* fix(python): use venv Python for all services to fix dotenv errors
Services were spawning Python processes using findPythonCommand() which
returns the bundled Python directly. However, dependencies like python-dotenv
are only installed in the venv created from the bundled Python.
Changes:
- Add getConfiguredPythonPath() helper that returns venv Python when ready
- Update all services to use venv Python instead of bundled Python directly:
- memory-service.ts
- memory-handlers.ts
- agent-process.ts
- changelog-service.ts
- title-generator.ts
- insights/config.ts
- project-context-handlers.ts
- worktree-handlers.ts
- Fix availability checks to use findPythonCommand() (can return null)
- Add python:verify script for bundling verification
The flow now works correctly:
1. App starts → findPythonCommand() finds bundled Python
2. pythonEnvManager creates venv using bundled Python
3. pip installs dependencies (dotenv, claude-agent-sdk, etc.)
4. All services use venv Python → has all dependencies
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude <noreply@anthropic.com>
* fix lintin and test
---------
Co-authored-by: Claude <noreply@anthropic.com>
The previous PowerShell fix still found Git Bash's /usr/bin/tar which
interprets D: as a remote host. Using the explicit path to Windows'
built-in bsdtar (C:\Windows\System32\tar.exe) avoids this issue.
Windows Server 2019+ (GitHub Actions) has bsdtar in System32.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
When running from a packaged macOS app (.dmg), the PATH environment
variable doesn't include common locations like /opt/homebrew/bin where
gh is typically installed via Homebrew.
The getAugmentedEnv() function was already being used in some places
but was missing from:
- spawn() call in registerStartGhAuth
- execSync calls for gh auth token, gh api user, gh repo list
- execFileSync calls for gh api, gh repo create
- execFileSync calls in pr-handlers.ts and triage-handlers.ts
This caused "gh: command not found" errors when connecting projects
to GitHub in the packaged app.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
The previous fix using --force-local and path conversion still failed
due to shell escaping issues. PowerShell handles Windows paths natively
and has built-in tar support on Windows 10+, avoiding all path escaping
problems.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
On Windows, paths like D:\path are misinterpreted by tar as remote
host:path syntax (Unix tar convention). Adding --force-local tells
tar to treat colons as part of the filename, fixing the extraction
failure in GitHub Actions Windows builds.
Error was: "tar (child): Cannot connect to D: resolve failed"
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
* fix: stop tracking spec files in git
- Remove git commit instructions from planner.md for spec files
- Spec files (implementation_plan.json, init.sh, build-progress.txt) should be gitignored
- Untrack existing spec files that were accidentally committed
- AI agents should only commit code changes, not spec metadata
The .auto-claude/specs/ directory is gitignored by design - spec files are
local project metadata that shouldn't be version controlled.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(prompts): remove git commit instructions for gitignored spec files
The spec files (build-progress.txt, qa_report.md, implementation_plan.json,
QA_FIX_REQUEST.md) are all stored in .auto-claude/specs/ which is gitignored.
Removed instructions telling agents to commit these files, replaced with
notes explaining they're tracked automatically by the framework.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---------
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
* fix(frontend): prevent false stuck detection for ai_review tasks
Tasks in ai_review status were incorrectly showing "Task Appears Stuck"
in the detail modal. This happened because the isRunning check included
ai_review status, triggering stuck detection when no process was found.
However, ai_review means "all subtasks completed, awaiting QA" - no build
process is expected to be running. This aligns the detail modal logic with
TaskCard which correctly only checks for in_progress status.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* ci(beta-release): use tag-based versioning instead of modifying package.json
Previously the beta-release workflow committed version changes to package.json
on the develop branch, which caused two issues:
1. Permission errors (github-actions[bot] denied push access)
2. Beta versions polluted develop, making merges to main unclean
Now the workflow creates only a git tag and injects the version at build time
using electron-builder's --config.extraMetadata.version flag. This keeps
package.json at the next stable version and avoids any commits to develop.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(ollama): add packaged app path resolution for Ollama detector script
The Ollama detection was failing in packaged builds because the
Python script path resolution only checked development paths.
In packaged apps, __dirname points to the app bundle, and the
relative path "../../../backend" doesn't resolve correctly.
Added process.resourcesPath for packaged builds (checked first via
app.isPackaged) which correctly locates the backend scripts in
the Resources folder. Also added DEBUG-only logging to help
troubleshoot script location issues.
Closes#129🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* refactor(paths): remove legacy auto-claude path fallbacks
Replace all legacy 'auto-claude/' source path detection with 'apps/backend'.
Services now validate paths using runners/spec_runner.py as the marker
instead of requirements.txt, ensuring only valid backend directories match.
- Remove legacy fallback paths from all getAutoBuildSourcePath() implementations
- Add startup validation in index.ts to skip invalid saved paths
- Update project-initializer to detect apps/backend for local dev projects
- Standardize path detection across all services
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(frontend): address PR review feedback from Auto Claude and bots
Fixes from PR #300 reviews:
CRITICAL:
- path-resolver.ts: Update marker from requirements.txt to runners/spec_runner.py
for consistent backend detection across all files
HIGH:
- useTaskDetail.ts: Restore stuck task detection for ai_review status
(CHANGELOG documents this feature)
- TerminalGrid.tsx: Include legacy terminals without projectPath
(prevents hiding terminals after upgrade)
- memory-handlers.ts: Add packaged app path in OLLAMA_PULL_MODEL handler
(fixes production builds)
MEDIUM:
- OAuthStep.tsx: Stricter profile slug sanitization
(only allow alphanumeric and dashes)
- project-store.ts: Fix regex to not truncate at # in code blocks
(uses \n#{1,6}\s to match valid markdown headings only)
- memory-service.ts: Add backend structure validation with spec_runner.py marker
- subprocess-spawn.test.ts: Update test to use new marker pattern
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(frontend): validate empty profile slug after sanitization
Add validation to prevent empty config directory path when profile name
contains only special characters (e.g., "!!!"). Shows user-friendly error
message requiring at least one letter or number.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---------
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
* improve/merge-confclit-layer
* improve AI resolution
* fix caching on merge conflicts
* imrpove merge layer with rebase
* fix(github): add OAuth authentication to follow-up PR review
The follow-up PR review AI analysis was failing with "Could not resolve
authentication method" because AsyncAnthropic() was instantiated without
credentials. The codebase uses OAuth tokens (not ANTHROPIC_API_KEY), so
the client needs the auth_token parameter.
Uses get_auth_token() from core.auth to retrieve the OAuth token from
environment variables or macOS Keychain, matching how initial reviews
authenticate via create_client().
* fix(merge): add validation to prevent AI writing natural language to files
When AI merge receives truncated file contents (due to character limits),
it sometimes responds with explanations like "I need to see the complete
file contents..." instead of actual merged code. This garbage was being
written directly to source files.
Adds two validation layers after AI merge:
1. Natural language detection - catches patterns like "I need to", "Let me"
2. Syntax validation - uses esbuild to verify TypeScript/JavaScript syntax
If either validation fails, the merge returns an error instead of writing
invalid content to the file.
Also adds project_dir field to ParallelMergeTask to enable syntax validation.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(merge): skip git merge when AI already resolved path-mapped files
When AI successfully merges path-mapped files (due to file renames
between branches), the check only looked at `conflicts_resolved` which
was 0 for path-mapped cases. This caused the code to fall through to
`git merge` which then failed with conflicts.
Now also checks `files_merged` and `ai_assisted` stats to determine
if AI has already handled the merge. When files are AI-merged, they're
already written and staged - no need for git merge.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix device code issue with github
* fix(frontend): remember GitHub auth method (OAuth vs PAT) in settings
Previously, after authenticating via GitHub OAuth, the settings page
would show "Personal Access Token" input even though OAuth was used.
This was confusing for users who expected to see their OAuth status.
Added githubAuthMethod field to track how authentication was performed.
Settings UI now shows "Authenticated via GitHub OAuth" when OAuth was
used, with option to switch to manual token if needed. The auth method
persists across settings reopening.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* refactor(backend): centralize OAuth client creation in core/client.py
- Add create_message_client() for simple message API calls
- Refactor followup_reviewer.py to use centralized client factory
- Remove direct anthropic.AsyncAnthropic import from followup_reviewer
- Add proper ValueError handling for missing OAuth token
- Update docstrings to document both client factories
This ensures all AI interactions use the centralized OAuth authentication
in core/, avoiding direct ANTHROPIC_API_KEY usage per CLAUDE.md guidelines.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(frontend): remove unused statusColor variable in WorkspaceStatus
Dead code cleanup - the statusColor variable was computed but never
used in the component.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(tests): add BrowserWindow mock to oauth-handlers tests
The sendDeviceCodeToRenderer function uses BrowserWindow.getAllWindows()
which wasn't mocked, causing unhandled rejection errors in tests.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(backend): use ClaudeSDKClient instead of raw anthropic SDK
Remove direct anthropic SDK import from core/client.py and update
followup_reviewer.py to use ClaudeSDKClient directly as per project
conventions. All AI interactions should use claude-agent-sdk.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(backend): add debug logging for AI response in followup_reviewer
Add logging to diagnose why AI review returns no JSON - helps identify
if response is in thinking blocks vs text blocks.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---------
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
* ci: implement enterprise-grade PR quality gates and security scanning
* ci: implement enterprise-grade PR quality gates and security scanning
* fix:pr comments and improve code
* fix: improve commit linting and code quality
* Removed the dependency-review job (i added it)
* fix: address CodeRabbit review comments
- Expand scope pattern to allow uppercase, underscores, slashes, dots
- Add concurrency control to cancel duplicate security scan runs
- Add explanatory comment for Bandit CLI flags
- Remove dependency-review job (requires repo settings)
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* docs: update commit lint examples with expanded scope patterns
Show slashes and dots in scope examples to demonstrate
the newly allowed characters (api/users, package.json)
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* chore: remove feature request issue template
Feature requests are directed to GitHub Discussions
via the issue template config.yml
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: address security vulnerabilities in service orchestrator
- Fix port parsing crash on malformed docker-compose entries
- Fix shell injection risk by using shlex.split() with shell=False
Prevents crashes when docker-compose.yml contains environment
variables in port mappings (e.g., '${PORT}:8080') and eliminates
shell injection vulnerabilities in subprocess execution.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
* fix(ci): improve PR title validation error messages with examples
Add helpful console output when PR title validation fails:
- Show expected format and valid types
- Provide examples of valid PR titles
- Display the user's current title
- Suggest fixes based on keywords in the title
- Handle verb variations (fixed, adding, updated, etc.)
- Show placeholder when description is empty after cleanup
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* lower coverage
* feat: improve status gate to label correctly based on required checks
* fix(ci): address PR review findings for security and efficiency
- Add explicit permissions block to ci.yml (least privilege principle)
- Skip duplicate test run for Python 3.12 (tests with coverage only)
- Sanitize PR title in markdown output to prevent injection
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix typo
---------
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
The gh api command defaults to POST for comment endpoints, causing
GitHub to reject the 'since' query parameter as an invalid POST body
field. Adding --method GET explicitly forces a GET request, allowing
the since parameter to work correctly for fetching comments.
This completes the fix started in f1cc5a09 which only changed from
-f flag to query string syntax but didn't address the HTTP method.
* archive across all worktress and if not in folder
* fix(frontend): address PR security and race condition issues
- Add taskId validation to prevent path traversal attacks
- Fix TOCTOU race conditions in archiveTasks by removing existsSync
- Fix TOCTOU race conditions in unarchiveTasks by removing existsSync
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---------
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
* fix(frontend): validate backend source path before using it
The path resolver was returning invalid autoBuildPath settings without
validating they contained the required backend files. When settings
pointed to a legacy /auto-claude/ directory (missing requirements.txt
and analyzer.py), the project indexer would fail with "can't open file"
errors.
Now validates that all source paths contain requirements.txt before
returning them, falling back to bundled source path detection when
the configured path is invalid.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* auto-claude: Initialize subtask-based implementation plan
- Workflow type: feature
- Phases: 4
- Subtasks: 9
- Ready for autonomous implementation
Parallel execution enabled: phases 1 and 2 can run simultaneously
* auto-claude: Initialize subtask-based implementation plan
- Workflow type: investigation
- Phases: 5
- Subtasks: 13
- Ready for autonomous implementation
* fix merge conflict check loop
* fix(frontend): add warning when fallback path is also invalid
Address CodeRabbit review feedback - the fallback path in
getBundledSourcePath() was returning an unvalidated path which could
still cause the same analyzer.py error. Now logs a warning when the
fallback path also lacks requirements.txt.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---------
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
* feat(python): bundle Python 3.12 with packaged Electron app
Resolves issue #258 where users with Python aliases couldn't run the app
because shell aliases aren't visible to Electron's subprocess calls.
Changes:
- Add download-python.cjs script to fetch python-build-standalone
- Bundle Python 3.12.8 in extraResources for packaged apps
- Update python-detector.ts to prioritize bundled Python
- Add Python caching to CI workflows for faster builds
Packaged apps now include Python (~35MB), eliminating the need for users
to have Python installed. Dev mode still falls back to system Python.
Closes#258🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: address PR review feedback for Python bundling
Security improvements:
- Add SHA256 checksum verification for downloaded Python binaries
- Replace execSync with spawnSync to prevent command injection
- Add input validation to prevent log injection from CLI args
- Add download timeout (5 minutes) and redirect limit (10)
- Proper file/connection cleanup on errors
Bug fixes:
- Fix platform naming mismatch: use "mac"/"win" (electron-builder)
instead of "darwin"/"win32" (Node.js) for output directories
- Handle empty path edge case in parsePythonCommand
Improvements:
- Add restore-keys to CI cache steps for better cache hit rates
- Improve error messages and logging
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix mac node.js naming
* security: add SHA256 checksums for all Python platforms
Fetched actual checksums from python-build-standalone release:
- darwin-arm64: abe1de24...
- darwin-x64: 867c1af1...
- win32-x64: 1a702b34...
- linux-x64: 698e53b2...
- linux-arm64: fb983ec8...
All platforms now have cryptographic verification for downloaded
Python binaries, eliminating the supply chain risk.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* chore: add python-runtime to root .gitignore
Ensures bundled Python runtime is ignored from both root and
frontend .gitignore files.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---------
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
- Use getAugmentedEnv() in project-context-handlers.ts to ensure Python is in PATH
- Add /usr/bin and /usr/sbin to Linux paths in env-utils.ts for system Python
- Fixes GUI-launched apps not inheriting shell environment on Ubuntu 24.04
Fixes#215
Co-authored-by: Andy <119136210+AndyMik90@users.noreply.github.com>
The update-version job needs contents: write permission to push the
version bump commit and tag to the repository. Without this, the
workflow fails with a 403 error when trying to git push.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* chore(deps): bump @xterm/xterm from 5.5.0 to 6.0.0 in /apps/frontend
Bumps [@xterm/xterm](https://github.com/xtermjs/xterm.js) from 5.5.0 to 6.0.0.
- [Release notes](https://github.com/xtermjs/xterm.js/releases)
- [Commits](https://github.com/xtermjs/xterm.js/compare/5.5.0...6.0.0)
---
updated-dependencies:
- dependency-name: "@xterm/xterm"
dependency-version: 6.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
* fix(deps): update xterm addons for 6.0.0 compatibility and use public APIs
CRITICAL: Updated all xterm addons to versions compatible with xterm 6.0.0:
- @xterm/addon-fit: ^0.10.0 → ^0.11.0
- @xterm/addon-serialize: ^0.13.0 → ^0.14.0
- @xterm/addon-web-links: ^0.11.0 → ^0.12.0
- @xterm/addon-webgl: ^0.18.0 → ^0.19.0
HIGH: Refactored scroll-controller.ts to use public xterm APIs:
- Replaced internal _core access with public buffer/scroll APIs
- Uses onScroll and onWriteParsed events for scroll tracking
- Uses scrollLines() for scroll position restoration
- Proper IDisposable cleanup for event listeners
- Falls back gracefully if onWriteParsed is not available
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---------
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: AndyMik90 <andre@mikalsenutvikling.no>
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
- Fix gh_client.py: use query string syntax for `since` parameter instead
of `-f` flag which sends POST body fields, causing GitHub API errors
- Fix followup_reviewer.py: use raw Anthropic client for message API calls
instead of ClaudeSDKClient which is for agent sessions
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(security): resolve CodeQL file system race conditions and unused variables
Fix high severity CodeQL alerts:
- Remove TOCTOU (time-of-check-time-of-use) race conditions by eliminating
existsSync checks followed by file operations. Use try-catch instead.
- Files affected: pr-handlers.ts, spec-utils.ts
Fix unused variable warnings:
- Remove unused imports (FeatureModelConfig, FeatureThinkingConfig,
withProjectSyncOrNull, getBackendPath, validateRunner, githubFetch)
- Prefix intentionally unused destructured variables with underscore
- Remove unused local variables (existing, actualEvent)
- Files affected: pr-handlers.ts, autofix-handlers.ts, triage-handlers.ts,
PRDetail.tsx, pr-review-store.ts
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(security): resolve remaining CodeQL alerts for TOCTOU, network data validation, and unused variables
Address CodeRabbit and CodeQL security alerts from PR #277 review:
- HIGH: Fix 12+ file system race conditions (TOCTOU) by replacing
existsSync() checks with try/catch blocks in pr-handlers.ts,
autofix-handlers.ts, triage-handlers.ts, and spec-utils.ts
- MEDIUM: Add sanitizeNetworkData() function to validate/sanitize
GitHub API data before writing to disk, preventing injection attacks
- Clean up 20+ unused variables, imports, and useless assignments
across frontend components and handlers
- Fix Python Protocol typing in testing.py (add return type annotations)
All changes verified with TypeScript compilation and ESLint (no errors).
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---------
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
The project switched from pnpm to npm, which handles script argument
passing differently. pnpm adds a -- separator that caused electron-builder
to ignore the --arch argument, but npm passes it directly.
Since --arch is a deprecated electron-builder argument, use the
recommended flags instead:
- --arch=x64 → --x64
- --arch=arm64 → --arm64
This fixes Mac Intel and ARM64 builds failing with "Unknown argument: arch"
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
When dry_run=true, the workflow skipped creating the version tag but
build jobs still tried to checkout that non-existent tag, causing all
4 platform builds to fail with "git failed with exit code 1".
Now build jobs checkout develop branch for dry runs while still using
the version tag for real releases.
Closes: GitHub Actions run #20464082726
* fix(planning): accept bug_fix workflow_type alias
* style(planning): ruff format
* fix: refatored common logic
* fix: remove ruff errors
* fix: remove duplicate _normalize_workflow_type method
Remove the incorrectly placed duplicate method inside ContextLoader class.
The module-level function is the correct implementation being used.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---------
Co-authored-by: danielfrey63 <daniel.frey@sbb.ch>
Co-authored-by: Andy <119136210+AndyMik90@users.noreply.github.com>
Co-authored-by: AndyMik90 <andre@mikalsenutvikling.no>
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
* feat(github): add GitHub automation system for issues and PRs
Implements comprehensive GitHub automation with three major components:
1. Issue Auto-Fix: Automatically creates specs from labeled issues
- AutoFixButton component with progress tracking
- useAutoFix hook for config and queue management
- Backend handlers for spec creation from issues
2. GitHub PRs Tool: AI-powered PR review sidebar
- New sidebar tab (Cmd+Shift+P) alongside GitHub Issues
- PRList/PRDetail components for viewing PRs
- Review system with findings by severity
- Post review comments to GitHub
3. Issue Triage: Duplicate/spam/feature-creep detection
- Triage handlers with label application
- Configurable detection thresholds
Also adds:
- Debug logging (DEBUG=true) for all GitHub handlers
- Backend runners/github module with orchestrator
- AI prompts for PR review, triage, duplicate/spam detection
- dev:debug npm script for development with logging
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(github-runner): resolve import errors for direct script execution
Changes runner.py and orchestrator.py to handle both:
- Package import: `from runners.github import ...`
- Direct script: `python runners/github/runner.py`
Uses try/except pattern for relative vs direct imports.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(github): correct argparse argument order for runner.py
Move --project global argument before subcommand so argparse can
correctly parse it. Fixes "unrecognized arguments: --project" error.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* logs when debug mode is on
* refactor(github): extract service layer and fix linting errors
Major refactoring to improve maintainability and code quality:
Backend (Python):
- Extracted orchestrator.py (2,600 → 835 lines, 68% reduction) into 7 service modules:
- prompt_manager.py: Prompt template management
- response_parsers.py: AI response parsing
- pr_review_engine.py: PR review orchestration
- triage_engine.py: Issue triage logic
- autofix_processor.py: Auto-fix workflow
- batch_processor.py: Batch issue handling
- Fixed 18 ruff linting errors (F401, C405, C414, E741):
- Removed unused imports (BatchValidationResult, AuditAction, locked_json_write)
- Optimized collection literals (set([n]) → {n})
- Removed unnecessary list() calls
- Renamed ambiguous variable 'l' to 'label' throughout
Frontend (TypeScript):
- Refactored IPC handlers (19% overall reduction) with shared utilities:
- autofix-handlers.ts: 1,042 → 818 lines
- pr-handlers.ts: 648 → 543 lines
- triage-handlers.ts: 437 lines (no duplication)
- Created utils layer: logger, ipc-communicator, project-middleware, subprocess-runner
- Split github-store.ts into focused stores: issues, pr-review, investigation, sync-status
- Split ReviewFindings.tsx into focused components
All imports verified, type checks passing, linting clean.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
* fixes during testing of PR
* feat(github): implement PR merge, assign, and comment features
- Add auto-assignment when clicking "Run AI Review"
- Implement PR merge functionality with squash method
- Add ability to post comments on PRs
- Display assignees in PR UI
- Add Approve and Merge buttons when review passes
- Update backend gh_client with pr_merge, pr_comment, pr_assign methods
- Create IPC handlers for new PR operations
- Update TypeScript interfaces and browser mocks
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
* Improve PR review AI
* fix(github): use temp files for PR review posting to avoid shell escaping issues
When posting PR reviews with findings containing special characters (backticks,
parentheses, quotes), the shell command was interpreting them as commands instead
of literal text, causing syntax errors.
Changed both postPRReview and postPRComment handlers to write the body content
to temporary files and use gh CLI's --body-file flag instead of --body with
inline content. This safely handles ALL special characters without escaping issues.
Fixes shell errors when posting reviews with suggested fixes containing code snippets.
* fix(i18n): add missing GitHub PRs translation and document i18n requirements
Fixed missing translation key for GitHub PRs feature that was causing
"items.githubPRs" to display instead of the proper translated text.
Added comprehensive i18n guidelines to CLAUDE.md to ensure all future
frontend development follows the translation key pattern instead of
using hardcoded strings.
Also fixed missing deletePRReview mock function in browser-mock.ts
to resolve TypeScript compilation errors.
Changes:
- Added githubPRs translation to en/navigation.json
- Added githubPRs translation to fr/navigation.json
- Added Development Guidelines section to CLAUDE.md with i18n requirements
- Documented translation file locations and namespace usage patterns
- Added deletePRReview mock function to browser-mock.ts
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
* fix ui loading
* Github PR fixes
* improve claude.md
* lints/tests
* fix(github): handle PRs exceeding GitHub's 20K line diff limit
- Add PRTooLargeError exception for large PR detection
- Update pr_diff() to catch and raise PRTooLargeError for HTTP 406 errors
- Gracefully handle large PRs by skipping full diff and using individual file patches
- Add diff_truncated flag to PRContext to track when diff was skipped
- Large PRs will now review successfully using per-file diffs instead of failing
Fixes issue with PR #252 which has 100+ files exceeding the 20,000 line limit.
* fix: implement individual file patch fetching for large PRs
The PR review was getting stuck for large PRs (>20K lines) because when we
skipped the full diff due to GitHub API limits, we had no code to analyze.
The individual file patches were also empty, leaving the AI with just
file names and metadata.
Changes:
- Implemented _get_file_patch() to fetch individual patches via git diff
- Updated PR review engine to build composite diff from file patches when
diff_truncated is True
- Added missing 'state' field to PRContext dataclass
- Limits composite diff to first 50 files for very large PRs
- Shows appropriate warnings when using reconstructed diffs
This allows AI review to proceed with actual code analysis even when the
full PR diff exceeds GitHub's limits.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
* 1min reduction
* docs: add GitHub Sponsors funding configuration
Enable the Sponsor button on the repository by adding FUNDING.yml
with the AndyMik90 GitHub Sponsors profile.
* feat(github-pr): add orchestrating agent for thorough PR reviews
Implement a new Opus 4.5 orchestrating agent that performs comprehensive
PR reviews regardless of size. Key changes:
- Add orchestrator_reviewer.py with strategic review workflow
- Add review_tools.py with subagent spawning capabilities
- Add pr_orchestrator.md prompt emphasizing thorough analysis
- Add pr_security_agent.md and pr_quality_agent.md subagent prompts
- Integrate orchestrator into pr_review_engine.py with config flag
- Fix critical bug where findings were extracted but not processed
(indentation issue in _parse_orchestrator_output)
The orchestrator now correctly identifies issues in PRs that were
previously approved as "trivial". Testing showed 7 findings detected
vs 0 before the fix.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* i18n
* fix(github-pr): restrict pr_reviewer to read-only permissions
The PR review agent was using qa_reviewer agent type which has Bash
access, allowing it to checkout branches and make changes during
review. Created new pr_reviewer agent type with BASE_READ_TOOLS only
(no Bash, no writes, no auto-claude tools).
This prevents the PR review from accidentally modifying code or
switching branches during analysis.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(github-pr): robust category mapping and JSON parsing for PR review
The orchestrator PR review was failing to extract findings because:
1. AI generates category names like 'correctness', 'consistency', 'testing'
that aren't in our ReviewCategory enum - added flexible mapping
2. JSON sometimes embedded in markdown code blocks (```json) which broke
parsing - added code block extraction as first parsing attempt
Changes:
- Add _CATEGORY_MAPPING dict to map AI categories to valid enum values
- Add _map_category() helper function with fallback to QUALITY
- Add severity parsing with fallback to MEDIUM
- Add markdown code block detection (```json) before raw JSON parsing
- Add _extract_findings_from_data() helper to reduce code duplication
- Apply same fixes to review_tools.py for subagent parsing
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(pr-review): improve post findings UX with batch support and feedback
- Fix post findings failing on own PRs by falling back from REQUEST_CHANGES
to COMMENT when GitHub returns 422 error
- Change status badge to show "Reviewed" instead of "Commented" until
findings are actually posted to GitHub
- Add success notification when findings are posted (auto-dismisses after 3s)
- Add batch posting support: track posted findings, show "Posted" badge,
allow posting remaining findings in additional batches
- Show loading state on button while posting
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(github): resolve stale timestamp and null author bugs
- Fix stale timestamp in batch_issues.py: Move updated_at assignment
BEFORE to_dict() serialization so the saved JSON contains the correct
timestamp instead of the old value
- Fix AttributeError in context_gatherer.py: Handle null author/user
fields when GitHub API returns null for deleted/suspended users
instead of an empty object
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(security): address all high and medium severity PR review findings
HIGH severity fixes:
- Command Injection in autofix-handlers.ts: Use execFileSync with args array
- Command Injection in pr-handlers.ts (3 locations): Use execFileSync + validation
- Command Injection in triage-handlers.ts: Use execFileSync + label validation
- Token Exposure in bot_detection.py: Pass token via GH_TOKEN env var
MEDIUM severity fixes:
- Environment variable leakage in subprocess-runner.ts: Filter to safe vars only
- Debug logging in subprocess-runner.ts: Only log in development mode
- Delimiter escape bypass in sanitize.py: Use regex pattern for variations
- Insecure file permissions in trust.py: Use os.open with 0o600 mode
- No file locking in learning.py: Use FileLock + atomic_write utilities
- Bare except in confidence.py: Log error with specific exception info
- Fragile module import in pr_review_engine.py: Import at module level
- State transition validation in models.py: Enforce can_transition_to()
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* PR followup
* fix(security): add usedforsecurity=False to MD5 hash calls
MD5 is used for generating unique IDs/cache keys, not for security purposes.
Adding usedforsecurity=False resolves Bandit B324 warnings.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(security): address all high-priority PR review findings
Fixes 5 high-priority issues from Auto Claude PR Review:
1. orchestrator_reviewer.py: Token budget tracking now increments
total_tokens from API response usage data
2. pr_review_engine.py: Async exceptions now re-raise RuntimeError
instead of silently returning empty results
3. batch_issues.py: IssueBatch.save() now uses locked_json_write
for atomic file operations with file locking
4. project-middleware.ts: Added validateProjectPath() to prevent
path traversal attacks (checks absolute, no .., exists, is dir)
5. orchestrator.py: Exception handling now logs full traceback and
preserves exception type/context in error messages
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(security): address all high-priority PR review findings
Fixes 5 high-priority issues from Auto Claude PR Review:
1. orchestrator_reviewer.py: Token budget tracking now increments
total_tokens from API response usage data
2. pr_review_engine.py: Async exceptions now re-raise RuntimeError
instead of silently returning empty results
3. batch_issues.py: IssueBatch.save() now uses locked_json_write
for atomic file operations with file locking
4. project-middleware.ts: Added validateProjectPath() to prevent
path traversal attacks (checks absolute, no .., exists, is dir)
5. orchestrator.py: Exception handling now logs full traceback and
preserves exception type/context in error messages
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* feat(ui): add PR status labels to list view
Add secondary status badges to the PR list showing review state at a glance:
- "Changes Requested" (warning) - PRs with blocking issues (critical/high)
- "Ready to Merge" (green) - PRs with only non-blocking suggestions
- "Ready for Follow-up" (blue) - PRs with new commits since last review
The "Ready for Follow-up" badge uses a cached new commits check from the
store, only shown after the detail view confirms new commits via SHA
comparison. This prevents false positives from PR updatedAt timestamp
changes (which can happen from comments, labels, etc).
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* PR labels
* auto-claude: Initialize subtask-based implementation plan
- Workflow type: feature
- Phases: 3
- Subtasks: 6
- Ready for autonomous implementation
---------
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
* ci: implement enterprise-grade PR quality gates and security scanning
* ci: implement enterprise-grade PR quality gates and security scanning
* fix:pr comments and improve code
* fix: improve commit linting and code quality
* Removed the dependency-review job (i added it)
* fix: address CodeRabbit review comments
- Expand scope pattern to allow uppercase, underscores, slashes, dots
- Add concurrency control to cancel duplicate security scan runs
- Add explanatory comment for Bandit CLI flags
- Remove dependency-review job (requires repo settings)
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* docs: update commit lint examples with expanded scope patterns
Show slashes and dots in scope examples to demonstrate
the newly allowed characters (api/users, package.json)
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* chore: remove feature request issue template
Feature requests are directed to GitHub Discussions
via the issue template config.yml
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: address security vulnerabilities in service orchestrator
- Fix port parsing crash on malformed docker-compose entries
- Fix shell injection risk by using shlex.split() with shell=False
Prevents crashes when docker-compose.yml contains environment
variables in port mappings (e.g., '${PORT}:8080') and eliminates
shell injection vulnerabilities in subprocess execution.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
---------
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
* Add multilingual support and i18n integration
- Implemented i18n framework using `react-i18next` for translation management.
- Added support for English and French languages with translation files.
- Integrated language selector into settings.
- Updated all text strings in UI components to use translation keys.
- Ensured smooth language switching with live updates.
* Migrate remaining hard-coded strings to i18n system
- TaskCard: status labels, review reasons, badges, action buttons
- PhaseProgressIndicator: execution phases, progress labels
- KanbanBoard: drop zone, show archived, tooltips
- CustomModelModal: dialog title, description, labels
- ProactiveSwapListener: account switch notifications
- AgentProfileSelector: phase labels, custom configuration
- GeneralSettings: agent framework option
Added translation keys for en/fr locales in tasks.json, common.json,
and settings.json for complete i18n coverage.
* Add i18n support to dialogs and settings components
- AddFeatureDialog: form labels, validation messages, buttons
- AddProjectModal: dialog steps, form fields, actions
- RateLimitIndicator: rate limit notifications
- RateLimitModal: account switching, upgrade prompts
- AdvancedSettings: updates and notifications sections
- ThemeSettings: theme selection labels
- Updated dialogs.json locales (en/fr)
* Fix truncated 'ready' message in dialogs locales
* Fix backlog terminology in i18n locales
Change "Planning"/"Planification" to standard PM term "Backlog"
* Migrate settings navigation and integration labels to i18n
- AppSettings: nav items, section titles, buttons
- IntegrationSettings: Claude accounts, auto-switch, API keys labels
- Added settings nav/projectSections/integrations translation keys
- Added buttons.saving to common translations
* Migrate AgentProfileSettings and Sidebar init dialog to i18n
- AgentProfileSettings: migrate phase config labels, section title,
description, and all hardcoded strings to settings namespace
- Sidebar: migrate init dialog strings to dialogs namespace with
common buttons from common namespace
- Add new translation keys for agent profile settings and update dialog
* Migrate AppSettings navigation labels to i18n
- Add useTranslation hook to AppSettings.tsx
- Replace hardcoded section labels with dynamic translations
- Add projectSections translations for project settings nav
- Add rerunWizardDescription translation key
* Add explicit typing to notificationItems array
Import NotificationSettings type and use keyof to properly type
the notification item keys, removing manual type assertion.
* fix: resolve Python detection and backend packaging issues
- Fix backend packaging path (auto-claude -> backend) to match path-resolver.ts expectations
- Add future annotations import to config_parser.py for Python 3.9+ compatibility
- Use findPythonCommand() in project-context-handlers to prioritize Homebrew Python
- Improve Python detection to prefer Homebrew paths over system Python on macOS
This resolves the following issues:
- 'analyzer.py not found' error due to incorrect packaging destination
- TypeError with 'dict | None' syntax on Python < 3.10
- Wrong Python interpreter being used (system Python instead of Homebrew Python 3.10+)
Tested on macOS with packaged app - project index now loads successfully.
* refactor: address PR review feedback
- Extract findHomebrewPython() helper to eliminate code duplication between
findPythonCommand() and getDefaultPythonCommand()
- Remove hardcoded version-specific paths (python3.12) and rely only on
generic Homebrew symlinks for better maintainability
- Remove unnecessary 'from __future__ import annotations' from config_parser.py
since backend requires Python 3.12+ where union types are native
These changes make the code more maintainable, less fragile to Python version
changes, and properly reflect the project's Python 3.12+ requirement.
Adds 'from __future__ import annotations' to spec/discovery.py for
Python 3.9+ compatibility with type hints.
This completes the Python compatibility fixes that were partially
applied in previous commits. All 26 analysis and spec Python files
now have the future annotations import.
Related: #128
Co-authored-by: Joris Slagter <mail@jorisslagter.nl>
* fix(ideation): add missing event forwarders for status sync
- Add event forwarders in ideation-handlers.ts for progress, log,
type-complete, type-failed, complete, error, and stopped events
- Fix ideation-type-complete to load actual ideas array from JSON files
instead of emitting only the count
Resolves UI getting stuck at 0/3 complete during ideation generation.
* fix(ideation): fix UI not updating after actions
- Fix getIdeationSummary to count only active ideas (exclude dismissed/archived)
This ensures header stats match the visible ideas count
- Add transformSessionFromSnakeCase to properly transform session data
from backend snake_case to frontend camelCase on ideation-complete event
- Transform raw session before emitting ideation-complete event
Resolves header showing stale counts after dismissing/deleting ideas.
* fix(ideation): improve type safety and async handling in ideation type completion
- Replace synchronous readFileSync with async fsPromises.readFile in ideation-type-complete handler
- Wrap async file read in IIFE with proper error handling to prevent unhandled promise rejections
- Add type validation for IdeationType with VALID_IDEATION_TYPES set and isValidIdeationType guard
- Add validateEnabledTypes function to filter out invalid type values and log dropped entries
- Handle ENOENT separately
* fix(ideation): improve generation state management and error handling
- Add explicit isGenerating flag to prevent race conditions during async operations
- Implement 5-minute timeout for generation with automatic cleanup and error state
- Add ideation-stopped event emission when process is intentionally killed
- Replace console.warn/error with proper ideation-error events in agent-queue
- Add resetGeneratingTypes helper to transition all generating types to a target state
- Filter out dismissed/
* refactor(ideation): improve event listener cleanup and timeout management
- Extract event handler functions in ideation-handlers.ts to enable proper cleanup
- Return cleanup function from registerIdeationHandlers to remove all listeners
- Replace single generationTimeoutId with Map to support multiple concurrent projects
- Add clearGenerationTimeout helper to centralize timeout cleanup logic
- Extract loadIdeationType IIFE to named function for better error context
- Enhance error logging with projectId,
* refactor: use async file read for ideation and roadmap session loading
- Replace synchronous readFileSync with async fsPromises.readFile
- Prevents blocking the event loop during file operations
- Consistent with async pattern used elsewhere in the codebase
- Improved error handling with proper event emission
* fix(agent-queue): improve roadmap completion handling and error reporting
- Add transformRoadmapFromSnakeCase to convert backend snake_case to frontend camelCase
- Transform raw roadmap data before emitting roadmap-complete event
- Add roadmap-error emission for unexpected errors during completion
- Add roadmap-error emission when project path is unavailable
- Remove duplicate ideation-type-complete emission from error handler (event already emitted in loadIdeationType)
- Update error log message
Implements distributed file-based locking for spec number coordination
across main project and all worktrees. Previously, parallel spec creation
could assign the same number to different specs (e.g., 042-bmad-task and
042-gitlab-integration both using number 042).
The fix adds SpecNumberLock class that:
- Acquires exclusive lock before calculating spec numbers
- Scans ALL locations (main project + worktrees) for global maximum
- Creates spec directories atomically within the lock
- Handles stale locks via PID-based detection with 30s timeout
Applied to both Python backend (spec_runner.py flow) and TypeScript
frontend (ideation conversion, GitHub/GitLab issue import).
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
* feat: Add OpenRouter as LLM/embedding provider
Add OpenRouter provider support for Graphiti memory integration,
enabling access to multiple LLM providers through a single API.
Changes:
Backend:
- Created openrouter_llm.py: OpenRouter LLM provider using OpenAI-compatible API
- Created openrouter_embedder.py: OpenRouter embedder provider
- Updated config.py: Added OpenRouter to provider enums and configuration
- New fields: openrouter_api_key, openrouter_base_url, openrouter_llm_model, openrouter_embedding_model
- Validation methods updated for OpenRouter
- Updated factory.py: Added OpenRouter to LLM and embedder factories
- Updated provider __init__.py files: Exported new OpenRouter functions
Frontend:
- Updated project.ts types: Added 'openrouter' to provider type unions
- GraphitiProviderConfig extended with OpenRouter fields
- Updated GraphitiStep.tsx: Added OpenRouter to provider arrays
- LLM_PROVIDERS: 'Multi-provider aggregator'
- EMBEDDING_PROVIDERS: 'OpenAI-compatible embeddings'
- Added OpenRouter API key input field with show/hide toggle
- Link to https://openrouter.ai/keys
- Updated env-handlers.ts: OpenRouter .env generation and parsing
- Template generation for OPENROUTER_* variables
- Parsing from .env files with proper type casting
Documentation:
- Updated .env.example with OpenRouter section
- Configuration examples
- Popular model recommendations
- Example configuration (#6)
Fixes#92🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
* refactor: address CodeRabbit review comments for OpenRouter
- Add globalOpenRouterApiKey to settings types and store updates
- Initialize openrouterApiKey from global settings
- Update documentation to include OpenRouter in provider lists
- Add OpenRouter handling to get_embedding_dimension() method
- Add openrouter to provider cleanup list
- Add OpenRouter to get_available_providers() function
- Clarify Legacy comment for openrouterLlmModel
These changes complete the OpenRouter integration by ensuring proper
settings persistence and provider detection across the application.
* fix: apply ruff formatting to OpenRouter code
- Break long error message across multiple lines
- Format provider list with one item per line
- Fixes lint CI failure
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
---------
Co-authored-by: Claude Sonnet 4.5 <noreply@anthropic.com>
This fixes critical bug where macOS users with default Python 3.9.6 couldn't use Auto-Claude because claude-agent-sdk requires Python 3.10+.
Root Cause:
- Auto-Claude doesn't bundle Python, relies on system Python
- python-detector.ts accepted any Python 3.x without checking minimum version
- macOS ships with Python 3.9.6 by default (incompatible)
- GitHub Actions runners didn't explicitly set Python version
Changes:
1. python-detector.ts:
- Added getPythonVersion() to extract version from command
- Added validatePythonVersion() to check if >= 3.10.0
- Updated findPythonCommand() to skip Python < 3.10 with clear error messages
2. python-env-manager.ts:
- Import and use findPythonCommand() (already has version validation)
- Simplified findSystemPython() to use shared validation logic
- Updated error message from "Python 3.9+" to "Python 3.10+" with download link
3. .github/workflows/release.yml:
- Added Python 3.11 setup to all 4 build jobs (macOS Intel, macOS ARM64, Windows, Linux)
- Ensures consistent Python version across all platforms during build
Impact:
- macOS users with Python 3.9 now see clear error with download link
- macOS users with Python 3.10+ work normally
- CI/CD builds use consistent Python 3.11
- Prevents "ModuleNotFoundError: dotenv" and dependency install failures
Fixes#180, #167🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-authored-by: Claude Sonnet 4.5 <noreply@anthropic.com>
* chore: update README version to 2.7.1
Updated the version badge and download links in the README to reflect the new release version 2.7.1, ensuring users have the correct information for downloading the latest builds.
* feat(releases): add beta release system with user opt-in
Implements a complete beta release workflow that allows users to opt-in
to receiving pre-release versions. This enables testing new features
before they're included in stable releases.
Changes:
- Add beta-release.yml workflow for creating beta releases from develop
- Add betaUpdates setting with UI toggle in Settings > Updates
- Add update channel support to electron-updater (beta vs latest)
- Extract shared settings-utils.ts to reduce code duplication
- Add prepare-release.yml workflow for automated release preparation
- Document beta release process in CONTRIBUTING.md and RELEASE.md
Users can enable beta updates in Settings > Updates, and maintainers
can trigger beta releases via the GitHub Actions workflow.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* workflow update
* ci(github): update Discord link and redirect feature requests to discussions
Update Discord invite link to correct URL (QhRnz9m5HE) across all GitHub
templates and workflows. Redirect feature requests from issue template
to GitHub Discussions for better community engagement.
Changes:
- config.yml: Add feature request link to Discussions, fix Discord URL
- question.yml: Update Discord link in pre-question guidance
- welcome.yml: Update Discord link in first-time contributor message
---------
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
* chore: update README version to 2.7.1
Updated the version badge and download links in the README to reflect the new release version 2.7.1, ensuring users have the correct information for downloading the latest builds.
* feat(releases): add beta release system with user opt-in
Implements a complete beta release workflow that allows users to opt-in
to receiving pre-release versions. This enables testing new features
before they're included in stable releases.
Changes:
- Add beta-release.yml workflow for creating beta releases from develop
- Add betaUpdates setting with UI toggle in Settings > Updates
- Add update channel support to electron-updater (beta vs latest)
- Extract shared settings-utils.ts to reduce code duplication
- Add prepare-release.yml workflow for automated release preparation
- Document beta release process in CONTRIBUTING.md and RELEASE.md
Users can enable beta updates in Settings > Updates, and maintainers
can trigger beta releases via the GitHub Actions workflow.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* workflow update
---------
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
* fix(core): add task persistence, terminal handling, and HTTP 300 fixes
Consolidated bug fixes from PRs #168, #170, #171:
- Task persistence (#168): Scan worktrees for tasks on app restart
to prevent loss of in-progress work and wasted API credits. Tasks
in .worktrees/*/specs are now loaded and deduplicated with main.
- Terminal buttons (#170): Fix "Open Terminal" buttons silently
failing on macOS by properly awaiting createTerminal() Promise.
Added useTerminalHandler hook with loading states and error display.
- HTTP 300 errors (#171): Handle branch/tag name collisions that
cause update failures. Added validation script to prevent conflicts
before releases and user-friendly error messages with manual
download links.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(platform): add path resolution, spaces handling, and XDG support
This commit consolidates multiple bug fixes from community PRs:
- PR #187: Path resolution fix - Update path detection to find apps/backend
instead of legacy auto-claude directory after v2.7.2 restructure
- PR #182/#155: Python path spaces fix - Improve parsePythonCommand() to
handle quoted paths and paths containing spaces without splitting
- PR #161: Ollama detection fix - Add new apps structure paths for
ollama_model_detector.py script discovery
- PR #160: AppImage support - Add XDG Base Directory compliant paths for
Linux sandboxed environments (AppImage, Flatpak, Snap). New files:
- config-paths.ts: XDG path utilities
- fs-utils.ts: Filesystem utilities with fallback support
- PR #159: gh CLI PATH fix - Add getAugmentedEnv() utility to include
common binary locations (Homebrew, snap, local) in PATH for child
processes. Fixes gh CLI not found when app launched from Finder/Dock.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: address CodeRabbit/Cursor review comments on PR #185
Fixes from code review:
- http-client.ts: Use GITHUB_CONFIG instead of hardcoded owner in HTTP 300 error message
- validate-release.js: Fix substring matching bug in branch detection that could cause false positives (e.g., v2.7 matching v2.7.2)
- bump-version.js: Remove unnecessary try-catch wrapper (exec() already exits on failure)
- execution-handlers.ts: Capture original subtask status before mutation for accurate logging
- fs-utils.ts: Add error handling to safeWriteFile with proper logging
Dismissed as trivial/not applicable:
- config-paths.ts: Exhaustive switch check (over-engineering)
- env-utils.ts: PATH priority documentation (existing comments sufficient)
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: address additional CodeRabbit review comments (round 2)
Fixes from second round of code review:
- fs-utils.ts: Wrap test file cleanup in try-catch for Windows file locking
- fs-utils.ts: Add error handling to safeReadFile for consistency with safeWriteFile
- http-client.ts: Use GITHUB_CONFIG in fetchJson (missed in first round)
- validate-release.js: Exclude symbolic refs (origin/HEAD -> origin/main) from branch check
- python-detector.ts: Return cleanPath instead of pythonPath for empty input edge case
Dismissed as trivial/not applicable:
- execution-handlers.ts: Redundant checkSubtasksCompletion call (micro-optimization)
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---------
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
* fix: analyzer Python compatibility and settings integration
Fixes project index analyzer failing with TypeError on Python type hints.
Changes:
- Added 'from __future__ import annotations' to all analysis modules
- Fixed project discovery to support new analyzer JSON format
- Read Python path directly from settings.json instead of pythonEnvManager
- Added stderr/stdout logging for analyzer debugging
Resolves 'Discovered 0 files' and 'TypeError: unsupported operand type' issues.
* auto-claude: subtask-1-1 - Hide status badge when execution phase badge is showing
When a task has an active execution (planning, coding, etc.), the
execution phase badge already displays the correct state with a spinner.
The status badge was also rendering, causing duplicate/confusing badges
(e.g., both "Planning" and "Pending" showing at the same time).
This fix wraps the status badge in a conditional that only renders when
there's no active execution, eliminating the redundant badge display.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(ipc): remove unused pythonEnvManager parameter and fix ES6 import
Address CodeRabbit review feedback:
- Remove unused pythonEnvManager parameter from registerProjectContextHandlers
and registerContextHandlers (the code reads Python path directly from
settings.json instead)
- Replace require('electron').app with proper ES6 import for consistency
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* chore(lint): fix import sorting in analysis module
Run ruff --fix to resolve I001 lint errors after merging develop.
All 23 files in apps/backend/analysis/ now have properly sorted imports.
---------
Co-authored-by: Joris Slagter <mail@jorisslagter.nl>
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
When a user drags a running task back to Planning (or any other column),
the process was not being stopped, leaving a "ghost" process that
prevented deletion with "Cannot delete a running task" error.
Now the task process is automatically killed when status changes away
from in_progress, ensuring the process state stays in sync with the UI.
* fix: Linear API authentication and GraphQL types
- Remove Bearer prefix from Authorization header (Linear API keys are sent directly)
- Change GraphQL variable types from String! to ID! for teamId and issue IDs
- Improve error handling to show detailed Linear API error messages
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: Radix Select empty value error in Linear import modal
Use '__all__' sentinel value instead of empty string for "All projects"
option, as Radix Select does not allow empty string values.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* feat: add CodeRabbit configuration file
Introduce a new .coderabbit.yaml file to configure CodeRabbit settings, including review profiles, automatic review options, path filters, and specific instructions for different file types. This enhances the code review process by providing tailored guidelines for Python, TypeScript, and test files.
* fix: correct GraphQL types for Linear team queries
Linear API uses different types for different queries:
- team(id:) expects String!
- issues(filter: { team: { id: { eq: } } }) expects ID!
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: refresh task list after Linear import
Call loadTasks() after successful Linear import to update the kanban
board without requiring a page reload.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* cleanup
* cleanup
* fix: address CodeRabbit review comments for Linear integration
- Fix unsafe JSON parsing: check response.ok before parsing JSON to handle
non-JSON error responses (e.g., 503 from proxy) gracefully
- Use ID! type instead of String! for teamId in LINEAR_GET_PROJECTS query
for GraphQL type consistency
- Remove debug console.log (ESLint config only allows warn/error)
- Refresh task list on partial import success (imported > 0) instead of
requiring full success
- Fix pre-existing TypeScript and lint issues blocking commit
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* version sync logic
* lints for develop branch
* chore: update CI workflow to include develop branch
- Modified the CI configuration to trigger on pushes and pull requests to both main and develop branches, enhancing the workflow for development and integration processes.
* fix: update project directory auto-detection for apps/backend structure
The project directory auto-detection was checking for the old `auto-claude/`
directory name but needed to check for `apps/backend/`. When running from
`apps/backend/`, the directory name is `backend` not `auto-claude`, so the
check would fail and `project_dir` would incorrectly remain as `apps/backend/`
instead of resolving to the project root (2 levels up).
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: use GraphQL variables instead of string interpolation in LINEAR_GET_ISSUES
Replace direct string interpolation of teamId and linearProjectId with
proper GraphQL variables. This prevents potential query syntax errors if
IDs contain special characters like double quotes, and aligns with the
variable-based approach used elsewhere in the file.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(ui): correct logging level and await loadTasks on import complete
- Change console.warn to console.log for import success messages
(warn is incorrect severity for normal completion)
- Make onImportComplete callback async and await loadTasks()
to prevent potential unhandled promise rejections
Applies CodeRabbit review feedback across 3 LinearTaskImportModal usages.
* fix(hooks): use POSIX-compliant find instead of bash glob
The pre-commit hook uses #!/bin/sh but had bash-specific ** glob
pattern for staging ruff-formatted files. The ** pattern only works
in bash with globstar enabled - in POSIX sh it expands literally
and won't match subdirectories, causing formatted files in nested
directories to not be staged.
---------
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
Removes the legacy 'auto-claude' path from the possiblePaths array
in agent-process.ts. This path was from before the monorepo
restructure (v2.7.2) and is no longer needed.
The legacy path was causing spec_runner.py to be looked up at the
wrong location:
- OLD (wrong): /path/to/auto-claude/auto-claude/runners/spec_runner.py
- NEW (correct): /path/to/apps/backend/runners/spec_runner.py
This aligns with the new monorepo structure where all backend code
lives in apps/backend/.
Fixes#147
Co-authored-by: Joris Slagter <mail@jorisslagter.nl>
Implemented promise queue pattern in PythonEnvManager to handle
concurrent initialization requests. Previously, multiple simultaneous
requests (e.g., startup + merge) would fail with "Already
initializing" error.
Also fixed parsePythonCommand() to handle file paths with spaces by
checking file existence before splitting on whitespace.
Changes:
- Added initializationPromise field to queue concurrent requests
- Split initialize() into public and private _doInitialize()
- Enhanced parsePythonCommand() with existsSync() check
Co-authored-by: Joris Slagter <mail@jorisslagter.nl>
* feat(ollama): add real-time download progress tracking for model downloads
Implement comprehensive download progress tracking with:
- NDJSON parsing for streaming progress data from Ollama API
- Real-time speed calculation (MB/s, KB/s, B/s) with useRef for delta tracking
- Time remaining estimation based on download speed
- Animated progress bars in OllamaModelSelector component
- IPC event streaming from main process to renderer
- Proper listener management with cleanup functions
Changes:
- memory-handlers.ts: Parse NDJSON from Ollama stderr, emit progress events
- OllamaModelSelector.tsx: Display progress bars with speed and time remaining
- project-api.ts: Implement onDownloadProgress listener with cleanup
- ipc.ts types: Define onDownloadProgress listener interface
- infrastructure-mock.ts: Add mock implementation for browser testing
This allows users to see real-time feedback when downloading Ollama models,
including percentage complete, current download speed, and estimated time remaining.
* test: add focused test coverage for Ollama download progress feature
Add unit tests for the critical paths of the real-time download progress tracking:
- Progress calculation tests (52 tests): Speed/time/percentage calculations with comprehensive edge case coverage (zero speeds, NaN, Infinity, large numbers)
- NDJSON parser tests (33 tests): Streaming JSON parsing from Ollama, buffer management for incomplete lines, error handling
All 562 unit tests passing with clean dependencies. Tests focus on critical mathematical logic and data processing - the most important paths that need verification.
Test coverage:
✅ Speed calculation and formatting (B/s, KB/s, MB/s)
✅ Time remaining calculations (seconds, minutes, hours)
✅ Percentage clamping (0-100%)
✅ NDJSON streaming with partial line buffering
✅ Invalid JSON handling
✅ Real Ollama API responses
✅ Multi-chunk streaming scenarios
* docs: add comprehensive JSDoc docstrings for Ollama download progress feature
- Enhanced OllamaModelSelector component with detailed JSDoc
* Documented component props, behavior, and usage examples
* Added docstrings to internal functions (checkInstalledModels, handleDownload, handleSelect)
* Explained progress tracking algorithm and useRef usage
- Improved memory-handlers.ts documentation
* Added docstring to main registerMemoryHandlers function
* Documented all Ollama-related IPC handlers (check-status, list-embedding-models, pull-model)
* Added JSDoc to executeOllamaDetector helper function
* Documented interface types (OllamaStatus, OllamaModel, OllamaEmbeddingModel, OllamaPullResult)
* Explained NDJSON parsing and progress event structure
- Enhanced test file documentation
* Added docstrings to NDJSON parser test utilities with algorithm explanation
* Documented all calculation functions (speed, time, percentage)
* Added detailed comments on formatting and bounds-checking logic
- Improved overall code maintainability
* Docstring coverage now meets 80%+ threshold for code review
* Clear explanation of progress tracking implementation details
* Better context for future maintainers working with download streaming
* feat: add batch task creation and management CLI commands
- Handle batch task creation from JSON files
- Show status of all specs in project
- Cleanup tool for completed specs
- Full integration with new apps/backend structure
- Compatible with implementation_plan.json workflow
* test: add batch task test file and testing checklist
- batch_test.json: Sample tasks for testing batch creation
- TESTING_CHECKLIST.md: Comprehensive testing guide for Ollama and batch tasks
- Includes UI testing steps, CLI testing steps, and edge cases
- Ready for manual and automated testing
* chore: update package-lock.json to match v2.7.2
* test: update checklist with verification results and architecture validation
* docs: add comprehensive implementation summary for Ollama + Batch features
* docs: add comprehensive Phase 2 testing guide with checklists and procedures
* docs: add NEXT_STEPS guide for Phase 2 testing
* fix: resolve merge conflict in project-api.ts from Ollama feature cherry-pick
* fix: remove duplicate Ollama check status handler registration
* test: update checklist with Phase 2 bug findings and fixes
---------
Co-authored-by: ray <ray@rays-MacBook-Pro.local>
* refactor: restructure project to Apps/frontend and Apps/backend
- Move auto-claude-ui to Apps/frontend with feature-based architecture
- Move auto-claude to Apps/backend
- Switch from pnpm to npm for frontend
- Update Node.js requirement to v24.12.0 LTS
- Add pre-commit hooks for lint, typecheck, and security audit
- Add commit-msg hook for conventional commits
- Fix CommonJS compatibility issues (postcss.config, postinstall scripts)
- Update README with comprehensive setup and contribution guidelines
- Configure ESLint to ignore .cjs files
- 0 npm vulnerabilities
Co-authored-by: factory-droid[bot] <138933559+factory-droid[bot]@users.noreply.github.com>
* feat(refactor): clean code and move to npm
* feat(refactor): clean code and move to npm
* chore: update to v2.7.0, remove Docker deps (LadybugDB is embedded)
* feat: v2.8.0 - update workflows and configs for Apps/ structure, npm
* fix: resolve Python lint errors (F401, I001)
* fix: update test paths for Apps/backend structure
* fix: add missing facade files and update paths for Apps/backend structure
- Fix ruff lint error I001 in auto_claude_tools.py
- Create missing facade files to match upstream (agent, ci_discovery, critique, etc.)
- Update test paths from auto-claude/ to Apps/backend/
- Update .pre-commit-config.yaml paths for Apps/ structure
- Add pytest to pre-commit hooks (skip slow/integration/Windows-incompatible tests)
- Fix Unicode encoding in test_agent_architecture.py for Windows
Co-authored-by: factory-droid[bot] <138933559+factory-droid[bot]@users.noreply.github.com>
* feat: improve readme
* fix: new path
* fix: correct release workflow and docs for Apps/ restructure
- Fix ARM64 macOS build: pnpm → npm, auto-claude-ui → Apps/frontend
- Fix artifact upload paths in release.yml
- Update Node.js version to 24 for consistency
- Update CLI-USAGE.md with Apps/backend paths
- Update RELEASE.md with Apps/frontend/package.json paths
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* refactor: rename Apps/ to apps/ and fix backend path resolution
- Rename Apps/ folder to apps/ for consistency with JS/Node conventions
- Update all path references across CI/CD workflows, docs, and config files
- Fix frontend Python path resolver to look for 'backend' instead of 'auto-claude'
- Update path-resolver.ts to correctly find apps/backend in development mode
This completes the Apps restructure from PR #122 and prepares for v2.8.0 release.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(electron): correct preload script path from .js to .mjs
electron-vite builds the preload script as ESM (index.mjs) but the main
process was looking for CommonJS (index.js). This caused the preload to
fail silently, making the app fall back to browser mock mode with fake
data and non-functional IPC handlers.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* - Introduced `dev:debug` script to enable debugging during development.
- Added `dev:mcp` script for running the frontend in MCP mode.
These enhancements streamline the development process for frontend developers.
* refactor(memory): make Graphiti memory mandatory and remove Docker dependency
Memory is now a core component of Auto Claude rather than optional:
- Python 3.12+ is required for the backend (not just memory layer)
- Graphiti is enabled by default in .env.example
- Removed all FalkorDB/Docker references (migrated to embedded LadybugDB)
- Deleted guides/DOCKER-SETUP.md and docker-handlers.ts
- Updated onboarding UI to remove "optional" language
- Updated all documentation to reflect LadybugDB architecture
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* feat: add cross-platform Windows support for npm scripts
- Add scripts/install-backend.js for cross-platform Python venv setup
- Auto-detects Python 3.12 (py -3.12 on Windows, python3.12 on Unix)
- Handles platform-specific venv paths
- Add scripts/test-backend.js for cross-platform pytest execution
- Update package.json to use Node.js scripts instead of shell commands
- Update CONTRIBUTING.md with correct paths and instructions:
- apps/backend/ and apps/frontend/ paths
- Python 3.12 requirement (memory system now required)
- Platform-specific install commands (winget, brew, apt)
- npm instead of pnpm
- Quick Start section with npm run install:all
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* remove doc
* fix(frontend): correct Ollama detector script path after apps restructure
The Ollama status check was failing because memory-handlers.ts
was looking for ollama_model_detector.py at auto-claude/ but the
script is now at apps/backend/ after the directory restructure.
This caused "Ollama not running" to display even when Ollama was
actually running and accessible.
* chore: bump version to 2.7.2
Downgrade version from 2.8.0 to 2.7.2 as the Apps/ restructure
is better suited as a patch release rather than a minor release.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* chore: update package-lock.json for Windows compatibility
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* docs(contributing): add hotfix workflow and update paths for apps/ structure
Add Git Flow hotfix workflow documentation with step-by-step guide
and ASCII diagram showing the branching strategy.
Update all paths from auto-claude/auto-claude-ui to apps/backend/apps/frontend
and migrate package manager references from pnpm to npm to match the
new project structure.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(ci): remove duplicate ARM64 build from Intel runner
The Intel runner was building both x64 and arm64 architectures,
while a separate ARM64 runner also builds arm64 natively. This
caused duplicate ARM64 builds, wasting CI resources.
Now each runner builds only its native architecture:
- Intel runner: x64 only
- ARM64 runner: arm64 only
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---------
Co-authored-by: Alex Madera <e.a_madera@hotmail.com>
Co-authored-by: factory-droid[bot] <138933559+factory-droid[bot]@users.noreply.github.com>
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
- Add comprehensive branching strategy documentation
- Explain main, develop, feature, fix, release, and hotfix branches
- Clarify that all PRs should target develop (not main)
- Add release process documentation for maintainers
- Update PR process to branch from develop
- Expand table of contents with new sections
* feat(memory): replace FalkorDB with LadybugDB embedded database
Remove Docker dependency for Graphiti memory integration by switching
to LadybugDB, an embedded graph database that works via monkeypatch
with graphiti-core's KuzuDriver.
Changes:
- Remove all FalkorDB configuration and connection code
- Simplify config to use GRAPHITI_DB_PATH for local storage
- Update requirements to use real_ladybug + graphiti-core
- Update documentation for Python 3.12+ requirement
This makes the memory system much simpler to set up - no Docker needed.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* chore: remove docker-compose.yml (FalkorDB no longer used)
FalkorDB has been replaced with LadybugDB embedded database,
so Docker is no longer required for the memory integration.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* feat: add automated release workflow with code signing
- Add release.yml workflow triggered on version tags (v*)
- Support manual dry-run builds via workflow_dispatch
- Build for macOS (arm64 + x64), Windows, and Linux
- macOS code signing with Developer ID certificate
- macOS notarization support for Gatekeeper approval
- Add entitlements.mac.plist for hardened runtime
- Generate SHA256 checksums for all release artifacts
- Auto-generate changelog from PR labels
- Add pnpm caching to CI workflow for faster builds
- Add lint, typecheck, and build steps to CI
- Update package.json with artifactName for consistent naming
- Fix extraResources filter to exclude test venvs
Artifacts will be named: Auto-Claude-{version}-{platform}-{arch}.{ext}
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* refactor: replace Docker/FalkorDB with embedded LadybugDB for memory system
This major refactoring eliminates the Docker dependency for the memory system
by switching from FalkorDB to LadybugDB (embedded graph database).
Backend changes:
- Add query_memory.py: Python CLI for memory queries via subprocess
- Add kuzu_driver_patched.py: Patched Kuzu driver with FTS index support
- Add ollama_model_detector.py: Auto-detect Ollama embedding models
- Update client.py to use patched driver for proper FTS functionality
- Fix parameter handling for LadybugDB compatibility
Frontend changes:
- Add memory-service.ts: Node.js service wrapping Python subprocess
- Add memory-handlers.ts: IPC handlers for memory operations
- Add api-validation-service.ts: Validate LLM/embedder API keys
- Remove docker-service.ts and falkordb-service.ts (no longer needed)
- Update MemoryBackendSection with multi-provider embedder support
- Update InfrastructureStatus to show LadybugDB status
- Simplify GraphitiStep onboarding (no Docker setup required)
Key improvements:
- Zero Docker dependency - fully embedded database
- Multi-provider embedder support (OpenAI, Gemini, Voyage, Ollama, Azure)
- Hybrid RAG with semantic search, FTS, and graph traversal
- Automatic FTS index creation via patched driver
- Python 3.12 compatibility (LadybugDB requirement)
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: correct model name and release workflow conditionals
Bug fixes:
- Fix model ID: claude-sonnet-4-5-latest → claude-sonnet-4-5-20250514
(using dated version for stability)
- Fix release workflow: add github.event_name checks before accessing
inputs.dry_run to prevent errors on tag push events
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* feat: add Ollama embedding model support with auto-detected dimensions
- Add known model lookup table for popular Ollama embedding models:
- embeddinggemma (768 dim) - Google's lightweight model
- qwen3-embedding:0.6b/4b/8b (1024/2560/4096 dim) - Qwen3 series
- nomic-embed-text, mxbai-embed-large, bge-large, all-minilm
- Auto-detect embedding dimensions for known models (no need to set OLLAMA_EMBEDDING_DIM)
- Fix config validation to not require OLLAMA_EMBEDDING_DIM for known models
- Fix PatchedKuzuDriver to set _database attribute (required by Graphiti)
- Fix get_status_summary to use db_path instead of deprecated falkordb_host
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* refactor: rebrand memory system UI and simplify configuration
- Rename "Graphiti" to "Memory" throughout UI
- Remove LLM provider selection (Claude SDK handles RAG)
- Keep embedding provider selection (OpenAI, Ollama, Voyage, Google, Azure)
- Add Ollama model pull/download support
- Change default storage path from ~/.auto-claude/graphs to ~/.auto-claude/memories
- Make embedding provider fields conditional based on selection
- Add OllamaModelSelector component with auto-detection
- Create simplified MemoryStep for onboarding wizard
- Update SecuritySettings with provider-specific field rendering
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(ui): replace Unix shell syntax with cross-platform git commands
Fixes#90
Worktrees were showing "0" for all file changes on Windows because
Unix shell constructs (`2>/dev/null || echo`) are invalid in cmd.exe.
Changes:
- Replace `2>/dev/null || echo` with TypeScript try-catch
- Add `stdio: ['pipe', 'pipe', 'pipe']` to capture stderr
- Fix 7 locations in worktree-handlers.ts:
- git rev-list --count (2 locations)
- git diff --stat
- git diff --numstat
- git diff --name-status
- git diff --shortstat
- git merge-base --is-ancestor
The error "The system cannot find the path specified" was caused by
cmd.exe trying to interpret `/dev/null` as a literal file path.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude <noreply@anthropic.com>
* fix(cli): update graphiti status display for LadybugDB
After migrating from FalkorDB (Docker-based) to LadybugDB (embedded),
the validate_environment function tried to access 'host' and 'port'
keys that no longer exist in the graphiti status dictionary.
Changes:
- Replace host:port display with db_path for embedded database
- Use .get() for safe key access
This fixes a KeyError crash when running auto-claude builds with
Graphiti memory enabled.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude <noreply@anthropic.com>
* fix: improve Ollama UX in memory settings
- Replace manual Ollama config with OllamaModelSelector component
- Remove Base URL field (auto-detected from Ollama)
- Remove manual embedding dimension input (auto-detected from model)
- Show only installed models as selectable options
- Add download buttons for recommended models not yet installed
- Make embeddinggemma the recommended default model
- Remove qwen3-embedding from recommendations (focus on quality models)
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* chore: update CI and release workflows, remove changelog config
- Removed the obsolete changelog configuration file.
- Updated CI workflow to use `pnpm run test` instead of `pnpm test`.
- Modified release workflow to use `pnpm install --frozen-lockfile` for consistent dependency installation.
- Enhanced artifact handling by validating the presence of build artifacts before proceeding.
These changes streamline the workflows and improve reliability in the build process.
* fix: resolve all CI failures in PR #100
Python lint fixes (ruff):
- Fix import sorting in kuzu_driver_patched.py, ollama_model_detector.py, query_memory.py
- Add noqa: F401 for kuzu import used only for availability check
Frontend:
- Update pnpm-lock.yaml to remove ioredis dependencies
Test fixes:
- Update test_graphiti.py to reflect new multi-provider architecture
- Embedder is now optional (keyword search fallback works)
- LLM provider validation removed (Claude SDK handles RAG)
- Fix FalkorDB references to LadybugDB (db_path instead of host/port)
Config consistency:
- Fix get_graphiti_status() to be consistent with is_valid()
- Embedder errors are now warnings, not blockers
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* refactor: update memory test suite for LadybugDB
Replace FalkorDB-based tests with LadybugDB (embedded database) tests:
- test_ladybugdb_connection() - Verify embedded DB works
- test_save_episode() - Save test data to graph
- test_keyword_search() - Keyword fallback (no embeddings needed)
- test_semantic_search() - Vector search with embeddings
- test_ollama_embeddings() - Direct Ollama embedding test
- test_graphiti_memory_class() - Full wrapper class test
- test_database_contents() - Debug view of DB contents
Usage:
python integrations/graphiti/test_graphiti_memory.py --test ollama
python integrations/graphiti/test_graphiti_memory.py --test connection
python integrations/graphiti/test_graphiti_memory.py # all tests
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: resolve remaining CI failures
Python:
- Add missing blank line after imports in query_memory.py (ruff I001)
TypeScript:
- Fix mock getBestAvailableProfile signature to accept optional parameter
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: remove f-string prefixes from strings without placeholders
Fixes ruff F541 errors in test_graphiti_memory.py
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* style: apply ruff formatting to 4 files
Auto-formatted kuzu_driver_patched.py and test_graphiti_memory.py
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: address CodeRabbit review comments from PR #100
- release.yml: Fix changelog output property (outputs.body not outputs.changelog)
- config.py: Update Anthropic model to generic claude-sonnet-4-5 identifier
- api-validation-service.ts: Fix error message to include both sk- and sess- prefixes
- ci.yml: Add quotes around command substitution for safety
- OllamaModelSelector.tsx: Add error logging to catch block
- OllamaModelSelector.tsx: Add AbortController cleanup pattern for unmount
- SecuritySettings.tsx: Add useEffect to sync showOpenAIKey prop changes
- SecuritySettings.tsx: Fix stale state in toggleShowApiKey
- SecuritySettings.tsx: Add aria-labels to password visibility buttons
Verified: nomic-embed-text uses 768 dimensions (CodeRabbit was incorrect about 1024)
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* docs: add CodeRabbit review response tracking
Document rejected CodeRabbit suggestions with justification:
- nomic-embed-text uses 768 dims (not 1024 as claimed)
- MemoryStep checkmark UX is intentional design
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: sort imports in memory.py for ruff I001
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: address additional CodeRabbit review comments
Security fixes:
- kuzu_driver_patched.py: Add try/finally blocks for connection cleanup
- query_memory.py: Use parameterized queries to prevent Cypher injection
- query_memory.py: Use public get_validation_errors() instead of private method
- release.yml: Use ./* glob pattern to prevent option injection
Code quality:
- ollama_model_detector.py: Fix type annotation (str | None)
- cleanup-version-branches.sh: Fix empty tag count edge case
- config.py: Remove unused _validate_llm_provider method
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: update test and apply ruff formatting
- Remove test assertion for deleted _validate_llm_provider method
- Apply ruff format to query_memory.py
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: address CodeRabbit review feedback
- kuzu_driver_patched.py: Simplify multi-line f-string to single line
- config.py: Clarify LadybugDB requires Python 3.12+ in docstrings
- ci.yml: Fix pnpm store path echo command quoting
- test_graphiti.py: Use public API get_validation_errors() instead of private method
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* feat: add embedding provider change detection and fix import ordering
Graphiti improvements:
- Add provider change detection in GraphitiMemory.initialize()
- Warn users when embedding provider changes to prevent dimension mismatches
- Guide users to run migration script or reset state
- Add test_provider_naming.py demo script for provider-specific database naming
Code quality fixes:
- Move inline `import re` to module top in query_memory.py
- Alphabetically order standard library imports (PEP8 compliance)
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(ci): quote GITHUB_OUTPUT for shell safety
Quote the $GITHUB_OUTPUT variable in the pnpm store path
echo command to safely handle paths containing spaces.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: add GH_TOKEN and homepage for release workflow
- Add GH_TOKEN to all package steps (required for electron-builder to download native prebuilds)
- Add homepage and repository fields to package.json (required for Linux builds)
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: add author email for Linux builds
electron-builder FPM target requires author email for .deb packages
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: make macOS notarization optional
Notarization can fail due to certificate issues - don't block the build.
Unsigned DMGs still work, users just see a security warning.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: save notarization logs to private artifact instead of public logs
- Captures Apple notarization failure details in downloadable artifact
- Keeps sensitive paths and info out of public CI logs
- Only repo collaborators can access the notarization-logs artifact
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: respect user's memory enabled flag in query_memory CLI
Remove the forced `config.enabled = True` override that ignored user's
explicit disable choice. The CLI tool should respect the enabled flag -
callers using the semantic-search command are explicitly requesting
memory functionality.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: improve migrate_embeddings robustness and correctness
- Add proper cleanup of source client when target initialization fails
- Fix database name derivation to use source provider's signature
instead of incorrectly using current config's signature
- Add validation to prevent no-op migration between same providers
- Remove unused imports (json, Optional, GraphitiState)
- Fix ruff formatting issues (line length)
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* style: fix ruff linting errors in graphiti queries
- Remove f-string prefix from strings without placeholders
- Fix line length formatting issues
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: use shell guard for notarization credentials check
The step-level `if: env.APPLE_ID != ''` condition was evaluated before
the step's env block was available, causing notarization to always be
skipped. Replace with a runtime shell guard that checks the environment
variable when the step actually runs.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: allow @lydell/node-pty build scripts in pnpm v10
pnpm v10 blocks dependency lifecycle scripts by default. Add
@lydell/node-pty to onlyBuiltDependencies array so its native
module build scripts can run during installation.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* feat(ui): add project tab bar from PR #101
Cherry-picked from PR #101 for testing:
- Add tab state management to project store
- Create ProjectTabBar and SortableProjectTab components
- Remove project dropdown from Sidebar
- Add drag-and-drop tab reordering
- Include unit tests for tab functionality
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* chore: simplify notarization step after successful setup
Remove debug logging and notarization-logs artifact upload now that
Developer ID Application certificate is properly configured.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: check APPLE_ID in shell instead of workflow if condition
secrets context cannot be used directly in if expressions.
Check env var in shell script instead.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(ui): change agent profile fallback from 'Balanced' to 'Auto (Optimized)'
The getProfileDisplay() function in AgentProfileSelector had a defensive
fallback that incorrectly displayed "Balanced" when no profile was found.
Changed to display "Auto (Optimized)" to match the actual default profile
configured in DEFAULT_APP_SETTINGS.
This ensures consistency with the intended default behavior where fresh
users should see "Auto (Optimized)" as their agent profile selection.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* refactor(ui): simplify reference files and images handling in task modal
Remove separate reference files and images sections from the new task modal.
Images are now displayed as small clickable thumbnails directly below the
description field, and files can be referenced via @mentions in the description.
- Remove "Reference Images" toggle and dedicated ImageUpload section
- Remove "Referenced Files" section and ReferencedFilesSection component usage
- Add inline thumbnail display (64x64px) below description with remove buttons
- Update hint text to clarify drag & drop and paste functionality
- Clean up unused imports and state variables
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* chore: use GitHub noreply email for author field
Prevents spam while maintaining traceability for open source project.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: create Python venv in userData for packaged apps
On Linux AppImages, the bundled resources directory is read-only,
which prevented venv creation. Now packaged apps store the venv in
userData (~/.config/auto-claude-ui on Linux) which is always writable.
This follows XDG conventions and fixes the Arch Linux AppImage issue.
Fixes: venv creation failure on Linux AppImage
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* feat(ui): add keyboard shortcuts and tooltips for project tabs
Add standard browser/editor-style keyboard shortcuts for tab navigation:
- Cmd/Ctrl+1-9 to switch to specific tabs
- Cmd/Ctrl+Tab/Shift+Tab to cycle through tabs
- Cmd/Ctrl+W to close current tab
Replace native title tooltips with Radix tooltips that:
- Show after 200ms instead of ~1s native delay
- Display shortcuts in styled kbd badges
- Match app design with smooth animations
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* feat: improve task creation UX with @ autocomplete and better drag-drop
Fixes three UX issues reported by users:
1. Add @ file autocomplete in task description
- Type @ to see file suggestions
- Filters files as you type
- Keyboard navigation (arrows, Enter, Escape)
- Shows file path for disambiguation
2. Fix file browser scroll in project explorer
- Remove conflicting ScrollArea wrapper
- Let virtualizer handle scrolling directly
- Files now visible after expanding deep folders
3. Add auto-scroll during drag-and-drop
- Scroll form container when dragging near edges
- Makes it possible to drag files to textarea when scrolled out of view
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* feat(agent): enhance task restart functionality with new profile support
- Updated `restartTask` method to accept an optional `newProfileId` parameter, allowing for profile swapping during task restarts.
- Added logic to set the active profile if a new profile ID is provided.
- Adjusted event handling for `auto-swap-restart-task` to pass the new profile ID.
fix(agent): correct source type in rate limit info for spec creation
- Changed source type from 'task' to 'roadmap' in `createSDKRateLimitInfo` calls for better clarity in spec creation context.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
* fix(ui): fix tab persistence and scope terminal shortcuts
Two fixes:
1. Tab persistence on restart: Added explicit handling for when no tabs
are open after app restart. Now auto-opens the first project tab
instead of showing empty tab bar.
2. Keyboard shortcut scoping: Cmd/Ctrl+T now behaves contextually:
- On Agent Terminals view: Opens new terminal (existing behavior)
- On other views (Kanban, etc.): Opens Add Project dialog
Added isActive prop to TerminalGrid to scope shortcuts to when
the terminal view is active.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: unify default database path to ~/.auto-claude/memories
The default path was inconsistent across files:
- utils.ts used 'graphs'
- memory-service.ts used 'memories'
- .env.example documented 'graphs'
Unified all to use 'memories' to match Python backend config.py.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* auto-claude: subtask-1-1 - Add projectPath prop to PreviewPanel and implement custom img component
- Added projectPath prop to PreviewPanel interface
- Implemented custom img component for ReactMarkdown that converts relative paths
(like .github/assets/...) to file:// URLs for Electron
- Updated ChangelogDetails to get selected project and pass its path to PreviewPanel
- Images now display correctly in preview mode while markdown source remains unchanged
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(merge): use stored baseBranch from task metadata for merge operations
Previously, merge logic hardcoded 'main' as the comparison branch when
detecting what files changed in a task. This broke the workflow where:
- Tasks branch FROM the configured default (main) or user-specified branch
- Tasks merge INTO the user's current working branch
Now the merge system:
1. Reads baseBranch from task_metadata.json (set during task creation)
2. Passes --base-branch to Python CLI for merge and merge-preview
3. Uses this for refresh_from_git() comparisons throughout the merge pipeline
4. Falls back to auto-detection (main/master/develop) if not specified
Files modified across frontend (TypeScript) and backend (Python) to thread
the task_source_branch parameter through the entire merge flow.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(merge): increase AI merge timeout from 2 to 10 minutes
Large merge operations with many conflicting files were timing out
before completion. The AI merge resolution was processing files
successfully but hitting the 2-minute limit when handling 17+ files.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: use venv Python for terminal name generation
TerminalNameGenerator was using system Python which doesn't have
claude_agent_sdk installed. Now uses pythonEnvManager to get the
venv Python path where dependencies are installed.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: prevent task title from blocking edit/close buttons
Two issues were blocking the edit/close buttons in TaskDetailModal:
1. The title element was extending beyond its visual boundaries
- Added overflow-hidden to container and truncate to title
2. The Electron window's draggable region was capturing mouse events
- Added electron-no-drag class to the button container to allow
normal mouse interactions in that area
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix: address CodeRabbit review issues
- memory-service.ts: Add app.getAppPath() path resolution for packaged
Electron apps. This ensures query_memory.py is found in both dev and
production builds, consistent with title-generator.ts pattern.
- MemoryStep.tsx: Make CheckCircle2 icon conditional on kuzuAvailable
state. Previously showed success checkmark even when database wasn't
available, misleading users.
- GitHubSetupModal.tsx: Fix incorrect API method name from
getStoredGitHubToken to getGitHubToken. Also adds existing auth
detection to skip already-completed authentication steps.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* Readme for installors
* Project tab persistence and github org init on project creation
* fix(ui): address CodeRabbit PR review issues
Fix actual bugs identified in PR #100 review:
- Fix race condition in memory-handlers.ts timeout handling by using
single timeout with proper cleanup and resolved flag
- Fix API key resolution in GraphitiStep.tsx to handle groq, azure_openai,
and ollama providers
- Add TabState interface and getTabState/saveTabState to ElectronAPI types
- Add mock implementations for browser development
Also includes:
- Exclude pnpm-lock.yaml from check-yaml (uses URLs with colons as keys)
- Auto-fixes from pre-commit hooks (trailing whitespace, EOF, ruff-format)
Note: nomic-embed-text dimension (768) and import ordering were verified
as correct - CodeRabbit suggestions were false positives.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
* fix(tests): update tab management tests for IPC-based persistence
The project store now uses IPC (saveTabState/getTabState) instead of
localStorage for tab state persistence. Updated tests to:
- Remove localStorage.setItem assertions (no longer used)
- Update restoreTabState test to reflect it's now a no-op (actual
loading happens via loadProjects → getTabState)
- Add getTabState/saveTabState mocks to test setup
This fixes the CI test failures where tests expected localStorage
calls but the implementation uses IPC.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---------
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
Replace hardcoded 'python3' with findPythonCommand() to handle different Python installations (py -3, python, python3) across platforms. Fixes test failures on Windows and systems without python3 command.
Co-authored-by: danielfrey63 <daniel.frey@sbb.ch>
Fixes a critical bug where task specs were permanently deleted when a merge
operation failed, causing all tasks to disappear from the dashboard.
## Root Cause
When a merge fails or is rejected during human review, the cleanup code in
`execution-handlers.ts` ran `git clean -fd` to remove untracked files from
the failed merge. However, this command also deleted:
- `.auto-claude/specs/` - all task specifications and plans
- `.worktrees/` - isolated work environments
These directories are untracked (in .gitignore) and were being wiped out.
## Solution
Modified the `git clean` command to exclude critical Auto Claude directories:
```diff
- spawnSync('git', ['clean', '-fd'], ...)
+ spawnSync('git', ['clean', '-fd', '-e', '.auto-claude', '-e', '.worktrees'], ...)
```
This preserves:
- Task specs, plans, and QA reports in `.auto-claude/`
- Isolated worktree environments in `.worktrees/`
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-authored-by: alpaslannbek <alpaslannbek@gmail.com>
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
Update start:packaged:mac and start:packaged:win scripts to use
'Auto-Claude' instead of 'Auto Claude' to match the productName change
from PR #65.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Format client.py to pass ruff line length check
- Consolidate redundant debug flag checks in index.ts
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Fix RoadmapFeatureStatus: default to 'under_review' not 'idea'
- Add target_audience type validation in roadmap phases
- Fix Puppeteer MCP logic: exclude Electron projects
- Unify debug flag to DEBUG (remove AUTO_CLAUDE_DEBUG)
- Fix drag overlay to show status instead of phase name
- Add test_roadmap_validation.py for type validation coverage
- Update .env.example documentation
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Bump the version of auto-claude-ui to 2.6.5 in both package.json and package-lock.json to reflect the latest release. This ensures consistency across the project dependencies.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
The Python backend now reads __version__ from auto-claude-ui/package.json
instead of hardcoding it. This ensures version consistency across the
entire project and simplifies the release process.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Fix Python import ordering in qa/loop.py and qa/reviewer.py
- Remove unused get_thinking_budget import from qa/loop.py
- Fix Python formatting in core/client.py, qa/loop.py, qa/reviewer.py
- Add version-manager mock in ipc-handlers.test.ts for consistent version testing
- Update roadmap-store tests to match current implementation behavior:
- updateFeatureLinkedSpec sets status to 'in_progress' not 'planned'
- getFeatureStats expects 'under_review' status (not deprecated 'idea')
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Add UTF-8 encoding specification in project_context.py
- Fix TOCTOU race conditions by consolidating exists()/stat() calls
- Move re module import to top-level in prompts.py
- Remove duplicate IdeationConfig type, use shared types
- Add thinking level validation with warning logging
- Fix OAuth handler security: redact device codes from logs
- Remove redundant setTimeout in OAuth extraction flow
- Use explicit string replace instead of regex for clarity
Also adds test_thinking_level_validation.py for validation coverage.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Replace phase-based kanban columns with status workflow:
Under Review → Planned → In Progress → Done
- Add feature delete with confirmation dialog
- Add ROADMAP_STATUS_COLUMNS constant for column configuration
- Add useFeatureDelete and useRoadmapSave hooks
- Fix stale closure in useRoadmapSave to persist drag-drop changes
- Add ScrollArea to FeatureDetailPanel for proper scrolling
- Fix electron-no-drag on side panel headers to enable button clicks
- Add source tracking fields for future Canny.io integration
- Update SortableFeatureCard with phase badge and source indicators
- Add integration adapter interface for external feedback providers
- Update tests for new status-based architecture
The roadmap now uses a traditional status workflow while preserving
phase metadata for strategic planning views. This enables future
integration with feedback tools like Canny.io.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Bug 1: QA reviewer was using load_qa_reviewer_prompt() instead of
get_qa_reviewer_prompt(spec_dir, project_dir). This meant QA agents
never received dynamically-injected project-specific MCP tool docs
(e.g., Electron validation for Electron apps, Puppeteer for web).
Fix:
- Import get_qa_reviewer_prompt from prompts_pkg
- Add project_dir parameter to run_qa_agent_session()
- Update loop.py to pass project_dir to reviewer
- Remove redundant session context (now included in dynamic prompt)
Bug 2: Browser tool selection in client.py didn't check for
"not is_electron" when adding Puppeteer tools. If an Electron project
had ELECTRON_MCP_ENABLED=false, the elif would incorrectly add
Puppeteer tools to the Electron app.
Fix:
- Add "and not project_capabilities.get('is_electron')" to Puppeteer
condition, matching the pattern in permissions.py:138
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
The QA agent was failing to update implementation_plan.json and the
system would retry up to 50 times with the same prompt, wasting API
calls and never making progress.
Root cause: When QA agent didn't update the file, we just retried
with the identical prompt - the agent had no idea what went wrong.
Changes:
- Add MAX_CONSECUTIVE_ERRORS limit (3) to prevent infinite loops
- Track consecutive errors and reset on valid responses
- Build error context with detailed instructions for self-correction
- Inject recovery prompt explaining exactly what went wrong and
what the agent must do (update implementation_plan.json with
qa_signoff object containing status: approved/rejected)
- Add diagnostic info to error messages (message count, tool count)
- Early exit after 3 consecutive errors with human escalation
Before: 50+ iterations, ~2 min wasted, no progress
After: Max 3 attempts with feedback, ~6s, agent knows what to fix
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Add target_audience and target_audience.primary to roadmap validation
to prevent crash when this field is missing
- Unify all DEBUG environment variables to use DEBUG=true consistently
(removes AUTO_CLAUDE_DEBUG and DEBUG_UPDATER variants)
- Development mode (NODE_ENV=development) also enables debug logging
Closes#84🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
The RoadmapHeader component crashed with "Cannot read properties of
undefined (reading 'primary')" when roadmap.targetAudience was not
yet populated. Added defensive null check to prevent black screen.
Closes#84🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Add feature-specific model and thinking level configuration for Insights,
Ideation, and Roadmap features in the "Other Agent Settings" section.
Frontend changes:
- Add FeatureModelConfig and FeatureThinkingConfig types
- Add DEFAULT_FEATURE_MODELS and DEFAULT_FEATURE_THINKING constants
- Add feature settings UI in GeneralSettings "Other Agent Settings" section
- Remove redundant "Other Features" collapsible from AgentProfileSettings
Backend wiring:
- Update IPC handlers to read feature settings from settings.json
- Pass model/thinking-level args to ideation and roadmap Python runners
- Add RoadmapConfig type for passing config through agent manager
Python backend fixes:
- Fix hardcoded thinking levels in coder.py, planner.py, and qa/loop.py
to use phase-specific settings from task_metadata.json
- Add --thinking-level CLI arg to ideation_runner.py and roadmap_runner.py
- Update ideation and roadmap generators to use configured thinking budget
- Fix spec orchestrator to use user's configured thinking level
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Changed default phase models to use 'opus' for all phases, enhancing quality across spec creation, planning, coding, and QA.
- Updated thinking levels for each phase, introducing 'ultrathink' for spec creation and adjusting coding and QA levels to 'low' for faster iterations.
This refactor aims to optimize the overall performance and quality of the Auto profile.
- Remove unconditional auth logging in oauth-handlers.ts to prevent
sensitive device codes from appearing in production logs
- Add useEffect state sync in CustomModelModal to prevent stale values
when modal reopens with updated config
- Remove duplicate browser tool additions in client.py (already handled
by permissions._get_qa_mcp_tools)
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Run pre-commit checks: fixed unused import in cli/utils.py,
sorted imports in prompts_pkg/__init__.py, and applied ruff
formatting to 6 Python files. All tests pass (1140 passed).
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Write conversation history to temp file instead of command-line arg
- Add --history-file argument to insights_runner.py
- Cleanup temp file after process completes
Fixes#58🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Refine DEVICE_CODE_PATTERN to require a separator (hyphen or space) between code segments to prevent false matches.
- Update parseDeviceCode function to normalize space-separated codes to the expected hyphen format (XXXX-XXXX) for consistency.
This change enhances the reliability of device code parsing in the GitHub OAuth flow.
Implements context-aware MCP tool injection for QA agents to optimize
context window usage. Instead of including all browser automation tools
and documentation for every project, the system now detects project
capabilities and injects only relevant tools.
Key changes:
- Add project_context.py with capability detection (Electron, web
frontend, API, database) from project_index.json
- Create modular MCP tool docs (prompts/mcp_tools/) that are injected
dynamically based on detected capabilities
- Update permissions.py to filter MCP tools by project type
- Update client.py to pass capabilities through tool chain
- Add smart cache for project index refresh at spec creation
Context window savings:
- Electron apps: Only 4 Electron tools (not 12+ browser tools)
- Web frontends: Only 8 Puppeteer tools
- CLI projects: No browser tools at all
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
The CustomModelModal had a hardcoded `open={true}` prop on the Radix UI
Dialog, causing a rendering conflict when the parent unmounted it.
The overlay got stuck rendered, creating a black screen.
Fix: Use controlled `open` prop passed from parent instead of
conditional rendering with hardcoded dialog state.
Closes#79🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Remove ANTHROPIC_API_KEY from the authentication fallback chain.
Auto Claude is designed to use Claude Code OAuth tokens only.
Previously, if CLAUDE_CODE_OAUTH_TOKEN was empty or missing, the system
would silently fall back to ANTHROPIC_API_KEY from the environment,
causing unexpected API billing when users thought they were using OAuth.
Closes#76🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Add ExistingCompetitorAnalysisDialog component for projects with
existing competitor analysis, offering three options:
- Use existing analysis (recommended)
- Run new analysis (fresh web searches)
- Skip competitor analysis
- Fix "exit code null" error when stopping roadmap generation quickly
by tracking intentionally stopped processes in agent-queue.ts
- Add --refresh-competitor-analysis CLI flag to backend to allow
independent refresh of competitor data
- Update IPC handlers, preload API, and store to support the new
refreshCompetitorAnalysis parameter
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Add ExistingCompetitorAnalysisDialog component for projects with
existing competitor analysis, offering three options:
- Use existing analysis (recommended)
- Run new analysis (fresh web searches)
- Skip competitor analysis
- Fix "exit code null" error when stopping roadmap generation quickly
by tracking intentionally stopped processes in agent-queue.ts
- Add --refresh-competitor-analysis CLI flag to backend to allow
independent refresh of competitor data
- Update IPC handlers, preload API, and store to support the new
refreshCompetitorAnalysis parameter
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
The coroutine was being created on the main thread before being passed
to ThreadPoolExecutor. This is incorrect as coroutines should be created
and run in the same thread. Use a lambda to defer coroutine creation
until execution inside the worker thread.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Add visual affordances to make it clear that the Phase Configuration
section is clickable and editable:
- Add pencil icon and "Click to customize" text in collapsed state
- Improve hover state on the header
- Add labels for Model and Thinking columns in expanded state
- Better visual separation between collapsed and expanded states
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Security fixes:
- Fix Windows command injection vulnerability in terminal-handlers.ts
by adding escapeShellArgWindows() for proper cmd.exe escaping
- Fix OAuth race condition in device code extraction using mutex pattern
Bug fixes:
- Fix settings migration to preserve existing user profile selections
instead of unconditionally overwriting them
- Fix asyncio.run() to handle existing event loops by using ThreadPoolExecutor
- Add error logging for migration persistence failures
UX improvements:
- Add cleanup for copy feedback timeouts in GitHubOAuthFlow to prevent
setState on unmounted component warnings
- Add error handling for failed agent profile saves
Type safety:
- Add _migratedAgentProfileToAuto to AppSettings interface
- Fix GraphitiStep type to use Partial<Pick<AppSettings, ...>>
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Allow users to customize the model and thinking level for each phase
(Spec Creation, Planning, Coding, QA Review) when using the Auto profile.
These settings are persisted in app settings and used as defaults when
creating new tasks.
Changes:
- Add customPhaseModels and customPhaseThinking to AppSettings type
- Update AgentProfileSettings to show editable phase configuration
when Auto profile is selected
- Update TaskCreationWizard to initialize from custom settings
- Phase config can still be overridden per-task in task creation wizard
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Previously, clicking "Mark as Done" or "Delete Worktree & Mark Done"
would update the task status but leave the modal open, requiring an
extra click on "Close". Now the modal automatically closes after
successfully marking a task as done for better UX.
Add the ability to perform parallel merges using AI for conflict resolution. This includes the implementation of the `_run_parallel_merges` function, which processes multiple merge tasks concurrently, and the `_merge_file_with_ai_async` function for handling individual file merges.
Key changes:
- Introduced AI-based merging logic with a system prompt for 3-way merges.
- Added helper functions for inferring file types and building merge prompts.
- Updated tests to cover various scenarios for the new merging functionality.
This enhancement allows for more efficient handling of merge conflicts, leveraging AI to ensure accurate and context-aware resolutions.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Move the Agent Profiles configuration from a separate dashboard tab
to the Settings page under "Agent Settings". This provides a more
intuitive location for users to configure their default agent profile.
Changes:
- Create AgentProfileSettings component for settings page
- Add agent profiles to GeneralSettings 'agent' section
- Remove 'agent-profiles' from sidebar navigation
- Remove AgentProfiles view from App.tsx routing
- Update SidebarView type
The agent profiles are now accessible via Settings > Agent Settings,
alongside other agent-related configuration options.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Add explicit Write tool instructions to planner.md prompt
- Clarify that agent must use Write tool, not just describe file contents
- Fix PROMPTS_DIR path in prompts.py to correctly reference prompts/ directory
- Add checkpoint reminder in Phase 4 to verify Write tool was used
- Add critical instructions for all file creation phases (init.sh, build-progress.txt)
Fixes#38🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Add one-time migration to reset selectedAgentProfile to 'auto' for
existing users. This ensures the optimized per-phase model selection
is the default experience for everyone.
The migration:
- Runs once on settings load (tracked by _migratedAgentProfileToAuto flag)
- Sets selectedAgentProfile to 'auto'
- Persists the change to settings.json
- Users can still change their preference afterward
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Changed the default value for the selected agent profile from 'balanced' to 'auto' in the AgentProfiles component to improve user experience and align with expected behavior.
When the implementation_plan.json feature field contains the spec directory
name (e.g., "054-version-2-5-5-displays-version-2-5-0-in-updater") instead
of a human-readable title, the task card and modal showed the ugly spec ID.
Now detects when the feature field looks like a spec ID (starts with 3 digits
and a dash) and extracts the actual title from spec.md's first heading,
handling prefixes like "Quick Spec:" and "Specification:".
Example: "054-version..." → "Fix Version 2.5.5 Display in Updater"
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Tasks like spec 053 were missing descriptions in the kanban board and
task modal because the regex for extracting the overview from spec.md
required two newlines after "## Overview" (a blank line).
Specs generated with compact markdown (no blank line after headers)
were not matched, resulting in empty descriptions.
Changes:
- Fix regex to accept one or more newlines: /## Overview\s*\n+/
- Add fallback to read from requirements.json task_description field
- Extract meaningful content from GitHub issue descriptions
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Updated the styling of the "Stage only" option in the WorkspaceStatus component for improved user experience. Changes include a more visually appealing label with rounded corners and hover effects, as well as dynamic text color based on the checkbox state. This enhances the overall design consistency and interactivity of the UI.
The UI was showing "→ main" for all worktree merges because it checked
origin/HEAD (the remote's default branch) instead of the user's current
local branch.
This caused confusion since the actual merge logic in Python correctly
merges into the user's current branch (e.g., v2.6.0), but the UI
displayed "→ main".
Changed baseBranch detection from origin/HEAD to the current local
branch (git rev-parse --abbrev-ref HEAD) in three handlers:
- TASK_WORKTREE_STATUS
- TASK_WORKTREE_DIFF
- TASK_LIST_WORKTREES
Now the UI accurately reflects where changes will be merged.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Verify theme settings persist after app restart:
- Settings stored in settings.json via Electron IPC
- colorTheme included in DEFAULT_APP_SETTINGS
Add invalid colorTheme fallback to 'default':
- Added validation against COLOR_THEMES array
- Invalid stored values now fallback to 'default'
Verify system mode preference detection:
- Uses matchMedia API with event listener
- Correctly handles 'system' mode preference
Ensure no CSS flash on load:
- Default theme uses :root CSS (no data-theme attribute)
- Settings initialize with colorTheme: 'default'
- IPC loads fast (local process, not network)
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Removed theme toggle functionality from sidebar header:
- Removed Sun/Moon toggle button from header section
- Removed toggleTheme function and isDark calculation
- Removed unused Moon, Sun icons from lucide-react imports
- Removed unused saveSettings import
Theme selection is now exclusively in Settings > Appearance via
the ThemeSelector component which provides full 7-theme support
with light/dark/system mode toggle.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Updated the theme application useEffect to set/remove the data-theme
attribute on document.documentElement based on settings.colorTheme.
- Default theme removes the data-theme attribute
- Other themes set data-theme="themeName"
- Added settings.colorTheme to useEffect dependency array
- Falls back to 'default' if colorTheme is undefined
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Updated ThemeSettings.tsx to use the new ThemeSelector component
- Removed old 3-button mode toggle in favor of full theme selector grid
- ThemeSelector provides both color theme selection (7 themes) and mode toggle
- Simplified ThemeSettings to act as a wrapper with consistent section layout
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Create ThemeSelector.tsx component in settings folder
- Display a grid of theme cards showing name, description, and preview color swatches
- Preview swatches show bg/accent colors based on current light/dark mode
- Include a 3-option mode toggle (Light/Dark/System)
- Handle selection via props callbacks (onSettingsChange pattern)
- Export component from settings barrel file
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Add [data-theme="retro"] and [data-theme="retro"].dark CSS blocks with
warm amber/orange palette mapped to app variables:
Light mode:
- Background: #FEF3C7 (warm cream/amber)
- Primary accent: #D97706 (amber/orange)
- Text: #78350F (warm brown)
Dark mode:
- Background: #1C1917 (warm stone/charcoal)
- Primary accent: #FBBF24 (bright gold/amber)
- Text: #FEFCE8 (cream/off-white)
All color variables mapped to the app's variable naming convention,
following the same pattern as existing Dusk, Lime, and Ocean themes.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Added Ocean theme CSS variables for both light and dark modes:
- Light mode: sky blue background (#E0F2FE) with blue accent (#0284C7)
- Dark mode: deep ocean (#082F49) with bright sky blue (#38BDF8)
- All color variables mapped to app's variable naming convention
- Includes semantic colors, shadows, and focus states
Add lime theme CSS variables for both light and dark modes:
- Light: Fresh lime background (#E8F5A3) with purple accent (#7C3AED)
- Dark: Deep purple undertones (#0F0F1A) with bright purple (#8B5CF6)
- Maps design system color variables to app's variable naming convention
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Copy [data-theme="dusk"] and [data-theme="dusk"].dark CSS blocks from
.design-system/src/styles.css. Map design system variables to app's
existing variable structure (--background, --foreground, --primary, etc.).
Dusk Light: Warm, muted palette with olive/yellow accents (#B8B978)
Dusk Dark: Fey-inspired dark theme with pale yellow accents (#E6E7A3)
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Added colorTheme: 'default' as const to DEFAULT_APP_SETTINGS in config.ts
to ensure new users start with the default theme.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Add COLOR_THEMES constant array with all 7 theme definitions:
- Default: Oscura-inspired with pale yellow accent
- Dusk: Warmer variant with slightly lighter dark mode
- Lime: Fresh, energetic lime with purple accents
- Ocean: Calm, professional blue tones
- Retro: Warm, nostalgic amber vibes
- Neo: Modern cyberpunk pink/magenta
- Forest: Natural, earthy green tones
Each theme includes preview colors for light/dark mode variants.
Export added to constants/index.ts.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Added useEffect in FileTreeItem to clean up custom drag image on component unmount, preventing memory leaks.
- Enhanced drag image creation using safe DOM manipulation instead of innerHTML.
- Updated ClaudeOAuthFlow to manage auto-advance timeout with cleanup on unmount, ensuring onSuccess is not called after component unmount.
These changes enhance the reliability and performance of drag-and-drop functionality and OAuth flow handling.
Add multi-theme type definitions to settings.ts:
- ColorTheme union type with 7 theme options
- ThemePreviewColors interface for theme preview UI
- ColorThemeDefinition interface for theme metadata
- Optional colorTheme property in AppSettings interface
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Introduced shell escape utilities to prevent command injection in terminal commands.
- Updated terminal handlers to use safe command construction for profile switching and OAuth token initialization.
- Removed unnecessary console warnings, replacing them with debug logs for cleaner output.
- Implemented a wait mechanism to monitor terminal output for Claude exit, improving profile switching reliability.
This update improves the security and reliability of terminal command execution, ensuring user inputs are safely handled.
- Added useRef to manage custom drag image for better cleanup
- Updated drag image positioning to prevent display issues
- Enhanced cleanup process for drag image element on drag end
This update refines the drag-and-drop experience within the file tree, ensuring that custom drag images are handled more effectively.
- Implement default branch selection in GitHub integration settings
- Fetch and display available branches based on the project path
- Update TaskCreationWizard to support file reference drops in the description
- Improve drag-and-drop handling for file references and images
- Add console logging for agent process when DEBUG is enabled
- Refactor FileTreeItem to manage drag state and custom drag images
This update enhances user experience with Git operations and improves the task creation workflow by allowing users to easily reference files.
- Add collapsible Git Options section with base branch selector
- Allow per-task override of the worktree base branch
- Fetch and display available branches from the project repository
- Show project default branch in placeholder when available
- Use special placeholder value for Radix UI Select compatibility
- Move DndContext inside DialogContent for proper portal behavior
- Add drag-and-drop debugging logs
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
When switching Claude profiles via the UI, existing terminal sessions
now automatically restart with the new profile's OAuth token. This
fixes the issue where users had to manually restart Claude after
switching profiles.
Changes:
- Profile switch handler now iterates active terminals and restarts
Claude sessions that are in Claude mode
- Added clear terminal before profile switch to hide temp file command
- Fixed OAuth token regex to match 'default' profile ID (not just
profile-\d+)
- Hide "Authenticate" button when profile is already authenticated
- Add re-authenticate button (refresh icon) for authenticated profiles
- Added debug logging for profile switching (enabled with DEBUG=true)
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Fix HTTP 415 error when downloading updates from GitHub API
- Use 'application/vnd.github+json' Accept header for API URLs
- Use 'application/octet-stream' only for CDN/direct download URLs
- Add getEffectiveVersion() to track installed source version
- Reads from .update-metadata.json written during updates
- Works in both dev mode and packaged app
- Falls back to app.getVersion() if no metadata found
- Update version display to persist after app reload
- APP_VERSION IPC now returns effective version
- Update checker uses effective version for comparison
- UI updates displayVersion from check result
- Add comprehensive DEBUG logging for update process
- Logs update stages: download, extract, apply
- Logs version resolution and metadata paths
- Shows clear success/failure banners
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Added defensive null check when saving OAuth tokens to active profile during
non-profile terminal flows (e.g., GitHub setup). Previously, if no active
profile existed, the code would crash when trying to access activeProfile.id.
Changes:
- Added null check for activeProfile before attempting to save token
- Send failure event to UI when no active profile is found
- Include profileId in failure event for consistency
- Added docstrings to fall
When users authenticate with Claude during the GitHub setup modal, the
OAuth token is now automatically saved to the active Claude profile
instead of being ignored.
Changes:
- Modified handleOAuthToken() to save tokens to active profile when not
in a profile-specific terminal (e.g., during GitHub OAuth flow)
- Added Claude authentication step to GitHub setup modal flow
- Renamed setup steps for clarity: 'auth' → 'github-auth',
Critical bug fix: The Python detector was returning 'py' instead of 'py -3'
on Windows, which could cause Python 2 to be invoked instead of Python 3.
Changes:
- Removed special case in findPythonCommand() that stripped the '-3' flag
- Added parsePythonCommand() helper to split space-separated commands
- Updated all 9 spawn() call sites to properly handle command parsing:
* agent-process.ts
* agent-queue.ts (2 locations)
* title-generator.ts
* terminal-name-generator.ts
* changelog/generator.ts
* changelog/version-suggester.ts
* ipc-handlers/task/worktree-handlers.ts (2 locations)
This ensures Windows systems using 'py -3' launcher correctly invoke
Python 3 instead of potentially defaulting to Python 2.
Fixes issue identified in PR review comment.
## Problem
Users couldn't access hidden directories like `.claude`, `.auto-claude`,
`.github`, `.vscode`, etc. when creating tasks or adding file references.
## Root Cause
File explorer filtered out ALL files/directories starting with `.` except `.env`,
making important configuration directories invisible.
## Solution
### 1. Allow hidden directories to be visible
- Changed filter to only hide hidden FILES, not directories
- Hidden directories like `.claude`, `.github`, `.vscode`, `.idea` now visible
### 2. Keep useful hidden files visible
- `.env`, `.gitignore`, `.env.example`, `.env.local` still shown
- Other random hidden files (`.DS_Store`, etc.) still filtered
### 3. Updated IGNORED_DIRS
- Removed `.auto-claude` (contains user specs/data)
- Removed `.vscode` and `.idea` (users may need IDE config)
- Kept truly problematic dirs: `.git`, `node_modules`, `.cache`, `.worktrees`
## User Impact
Users can now drag and reference files from `.claude`, `.auto-claude`,
`.github`, and other configuration directories when creating tasks.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
The fixer client for human feedback was hardcoding "sonnet" as the
fallback model instead of using the model parameter passed to
run_qa_validation_loop. This now correctly passes the user's chosen
model to get_phase_model.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Add comprehensive unit tests for GitHub OAuth handlers:
- Device code parsing from gh CLI stdout/stderr output
- shell.openExternal success and failure handling
- Fallback URL provision when browser launch fails
- Error handling for gh CLI process errors and non-zero exit codes
- gh CLI check and auth status handlers
- Repository format validation for command injection prevention
21 new tests covering all critical OAuth flow paths.
Also updates vitest.config.ts to include *.spec.ts files.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Add 5-minute authentication timeout using useCallback and useRef for cleanup
- Implement clearAuthTimeout helper to manage timeout lifecycle
- Start timeout when auth begins, clear on success/failure/unmount
- Add isTimeout state to track timeout vs other errors
- Display timeout-specific UI with Clock icon and warning colors
- Show clear error message with retry option on timeout
- Timeout set to 5 minutes (GitHub device codes expire after 15 minutes)
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Added fallback URL card in error state when authUrl is available
- Shows "Complete Authentication Manually" instructions when browser fails to open
- Added copyable URL display with Copy button that tracks copy state separately
- Added "Open URL in Browser" button to attempt manual browser launch
- Shows device code reminder in fallback card if available
- Changed Retry button in error state to call handleStartAuth instead of
handleRetry for fresh auth attempt
- Added urlCopied state variable to track URL copy status independently
from device code copy status
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Add device code, auth URL, and browser opened state variables to GitHubOAuthFlow
- Display prominent device code card during authentication with copy button
- Show manual auth URL link when browser fails to open
- Update IPC types to include deviceCode, authUrl, browserOpened, and fallbackUrl
- Add visual feedback for code copy (checkmark icon when copied)
- Instructions adapt based on whether browser opened successfully
- Added fallbackUrl field to GitHubAuthStartResult interface
- Updated success case to include fallbackUrl when browser fails to open
- Updated failure case to always provide fallbackUrl for manual recovery
- Updated gh process error handler to include fallbackUrl
- Updated catch block to include fallbackUrl for exception cases
This ensures users always have a way to manually navigate to the auth URL
when automatic browser opening fails (e.g., due to macOS security restrictions).
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Format Python code in qa/loop.py per ruff standards
- Add missing success property to WorktreeMergeResult data object
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Modify registerStartGhAuth to:
- Extract device code from gh CLI stdout/stderr as data streams in
- Use parseDeviceFlowOutput to get device code and auth URL
- Open browser via shell.openExternal (bypasses macOS restrictions)
- Return device code, auth URL, and browserOpened status in response
- Handle browser open failures gracefully (allows manual fallback)
Added GitHubAuthStartResult interface with deviceCode, authUrl,
and browserOpened fields for rich response data.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Import `shell` from Electron for browser launching capability
- Add DEVICE_CODE_PATTERN regex to parse device code (format: XXXX-XXXX) from gh CLI output
- Add DEVICE_URL_PATTERN regex and GITHUB_DEVICE_URL constant for device flow URL
- Add parseDeviceCode() helper to extract device code from output
- Add parseDeviceUrl() helper to extract or default to GitHub device flow URL
- Add DeviceFlowInfo interface for structured device flow output
- Add parseDeviceFlowOutput() helper to parse both stdout and stderr for device flow info
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Bug: Clicking "Request Changes" in Human Review caused the task to
immediately return to human_review without applying any fixes.
Root causes:
- QA_FIX_REQUEST.md was written to main project instead of worktree
- QA process ran against main project path (missing implementation_plan.json)
- Early return in qa_commands.py and loop.py if QA already approved,
ignoring pending human feedback
Fixes:
- Write QA_FIX_REQUEST.md to worktree spec directory
- Run QA process with worktree path where build files exist
- Check for human feedback before "already approved" early return
- Process human feedback by running QA fixer first
- Reset staged changes in main when going back to QA
- Add check for already-staged changes to prevent duplicate work
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
**Issue:**
The initialization popup would not close automatically after successful
initialization due to a race condition in the Dialog's onOpenChange handler.
The handler couldn't distinguish between user-initiated close and
programmatic close after success.
**Root Cause:**
When we programmatically closed the dialog after successful init, React's
state batching meant the onOpenChange handler couldn't reliably check if
pendingProject was null yet, causing it to trigger the "skip" logic instead
of completing successfully.
**Fixes:**
1. Added initSuccess state flag to track successful initialization
2. Updated handleInitialize to set flag before closing dialog
3. Modified onOpenChange condition to check !initSuccess before calling skip
4. Added error state and UI display for failed initializations
5. Added comprehensive debug logging throughout initialization flow
**Files Modified:**
- auto-claude-ui/src/renderer/App.tsx
- auto-claude-ui/src/renderer/stores/project-store.ts
**Behavior:**
- On success: Closes automatically and opens GitHub setup modal
- On failure: Stays open with clear error message for user to retry
- On skip: Closes and remembers skip preference
- Debug logs show exactly what's happening at each step
Fixes initialization popup staying open after successful project setup.
This commit fixes Python-related issues on Windows and other platforms:
**Python Detection Issues:**
- Fixed "spawn python3 ENOENT" errors on Windows
- All services were hardcoded to use 'python3' which doesn't exist on Windows
- Created python-detector.ts utility with intelligent detection:
- Windows: tries 'py -3', 'python', 'python3', 'py' (in order)
- Unix/Mac: tries 'python3', 'python' (in order)
- Verifies each candidate is actually Python 3.x
- Falls back to platform-specific default if none found
**Dependency Installation Issues:**
- Fixed PythonEnvManager failing to install dependencies
- Newer Python versions (3.13+) create pip3.exe instead of pip.exe
- Changed to use 'python -m pip' for universal compatibility
- Added automatic pip bootstrapping using 'python -m ensurepip'
- Works across all Python versions and platforms
**Files Modified:**
- Created: auto-claude-ui/src/main/python-detector.ts
- Updated: agent-process.ts, title-generator.ts, terminal-name-generator.ts,
changelog-service.ts, insights/config.ts, worktree-handlers.ts,
python-env-manager.ts
Fixes issues where Windows users couldn't run tasks, generate titles,
or install Python dependencies.
- Fix FalkorDB default port from 6379 to 6380
- Update provider list comment to include Google AI
- Fix requirements.txt comment to mention both LLM and embeddings
- Add logging and warning for unimplemented tool calling in GoogleLLMClient
- Fix overly broad exception handling (catch only JSONDecodeError)
- Add Azure deployment name validation (LLM and embedding deployments)
- Apply ruff formatting to Python files
- Fix ENV_GET handler to populate graphitiProviderConfig from .env
- Add Google AI to get_available_providers() function
- Fix type assertions to include google/groq/huggingface providers
- Fix asyncio deprecation: use get_running_loop() instead of get_event_loop()
Fixes#27
## Problem
Version 2.5.5 was displaying as 2.5.0 in the updater because package.json
wasn't updated when the git tag was created.
## Solution
This PR implements a comprehensive automated version management system:
### 1. Version Bump Script (scripts/bump-version.js)
- Automates version updates in package.json
- Creates git commits and tags automatically
- Prevents human error in version management
- Supports semver bumps (major/minor/patch) or specific versions
### 2. Version Validation Workflow (.github/workflows/validate-version.yml)
- Runs automatically on every git tag push
- Validates package.json version matches the git tag
- Fails CI if versions mismatch with clear error messages
- Prevents releases with incorrect versions
### 3. Documentation (RELEASE.md)
- Complete release process guide
- Troubleshooting for version issues
- Release checklist
### 4. Updated package.json
- Fixed current version from 2.5.0 to 2.5.5
## Impact
- ✅ Prevents version mismatch issues from happening again
- ✅ Automates release process
- ✅ CI validation catches manual errors
- ✅ Clear documentation for maintainers
Add full Google AI (Gemini) support for Graphiti memory system:
Backend:
- Add google-generativeai dependency to requirements.txt
- Create GoogleEmbedder class with text-embedding-004 default model
- Create GoogleLLMClient class with gemini-2.0-flash default model
- Add GOOGLE to LLMProvider and EmbedderProvider enums
- Add google_api_key, google_llm_model, google_embedding_model config
- Update factory to create Google LLM client and embedder
- Add validation for Google provider configuration
Frontend:
- Add 'google' to GraphitiLLMProvider and GraphitiEmbeddingProvider types
- Add Google AI option to LLM provider dropdown in Setup Wizard
- Add Google AI option to embedding provider dropdown
- Add Google API key input field with link to Google AI Studio
- Update MemoryBackendSection and SecuritySettings components
- Update env-handlers to save GOOGLE_API_KEY, GOOGLE_LLM_MODEL,
and GOOGLE_EMBEDDING_MODEL to .env files
This allows users to use Google's Gemini models for both LLM operations
(graph extraction, search, reasoning) and embeddings in Graphiti memory.
- Add globalAnthropicApiKey, globalGoogleApiKey, globalGroqApiKey to AppSettings
- Add graphitiLlmProvider and ollamaBaseUrl to AppSettings
- Use proper typed access instead of Record<string, unknown> casts
- Import AppSettings type in GraphitiStep component
- Add 'ollama' to GraphitiProviderType and GraphitiEmbeddingProvider
- Add Ollama-specific config fields (baseUrl, llmModel, embeddingModel, embeddingDim)
- Update GraphitiStep UI to show Base URL field instead of API key for Ollama
- Handle Ollama differently in validation, save, and load logic
- Ollama runs locally and doesn't require an API key
- Fix initial API key loading to use saved provider preference
- Update local settings store for all providers (not just OpenAI)
- Load saved API keys when switching between providers
- Add note for non-OpenAI providers about validation limitations
The previous commit (e1aee6a) updated package.json to use @lydell/node-pty
but the source files still imported from 'node-pty'. This caused the app
to fail on startup with "Cannot find module 'node-pty'" error.
This commit updates all imports and the vite external config to reference
@lydell/node-pty directly, completing the migration.
Files changed:
- src/main/terminal/pty-manager.ts
- src/main/terminal/pty-daemon.ts
- src/main/terminal/types.ts
- electron.vite.config.ts
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Add provider dropdown to the Memory & Context onboarding step allowing
users to choose between OpenAI, Anthropic (Claude), Google (Gemini),
and Groq (Llama) for Graphiti memory operations.
Changes:
- Add provider selection dropdown with 4 LLM options
- Dynamic API key field that updates label, placeholder, and link
based on selected provider
- Update validation and save logic to handle multiple providers
- Fix node-pty imports to use @lydell/node-pty directly
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
## Summary
- Add visual indicator showing GitHub config is per-project, not global
- Users were confused thinking settings applied to all projects
## Changes Made
### 1. Added info box to GitHub Integration section
- Displays project name in configuration context
- Explains that each project can have its own repository
- Only shown when GitHub Integration is enabled
### 2. Component updates
- GitHubIntegrationSection: Added projectName prop and info box
- ProjectSettings: Pass project.name to GitHubIntegrationSection
## User Impact
Eliminates confusion about configuration scope - users now clearly understand
that GitHub repository settings are project-specific.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
Upgraded various dependencies including node-pty (now using @lydell/node-pty@^1.1.0), @types/node, @eslint/js, @standard-schema/spec, @typescript-eslint, and several others. Also updated esbuild and rollup platform-specific packages to newer versions.
node-pty@1.1.0-beta9 fails to compile on Windows with node-gyp due to
MSBuild errors during native module compilation. This blocks installation
for Windows users without full Visual Studio Build Tools configured.
Solution:
- Replace node-pty with @lydell/node-pty which provides prebuilt binaries
- Add pnpm override to alias 'node-pty' imports to the new package
- Update extraResources path for electron-builder
- Remove node-pty from onlyBuiltDependencies (no compilation needed)
@lydell/node-pty@1.1.0 provides prebuilt binaries for:
- Windows x64 and ARM64
- macOS x64 (Intel) and ARM64 (Apple Silicon)
- Linux x64 and ARM64
This eliminates the need for node-gyp compilation and ensures
cross-platform compatibility without build tool dependencies.
- Added new features including GitHub setup flow, atomic log saving, and multi-auth token support.
- Improved agent behavior with a new default profile and enhanced issue tracking.
- Fixed multiple CI test failures and improved merge preview reliability.
- Implemented security measures to prevent command injection and enforced Python version requirements.
- Conducted code cleanup and removed redundant directory structures.
This release focuses on enhancing agent reliability and streamlining the build workflow.
Test fix:
- Mock getClaudeProfileManager in subprocess spawn tests to bypass
authentication checks that fail in CI (no auth token configured)
Merge preview improvements:
- Add _detect_default_branch() to properly detect main/master branch
- Add debug logging for git diff failures to aid troubleshooting
- Use detected default branch instead of hardcoded 'main'
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
## Summary
- Add support for organization repositories by including org members in repo list API
- Add repository reference normalization to handle full GitHub URLs, SSH URLs, and owner/repo format
- Apply normalization to all GitHub API calls to ensure consistent behavior
## Changes Made
### 1. Enhanced repo listing (repository-handlers.ts)
- Updated `/user/repos` endpoint to include affiliation parameter
- Now fetches: owner, collaborator, and organization_member repos
- Fixes#20: Organization repos now appear in repository list
### 2. Added URL normalization utility (utils.ts)
- New `normalizeRepoReference()` function handles:
- owner/repo format (already normalized)
- https://github.com/owner/repo URLs
- https://github.com/owner/repo.git URLs
- git@github.com:owner/repo.git SSH URLs
- Prevents 404 errors from malformed repository references
### 3. Applied normalization consistently
- Updated repository-handlers.ts to normalize repo refs before API calls
- Updated issue-handlers.ts to normalize repo refs before API calls
- All GitHub API calls now use normalized repository format
## Testing
- Verified with organization repository: imaginationeverywhere/ppsv-charities
- Tested with various URL formats
- GitHub CLI authentication continues to work seamlessly
## Related Issues
Fixes#20: Auto Claude doesn't work with GitHub Organization repositories
Update TaskCreationWizard to use 'auto' as the default agent profile
when no profile is explicitly selected.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Use execFileSync instead of execSync to avoid shell interpretation
- Add regex validation for repo format (owner/repo pattern)
- Reject requests with invalid characters that could enable injection
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Fix import sorting issues caught by ruff (I001)
- Apply ruff formatting to auto-claude modules
- Update test to match default model (sonnet-4-5 not opus-4-5)
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
The merge preview was showing incorrect file counts because it only
counted files tracked by the semantic evolution tracker. Many files
(test files, config files, etc.) weren't being tracked, leading to
misleading "Files to merge: 0" displays when there were actually
multiple files changed.
Changes:
- Add _get_changed_files_from_git() helper to get actual changed files
- Use git diff count as authoritative totalFiles instead of tracker count
- Use git diff file list for the files array in preview response
- Always compare against 'main' branch (worktrees are created from main)
This ensures the UI shows the correct number of files that will be
merged, matching the git diff stats shown elsewhere in the UI.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
This commit improves the handling of stage-only merges by adding verification to ensure that actual changes are staged before proceeding. Key changes include:
- Implementation of checks to determine if there are staged changes or if the merge has already been committed.
- Updated status handling based on the verification results, allowing for more accurate task status updates.
- Enhanced debug logging for better traceability of merge outcomes.
These enhancements provide a more robust user experience by preventing false positives in stage-only scenarios and ensuring accurate task management.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
This commit adds a new phase configuration module that manages model and thinking level settings for different execution phases. It reads configurations from `task_metadata.json` and provides resolved model IDs for various phases, including spec creation, planning, coding, and QA.
Key changes include:
- New `phase_config.py` file to handle model ID mappings and thinking budgets.
- Updates to agent files (`coder.py`, `planner.py`, `loop.py`) to utilize phase-specific models and thinking levels.
- Modifications to the CLI and UI components to support per-phase configuration, enhancing the user experience for task creation and editing.
The new structure allows for optimized model selection and thinking depth based on the phase, improving overall task execution efficiency.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Previously, roadmap generation would stop or appear stopped when users
navigated between projects. This fix ensures generation continues in
the background and the UI properly reflects the generation state.
Changes:
- Add ROADMAP_GET_STATUS IPC endpoint to query if generation is running
- Update loadRoadmap() to query backend status when switching projects
- Restore generation UI state when returning to a project with active gen
- Remove aggressive stopRoadmap() call that killed generation on switch
The fix allows users to start roadmap generation, navigate to other
projects, and return to see the correct progress/completion state.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
This ensures users properly configure GitHub before using Auto Claude,
which is necessary for the branch-based workflow to function correctly.
Changes:
- Add GitHubSetupModal component with 3-step flow:
1. GitHub OAuth authentication (via gh CLI)
2. Auto-detect repository from git remote
3. Select base branch for task worktrees (with recommended default)
- Add IPC handlers for detectGitHubRepo and getGitHubBranches
- Integrate modal into App.tsx to show after Auto Claude init
- Update ElectronAPI types and browser mocks
The flow now is:
1. User adds project
2. Git must be initialized (GitSetupModal if not)
3. Auto Claude initialized (creates .auto-claude folder)
4. GitHub setup required (new GitHubSetupModal)
5. Project ready for task creation
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Specs are stored in .auto-claude/specs/ (per-project, gitignored).
The auto-claude/specs/ folder was legacy and no longer used.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Added checks to ensure the initialization dialog does not trigger skip logic while a project is being initialized.
- Refactored project ID handling in the initialization process for consistency across components.
- Improved user experience by preventing unintended dialog closures during initialization.
This change enhances the reliability of the project initialization workflow in the application.
- Added functionality to detect the current Git branch before merging spec changes.
- Prevent merging into the same branch by providing user guidance to switch branches.
- Updated WorktreeManager initialization to use the detected branch as the merge target.
This improves the user experience by ensuring that merges are performed correctly and reduces the risk of accidental merges into the spec branch.
Updated the model IDs in the MODEL_ID_MAP to reflect the latest versions for Sonnet and Haiku. This change ensures that the application uses the correct identifiers for these models moving forward.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Enhance log storage functionality by saving logs to a temporary file first, followed by an atomic rename to the final log file. This change mitigates the risk of log corruption during concurrent reads, particularly when the UI accesses the log file mid-write. Additionally, update the log loading mechanism to return cached logs if the file is detected as corrupted.
Files updated:
- auto-claude/task_logger/storage.py: Implement atomic log saving
- auto-claude-ui/src/main/task-log-service.ts: Handle potential log file corruption by returning cached logs
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Eliminates the need for Visual Studio Build Tools on Windows by:
1. GitHub Actions workflow (.github/workflows/build-prebuilds.yml)
- Builds node-pty for Windows x64 with correct Electron ABI
- Uploads prebuilt binaries as release assets
- Triggered on releases and manual dispatch
2. Smart postinstall script (auto-claude-ui/scripts/postinstall.js)
- On Windows: tries to download prebuilts first
- Falls back to electron-rebuild if prebuilts unavailable
- Shows clear instructions if compilation fails
3. Download helper (auto-claude-ui/scripts/download-prebuilds.js)
- Fetches prebuilt binaries from GitHub releases
- Extracts and installs to node_modules/node-pty
Windows users can now run `npm install` without installing Visual Studio
Build Tools, as long as prebuilt binaries exist for their Electron version.
Fixes#8🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Add model selector dropdown in Insights chat header with agent profiles:
- Complex (Opus + ultrathink)
- Balanced (Sonnet + medium) - new default
- Quick (Haiku + low)
- Custom option for direct model + thinking level selection
- Change default from slow Opus to Sonnet for faster responses
- Persist model configuration per-session
- Fix missing event forwarding from insightsService to renderer
(was causing responses to not appear without hard refresh)
- Fix insights_runner.py path (was looking in auto-claude/ instead of
auto-claude/runners/)
- Add --model and --thinking-level CLI args to insights_runner.py
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Adds validation in TASK_UPDATE_STATUS handler to prevent tasks from being
moved to human_review status prematurely when execution fails.
Changes:
- Check if spec.md exists and has meaningful content (at least 100 chars)
before allowing transition to human_review status
- Return error with actionable message if spec is missing or empty
- Log warning for debugging when blocked
This prevents the issue where tasks incorrectly appear in human_review
when spec creation fails silently (e.g., due to auth issues).
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Added authentication failure detection to the process exit handler in agent-process.ts:
- Import detectAuthFailure from rate-limit-detector
- In exit handler, when process fails (code !== 0) and is not rate limited,
check for authentication failures using detectAuthFailure(allOutput)
- If auth failure detected, emit 'auth-failure' event with taskId and
detection details (profileId, failureType, message, originalError)
This enables proper detection and reporting of authentication issues that
occur during spec creation or task execution.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Added pre-flight authentication checks before task execution:
- Import getClaudeProfileManager for auth validation
- Check hasValidAuth() in TASK_START handler before calling agentManager
- Check hasValidAuth() in TASK_UPDATE_STATUS handler before auto-starting tasks
- Check hasValidAuth() in TASK_RECOVER_STUCK handler before auto-restarting tasks
- Emit TASK_ERROR with actionable message when auth is missing
- Return early without changing task status when auth fails
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Added pre-flight authentication validation before spawning processes:
- Import getClaudeProfileManager from claude-profile-manager
- In startSpecCreation(): Check hasValidAuth() before spawning spec_runner.py
- In startTaskExecution(): Check hasValidAuth() before spawning run.py
- Emit clear error message if auth is missing, preventing task from starting
This ensures tasks cannot start without valid Claude authentication,
addressing GitHub Issue #11 where tasks would skip to human_review
when spec creation fails silently due to missing authentication.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Add hasValidAuth(profileId?: string): boolean method to check if a profile
has valid authentication for starting tasks. A profile is considered
authenticated if it has a valid OAuth token (not expired) OR has an
authenticated configDir with credential files.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Add AUTH_FAILURE_PATTERNS array with regex patterns to detect various
authentication error messages from Claude CLI/SDK output, including:
- Authentication required messages
- Invalid/expired token errors
- Unauthorized/access denied errors
- Login required messages
Also add:
- AuthFailureDetectionResult interface for structured detection results
- detectAuthFailure() function to detect auth failures in process output
- isAuthFailureError() helper for simple boolean checks
- classifyAuthFailureType() to categorize failures (missing/invalid/expired)
- getAuthFailureMessage() for user-friendly error messages
This enables detecting when tasks fail silently due to authentication
issues, allowing proper error feedback to users instead of incorrectly
skipping to human review status.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
The codebase uses Python 3.10+ type hint syntax (e.g., `str | list[str]`)
which causes TypeError on Python 3.9 and earlier.
Changes:
- Update README.md to document Python 3.10+ requirement
- Add runtime version check in run.py and spec_runner.py
- Provides clear error message with upgrade instructions
Fixes#5🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Add detection for when a branch named 'auto-claude' exists, which blocks
creating branches in the 'auto-claude/*' namespace due to Git's file-based
ref storage system.
Now provides a clear error message explaining the issue and how to fix it
by renaming the conflicting branch.
Fixes#3🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Implements support for multiple authentication environment variables:
- CLAUDE_CODE_OAUTH_TOKEN (original, highest priority)
- ANTHROPIC_AUTH_TOKEN (for proxies like CCR)
- ANTHROPIC_API_KEY (direct Anthropic API)
Also adds ANTHROPIC_BASE_URL and related env vars passthrough to SDK.
Changes:
- New core/auth.py with centralized auth logic
- Updated core/client.py to use auth helpers
- Updated cli/utils.py to show auth source and base URL
- Updated all modules using auth tokens
- Updated .env.example with documentation
Fix TypeScript errors by using correct property names from types:
- Replace userQuotes with source and frequency fields
- Change opportunityScore to opportunity
- Replace summary with insightsSummary structure
- Display top pain points, differentiator opportunities, and market trends
All properties now match the CompetitorPainPoint and CompetitorAnalysis
type definitions in roadmap.ts.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Add comprehensive competitor analysis viewing capabilities:
- Create CompetitorAnalysisViewer component with detailed insights display
* Shows competitor names, descriptions, and market positions
* Displays pain points with severity badges (high/medium/low)
* Includes user quotes from reviews/forums
* Shows opportunity scores for prioritization
* Provides visit links to competitor products
- Make Competitor Analysis badge interactive
* Click to open detailed viewer modal
* Tooltip shows summary (competitor count, pain points)
* Visual feedback with hover state
- Enhance persona visibility in roadmap header
* Make "+N more personas" clickable with dotted underline
* Show all secondary personas in tooltip on hover
- Fix modal scrolling in CompetitorAnalysisViewer
* Add flex layout constraints for proper scrolling
* Set max-height with calculation for header space
* Add bottom padding to prevent content cutoff
This enables users to view detailed competitive insights generated
during roadmap creation, including specific pain points identified
in competitor products and opportunities to address market gaps.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Changes included:
1. **InvestigationDialog.tsx** - Prevent state updates after unmount:
- Add isMounted flag to prevent state updates after component unmounts
- Add fetchCommentsError state to surface API errors to the user
- Display error state in UI with styled error message
- Ensure cleanup function properly sets isMounted = false
2. **EnvConfigModal.tsx** - Improve type safety:
- Replace `any` type with proper `ClaudeProfile` type in filter callback
3. **GenerationProgressScreen.tsx** & **RoadmapGenerationProgress.tsx**:
- Add double-click prevention for stop button
- Add isStopping state with proper error handling
Replace array index keys with content-based stable keys in two mapped lists:
- Competitor analysis: use `comp.id` instead of index, and simplify
type annotation by relying on TypeScript inference
- Secondary personas: use `persona` string value instead of index
Using stable keys improves React's reconciliation efficiency and prevents
potential rendering issues when list items are reordered or modified.
Addresses CodeRabbit review feedback.
- http-client.ts: Limit error response data collection to 10KB and add error handlers
- RoadmapGenerationProgress.tsx, GenerationProgressScreen.tsx: Allow onStop to return Promise<void>
- insights_runner.py: Fix path resolution and load .env from auto-claude directory
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
The WorktreeManager is designed to prefer main/master branches over the
current branch when detecting the base branch. Updated the test to
reflect this intended behavior:
- Renamed test_init_detects_current_branch to test_init_prefers_main_over_current_branch
- Added new test_init_falls_back_to_current_branch to verify fallback when main/master don't exist
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Fix Python formatting (ruff) in workspace.py, display.py, menu.py
- Fix TypeScript errors:
- Add missing CompetitorAnalysis import in types.ts
- Add type annotations to RoadmapHeader.tsx map callback
- Add cn import and fix EnvConfigModal OAuth token handling
- Add type annotations to InvestigationDialog.tsx
- Add missing stopRoadmap and onRoadmapStopped to browser-mock
- Add getIssueComments to ElectronAPI type and mocks
- Update investigateGitHubIssue to accept optional selectedCommentIds
- Fix CLAUDE_CODE_OAUTH_TOKEN access in agent-queue.ts
- Include pending bug fixes:
- Add .trim() to git status parsing in worktree-handlers.ts
- Change Accept header to application/octet-stream in http-client.ts
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Added stop functionality for roadmap generation, allowing users to halt the process.
- Implemented debug logging throughout the roadmap generation process for better traceability.
- Updated IPC channels to support stopping roadmap generation and added corresponding handlers.
- Enhanced UI components to include stop buttons and feedback for the stop action.
This update improves user control over the roadmap generation process and aids in debugging.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
The runners in auto-claude/runners/ were using incorrect relative paths
that only went up one directory level instead of two, causing:
- ModuleNotFoundError for 'debug' module
- Missing .env file (CLAUDE_CODE_OAUTH_TOKEN not found)
- Script not found errors for analyzer.py
- Prompt files not found for agent execution
Fixed paths in:
- roadmap_runner.py: sys.path and .env now resolve to auto-claude/
- ideation_runner.py: sys.path and .env now resolve to auto-claude/
- roadmap/executor.py: scripts_base_dir and prompts_dir now resolve
correctly from the nested roadmap/ subdirectory
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Add explicit key to overflow count span that shows "+N" when more
than 10 subtasks exist (sibling to mapped elements needed a key)
- Add fallback key using index for subtask indicators in case
subtask.id is undefined
Fixes console warning: "Each child in a list should have a unique
'key' prop"
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Previously, stuck detection only checked tasks with status='in_progress',
causing tasks stuck in 'ai_review' status to never show the recovery option.
When a task enters QA review phase, its status changes to 'ai_review'. If
the process crashes during this phase, the status remains 'ai_review' with
no active process, but the stuck detection was skipped because isRunning
only checked for 'in_progress' status.
This fix extends the isRunning check to include both 'in_progress' and
'ai_review' statuses, ensuring stuck tasks in AI Review can be detected
and recovered.
Fixes: Task #838 stuck in AI Review with no recovery option
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
## Features
- Add comment selection UI when creating tasks from GitHub issues
- Fetch and display all comments with author, timestamp, and preview
- Allow users to select/deselect individual comments via checkboxes
- Include "Select All" / "Deselect All" toggle functionality
- Show selected comment count (e.g., "3/5 comments selected")
- Only selected comments are included in the task description
- Fix auto-start bug where GitHub issues were immediately executed
- Tasks now stay in "backlog" status after creation
- Users must manually start tasks from the Kanban board
## Implementation Details
### Backend
- Added `getIssueComments` IPC handler to fetch comments separately
- Modified `investigateGitHubIssue` to accept selectedCommentIds parameter
- Updated comment filtering logic in buildIssueContext
- Removed automatic startSpecCreation call to prevent auto-execution
### Frontend
- Enhanced InvestigationDialog with scrollable comment list UI
- Updated GitHubAPI interface with getIssueComments method
- Modified hooks and stores to pass selected comment IDs through the chain
- Added projectId prop to InvestigationDialog for comment fetching
### Files Changed
- Backend handlers: investigation-handlers.ts, issue-handlers.ts, types.ts
- API layer: github-api.ts
- UI components: InvestigationDialog.tsx, GitHubIssues.tsx
- State management: github-store.ts, useGitHubInvestigation.ts
- Type definitions: types/index.ts, ipc.ts
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Added a drop zone for file references and a separate drop zone for inline @mentions in the description textarea.
- Updated drag-and-drop handling to allow inserting @mentions directly into the description or adding files to the referenced files list.
- Implemented parsing of @mentions from the description to create ReferencedFile entries, avoiding duplicates.
- Improved visual feedback for drag-and-drop interactions, including indicators for maximum file capacity and drop zones.
Fixed parsing bug where .trim() on entire output removed leading space
from git status --porcelain format, causing filenames to be truncated.
- Removed .trim() from git status output (line 536)
- Check for empty status using gitStatus.trim() in condition
- Correctly parse XY<space>filename format without truncation
- Removed diagnostic logging
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
Improved logging for app updates to help diagnose update issues:
- Added DEBUG_UPDATER env var for verbose electron-updater logging
- Better console output showing update check status
- Clear message when running in dev mode (updates disabled)
- Option to force updater init in dev mode for testing logs
When an app update is downloaded and ready to install, automatically opens the Settings dialog to the Updates section so users can easily install the update.
Changes:
- App.tsx: Listen for onAppUpdateDownloaded event and open settings
- AdvancedSettings.tsx: Add Electron app update UI with download/install buttons
- ipc.ts: Add app update methods to ElectronAPI interface
- settings-mock.ts: Add browser mocks for app update methods
Adds a streamlined release workflow that uses AI (Claude Haiku) to analyze git commits and suggest semantic version bumps (major/minor/patch). Automatically updates package.json, commits, and pushes using a safe git workflow that preserves user's current work.
New features:
- RELEASE_SUGGEST_VERSION IPC for AI-powered version suggestions
- bumpVersion() with safe git workflow (stash/checkout/commit/restore)
- VersionSuggestion type with bumpType and reasoning
- Updated ReleaseProgress to include bumping_version stage
Also replaces VERSION file detection with requirements.txt across the codebase.
- Enhanced detectAutoBuildSourcePath() to work across all platforms
- Separated dev vs production mode path resolution
- Added comprehensive path checking for Windows/Linux packaged apps
- Added debug logging (enable with AUTO_CLAUDE_DEBUG=1)
- Updated both settings-handlers.ts and project-handlers.ts
- Fixes 'Source path not configured' error on Windows/Linux
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
- Simplified main content area feedback to subtle background tint only
- Added dashed border hint when dragging but not over drop zone
- Made drop zone indicator more compact with smaller text/icons
- Added smooth transitions (150ms ease-out) for polish
- Reduced overlay opacity for less intrusive visual feedback
- Removed heavy ring effects that interfered with modal interactions
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Since the Referenced Files section is now always visible, remove the
conditional setShowFiles(true) in the useEffect that loads drafts.
Changes:
- Remove unused showFiles state variable
- Remove conditional that auto-expanded files section when restoring drafts
- Remove auto-expand call in handleDragEnd (section is always visible)
- Remove showFiles reset in resetForm
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Made referenced files section always visible in Create Task modal
- Added header with FolderTree icon and "Referenced Files" label
- Added count badge showing current/max files when files are present
- Added empty state hint: "Drag files from the file explorer to add references"
- Removed conditional showFiles rendering wrapper
- Section now shows before the Review Requirement Toggle
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Applied useDroppable ref to main form content div for drag-and-drop
- Added visual feedback (ring highlight, background change) when dragging files over the modal
- Visual states: blue ring when dragging over (can add), yellow ring when at max capacity
- Subtle ring indication when dragging but not over the drop zone
- Updated Referenced Files section to show visual feedback only during active drag
- Removed the compact collapsed drop zone (now redundant with main wrapper drop zone)
Remove the 'Reference Files (optional)' toggle button that controlled
the showFiles state for the collapsible section. The FolderTree icon
toggle with chevron is now removed from TaskCreationWizard.tsx.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Added instructions for initializing a git repository as a prerequisite for using Auto Claude.
- Included a section detailing the purpose of various folders created during the Auto Claude process, enhancing user understanding of the framework's structure.
This project requires all commits to be signed off with the Developer Certificate of Origin (DCO).
### How to Fix
**Option1:Sign off your last commit**
\`\`\`bash
git commit --amend --signoff
git push --force-with-lease
\`\`\`
**Option2:Sign off all commits in this PR**
\`\`\`bash
git rebase HEAD~N --signoff # Replace N with number of commits
git push --force-with-lease
\`\`\`
**Option3:Configure git to always sign off**
\`\`\`bash
git config --global format.signoff true
\`\`\`
### What is DCO?
The [Developer Certificate of Origin](https://developercertificate.org/) is a lightweight way for contributors to certify that they wrote or have the right to submit the code they are contributing.
By signing off, you agree to the DCO terms:
- The contribution was created by you
- You have the right to submit it under the project's license
- You understand the contribution is public and recorded
### Sign-off Format
Your commit message should end with:
\`\`\`
Signed-off-by:Your Name <your.email@example.com>
\`\`\`
This line is automatically added when you use \`git commit -s\` or \`git commit --signoff\`.
- Add platform detection for terminal profile commands on Windows
- Set default selected agent profile to 'auto' across all users
- Fix display of correct merge target branch in worktree UI
- Add validation for invalid colorTheme fallback to prevent UI errors
- Remove outdated Sun/Moon toggle button from sidebar
---
## What's Changed
- feat: add customizable phase configuration in app settings by @AndyMik90 in aee0ba4
- feat: implement parallel AI merge functionality by @AndyMik90 in 458d4bb
- feat(graphiti): add Google AI as LLM and embedding provider by @adryserage in fe69106
- fix: create coroutine inside worker thread for asyncio.run by @AndyMik90 in f89e4e6
- fix: improve UX for phase configuration in task creation by @AndyMik90 in b9797cb
- fix: address CodeRabbit PR #69 feedback by @AndyMik90 in cc38a06
- fix: sort imports in workspace.py to pass ruff I001 check by @AndyMik90 in 9981ee4
- fix(ui): auto-close task modal when marking task as done by @AndyMik90 in 297d380
- fix: resolve Python lint errors in workspace.py by @AndyMik90 in 0506256
- refactor: move Agent Profiles from dashboard to Settings by @AndyMik90 in 1094990
- fix(planning): ensure planner agent writes implementation_plan.json by @AndyMik90 in 9ab5a4f
- fix(windows): add platform detection for terminal profile commands by @AndyMik90 in f0a6a0a
- fix: default agent profile to 'Auto (Optimized)' for all users by @AndyMik90 in 08aa2ff
- fix: update default selected agent profile to 'auto' by @AndyMik90 in 37ace0a
- style: enhance WorkspaceStatus component UI by @AndyMik90 in 3092155
- fix: display correct merge target branch in worktree UI by @AndyMik90 in 2b96160
- Improvement/refactor task sidebar to task modal by @AndyMik90 in 2a96f85
- fix: extract human-readable title from spec.md when feature field is spec ID by @AndyMik90 in 8b59375
- fix: task descriptions not showing for specs with compact markdown by @AndyMik90 in 7f12ef0
- Add comprehensive theme system with Forest, Neo, Retro, Dusk, Ocean, and Lime color schemes by @AndyMik90 in ba776a3, e2b24e2, 7589046, e248256, 76c1bd7, bcbced2
- Add ColorTheme type and configuration to app settings by @AndyMik90 in 2ca89ce, c505d6e, a75c0a9
- Implement device code authentication flow with timeout handling and fallback URL display by @AndyMik90 in 5f26d39, 81e1536, 1a7cf40, 4a4ad6b, 6a4c1b4, b75a09c, e134c4c
- fix(graphiti): address CodeRabbit review comments by @adryserage in 679b8cd
- fix(lint): sort imports in Google provider files by @adryserage in 1a38a06
## 2.6.0 - Multi-Provider Graphiti Support & Platform Fixes
### ✨ New Features
- **Google AI Provider for Graphiti**: Full Google AI (Gemini) support for both LLM and embeddings in the Memory Layer
- Add GoogleLLMClient with gemini-2.0-flash default model
- Add GoogleEmbedder with text-embedding-004 default model
- UI integration for Google API key configuration with link to Google AI Studio
- **Ollama LLM Provider in UI**: Add Ollama as an LLM provider option in Graphiti onboarding wizard
- Ollama runs locally and doesn't require an API key
- Configure Base URL instead of API key for local inference
- **LLM Provider Selection UI**: Add provider selection dropdown to Graphiti setup wizard for flexible backend configuration
- feat: add interactive competitor analysis viewer for roadmap by @AndyMik90 in 7ff326d
- fix: correct CompetitorAnalysisViewer to match type definitions by @AndyMik90 in 4f1766b
- fix: address multiple CodeRabbit review feedback items by @AndyMik90 in 48f7c3c
- fix: use stable React keys instead of array indices in RoadmapHeader by @AndyMik90 in 892e01d
- fix: additional fixes for http error handling and path resolution by @AndyMik90 in 54501cb
- fix: update worktree test to match intended branch detection behavior by @AndyMik90 in f1d578f
- fix: resolve CI lint and TypeScript errors by @AndyMik90 in 2e3a5d9
- feat: enhance roadmap generation with stop functionality and debug logging by @AndyMik90 in a6dad42
- fix: correct path resolution in runners for module imports and .env loading by @AndyMik90 in 3d24f8f
- fix: resolve React key warning in PhaseProgressIndicator by @AndyMik90 in 9106038
- fix: enable stuck task detection for ai_review status by @AndyMik90 in 895ed9f
- feat: map GitHub issue labels to task categories by @AndyMik90 in cbe14fd
- feat: add GitHub issue comment selection and fix auto-start bug by @AndyMik90 in 4c1dd89
- feat: enhance TaskCreationWizard with drag-and-drop support for file references and inline @mentions by @AndyMik90 in d93eefe
- cleanup docs by @AndyMik90 in 8e891df
- fix: correct git status parsing in merge preview by @AndyMik90 in c721dc2
- Update TaskReview component to refine conditional rendering for staged tasks, ensuring proper display when staging is unsuccessful by @AndyMik90 in 1a2b7a1
- auto-claude: subtask-2-3 - Refine visual drop zone feedback to be more subtle by @AndyMik90 in 6cff442
- auto-claude: subtask-2-1 - Remove showFiles auto-expand on draft restore by @AndyMik90 in 12bf69d
- auto-claude: subtask-1-3 - Create an always-visible referenced files section by @AndyMik90 in 3818b46
- auto-claude: subtask-1-2 - Add drop zone wrapper around main modal content area by @AndyMik90 in 219b66d
- auto-claude: subtask-1-1 - Remove Reference Files toggle button by @AndyMik90 in 4e63e85
## 2.4.0 - Enhanced Cross-Platform Experience with OAuth & Auto-Updates
### ✨ New Features
- Claude account OAuth implementation on onboarding for seamless token setup
- Integrated release workflow with AI-powered version suggestion capabilities
- Auto-upgrading functionality supporting Windows, Linux, and macOS with automatic app updates
- Git repository initialization on app startup with project addition checks
- Debug logging for app updater to track update processes
- Auto-open settings to updates section when app update is ready
### 🛠️ Improvements
- Major Windows and Linux compatibility enhancements for cross-platform reliability
- Enhanced task status handling to support 'done' status in limbo state with worktree existence checks
- Better handling of lock files from worktrees upon merging
- Improved README documentation and build process
- Refined visual drop zone feedback for more subtle user experience
- Removed showFiles auto-expand on draft restore for better UX consistency
- Created always-visible referenced files section in task creation wizard
- Removed Reference Files toggle button for streamlined interface
- Worktree manual deletion enforcement for early access safety (prevents accidental work loss)
### 🐛 Bug Fixes
- Corrected git status parsing in merge preview functionality
- Fixed ESLint warnings and failing tests
- Fixed Windows/Linux Python handling for cross-platform compatibility
@@ -4,83 +4,154 @@ This file provides guidance to Claude Code (claude.ai/code) when working with co
## Project Overview
Auto Claude is a multi-agent autonomous coding framework that builds software through coordinated AI agent sessions. It uses the Claude Code SDK to run agents in isolated workspaces with security controls.
Auto Claude is a multi-agent autonomous coding framework that builds software through coordinated AI agent sessions. It uses the Claude Agent SDK to run agents in isolated workspaces with security controls.
**CRITICAL: All AI interactions use the Claude Agent SDK (`claude-agent-sdk` package), NOT the Anthropic API directly.**
## Project Structure
```
autonomous-coding/
├── apps/
│ ├── backend/ # Python backend/CLI - ALL agent logic lives here
│ │ ├── core/ # Client, auth, security
│ │ ├── agents/ # Agent implementations
│ │ ├── spec_agents/ # Spec creation agents
│ │ ├── integrations/ # Graphiti, Linear, GitHub
│ │ └── prompts/ # Agent system prompts
│ └── frontend/ # Electron desktop UI
├── guides/ # Documentation
├── tests/ # Test suite
└── scripts/ # Build and utility scripts
```
**When working with AI/LLM code:**
- Look in `apps/backend/core/client.py` for the Claude SDK client setup
- Reference `apps/backend/agents/` for working agent implementations
- Check `apps/backend/spec_agents/` for spec creation agent examples
- NEVER use `anthropic.Anthropic()` directly - always use `create_client()` from `core.client`
**Frontend (Electron Desktop App):**
- Built with Electron, React, TypeScript
- AI agents can perform E2E testing using the Electron MCP server
- When bug fixing or implementing features, use the Electron MCP server for automated testing
- See "End-to-End Testing" section below for details
1. Add the translation key to ALL language files (at minimum: `en/*.json` and `fr/*.json`)
2. Use `namespace:section.key` format (e.g., `navigation:items.githubPRs`)
3. Never use hardcoded strings in JSX/TSX files
### End-to-End Testing (Electron App)
**IMPORTANT: When bug fixing or implementing new features in the frontend, AI agents can perform automated E2E testing using the Electron MCP server.**
The Electron MCP server allows QA agents to interact with the running Electron app via Chrome DevTools Protocol:
**Setup:**
1. Start the Electron app with remote debugging enabled:
```bash
npm run dev # Already configured with --remote-debugging-port=9222
```
2. Enable Electron MCP in `apps/backend/.env`:
```bash
ELECTRON_MCP_ENABLED=true
ELECTRON_DEBUG_PORT=9222 # Default port
```
**Available Testing Capabilities:**
QA agents (`qa_reviewer` and `qa_fixer`) automatically get access to Electron MCP tools:
1. **Window Management**
- `mcp__electron__get_electron_window_info` - Get info about running windows
- `mcp__electron__take_screenshot` - Capture screenshots for visual verification
2. **UI Interaction**
- `mcp__electron__send_command_to_electron` with commands:
- `click_by_text` - Click buttons/links by visible text
- `click_by_selector` - Click elements by CSS selector
- `fill_input` - Fill form fields by placeholder or selector
source .venv/bin/activate # On Windows: .venv\Scripts\activate
pip install -r requirements.txt
# Set up environment
cd apps/backend
cp .env.example .env
# Edit .env and add your CLAUDE_CODE_OAUTH_TOKEN (get it via: claude setup-token)
```
### Step 2: Run the Desktop UI
```bash
cd ../frontend
# Install dependencies
npm install
# Development mode (hot reload)
npm run dev
# Or production build
npm run build && npm run start
```
<details>
<summary><b>Windows users:</b> If installation fails with node-gyp errors, click here</summary>
Auto Claude automatically downloads prebuilt binaries for Windows. If prebuilts aren't available for your Electron version yet, you'll need Visual Studio Build Tools:
1. Download [Visual Studio Build Tools 2022](https://visualstudio.microsoft.com/visual-cpp-build-tools/)
2. Select "Desktop development with C++" workload
3. In "Individual Components", add "MSVC v143 - VS 2022 C++ x64/x86 Spectre-mitigated libs"
4. Restart terminal and run `npm install` again
</details>
> **Note:** For regular usage, we recommend downloading the pre-built releases from [GitHub Releases](https://github.com/AndyMik90/Auto-Claude/releases). Running from source is primarily for contributors and those testing unreleased features.
## Pre-commit Hooks
We use [pre-commit](https://pre-commit.com/) to run linting and formatting checks before each commit. This ensures code quality and consistency across the project.
@@ -100,10 +200,10 @@ When you commit, the following checks run automatically:
| Check | Scope | Description |
|-------|-------|-------------|
| **ruff** | `auto-claude/` | Python linter with auto-fix |
# For features and bug fixes - ALWAYS branch from develop
git checkout develop
git pull origin develop
git checkout -b feature/my-new-feature
# For hotfixes only - branch from main
git checkout main
git pull origin main
git checkout -b hotfix/critical-fix
```
### Pull Request Targets
> ⚠️ **Important:** All PRs should target `develop`, NOT `main`!
| Your Branch Type | Target Branch |
|------------------|---------------|
| `feature/*` | `develop` |
| `fix/*` | `develop` |
| `docs/*` | `develop` |
| `refactor/*` | `develop` |
| `test/*` | `develop` |
| `chore/*` | `develop` |
| `hotfix/*` | `main` (maintainers only) |
| `release/*` | `main` (maintainers only) |
### Release Process (Maintainers)
When ready to release a new version:
```bash
# 1. Create release branch from develop
git checkout develop
git pull origin develop
git checkout -b release/v2.8.0
# 2. Update version numbers, CHANGELOG, final fixes only
# No new features allowed in release branches!
# 3. Merge to main and tag
git checkout main
git merge release/v2.8.0
git tag v2.8.0
git push origin main --tags
# 4. Merge back to develop (important!)
git checkout develop
git merge release/v2.8.0
git push origin develop
# 5. Delete release branch
git branch -d release/v2.8.0
git push origin --delete release/v2.8.0
```
### Beta Release Process (Maintainers)
Beta releases allow users to test new features before they're included in a stable release. Beta releases are published from the `develop` branch.
**Creating a Beta Release:**
1. Go to **Actions** → **Beta Release** workflow in GitHub
2. Click **Run workflow**
3. Enter the beta version (e.g., `2.8.0-beta.1`)
4. Optionally enable dry run to test without publishing
5. Click **Run workflow**
The workflow will:
- Validate the version format
- Update `package.json` on develop
- Create and push a tag (e.g., `v2.8.0-beta.1`)
- Build installers for all platforms
- Create a GitHub pre-release
**Version Format:**
```
X.Y.Z-beta.N (e.g., 2.8.0-beta.1, 2.8.0-beta.2)
X.Y.Z-alpha.N (e.g., 2.8.0-alpha.1)
X.Y.Z-rc.N (e.g., 2.8.0-rc.1)
```
**For Users:**
Users can opt into beta updates in Settings → Updates → "Beta Updates" toggle. When enabled, the app will check for and install beta versions. Users can switch back to stable at any time.
### Hotfix Workflow
For urgent production fixes that can't wait for the normal release cycle:
**1. Create hotfix from main**
```bash
git checkout main
git pull origin main
git checkout -b hotfix/150-critical-fix
```
**2. Fix the issue**
```bash
# ... make changes ...
git commit -m "hotfix: fix critical crash on startup"
```
**3. Open PR to main (fast-track review)**
```bash
gh pr create --base main --title "hotfix: fix critical crash on startup"
```
**4. After merge to main, sync to develop**
```bash
git checkout develop
git pull origin develop
git merge main
git push origin develop
```
```
main ─────●─────●─────●─────●───── (production)
↑ ↑ ↑ ↑
develop ──●─────●─────●─────●───── (integration)
↑ ↑ ↑
feature/123 ────●
feature/124 ──────────●
hotfix/125 ─────────────────●───── (from main, merge to both)
```
> **Note:** Hotfixes branch FROM `main` and merge TO `main` first, then sync back to `develop` to keep branches aligned.
### Commit Messages
@@ -326,17 +598,23 @@ git commit -m "WIP"
## Pull Request Process
1.**Fork the repository** and create your branch from `main`
1.**Fork the repository** and create your branch from `develop` (not main!)
```bash
git checkout develop
git pull origin develop
git checkout -b feature/your-feature-name
```
2. **Make your changes** following the code style guidelines
3. **Test thoroughly**:
```bash
# Python
pytest tests/ -v
# Python (from repository root)
npm run test:backend
# Frontend
cd auto-claude-ui && pnpm test && pnpm lint && pnpm typecheck
cd apps/frontend && npm test && npm run lint && npm run typecheck
```
4. **Update documentation** if your changes affect:
@@ -395,7 +673,7 @@ When requesting a feature:
Auto Claude consists of two main parts:
### Python Backend (`auto-claude/`)
### Python Backend (`apps/backend/`)
The core autonomous coding framework:
@@ -405,9 +683,9 @@ The core autonomous coding framework:
**Auto Claude is a desktop app that supercharges your AI coding workflow.** Whether you're a vibe coder just getting started or an experienced developer, Auto Claude meets you where you are.
- **Autonomous Tasks** — Describe what you want to build, and agents handle planning, coding, and validation while you focus on other work
- **Agent Terminals** — Run Claude Code in up to 12 terminals with a clean layout, smart naming based on context, and one-click task context injection
- **Safe by Default** — All work happens in git worktrees, keeping your main branch undisturbed until you're ready to merge
- **Self-Validating** — Built-in QA agents check their own work before you review
**The result?** 10x your output while maintaining code quality.
## Key Features
- **Parallel Agents**: Run multiple builds simultaneously while you focus on other work
- **Context Engineering**: Agents understand your codebase structure before writing code
- **Self-Validating**: Built-in QA loop catches issues before you review
- **Isolated Workspaces**: All work happens in git worktrees — your code stays safe
- **AI Merge Resolution**: Intelligent conflict resolution when merging back to main — no manual conflict fixing
- **Memory Layer**: Agents remember insights across sessions for smarter decisions
- **Cross-Platform**: Desktop app runs on Mac, Windows, and Linux
- **Any Project Type**: Build web apps, APIs, CLIs — works with any software project
## 🚀 Quick Start (Desktop UI)
The Desktop UI is the recommended way to use Auto Claude. It provides visual task management, real-time progress tracking, and a Kanban board interface.
- **Git repository** - Your project must be initialized as a git repo
- **Python 3.12+** - Required for the backend and Memory Layer
---
## 🎯 Features
## Quick Start
1.**Download and install** the app for your platform
2.**Open your project** - Select a git repository folder
3.**Connect Claude** - The app will guide you through OAuth setup
4.**Create a task** - Describe what you want to build
5.**Watch it work** - Agents plan, code, and validate autonomously
---
## Features
| Feature | Description |
|---------|-------------|
| **Autonomous Tasks** | Describe your goal; agents handle planning, implementation, and validation |
| **Parallel Execution** | Run multiple builds simultaneously with up to 12 agent terminals |
| **Isolated Workspaces** | All changes happen in git worktrees - your main branch stays safe |
| **Self-Validating QA** | Built-in quality assurance loop catches issues before you review |
| **AI-Powered Merge** | Automatic conflict resolution when integrating back to main |
| **Memory Layer** | Agents retain insights across sessions for smarter builds |
| **Cross-Platform** | Native desktop apps for Windows, macOS, and Linux |
| **Auto-Updates** | App updates automatically when new versions are released |
---
## Interface
### Kanban Board
Plan tasks and let AI handle the planning, coding, and validation — all in a visual interface. Track progress from "Planning" to "Done" while agents work autonomously.
Visual task management from planning through completion. Create tasks and monitor agent progress in real-time.
### Agent Terminals
AI-powered terminals with one-click task context injection. Spawn multiple agents for parallel work.
Spawn up to 12 AI-powered terminals for hands-on coding. Inject task context with a click, reference files from your project, and work rapidly across multiple sessions.
**Power users:** Connect multiple Claude Code subscriptions to run even more agents in parallel — perfect for teams or heavy workloads.

### Insights
Have a conversation about your project in a ChatGPT-style interface. Ask questions, get explanations, and explore your codebase through natural dialogue.

### Ideation
Let AI help you create a project that shines. Rapidly understand your codebase and discover:
- Code improvements and refactoring opportunities
- Performance bottlenecks
- Security vulnerabilities
- Documentation gaps
- UI/UX enhancements
- Overall code quality issues
### Changelog
Write professional changelogs effortlessly. Generate release notes from completed Auto Claude tasks or integrate with GitHub to create masterclass changelogs automatically.
### Context
See exactly what Auto Claude understands about your project — the tech stack, file structure, patterns, and insights it uses to write better code.
### AI Merge Resolution
When your main branch evolves while a build is in progress, Auto Claude automatically resolves merge conflicts using AI — no manual `<<<<<<< HEAD` fixing required.
**How it works:**
1.**Git Auto-Merge First** — Simple non-conflicting changes merge instantly without AI
2.**Conflict-Only AI** — For actual conflicts, AI receives only the specific conflict regions (not entire files), achieving ~98% prompt reduction
4.**Syntax Validation** — Every merge is validated before being applied
**The result:** A build that was 50+ commits behind main merges in seconds instead of requiring manual conflict resolution.
### Additional Features
- **Insights** - Chat interface for exploring your codebase
- **Ideation** - Discover improvements, performance issues, and vulnerabilities
- **Changelog** - Generate release notes from completed tasks
---
## CLI Usage (Terminal-Only)
For terminal-based workflows, headless servers, or CI/CD integration, see **[guides/CLI-USAGE.md](guides/CLI-USAGE.md)**.
## ⚙️ How It Works
Auto Claude focuses on three core principles: **context engineering** (understanding your codebase before writing code), **good coding standards** (following best practices and patterns), and **validation logic** (ensuring code works before you see it).
### The Agent Pipeline
**Phase 1: Spec Creation** (3-8 phases based on complexity)
Before any code is written, agents gather context and create a detailed specification:
1.**Discovery** — Analyzes your project structure and tech stack
2.**Requirements** — Gathers what you want to build through interactive conversation
3.**Research** — Validates external integrations against real documentation
4.**Context Discovery** — Finds relevant files in your codebase
5.**Spec Writer** — Creates a comprehensive specification document
6.**Spec Critic** — Self-critiques using extended thinking to find issues early
7.**Planner** — Breaks work into subtasks with dependencies
8.**Validation** — Ensures all outputs are valid before proceeding
**Phase 2: Implementation**
With a validated spec, coding agents execute the plan:
1.**Planner Agent** — Creates subtask-based implementation plan
2.**Coder Agent** — Implements subtasks one-by-one with verification
3.**QA Reviewer** — Validates all acceptance criteria
4.**QA Fixer** — Fixes issues in a self-healing loop (up to 50 iterations)
Each session runs with a fresh context window. Progress is tracked via `implementation_plan.json` and Git commits.
**Phase 3: Merge**
When you're ready to merge, AI handles any conflicts that arose while you were working:
1.**Conflict Detection** — Identifies files modified in both main and the build
2.**3-Tier Resolution** — Git auto-merge → Conflict-only AI → Full-file AI (fallback)
4.**Staged for Review** — Changes are staged but not committed, so you can review before finalizing
### 🔒 Security Model
Three-layer defense keeps your code safe:
- **OS Sandbox** — Bash commands run in isolation
- **Filesystem Restrictions** — Operations limited to project directory
- **Command Allowlist** — Only approved commands based on your project's stack
### 🧠 Memory Layer
The Memory Layer is a **hybrid RAG system** combining graph nodes with semantic search to deliver the best possible context during AI coding. Agents remember insights from previous sessions, discovered codebase patterns persist and are reusable, and historical context helps agents make smarter decisions.
**Architecture:**
- **Backend**: FalkorDB (graph database) via Docker
- **Library**: Graphiti for knowledge graph operations
- **Providers**: OpenAI, Anthropic, Azure OpenAI, or Ollama (local/offline)
| Setup | LLM | Embeddings | Notes |
|-------|-----|------------|-------|
| **OpenAI** | OpenAI | OpenAI | Simplest - single API key |
| **Anthropic + Voyage** | Anthropic | Voyage AI | High quality |
We welcome contributions! Whether it's bug fixes, new features, or documentation improvements.
# Run in development mode
npm run dev
See **[CONTRIBUTING.md](CONTRIBUTING.md)** for guidelines on how to get started.
# Or build and run
npm start
```
## Acknowledgments
**System requirements for building:**
- Node.js 24+
- Python 3.12+
- npm 10+
This framework was inspired by Anthropic's [Autonomous Coding Agent](https://github.com/anthropics/claude-quickstarts/tree/main/autonomous-coding). Thank you to the Anthropic team for their innovative work on autonomous coding systems.
See [CONTRIBUTING.md](CONTRIBUTING.md) for detailed development setup.
---
## Security
Auto Claude uses a three-layer security model:
1.**OS Sandbox** - Bash commands run in isolation
2.**Filesystem Restrictions** - Operations limited to project directory
3.**Dynamic Command Allowlist** - Only approved commands based on detected project stack
All releases are:
- Scanned with VirusTotal before publishing
- Include SHA256 checksums for verification
- Code-signed where applicable (macOS)
---
## Available Scripts
| Command | Description |
|---------|-------------|
| `npm run install:all` | Install backend and frontend dependencies |
| `npm start` | Build and run the desktop app |
| `npm run dev` | Run in development mode with hot reload |
| `npm run package` | Package for current platform |
| `npm run package:mac` | Package for macOS |
| `npm run package:win` | Package for Windows |
| `npm run package:linux` | Package for Linux |
| `npm run lint` | Run linter |
| `npm test` | Run frontend tests |
| `npm run test:backend` | Run backend tests |
---
## Contributing
We welcome contributions! Please read [CONTRIBUTING.md](CONTRIBUTING.md) for:
**AGPL-3.0** - GNU Affero General Public License v3.0
This software is licensed under AGPL-3.0, which means:
Auto Claude is free to use. If you modify and distribute it, or run it as a service, your code must also be open source under AGPL-3.0.
- **Attribution Required**: You must give appropriate credit, provide a link to the license, and indicate if changes were made. When using Auto Claude, please credit the project.
- **Open Source Required**: If you modify this software and distribute it or run it as a service, you must release your source code under AGPL-3.0.
- **Network Use (Copyleft)**: If you run this software as a network service (e.g., SaaS), users interacting with it over a network must be able to receive the source code.
- **No Closed-Source Usage**: You cannot use this software in proprietary/closed-source projects without open-sourcing your entire project under AGPL-3.0.
**In simple terms**: You can use Auto Claude freely, but if you build on it, your code must also be open source under AGPL-3.0 and attribute this project. Closed-source commercial use requires a separate license.
For commercial licensing inquiries (closed-source usage), please contact the maintainers.
Commercial licensing available for closed-source use cases.
This document describes how releases are created for Auto Claude.
## Overview
Auto Claude uses an automated release pipeline that ensures releases are only published after all builds succeed. This prevents version mismatches between documentation and actual releases.
Some files were not shown because too many files have changed in this diff
Show More
Reference in New Issue
Block a user
Blocking a user prevents them from interacting with repositories, such as opening or commenting on pull requests or issues. Learn more about blocking a user.