feat(task-logger): strip ANSI escape codes from logs and extend coverage

[StillKnotKnown]

Base Branch

• This PR targets the `develop` branch (required for all feature/fix PRs)

Description

Implements ANSI escape code stripping in the Python task logger to remove terminal color/formatting codes from task logs before storage, making logs readable in the UI. Also extends the TypeScript ANSI sanitizer to handle private mode parameters and applies sanitization to merge preview error messages in the Kanban board.

Key Changes:

• Backend: Added `strip_ansi_codes()` utility function in `task_logger/utils.py`
• Backend: Applied sanitization in `TaskLogger.log()`, `log_with_detail()`, and `tool_end()` methods
• Backend: Exported `strip_ansi_codes` in task_logger public API
• Frontend: Extended CSI pattern to support private mode parameters (`?<>=`)
• Frontend: Applied sanitization to merge preview error messages to fix display issues

Related Issue

Closes #47

Type of Change

• 🐛 Bug fix
• ✨ New feature
• 📚 Documentation
• ♻️ Refactor
• 🧪 Test

Area

• Frontend
• Backend
• Fullstack

Commit Message Format

Follow conventional commits: `: `

Types: feat, fix, docs, style, refactor, test, chore

Example: `feat: add user authentication system`

Checklist

• I've synced with `develop` branch
• I've tested my changes locally
• I've followed the code principles (SOLID, DRY, KISS)
• My PR is small and focused (< 400 lines ideally)
• (Python only) All file operations specify `encoding="utf-8"` for text files

Platform Testing Checklist

CRITICAL: This project supports Windows, macOS, and Linux. Platform-specific bugs are a common source of breakage.

• Windows tested (either on Windows or via CI)
• macOS tested (either on macOS or via CI)
• Linux tested (CI covers this)
• Used centralized `platform/` module instead of direct `process.platform` checks
• No hardcoded paths (used `findExecutable()` or platform abstractions)

If you only have access to one OS: CI now tests on all platforms. Ensure all checks pass before submitting.

CI/Testing Requirements

• All CI checks pass on all platforms (Windows, macOS, Linux)
• All existing tests pass (1695 passing)
• New features include test coverage (25 new tests, all passing)
• Bug fixes include regression tests

Screenshots

Before	After

Feature Toggle

• Behind localStorage flag: `use_feature_name`
• Behind settings toggle
• Behind environment variable/config
• N/A - Feature is complete and ready for all users

Breaking Changes

Breaking: No

Details:

None - this is a new utility function and sanitization is applied transparently during logging.

Summary by CodeRabbit

• Bug Fixes

  • Strip terminal/ANSI escape codes from logs and error messages across backend and frontend for cleaner, more readable output.

• New Features

  • Expose the ANSI escape code sanitizer function from the package for wider reuse.
  • Added utilities to manage task logger lifecycle and update logging paths.

• Tests

  • Added comprehensive tests covering ANSI code sanitization, logging, streaming capture, and public API exports.

_{✏️ Tip: You can customize this high-level summary in your review settings.}

[gemini-code-assist]

Summary of Changes

Hello @StillKnotKnown, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request addresses the issue of unreadable task logs and UI messages caused by the presence of ANSI escape codes. It introduces a robust mechanism to strip these terminal formatting codes from log content in the backend Python services before storage, and enhances the existing frontend sanitizer to handle more complex ANSI sequences, applying it to relevant UI elements. The overall impact is cleaner, more readable logs and a better user experience in the UI.

Highlights

• Backend ANSI Code Stripping: A new Python utility function, strip_ansi_codes, has been introduced in task_logger/utils.py to remove ANSI escape codes from log content. This function is now integrated into the TaskLogger's log(), log_with_detail(), and tool_end() methods, as well as the StreamingLogCapture's process_text() method, ensuring all stored logs are clean.
• Frontend ANSI Sanitizer Enhancement: The existing TypeScript ansi-sanitizer has been updated to extend its CSI pattern recognition, allowing it to correctly handle private mode parameters. This improves the robustness of ANSI code stripping in the frontend.
• Frontend Error Message Sanitization: Merge preview error messages displayed in the Kanban board are now sanitized using the enhanced stripAnsiCodes function, resolving display issues caused by raw ANSI escape codes.
• Comprehensive Testing: Extensive unit and integration tests have been added for the backend's strip_ansi_codes utility and its integration points within the TaskLogger and StreamingLogCapture to ensure correct functionality.

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[coderabbitai]

Warning

Rate limit exceeded

@StillKnotKnown has exceeded the limit for the number of commits that can be reviewed per hour. Please wait 10 minutes and 32 seconds before requesting another review.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

Note

Other AI code review bot(s) detected

CodeRabbit has detected other AI code review bot(s) in this pull request and will avoid duplicating their findings in the review comments. This may lead to a less comprehensive review.

📝 Walkthrough

Walkthrough

ANSI escape code sanitization was added: a new strip_ansi_codes utility and lifecycle helpers were introduced in the backend; logging and streaming capture now sanitize text before storing; frontend error paths use the sanitizer; comprehensive tests added.

Changes

Cohort / File(s)	Summary
Backend task logger module apps/backend/task_logger/utils.py, apps/backend/task_logger/__init__.py, apps/backend/task_logger/logger.py, apps/backend/task_logger/capture.py	Added strip_ansi_codes() with CSI/OSC regexes, clear_task_logger, update_task_logger_path; adjusted typing/import timing. Applied sanitization in log, log_with_detail, tool_end, and StreamingLogCapture. Export list updated.
Frontend error handling & sanitizer apps/frontend/src/main/ipc-handlers/task/worktree-handlers.ts, apps/frontend/src/shared/utils/ansi-sanitizer.ts	Use stripAnsiCodes() for preview/parse error messages; expanded CSI regex to allow private-mode prefixes (?, <, >, =).
Frontend node_modules metadata apps/frontend/node_modules	Removed a stray relative reference line.
Tests tests/test_task_logger.py	Added unit and integration tests covering strip_ansi_codes, TaskLogger sanitization (log, log_with_detail, tool_end), StreamingLogCapture, and public exports.

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

Possibly related PRs

• fix(frontend): strip ANSI escape codes from roadmap/ideation progress messages (ACS-219) #933 — overlapping ANSI-stripping changes in frontend sanitizer and handlers.

Suggested labels

frontend

Poem

🐰 I nibble codes both bright and sly,
CSI and OSC wave goodbye,
Logs hop cleaner, neat and light,
Errors trimmed to plain delight,
A rabbit cheers the quiet sky.

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately describes the main change: adding ANSI escape code stripping to the task logger and expanding test coverage, which aligns with all file modifications.
Docstring Coverage	✅ Passed	Docstring coverage is 100.00% which is sufficient. The required threshold is 80.00%.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[gemini-code-assist]

Code Review

This pull request introduces a valuable feature by stripping ANSI escape codes from logs, which significantly improves their readability in the UI. The implementation is well-structured, with a new utility function in Python and an update to the existing TypeScript sanitizer. The addition of comprehensive unit and integration tests for the new functionality is excellent and ensures its correctness and robustness.

My review includes a couple of suggestions to improve the performance of the ANSI stripping functions in both Python and TypeScript by combining the multiple regular expressions into a single one. This would make the sanitization process more efficient.

Overall, this is a solid contribution that enhances the user experience and maintainability of the logging system.

[gemini-code-assist]

For better performance and conciseness, you can combine the three regex patterns (ANSI_CSI_PATTERN, ANSI_OSC_BEL_PATTERN, ANSI_OSC_ST_PATTERN) into a single pattern. This allows performing the substitution in one pass over the string, which is more efficient than three separate passes.

First, you can define a single combined pattern at the top of the file:

# Combined ANSI escape code pattern for CSI and OSC sequences.
ANSI_PATTERN = re.compile(
    r"\x1b\[[?><=0-9;]*[A-Za-z]"  # CSI sequences
    r"|\x1b\][^�]*�"  # OSC with BEL terminator
    r"|\x1b\][^�]*�\\"  # OSC with ST terminator
)

Then, this function can be simplified to use it:

Suggested change

	if not text:
	return ""
	# Remove all ANSI escape sequences
	result = ANSI_CSI_PATTERN.sub("", text)
	result = ANSI_OSC_BEL_PATTERN.sub("", result)
	result = ANSI_OSC_ST_PATTERN.sub("", result)
	return result
	if not text:
	return ""
	# Remove all ANSI escape sequences using a single combined pattern
	return ANSI_PATTERN.sub("", text)

[coderabbitai]

Actionable comments posted: 3

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (2)

apps/backend/task_logger/logger.py (1)

474-495: Tool end summaries can still contain ANSI codes.
display_result and the composed content are stored/emitted without sanitization, so ANSI sequences can still show up in the UI even after detail stripping. Sanitize the summary path as well.

✅ Proposed fix

-        status = "Done" if success else "Error"
-        content = f"[{tool_name}] {status}"
-        if display_result:
-            content += f": {display_result}"
+        status = "Done" if success else "Error"
+        if display_result:
+            display_result = strip_ansi_codes(display_result)
+        content = f"[{tool_name}] {status}"
+        if display_result:
+            content += f": {display_result}"
+        content = strip_ansi_codes(content)

apps/backend/task_logger/utils.py (1)

61-109: TaskLogger is undefined at runtime due to TYPE_CHECKING-only import.
Line 79 instantiates TaskLogger, and Line 108 references TaskLogger.LOG_FILE, but TaskLogger is only imported under TYPE_CHECKING, so these will raise NameError at runtime. Use a lazy import in get_task_logger() and avoid direct class reference when updating the log file path.

🐛 Proposed fix

 def get_task_logger(
     spec_dir: Path | None = None, emit_markers: bool = True
 ) -> "TaskLogger | None":
@@
     if spec_dir is None:
         return _current_logger
 
+    from .logger import TaskLogger
     if _current_logger is None or _current_logger.spec_dir != spec_dir:
         _current_logger = TaskLogger(spec_dir, emit_markers)
@@
 def update_task_logger_path(new_spec_dir: Path) -> None:
@@
-    _current_logger.log_file = _current_logger.spec_dir / TaskLogger.LOG_FILE
+    _current_logger.log_file = _current_logger.spec_dir / _current_logger.LOG_FILE

🤖 Fix all issues with AI agents

In `@apps/backend/task_logger/capture.py`:
- Around line 40-43: The current logic checks text.strip() before removing ANSI
codes which allows ANSI-only input to pass and then log empty entries; update
the flow in the method that calls strip_ansi_codes so you call sanitized_text =
strip_ansi_codes(text) first and then only call self.logger.log(sanitized_text,
phase=self.phase) if sanitized_text.strip() is non-empty, replacing the original
text.strip() guard to avoid blank log entries.

In `@apps/backend/task_logger/logger.py`:
- Around line 315-318: The summary string "content" in log_with_detail() is not
sanitized for ANSI codes before storage/emit; update log_with_detail() to call
strip_ansi_codes(content) (just like detail is sanitized) and use the stripped
value everywhere you store/emit (e.g., the same variables passed to DB save/emit
logic and any subsequent functions), referencing the function log_with_detail(),
the variables content and detail, and the helper strip_ansi_codes() so both
summary and detail are consistently cleaned prior to persistence or
broadcasting.

In `@tests/test_task_logger.py`:
- Around line 7-11: Remove the unused imports "tempfile" and "Path" from the
import block (they are currently imported but not used); edit the top-of-file
import statement that includes json, os, sys, tempfile, and Path so it only
imports json, os, and sys to satisfy static analysis and keep the tests clean.

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

Avoid logging empty entries after sanitization.
Line 40 checks text.strip() before stripping ANSI codes; ANSI-only chunks pass the check but sanitize to empty, producing blank log entries. Sanitize first and then check.

✅ Proposed fix

-        if text.strip():
-            # Remove ANSI escape codes before logging
-            sanitized_text = strip_ansi_codes(text)
-            self.logger.log(sanitized_text, phase=self.phase)
+        # Remove ANSI escape codes before logging
+        sanitized_text = strip_ansi_codes(text)
+        if sanitized_text.strip():
+            self.logger.log(sanitized_text, phase=self.phase)

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	if text.strip():
	self.logger.log(text, phase=self.phase)
	# Remove ANSI escape codes before logging
	sanitized_text = strip_ansi_codes(text)
	self.logger.log(sanitized_text, phase=self.phase)
	# Remove ANSI escape codes before logging
	sanitized_text = strip_ansi_codes(text)
	if sanitized_text.strip():
	self.logger.log(sanitized_text, phase=self.phase)

🤖 Prompt for AI Agents

In `@apps/backend/task_logger/capture.py` around lines 40 - 43, The current logic
checks text.strip() before removing ANSI codes which allows ANSI-only input to
pass and then log empty entries; update the flow in the method that calls
strip_ansi_codes so you call sanitized_text = strip_ansi_codes(text) first and
then only call self.logger.log(sanitized_text, phase=self.phase) if
sanitized_text.strip() is non-empty, replacing the original text.strip() guard
to avoid blank log entries.

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

Remove unused imports to keep tests clean.
tempfile and Path are unused and flagged by static analysis.

🧹 Proposed fix

-import tempfile
-from pathlib import Path

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	import json
	import os
	import sys
	import tempfile
	from pathlib import Path
	import json
	import os
	import sys

🧰 Tools

🪛 GitHub Check: CodeQL

[notice] 10-10: Unused import
Import of 'tempfile' is not used.

---

[notice] 11-11: Unused import
Import of 'Path' is not used.

🤖 Prompt for AI Agents

In `@tests/test_task_logger.py` around lines 7 - 11, Remove the unused imports
"tempfile" and "Path" from the import block (they are currently imported but not
used); edit the top-of-file import statement that includes json, os, sys,
tempfile, and Path so it only imports json, os, and sys to satisfy static
analysis and keep the tests clean.

[sentry]

Codecov Report

✅ All modified and coverable lines are covered by tests.

📢 Thoughts on this report? Let us know!

[coderabbitai]

Actionable comments posted: 1

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

apps/backend/task_logger/utils.py (1)

109-111: Consider creating an update_spec_dir() method on TaskLogger for encapsulation.

update_task_logger_path directly mutates _current_logger.spec_dir and _current_logger.log_file. While no validation currently exists, if TaskLogger adds property setters or validation logic in the future, this direct mutation would bypass them. A dedicated method like update_spec_dir() would provide a cleaner, more maintainable interface.

🤖 Fix all issues with AI agents

In `@tests/test_task_logger.py`:
- Around line 173-190: The test points out that TaskLogger.log_with_detail
sanitizes the detail field but not the content; update the log_with_detail
implementation (TaskLogger.log_with_detail) to apply the same
ANSI-stripping/sanitization used for detail to the content parameter before
writing to the log and before any console output; reuse the existing sanitize
function or helper (e.g., the function that removes "\x1b" sequences or
strip_ansi) so both content and detail are processed identically and ensure the
stored JSON entry uses the sanitized content.

♻️ Duplicate comments (2)

apps/backend/task_logger/logger.py (1)

316-321: The content parameter is still not sanitized.

The past review correctly identified that content (the summary) in log_with_detail() is stored on line 325 without ANSI stripping. Only detail is being sanitized. Summaries derived from tool output can still leak escape sequences into storage/UI.

Proposed fix

         phase_key = (phase or self.current_phase or LogPhase.CODING).value
 
-        # Sanitize detail content before storage
+        # Sanitize content and detail before storage
+        if content:
+            from .utils import strip_ansi_codes
+
+            content = strip_ansi_codes(content)
+
         if detail:
             from .utils import strip_ansi_codes
 
             detail = strip_ansi_codes(detail)

tests/test_task_logger.py (1)

10-10: Remove unused Path import.

The Path import is not used in this file; all path operations use tmp_path (pytest fixture) or os.path. Static analysis correctly flagged this.

Proposed fix

 import json
 import os
 import sys
-from pathlib import Path

[coderabbitai]

Actionable comments posted: 0

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

apps/backend/task_logger/logger.py (1)

482-505: Sanitize tool_end() summary/result too.

Line 489 builds content from display_result without stripping ANSI codes. If tool summaries include ANSI (common with CLI output), the log entry still stores escape sequences, undermining the “sanitize before storage” requirement. Strip result (or content) before building the entry.

🐛 Proposed fix

         # Truncate long results for display (increased limit to avoid hiding critical info)
-        display_result = result
-        if display_result and len(display_result) > 300:
-            display_result = display_result[:297] + "..."
+        from .utils import strip_ansi_codes
+
+        display_result = strip_ansi_codes(result) if result else result
+        if display_result and len(display_result) > 300:
+            display_result = display_result[:297] + "..."

@@
         # Sanitize detail content before storage
         if stored_detail:
-            from .utils import strip_ansi_codes
-
             stored_detail = strip_ansi_codes(stored_detail)