refactor: translate all cn comments and log to en #871
Conversation
WalkthroughThe PR performs an i18n pass (Chinese → English) across comments, logs, and user-facing strings, adds/updates several public APIs and types, introduces image generation flow in OpenAI-compatible provider, enhances LLM provider presenter (MCP sync, streaming state/cancellation), updates MCP config/client/registry logic, persists OAuth tokens, adjusts AES encrypt IV handling, expands logger API, and adds shortcut/type utilities. Changes
Sequence Diagram(s)sequenceDiagram
autonumber
participant UI as Renderer
participant LLM as LLMProviderPresenter
participant Prov as OpenAICompatibleProvider
participant OA as OpenAI API
participant Cache as devicePresenter/cache
UI->>LLM: startStreamCompletion(messages with image-gen model)
LLM->>Prov: coreStream(request)
Prov->>Prov: detect image-gen model
Prov->>Prov: handleImgGeneration(prompt, inputs?)
alt Edit with input image
Prov->>OA: images.edit(..., size inferred)
else Generate without input
Prov->>OA: images.generate(..., size config)
end
OA-->>Prov: image URL/base64
Prov->>Cache: cache image (url/base64)
Prov-->>LLM: emit imageData + usage + done
LLM-->>UI: stream events (imageData, usage, finished)
sequenceDiagram
autonumber
participant Admin as Caller
participant LLM as LLMProviderPresenter
participant Prov as Provider (ModelScope-capable)
participant Conf as configPresenter
participant MS as ModelScope API
Admin->>LLM: syncModelScopeMcpServers(providerId, opts)
LLM->>Prov: get ModelScope servers + converter
Prov->>MS: fetch server list
MS-->>Prov: servers[]
Prov-->>LLM: convertedServers
loop for each server
LLM->>Conf: import if not exists
Conf-->>LLM: imported/skipped/error
end
LLM-->>Admin: {imported, skipped, errors}
sequenceDiagram
autonumber
participant App as App (Main)
participant MCP as McpClient
participant Trans as Transport(SSE/HTTP/STDIO)
participant Auth as SimpleOAuthProvider
App->>MCP: connect(config with headers)
alt Authorization header present
MCP->>Auth: create from header
MCP->>Trans: construct with authProvider
else
MCP->>Trans: construct without auth
end
Trans-->>MCP: connected or error
note over MCP: On session errors -> restart/stop per policy
Estimated code review effort🎯 5 (Critical) | ⏱️ ~120–180 minutes Possibly related PRs
Suggested reviewers
Poem
✨ Finishing Touches
🧪 Generate unit tests
Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out. Comment |
Resolved merge conflicts while preserving merged functionality and comment translations.
There was a problem hiding this comment.
Actionable comments posted: 9
Caution
Some comments are outside the diff and can’t be posted inline due to platform limitations.
⚠️ Outside diff range comments (46)
src/renderer/src/components/NewThread.vue (2)
139-143: Translate remaining Chinese comments to English (repo rule: English-only comments/logs)Several in-file comments remain in Chinese; please translate to English to meet repo guidelines and this PR’s objective.
-// 定义偏好模型的类型 +// Define the preferred model type - // 如果有现有线程,使用最近线程的模型 + // If there are existing threads, use the most recent thread's model - // 同时匹配 modelId 和 providerId + // Match both modelId and providerId - // 如果没有现有线程,尝试使用用户上次选择的模型 + // If there are no existing threads, try the user's last selected model - // 验证偏好模型是否还在可用模型列表中 + // Validate the preferred model is still available - // 如果没有偏好模型或偏好模型不可用,使用第一个可用模型 + // If no preferred model or it is unavailable, fall back to the first available model -// 监听鼠标悬停 +// Listen for mouse hover - // 保存用户的模型偏好设置 + // Persist the user's model preference -// 监听 deeplinkCache 变化 +// Watch changes to deeplinkCache - // 清理缓存 + // Clear the cache - // 如果打开,立即显示按钮 + // When opened, show the button immediately - // 如果关闭,延迟隐藏按钮,等待动画完成 + // When closed, hide the button after the animation finishes - }, 300) // 300ms是一个常见的动画持续时间,可以根据实际情况调整 + }, 300) // 300ms is a common animation duration; adjust as needed -// 初始化时设置showSettingsButton的值与settingsPopoverOpen一致 +// Initialize showSettingsButton to follow settingsPopoverOpenAlso applies to: 207-215, 236-246, 242-246, 264-270, 290-297, 316-321, 325-331, 382-384, 401-409, 412-421
439-439: Define a proper settings type forcreateThreadinstead of usingany
- In
src/renderer/src/stores/chat.ts, replace thesettings: Partial<CONVERSATION_SETTINGS>parameter with a new interface (e.g.CreateThreadSettings) that extends the conversation config and addsmodelId(and other fields likeartifactsif required), then updatecreateThread’s signature to use it.- In
src/renderer/src/components/NewThread.vue:439, remove theas anycast and annotate the object literal with the newCreateThreadSettingstype.src/main/presenter/windowPresenter/index.ts (4)
614-618: Harden BrowserWindow: enable contextIsolation and explicitly disable nodeIntegration.Meets the project’s security guidelines for main/renderer. Keep sandbox as-is if required by preload.
Apply:
webPreferences: { preload: join(__dirname, '../preload/index.mjs'), // Preload script path - sandbox: false, // Disable sandbox to allow preload to access Node.js API - devTools: is.dev // Enable DevTools in dev mode + sandbox: false, // keep if your preload needs Node; otherwise prefer true + contextIsolation: true, + nodeIntegration: false, + webSecurity: true, + devTools: is.dev // Enable DevTools in dev mode },
441-466: Wrap the async setTimeout body in try/catch to avoid unhandled rejections.The outer try/catch won’t catch errors thrown in the async callback.
Apply:
- try { - setTimeout(async () => { - const tabPresenterInstance = presenter.tabPresenter as TabPresenter - const tabsData = await tabPresenterInstance.getWindowTabsData(windowId) - const activeTab = tabsData.find((tab) => tab.isActive) - if (activeTab) { - console.log( - `Focusing active tab ${activeTab.id} in window ${windowId} (reason: ${reason})` - ) - await tabPresenterInstance.switchTab(activeTab.id) - const state = this.windowFocusStates.get(windowId) - if (state) { - state.lastFocusTime = Date.now() - if (reason === 'initial') { - state.hasInitialFocus = true - } - if (reason === 'focus' || reason === 'initial') { - state.isNewWindow = false - } - } - } - }, 50) - } catch (error) { - console.error(`Error focusing active tab in window ${windowId}:`, error) - } + setTimeout(() => { + void (async () => { + try { + const tabPresenterInstance = presenter.tabPresenter as TabPresenter + const tabsData = await tabPresenterInstance.getWindowTabsData(windowId) + const activeTab = tabsData.find((tab) => tab.isActive) + if (activeTab) { + console.log(`Focusing active tab ${activeTab.id} in window ${windowId} (reason: ${reason})`) + await tabPresenterInstance.switchTab(activeTab.id) + const state = this.windowFocusStates.get(windowId) + if (state) { + state.lastFocusTime = Date.now() + if (reason === 'initial') state.hasInitialFocus = true + if (reason === 'focus' || reason === 'initial') state.isNewWindow = false + } + } + } catch (error) { + console.error(`Error focusing active tab in window ${windowId}:`, error) + } + })() + }, 50)
184-193: Handle shell.openPath result/errors.shell.openPath returns a Promise; current code ignores failures.
Apply:
- } else { - shell.openPath(filePath) // Open with system default app - } + } else { + shell.openPath(filePath).catch((err) => { + console.error(`Failed to open file ${filePath}:`, err) + }) + }
47-55: Replace sync IPC in preload with async invoke
In src/preload/index.ts (lines 24, 31, 51–52), replace allipcRenderer.sendSync('get-window-id'|'get-web-contents-id')calls withipcRenderer.invoke(...)and adjust the surrounding functions to return Promises (e.g. mark themasyncandawaitthe invoke), including the DOMContentLoaded initialization.src/shared/types/presenters/thread.presenter.d.ts (4)
15-30: Deduplicate shared types: import/re-export from a single source to avoid driftThese definitions duplicate types exported in src/shared/types/presenters/index.d.ts. Centralize to one source to prevent divergence and ease maintenance.
Apply:
@@ -import { - ChatMessage, - AssistantMessageBlock, - Message, - AssistantMessage, - UserMessage -} from '../core/chat' +import { + AssistantMessageBlock, + Message, + AssistantMessage +} from '../core/chat' +import type { CONVERSATION_SETTINGS, MESSAGE_STATUS, MESSAGE_METADATA } from './index' +export type { CONVERSATION_SETTINGS, MESSAGE_STATUS, MESSAGE_METADATA } from './index' @@ -export type CONVERSATION_SETTINGS = { - systemPrompt: string - temperature: number - contextLength: number - maxTokens: number - providerId: string - modelId: string - artifacts: 0 | 1 - enabledMcpTools?: string[] - thinkingBudget?: number - enableSearch?: boolean - forcedSearch?: boolean - searchStrategy?: 'turbo' | 'max' - reasoningEffort?: 'minimal' | 'low' | 'medium' | 'high' - verbosity?: 'low' | 'medium' | 'high' -} +// moved: re-exported from ./index @@ -export type MESSAGE_STATUS = 'sent' | 'pending' | 'error' @@ -export type MESSAGE_METADATA = { - totalTokens: number - inputTokens: number - outputTokens: number - generationTime: number - firstTokenTime: number - tokensPerSecond: number - contextUsage: number - model?: string - provider?: string - reasoningStartTime?: number - reasoningEndTime?: number -} +// moved: re-exported from ./indexAlso applies to: 43-58
32-41: Narrow flag fields to 0|1 (or boolean) for strict typing consistencyThese are currently number; elsewhere artifacts uses 0|1. Align to avoid accidental values.
export type CONVERSATION = { id: string title: string settings: CONVERSATION_SETTINGS createdAt: number updatedAt: number - is_new?: number - artifacts?: number - is_pinned?: number + is_new?: 0 | 1 + artifacts?: 0 | 1 + is_pinned?: 0 | 1 }
137-147: Avoid nullable result for sendMessage; surface errors via rejectionReturning null forces callers to handle two error paths. Prefer Promise rejection with meaningful error info.
- sendMessage(conversationId: string, content: string, role: MESSAGE_ROLE): Promise<MESSAGE | null> + sendMessage(conversationId: string, content: string, role: MESSAGE_ROLE): Promise<MESSAGE>Also note mismatch with IMessageManager.sendMessage signature below—consider aligning or documenting the abstraction difference.
190-199: Relax required params and metadata at send-time in IMessageManagerRoot messages may not have a parent; variant is often false by default; full metadata is rarely known at send time.
sendMessage( conversationId: string, content: string, role: MESSAGE_ROLE, - parentId: string, - isVariant: boolean, - metadata: MESSAGE_METADATA + parentId?: string, + isVariant?: boolean, + metadata?: Partial<MESSAGE_METADATA> ): Promise<MESSAGE>src/renderer/src/App.vue (2)
38-57: Fix theme/font class handling: use html consistently and react to system theme changes
- Currently you add/remove classes on documentElement here but add them on body in onMounted; also system theme changes (isDark) won’t trigger this watch.
Apply:
-// Watch theme and font size changes, update body class directly +// Watch theme and font size changes; update root (html) classes consistently watch( - [() => themeStore.themeMode, () => settingsStore.fontSizeClass], - ([newTheme, newFontSizeClass], [oldTheme, oldFontSizeClass]) => { - let newThemeName = newTheme - if (newTheme === 'system') { - newThemeName = themeStore.isDark ? 'dark' : 'light' - } - if (oldTheme) { - document.documentElement.classList.remove(oldTheme) - } - if (oldFontSizeClass) { - document.documentElement.classList.remove(oldFontSizeClass) - } - document.documentElement.classList.add(newThemeName) - document.documentElement.classList.add(newFontSizeClass) - console.log('newTheme', newThemeName) - }, - { immediate: false } // Initialization is handled in onMounted + [() => themeStore.themeMode, () => themeStore.isDark, () => settingsStore.fontSizeClass], + ([newThemeMode, isDark, newFontSizeClass], [oldThemeMode, oldIsDark, oldFontSizeClass]) => { + const newThemeName = newThemeMode === 'system' ? (isDark ? 'dark' : 'light') : newThemeMode + const oldThemeName = oldThemeMode === 'system' ? (oldIsDark ? 'dark' : 'light') : oldThemeMode + if (oldThemeName) document.documentElement.classList.remove(oldThemeName) + if (oldFontSizeClass) document.documentElement.classList.remove(oldFontSizeClass) + document.documentElement.classList.add(newThemeName) + document.documentElement.classList.add(newFontSizeClass) + }, + { immediate: false } // Init done in onMounted )
305-313: Remove SHOW_ERROR listener on unmount to avoid leaksYou add NOTIFICATION_EVENTS.SHOW_ERROR on mount but don’t remove it.
window.electron.ipcRenderer.removeAllListeners(SHORTCUT_EVENTS.GO_SETTINGS) + window.electron.ipcRenderer.removeAllListeners(NOTIFICATION_EVENTS.SHOW_ERROR) window.electron.ipcRenderer.removeAllListeners(NOTIFICATION_EVENTS.SYS_NOTIFY_CLICKED) window.electron.ipcRenderer.removeAllListeners(NOTIFICATION_EVENTS.DATA_RESET_COMPLETE_DEV)src/shared/logger.ts (1)
42-52: Console override risks recursion and swallows error logs; preserve stacks and mirror safely.
- With console transport active,
console.* -> logger.* -> console.*can recurse.- Current gating drops console.error when
loggingEnabled=falseand not dev, violating “don’t swallow errors.”console.traceloses stack info.Mirror to file via
log.*, print to screen via savedoriginalConsole, always persist ERROR/WARN, and include stack for TRACE.Apply this diff to the console stubs:
// Replace console methods console.log = (...args: unknown[]) => { - // Only log when logging is enabled or in development mode - if (loggingEnabled || is.dev) { - logger.info(...args) - } + if (is.dev) originalConsole.log(...args) + if (loggingEnabled || is.dev) log.info(...args) } console.error = (...args: unknown[]) => { - // Only log when logging is enabled or in development mode - if (loggingEnabled || is.dev) { - logger.error(...args) - } + // Never swallow errors + originalConsole.error(...args) + log.error(...args) } console.warn = (...args: unknown[]) => { - // Only log when logging is enabled or in development mode - if (loggingEnabled || is.dev) { - logger.warn(...args) - } + originalConsole.warn(...args) + // Keep WARNs by default; drop if you truly want WARN gated by `loggingEnabled` + log.warn(...args) } console.info = (...args: unknown[]) => { - // Only log when logging is enabled or in development mode - if (loggingEnabled || is.dev) { - logger.info(...args) - } + if (is.dev) originalConsole.info(...args) + if (loggingEnabled || is.dev) log.info(...args) } console.debug = (...args: unknown[]) => { - // Only log when logging is enabled or in development mode - if (loggingEnabled || is.dev) { - logger.debug(...args) - } + if (is.dev) originalConsole.debug(...args) + if (loggingEnabled || is.dev) log.debug(...args) } console.trace = (...args: unknown[]) => { - // Only log when logging is enabled or in development mode - if (loggingEnabled || is.dev) { - logger.debug(...args) - } + // Preserve stack in console and file + originalConsole.trace(...args) + const stack = new Error().stack + if (loggingEnabled || is.dev) log.debug('[trace]', ...args, stack) }Notes:
- This relies on
applyLogLevels()settingconsole.level = falseto avoid recursion.- If you truly want WARNs suppressed when disabled, gate
log.warnthe same as INFO/DEBUG, but keep ERROR unconditional.Also applies to: 53-96
src/main/presenter/configPresenter/modelDefaultSettings.ts (1)
448-448: Finish translating remaining Chinese comments in this file.This PR’s goal and project guideline require English-only comments/logs. The following headers are still Chinese; translate to keep consistency.
- // DeepSeek系列模型配置 + // DeepSeek series models - // Claude系列模型配置 + // Claude series models - // OpenAI GPT系列模型配置 + // OpenAI GPT series models - // Llama系列 + // Llama series - // Mistral系列 + // Mistral series - // Qwen系列 + // Qwen series - // Qwen3系列模型 + // Qwen3 series models - // Yi系列 + // Yi series - // Gemma系列 + // Gemma series - // Phi系列 + // Phi series - // Doubao (字节跳动)模型配置 + // Doubao (ByteDance) models - // MiniMax模型配置 + // MiniMax models - // Zhipu + // Zhipu - // 智谱AI 推理模型 + // Zhipu AI reasoning models - // 智谱AI 多模态模型 + // Zhipu AI multimodal models - // Fireworks AI模型配置 + // Fireworks AI models - // Moonshot (月之暗面)模型配置 + // Moonshot (Moonshot AI) models - // Azure OpenAI配置 + // Azure OpenAI configurationAlso applies to: 616-616, 695-695, 1001-1001, 1102-1102, 1148-1148, 1250-1250, 1372-1372, 1396-1396, 1464-1464, 1488-1488, 1534-1534, 1558-1558, 1680-1680, 1714-1714, 1760-1760, 1806-1806, 1863-1863
src/preload/floating-preload.ts (1)
70-83: SetcontextIsolation: truein every BrowserWindow’s webPreferencesAll
new BrowserWindow({ webPreferences: { … } })calls (e.g. in src/main/presenter/*) must explicitly includecontextIsolation: trueto enforce isolation and eliminate the insecure window‐attachment fallback.src/main/lib/watermark.ts (1)
64-91: Escape dynamic SVG text to prevent malformed XML/injectionTexts come from options and are injected directly into SVG. Escape XML entities before embedding.
const createWatermarkSvg = (width: number, options: WatermarkOptions): string => { const { isDark = false, version = '1.0.0', texts = {} } = options + const esc = (s: string) => + s.replace(/&/g, '&').replace(/</g, '<').replace(/>/g, '>').replace(/"/g, '"') @@ - const brandText = texts.brand || 'DeepChat' + const brandText = esc(texts.brand || 'DeepChat') @@ - const tipText = texts.tip || 'Generated by DeepChat' + const tipText = esc(texts.tip || 'Generated by DeepChat') @@ - const timeLineText = `${modelInfo.join(' · ')} · ${timeStr}` + const timeLineText = esc(`${modelInfo.join(' · ')} · ${timeStr}`) @@ - const versionInfo = 'v' + version + const versionInfo = esc('v' + version)src/main/presenter/configPresenter/aes.ts (1)
62-82: Use AEAD (GCM) instead of CBC; translate decryption errorsCBC without authentication is unsafe (bitflips/Oracle). Switch to aes-256-gcm and include authTag; also translate remaining Chinese text.
-const ALGORITHM = 'aes-256-cbc' +const ALGORITHM = 'aes-256-gcm' @@ static encrypt( plainText: string, key: Buffer, - iv?: Buffer + iv?: Buffer ): { - cipherText: string - iv: string + cipherText: string + iv: string + tag: string } { @@ - const cipher = crypto.createCipheriv(ALGORITHM, key, usedIv) + const cipher = crypto.createCipheriv(ALGORITHM, key, usedIv) @@ - return { - cipherText: encrypted, - iv: usedIv.toString('hex') - } + const tag = cipher.getAuthTag() + return { cipherText: encrypted, iv: usedIv.toString('hex'), tag: tag.toString('hex') } @@ - static decrypt(cipherText: string, key: Buffer, iv: string): string { + static decrypt(cipherText: string, key: Buffer, iv: string, tag: string): string { try { const ivBuffer = Buffer.from(iv, 'hex') - const decipher = crypto.createDecipheriv(ALGORITHM, key, ivBuffer) + const decipher = crypto.createDecipheriv(ALGORITHM, key, ivBuffer) + decipher.setAuthTag(Buffer.from(tag, 'hex')) @@ - } catch (error) { - throw new Error( - `解密失败: ${error instanceof Error ? error.message : '密文可能被篡改或密钥错误'}` - ) - } + } catch (error) { + throw new Error( + `Decryption failed: ${error instanceof Error ? error.message : 'Ciphertext tampered or wrong key'}` + ) + }If backward compatibility is required, keep CBC decrypt as legacy fallback behind a version flag.
src/main/presenter/llmProviderPresenter/providers/dashscopeProvider.ts (1)
96-123: Monkey-patching the OpenAI client is not concurrency-safeOverwriting this.openai.chat.completions.create can race across simultaneous streams, leaking flags across requests.
Refactor to avoid patching:
- Add a requestParamsTransformer hook in OpenAICompatibleProvider and pass a function here, or
- Create a per-call OpenAI client instance and call super with an injected create method via composition, or
- Extend super.coreStream to accept “extraParams” merged into the single streaming request.
Example (conceptual):
- this.openai.chat.completions.create = ((params, options) => { ... return originalCreate(modifiedParams, options) }) + const transformer = (params: any) => ({ ...params, ...dashscopeFlags }) + yield* super.coreStreamWithTransformer(messages, modelId, effectiveModelConfig, temperature, maxTokens, mcpTools, transformer)src/main/lib/scrollCapture.ts (1)
127-148: JS injection risk via unescaped CSS selectors in executeJavaScriptSelectors are interpolated directly into a JS string; a crafted selector with quotes can break out. Serialize the selector safely.
- const elementInfo = await this.view.webContents.executeJavaScript(` - (function() { - const elements = document.querySelectorAll('${selector}') + const elementInfo = await this.view.webContents.executeJavaScript(` + (function() { + const selector = ${JSON.stringify(selector)}; + const elements = document.querySelectorAll(selector) const hiddenElements = [] @@ - })() + })() `)src/main/presenter/llmProviderPresenter/providers/ollamaProvider.ts (3)
161-163: Preserve temperature=0; use nullish coalescingUsing || overrides 0. Use ?? across calls.
- temperature: temperature || 0.7, + temperature: temperature ?? 0.7,Apply similarly in summaries (Line 229) and generateText (Line 255).
300-317: Potential NPE on model.details.familydetails or family can be undefined. Guard access.
- const info = showResponse.model_info - const family = model.details.family - const context_length = info?.[family + '.context_length'] ?? 4096 - const embedding_length = info?.[family + '.embedding_length'] ?? 512 + const info = showResponse.model_info + const family = model.details?.family ?? 'default' + const context_length = info?.[`${family}.context_length`] ?? 4096 + const embedding_length = info?.[`${family}.embedding_length`] ?? 512
1-1184: Translate or remove Chinese comments/logs in provider files
Multiple provider files (e.g. ollamaProvider.ts, geminiProvider.ts, siliconcloudProvider.ts, etc.) still contain Chinese comments and console messages. Replace all Chinese text in code comments and logs with English equivalents.src/renderer/src/stores/chat.ts (2)
632-646: Bug: condition always true; should compare against cached.threadIdBoth checks use getActiveThreadId() === getActiveThreadId(). Compare to cached.threadId.
- if (getActiveThreadId() === getActiveThreadId()) { + if (getActiveThreadId() === cached.threadId) { const mainMsgIndex = getMessages().findIndex((m) => m.id === mainMessage.id) if (mainMsgIndex !== -1) { getMessages()[mainMsgIndex] = enrichedMainMessage as AssistantMessage | UserMessage } } @@ - if (getActiveThreadId() === getActiveThreadId()) { + if (getActiveThreadId() === cached.threadId) { const msgIndex = getMessages().findIndex((m) => m.id === msg.eventId) if (msgIndex !== -1) { getMessages()[msgIndex] = enrichedMessage as AssistantMessage | UserMessage } }
470-476: User-visible string should use i18n keyReplace 'tool call failed' with an i18n key per renderer guidelines.
- existingToolCallBlock.tool_call.response = - msg.tool_call_response || 'tool call failed' + existingToolCallBlock.tool_call.response = + msg.tool_call_response || 'common.error.toolCallFailed'src/main/presenter/configPresenter/providerModelSettings.ts (2)
3091-3107: Prefer maxCompletionTokens when present (GPT‑5 series).You return maxTokens unconditionally, but comments state GPT‑5 uses maxCompletionTokens. Use the GPT‑5 value when defined to avoid under/over-limiting completions.
Apply:
- return { - maxTokens: config.maxTokens, + return { + maxTokens: config.maxCompletionTokens ?? config.maxTokens, contextLength: config.contextLength, temperature: config.temperature, // Keep optional, some models don't support it vision: config.vision || false, functionCall: config.functionCall || false, reasoning: config.reasoning || false, type: config.type || ModelType.Chat, reasoningEffort: config.reasoningEffort, verbosity: config.verbosity, maxCompletionTokens: config.maxCompletionTokens, thinkingBudget: config.thinkingBudget, enableSearch: config.enableSearch ?? false, forcedSearch: config.forcedSearch ?? false, searchStrategy: config.searchStrategy || 'turbo' }
3091-3107: Add missing optional fields to ModelConfig
In src/shared/types/presenters/legacy.presenters.d.ts (line 121), extend the ModelConfig interface to include these optional properties—reasoningEffort, verbosity, maxCompletionTokens, thinkingBudget, enableSearch, forcedSearch, and searchStrategy—to match providerModelSettings.ts and prevent implicit any.src/main/presenter/mcpPresenter/mcpClient.ts (2)
893-905: Populate required PromptListEntry.client for type/UI consumers.Shared types expect a client field. Provide minimally sane defaults.
- const validPrompts = promptsArray.map((p) => ({ + const validPrompts = promptsArray.map((p) => ({ name: typeof p === 'object' && p !== null && 'name' in p ? String(p.name) : 'unknown', description: typeof p === 'object' && p !== null && 'description' in p ? String(p.description) : undefined, arguments: typeof p === 'object' && p !== null && 'arguments' in p ? p.arguments : undefined, - files: typeof p === 'object' && p !== null && 'files' in p ? p.files : undefined + files: typeof p === 'object' && p !== null && 'files' in p ? p.files : undefined, + client: { name: this.serverName, icon: '' } })) as PromptListEntry[]
999-1006: Populate required ResourceListEntry.client.Same issue for resources; add client metadata.
- const validResources = resourcesArray.map((r) => ({ + const validResources = resourcesArray.map((r) => ({ uri: typeof r === 'object' && r !== null && 'uri' in r ? String(r.uri) : 'unknown', - name: typeof r === 'object' && r !== null && 'name' in r ? String(r.name) : undefined + name: typeof r === 'object' && r !== null && 'name' in r ? String(r.name) : undefined, + client: { name: this.serverName, icon: '' } })) as ResourceListEntry[]src/main/presenter/configPresenter/mcpConfHelper.ts (3)
692-706: batchImportMcpServers builds the wrong config shape (runtime breakage).You cast ExtendedMCPServerConfig to MCPServerConfig. MCPServerConfig requires command, descriptions, icons, etc. Missing command will break stdio startup; descriptions key name differs.
Use a proper MCPServerConfig object and map fields:
- const mcpConfig: ExtendedMCPServerConfig = { - name: serverConfig.name, - description: serverConfig.description, - args: serverConfig.args || [], - env: serverConfig.env || {}, - enabled: serverConfig.enabled ?? enableByDefault, - type: (serverConfig.type as MCPServerType) || 'stdio', - package: serverConfig.package, - version: serverConfig.version || 'latest', - source: serverConfig.source as string | undefined, - logo_url: serverConfig.logo_url as string | undefined, - publisher: serverConfig.publisher as string | undefined, - tags: serverConfig.tags as string[] | undefined, - view_count: serverConfig.view_count as number | undefined - } - - // Add or update the server - const success = await this.addMcpServer(serverName, mcpConfig as unknown as MCPServerConfig) + const mcpConfig: MCPServerConfig = { + command: 'npx', + args: [ + '-y', + serverConfig.version + ? `${serverConfig.package}@${serverConfig.version}` + : serverConfig.package + ], + env: serverConfig.env || {}, + descriptions: serverConfig.description, // note: plural key in MCPServerConfig + icons: '🔌', + autoApprove: ['all'], + disable: !(serverConfig.enabled ?? enableByDefault), + type: (serverConfig.type as MCPServerType) || 'stdio', + source: serverConfig.source as string | undefined, + sourceId: serverConfig.package + } + + // Add or update the server + const success = await this.addMcpServer(serverName, mcpConfig)
778-789: findServerByPackage checks a non-existent field.Stored configs don’t have package; use sourceId (set during import) instead.
- async findServerByPackage(packageName: string): Promise<string | null> { + async findServerByPackage(packageName: string): Promise<string | null> { const servers = await this.getMcpServers() for (const [serverName, config] of Object.entries(servers)) { - const extendedConfig = config as unknown as ExtendedMCPServerConfig - if (extendedConfig.package === packageName) { + if ((config as MCPServerConfig).sourceId === packageName) { return serverName } } return null }
338-395: Remove all Chinese comments and strings in presenter/configPresenter and mcpPresenter
Detected Chinese in:
- src/main/presenter/mcpPresenter/toolManager.ts
- src/main/presenter/mcpPresenter/mcpClient.ts
- src/main/presenter/configPresenter/aes.ts
- src/main/presenter/configPresenter/providerModelSettings.ts
- src/main/presenter/configPresenter/modelDefaultSettings.ts
- src/main/presenter/configPresenter/mcpConfHelper.ts
Replace each Chinese comment, log or user-facing string with an English equivalent.src/main/presenter/llmProviderPresenter/providers/openAICompatibleProvider.ts (2)
244-291: Multimodal content conversion needs improvement.The current implementation converts image URLs to text strings (
image: ${url}), which loses important information. Consider preserving the image data in a more structured format or documenting why this conversion is necessary.For assistant messages with multimodal content, instead of converting to plain text, consider:
- Filtering out image parts if the model doesn't support them
- Preserving image references in a structured way
- Adding a comment explaining why this conversion is needed
// Handle multimodal content arrays const textParts: string[] = [] for (const part of msg.content) { if (part.type === 'text' && part.text) { textParts.push(part.text) } if (part.type === 'image_url' && part.image_url?.url) { + // Note: Converting image URLs to text for models that don't support multimodal content + // This ensures the conversation history remains accessible when switching models textParts.push(`image: ${part.image_url.url}`) } }
375-577: Comprehensive image generation implementation with room for improvement.The image generation handler is well-structured with proper error handling, but there are a few areas that could be improved:
- Temporary file cleanup could fail silently
- Hard-coded temporary directory path may not work on all systems
- Magic strings for model names
- // 创建临时文件 - const imagePath = `/tmp/openai_image_${Date.now()}.png` + // Create temporary file using OS-appropriate temp directory + const tmpDir = app.getPath('temp') + const imagePath = path.join(tmpDir, `openai_image_${Date.now()}.png`) await new Promise<void>((resolve, reject) => { fs.writeFile(imagePath, imageBuffer, (err: Error | null) => { if (err) { reject(err) } else { resolve() } }) }) // ... existing code ... - // 清理临时文件 + // Clean up temporary file try { fs.unlinkSync(imagePath) } catch (e) { console.error('[handleImgGeneration] Failed to delete temporary file:', e) + // Consider scheduling async cleanup or using a cleanup queue }Also consider extracting the model names to constants:
+const HIGH_QUALITY_IMAGE_MODELS = ['gpt-image-1', 'gpt-4o-image', 'gpt-4o-all'] as const - if (modelId === 'gpt-image-1' || modelId === 'gpt-4o-image' || modelId === 'gpt-4o-all') { + if (HIGH_QUALITY_IMAGE_MODELS.includes(modelId as any)) {src/main/presenter/mcpPresenter/toolManager.ts (3)
395-407: Fix MCPToolResponse shape mismatch with LLM presenter (permission flow).LLM presenter reads
toolResponse.rawData.requiresPermission, but here you returnrequiresPermissionandpermissionRequestat the top level and omitrawDataentirely in both the permission and success paths. This will cause runtime errors when a permission is required and also loses the raw tool payload on success.Apply this diff to standardize the response:
@@ - if (!hasPermission) { + if (!hasPermission) { console.warn( `Permission required for tool '${originalName}' on server '${toolServerName}'.` ) @@ - return { - toolCallId: toolCall.id, - content: `components.messageBlockPermissionRequest.description.${permissionType}`, - isError: false, - requiresPermission: true, - permissionRequest: { - toolName: originalName, - serverName: toolServerName, - permissionType, - description: `Allow ${originalName} to perform ${permissionType} operations on ${toolServerName}?` - } - } + return { + toolCallId: toolCall.id, + content: `components.messageBlockPermissionRequest.description.${permissionType}`, + isError: false, + rawData: { + requiresPermission: true, + permissionRequest: { + toolName: originalName, + serverName: toolServerName, + permissionType, + description: `Allow ${originalName} to perform ${permissionType} operations on ${toolServerName}?` + } + } + } } @@ - const response: MCPToolResponse = { + const response: MCPToolResponse = { toolCallId: toolCall.id, content: formattedContent, - isError: result.isError + isError: result.isError, + rawData: result }Also applies to: 434-442
309-315: Avoid logging full tool-call arguments (risk of PII/secrets).You log
rawArgumentsand even the fullargsStringon parse failure. These can contain sensitive data.Minimize/obfuscate arguments in logs:
- console.log(`[ToolManager] Calling tool:`, { - requestedName: finalName, - originalName: finalName, - serverName: toolCall.server?.name || 'unknown', - rawArguments: argsString - }) + console.log(`[ToolManager] Calling tool:`, { + requestedName: finalName, + originalName: finalName, + serverName: toolCall.server?.name || 'unknown', + argsPreview: `${argsString?.slice(0, 200) ?? ''}${argsString && argsString.length > 200 ? '…' : ''}` + }) @@ - console.error('Error parsing tool call arguments even after jsonrepair:', argsString, e) + console.error('Error parsing tool call arguments even after jsonrepair:', (e instanceof Error ? e.message : String(e)))Also applies to: 355-366
223-268: Translate remaining Chinese comments to English.The PR goal and guidelines require English-only logs/comments. These blocks still contain Chinese.
I can push a follow-up patch translating these comments if you want.
Also applies to: 270-303, 455-480, 482-503, 505-584
src/main/presenter/llmProviderPresenter/index.ts (5)
1115-1141: Be resilient to MCPToolResponse shape (permission flow).After the fix in ToolManager,
rawData.requiresPermissionwill exist, but guard for both shapes to avoid runtime regressions.- if (toolResponse.rawData.requiresPermission) { + const requiresPermission = + (toolResponse as any)?.rawData?.requiresPermission ?? + (toolResponse as any)?.requiresPermission === true + if (requiresPermission) { @@ - tool_call_server_name: toolResponse.rawData.permissionRequest?.serverName, + tool_call_server_name: + (toolResponse as any)?.rawData?.permissionRequest?.serverName ?? + (toolResponse as any)?.permissionRequest?.serverName, @@ - permission_request: toolResponse.rawData.permissionRequest + permission_request: + (toolResponse as any)?.rawData?.permissionRequest ?? + (toolResponse as any)?.permissionRequest
1249-1255: Translate user-facing prompt to English.This string is shown to the model and potentially the UI; keep it English per PR goal.
- const userPromptText = - '以上是你刚执行的工具调用及其响应信息,已帮你插入,请仔细阅读工具响应,并继续你的回答。' + const userPromptText = + 'The above is the tool call you just executed and its response. It has been inserted for you. Please read the tool response carefully and continue your answer.'
1313-1345: Translate tool error insertion to English.Keep assistant/user-inserted error text fully English.
- const formattedErrorText = `编号为 ${toolCall.id} 的工具 ${toolCall.name} 调用执行失败: ${errorMessage}` + const formattedErrorText = `The tool call (id: ${toolCall.id}, name: ${toolCall.name}) failed to execute: ${errorMessage}` @@ - const userPromptText = - '以上是你刚调用的工具及其执行的错误信息,已帮你插入,请根据情况继续回答或重新尝试。' + const userPromptText = + 'The above is the tool you just called and its error details. Please continue your answer accordingly or try again.'
292-304: Translate remaining Chinese comments to English.Multiple blocks still use Chinese; align with “Use English for all logs and comments”.
I can submit a quick translation pass over these sections.
Also applies to: 336-356, 358-376, 384-418, 496-540
306-334: AwaitstopAllStreams()insetProvidersand update signature toasync
- Change
setProviders(providers: LLM_PROVIDER[]): voidtoasync setProviders(providers: LLM_PROVIDER[]): Promise<void>and replacethis.stopAllStreams()withawait this.stopAllStreams().- Update the
ILlmProviderPresenter.setProviders(...)signature in all.d.tsfiles (src/shared/types/presenters/llmprovider.presenter.d.ts,legacy.presenters.d.ts), adjust all call sites insrc/main/presenter/index.ts(around lines 154, 169) toawait llmProviderPresenter.setProviders(...), and modify the test attest/main/presenter/llmProviderPresenter.test.ts:515to await the async call.src/main/presenter/mcpPresenter/inMemoryServers/filesystem.ts (2)
274-318: Path traversal risk: startsWith() directory check is unsafe. Use path.relative boundary checks.- const normalizedRequested = this.normalizePath(absolute) - - // Check if path is within allowed directories - const isAllowed = this.allowedDirectories.some((dir) => normalizedRequested.startsWith(dir)) + const normalizedRequested = this.normalizePath(absolute) + + // Check if path is within allowed directories using path.relative + const isAllowed = this.allowedDirectories.some((dir) => { + const rel = path.relative(dir, normalizedRequested) + return rel === '' || (!rel.startsWith('..') && !path.isAbsolute(rel)) + })
571-589: Bug: duplicate/invalid RegExp flags ("gig"/"gg") and incorrect count when global=false.- const modifiedContent = normalizedOriginal.replace(regex, replacement) - const matches = Array.from(normalizedOriginal.matchAll(new RegExp(pattern, regexFlags + 'g'))) - const replacements = matches.length + const modifiedContent = normalizedOriginal.replace(regex, replacement) + // Always use a counting regex with global flag; preserve case sensitivity + const countFlags = caseSensitive ? 'g' : 'gi' + const countRegex = new RegExp(pattern, countFlags) + const matches = normalizedOriginal.match(countRegex) || [] + const replacements = global ? matches.length : (matches.length > 0 ? 1 : 0)src/main/presenter/llmProviderPresenter/providers/doubaoProvider.ts (1)
51-76: Avoid mutating the shared OpenAI client by monkey-patchingcreate
- In
DoubaoProvider.coreStream(src/main/presenter/llmProviderPresenter/providers/doubaoProvider.ts:51–76), remove the runtime override ofthis.openai.chat.completions.create.- Instead, add a provider-specific hook in
OpenAICompatibleProvider(e.g. abuildChatParamsOverride) that merges{ thinking: { type: 'enabled' } }into the params for this one request, so you never replace methods on the shared client.src/main/presenter/mcpPresenter/inMemoryServers/autoPromptingServer.ts (1)
186-189: Unescaped RegExp on placeholder names can break replacement.
If a parameter name contains RegExp metacharacters (e.g., "+", "[]"), replace will misbehave. Use split/join or escape the pattern.Apply within this block:
- filledContent = filledContent.replace(new RegExp(`{{${param.name}}}`, 'g'), value) + // Avoid RegExp pitfalls by using plain string replacement semantics + filledContent = filledContent.split(`{{${param.name}}}`).join(value)src/main/presenter/llmProviderPresenter/baseProvider.ts (1)
102-121: Use async/await to make errors catchable by the try/catch.
The current then-chain escapes the surrounding try/catch. Convert to await for reliability.protected async init() { if (this.provider.enable) { try { - this.isInitialized = true - this.fetchModels() - .then(() => { - return this.autoEnableModelsIfNeeded() - }) - .then(() => { - console.info('Provider initialized successfully:', this.provider.name) - }) - // Check if we need to automatically enable all models + this.isInitialized = true + await this.fetchModels() + await this.autoEnableModelsIfNeeded() + console.info('Provider initialized successfully:', this.provider.name) } catch (error) { console.warn('Provider initialization failed:', this.provider.name, error) } } }
| * Extract basic image information | ||
| */ | ||
| private async extractImageMetadata(): Promise<void> { |
There was a problem hiding this comment.
Doc comment translation OK; several nearby comments remain in Chinese.
For consistency with PR scope, translate remaining CN comments (e.g., Lines 47, 50, 55–58, 72, 75, 78, 83–86).
🤖 Prompt for AI Agents
In src/main/presenter/filePresenter/ImageFileAdapter.ts around lines 29–31 and
specifically targeting comments on lines 47, 50, 55–58, 72, 75, 78, and 83–86,
there are Chinese comments that need to be translated to English for consistency
with the PR scope; update each Chinese comment to clear, concise English
equivalents preserving original intent (e.g., describing what the block does,
why checks exist, error/edge-case notes), keep style consistent with surrounding
English comments, and ensure punctuation and capitalization match existing
comment conventions.
| // If sharp fails, at least get format from file extension | ||
| this.imageMetadata.format = path.extname(this.filePath).substring(1).toLowerCase() | ||
| } |
There was a problem hiding this comment.
🛠️ Refactor suggestion
Comment translation OK; sweep remaining CN comments and standardize logging.
Also replace console.error with structured logging per guidelines (level, code, context, stack).
| try { | ||
| console.info(`Starting MCP server ${this.serverName}...`, this.serverConfig) | ||
|
|
||
| // 处理 customHeaders 和 AuthProvider | ||
| // Handle customHeaders and AuthProvider | ||
| let authProvider: SimpleOAuthProvider | null = null | ||
| const customHeaders = this.serverConfig.customHeaders | ||
| ? { ...(this.serverConfig.customHeaders as Record<string, string>) } // 创建副本以进行修改 | ||
| ? { ...(this.serverConfig.customHeaders as Record<string, string>) } // Create copy for modification | ||
| : {} | ||
|
|
||
| if (customHeaders.Authorization) { | ||
| authProvider = new SimpleOAuthProvider(customHeaders.Authorization) | ||
| delete customHeaders.Authorization // 从 headers 中移除,因为它将由 AuthProvider 处理 | ||
| delete customHeaders.Authorization // Remove from headers as it will be handled by AuthProvider | ||
| } | ||
|
|
There was a problem hiding this comment.
Do not log Authorization tokens.
serverConfig is logged before stripping Authorization, leaking bearer tokens to logs.
Apply:
- console.info(`Starting MCP server ${this.serverName}...`, this.serverConfig)
+ // Build headers first, then log sanitized config
+ let authProvider: SimpleOAuthProvider | null = null
+ const customHeaders = this.serverConfig.customHeaders
+ ? { ...(this.serverConfig.customHeaders as Record<string, string>) }
+ : {}
+ if (customHeaders.Authorization) {
+ authProvider = new SimpleOAuthProvider(customHeaders.Authorization)
+ delete customHeaders.Authorization
+ }
+ const safeConfig = { ...this.serverConfig, customHeaders: { ...customHeaders, Authorization: '***' } }
+ console.info(`Starting MCP server ${this.serverName}...`, safeConfig)
-
- // Handle customHeaders and AuthProvider
- let authProvider: SimpleOAuthProvider | null = null
- const customHeaders = this.serverConfig.customHeaders
- ? { ...(this.serverConfig.customHeaders as Record<string, string>) } // Create copy for modification
- : {}
- if (customHeaders.Authorization) {
- authProvider = new SimpleOAuthProvider(customHeaders.Authorization)
- delete customHeaders.Authorization // Remove from headers as it will be handled by AuthProvider
- }📝 Committable suggestion
‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.
| try { | |
| console.info(`Starting MCP server ${this.serverName}...`, this.serverConfig) | |
| // 处理 customHeaders 和 AuthProvider | |
| // Handle customHeaders and AuthProvider | |
| let authProvider: SimpleOAuthProvider | null = null | |
| const customHeaders = this.serverConfig.customHeaders | |
| ? { ...(this.serverConfig.customHeaders as Record<string, string>) } // 创建副本以进行修改 | |
| ? { ...(this.serverConfig.customHeaders as Record<string, string>) } // Create copy for modification | |
| : {} | |
| if (customHeaders.Authorization) { | |
| authProvider = new SimpleOAuthProvider(customHeaders.Authorization) | |
| delete customHeaders.Authorization // 从 headers 中移除,因为它将由 AuthProvider 处理 | |
| delete customHeaders.Authorization // Remove from headers as it will be handled by AuthProvider | |
| } | |
| try { | |
| // Build headers first, then log sanitized config | |
| let authProvider: SimpleOAuthProvider | null = null | |
| const customHeaders = this.serverConfig.customHeaders | |
| ? { ...(this.serverConfig.customHeaders as Record<string, string>) } | |
| : {} | |
| if (customHeaders.Authorization) { | |
| authProvider = new SimpleOAuthProvider(customHeaders.Authorization) | |
| delete customHeaders.Authorization | |
| } | |
| const safeConfig = { | |
| ...this.serverConfig, | |
| // Mask any Authorization token so it never appears in logs | |
| customHeaders: { ...customHeaders, Authorization: '***' }, | |
| } | |
| console.info(`Starting MCP server ${this.serverName}...`, safeConfig) | |
| // ... rest of your MCP startup logic ... | |
🤖 Prompt for AI Agents
In src/main/presenter/mcpPresenter/mcpClient.ts around lines 359 to 372, the
code logs this.serverConfig (which may include an Authorization header) before
you strip Authorization; update the code so you never log the original
serverConfig containing sensitive headers: create a sanitized copy of
serverConfig/customHeaders with Authorization removed (or omit headers entirely)
before any console.info or logger call, and use that sanitized object in the
log; ensure the Authorization value is deleted from the copied object prior to
any logging and that no code path logs raw serverConfig with Authorization.
| const { dismiss } = toast({ | ||
| title: error.title, | ||
| description: error.message, | ||
| variant: 'destructive', | ||
| onOpenChange: (open) => { | ||
| if (!open) { | ||
| // 用户手动关闭时也显示下一个错误 | ||
| // Also show next error when user manually closes | ||
| handleErrorClosed() | ||
| } | ||
| } | ||
| }) | ||
| // 设置定时器,3秒后自动关闭当前错误 | ||
| // Set timer to automatically close current error after 3 seconds | ||
| if (errorDisplayTimer.value) { | ||
| clearTimeout(errorDisplayTimer.value) | ||
| } | ||
| errorDisplayTimer.value = window.setTimeout(() => { | ||
| console.log('errorDisplayTimer.value', errorDisplayTimer.value) | ||
| // 处理错误关闭后的逻辑 | ||
| // Handle logic after error is closed | ||
| dismiss() | ||
| handleErrorClosed() | ||
| }, 3000) |
There was a problem hiding this comment.
🛠️ Refactor suggestion
Prevent double-advance of the error queue
dismiss() triggers onOpenChange(false); you also call handleErrorClosed() in the timer, which can skip queued errors.
const { dismiss } = toast({
title: error.title,
description: error.message,
variant: 'destructive',
onOpenChange: (open) => {
if (!open) {
- // Also show next error when user manually closes
+ // Advance queue when toast closes (user or programmatic)
handleErrorClosed()
}
}
})
@@
- errorDisplayTimer.value = window.setTimeout(() => {
- console.log('errorDisplayTimer.value', errorDisplayTimer.value)
- // Handle logic after error is closed
- dismiss()
- handleErrorClosed()
- }, 3000)
+ errorDisplayTimer.value = window.setTimeout(() => {
+ // Close toast; onOpenChange will advance the queue
+ dismiss()
+ }, 3000)📝 Committable suggestion
‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.
| const { dismiss } = toast({ | |
| title: error.title, | |
| description: error.message, | |
| variant: 'destructive', | |
| onOpenChange: (open) => { | |
| if (!open) { | |
| // 用户手动关闭时也显示下一个错误 | |
| // Also show next error when user manually closes | |
| handleErrorClosed() | |
| } | |
| } | |
| }) | |
| // 设置定时器,3秒后自动关闭当前错误 | |
| // Set timer to automatically close current error after 3 seconds | |
| if (errorDisplayTimer.value) { | |
| clearTimeout(errorDisplayTimer.value) | |
| } | |
| errorDisplayTimer.value = window.setTimeout(() => { | |
| console.log('errorDisplayTimer.value', errorDisplayTimer.value) | |
| // 处理错误关闭后的逻辑 | |
| // Handle logic after error is closed | |
| dismiss() | |
| handleErrorClosed() | |
| }, 3000) | |
| const { dismiss } = toast({ | |
| title: error.title, | |
| description: error.message, | |
| variant: 'destructive', | |
| onOpenChange: (open) => { | |
| if (!open) { | |
| // Advance queue when toast closes (user or programmatic) | |
| handleErrorClosed() | |
| } | |
| } | |
| }) | |
| // Set timer to automatically close current error after 3 seconds | |
| if (errorDisplayTimer.value) { | |
| clearTimeout(errorDisplayTimer.value) | |
| } | |
| errorDisplayTimer.value = window.setTimeout(() => { | |
| // Close toast; onOpenChange will advance the queue | |
| dismiss() | |
| }, 3000) |
🤖 Prompt for AI Agents
In src/renderer/src/App.vue around lines 84 to 106, the timer callback calls
both dismiss() and handleErrorClosed(), but dismiss() triggers
onOpenChange(false) which already calls handleErrorClosed(), causing the error
queue to advance twice; remove the explicit handleErrorClosed() call from the
timeout callback so the toast dismissal flows only through dismiss() →
onOpenChange(false) → handleErrorClosed(), and keep the existing onOpenChange
handler for manual closes; also ensure you clear any existing timeout before
setting a new one (already present) so no duplicate timers remain.
| document.body.classList.add(themeStore.themeMode) | ||
| document.body.classList.add(settingsStore.fontSizeClass) | ||
There was a problem hiding this comment.
🛠️ Refactor suggestion
Initialize classes on html instead of body (align with watch and Tailwind dark mode)
Avoid mixing body/html. Also resolve 'system' to dark/light at boot.
- // Set initial body class
- document.body.classList.add(themeStore.themeMode)
- document.body.classList.add(settingsStore.fontSizeClass)
+ // Set initial root (html) classes
+ const initialThemeName =
+ themeStore.themeMode === 'system' ? (themeStore.isDark ? 'dark' : 'light') : themeStore.themeMode
+ document.documentElement.classList.add(initialThemeName)
+ document.documentElement.classList.add(settingsStore.fontSizeClass)📝 Committable suggestion
‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.
| document.body.classList.add(themeStore.themeMode) | |
| document.body.classList.add(settingsStore.fontSizeClass) | |
| // Set initial root (html) classes | |
| const initialThemeName = | |
| themeStore.themeMode === 'system' ? (themeStore.isDark ? 'dark' : 'light') : themeStore.themeMode | |
| document.documentElement.classList.add(initialThemeName) | |
| document.documentElement.classList.add(settingsStore.fontSizeClass) |
🤖 Prompt for AI Agents
In src/renderer/src/App.vue around lines 190–192, the code adds theme and font
size classes to document.body which conflicts with the existing watcher and
Tailwind dark mode; change to add classes on document.documentElement instead of
document.body and, if themeStore.themeMode === 'system', resolve it at boot by
checking window.matchMedia('(prefers-color-scheme: dark)').matches and add
either 'dark' or 'light' accordingly before adding the font size class to the
html element so initial state matches the watcher behavior.
| // Export method to set logging switch | ||
| export function setLoggingEnabled(enabled: boolean): void { | ||
| loggingEnabled = enabled | ||
| // 如果禁用日志,将文件日志级别设置为 false | ||
| // If logging is disabled, set file log level to false | ||
| log.transports.file.level = enabled ? 'info' : false | ||
| } |
There was a problem hiding this comment.
🛠️ Refactor suggestion
Make the toggle apply to both transports and preserve errors when “disabled”.
Right now, disabling sets only file.level to false, which can drop all error logs. Also, console transport isn’t updated, so logs emitted via logger.* can still appear. Centralize level management and keep at least ERROR/WARN when logging is “off”.
Apply this diff to the function:
export function setLoggingEnabled(enabled: boolean): void {
loggingEnabled = enabled
- // If logging is disabled, set file log level to false
- log.transports.file.level = enabled ? 'info' : false
+ applyLogLevels()
}Add this helper (outside the shown range) to keep errors while logging is “off” and to synchronize transports:
function applyLogLevels(): void {
// Keep ERROR/WARN when disabled; avoid console recursion (we mirror to originalConsole)
log.transports.file.level = loggingEnabled ? 'info' : 'error'
log.transports.console.level = false
}🤖 Prompt for AI Agents
In src/shared/logger.ts around lines 16 to 21, the current setLoggingEnabled
only toggles file.level to false and doesn’t update console transport or
preserve errors when "disabled"; add the helper function applyLogLevels (outside
the shown range) that sets log.transports.file.level = loggingEnabled ? 'info' :
'error' and log.transports.console.level = false, then change setLoggingEnabled
to assign loggingEnabled = enabled and call applyLogLevels() so both transports
are synchronized and ERROR/WARN are preserved when logging is turned off.
| // Configure console logging | ||
| log.transports.console.level = is.dev ? 'debug' : 'info' | ||
|
|
||
| // 配置文件日志 | ||
| // Configure file logging | ||
| log.transports.file.level = 'info' | ||
| log.transports.file.maxSize = 1024 * 1024 * 10 // 10MB | ||
| log.transports.file.format = '[{y}-{m}-{d} {h}:{i}:{s}.{ms}] [{level}] {text}' | ||
|
|
There was a problem hiding this comment.
Fix potential infinite recursion and avoid overriding the toggle’s effect.
Because console methods are overridden below to call logger.*, keeping the console transport active can cause recursion (console -> logger -> console). Also, hardcoding file.level = 'info' overrides runtime toggling.
Apply this diff:
-// Configure console logging
-log.transports.console.level = is.dev ? 'debug' : 'info'
+// Initialize transports (console disabled to avoid recursion; we mirror to originalConsole in hooks)
+applyLogLevels()
-// Configure file logging
-log.transports.file.level = 'info'
log.transports.file.maxSize = 1024 * 1024 * 10 // 10MB
log.transports.file.format = '[{y}-{m}-{d} {h}:{i}:{s}.{ms}] [{level}] {text}'📝 Committable suggestion
‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.
| // Configure console logging | |
| log.transports.console.level = is.dev ? 'debug' : 'info' | |
| // 配置文件日志 | |
| // Configure file logging | |
| log.transports.file.level = 'info' | |
| log.transports.file.maxSize = 1024 * 1024 * 10 // 10MB | |
| log.transports.file.format = '[{y}-{m}-{d} {h}:{i}:{s}.{ms}] [{level}] {text}' | |
| // Initialize transports (console disabled to avoid recursion; we mirror to originalConsole in hooks) | |
| applyLogLevels() | |
| log.transports.file.maxSize = 1024 * 1024 * 10 // 10MB | |
| log.transports.file.format = '[{y}-{m}-{d} {h}:{i}:{s}.{ms}] [{level}] {text}' |
🤖 Prompt for AI Agents
In src/shared/logger.ts around lines 23-30, the console transport is left
enabled while console methods are later overridden causing potential infinite
recursion; also file.level is hardcoded to 'info' which prevents runtime
toggling. Disable or silence the console transport when you override console
(e.g., remove the console transport or set its level to 'silent') to avoid
console -> logger -> console recursion, and change the file.level assignment to
respect the runtime/dev toggle (e.g., set file.level = is.dev ? 'debug' : 'info'
or use the existing runtime log-level variable) instead of hardcoding 'info'.
| source?: string // Source identifier: "mcprouter" | "modelscope" | undefined(for manual) | ||
| sourceId?: string // Source ID: mcprouter uuid or modelscope mcpServer.id | ||
| } |
There was a problem hiding this comment.
Fix typo in MCPServerConfig interface.
There's a typo in the env property type definition.
- env: Record<string, unknow>
+ env: Record<string, unknown>📝 Committable suggestion
‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.
| source?: string // Source identifier: "mcprouter" | "modelscope" | undefined(for manual) | |
| sourceId?: string // Source ID: mcprouter uuid or modelscope mcpServer.id | |
| } | |
| env: Record<string, unknown> | |
| source?: string // Source identifier: "mcprouter" | "modelscope" | undefined(for manual) | |
| sourceId?: string // Source ID: mcprouter uuid or modelscope mcpServer.id | |
| } |
🤖 Prompt for AI Agents
In src/shared/types/presenters/legacy.presenters.d.ts around lines 1063 to 1065,
the MCPServerConfig interface has a typo in the env property type; update the
env property to a correct type such as env?: Record<string, string> (or
NodeJS.ProcessEnv if you need Node env typing) so the property is properly typed
as a map of string keys to string values.
There was a problem hiding this comment.
Actionable comments posted: 0
♻️ Duplicate comments (1)
src/shared/types/presenters/legacy.presenters.d.ts (1)
1071-1071: Fix typo in MCPServerConfig interface.There's a typo in the
envproperty type definition.- env: Record<string, unknow> + env: Record<string, unknown>
🧹 Nitpick comments (2)
src/shared/types/presenters/legacy.presenters.d.ts (2)
144-148: Consider renaming maxCompletionTokens to align with existing maxTokens pattern.The interface now has both
maxTokensandmaxCompletionTokenswhich could be confusing. Consider documenting the distinction more clearly or creating a migration path ifmaxCompletionTokensis meant to eventually replacemaxTokens.Add a comment to clarify the relationship:
searchStrategy?: 'turbo' | 'max' // New parameters for GPT-5 series reasoningEffort?: 'minimal' | 'low' | 'medium' | 'high' verbosity?: 'low' | 'medium' | 'high' - maxCompletionTokens?: number // GPT-5 series uses this parameter to replace maxTokens + /** + * Maximum completion tokens for GPT-5 series models. + * When set, this takes precedence over maxTokens for compatible models. + * @since GPT-5 + */ + maxCompletionTokens?: number
1213-1224: Consider documenting NPM registry methods as experimental or internal.These NPM registry management methods appear to be optional (using
?) and might be experimental features. Consider adding JSDoc comments to clarify their status and usage.// NPM Registry management methods /** * @experimental NPM registry configuration methods - subject to change * @internal */ getNpmRegistryStatus?(): Promise<{ currentRegistry: string | null isFromCache: boolean lastChecked?: number autoDetectEnabled: boolean customRegistry?: string }>
📜 Review details
Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro
📒 Files selected for processing (3)
src/main/presenter/configPresenter/index.ts(33 hunks)src/main/presenter/configPresenter/providerModelSettings.ts(61 hunks)src/shared/types/presenters/legacy.presenters.d.ts(32 hunks)
✅ Files skipped from review due to trivial changes (1)
- src/main/presenter/configPresenter/index.ts
🚧 Files skipped from review as they are similar to previous changes (1)
- src/main/presenter/configPresenter/providerModelSettings.ts
🧰 Additional context used
📓 Path-based instructions (6)
**/*.{js,jsx,ts,tsx}
📄 CodeRabbit inference engine (.cursor/rules/development-setup.mdc)
**/*.{js,jsx,ts,tsx}: 使用 OxLint 进行代码检查
Log和注释使用英文书写
Files:
src/shared/types/presenters/legacy.presenters.d.ts
**/*.{ts,tsx}
📄 CodeRabbit inference engine (.cursor/rules/error-logging.mdc)
**/*.{ts,tsx}: 始终使用 try-catch 处理可能的错误
提供有意义的错误信息
记录详细的错误日志
优雅降级处理
日志应包含时间戳、日志级别、错误代码、错误描述、堆栈跟踪(如适用)、相关上下文信息
日志级别应包括 ERROR、WARN、INFO、DEBUG
不要吞掉错误
提供用户友好的错误信息
实现错误重试机制
避免记录敏感信息
使用结构化日志
设置适当的日志级别
Files:
src/shared/types/presenters/legacy.presenters.d.ts
src/shared/**/*.{ts,tsx,d.ts}
📄 CodeRabbit inference engine (.cursor/rules/project-structure.mdc)
共享类型定义放在
shared目录
Files:
src/shared/types/presenters/legacy.presenters.d.ts
**/*.{ts,tsx,js,vue}
📄 CodeRabbit inference engine (CLAUDE.md)
Use English for all logs and comments
Files:
src/shared/types/presenters/legacy.presenters.d.ts
**/*.{ts,tsx,vue}
📄 CodeRabbit inference engine (CLAUDE.md)
Enable and adhere to strict TypeScript typing (avoid implicit any, prefer precise types)
Files:
src/shared/types/presenters/legacy.presenters.d.ts
src/shared/**/*.ts
📄 CodeRabbit inference engine (CLAUDE.md)
Place shared types, utilities, constants, and IPC contract definitions under src/shared/
Files:
src/shared/types/presenters/legacy.presenters.d.ts
🧠 Learnings (12)
📚 Learning: 2025-07-21T01:46:52.880Z
Learnt from: CR
PR: ThinkInAIXYZ/deepchat#0
File: .cursor/rules/llm-agent-loop.mdc:0-0
Timestamp: 2025-07-21T01:46:52.880Z
Learning: Applies to src/main/presenter/llmProviderPresenter/providers/*.ts : Provider files should implement helper methods such as `formatMessages`, `convertToProviderTools`, `parseFunctionCalls`, and `prepareFunctionCallPrompt` as needed for provider-specific logic.
Applied to files:
src/shared/types/presenters/legacy.presenters.d.ts
📚 Learning: 2025-07-21T01:46:52.880Z
Learnt from: CR
PR: ThinkInAIXYZ/deepchat#0
File: .cursor/rules/llm-agent-loop.mdc:0-0
Timestamp: 2025-07-21T01:46:52.880Z
Learning: Applies to src/main/presenter/llmProviderPresenter/providers/*.ts : When a provider does not support native function calling, it must prepare messages using prompt wrapping (e.g., `prepareFunctionCallPrompt`) before making the API call.
Applied to files:
src/shared/types/presenters/legacy.presenters.d.ts
📚 Learning: 2025-09-06T03:07:23.794Z
Learnt from: CR
PR: ThinkInAIXYZ/deepchat#0
File: CLAUDE.md:0-0
Timestamp: 2025-09-06T03:07:23.794Z
Learning: Applies to src/main/presenter/mcpPresenter/inMemoryServers/*.ts : Implement new MCP tools under src/main/presenter/mcpPresenter/inMemoryServers/
Applied to files:
src/shared/types/presenters/legacy.presenters.d.ts
📚 Learning: 2025-07-21T01:46:52.880Z
Learnt from: CR
PR: ThinkInAIXYZ/deepchat#0
File: .cursor/rules/llm-agent-loop.mdc:0-0
Timestamp: 2025-07-21T01:46:52.880Z
Learning: Applies to src/main/presenter/llmProviderPresenter/index.ts : The main Agent loop should buffer text content, handle tool call events, format tool results for the next LLM call, and manage conversation continuation logic.
Applied to files:
src/shared/types/presenters/legacy.presenters.d.ts
📚 Learning: 2025-07-21T01:46:52.880Z
Learnt from: CR
PR: ThinkInAIXYZ/deepchat#0
File: .cursor/rules/llm-agent-loop.mdc:0-0
Timestamp: 2025-07-21T01:46:52.880Z
Learning: Applies to src/main/presenter/llmProviderPresenter/index.ts : `src/main/presenter/llmProviderPresenter/index.ts` should manage the overall Agent loop, conversation history, tool execution via `McpPresenter`, and frontend communication via `eventBus`.
Applied to files:
src/shared/types/presenters/legacy.presenters.d.ts
📚 Learning: 2025-07-21T01:46:52.880Z
Learnt from: CR
PR: ThinkInAIXYZ/deepchat#0
File: .cursor/rules/llm-agent-loop.mdc:0-0
Timestamp: 2025-07-21T01:46:52.880Z
Learning: Applies to src/main/presenter/llmProviderPresenter/streamEvents.ts : Standardized stream events should conform to the `LLMCoreStreamEvent` interface, ideally defined in a shared file such as `src/main/presenter/llmProviderPresenter/streamEvents.ts`.
Applied to files:
src/shared/types/presenters/legacy.presenters.d.ts
📚 Learning: 2025-07-21T01:46:52.880Z
Learnt from: CR
PR: ThinkInAIXYZ/deepchat#0
File: .cursor/rules/llm-agent-loop.mdc:0-0
Timestamp: 2025-07-21T01:46:52.880Z
Learning: Applies to src/main/presenter/llmProviderPresenter/index.ts : The main Agent loop should send standardized `STREAM_EVENTS` (`RESPONSE`, `END`, `ERROR`) to the frontend via `eventBus`.
Applied to files:
src/shared/types/presenters/legacy.presenters.d.ts
📚 Learning: 2025-09-06T03:07:23.794Z
Learnt from: CR
PR: ThinkInAIXYZ/deepchat#0
File: CLAUDE.md:0-0
Timestamp: 2025-09-06T03:07:23.794Z
Learning: Applies to src/main/presenter/llmProviderPresenter/providers/*.ts : Each LLM provider implementation must expose a coreStream method following the standardized event interface
Applied to files:
src/shared/types/presenters/legacy.presenters.d.ts
📚 Learning: 2025-07-21T01:46:52.880Z
Learnt from: CR
PR: ThinkInAIXYZ/deepchat#0
File: .cursor/rules/llm-agent-loop.mdc:0-0
Timestamp: 2025-07-21T01:46:52.880Z
Learning: Applies to src/main/presenter/llmProviderPresenter/providers/*.ts : Provider implementations must use a `coreStream` method that yields standardized stream events to decouple the main loop from provider-specific details.
Applied to files:
src/shared/types/presenters/legacy.presenters.d.ts
📚 Learning: 2025-07-21T01:46:52.880Z
Learnt from: CR
PR: ThinkInAIXYZ/deepchat#0
File: .cursor/rules/llm-agent-loop.mdc:0-0
Timestamp: 2025-07-21T01:46:52.880Z
Learning: Applies to src/main/presenter/llmProviderPresenter/providers/*.ts : Each file in `src/main/presenter/llmProviderPresenter/providers/*.ts` should handle interaction with a specific LLM API, including request/response formatting, tool definition conversion, native/non-native tool call management, and standardizing output streams to a common event format.
Applied to files:
src/shared/types/presenters/legacy.presenters.d.ts
📚 Learning: 2025-07-21T01:46:52.880Z
Learnt from: CR
PR: ThinkInAIXYZ/deepchat#0
File: .cursor/rules/llm-agent-loop.mdc:0-0
Timestamp: 2025-07-21T01:46:52.880Z
Learning: Applies to src/main/presenter/llmProviderPresenter/providers/*.ts : All provider implementations must parse provider-specific data chunks and yield standardized events for text, reasoning, tool calls, usage, errors, stop reasons, and image data.
Applied to files:
src/shared/types/presenters/legacy.presenters.d.ts
📚 Learning: 2025-09-04T11:03:30.150Z
Learnt from: CR
PR: ThinkInAIXYZ/deepchat#0
File: .cursor/rules/provider-guidelines.mdc:0-0
Timestamp: 2025-09-04T11:03:30.150Z
Learning: Integrate via the llmProviderPresenter entry point (src/main/presenter/llmProviderPresenter/index.ts) as the related implementation entry
Applied to files:
src/shared/types/presenters/legacy.presenters.d.ts
🧬 Code graph analysis (1)
src/shared/types/presenters/legacy.presenters.d.ts (4)
src/shared/types/presenters/llmprovider.presenter.d.ts (4)
MODEL_META(27-42)LLM_PROVIDER(44-59)OllamaModel(93-113)KeyStatus(75-81)src/shared/types/presenters/thread.presenter.d.ts (2)
CONVERSATION_SETTINGS(15-30)MESSAGE_METADATA(46-58)src/main/presenter/configPresenter/shortcutKeySettings.ts (1)
ShortcutKeySetting(36-36)src/shared/types/core/mcp.ts (4)
MCPContentItem(35-35)MCPTextContent(37-40)MCPImageContent(42-46)MCPResourceContent(48-56)
🔇 Additional comments (6)
src/shared/types/presenters/legacy.presenters.d.ts (6)
69-74: LGTM! Well-structured additions to the Prompt interface.The new properties enhance the Prompt interface with useful metadata fields for managing prompts from different sources with tracking capabilities.
242-244: Well-structured tab lifecycle methods added.The new renderer process tab event handling methods follow good async patterns and integrate properly with the existing tab management architecture.
298-321: Comprehensive message management methods added to ISQLitePresenter.The new methods provide a complete API for message operations including attachments, queries by parent ID, and batch deletions. The method signatures are consistent with the existing interface patterns.
510-515: Excellent atomic operation interfaces for provider management.The atomic operation methods follow good patterns for batch updates and transactional operations, which will help prevent race conditions and ensure data consistency.
972-978: LGTM! Expanded UpdateStatus enum with appropriate states.The additional states ('not-available', 'downloading', 'downloaded', 'error') properly complete the update lifecycle state machine.
1080-1081: Good addition of source tracking fields for MCP servers.The
sourceandsourceIdfields enable proper tracking of MCP server origins, which is essential for managing servers from different sources (mcprouter, modelscope, manual).
There was a problem hiding this comment.
Actionable comments posted: 0
Caution
Some comments are outside the diff and can’t be posted inline due to platform limitations.
⚠️ Outside diff range comments (1)
src/main/presenter/configPresenter/aes.ts (1)
3-5: Security: consider migrating from AES‑256‑CBC to AES‑256‑GCM (AEAD) in a follow‑up PRCBC provides confidentiality but not integrity; GCM adds authentication (authTag), preventing malleability. Given this is used in main process config, this is a worthwhile upgrade.
Minimal outline (illustrative):
-const ALGORITHM = 'aes-256-cbc' +const ALGORITHM = 'aes-256-gcm' @@ - static encrypt(plainText: string, key: Buffer, iv?: Buffer): { cipherText: string; iv: string } { + static encrypt(plainText: string, key: Buffer, iv?: Buffer): { cipherText: string; iv: string; authTag: string } { @@ - const cipher = crypto.createCipheriv(ALGORITHM, key, usedIv) + const cipher = crypto.createCipheriv(ALGORITHM, key, usedIv) @@ - return { - cipherText: encrypted, - iv: usedIv.toString('hex') - } + const authTag = cipher.getAuthTag().toString('hex') + return { cipherText: encrypted, iv: usedIv.toString('hex'), authTag } @@ - static decrypt(cipherText: string, key: Buffer, iv: string): string { + static decrypt(cipherText: string, key: Buffer, iv: string, authTag: string): string { @@ - const decipher = crypto.createDecipheriv(ALGORITHM, key, ivBuffer) + const decipher = crypto.createDecipheriv(ALGORITHM, key, ivBuffer) + decipher.setAuthTag(Buffer.from(authTag, 'hex'))Note: version as a new API to avoid breaking existing data; add migration path.
Also applies to: 30-55, 62-82
🧹 Nitpick comments (8)
src/main/presenter/configPresenter/aes.ts (8)
20-24: Clarify salt format and PBKDF2 semantics in docsCallers may pass hex produced by generateSalt(); note that pbkdf2Sync treats string salt as UTF‑8 text, not hex bytes. Add this to the JSDoc to prevent accidental format mismatches across services.
Apply this doc tweak:
- * @param salt Salt value - * @returns Derived key Buffer + * @param salt Salt value (hex string returned by generateSalt()). + * @returns Derived key (Buffer). Note: pbkdf2Sync interprets string salts as UTF‑8 text. + * If you need byte-equivalent salt across languages, persist raw bytes or pass Buffer.from(salt, 'hex').
30-35: Doc: spell out optional IV behavior and return encodingsMinor clarity: explicitly state that a random IV is generated when omitted and both outputs are hex strings.
- * @param iv Initialization vector (optional) - * @returns Object containing ciphertext and IV + * @param iv Initialization vector (Buffer, optional). If omitted, a random IV is generated. + * @returns Object containing ciphertextHex and ivHex (both hexadecimal strings)
56-58: Preserve original error via Error.cause for better debuggingKeeps the original stack/message chain without logging sensitive data.
- throw new Error( - `Encryption failed: ${error instanceof Error ? error.message : 'Unknown error'}` - ) + const err = error instanceof Error ? error : new Error(String(error)) + throw new Error(`Encryption failed: ${err.message}`, { cause: err })
63-68: Doc: be explicit about iv parameter formatSmall wording tweak to remove ambiguity.
- * @param iv Initialization vector (hexadecimal format) + * @param iv Initialization vector (ivHex, 32 hex characters)
69-73: Validate hex inputs early to fail fast with actionable errorsPrevents confusing crypto errors and aligns with “input validation & schema contracts”.
static decrypt(cipherText: string, key: Buffer, iv: string): string { try { + if (!/^[0-9a-f]{32}$/i.test(iv)) { + throw new Error('Invalid IV format: expected 32 hex characters') + } + if (!/^[0-9a-f]+$/i.test(cipherText)) { + throw new Error('Invalid ciphertext format: expected hex string') + } const ivBuffer = Buffer.from(iv, 'hex') const decipher = crypto.createDecipheriv(ALGORITHM, key, ivBuffer)
80-80: Also preserve cause on decryption errorsConsistent with encrypt().
- `Decryption failed: ${error instanceof Error ? error.message : 'Ciphertext may be tampered or key is incorrect'}` + `Decryption failed: ${error instanceof Error ? error.message : 'Ciphertext may be tampered or key is incorrect'}`, + { cause: error instanceof Error ? error : new Error(String(error)) }
20-27: KDF strength and compatibility check (non-blocking)ITERATIONS=10,000 for PBKDF2‑SHA512 is on the low side in 2025; consider scrypt (crypto.scryptSync) or increasing iterations if performance budget allows. Confirm compatibility with existing persisted data before any change.
36-43: Optional: Add explicit encrypt overload requiring IV
No internalAESHelper.encryptusages found; since the IV parameter is now optional in the public API, consider adding an overload signature that enforces a 3-argument call to preserve IntelliSense clarity.
📜 Review details
Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro
📒 Files selected for processing (1)
src/main/presenter/configPresenter/aes.ts(3 hunks)
🧰 Additional context used
📓 Path-based instructions (7)
**/*.{js,jsx,ts,tsx}
📄 CodeRabbit inference engine (.cursor/rules/development-setup.mdc)
**/*.{js,jsx,ts,tsx}: 使用 OxLint 进行代码检查
Log和注释使用英文书写
Files:
src/main/presenter/configPresenter/aes.ts
src/{main,renderer}/**/*.ts
📄 CodeRabbit inference engine (.cursor/rules/electron-best-practices.mdc)
src/{main,renderer}/**/*.ts: Use context isolation for improved security
Implement proper inter-process communication (IPC) patterns
Optimize application startup time with lazy loading
Implement proper error handling and logging for debugging
Files:
src/main/presenter/configPresenter/aes.ts
src/main/**/*.ts
📄 CodeRabbit inference engine (.cursor/rules/electron-best-practices.mdc)
Use Electron's built-in APIs for file system and native dialogs
Files:
src/main/presenter/configPresenter/aes.ts
**/*.{ts,tsx}
📄 CodeRabbit inference engine (.cursor/rules/error-logging.mdc)
**/*.{ts,tsx}: 始终使用 try-catch 处理可能的错误
提供有意义的错误信息
记录详细的错误日志
优雅降级处理
日志应包含时间戳、日志级别、错误代码、错误描述、堆栈跟踪(如适用)、相关上下文信息
日志级别应包括 ERROR、WARN、INFO、DEBUG
不要吞掉错误
提供用户友好的错误信息
实现错误重试机制
避免记录敏感信息
使用结构化日志
设置适当的日志级别
Files:
src/main/presenter/configPresenter/aes.ts
src/main/**/*.{ts,js,tsx,jsx}
📄 CodeRabbit inference engine (.cursor/rules/project-structure.mdc)
主进程代码放在
src/main
Files:
src/main/presenter/configPresenter/aes.ts
**/*.{ts,tsx,js,vue}
📄 CodeRabbit inference engine (CLAUDE.md)
Use English for all logs and comments
Files:
src/main/presenter/configPresenter/aes.ts
**/*.{ts,tsx,vue}
📄 CodeRabbit inference engine (CLAUDE.md)
Enable and adhere to strict TypeScript typing (avoid implicit any, prefer precise types)
Files:
src/main/presenter/configPresenter/aes.ts
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (1)
- GitHub Check: build-check (x64)
🔇 Additional comments (2)
src/main/presenter/configPresenter/aes.ts (2)
12-14: LGTM: English translation for salt docsClear and correct.
86-88: LGTM: English translation for IV docsClear and consistent.
* fix: chat confg need sync to new value when change model in chat (#823) * fix: gemini nano banana not read image from chatinput * fix: remove file-type ,this will mark html as audio (#824) * fix: Solve the problem of the window becoming larger when dragging floating button under Windows (#826) * fix: improve OpenAI compatible provider compatibility with third-party services * chore: update vue-renderer-markdown to v0.0.35 (#827) * refactor: remove custom-prompts-server and decouple prompts from MCP lifecycle (#829) - Remove custom-prompts-server service entirely including configuration - Implement data source merging in MCP store to load prompts from both config and MCP - Add upgrade migration logic for versions < 0.3.5 to clean up old configurations - Ensure @ operations work independently of MCP state through config data source - Update CLAUDE.md with prompt management guidelines The @ prompt functionality now works completely independently of MCP, loading custom prompts directly from config storage while maintaining full compatibility with existing MCP prompt sources. * chore: add better log for mcp tool name * feat: ux update (#831) * feat: ux update * chore: format * feat: setting provider ux update (#832) * feat: add current datetime to system prompt - Add current date and time information to user's system prompt when not empty - Include complete datetime with timezone, year, month, day, hour, minute, second - Apply to both preparePromptContent and buildContinueToolCallContext methods - Update token calculation to use processed system prompt for accuracy - Skip datetime addition for image generation models and empty prompts * refactor: extract system prompt datetime enhancement to common method - Add enhanceSystemPromptWithDateTime private method to reduce code duplication - Update both preparePromptContent and buildContinueToolCallContext to use common method - Improve code maintainability and ensure consistency across all system prompt processing - Add comprehensive JSDoc documentation for the new method * fix(markdown): auto-wrap hide scroll (#833) * feat: add enable_thinking parameter support for siliconcloud (#835) * chore: bump deps (#834) * chore: bump up deps * fix: change win arm to wasm32 sharp * chore: revert sharp config * feat: drop windows arm support * fix(coderabbitai): remove action for windows arm64 * refactor: adjust scroll-to-bottom button glow effect (#837) * feat: add mutual exclusive confirmation dialogs for DeepSeek-V3.1 (#838) * feat: add sanitizeText utility for clipboard data handling (#843) * feat: support canary upgrade (#840) * feat: support canary upgrade * feat: add update channel selection for stable/canary versions - Add update channel configuration to config presenter - Implement dynamic URL switching for version checks and downloads - Add UI selector in AboutUsSettings for channel selection - Support stable and canary update channels with different endpoints - Add internationalization support for channel selection * chore: change contributors charts to openomy * refactor: improve update channel handling and network resilience - Sanitize update channel input to prevent invalid values - Add 10-second timeout to version check requests to prevent hanging - Treat unknown channels as 'upgrade' (stable) for robustness - Improve error handling for network timeouts and invalid channels * feat: implement thinking parameter support for doubao models (#842) * feat: implement dedicated DashScope provider with enable_thinking support (#844) * feat: implement dedicated DashScope provider with enable_thinking support * refactor: remove unnecessary API key status check methods from DashscopeProvider * fix: prioritize provider.id over apiType in createProviderInstance (#846) * feat: add qwen3 thinking budget support (#848) * feat: add qwen3 thinking budget support * fix: add missing gemini.onlySupported key in zh-CN locale * refactor: merge duplicate silicon case statements in provider creation * feat: add qwen3 thinking budget support in ChatConfig (#849) * refactor(types): 🚀split monolithic presenter.d.ts into strict per-domain *.presenter.d.ts + typed core layer (#847) * docs: Add strong-typed message architecture and implementation guidelines - Update message-architecture.md with strong-typed design, remove compatibility compromises - Add event-to-UI mapping table and rendering checklist for contract compliance - Create presenter-split-plan.md for type system refactoring - Add implementation-tasks.md with phased rollout plan - Create .cursor/rules/provider-guidelines.mdc for provider implementation guidance This establishes a foundation for strong-typed, maintainable message architecture without legacy compatibility debt. * types(core): add strong-typed core types and barrel exports\n\n- Add usage.ts (UsageStats, RateLimitInfo)\n- Add llm-events.ts (discriminated union + factories + guards)\n- Add agent-events.ts (LLMAgentEvent*, shared types)\n- Add chat.ts (Message/AssistantMessageBlock/UserMessageContent)\n- Add mcp.ts (MCP content/response/definition)\n- Add types/index.d.ts barrel exports\n\nNo compatibility shims included by design. * refactor(types): move legacy presenters and add @shared/presenter stub; keep legacy exports in types/index to maintain build\n\n- Move legacy presenters to src/shared/types/presenters/legacy.presenters.d.ts\n- Add src/shared/presenter.d.ts re-export stub\n- Temporarily export only legacy presenters from types/index.d.ts to avoid type mismatches\n- Update implementation-tasks.md (Stage 2 done)\n\nNext: progressive import updates to new cores, then flip barrel to new types and delete legacy. * refactor(types): alias legacy core message types to strong-typed core (B-plan)\n\n- legacy.presenters.d.ts now re-exports ChatMessage/ChatMessageContent/LLMAgentEvent/LLMAgentEventData/LLMCoreStreamEvent from core\n- Prepares for flipping interfaces without changing import sites * docs(tasks): mark Phase 3 as completed\n\n- Successfully implemented B-plan approach with type aliasing\n- Unified core message types (ChatMessage, LLMAgentEvent, LLMCoreStreamEvent)\n- Created core model types and maintained build compatibility\n- All type checks passing with no breaking changes * fix(types): revert to legacy-only exports and fix MESSAGE_ROLE\n\n- Revert types/index.d.ts to only export legacy presenters\n- Remove 'function' from MESSAGE_ROLE to match core definition\n- Maintain build stability while preserving type unification work * feat(provider): implement factory functions for LLMCoreStreamEvent\n\n- Replace all manual event creation with createStreamEvent factory functions\n- Ensures type safety and consistent event structure\n- Updated OpenAICompatibleProvider with strong-typed events:\n - text, reasoning, toolCallStart, toolCallChunk, toolCallEnd\n - error, usage, stop, imageData events\n- All type checks passing\n- Phase 4.1 completed: Provider now outputs LLMCoreStreamEvent with factory construction * feat(provider): update OllamaProvider with factory functions\n\n- Replace all manual event creation with createStreamEvent factory functions\n- Ensures consistent tool_call_start → tool_call_chunk → tool_call_end sequence\n- Updated all event types: text, reasoning, toolCall*, usage, stop, error\n- Maintains proper tool call ID aggregation and sequencing\n- Phase 4.2 completed: Tool call sequences now strictly follow start/chunk/end pattern * docs(tasks): update Phase 4 progress\n\n- Completed Provider strong-typed event output with factory functions\n- Completed tool_call_* strict start/chunk/end sequences\n- Completed usage event sent before stop in all providers\n- Updated implementation tasks document with current progress * feat(phase4): complete Provider strong-typed event integration\n\n- Added factory functions import to AwsBedrockProvider\n- Updated error handling to use createStreamEvent.error() + createStreamEvent.stop('error')\n- Created comprehensive unit tests for LLMCoreStreamEvent factory functions\n- Tests validate: event creation, tool call sequences, error+stop patterns, type guards\n- All 12 core event tests passing ✅\n\n## Phase 4 Completed:\n- ✅ Provider strong-typed event output (factory construction)\n- ✅ tool_call_* strict start/chunk/end sequences with ID aggregation\n- ✅ Usage events sent before stop in all providers\n- ✅ Rate limit events (handled at Presenter layer)\n- ✅ Unified error + stop event patterns\n- ✅ Comprehensive unit tests for sequences/fields/boundaries * feat(phase5): complete Agent & UI alignment ## Phase 5 Completed: Agent & UI Alignment ✅ ### 1. Agent Layer Enhancement - ✅ Agent consumes only CoreEvent and outputs LLMAgentEvent - ✅ Strict separation of response/error/end event types - ✅ Added rate_limit event handling in Agent layer - ✅ Maintained proper event transformation pipeline ### 2. UI Layer Unification - ✅ Removed standalone tool_call_permission type - ✅ Unified to action + action_type pattern - ✅ Updated all UI components and thread presenter logic - ✅ Preserved backward compatibility with conditional rendering ### 3. Renderer Mapping & Testing - ✅ Created comprehensive renderer contract tests (17 tests) - ✅ Added message block data structure snapshot tests (14 tests) - ✅ Validated event-to-UI block mapping compliance - ✅ Ensured consistent status transitions and type safety ### Key Technical Achievements: - **Type Safety**: All event transformations now type-safe - **Consistency**: Unified action_type handling across codebase - **Testing**: 31 new tests covering contracts and snapshots - **Architecture**: Clean separation between Agent/UI concerns - **Quality**: All lint, format, and type checks passing ✅ ### Files Modified: - Agent layer: llmProviderPresenter/index.ts - UI components: MessageItemAssistant.vue - Thread logic: threadPresenter/index.ts - Type definitions: shared/chat.d.ts - Tests: rendererContract.test.ts, messageBlockSnapshot.test.ts Ready for Phase 6: Quality & Tools 🚀 * feat(phase6): complete Quality & Tools phase ## Phase 6 Completed: Quality & Tools ✅ ### 1. Table-Driven Contract Tests - ✅ Created comprehensive event mapping contract tests (25 test cases) - ✅ Validated all event types from architecture mapping table - ✅ Verified status transitions and type constraints - ✅ Added tool call ID aggregation and lifecycle validation - ✅ Implemented error recovery pattern testing ### 2. Performance Evaluation & Stress Testing - ✅ Large text content processing (50KB < 10ms) - ✅ Large reasoning content handling (100KB < 15ms) - ✅ Large image data processing (1MB < 20ms) - ✅ Batch image processing (100 images < 50ms) - ✅ High-frequency event processing (1000 events < 100ms) - ✅ Mixed event type handling (500 events < 80ms) - ✅ Memory leak prevention (5000 events < 500ms) - ✅ Extreme parameter handling (10KB params < 5ms) - ✅ Concurrent processing simulation (10 workers < 100ms) ### Key Technical Achievements: - **Comprehensive Testing**: 67 tests passing across all scenarios - **Performance Validation**: All benchmarks meet performance targets - **Type Safety**: Full TypeScript compliance (0 errors) - **Code Quality**: Lint and format checks passing ✅ - **Architecture Compliance**: All mapping table rules verified - **Stress Testing**: System handles extreme loads efficiently ### Test Coverage Summary: - Event mapping contract tests: 25 tests ✅ - Renderer contract tests: 17 tests ✅ - Performance evaluation tests: 9 tests ✅ - Core event factory tests: 12 tests ✅ - Message block snapshot tests: 14 tests ✅ - Shell integration tests: 8 tests ✅ ### Files Added: - test/renderer/message/eventMappingTable.test.ts (comprehensive mapping validation) - test/renderer/message/performanceEvaluation.test.ts (stress & performance testing) Ready for production deployment with full quality assurance! 🚀 * fix(providers): complete strong-typed event integration across all providers * fix(vitest): modify test case * fix: default settings * chore: update doc * fix(ci): remove duplicate check in pr ci * feat: add pnpm cache for pr check * fix(ci): pr check with pnpm cache * fix(ci): change cache key to package.json * ci: remove pnpm cache * feat: add glow breathing effect to scroll-to-bottom button (#850) * feat: add glow breathing effect to scroll-to-bottom button * fix: ensure exclusive display between MessageList and ArtifactDialog * fix: refine MessageList–ArtifactDialog interaction logic; correct z-order between dialog and ArtifactDialog * chore: prettier .vue * feat: add web search support with configurable options for dashscope (#851) * feat: add web search support with configurable options for dashscope * fix: correct qwen model parameters to match official documentation * feat: add web search support with configurable options for dashscope (#852) * feat: add web search support with configurable options for dashscope * fix: correct qwen model parameters to match official documentation * feat: add search configuration support to ChatConfig components * fix: fix enableSearch state sync and parameter passing issues * fix: preserve search settings during data import * feat: add dashscope commercial models to enable_thinking support (#853) * feat: add search capability icon for model list (#854) * feat: add search capability icon for model list * fix: clear search settings when creating new conversation * feat(markdown): Thinking panel now supports LaTeX compilation for mathematical formulas & markdown performance optimization (#857) * feat(markdown): 思考栏支持数学公式latex编译显示 & markdown 性能优化 close: #845 * chore: lint * chore(ai): update claude code rules and agents * fix(ui): revert Dialog z-index to z-50 to fix dropdown visibility Reverts DialogContent z-index from z-[100] back to z-50 to resolve issue where Select and EmojiPicker dropdowns were not appearing. This maintains proper layering hierarchy without breaking other UI components. * feat: upgrade vue-renderer-markdown & vue-use-monaco (#862) 1. ignore math-block warning 2. Compatible with the syntax issues of mermaid produced by AI, greatly reducing the probability of mermaid rendering errors * feat(dashscope): add qwen3-max-preview model (#865) * fix: mcp params support more types (#861) * feat(mcp): enhance tool parameter display with enum type support - Add enum parameter type detection and enhanced display - Show enum parameters with distinct blue badge styling (enum(string), array[enum(string)]) - Display allowed values for both direct enum and array item enum parameters - Add i18n support for "allowedValues" and "arrayItemValues" labels - Maintain consistent UI design with existing parameter display patterns - Improve developer experience when debugging MCP tools with constrained parameters * fix: enum params support * fix(context-menu): handle local file paths in image save functionality - Fix URL parsing error when saving images from local file paths - Add proper handling for http/https URLs, file:// URLs, and direct file paths - Use fs.promises for reading local files instead of net.fetch for invalid URLs - Prevent "Failed to parse URL from" error when saving local images * fix(context-menu): improve URL handling robustness in image save - Add try-catch around net.fetch to handle invalid URLs gracefully - Implement fallback methods for file:// URLs and local file paths - Add debug logging to track source URL values for troubleshooting - Prevent "Failed to parse URL from" errors with comprehensive URL validation * fix(context-menu): handle empty srcURL in image save functionality - Add comprehensive URL detection when srcURL is empty - Implement fallback URL sources (linkURL, pageURL) for better compatibility - Add debug logging to track all available context menu parameters - Prevent "Failed to parse URL from" errors caused by empty URLs - Provide clear error message when no valid URL can be found * chore: format code * fix: ai review * fix: prevent @ symbol remaining when deleting mentions (#867) * Merge commit from fork * feat: implement separated system and custom prompt management (#868) * feat: implement separated system and custom prompt management * style: code fmt * fix: add migration for legacy default_system_prompt to system_prompts * feat: add Moonshot model configurations (#869) * refactor: translate all cn comments and log to en (#871) * refactor: translate all cn comments and log to en * fix: revert translate in params * feat: add reasoning support for Grok thinking models (#873) * feat: add reasoning support for Grok thinking models * fix: code lint * fix: escaping character issue --------- Co-authored-by: zerob13 <zerob13@gmail.com> --------- Co-authored-by: hllshiro <40970081+hllshiro@users.noreply.github.com> Co-authored-by: yyhhyyyyyy <yyhhyyyyyy8@gmail.com> Co-authored-by: xiaomo <wegi866@gmail.com> Co-authored-by: Simon He <57086651+Simon-He95@users.noreply.github.com> Co-authored-by: luy <12696648@qq.com>
Pull Request Description
Is your feature request related to a problem? Please describe.
Collaborators found it challenging to follow comments and debug logs in the codebase, as a significant number were written in Chinese. This language barrier affected international teamwork and maintainability.
Describe the solution you'd like
This PR systematically translates all Chinese comments and log messages in the project into professional, clear English. No business logic or function has been changed—only comments and log/output strings have been touched. The goal is to ensure international contributors can efficiently read, review, and contribute to the codebase.
UI/UX changes for Desktop Application
There are no UI/UX changes introduced in this PR.
Platform Compatibility Notes
No platform-specific compatibility changes. All changes are purely related to in-code documentation and log outputs.
Additional context
src/下面是对应的中文 PR description,你可以和英文版二选一或者中英双语都填进 description 区域:
PR 描述
与某个问题相关吗?请简要说明。
项目中有大量注释和调试日志为中文,影响了国际协作及后期代码维护,给非中文开发者带来了理解成本。
解决方案说明
本 PR 系统性地将项目中所有的中文注释、日志消息翻译为更规范、易理解的英文注释和日志输出。没有任何业务逻辑或代码功能变更,仅改动了注释与 log 字符串。目标是让国际开发者可以高效阅读和参与代码贡献。
桌面端应用的 UI/UX 变更
本 PR 未引入任何 UI/UX 相关变更。
平台兼容性说明
未涉及平台兼容性调整,所有修改均为代码内部文档和日志内容。
补充说明
Summary by CodeRabbit
New Features
Improvements