release/0.2.5824: CLI parsing/status/exit-code regressions

[justrach]

Summary

On the release/0.2.5824 branch/local build, several CLI behaviors are either unsupported, confusing, or inconsistent with the documented CLI surface. These were found while smoke-testing the installed local binary:

$ codedb --version
codedb 0.2.5824

The release branch currently needed a local embedded semver correction in src/release_info.zig to report 0.2.5824; upstream origin/release/0.2.5824 still showed 0.2.5823 when tested.

Environment

• Branch: release/0.2.5824
• Binary path: /opt/homebrew/bin/codedb
• Platform: macOS arm64
• Zig: 0.16.0

Confirmed CLI issues

1. codedb status is unsupported

MCP exposes status-style functionality, but CLI does not support a matching status command.

$ codedb status
# exits 1 and prints general usage

Relevant code:

• CLI usage list: src/main.zig:1981-2055
• command recognition list excludes status: src/main.zig:1728-1734

Potential fix:

• Add status to the CLI command list and implement a read-only status renderer, or explicitly document that status is MCP-only.
• A minimal CLI status could print indexed file count, store sequence, and scan/snapshot state, mirroring codedb_status.

2. deps flags before the path are misparsed

This form is documented naturally by usage as deps <path> [--depends-on] ..., but many CLI users place flags before positional arguments. Currently that misparses the flag as the path:

$ codedb deps --depends-on src/main.zig
--depends-on is imported by:
  (none)

did you mean:
  ...

The working form is:

$ codedb deps src/main.zig --depends-on

Relevant code:

• runCliTool stores the first post-command arg as path before scanning flags: src/mcp.zig:3883-3920

Potential fix:

• Parse deps args in any order: consume known flags first, identify the first non-flag as path, and validate unknown flags.
• Ensure --max-depth consumes its numeric argument regardless of flag position.

3. Malformed read -L range is treated as a file path

$ codedb read -L nope src/main.zig
✗ not indexed and disk read failed: -L

Expected: a clear range validation error such as invalid line range: nope.

Relevant code:

• read option parsing breaks on malformed -L, then falls through with -L as the path: src/main.zig:364-394

Potential fix:

• When -L/--lines is present, require the next token and validate FROM-TO immediately.
• On parse failure, return exit 1 with a specific usage/error message.

4. Reversed read -L range exits 0 with empty content

$ codedb read -L 20-1 src/main.zig
✓ src/main.zig  zig  L20-1  ...
# no content, exit 0

Expected: reject reversed ranges or normalize intentionally.

Relevant code:

• read range parsing/output: src/main.zig:364-488

Potential fix:

• After parsing, validate start <= end unless end is EOF/std.math.maxInt(u32).
• Return exit 1 with invalid line range: start must be <= end.

5. No-result commands often exit 0

The following no-result cases exit successfully even though they report no match/entry:

codedb find __DefinitelyMissingSymbol__
codedb symbol __DefinitelyMissingSymbol__
codedb word __DefinitelyMissingIdentifier__
codedb file zzzzzzzzzzzzzzzz
codedb glob 'no/such/**/*.zig'
codedb ls no/such/dir
codedb outline does-not-exist.zig

This may be intentional for search-like commands, but it is inconsistent with missing required args exiting 1. It also makes shell scripting less reliable.

Potential fix:

• Decide and document CLI exit-code semantics. Suggested split:
  • Usage/invalid input: exit 2 or 1
  • Operational errors/security blocked paths: exit 1
  • Valid query with zero results: either exit 0 consistently and document it, or exit 1 consistently for commands whose purpose is to find a single required entity (find, outline, read).

Safety checks that passed

These worked as expected:

codedb read /etc/passwd      # blocked
codedb read ../README.md     # blocked
codedb read .env             # blocked
codedb / search buildSnapshot # rejected as unsafe root

Relevant safety implementation for read: src/main.zig:395-411.

Suggested implementation plan

1. Add argument-parsing helpers for command options instead of ad hoc positional parsing.
2. Fix deps to support flags before/after path and reject unknown flags.
3. Fix read -L validation for malformed, missing, zero, and reversed ranges.
4. Add or explicitly document status CLI behavior.
5. Define exit-code semantics and add tests for missing args, invalid args, zero results, and blocked reads.
6. Add release regression tests around the above cases.

Tested working examples

codedb tree
codedb outline src/main.zig
codedb find buildSnapshot
codedb search buildSnapshot
codedb search --regex 'buildSnapshot|codesign'
codedb search --paths-only buildSnapshot
codedb word Explorer
codedb read src/release_info.zig
codedb read -L 1-3 src/release_info.zig
codedb hot
codedb symbol main
codedb callers buildSnapshot
codedb deps src/main.zig
codedb deps src/main.zig --depends-on
codedb glob 'src/*.zig'
codedb ls src
codedb file releasinfo
codedb context 'check CLI search and outline commands'

[justrach]

Additional CLI findings from follow-up audit

A broader non-destructive CLI audit found a few more argument-parsing and exit-code issues that fit this same regression bucket. These may be worth fixing alongside the original report.

6. MCP-bridged CLI errors can print error: but still exit 0

Examples observed:

codedb /Users/blackfloofie/codedb context ab
# exit 0, output: error: task must be 3-1024 chars

codedb /Users/blackfloofie/codedb glob ''
# exit 0, output: error: empty pattern

codedb /Users/blackfloofie/codedb file ''
# exit 0, output: error: empty query

Likely cause: CLI bridge returns success after void MCP-style handlers append errors.

Relevant code:

• runCliTool bridge: src/mcp.zig:3873-3948
• context length error: src/mcp.zig:2018-2027
• empty query error: src/mcp.zig:3726-3732
• empty glob pattern: src/mcp.zig:3804-3825

Potential fix:

• Make bridged handlers return status, or have runCliTool pre-validate args and return 1 for handler-level errors.

7. More invalid read -L ranges are silently accepted/defaulted

Examples observed:

codedb read -L 0-3 src/main.zig
# exit 0, header says L0-3, prints lines 1-3

codedb read -L abc-10 src/main.zig
# exit 0, defaults to L1-10

codedb read -L 10-abc src/main.zig
# exit 0, treats as L10-EOF

Relevant code:

• CLI parser silently maps parse failures to null: src/main.zig:364-389
• range defaults are applied later: src/main.zig:442-488
• MCP already has stricter validation: src/mcp.zig:2492-2519

Potential fix:

• Reuse or mirror MCP line-range validation in the CLI.
• Require start/end to parse cleanly, require values >= 1, and reject reversed ranges.

8. CLI read ignores flags after the path

Example observed:

codedb read src/main.zig -L 1-3
# exit 0, dumps the whole file; trailing -L is ignored

Relevant code:

• option parsing stops at first non-option path: src/main.zig:364-389

Potential fix:

• Either document strict read [flags] <path> ordering, or parse options throughout and reject unused trailing args.

9. CLI search flag handling is narrow/misleading

Examples observed:

codedb search --max-results 1 allocator
# exit 0, searches for literal "--max-results"

codedb search allocator --paths-only
# exit 0, trailing flag ignored

codedb search ''
# exit 0, "no results"

Relevant code:

• CLI only recognizes --regex and --paths-only before the query: src/main.zig:255-276
• MCP has richer validation/default handling: src/mcp.zig:1475-1498

Potential fix:

• Reject unknown flags instead of treating them as query text.
• Support documented useful options such as max-results/path filtering if desired.
• Reject empty query explicitly.

10. Invalid regex is swallowed

Example observed:

codedb search --regex '['
# exit 0, reports no results

Relevant code:

• regex compile failure is swallowed: src/explore.zig:5015-5017

Potential fix:

• Return/surface regex compile errors so CLI/MCP can report invalid regex instead of no results.

11. deps silently ignores/coerces bad flags

Examples observed:

codedb deps src/main.zig --badflag
# exit 0, normal output; unknown flag ignored

codedb deps src/main.zig --transitive --max-depth notnum
# exit 0, bad depth coerced to 1

Relevant code:

• deps parser ignores unknown flags and defaults parse failures to 1: src/mcp.zig:3905-3920

Potential fix:

• Reject unknown flags.
• Require --max-depth to be a positive integer.

12. --no-telemetry is documented as global but is not parsed globally

Examples observed:

codedb --no-telemetry /Users/blackfloofie/codedb tree
# exit 1, cannot resolve root: --no-telemetry

codedb /Users/blackfloofie/codedb --no-telemetry tree
# exit 1, no useful output

Relevant code:

• --config-file is stripped globally: src/main.zig:847-870
• --no-telemetry is only accepted in MCP flag handling: src/main.zig:917-943

Potential fix:

• Strip/handle --no-telemetry globally before positional parsing, or change docs/help to limit it to the supported command context.

13. Extra args are often ignored

Example observed:

codedb tree unexpected-extra
# exit 0, normal tree output

Relevant code:

• tree branch ignores args: src/main.zig:165-174

Potential fix:

• Add arity validation per command and reject unused args to avoid masking typos.

Performance note from the same audit

Representative median timings on this repo (608 indexed files):

Command	CLI cold	CLI warm/proxy	MCP
tree	12.52 ms	4.25 ms	0.277 ms
search allocator	10.51 ms	2.98 ms	0.115 ms
word runQuery	10.52 ms	2.10 ms	0.028 ms
outline src/main.zig	9.99 ms	2.16 ms	0.112 ms
read -L 1-60 src/main.zig	10.88 ms	2.01 ms	0.040 ms
deps src/main.zig	10.30 ms	1.93 ms	0.011 ms
context ...	24.88 ms	3.17 ms	1.061 ms

Takeaway: warm CLI proxy helps, but repeated direct MCP calls are still significantly faster.

[justrach]

Closing — all reported CLI regressions are fixed on release/0.2.5824 with regression tests in src/test_mcp.zig.

Verified fixes:

1. codedb status — CLI command wired up (mirrors codedb_status)
2. deps --depends-on <path> — flags may appear before or after the path (parseDepsArgs)
3. read -L malformed ranges — clear validation error instead of treating -L as a path
4. read -L reversed ranges — rejected with exit 1 (parseLineRange)
5. Zero-result exit codes — intentionally exit 0 for search-like commands (documented in tests)
6. --no-telemetry — stripped globally before positional parsing
7. Extra args on arity-zero commands — tree/hot/status now reject unused positionals (item 13)

Smoke-tested on the local 0.2.5824 build; zig build test passes including all issue-528 tests.