fix(terminal): use Windows cmd.exe compatible shell escaping for Claude invocation

[kirollosatef]

Summary

• Fixed Claude button click failing immediately on Windows terminals
• The terminal uses cmd.exe which doesn't understand bash syntax (single quotes, PATH=value command)
• Added platform-specific escaping and command building for Windows

Problem

On Windows, clicking the "Claude" button in the Agent Terminal caused:

• Terminal to exit immediately (exit code 0)
• Log showing: Generating terminal name for command: laude... (first char stripped)

Root cause: The code was using bash/Unix syntax for all platforms:

# Generated command (broken on Windows):
cd "D:\..." && PATH='C:\...' 'C:\Users\...\claude.exe'

Windows cmd.exe treats single quotes as literal characters, not string delimiters.

Solution

Added Windows-specific handling:

1. escapeForPlatform() - Uses double quotes on Windows, single quotes on Unix
2. isWindows constant - Platform detection helper
3. buildClaudeShellCommand() - Windows branches:
   • Default: Skip PATH= prefix (PTY has correct PATH)
   • Temp-file: Use call/del instead of source/rm
   • Config-dir: Use set instead of bash inline env syntax
4. Temp file handling - .bat extension and batch syntax on Windows

After fix:

cd "D:\..." && "C:\Users\...\claude.exe"

Test plan

• Test on Windows: Click Claude button in Agent Terminal
• Verify Claude CLI launches successfully
• Test profile switching (temp-file method)
• Test on Mac/Linux to ensure no regression

Changes

• apps/frontend/src/main/terminal/claude-integration-handler.ts (+68/-22 lines)

🤖 Generated with Claude Code

Summary by CodeRabbit

• New Features

  • Improved cross-platform support for Claude invocation with OS-aware escaping, Windows batch vs Unix shell handling, and platform-appropriate temp-file behavior.

• Bug Fixes

  • Fixed shell escaping and PATH handling so commands run reliably on Windows and Unix-like shells.

• Tests

  • Updated tests for Windows-specific command syntax and the config-dir flow.

• Documentation

  • Added clarifying notes on Windows vs Unix behavior.

• Chores

  • Config-dir option now includes the raw config path; added a Windows-specific escaping utility.

_{✏️ Tip: You can customize this high-level summary in your review settings.}

[CLAassistant]

All committers have signed the CLA.

[coderabbitai]

Note

Other AI code review bot(s) detected

CodeRabbit has detected other AI code review bot(s) in this pull request and will avoid duplicating their findings in the review comments. This may lead to a less comprehensive review.

📝 Walkthrough

Walkthrough

Adds Windows-aware platform handling to Claude command construction: centralizes platform escaping, branches command/temp-file/config-dir behaviors by OS, adapts temp-file extension/content and invocation, and exposes rawConfigDir in the config-dir variant.

Changes

Cohort / File(s)	Summary
Claude integration handler apps/frontend/src/main/terminal/claude-integration-handler.ts	Add isWindows and escapeForPlatform; make buildClaudeShellCommand OS-aware for default/temp-file/config-dir; use .bat and Windows batch syntax on Windows, shell script on Unix; replace escapeShellArg usages; add rawConfigDir to config-dir variant.
Tests apps/frontend/src/main/terminal/__tests__/claude-integration-handler.test.ts	Update tests to expect Windows-style invocation/quoting and to pass rawConfigDir for config-dir cases; adjust PATH-handling expectations on Windows.
Shell escaping utils apps/frontend/src/shared/utils/shell-escape.ts	Add export function escapeForWindowsSet(value: string): string to escape values for Windows set "VAR=..." usage (escape % and strip double-quotes).

Sequence Diagram(s)

sequenceDiagram
    participant App as Frontend App
    participant Builder as ClaudeCommandBuilder
    participant FS as FileSystem
    participant Shell as OS Shell
    participant Claude as Claude CLI

    App->>Builder: request command (method, token, configDir)
    Builder->>Builder: detect platform (isWindows)
    alt temp-file method
        Builder->>FS: write temp file (.bat on Windows / shell script on Unix)
        Builder->>Shell: construct platform-specific invocation (batch vs shell)
        Shell->>Claude: execute constructed command
        Shell->>FS: remove temp file
    else config-dir method
        Builder->>Builder: use rawConfigDir and escapedConfigDir to set CLAUDE_CONFIG_DIR
        Builder->>Shell: construct env-setting invocation (Windows `set` vs Unix `export`)
        Shell->>Claude: invoke Claude CLI with escaped args
    end
    Claude-->>App: return output

Loading

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~45 minutes

Possibly related PRs

• fix: centralize Claude CLI invocation #680 — Overlaps with claude-integration command construction and escaping changes.
• fix: properly quote Windows .cmd/.bat paths in spawn() calls #889 — Related Windows-specific quoting/escaping for Claude CLI invocation.

Suggested labels

bug, area/frontend, os/windows, size/M

Suggested reviewers

• AndyMik90

Poem

🐇
I hopped through quotes and paths so wide,
Batched tokens where they like to hide,
I set and export with careful art,
Wrote temp files then tore them apart,
A happy rabbit hums cross-OS stride 🥕

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title directly addresses the main change: adding Windows cmd.exe compatible shell escaping for Claude invocation in the terminal, which is the core issue being fixed across all modified files.
Docstring Coverage	✅ Passed	Docstring coverage is 100.00% which is sufficient. The required threshold is 80.00%.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing touches

• 📝 Generate docstrings

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[gemini-code-assist]

Summary of Changes

Hello @kirollosatef, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request addresses a critical bug preventing the Claude CLI from launching correctly on Windows terminals. The core problem stemmed from the application's attempt to execute bash-style commands, including single-quoted paths and PATH= environment variable prefixes, within the Windows cmd.exe environment, which interprets these syntaxes differently. The solution involves implementing platform-aware logic to dynamically construct shell commands and temporary files using cmd.exe-compatible syntax when running on Windows, thereby ensuring seamless integration and functionality across operating systems.

Highlights

• Windows Compatibility Fix: Resolved an issue where the 'Claude' button in the Agent Terminal failed immediately on Windows due to incompatible shell command syntax, specifically bash-style quoting and environment variable setting.
• Platform-Specific Escaping: Introduced a new escapeForPlatform() utility function that dynamically applies cmd.exe-compatible double quotes and escaping on Windows, while retaining single quotes for Unix/Mac systems.
• Windows Command Building: Modified the buildClaudeShellCommand() function to generate Windows-specific commands. This includes using call and del for temporary files, set for environment variables, and omitting the PATH= prefix where the PTY already has the correct PATH.
• Temporary File Handling: Ensured that temporary files created for token handling use the .bat extension and batch script syntax on Windows, allowing them to be correctly executed by cmd.exe.

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[github-actions]

🎉 Thanks for your first PR!

A maintainer will review it soon. Please make sure:

• Your branch is synced with develop
• CI checks pass
• You've followed our contribution guide

Welcome to the Auto Claude community!

[gemini-code-assist]

Code Review

This pull request correctly addresses an issue with shell command escaping on Windows by introducing platform-specific logic for building and escaping commands. The use of isWindows and escapeForPlatform centralizes the platform detection and makes the code cleaner.

However, I've found a critical security vulnerability in the way temporary batch files are created on Windows to handle OAuth tokens. The token is written to the file without being escaped, which can lead to command injection if the token contains special characters. I've left two critical comments pointing out the vulnerable locations and suggesting a fix using the existing escapeShellArgWindows utility.

Apart from this critical issue, the changes are well-implemented and improve cross-platform compatibility.

[sentry]

Codecov Report

✅ All modified and coverable lines are covered by tests.

📢 Thoughts on this report? Let us know!

[coderabbitai]

Actionable comments posted: 4

🤖 Fix all issues with AI agents

In @apps/frontend/src/main/terminal/claude-integration-handler.ts:
- Around line 730-732: The PATH prefix in resumeClaudeAsync is currently built
the same way as in resumeClaude and therefore on Windows incorrectly produces a
bash-style "PATH=" assignment; update resumeClaudeAsync to mirror resumeClaude's
logic: build pathPrefix using claudeEnv.PATH and
normalizePathForBash/escapeShellArg but skip prepending "PATH=" when
process.platform === 'win32' (i.e., only use the "PATH=" prefix on non-Windows),
referencing the pathPrefix variable and functions normalizePathForBash and
escapeShellArg in resumeClaudeAsync so behavior matches resumeClaude.
- Around line 552-554: The PATH prefix in resumeClaude is built using bash
syntax and will break on Windows; update resumeClaude so it mirrors
buildClaudeShellCommand's behavior by not prepending a bash-style PATH on
Windows (use process.platform === 'win32' or the existing isWindows helper),
i.e. only construct pathPrefix = `PATH=... ` using
escapeShellArg(normalizePathForBash(claudeEnv.PATH)) when not on Windows, and
otherwise omit the prefix entirely; ensure the same fix is applied to the other
occurrence around line 569 so resumeClaude produces a valid command on Windows.
- Around line 488-491: The Windows branch writing tempFileContent injects token
raw into the batch file (in the isWindows branch) and must escape batch-special
characters to prevent command injection; implement or reuse an escaping helper
(e.g., escapeBatchArg or similar) and replace direct ${token} usage in the
isWindows branch with the escaped value so the line becomes set
CLAUDE_CODE_OAUTH_TOKEN=<escapedToken> in the Windows batch content
construction; ensure the helper handles %, ^, &, |, <, > and surrounding
whitespace consistently and mirror the Unix approach that uses
escapeShellArg(token).
- Around line 670-672: The tempFileContent construction in the async Claude
invocation is not escaping the token for the Windows branch; update the code
that builds tempFileContent (the variable using isWindows) to mirror the
synchronous invokeClaude fix by wrapping/escaping the token with
escapeShellArg(token) (and ensuring the Windows batch line sets
CLAUDE_CODE_OAUTH_TOKEN using the escaped value, preserving the existing CRLF
for Windows and newline for Unix) so both branches securely escape the token.

📜 Review details

Configuration used: Path: .coderabbit.yaml

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 1b5aecd and f3aaf11.

📒 Files selected for processing (1)

• apps/frontend/src/main/terminal/claude-integration-handler.ts

🧰 Additional context used

📓 Path-based instructions (2)

apps/frontend/src/**/*.{tsx,ts}

📄 CodeRabbit inference engine (CLAUDE.md)

apps/frontend/src/**/*.{tsx,ts}: Use i18n translation keys for all user-facing text in the frontend. All labels, buttons, messages must use translation keys from react-i18next with namespace:section.key format (e.g., 'navigation:items.githubPRs').
Never use hardcoded strings for UI text in JSX/TSX files. Always use translation keys via useTranslation() hook.

Files:

• apps/frontend/src/main/terminal/claude-integration-handler.ts

apps/frontend/**/*.{ts,tsx}

⚙️ CodeRabbit configuration file

apps/frontend/**/*.{ts,tsx}: Review React patterns and TypeScript type safety.
Check for proper state management and component composition.

Files:

• apps/frontend/src/main/terminal/claude-integration-handler.ts

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (3)

• GitHub Check: Seer Code Review
• GitHub Check: CodeQL (python)
• GitHub Check: CodeQL (javascript-typescript)

🔇 Additional comments (3)

apps/frontend/src/main/terminal/claude-integration-handler.ts (3)

104-118: LGTM!

The Windows cmd.exe syntax is appropriate: call for batch file execution, del for cleanup, and set for environment variables. Correctly omits the PATH prefix for the default case since the PTY environment already has the correct PATH.

---

460-460: LGTM!

The consistent use of escapeForPlatform for claudeCmd and configDir paths ensures proper escaping across both Windows and Unix platforms.

Also applies to: 502-502

---

44-50: No action needed—the implementation is correct.

The escapeShellArgWindows function only escapes cmd.exe special characters using the ^ escape character and returns an unquoted string. The wrapping in double quotes at line 47 in escapeForPlatform is correct and necessary, not a double-quoting issue. This pattern is used consistently throughout the codebase (e.g., in buildCdCommand and terminal-handlers.ts).

[coderabbitai]

Actionable comments posted: 2

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (2)

apps/frontend/src/main/terminal/__tests__/claude-integration-handler.test.ts (1)

114-144: Test logic contradicts implementation - causes pipeline failure.

This test sets process.platform to 'win32' but expects bash-style PATH='...' output. However, the implementation at lines 553-556 of claude-integration-handler.ts explicitly skips the PATH prefix on Windows:

const pathPrefix = !isWindows && claudeEnv.PATH
  ? `PATH=${escapeShellArg(...)} `
  : '';

The test expectation at line 137 will never match because Windows commands won't contain PATH= at all.

Options:

1. Remove this test if PATH conversion is no longer relevant on Windows
2. Change the test to verify Unix behavior (don't mock platform as win32)
3. Update expectations to match actual Windows output format

Proposed fix: Test Unix PATH normalization instead

-  it('converts Windows PATH separators to colons for bash invocations', async () => {
-    const originalPlatform = Object.getOwnPropertyDescriptor(process, 'platform');
-    Object.defineProperty(process, 'platform', { value: 'win32' });
-
-    try {
-      mockGetClaudeCliInvocation.mockReturnValue({
-        command: 'C:\\Tools\\claude\\claude.exe',
-        env: { PATH: 'C:\\Tools\\claude;C:\\Windows' },
-      });
+  it('converts Windows-style PATH separators to colons for bash on Unix', async () => {
+    // Test that normalizePathForBash converts semicolons to colons
+    // This is relevant when PATH contains Windows-style separators on Unix
+    mockGetClaudeCliInvocation.mockReturnValue({
+      command: '/opt/claude/bin/claude',
+      env: { PATH: '/opt/claude/bin;/usr/bin' },  // Unusual but tests the conversion
+    });

apps/frontend/src/main/terminal/claude-integration-handler.ts (1)

102-131: Windows command construction looks correct, but verify edge cases.

The Windows branching logic correctly:

• Uses cls instead of clear
• Uses call and del for temp-file method
• Uses set "VAR=value" syntax which is the correct Windows pattern for paths with spaces

One minor observation: Line 108 uses del without /Q (quiet) flag, which may prompt for confirmation on read-only files. Consider using del /Q for silent deletion.

Optional: Add /Q flag to del command

       case 'temp-file':
         // On Windows, use 'call' to execute the batch file that sets env var, then run claude
-        return `cls && ${cwdCommand}call ${config.escapedTempFile} && del ${config.escapedTempFile} && ${fullCmd}\r`;
+        return `cls && ${cwdCommand}call ${config.escapedTempFile} && del /Q ${config.escapedTempFile} && ${fullCmd}\r`;

🤖 Fix all issues with AI agents

In @apps/frontend/src/main/terminal/claude-integration-handler.ts:
- Around line 665-676: The temp token file creation logic is duplicated between
invokeClaudeAsync and invokeClaude and also lacks Windows-specific permission
handling; extract the shared logic into a helper (e.g.,
createTempTokenFileContent) that generates nonce, tempFile, escapedTempFile and
platform-specific content using existing symbols isWindows, escapeForPlatform,
escapeShellArgWindows, escapeShellArg, and then replace the duplicated code in
invokeClaudeAsync and invokeClaude to call this helper and write the file via
fsPromises.writeFile(tempFile, content, { mode: 0o600 }); also ensure you
address the Windows security concern by documenting or implementing an
appropriate permission/secure-write strategy for .bat files on Windows within
the helper.

📜 Review details

Configuration used: Path: .coderabbit.yaml

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between f3aaf11 and 2b75496.

📒 Files selected for processing (2)

• apps/frontend/src/main/terminal/__tests__/claude-integration-handler.test.ts
• apps/frontend/src/main/terminal/claude-integration-handler.ts

🧰 Additional context used

📓 Path-based instructions (2)

apps/frontend/src/**/*.{tsx,ts}

📄 CodeRabbit inference engine (CLAUDE.md)

apps/frontend/src/**/*.{tsx,ts}: Use i18n translation keys for all user-facing text in the frontend. All labels, buttons, messages must use translation keys from react-i18next with namespace:section.key format (e.g., 'navigation:items.githubPRs').
Never use hardcoded strings for UI text in JSX/TSX files. Always use translation keys via useTranslation() hook.

Files:

• apps/frontend/src/main/terminal/claude-integration-handler.ts
• apps/frontend/src/main/terminal/__tests__/claude-integration-handler.test.ts

apps/frontend/**/*.{ts,tsx}

⚙️ CodeRabbit configuration file

apps/frontend/**/*.{ts,tsx}: Review React patterns and TypeScript type safety.
Check for proper state management and component composition.

Files:

• apps/frontend/src/main/terminal/claude-integration-handler.ts
• apps/frontend/src/main/terminal/__tests__/claude-integration-handler.test.ts

🪛 GitHub Actions: CI

apps/frontend/src/main/terminal/__tests__/claude-integration-handler.test.ts

[error] 137-137: converts Windows PATH separators to colons for bash invocations - Assertion failed: expected PATH to contain PATH='C:\Tools\claude:C:\Windows' but received: 'cd "/tmp/project" && "C:\Tools\claude\claude.exe"...'. The test likely relies on Windows PATH conversion logic not being applied.

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (3)

• GitHub Check: CodeQL (python)
• GitHub Check: CodeQL (javascript-typescript)
• GitHub Check: Seer Code Review

🔇 Additional comments (7)

apps/frontend/src/main/terminal/__tests__/claude-integration-handler.test.ts (1)

477-477: LGTM - rawConfigDir added to match updated type signature.

The addition of rawConfigDir aligns with the ClaudeCommandConfig type change in the implementation, which now requires both escapedConfigDir and rawConfigDir for the 'config-dir' method.

apps/frontend/src/main/terminal/claude-integration-handler.ts (6)

552-556: LGTM - PATH prefix correctly skipped on Windows.

The logic to skip the PATH= prefix on Windows is correct since the PTY already has the correct PATH environment. The comment clearly explains the reasoning. This is the root cause of the failing test (already flagged above).

---

60-63: LGTM - Type updated correctly for Windows config-dir handling.

The addition of rawConfigDir to the 'config-dir' variant is necessary because Windows set "VAR=value" syntax requires the raw path (escaped differently than shell arguments), while Unix still uses the shell-escaped version.

---

461-464: LGTM - Platform-aware escaping applied correctly.

The escaping logic correctly uses escapeForPlatform for the Claude command and maintains the bash-style PATH escaping (since it's only used on Unix per lines 553-556).

---

503-504: LGTM - Config-dir method correctly passes both escaped and raw paths.

Both escapedConfigDir (for Unix) and rawConfigDir (for Windows set command) are correctly provided, matching the updated ClaudeCommandConfig type.

---

731-735: LGTM - Async resumeClaude mirrors sync version correctly.

The PATH prefix logic correctly mirrors the sync version, skipping the bash-style prefix on Windows.

---

35-50: LGTM - Platform detection and escaping helper are well-structured.

The isWindows constant and escapeForPlatform helper provide a clean abstraction for platform-specific escaping. The function correctly delegates to escapeShellArgWindows for Windows and escapeShellArg for Unix. The escapeShellArgWindows implementation properly handles all cmd.exe special characters (^, &, |, <, >, ", %) with correct escape sequences and critical ordering (carets escaped first to prevent double-escaping). The Unix variant uses standard POSIX-safe single quote escaping.

[coderabbitai]

Actionable comments posted: 3

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

apps/frontend/src/main/terminal/__tests__/claude-integration-handler.test.ts (1)

455-503: Consider adding Windows-specific tests for temp-file and config-dir methods.

The current tests for buildClaudeShellCommand only verify Unix/bash syntax. Given the PR adds significant Windows-specific logic (.bat extension, call/del /Q commands, set "VAR=value" syntax), consider adding tests that mock process.platform to 'win32' and verify:

1. Temp-file method produces: cls && ... call "tempfile.bat" && del /Q "tempfile.bat" && ...
2. Config-dir method produces: cls && ... set "CLAUDE_CONFIG_DIR=..." && ...

This would help catch regressions in Windows-specific command generation.

Do you want me to generate the Windows-specific test cases for these methods?

🤖 Fix all issues with AI agents

In @apps/frontend/src/main/terminal/claude-integration-handler.ts:
- Around line 489-494: Update the Windows batch assignment to quote the token
value for consistency and safety: in the tempFileContent construction inside
claude-integration-handler.ts (the branch that sets isWindows), change the set
CLAUDE_CODE_OAUTH_TOKEN line to use set "CLAUDE_CODE_OAUTH_TOKEN=..." and wrap
the result of escapeShellArgWindows(token) in quotes; do the same analogous
change in the invokeClaudeAsync implementation where the same Windows batch
pattern is produced, ensuring you use escapeShellArgWindows(token) inside the
quoted assignment.

📜 Review details

Configuration used: Path: .coderabbit.yaml

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 2b75496 and a308d36.

📒 Files selected for processing (2)

• apps/frontend/src/main/terminal/__tests__/claude-integration-handler.test.ts
• apps/frontend/src/main/terminal/claude-integration-handler.ts

🧰 Additional context used

📓 Path-based instructions (2)

apps/frontend/src/**/*.{tsx,ts}

📄 CodeRabbit inference engine (CLAUDE.md)

apps/frontend/src/**/*.{tsx,ts}: Use i18n translation keys for all user-facing text in the frontend. All labels, buttons, messages must use translation keys from react-i18next with namespace:section.key format (e.g., 'navigation:items.githubPRs').
Never use hardcoded strings for UI text in JSX/TSX files. Always use translation keys via useTranslation() hook.

Files:

• apps/frontend/src/main/terminal/claude-integration-handler.ts
• apps/frontend/src/main/terminal/__tests__/claude-integration-handler.test.ts

apps/frontend/**/*.{ts,tsx}

⚙️ CodeRabbit configuration file

apps/frontend/**/*.{ts,tsx}: Review React patterns and TypeScript type safety.
Check for proper state management and component composition.

Files:

• apps/frontend/src/main/terminal/claude-integration-handler.ts
• apps/frontend/src/main/terminal/__tests__/claude-integration-handler.test.ts

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (1)

• GitHub Check: Seer Code Review

🔇 Additional comments (7)

apps/frontend/src/main/terminal/__tests__/claude-integration-handler.test.ts (2)

114-146: LGTM! Windows platform test properly validates cmd.exe syntax.

The test correctly:

1. Mocks process.platform to 'win32'
2. Verifies PATH prefix is omitted on Windows (PTY provides correct PATH)
3. Validates double-quote escaping for Windows cmd.exe
4. Properly restores the original platform in the finally block

---

473-488: LGTM! Test updated to match new config-dir signature.

The addition of rawConfigDir parameter aligns with the updated ClaudeCommandConfig type that now requires both escaped and raw paths for proper Windows set command handling.

apps/frontend/src/main/terminal/claude-integration-handler.ts (5)

102-120: LGTM! Windows command syntax is correct.

The Windows-specific command generation:

• Uses cls instead of clear
• Uses call for batch file execution and del /Q for quiet deletion
• Uses set "VAR=value" syntax which correctly handles paths with spaces
• Omits PATH prefix on Windows as the PTY already has the correct PATH

The implementation follows cmd.exe conventions correctly.

---

553-557: LGTM! Consistent Windows PATH handling in resumeClaude.

The conditional !isWindows && claudeEnv.PATH correctly skips the PATH prefix on Windows, consistent with the buildClaudeShellCommand behavior and PR objectives.

---

732-736: LGTM! Consistent Windows PATH handling in async resume.

The async version maintains the same Windows PATH handling logic as the sync version.

---

60-63: LGTM! Well-designed discriminated union update.

Adding rawConfigDir to the config-dir variant is necessary because:

• escapedConfigDir has platform-specific quoting (single quotes on Unix)
• Windows set "VAR=value" needs the raw path with only special character escaping

The discriminated union ensures type safety by requiring both fields together.

---

44-50: Verify escapeShellArgWindows implementation to confirm it doesn't add quotes.

The escapeForPlatform function wraps the result of escapeShellArgWindows(arg) in double quotes on Windows. If escapeShellArgWindows already returns a quoted string, this would produce malformed output like ""value"". Inspect the implementation of escapeShellArgWindows to confirm it only escapes characters without adding outer quotes.

[coderabbitai]

Actionable comments posted: 2

🤖 Fix all issues with AI agents

In @apps/frontend/src/main/terminal/claude-integration-handler.ts:
- Around line 664-678: The temp-token file creation logic is duplicated between
invokeClaudeAsync and invokeClaude; extract it into a shared async helper (e.g.,
writeTempTokenFile(token): Promise<TempTokenFileResult>) that uses crypto,
isWindows, os/path, escapeForPlatform, escapeShellArgWindows/escapeShellArg and
fsPromises to build tempFile/tempFileContent, write the file with mode 0o600 and
return { tempFile, escapedTempFile }; then replace the duplicated blocks in both
invokeClaudeAsync and invokeClaude with calls to writeTempTokenFile (or a sync
variant if needed) and update call sites to use the returned
tempFile/escapedTempFile.

📜 Review details

Configuration used: Path: .coderabbit.yaml

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between a308d36 and 7f3e845.

📒 Files selected for processing (1)

• apps/frontend/src/main/terminal/claude-integration-handler.ts

🧰 Additional context used

📓 Path-based instructions (2)

apps/frontend/src/**/*.{tsx,ts}

📄 CodeRabbit inference engine (CLAUDE.md)

apps/frontend/src/**/*.{tsx,ts}: Use i18n translation keys for all user-facing text in the frontend. All labels, buttons, messages must use translation keys from react-i18next with namespace:section.key format (e.g., 'navigation:items.githubPRs').
Never use hardcoded strings for UI text in JSX/TSX files. Always use translation keys via useTranslation() hook.

Files:

• apps/frontend/src/main/terminal/claude-integration-handler.ts

apps/frontend/**/*.{ts,tsx}

⚙️ CodeRabbit configuration file

apps/frontend/**/*.{ts,tsx}: Review React patterns and TypeScript type safety.
Check for proper state management and component composition.

Files:

• apps/frontend/src/main/terminal/claude-integration-handler.ts

🧬 Code graph analysis (1)

apps/frontend/src/main/terminal/claude-integration-handler.ts (1)

apps/frontend/scripts/download-python.cjs (2)

• isWindows (358-358)
• os (22-22)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (3)

• GitHub Check: Seer Code Review
• GitHub Check: CodeQL (python)
• GitHub Check: CodeQL (javascript-typescript)

🔇 Additional comments (4)

apps/frontend/src/main/terminal/claude-integration-handler.ts (4)

60-63: LGTM!

Good type design. Adding rawConfigDir to the discriminated union allows proper Windows-specific handling while maintaining the escaped version for Unix compatibility.

---

553-557: LGTM!

The conditional PATH prefix correctly skips bash-style PATH= syntax on Windows where the PTY already inherits the correct PATH. Good inline documentation.

---

732-736: LGTM!

Consistent with the sync resumeClaude() implementation. The Windows PATH handling is correctly applied.

---

106-109: call command with double-quoted batch file paths is standard cmd.exe syntax and works correctly.

Windows cmd.exe fully supports call "path with spaces\file.bat" syntax per Microsoft documentation. The escapeForPlatform() implementation properly wraps paths in double quotes and uses escapeShellArgWindows() to escape special characters (^, ", &, |, <, >, %). The code at line 109 is correct.

[coderabbitai]

Actionable comments posted: 1

🤖 Fix all issues with AI agents

In `@apps/frontend/src/main/terminal/claude-integration-handler.ts`:
- Around line 463-465: The code computes pathPrefix from claudeEnv.PATH using
normalizePathForBash and escapeShellArg even on Windows where it is unused;
replicate resumeClaude's pattern by only computing pathPrefix when not on
Windows (e.g., guard with !isWindows or the same platform check used in
resumeClaude) and apply the same change to the async variant that computes
pathPrefix later; update the blocks that reference pathPrefix so they still pass
it into buildClaudeShellCommand unchanged, but avoid constructing the string on
Windows to keep behavior consistent.

📜 Review details

Configuration used: Path: .coderabbit.yaml

Review profile: ASSERTIVE

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 7f3e845 and ee0a00d.

📒 Files selected for processing (2)

• apps/frontend/src/main/terminal/claude-integration-handler.ts
• apps/frontend/src/shared/utils/shell-escape.ts

🧰 Additional context used

📓 Path-based instructions (2)

apps/frontend/src/**/*.{tsx,ts}

📄 CodeRabbit inference engine (CLAUDE.md)

apps/frontend/src/**/*.{tsx,ts}: Use i18n translation keys for all user-facing text in the frontend. All labels, buttons, messages must use translation keys from react-i18next with namespace:section.key format (e.g., 'navigation:items.githubPRs').
Never use hardcoded strings for UI text in JSX/TSX files. Always use translation keys via useTranslation() hook.

Files:

• apps/frontend/src/main/terminal/claude-integration-handler.ts
• apps/frontend/src/shared/utils/shell-escape.ts

apps/frontend/**/*.{ts,tsx}

⚙️ CodeRabbit configuration file

apps/frontend/**/*.{ts,tsx}: Review React patterns and TypeScript type safety.
Check for proper state management and component composition.

Files:

• apps/frontend/src/main/terminal/claude-integration-handler.ts
• apps/frontend/src/shared/utils/shell-escape.ts

🧬 Code graph analysis (1)

apps/frontend/src/main/terminal/claude-integration-handler.ts (1)

apps/frontend/src/shared/utils/shell-escape.ts (3)

• escapeShellArgWindows (74-89)
• escapeShellArg (24-29)
• escapeForWindowsSet (104-108)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (3)

• GitHub Check: Seer Code Review
• GitHub Check: CodeQL (javascript-typescript)
• GitHub Check: CodeQL (python)

🔇 Additional comments (9)

apps/frontend/src/shared/utils/shell-escape.ts (1)

104-108: LGTM! Correct escaping for Windows set command context.

The differentiation from escapeShellArgWindows is important and well-documented. One minor observation: double quotes are silently removed rather than rejected. For OAuth tokens and config paths this should be fine, but consider logging a warning if the value contains quotes to help debug unexpected behavior.

apps/frontend/src/main/terminal/claude-integration-handler.ts (8)

16-16: LGTM!

Import correctly added for the new Windows-specific escaping function.

---

35-50: LGTM! Clean platform abstraction.

The isWindows constant and escapeForPlatform helper provide a clean abstraction for platform-specific quoting. The approach of escaping metacharacters before wrapping in double quotes on Windows is correct for cmd.exe.

---

60-63: LGTM!

Adding rawConfigDir to the discriminated union is the right approach—Windows set "VAR=VALUE" syntax needs the unescaped path with only escapeForWindowsSet applied, while Unix still uses the pre-escaped version.

---

102-132: Well-implemented Windows command construction.

The Windows branching correctly addresses the previously flagged issues:

• Uses escapeForWindowsSet(config.rawConfigDir) for set command (fixes caret-escaping bug)
• Omits bash-style PATH= prefix on Windows
• Uses appropriate Windows commands (cls, call, del /Q, set)

---

489-494: Security fix confirmed: Token is now properly escaped.

The previously flagged command injection vulnerability is fixed. Using escapeForWindowsSet(token) correctly handles the set "VAR=VALUE" context where only % needs escaping (as %%) and quotes must be stripped.

---

553-557: PATH prefix fix confirmed for Windows.

The !isWindows && guard correctly prevents bash-style PATH=value command syntax from being emitted on Windows, where it would cause cmd.exe to fail.

---

666-677: Async version correctly mirrors sync implementation.

The token escaping fix is consistently applied in both sync and async versions. The code duplication with the sync version was previously flagged and acknowledged as a future refactoring opportunity.

---

732-736: LGTM!

PATH prefix fix consistently applied in async variant.

_{✏️ Tip: You can disable this entire section by setting review_details to false in your review settings.}

[coderabbitai]

🧹 Nitpick | 🔵 Trivial

Minor inconsistency: pathPrefix computed but unused on Windows.

Unlike resumeClaude (line 555), this still computes pathPrefix unconditionally. While not a bug (it's ignored by buildClaudeShellCommand on Windows), it's a slight inconsistency. Consider aligning with resumeClaude's pattern for consistency:

-  const pathPrefix = claudeEnv.PATH
+  const pathPrefix = !isWindows && claudeEnv.PATH
     ? `PATH=${escapeShellArg(normalizePathForBash(claudeEnv.PATH))} `
     : '';

Same applies to the async version at lines 646-648.

🤖 Prompt for AI Agents

In `@apps/frontend/src/main/terminal/claude-integration-handler.ts` around lines
463 - 465, The code computes pathPrefix from claudeEnv.PATH using
normalizePathForBash and escapeShellArg even on Windows where it is unused;
replicate resumeClaude's pattern by only computing pathPrefix when not on
Windows (e.g., guard with !isWindows or the same platform check used in
resumeClaude) and apply the same change to the async variant that computes
pathPrefix later; update the blocks that reference pathPrefix so they still pass
it into buildClaudeShellCommand unchanged, but avoid constructing the string on
Windows to keep behavior consistent.