feat: save sandbox snapshot before stopping

[sweetmantech]

Summary

• Saves a sandbox snapshot before calling sandbox.stop() after each agent session, so sandbox state is preserved between sessions
• Adds lib/recoup-api/updateAccountSnapshot.ts to call PATCH /api/sandboxes with the Bearer token and snapshotId
• Adds lib/sandbox/saveSnapshot.ts as SRP wrapper: sandbox.snapshot() → updateAccountSnapshot()
• Modifies lib/agent/createAgentResponse.ts to thread bearerToken and call saveSnapshot before each sandbox.stop()
• Adds CLAUDE.md with project-specific guidance for Claude Code

Test plan

• npx tsc --noEmit passes (verified locally)
• Deploy to preview, run an agent command, check Recoup-API logs for PATCH /api/sandboxes
• Verify account_snapshots row in Supabase has updated snapshot_id after session
• Verify agent responses still stream correctly (snapshot saving is non-blocking)

🤖 Generated with Claude Code

Summary by CodeRabbit

• New Features

  • Agent interactions now automatically save snapshots to preserve session state.

• Documentation

  • Added comprehensive developer guidelines for repository setup, architecture, and code principles.

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
bash	Ready	Preview	Feb 9, 2026 6:34pm

[coderabbitai]

Warning

Rate limit exceeded

@sweetmantech has exceeded the limit for the number of commits that can be reviewed per hour. Please wait 0 minutes and 10 seconds before requesting another review.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

📝 Walkthrough

Walkthrough

A new snapshot persistence feature is added to save sandbox state after agent sessions complete. The implementation includes documentation guidance, a new Recoup API integration function, a snapshot orchestration utility, and agent lifecycle modifications to trigger snapshots using the user's bearer token.

Changes

Cohort / File(s)	Summary
Documentation CLAUDE.md	New developer guidance covering git workflow, build commands, Next.js architecture, key technologies, code principles, and environment variables configuration.
Agent Request Handler lib/agent/createAgentResponse.ts	Updated to accept and propagate bearerToken through request handling; integrates saveSnapshot call into sandbox lifecycle (streaming, no-body, and error paths) before cleanup.
Recoup API Integration lib/recoup-api/updateAccountSnapshot.ts	New function sending PATCH request to Recoup API to update sandbox snapshot with snapshotId; includes bearer token authorization and error logging.
Snapshot Orchestration lib/sandbox/saveSnapshot.ts	New utility function that obtains sandbox snapshot and calls updateAccountSnapshot to persist it; catches and logs errors without re-throwing.

Sequence Diagram

sequenceDiagram
    participant Agent as Agent Handler
    participant Sandbox as Sandbox
    participant SaveSnapshot as saveSnapshot()
    participant API as Recoup API

    Agent->>Agent: Streaming completes / Error occurs
    Agent->>SaveSnapshot: saveSnapshot(sandbox, bearerToken)
    SaveSnapshot->>Sandbox: snapshot()
    Sandbox-->>SaveSnapshot: { snapshotId, ... }
    SaveSnapshot->>API: updateAccountSnapshot(bearerToken, snapshotId)
    Note over API: PATCH request with<br/>Authorization header
    API-->>SaveSnapshot: 200 OK / Error logged
    SaveSnapshot->>Sandbox: stop() [in finally]
    Sandbox-->>Agent: Cleanup complete

Loading

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~20 minutes

Possibly related PRs

• feat: load sandbox from Recoup API snapshot #4: Implements snapshot-backed sandbox creation; this PR complements it by adding snapshot persistence on sandbox lifecycle completion, forming a complete snapshot lifecycle.

Poem

🐰 A snapshot saved, a moment kept,
Before the sandbox takes its final sleep,
Through bearer tokens, API calls we leap,
The agent's work forever in the heap! 📸✨

🚥 Pre-merge checks | ✅ 2 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 0.00% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title 'feat: save sandbox snapshot before stopping' clearly and specifically summarizes the main change: sandbox snapshots are now saved before cleanup. It directly reflects the primary objective and is concise without unnecessary details.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch sweetmantech/myc-4181-bash-load-snapshot-via-recoup-api

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 4

🤖 Fix all issues with AI agents

In `@app/components/TerminalPage.tsx`:
- Around line 64-73: The getAccessToken function passed from TerminalPage to
TerminalComponent is unstable and causes Terminal.tsx's effect (cleanup/re-init)
to run on every parent render; wrap the hook-derived getAccessToken in
useCallback inside TerminalPage.tsx (so the reference is stable) or replace the
hook usePrivy() call with Privy's stable module export, then pass that stable
function to TerminalComponent (refer to getAccessToken, TerminalComponent,
Terminal.tsx useEffect) to prevent unnecessary terminal re-initialization.

In `@app/page.tsx`:
- Line 97: The anchor element with id "credits" uses target="_blank" and must
include rel="noopener noreferrer" to prevent the opened page from accessing
window.opener; update the <a ... id="credits"> element (the anchor with id
"credits" in app/page.tsx) to add rel="noopener noreferrer" alongside the
existing attributes to resolve the Biome warning.

In `@lib/agent/createAgentResponse.ts`:
- Around line 20-24: Wrap the call to req.json() in a try/catch inside
createAgentResponse (or surrounding handler) to catch JSON.parse errors and
return a 400 with a clear message; after parsing, validate that the extracted
messages is an array before using it (e.g., check Array.isArray(messages)), and
guard access to lastUserMessage and its parts (ensure lastUserMessage exists and
lastUserMessage.parts is an array) before logging or using .parts[0].text so
malformed requests yield a 400 instead of throwing a 500.
- Around line 59-72: The pipeTo promise from body.pipeTo(transform.writable) is
not handled, causing unhandled rejections if the stream errors; modify the code
around the TransformStream usage in createAgentResponse (the transform variable
and body.pipeTo call) to capture the promise (e.g., const pipePromise =
body.pipeTo(transform.writable)) and attach error handling to it (await it if
the surrounding function is async or add .catch(...) to consume/log the error)
while preserving the existing .finally() behavior that calls
saveSnapshot(sandbox, bearerToken) and sandbox.stop(); ensure the Response still
returns transform.readable and that any errors from pipeTo are not left
unhandled.

🧹 Nitpick comments (6)

lib/recoup-api/updateAccountSnapshot.ts (1)

1-4: Extract shared API configuration to lib/recoup-api/constants.ts.

Both RECOUP_API_URL and IS_PROD are duplicated identically in lib/recoup-api/createSandbox.ts and lib/recoup-api/updateAccountSnapshot.ts. Move these constants to a shared module to maintain the DRY principle and simplify future updates to API URLs or environment logic.

lib/recoup-api/createSandbox.ts (2)

1-4: Consider extracting the duplicated API URL configuration.

The IS_PROD / RECOUP_API_URL derivation is duplicated here and in lib/recoup-api/updateAccountSnapshot.ts. Extract it into a shared constant (e.g., lib/recoup-api/constants.ts) to keep the base URL in one place.

---

24-26: Silent error swallowing may hinder debugging.

The catch block returns null without any logging. While the caller handles null gracefully, consider adding a console.warn (similar to createSnapshotSandbox.ts Line 15) so failures are observable in production logs.

Proposed fix

-  } catch {
-    return null;
+  } catch (err) {
+    console.warn("createSandbox failed:", err);
+    return null;
   }

app/components/TerminalPage.tsx (1)

15-20: ESLint false positive — mounted hydration guard is a standard pattern.

The useEffect(() => setMounted(true), []) idiom is a well-known SSR hydration guard. The ESLint react-hooks/set-state-in-effect warning is a false positive here since this is intentional one-time synchronization, not a cascading render issue.

That said, if usePrivy().ready is guaranteed to be false during SSR (which is typical for client-only auth SDKs), the mounted state may be redundant with the !ready check on Line 22. Consider whether you can simplify to just if (!ready).

lib/agent/createAgentResponse.ts (2)

59-82: Consider extracting the repeated cleanup pattern.

The saveSnapshot(...).finally(() => sandbox.stop().catch(() => {})) pattern appears three times (lines 64–66, 74–76, 79–81). A small helper would reduce duplication and make the cleanup intent clearer.

Example helper

+const cleanupSandbox = (sandbox: Sandbox, bearerToken: string) =>
+  saveSnapshot(sandbox, bearerToken).finally(() =>
+    sandbox.stop().catch(() => {}),
+  );

Then use cleanupSandbox(sandbox, bearerToken) in each location.

---

31-35: messages typed as unknown[] — good for safety, but verify downstream compatibility.

The messages parameter is typed as unknown[] and passed directly to createAgentUIStreamResponse as uiMessages. This is fine if the downstream API accepts unknown[], but could hide type mismatches.

[coderabbitai]

⚠️ Potential issue | 🟠 Major

🧩 Analysis chain

🏁 Script executed:

# First, let's locate the Terminal.tsx file and examine the useEffect dependency array
find . -name "Terminal.tsx" -o -name "Terminal.ts" | head -20

Repository: recoupable/bash

Length of output: 88

---

🏁 Script executed:

# Search for getAccessToken usage to understand its scope and dependencies
rg -n "getAccessToken" --type=ts --type=tsx -A 3 -B 3 | head -100

Repository: recoupable/bash

Length of output: 86

---

🏁 Script executed:

# Check for usePrivy hook usage and how it's imported
rg -n "usePrivy" --type=ts --type=tsx -A 2 -B 2 | head -80

Repository: recoupable/bash

Length of output: 86

---

🏁 Script executed:

# Look at the TerminalPage.tsx file specifically
cat -n app/components/TerminalPage.tsx

Repository: recoupable/bash

Length of output: 2160

---

🏁 Script executed:

# Now let's examine the Terminal.tsx file, especially around line 119
cat -n app/components/Terminal.tsx | head -150

Repository: recoupable/bash

Length of output: 4923

---

🏁 Script executed:

# Check if getAccessToken is wrapped in useCallback anywhere
rg -n "useCallback" app/components/ --type-list

Repository: recoupable/bash

Length of output: 448

---

🏁 Script executed:

# Search for any memoization patterns around Privy usage
rg -n "useMemo|useCallback" app/components/ -A 2 -B 2

Repository: recoupable/bash

Length of output: 41

---

🌐 Web query:

Privy usePrivy getAccessToken function reference stability memoization

💡 Result:

getAccessToken is exposed two ways:

1. From React context:

const { getAccessToken } = usePrivy();
const token = await getAccessToken();

This call will also refresh the token if it’s near expiry/expired. [1][2]

2. As a direct import (outside the hook):

import { getAccessToken } from '@privy-io/react-auth';
const token = await getAccessToken();

If you do this, you must ensure PrivyProvider has already rendered. [1]

Reference stability / memoization guidance

Privy’s docs describe behavior, but do not promise that the function identity of getAccessToken returned by usePrivy() is stable across renders. So in React, you should treat it as potentially unstable:

• If you use it inside useEffect/useCallback, include it in the dependency array (don’t omit it assuming it’s stable).
• If you need a stable callable for dependency reasons, either:
  • wrap your usage in a callback that depends on getAccessToken, or
  • use the direct import getAccessToken (module-level function identity is stable), while still ensuring PrivyProvider is mounted. [1]

Also, make sure Privy is initialized (ready === true) before relying on auth state/interfaces from usePrivy(). [2]

Sources: [1] Privy Docs – Access tokens (client retrieval + direct import) • [2] Privy Docs – React setup / ready initialization guidance

---

🏁 Script executed:

# Check if getAccessToken is used in createAgentCommand to confirm it's actually needed in dependency array
rg -n "createAgentCommand" app/components/ -A 5 -B 2

Repository: recoupable/bash

Length of output: 2235

---

🏁 Script executed:

# Check if there's a createAgentCommand definition to see how getAccessToken is used
fd "terminal-parts" app/components/ -type f

Repository: recoupable/bash

Length of output: 229

---

🏁 Script executed:

# Let's look at how getAccessToken is used in agent-command.ts
cat -n app/components/terminal-parts/agent-command.ts | head -80

Repository: recoupable/bash

Length of output: 2784

---

Memoize getAccessToken to prevent terminal re-initialization on every render.

getAccessToken from usePrivy() is passed to TerminalComponent and included in a useEffect dependency array (Terminal.tsx Line 119). Since Privy does not guarantee a stable function reference across renders, each parent re-render creates a new getAccessToken reference, triggering the effect and tearing down/recreating the terminal unnecessarily.

Wrap getAccessToken in useCallback in TerminalPage.tsx to maintain referential stability:

const getAccessToken = useCallback(() => {
  const { getAccessToken } = usePrivy();
  return getAccessToken();
}, []);

Alternatively, use Privy's direct import (which has module-level stability) instead of the hook.

🤖 Prompt for AI Agents

In `@app/components/TerminalPage.tsx` around lines 64 - 73, The getAccessToken
function passed from TerminalPage to TerminalComponent is unstable and causes
Terminal.tsx's effect (cleanup/re-init) to run on every parent render; wrap the
hook-derived getAccessToken in useCallback inside TerminalPage.tsx (so the
reference is stable) or replace the hook usePrivy() call with Privy's stable
module export, then pass that stable function to TerminalComponent (refer to
getAccessToken, TerminalComponent, Terminal.tsx useEffect) to prevent
unnecessary terminal re-initialization.

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

Add rel="noopener noreferrer" to the external link.

Flagged by Biome: target="_blank" without rel="noopener" allows the opened page to access window.opener. Low practical risk since the link is hidden, but trivial to fix.

Proposed fix

-      <a href="https://vercel.com" target="_blank" hidden id="credits">
+      <a href="https://vercel.com" target="_blank" rel="noopener noreferrer" hidden id="credits">

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	<a href="https://vercel.com" target="_blank" hidden id="credits">
	<a href="https://vercel.com" target="_blank" rel="noopener noreferrer" hidden id="credits">

🧰 Tools

🪛 Biome (2.3.13)

[error] 97-97: Avoid using target="_blank" without rel="noopener" or rel="noreferrer".

Opening external links in new tabs without rel="noopener" is a security risk. See the explanation for more details.
Safe fix: Add the rel="noopener" attribute.

(lint/security/noBlankTarget)

🤖 Prompt for AI Agents

In `@app/page.tsx` at line 97, The anchor element with id "credits" uses
target="_blank" and must include rel="noopener noreferrer" to prevent the opened
page from accessing window.opener; update the <a ... id="credits"> element (the
anchor with id "credits" in app/page.tsx) to add rel="noopener noreferrer"
alongside the existing attributes to resolve the Biome warning.

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

No validation on request body; potential for unhandled errors.

req.json() can throw on malformed JSON, and messages is accessed without checking it exists or is an array. A bad request would surface as a 500 instead of a 400.

🤖 Prompt for AI Agents

In `@lib/agent/createAgentResponse.ts` around lines 20 - 24, Wrap the call to
req.json() in a try/catch inside createAgentResponse (or surrounding handler) to
catch JSON.parse errors and return a 400 with a clear message; after parsing,
validate that the extracted messages is an array before using it (e.g., check
Array.isArray(messages)), and guard access to lastUserMessage and its parts
(ensure lastUserMessage exists and lastUserMessage.parts is an array) before
logging or using .parts[0].text so malformed requests yield a 400 instead of
throwing a 500.