Skip to content

fix: close rust parity gaps for update streaming and timeouts#133

Merged
F16shen merged 1 commit intoAI-Shell-Team:rustfrom
F16shen:rust-dev
Apr 24, 2026
Merged

fix: close rust parity gaps for update streaming and timeouts#133
F16shen merged 1 commit intoAI-Shell-Team:rustfrom
F16shen:rust-dev

Conversation

@F16shen
Copy link
Copy Markdown
Collaborator

@F16shen F16shen commented Apr 23, 2026
edited by coderabbitai Bot
Loading

Summary

  • remove the implicit bash tool timeout unless a timeout is explicitly requested
  • distinguish preview vs final content deltas so TTFT/streamed state only reacts to final assistant output, and stop system diagnose sub-sessions from leaking outer content/timing events
  • switch stable self-update and release publication to the CDN latest/releases layout, normalize bundle arch naming, and document the new release flow

Validation

  • cargo test -p aish-tools bash::tests --lib (a later aggregate rerun stalled on the known slow/flaky test_bash_tool_exit_code PTY case after the new timeout assertions had already passed)
  • cargo test -p aish-llm session::tests --lib
  • cargo test -p aish-shell content_delta_is_final --lib
  • cargo test -p aish-tools system_diagnose::tests --lib
  • cargo test -p aish-cli --bin aish update::tests
  • bash -n packaging/build_bundle.sh packaging/scripts/publish_release.sh

AI-assisted: yes

Summary by CodeRabbit

  • New Features

    • Stable installation and self-update now use CDN-hosted "latest" metadata and per-release bundle URLs; releases are published to the CDN as well as GitHub with CDN availability and checksum validation.
    • Streaming now marks final content deltas explicitly for correct completion handling.

  • Improvements

    • Installer and bundle naming standardized to use "amd64".
    • Bash tool timeout is optional and validated.

  • Documentation

    • README, Quickstart, Contributing, and Changelog updated to reflect CDN workflow and installer changes.

  • Localization

    • Update flow error and progress messages expanded and clarified.

@github-actions github-actions Bot added ci-cd docs packaging Packaging or installation issue labels Apr 23, 2026
@github-actions
Copy link
Copy Markdown
Contributor

github-actions Bot commented Apr 23, 2026

Thanks for the pull request. A maintainer will review it when available.

Please keep the PR focused, explain the why in the description, and make sure local checks pass before requesting review.

Contribution guide: https://github.com/AI-Shell-Team/aish/blob/main/CONTRIBUTING.md

@github-actions
Copy link
Copy Markdown
Contributor

github-actions Bot commented Apr 23, 2026

This pull request description looks incomplete. Please update the missing sections below before review.

Missing items:

  • User-visible Changes
  • Compatibility
  • Testing
  • Change Type
  • Scope

@coderabbitai
Copy link
Copy Markdown

coderabbitai Bot commented Apr 23, 2026
edited
Loading

📝 Walkthrough

Walkthrough

Switches stable update and bundle distribution to a CDN layout (download/latest and download/releases//...), normalizes bundle architecture names to amd64/arm64, adds CDN publishing via a new script and CI job, updates CLI update/download logic to use CDN metadata and checksum verification, and adjusts streaming/event and tool timeout behaviors with tests and docs updates.

Changes

Cohort / File(s) Summary
CI / Release Workflows
\.github/workflows/release-preparation.yml, \.github/workflows/release.yml		 Normalize ARCH naming to amd64, update bundle naming in dry-run/smoke tests, add CDN layout validation in preparation workflow, upload build artifacts as artifacts, and add publish-release-bundles job that publishes artifacts to CDN and updates the release summary.
Packaging & Publish Script
packaging/build_bundle.sh, packaging/scripts/publish_release.sh		 Add architecture normalization (map aliases to canonical amd64/arm64) and new publish_release.sh to find artifacts, verify checksums, upload tar.gz and .sha256 to CDN (R2/S3), write latest, set cache headers, validate CDN URLs, and optionally write GH Actions step summary.
CLI Update / Download Logic
crates/aish-cli/src/update.rs		 Change stable update discovery to read CDN latest metadata (with env overrides), construct CDN release URLs, download tarball + .sha256, and verify SHA256 before install; pre-release discovery remains GitHub-based; tests updated.
Streaming / Shell
crates/aish-llm/src/session.rs, crates/aish-shell/src/app.rs		 Add is_final flag to ContentDelta payloads; only final deltas trigger TTFT/stream completion. Helpers and tests added; default is_final = true if absent.
Tools: Bash & Diagnose
crates/aish-tools/src/bash.rs, crates/aish-tools/src/system_diagnose.rs		 Make timeout optional and validate as positive integer; spawn cancellation only when provided. Add allowlist in diagnose sub-session proxy to forward only selected event types; tests added.
Localization
crates/aish-i18n/locales/en-US.yaml, crates/aish-i18n/locales/zh-CN.yaml		 Add messages for missing/invalid latest metadata, checksum invalid/mismatch, non-success statuses; unify download progress text to “Downloading release bundle…”, and add timeout validation message.
Docs & Guides
CHANGELOG.md, CONTRIBUTING.md, QUICKSTART.md, README.md		 Document CDN-based stable release flow and installer changes, update examples to use CDN download/latest and download/releases/<version>/..., and note env overrides (AISH_DOWNLOAD_BASE_URL, AISH_LATEST_URL, legacy AISH_REPO_URL).

Sequence Diagram(s)

sequenceDiagram
  participant GH as GitHub Actions
  participant Build as Build Job
  participant Artifacts as Artifact Storage
  participant Publish as publish_release.sh
  participant CDN as CDN (R2/S3)
  participant Validator as Validator (curl/sha256sum)

  GH->>Build: run build_bundle (ARCH=amd64)
  Build->>Artifacts: upload artifacts (release-bundle-linux-*)
  GH->>Publish: start publish-release-bundles job
  Publish->>Artifacts: download artifacts (release-bundle-linux-*)
  Publish->>CDN: upload tar.gz and .sha256 to /releases/${VERSION}/ (immutable cache)
  Publish->>CDN: upload VERSION to /latest (no-store)
  Publish->>Validator: HEAD/GET checks (retries)
  Validator-->>Publish: success/failure
  Publish-->>GH: append summary with published URLs (optional)
Loading

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~60 minutes

Possibly related PRs

Suggested labels

size: XL, core, tests

Poem

🐇 I hopped a patch from build to CDN bright,
Pushed bundles, checksums, and a latest light,
Arch names tidy, downloads swift and neat,
Streams finish only when deltas greet,
Hooray—releases snug and ready for flight! 🚀

🚥 Pre-merge checks | ✅ 3 | ❌ 2

❌ Failed checks (1 warning, 1 inconclusive)

Check name Status Explanation Resolution
Docstring Coverage ⚠️ Warning Docstring coverage is 64.62% which is insufficient. The required threshold is 80.00%. Write docstrings for the functions missing them to satisfy the coverage threshold.
Title check ❓ Inconclusive The title 'fix: close rust parity gaps for update streaming and timeouts' is vague and does not clearly reflect the PR's primary changes, which include CDN-based release publication and distribution architecture. Consider a more specific title that highlights the main change, such as 'feat: switch release distribution to CDN with update streaming and timeout fixes' to better represent the scope and primary objective.
✅ Passed checks (3 passed)
Check name Status Explanation
Description Check ✅ Passed Check skipped - CodeRabbit’s high-level summary is enabled.
Linked Issues check ✅ Passed Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check ✅ Passed Check skipped because no linked issues were found for this pull request.

✏️ Tip: You can configure your own custom pre-merge checks in the settings.

✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests

Comment @coderabbitai help to get the list of available commands and usage tips.

coderabbitai[bot]
coderabbitai Bot reviewed Apr 23, 2026
View reviewed changes
Copy link
Copy Markdown

@coderabbitai coderabbitai Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 4

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)
.github/workflows/release.yml (1)

95-103: ⚠️ Potential issue | 🟠 Major

The CDN release flow only publishes linux-amd64.

crates/aish-cli/src/update.rs still advertises self-update bundles for darwin and arm64, but this workflow now builds/uploads only aish-<version>-linux-amd64. After switching stable downloads to the CDN, macOS and Linux arm64 clients will resolve bundle URLs that can never exist here.

📦 Suggested direction 
-      - name: Build release binary
-        run: cargo build --release --target x86_64-unknown-linux-musl
+      # Expand this into a matrix that builds/publishes every platform/arch
+      # combination that `detect_platform()` can return, or narrow
+      # `detect_platform()` to the bundles you actually ship.

Also applies to: 129-172

🤖 Prompt for AI Agents 
Verify each finding against the current code and only fix it if needed.

In @.github/workflows/release.yml around lines 95 - 103, The workflow currently
builds/uploads only linux-amd64 artifacts (steps named "Build release binary"
and "Build release bundle" using PLATFORM="linux" ARCH="amd64" and
OUTPUT_DIR="artifacts/amd64"), but crates/aish-cli/src/update.rs still
advertises darwin and arm64 bundles; either update the release workflow to build
and upload the missing platform targets (add builds for darwin/arm64 with
appropriate PLATFORM/ARCH/OUTPUT_DIR values and invoke packaging/build_bundle.sh
for each) or change crates/aish-cli/src/update.rs to stop advertising
darwin/arm64 bundles so advertised URLs match the actual uploaded
artifacts—modify whichever path you choose and ensure the symbols "Build release
bundle", PLATFORM, ARCH, OUTPUT_DIR and the update logic in update.rs are kept
consistent.
🧹 Nitpick comments (3)
.github/workflows/release-preparation.yml (1)

133-135: Validate checksum content, not only file presence.

The CDN layout check currently proves files exist, but not that *.sha256 matches the copied tarball.

✅ Suggested integrity check addition 
           test -f "$RELEASE_LAYOUT/latest"
           test -f "$RELEASE_LAYOUT/releases/${VERSION}/$BUNDLE"
           test -f "$RELEASE_LAYOUT/releases/${VERSION}/$SHA_FILE"
+          (
+            cd "$RELEASE_LAYOUT/releases/${VERSION}"
+            sha256sum -c "$SHA_FILE"
+          )
🤖 Prompt for AI Agents 
Verify each finding against the current code and only fix it if needed.

In @.github/workflows/release-preparation.yml around lines 133 - 135, The
workflow currently only checks file existence for
$RELEASE_LAYOUT/releases/${VERSION}/$BUNDLE and $SHA_FILE; update it to validate
the checksum content by computing the tarball's SHA-256 and comparing it against
the contents of $SHA_FILE (or use sha256sum -c against the checksum file) so the
integrity of $BUNDLE is verified; locate the block using the RELEASE_LAYOUT,
VERSION, BUNDLE and SHA_FILE variables and replace the simple test -f check with
a checksum comparison step that exits non‑zero on mismatch.
QUICKSTART.md (1)

15-15: Consider documenting valid <arch> values explicitly.

Adding (amd64|arm64) here would reduce avoidable 404s from users trying x86_64.

✏️ Suggested docs tweak 
-Download the matching `aish-<version>-linux-<arch>.tar.gz` bundle from the CDN release directory `https://cdn.aishell.ai/download/releases/<version>/`, then run:
+Download the matching `aish-<version>-linux-<arch>.tar.gz` bundle (where `<arch>` is `amd64` or `arm64`) from the CDN release directory `https://cdn.aishell.ai/download/releases/<version>/`, then run:
🤖 Prompt for AI Agents 
Verify each finding against the current code and only fix it if needed.

In `@QUICKSTART.md` at line 15, The download instruction in QUICKSTART.md uses a
generic `<arch>` which leads to 404s; update the text that shows the filename
pattern `aish-<version>-linux-<arch>.tar.gz` and the CDN URL
`https://cdn.aishell.ai/download/releases/<version>/` to explicitly list
supported architectures (e.g., amd64 and arm64), and add a short note that users
should use "amd64" rather than "x86_64" (or include both as accepted aliases) so
readers know which values to substitute for `<arch>`.
README.md (1)

84-84: Use full URLs here for consistency with the rest of install docs.

Relative download/... wording is slightly ambiguous versus explicit CDN URLs used elsewhere.

🤖 Prompt for AI Agents 
Verify each finding against the current code and only fix it if needed.

In `@README.md` at line 84, Update the README sentence to use full CDN URLs
instead of relative paths: replace the ambiguous `download/latest` and
`download/releases/<version>/...` fragments with the explicit CDN base (matching
other docs) and mention the override environment variables
AISH_DOWNLOAD_BASE_URL, AISH_LATEST_URL and legacy AISH_REPO_URL so readers
clearly see the exact full endpoints to use; ensure the phrasing mirrors other
install docs for consistency.
🤖 Prompt for all review comments with AI agents 
Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@crates/aish-cli/src/update.rs`:
- Around line 674-741: The tests that mutate process-wide environment variables
(test_download_base_url_defaults_to_cdn,
test_download_base_url_prefers_explicit_override,
test_latest_version_url_uses_default_pattern,
test_latest_version_url_prefers_override,
test_release_download_url_uses_versioned_cdn_path) must be serialized to avoid
races; add the serial_test crate as a dev-dependency and annotate each of those
test functions with #[serial] (or alternatively guard the env changes with a
shared Mutex) so environment setup/teardown in download_base_url(),
latest_version_url(), and release_download_url() runs exclusively.
- Around line 398-400: The downloaded release bundle must be integrity-checked
before extraction/execution: after building release_url with
release_download_url(tag_name, &filename) and after
download_with_progress(&release_url, &dest_path, &filename) returns, fetch the
corresponding .sha256 artifact (e.g., release_download_url(tag_name,
&format!("{}.sha256", filename))) or a remote checksum endpoint, compute the
SHA-256 of the downloaded file (read dest_path, compute digest, hex-lowercase
it), trim and compare it to the expected checksum value from the .sha256 file,
and fail (return Err) if they don’t match; only proceed to untar/run install.sh
after this verification. Ensure you reference and update the code paths around
release_download_url, download_with_progress, dest_path and filename to
implement this check.

In `@packaging/scripts/publish_release.sh`:
- Around line 78-80: The CDN validation loop currently runs a single curl HEAD
per URL (the for loop over validated_urls with the curl -fsSI call) which can
fail due to eventual consistency; modify the loop to retry each URL several
times with exponential or fixed backoff before giving up: for each entry in
validated_urls run the curl command, if it fails retry up to N attempts
(configurable constant) with sleep intervals (increasing or fixed), and only
mark the URL as failed after all attempts exhaust; ensure the retry logic
returns the original curl exit code on final failure and keeps the existing
timeout flags (--connect-timeout, --max-time).

---

Outside diff comments:
In @.github/workflows/release.yml:
- Around line 95-103: The workflow currently builds/uploads only linux-amd64
artifacts (steps named "Build release binary" and "Build release bundle" using
PLATFORM="linux" ARCH="amd64" and OUTPUT_DIR="artifacts/amd64"), but
crates/aish-cli/src/update.rs still advertises darwin and arm64 bundles; either
update the release workflow to build and upload the missing platform targets
(add builds for darwin/arm64 with appropriate PLATFORM/ARCH/OUTPUT_DIR values
and invoke packaging/build_bundle.sh for each) or change
crates/aish-cli/src/update.rs to stop advertising darwin/arm64 bundles so
advertised URLs match the actual uploaded artifacts—modify whichever path you
choose and ensure the symbols "Build release bundle", PLATFORM, ARCH, OUTPUT_DIR
and the update logic in update.rs are kept consistent.

---

Nitpick comments:
In @.github/workflows/release-preparation.yml:
- Around line 133-135: The workflow currently only checks file existence for
$RELEASE_LAYOUT/releases/${VERSION}/$BUNDLE and $SHA_FILE; update it to validate
the checksum content by computing the tarball's SHA-256 and comparing it against
the contents of $SHA_FILE (or use sha256sum -c against the checksum file) so the
integrity of $BUNDLE is verified; locate the block using the RELEASE_LAYOUT,
VERSION, BUNDLE and SHA_FILE variables and replace the simple test -f check with
a checksum comparison step that exits non‑zero on mismatch.

In `@QUICKSTART.md`:
- Line 15: The download instruction in QUICKSTART.md uses a generic `<arch>`
which leads to 404s; update the text that shows the filename pattern
`aish-<version>-linux-<arch>.tar.gz` and the CDN URL
`https://cdn.aishell.ai/download/releases/<version>/` to explicitly list
supported architectures (e.g., amd64 and arm64), and add a short note that users
should use "amd64" rather than "x86_64" (or include both as accepted aliases) so
readers know which values to substitute for `<arch>`.

In `@README.md`:
- Line 84: Update the README sentence to use full CDN URLs instead of relative
paths: replace the ambiguous `download/latest` and
`download/releases/<version>/...` fragments with the explicit CDN base (matching
other docs) and mention the override environment variables
AISH_DOWNLOAD_BASE_URL, AISH_LATEST_URL and legacy AISH_REPO_URL so readers
clearly see the exact full endpoints to use; ensure the phrasing mirrors other
install docs for consistency.
🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

  • Push a commit to this branch (recommended)
  • Create a new PR with the fixes
ℹ️ Review info
⚙️ Run configuration

Configuration used: Repository UI

Review profile: CHILL

Plan: Pro Plus

Run ID: 456b8b4c-ee77-4e8e-a994-95a14938603f

📥 Commits

Reviewing files that changed from the base of the PR and between 4d9cf0b and e6d8307.

📒 Files selected for processing (15)
  • .github/workflows/release-preparation.yml
  • .github/workflows/release.yml
  • CHANGELOG.md
  • CONTRIBUTING.md
  • QUICKSTART.md
  • README.md
  • crates/aish-cli/src/update.rs
  • crates/aish-i18n/locales/en-US.yaml
  • crates/aish-i18n/locales/zh-CN.yaml
  • crates/aish-llm/src/session.rs
  • crates/aish-shell/src/app.rs
  • crates/aish-tools/src/bash.rs
  • crates/aish-tools/src/system_diagnose.rs
  • packaging/build_bundle.sh
  • packaging/scripts/publish_release.sh

Comment thread crates/aish-cli/src/update.rs
Comment thread crates/aish-cli/src/update.rs
Comment thread crates/aish-tools/src/bash.rs Outdated
Comment thread packaging/scripts/publish_release.sh Outdated
coderabbitai[bot]
coderabbitai Bot reviewed Apr 23, 2026
View reviewed changes
Copy link
Copy Markdown

@coderabbitai coderabbitai Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 5

🧹 Nitpick comments (1)
crates/aish-tools/src/system_diagnose.rs (1)

240-259: Consider making allowlist tests exhaustive.

These tests cover representative cases, but not every forwarded variant. A table-driven test over all currently allowlisted types would reduce regression risk when LlmEventType changes.

Example test structure 
 #[test]
 fn test_should_forward_diagnose_event_only_for_ui_relevant_types() {
-    assert!(should_forward_diagnose_event(
-        &LlmEventType::ToolExecutionStart
-    ));
-    assert!(should_forward_diagnose_event(&LlmEventType::Error));
-    assert!(!should_forward_diagnose_event(&LlmEventType::ContentDelta));
-    assert!(!should_forward_diagnose_event(&LlmEventType::OpEnd));
+    let should_forward = [
+        LlmEventType::ToolExecutionStart,
+        LlmEventType::ToolExecutionEnd,
+        LlmEventType::Error,
+        LlmEventType::ToolConfirmationRequired,
+        LlmEventType::InteractionRequired,
+        LlmEventType::Cancelled,
+    ];
+    for ty in should_forward {
+        assert!(should_forward_diagnose_event(&ty));
+    }
 }
🤖 Prompt for AI Agents 
Verify each finding against the current code and only fix it if needed.

In `@crates/aish-tools/src/system_diagnose.rs` around lines 240 - 259, Update the
tests for should_forward_diagnose_event to be exhaustive/table-driven: replace
the two ad-hoc tests
(test_should_forward_diagnose_event_only_for_ui_relevant_types and
test_should_forward_diagnose_event_rejects_generation_markers) with a single
parameterized test that iterates over every LlmEventType variant, asserting true
for each variant that the allowlist contains and false for all others; locate
the allowlist logic in should_forward_diagnose_event and derive the expected
boolean per-variant from that same source (or a small canonical list of allowed
variants) so future additions to LlmEventType will fail the test if not
explicitly allowed.
🤖 Prompt for all review comments with AI agents 
Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@crates/aish-cli/src/update.rs`:
- Around line 135-143: The current validation allows non-dot numeric strings
(e.g., "release-2026-04-23") that compare_versions() cannot parse; tighten
validation so normalized only accepts dot-separated numeric parts. Replace the
logic around normalized/valid with a check that normalized.split('.').all(|part|
!part.is_empty() && part.chars().all(|ch| ch.is_ascii_digit())), and keep the
existing guard that normalized must contain at least one digit; this ensures
compare_versions() can parse the version strings used elsewhere (e.g., in
compare_versions()).

In `@packaging/scripts/publish_release.sh`:
- Around line 26-36: Current check only ensures at least one matching artifact
exists; instead iterate the discovered bundles and verify each
aish-${VERSION}-linux-*.tar.gz has a corresponding .sha256 file and fail if any
checksum is missing. Update the logic that builds ARTIFACT_FILES (and/or
introduce TAR_FILES and CHECKSUM_FILES) to collect .tar.gz entries, for each tar
verify existence of the same filename with .sha256 (using ARTIFACT_ROOT and
VERSION to construct the expected sibling name), and if any sibling is absent
print an error and exit 1 so publish_release.sh fails fast on incomplete
artifact sets.
- Around line 26-30: The find predicate is broken by the newline after the
escaped "(" which causes the shell to terminate the find command; in
publish_release.sh fix the ARTIFACT_FILES assignment so the parentheses and the
first -name are on the same command line (e.g. change find "$ARTIFACT_ROOT"
-type f \( to find "$ARTIFACT_ROOT" -type f \( -name ... ), resulting in a
single continuous find invocation that includes both -name
"aish-${VERSION}-linux-*.tar.gz" and -name
"aish-${VERSION}-linux-*.tar.gz.sha256" (or alternatively place a
line-continuation backslash at the end of the line before the newline), ensuring
ARTIFACT_FILES, ARTIFACT_ROOT and VERSION are used unchanged.
- Around line 71-85: The validate_url function is currently using $? from the if
compound so it can capture the wrong exit code; modify validate_url to run curl
and immediately store its exit status in exit_code (e.g., run curl -fsSI
--connect-timeout 10 --max-time 30 "$url" >/dev/null; exit_code=$?), then test
exit_code (if (( exit_code == 0 )); then return 0; fi) before any other
commands, and keep the existing retry logic with VALIDATION_RETRY_COUNT and
VALIDATION_RETRY_DELAY_SECS unchanged; ensure exit_code is returned on the final
failed attempt.

---

Nitpick comments:
In `@crates/aish-tools/src/system_diagnose.rs`:
- Around line 240-259: Update the tests for should_forward_diagnose_event to be
exhaustive/table-driven: replace the two ad-hoc tests
(test_should_forward_diagnose_event_only_for_ui_relevant_types and
test_should_forward_diagnose_event_rejects_generation_markers) with a single
parameterized test that iterates over every LlmEventType variant, asserting true
for each variant that the allowlist contains and false for all others; locate
the allowlist logic in should_forward_diagnose_event and derive the expected
boolean per-variant from that same source (or a small canonical list of allowed
variants) so future additions to LlmEventType will fail the test if not
explicitly allowed.
🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

  • Push a commit to this branch (recommended)
  • Create a new PR with the fixes
ℹ️ Review info
⚙️ Run configuration

Configuration used: Repository UI

Review profile: CHILL

Plan: Pro Plus

Run ID: 74675eb4-b238-47b1-b4e6-387dd05bb108

📥 Commits

Reviewing files that changed from the base of the PR and between e6d8307 and 25f1077.

📒 Files selected for processing (10)
  • .github/workflows/release-preparation.yml
  • QUICKSTART.md
  • README.md
  • crates/aish-cli/src/update.rs
  • crates/aish-i18n/locales/en-US.yaml
  • crates/aish-i18n/locales/zh-CN.yaml
  • crates/aish-shell/src/app.rs
  • crates/aish-tools/src/bash.rs
  • crates/aish-tools/src/system_diagnose.rs
  • packaging/scripts/publish_release.sh
✅ Files skipped from review due to trivial changes (1)
  • QUICKSTART.md
🚧 Files skipped from review as they are similar to previous changes (4)
  • .github/workflows/release-preparation.yml
  • crates/aish-i18n/locales/zh-CN.yaml
  • crates/aish-tools/src/bash.rs
  • README.md

Comment thread crates/aish-cli/src/update.rs
Comment thread crates/aish-cli/src/update.rs
Comment thread packaging/scripts/publish_release.sh
Comment thread packaging/scripts/publish_release.sh Outdated
Comment thread packaging/scripts/publish_release.sh
coderabbitai[bot]
coderabbitai Bot reviewed Apr 24, 2026
View reviewed changes
Copy link
Copy Markdown

@coderabbitai coderabbitai Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🧹 Nitpick comments (1)
crates/aish-cli/src/update.rs (1)

721-793: Consider RAII guards for cleaner environment variable cleanup.

The current pattern removes environment variables at the start of tests that need a clean state, which mitigates issues from failed assertions. However, if an assertion fails mid-test after setting variables, the cleanup at the end won't run.

A more robust pattern would use RAII guards that restore variables on drop, but the current approach is acceptable for test code since the mutex prevents concurrent access and subsequent tests clean up at the start.

🧹 Optional: RAII guard pattern 
struct EnvGuard {
    key: &'static str,
    original: Option<String>,
}

impl EnvGuard {
    fn set(key: &'static str, value: &str) -> Self {
        let original = std::env::var(key).ok();
        unsafe { std::env::set_var(key, value); }
        Self { key, original }
    }
}

impl Drop for EnvGuard {
    fn drop(&mut self) {
        unsafe {
            match &self.original {
                Some(v) => std::env::set_var(self.key, v),
                None => std::env::remove_var(self.key),
            }
        }
    }
}

// Usage:
let _guard = env_test_lock();
let _url = EnvGuard::set("AISH_DOWNLOAD_BASE_URL", "https://cdn.example.com/download/");
assert_eq!(download_base_url(), "https://cdn.example.com/download");
// Automatic cleanup on drop
🤖 Prompt for AI Agents 
Verify each finding against the current code and only fix it if needed.

In `@crates/aish-cli/src/update.rs` around lines 721 - 793, Tests currently
manually set and remove env vars which can leak state on assertion failure;
introduce an RAII EnvGuard (with EnvGuard::set(key, val) storing original
Option<String> and a Drop impl that restores or removes the var) and replace
manual unsafe set/remove pairs in tests like
test_download_base_url_prefers_explicit_override,
test_latest_version_url_prefers_override, and
test_release_download_url_uses_versioned_cdn_path with let _guard =
EnvGuard::set("AISH_DOWNLOAD_BASE_URL", "...") (and similar for
AISH_REPO_URL/AISH_LATEST_URL) so environment is always restored when the guard
is dropped.
🤖 Prompt for all review comments with AI agents 
Verify each finding against the current code and only fix it if needed.

Nitpick comments:
In `@crates/aish-cli/src/update.rs`:
- Around line 721-793: Tests currently manually set and remove env vars which
can leak state on assertion failure; introduce an RAII EnvGuard (with
EnvGuard::set(key, val) storing original Option<String> and a Drop impl that
restores or removes the var) and replace manual unsafe set/remove pairs in tests
like test_download_base_url_prefers_explicit_override,
test_latest_version_url_prefers_override, and
test_release_download_url_uses_versioned_cdn_path with let _guard =
EnvGuard::set("AISH_DOWNLOAD_BASE_URL", "...") (and similar for
AISH_REPO_URL/AISH_LATEST_URL) so environment is always restored when the guard
is dropped.
ℹ️ Review info
⚙️ Run configuration

Configuration used: Repository UI

Review profile: CHILL

Plan: Pro Plus

Run ID: 32752efe-8b1f-462a-b932-44e2a3ada23a

📥 Commits

Reviewing files that changed from the base of the PR and between 25f1077 and b2ebe05.

📒 Files selected for processing (15)
  • .github/workflows/release-preparation.yml
  • .github/workflows/release.yml
  • CHANGELOG.md
  • CONTRIBUTING.md
  • QUICKSTART.md
  • README.md
  • crates/aish-cli/src/update.rs
  • crates/aish-i18n/locales/en-US.yaml
  • crates/aish-i18n/locales/zh-CN.yaml
  • crates/aish-llm/src/session.rs
  • crates/aish-shell/src/app.rs
  • crates/aish-tools/src/bash.rs
  • crates/aish-tools/src/system_diagnose.rs
  • packaging/build_bundle.sh
  • packaging/scripts/publish_release.sh
✅ Files skipped from review due to trivial changes (2)
  • CONTRIBUTING.md
  • CHANGELOG.md
🚧 Files skipped from review as they are similar to previous changes (9)
  • packaging/build_bundle.sh
  • crates/aish-shell/src/app.rs
  • .github/workflows/release-preparation.yml
  • QUICKSTART.md
  • crates/aish-tools/src/system_diagnose.rs
  • crates/aish-i18n/locales/en-US.yaml
  • crates/aish-i18n/locales/zh-CN.yaml
  • README.md
  • crates/aish-tools/src/bash.rs

@F16shen F16shen merged commit d8e431f into AI-Shell-Team:rust Apr 24, 2026
8 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@coderabbitai coderabbitai[bot] coderabbitai[bot] left review comments

Assignees

No one assigned

Labels

ci-cd docs experienced-contributor packaging Packaging or installation issue size: L

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@F16shen