provider awareness |
| `ProviderAccount` type | Has `provider` field, `billingModel`, `usage` — works for any provider |
| `globalPriorityOrder` | Array of account IDs — provider-agnostic ordering |
| `useActiveProvider()` hook | Returns first account in priority order — generic |
| `ProviderAccountCard` | Shows usage bars when `account.usage` is populated — will work for Codex once data flows |
| `AddAccountDialog` | Already has separate Codex OAuth flow |
| `AuthStatusIndicator` | Already shows Codex-specific green badge |
| All i18n keys | Codex-specific labels already exist |
---
## 5. Implementation Plan
### Phase 1: Codex Usage Fetcher (Core)
Create `apps/desktop/src/main/claude-profile/codex-usage-fetcher.ts`:
```typescript
// Responsibilities:
// 1. Read Codex OAuth token (from our codex-auth.json)
// 2. Read account_id (from ~/.codex/auth.json or JWT decode)
// 3. Call GET https://chatgpt.com/backend-api/wham/usage
// 4. Parse response into ClaudeUsageSnapshot format
// 5. Handle 401 → refresh token via codex-oauth.ts
// 6. Handle 403 → mark as needsReauthentication
```
**Key function:**
```typescript
async function fetchCodexUsage(accessToken: string, accountId?: string): Promise
```
### Phase 2: Wire into Usage Monitor
Modify `usage-monitor.ts`:
1. Add `chatgpt.com` to `ALLOWED_USAGE_API_DOMAINS`
2. Add Codex to `PROVIDER_USAGE_ENDPOINTS`
3. Update `determineActiveProfile()` to detect Codex accounts from `globalPriorityOrder`
4. Update `getCredential()` to read Codex OAuth token (from `codex-auth.json`)
5. Update `fetchUsageViaAPI()` to handle Codex response format
6. Add Codex-specific headers (`ChatGPT-Account-Id`)
7. Add Codex response parsing (different JSON structure than Anthropic)
### Phase 3: Token Refresh Routing
Modify `token-refresh.ts` or create parallel Codex path:
- When refreshing a Codex token, use `auth.openai.com/oauth/token` with Codex client ID
- When refreshing an Anthropic token, use `console.anthropic.com/v1/oauth/token` with Claude client ID
- Provider detection: check the account's `provider` field, or detect from token prefix
### Phase 4: UI Updates
1. `UsageIndicator.tsx:118` — Add `|| provider === 'openai'` to `hasUsageMonitoring`
2. That's it — the rest of the UI already handles usage bars, reset times, multi-profile display generically
### Phase 5: Auto-Swap for Codex
1. Add Codex-specific rate limit patterns to `rate-limit-detector.ts`
2. Codex returns `"codexErrorInfo": "UsageLimitExceeded"` on limit hit
3. Auto-swap logic in `profile-scorer.ts` already works — it just needs usage data populated
---
## Appendix: Comparison Table
| Aspect | Anthropic (Claude Code) | OpenAI (Codex) |
|---|---|---|
| **Usage endpoint** | `api.anthropic.com/api/oauth/usage` | `chatgpt.com/backend-api/wham/usage` |
| **Auth header** | `Bearer ` | `Bearer ` + `ChatGPT-Account-Id` |
| **Session window** | ~5h | Configurable (`limit_window_seconds`) |
| **Weekly window** | 7 days | Configurable (`limit_window_seconds`) |
| **Token source** | Keychain (`Claude Code-credentials`) | File (`codex-auth.json`) |
| **Token refresh** | `console.anthropic.com/v1/oauth/token` | `auth.openai.com/oauth/token` |
| **Client ID** | `9d1c250a-e61b-44d9-88ed-5944d1962f5e` | `app_EMoamEEZ73f0CkXaXp7hrann` |
| **Passive tracking** | Not available | `x-codex-*` response headers |
| **Rate limit error** | `"Limit reached · resets Dec 17..."` | `"codexErrorInfo": "UsageLimitExceeded"` |
| **Profile isolation** | `~/.claude-profiles/{name}/` dirs | Single `codex-auth.json` file |
| **Multi-account** | Multiple config dirs in keychain | Single file (no multi-account yet) |
## Appendix: Caveats
1. **Undocumented API** — `chatgpt.com/backend-api/wham/usage` is internal. The Codex CLI depends on it, so it's unlikely to break silently.
2. **Account ID** — May be required. Test without it first. If needed, decode from JWT or read `~/.codex/auth.json`.
3. **CORS** — Not an issue (Electron main process = Node.js).
4. **Polling rate** — Unknown if OpenAI rate-limits `wham/usage`. Start conservatively (every 30-60s).
5. **Multi-account Codex** — Codex CLI doesn't support multiple accounts. We store one token file. If user has multiple Codex accounts, they'd need to re-auth each time (unlike Anthropic which supports multiple config dirs).
================================================
FILE: CONTRIBUTING.md
================================================
# Contributing to Auto Claude
Thank you for your interest in contributing to Auto Claude! This document provides guidelines and instructions for contributing to the project.
## How to Contribute
| What you want to do | Where to start |
|----------------------|----------------|
| Bug fixes & small improvements | Open a PR directly |
| New features / architecture changes | Start a [GitHub Discussion](https://github.com/AndyMik90/Auto-Claude/discussions) or ask in [Discord](https://discord.com/channels/1448614759996854284/1451298184612548779) first |
| Questions & setup help | [Discord #setup-help](https://discord.com/channels/1448614759996854284/1451298184612548779) |
## AI-Assisted Contributions
PRs built with AI tools (Claude, Codex, Copilot, etc.) are welcome here -- given what this project does, it would be odd if they weren't.
That said, we've seen AI-generated PRs that introduce regressions because the contributor didn't verify what the code actually does. To keep quality high, we ask that AI-assisted PRs include the following:
- **Flag it** -- mention AI assistance in the PR description (the PR template has a section for this)
- **State your testing level** -- untested, lightly tested, or fully tested
- **Share context if you can** -- prompts or session logs help reviewers understand intent
- **Confirm you understand the code** -- you should be able to describe what the PR does and how the underlying code works
AI-assisted PRs go through the same review process as any other contribution. Transparency just helps reviewers know where to look more carefully.
## Table of Contents
- [How to Contribute](#how-to-contribute)
- [AI-Assisted Contributions](#ai-assisted-contributions)
- [Contributor License Agreement (CLA)](#contributor-license-agreement-cla)
- [Prerequisites](#prerequisites)
- [Quick Start](#quick-start)
- [Development Setup](#development-setup)
- [Pre-commit Hooks](#pre-commit-hooks)
- [Code Style](#code-style)
- [Testing](#testing)
- [Continuous Integration](#continuous-integration)
- [Git Workflow](#git-workflow)
- [Working with Forks](#working-with-forks)
- [Branch Overview](#branch-overview)
- [Main Branches](#main-branches)
- [Supporting Branches](#supporting-branches)
- [Branch Naming](#branch-naming)
- [Where to Branch From](#where-to-branch-from)
- [Pull Request Targets](#pull-request-targets)
- [Release Process](#release-process-maintainers)
- [Commit Messages](#commit-messages)
- [PR Hygiene](#pr-hygiene)
- [Pull Request Process](#pull-request-process)
- [Issue Reporting](#issue-reporting)
- [Architecture Overview](#architecture-overview)
## Contributor License Agreement (CLA)
All contributors must sign our Contributor License Agreement (CLA) before contributions can be accepted.
### Why We Require a CLA
Auto Claude is currently licensed under AGPL-3.0. The CLA ensures the project has proper licensing flexibility should we introduce additional licensing options (such as commercial/enterprise licenses) in the future.
You retain full copyright ownership of your contributions.
### How to Sign
1. Open a Pull Request
2. The CLA bot will automatically comment with instructions
3. Comment on the PR with: `I have read the CLA Document and I hereby sign the CLA`
4. Done - you only need to sign once, and it applies to all future contributions
Read the full CLA here: [CLA.md](CLA.md)
## Prerequisites
Before contributing, ensure you have the following installed:
- **Node.js 24+** - For the Electron desktop app
- **npm 10+** - Package manager (comes with Node.js)
- **CMake** - Required for building native dependencies (e.g., node-pty)
- **Git** - Version control
### Installing Node.js 24+
**Windows:**
```bash
winget install OpenJS.NodeJS.LTS
```
**macOS:**
```bash
brew install node@24
```
**Linux (Ubuntu/Debian):**
```bash
curl -fsSL https://deb.nodesource.com/setup_24.x | sudo -E bash -
sudo apt install -y nodejs
```
**Linux (Fedora):**
```bash
sudo dnf install nodejs npm
```
### Installing CMake
**Windows:**
```bash
winget install Kitware.CMake
```
**macOS:**
```bash
brew install cmake
```
**Linux (Ubuntu/Debian):**
```bash
sudo apt install cmake
```
**Linux (Fedora):**
```bash
sudo dnf install cmake
```
## Quick Start
The fastest way to get started:
```bash
# Clone the repository
git clone https://github.com/AndyMik90/Auto-Claude.git
cd Auto-Claude
# Install all dependencies (cross-platform)
npm run install:all
# Run in development mode
npm run dev
# Or build and run production
npm start
```
## Development Setup
The project is a single Electron desktop application in `apps/desktop/`. All AI agent logic lives in TypeScript using the Vercel AI SDK v6.
From the repository root:
```bash
# Install all dependencies
npm run install:all
# Start development mode (hot reload)
npm run dev
```
`npm run install:all` installs the npm dependencies for `apps/desktop/`.
### Other Useful Commands
```bash
npm start # Build and run production
npm run build # Build for production
npm run package # Package for distribution
npm test # Run frontend tests
```
> **Note:** For regular usage, we recommend downloading the pre-built releases from [GitHub Releases](https://github.com/AndyMik90/Auto-Claude/releases). Running from source is primarily for contributors and those testing unreleased features.
## Pre-commit Hooks
We use Husky + lint-staged to run Biome linting and formatting checks before each commit.
### Setup
Husky is installed automatically when you run `npm install` inside `apps/desktop/`.
### What Runs on Commit
When you commit, the following checks run automatically on staged files:
| Check | Scope | Description |
|-------|-------|-------------|
| **Biome** | `apps/desktop/` | TypeScript/React linter + formatter |
| **typecheck** | `apps/desktop/` | TypeScript type checking |
| **trailing-whitespace** | All files | Removes trailing whitespace |
| **end-of-file-fixer** | All files | Ensures files end with newline |
| **check-yaml** | All files | Validates YAML syntax |
| **check-added-large-files** | All files | Prevents large file commits |
### Running Manually
```bash
cd apps/desktop
# Run linter (Biome)
npm run lint
# Auto-fix lint issues
npm run lint:fix
# Run type checking
npm run typecheck
```
### If a Check Fails
1. **Biome auto-fixes**: Run `npm run lint:fix` in `apps/desktop/`. Stage the changes and commit again.
2. **Type errors**: Resolve TypeScript type issues before committing.
## Code Style
### TypeScript/React
- Use TypeScript strict mode
- Follow the existing component patterns in `apps/desktop/src/`
- Use functional components with hooks
- Prefer named exports over default exports
- Use the UI components from `src/renderer/components/ui/`
```typescript
// Good
export function TaskCard({ task, onEdit }: TaskCardProps) {
const [isEditing, setIsEditing] = useState(false);
...
}
// Avoid
export default function(props) {
...
}
```
### General
- No trailing whitespace
- Use 2 spaces for indentation in TypeScript/JSON, 4 spaces in Python
- End files with a newline
- Keep line length under 100 characters when practical
## Testing
### Frontend Tests
```bash
cd apps/desktop
# Run unit tests
npm test
# Run tests in watch mode
npm run test:watch
# Run with coverage
npm run test:coverage
# Run E2E tests (requires built app)
npm run build
npm run test:e2e
# Run linting
npm run lint
# Run type checking
npm run typecheck
```
### Testing Requirements
Before submitting a PR:
1. **All existing tests must pass**
2. **New features should include tests**
3. **Bug fixes should include a regression test**
4. **Test coverage should not decrease significantly**
## Continuous Integration
All pull requests and pushes to `main` trigger automated CI checks via GitHub Actions.
### Workflows
| Workflow | Trigger | What it checks |
|----------|---------|----------------|
| **CI** | Push to `main`, PRs | Frontend tests (all 3 platforms), TypeScript type check, build |
| **Lint** | Push to `main`, PRs | Biome (TypeScript/React) |
### PR Requirements
Before a PR can be merged:
1. All CI checks must pass (green checkmarks)
2. Frontend tests pass on all three platforms (Ubuntu, Windows, macOS)
3. Linting passes (no Biome errors)
4. TypeScript type checking passes
### Running CI Checks Locally
```bash
cd apps/desktop
npm test
npm run lint
npm run typecheck
```
## Git Workflow
We use a **Git Flow** branching strategy to manage releases and parallel development.
### Working with Forks
When contributing to Auto Claude, you'll typically fork the repository first. Proper fork configuration is essential to avoid sync issues.
#### Initial Fork Setup
```bash
# 1. Fork on GitHub (click the Fork button on the repo page)
# 2. Clone YOUR fork (not the original repo)
git clone https://github.com/YOUR-USERNAME/Auto-Claude.git
cd Auto-Claude
# 3. Verify your remotes point to YOUR fork
git remote -v
# Should show:
# origin https://github.com/YOUR-USERNAME/Auto-Claude.git (fetch)
# origin https://github.com/YOUR-USERNAME/Auto-Claude.git (push)
# 4. Add upstream remote to sync with the original repo
git remote add upstream https://github.com/AndyMik90/Auto-Claude.git
```
#### Keeping Your Fork Updated
```bash
# Fetch latest changes from upstream
git fetch upstream
# Sync your develop branch with upstream
git checkout develop
git merge upstream/develop
git push origin develop
```
#### Converting a Fork to Standalone
> ⚠️ **Common Issue:** After making a fork standalone (e.g., disconnecting from the original repo on GitHub), your local git configuration may still reference the original forked repository, causing push/pull issues.
If you convert your fork to a standalone repository:
```bash
# 1. Update origin to point to your standalone repo
git remote set-url origin https://github.com/YOUR-USERNAME/Your-Standalone-Repo.git
# 2. Remove the upstream remote (no longer applicable)
git remote remove upstream
# 3. Verify your configuration
git remote -v
# Should only show your standalone repo as origin
# 4. Update your default branch tracking if needed
git branch --set-upstream-to=origin/main main
git branch --set-upstream-to=origin/develop develop
```
#### Troubleshooting Fork Issues
| Problem | Cause | Solution |
|---------|-------|----------|
| `Permission denied` on push | Origin points to upstream repo | `git remote set-url origin ` |
| `Repository not found` | Fork was deleted or made standalone | Update remote URL to current repo location |
| Can't push to develop | Local branch tracks wrong remote | `git branch --set-upstream-to=origin/develop` |
| Commits show wrong author | Git config not set | `git config user.email "you@example.com"` |
### Branch Overview
```
main (stable) ← Only released, tested code (tagged versions)
│
develop ← Integration branch - all PRs merge here first
│
├── feature/xxx ← New features
├── fix/xxx ← Bug fixes
├── release/vX.Y.Z ← Release preparation
└── hotfix/xxx ← Emergency production fixes
```
### Main Branches
| Branch | Purpose | Protected |
|--------|---------|-----------|
| `main` | Production-ready code. Only receives merges from `release/*` or `hotfix/*` branches. Every merge is tagged (v2.7.0, v2.8.0, etc.) | ✅ Yes |
| `develop` | Integration branch where all features and fixes are combined. This is the default target for all PRs. | ✅ Yes |
### Supporting Branches
| Branch Type | Branch From | Merge To | Purpose |
|-------------|-------------|----------|---------|
| `feature/*` | `develop` | `develop` | New features and enhancements |
| `fix/*` | `develop` | `develop` | Bug fixes (non-critical) |
| `release/*` | `develop` | `main` + `develop` | Release preparation and final testing |
| `hotfix/*` | `main` | `main` + `develop` | Critical production bug fixes |
### Branch Naming
Use descriptive branch names with a prefix indicating the type of change:
| Prefix | Purpose | Example |
|--------|---------|---------|
| `feature/` | New feature | `feature/add-dark-mode` |
| `fix/` | Bug fix | `fix/memory-leak-in-worker` |
| `hotfix/` | Urgent production fix | `hotfix/critical-crash-fix` |
| `docs/` | Documentation | `docs/update-readme` |
| `refactor/` | Code refactoring | `refactor/simplify-auth-flow` |
| `test/` | Test additions/fixes | `test/add-integration-tests` |
| `chore/` | Maintenance tasks | `chore/update-dependencies` |
| `release/` | Release preparation | `release/v2.8.0` |
| `hotfix/` | Emergency fixes | `hotfix/critical-auth-bug` |
### Where to Branch From
```bash
# For features and bug fixes - ALWAYS branch from develop
git checkout develop
git pull origin develop
git checkout -b feature/my-new-feature
# For hotfixes only - branch from main
git checkout main
git pull origin main
git checkout -b hotfix/critical-fix
```
### Pull Request Targets
> ⚠️ **Important:** All PRs should target `develop`, NOT `main`!
| Your Branch Type | Target Branch |
|------------------|---------------|
| `feature/*` | `develop` |
| `fix/*` | `develop` |
| `docs/*` | `develop` |
| `refactor/*` | `develop` |
| `test/*` | `develop` |
| `chore/*` | `develop` |
| `hotfix/*` | `main` (maintainers only) |
| `release/*` | `main` (maintainers only) |
### Release Process (Maintainers)
When ready to release a new version:
```bash
# 1. Create release branch from develop
git checkout develop
git pull origin develop
git checkout -b release/v2.8.0
# 2. Update version numbers, CHANGELOG, final fixes only
# No new features allowed in release branches!
# 3. Merge to main and tag
git checkout main
git merge release/v2.8.0
git tag v2.8.0
git push origin main --tags
# 4. Merge back to develop (important!)
git checkout develop
git merge release/v2.8.0
git push origin develop
# 5. Delete release branch
git branch -d release/v2.8.0
git push origin --delete release/v2.8.0
```
### Beta Release Process (Maintainers)
Beta releases allow users to test new features before they're included in a stable release. Beta releases are published from the `develop` branch.
**Creating a Beta Release:**
1. Go to **Actions** → **Beta Release** workflow in GitHub
2. Click **Run workflow**
3. Enter the beta version (e.g., `2.8.0-beta.1`)
4. Optionally enable dry run to test without publishing
5. Click **Run workflow**
The workflow will:
- Validate the version format
- Update `package.json` on develop
- Create and push a tag (e.g., `v2.8.0-beta.1`)
- Build installers for all platforms
- Create a GitHub pre-release
**Version Format:**
```
X.Y.Z-beta.N (e.g., 2.8.0-beta.1, 2.8.0-beta.2)
X.Y.Z-alpha.N (e.g., 2.8.0-alpha.1)
X.Y.Z-rc.N (e.g., 2.8.0-rc.1)
```
**For Users:**
Users can opt into beta updates in Settings → Updates → "Beta Updates" toggle. When enabled, the app will check for and install beta versions. Users can switch back to stable at any time.
### Hotfix Workflow
For urgent production fixes that can't wait for the normal release cycle:
**1. Create hotfix from main**
```bash
git checkout main
git pull origin main
git checkout -b hotfix/150-critical-fix
```
**2. Fix the issue**
```bash
# ... make changes ...
git commit -m "hotfix: fix critical crash on startup"
```
**3. Open PR to main (fast-track review)**
```bash
gh pr create --base main --title "hotfix: fix critical crash on startup"
```
**4. After merge to main, sync to develop**
```bash
git checkout develop
git pull origin develop
git merge main
git push origin develop
```
```
main ─────●─────●─────●─────●───── (production)
↑ ↑ ↑ ↑
develop ──●─────●─────●─────●───── (integration)
↑ ↑ ↑
feature/123 ────●
feature/124 ──────────●
hotfix/125 ─────────────────●───── (from main, merge to both)
```
> **Note:** Hotfixes branch FROM `main` and merge TO `main` first, then sync back to `develop` to keep branches aligned.
### Commit Messages
Write clear, concise commit messages that explain the "why" behind changes:
```bash
# Good
git commit -m "Add retry logic for failed API calls
Implements exponential backoff for transient failures.
Fixes #123"
# Avoid
git commit -m "fix stuff"
git commit -m "WIP"
```
**Format:**
```
:
{isOpen && (
<>
)
}
================================================
FILE: .design-system/src/theme/constants.ts
================================================
import { ColorThemeDefinition } from './types'
export const COLOR_THEMES: ColorThemeDefinition[] = [
{
id: 'default',
name: 'Default',
description: 'Oscura-inspired with pale yellow accent',
previewColors: { bg: '#F2F2ED', accent: '#E6E7A3', darkBg: '#0B0B0F', darkAccent: '#E6E7A3' }
},
{
id: 'dusk',
name: 'Dusk',
description: 'Warmer variant with slightly lighter dark mode',
previewColors: { bg: '#F5F5F0', accent: '#E6E7A3', darkBg: '#131419', darkAccent: '#E6E7A3' }
},
{
id: 'lime',
name: 'Lime',
description: 'Fresh, energetic lime with purple accents',
previewColors: { bg: '#E8F5A3', accent: '#7C3AED', darkBg: '#0F0F1A' }
},
{
id: 'ocean',
name: 'Ocean',
description: 'Calm, professional blue tones',
previewColors: { bg: '#E0F2FE', accent: '#0284C7', darkBg: '#082F49' }
},
{
id: 'retro',
name: 'Retro',
description: 'Warm, nostalgic amber vibes',
previewColors: { bg: '#FEF3C7', accent: '#D97706', darkBg: '#1C1917' }
},
{
id: 'neo',
name: 'Neo',
description: 'Modern cyberpunk pink/magenta',
previewColors: { bg: '#FDF4FF', accent: '#D946EF', darkBg: '#0F0720' }
},
{
id: 'forest',
name: 'Forest',
description: 'Natural, earthy green tones',
previewColors: { bg: '#DCFCE7', accent: '#16A34A', darkBg: '#052E16' }
}
]
================================================
FILE: .design-system/src/theme/index.ts
================================================
export * from './types'
export * from './constants'
export * from './useTheme'
export * from './ThemeSelector'
================================================
FILE: .design-system/src/theme/types.ts
================================================
export type ColorTheme = 'default' | 'dusk' | 'lime' | 'ocean' | 'retro' | 'neo' | 'forest'
export type Mode = 'light' | 'dark'
export interface ThemeConfig {
colorTheme: ColorTheme
mode: Mode
}
export interface ThemePreviewColors {
bg: string
accent: string
darkBg: string
darkAccent?: string
}
export interface ColorThemeDefinition {
id: ColorTheme
name: string
description: string
previewColors: ThemePreviewColors
}
================================================
FILE: .design-system/src/theme/useTheme.ts
================================================
import { useState, useEffect } from 'react'
import { ThemeConfig, ColorTheme, Mode } from './types'
import { COLOR_THEMES } from './constants'
export function useTheme() {
const [config, setConfig] = useState setIsOpen(false)}
/>
{/* Light/Dark Toggle */}
{themes.map((theme) => (
))}
)}