Surface provider skills in the slash command menu

[blackmammoth]

Closes #456
Closes #494

Summary
This PR adds a unified provider skills system and exposes skills in the chat slash command popup. It lets the backend fetch skills from Claude, Codex, Gemini, and Cursor using each provider’s native filesystem rules, then normalizes them into one API response that the frontend can render as slash commands.

Why
Skills are stored differently across providers, and Claude plugin skills/commands have extra namespace and install-path rules. Without a normalized backend contract, the UI would need provider-specific filesystem knowledge or users would need to remember commands manually.

This also improves the slash command UX so skills feel discoverable and safe to use: duplicates are removed, namespaced filtering is precise, / only opens commands at the start of input, and the popup no longer covers what the user is typing.

Backend Changes

• Added a provider skills interface to the abstract provider contract.
• Added normalized skill types for provider, scope, command, source path, plugin name, and plugin id.
• Added shared filesystem helpers for finding SKILL.md files and parsing frontmatter.
• Added skills.service.ts to keep route logic thin.
• Added GET /providers/:provider/skills.
• Added shared SkillsProvider base logic for providers with SKILL.md folder discovery.

Provider Discovery

• Claude:
  • Reads user and project skills.
  • Reads enabled plugins from settings.json.
  • Resolves plugin installs from installed_plugins.json.
  • Moves one directory above installPath, scans direct child folders, and reads .claude-plugin/plugin.json when present.
  • Uses commands/*.md first when available.
  • Falls back to skills/**/SKILL.md when no commands folder exists.
  • Namespaces plugin commands as /PluginName:command.
• Codex:
  • Reads repo, parent repo, repo root, user, admin, and system skill locations.
  • Uses $skill-name commands.
• Gemini:
  • Reads Gemini and shared .agents skill locations.
• Cursor:
  • Reads project and user skill locations.

Frontend Changes

• useSlashCommands.ts now fetches provider skills and merges them with built-in/custom commands.
• Skill selection inserts the skill command into the input instead of executing it as an app command.
• Duplicate provider skills are collapsed by executable command.
• Slash command activation now only works when / is the first input character.
• Namespaced command filtering is now deterministic, so /Notion:find only shows matching Notion commands.
• CommandMenu.tsx was redesigned with icons, section counts, better selected states, truncation, and improved placement above the composer.

Tests

• Added provider skills tests covering Claude, Codex, Gemini, and Cursor discovery.
• Claude tests cover plugin command files, plugin skill fallback, recursive skill lookup, disabled plugins, duplicate handling, and plugin-name fallback behavior.
• Verified with TypeScript and ESLint checks during implementation and commit hooks.

Key Files

• abstract.provider.ts
• skills.provider.ts
• skills.service.ts
• provider.routes.ts
• claude-skills.provider.ts
• codex-skills.provider.ts
• gemini-skills.provider.ts
• cursor-skills.provider.ts
• skills.test.ts
• interfaces.ts
• types.ts
• utils.ts
• useSlashCommands.ts
• useChatComposerState.ts
• CommandMenu.tsx

Out of Scope

• No frontend skill management UI.
• No skill creation/editing/deletion.
• No backend mutation endpoints for skills.
• No provider execution changes beyond inserting skill commands into the composer.

Summary by CodeRabbit

• New Features
  • Provider skill discovery for Claude, Codex, Cursor, and Gemini exposed via a new provider skills API; skills surface in the slash-command menu.
• Improvements
  • Slash command system now supports provider "skill" commands, improved filtering and insertion, and refined command menu visuals/positioning.
• Tests
  • Integration tests added to validate provider skill discovery and scopes.
• Documentation
  • Provider module README added with onboarding and implementation guidance.

[coderabbitai]

📝 Walkthrough

Walkthrough

Adds provider-skill types and utilities, a shared SkillsProvider base, provider-specific skill implementations (Claude/Codex/Cursor/Gemini), a service + GET /:provider/skills route and index export, frontend hook and CommandMenu integration for skill commands, supporting frontmatter/command-parser updates, tests, and documentation.

Changes

Provider Skills Discovery & Integration

Layer / File(s)	Summary
Data Contracts server/shared/types.ts, server/shared/interfaces.ts, server/modules/providers/shared/base/abstract.provider.ts	Adds provider-skill types and IProviderSkills; IProvider and AbstractProvider require readonly skills: IProviderSkills.
Frontmatter & Skill Markdown Utilities server/shared/frontmatter.ts, server/shared/utils.ts	Renames frontmatter helper to parseFrontMatter, updates engines, and adds findProviderSkillMarkdownFiles() and readProviderSkillMarkdownDefinition() for SKILL.md discovery and parsing.
Shared SkillsProvider Base server/modules/providers/shared/skills/skills.provider.ts	Abstract SkillsProvider implements listSkills(): resolves workspace path, calls getSkillSources(), discovers and parses markdown skills, derives commands via prefix/callback, accumulates ProviderSkill objects, and tolerates per-file failures.
Claude Skills Provider server/modules/providers/list/claude/claude-skills.provider.ts, server/modules/providers/list/claude/claude.provider.ts	ClaudeSkillsProvider supplies user/project sources and discovers enabled plugins (settings.json + installed_plugins.json), resolves plugin names from .claude-plugin/plugin.json, discovers commands/*.md and skills/SKILL.md, constructs /{pluginName}:{name} commands, skips disabled/malformed entries, and ClaudeProvider exposes skills.
Codex Skills Provider server/modules/providers/list/codex/codex-skills.provider.ts, server/modules/providers/list/codex/codex.provider.ts	CodexSkillsProvider detects topmost .git root, assembles repo/workspace/parent/git-root and user/admin/system sources, normalizes/deduplicates rootDirs, and is exposed as skills.
Cursor & Gemini Skills Providers server/modules/providers/list/cursor/*, server/modules/providers/list/gemini/*	CursorSkillsProvider and GeminiSkillsProvider define provider-specific user/project and shared .agents/skills source locations with / commandPrefix and are instantiated as skills on their providers.
Service Layer & REST API server/modules/providers/services/skills.service.ts, server/modules/providers/provider.routes.ts, server/modules/providers/index.ts	Adds providerSkillsService.listProviderSkills() that resolves provider and delegates to provider.skills.listSkills(). Adds GET /:provider/skills route returning { provider, skills }. Index re-exports providerSkillsService.
Frontend Slash-Command Hook src/components/chat/hooks/useSlashCommands.ts	Hook adds 'skill' command type, fetches provider skills from /api/providers/{provider}/skills, maps/dedupes into SlashCommand objects with metadata, merges with built-in/custom commands, replaces Fuse fuzzy search with filterSlashCommands() (prefix/substring/description), and adds insertCommandIntoInput() to insert skill commands into input without executing them.
Chat Composer Integration src/components/chat/hooks/useChatComposerState.ts	Passes provider to useSlashCommands(), restricts slash-command auto-execution to non-skill commands when input (right-trimmed) starts with /, and keys draft persistence by selectedProjectId.
UI: Command Menu src/components/chat/view/subcomponents/CommandMenu.tsx	Replaces placeholder icons with lucide-react icons, adds namespace labels/icons/accents, introduces positioning constants, refactors rendering into row objects for dedupe/frequent-command handling, and updates selected-state visuals and styling.
Commands Route & Parser server/routes/commands.js, server/utils/commandParser.js	Switches to parseFrontMatter import from shared frontmatter and updates callsites in command scanning and execution.
Tests server/modules/providers/tests/skills.test.ts	Integration tests for Claude, Codex, Gemini, and Cursor that build temporary directory layouts, patch os.homedir(), and assert discovered skills, scopes, command formatting, plugin metadata, and exclusion of disabled/malformed entries.
Docs & Lint server/modules/providers/README.md, eslint.config.js	Adds Providers module README and extends eslint backend-shared-utils pattern to include server/shared/frontmatter.ts.

Possibly related PRs

• siteboon/claudecodeui#392: Overlapping changes to chat hooks (useChatComposerState/useSlashCommands) and slash-command handling.
• siteboon/claudecodeui#666: Related provider abstraction and services changes touching provider contract and runtime.
• siteboon/claudecodeui#374: Related frontend command/menu and hook updates.

Suggested reviewers

• viper151

Poem

🐰 I nibble SKILL.md beneath the moon,

Plugins hum a soft, discoverable tune.
Slash commands hop into the composer light,
Icons sparkle, ready for the night,
A rabbit cheers: skills are found—delight!

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 50.00% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title 'Surface provider skills in the slash command menu' clearly and concisely describes the main objective of the PR, which is to expose provider-discovered skills in the chat slash command popup.
Linked Issues check	✅ Passed	The PR implements core requirements from both #456 (displaying skills in command list) and #494 (loading Claude plugin commands), including skill discovery, provider-specific parsing, frontend integration, and command insertion behavior.
Out of Scope Changes check	✅ Passed	All changes are directly related to surfacing provider skills: backend discovery/API, frontend slash command integration, utilities for markdown parsing, and provider-specific implementations. Frontmatter refactoring supports safe skill markdown parsing.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

📝 Generate docstrings

• Create stacked PR
• Commit on current branch

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch feature/setup-skills

Tip

💬 Introducing Slack Agent: The best way for teams to turn conversations into code.

Slack Agent is built on CodeRabbit's deep understanding of your code, so your team can collaborate across the entire SDLC without losing context.

• Generate code and open pull requests
• Plan features and break down work
• Investigate incidents and troubleshoot customer tickets together
• Automate recurring tasks and respond to alerts with triggers
• Summarize progress and report instantly

Built for teams:

• Shared memory across your entire org—no repeating context
• Per-thread sandboxes to safely plan and execute work
• Governance built-in—scoped access, auditability, and budget controls

One agent for your entire SDLC. Right inside Slack.

👉 Get started

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 3

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

src/components/chat/hooks/useSlashCommands.ts (1)

197-236: ⚠️ Potential issue | 🟠 Major | ⚡ Quick win

Don't let provider-skills fetch failures blank the whole slash menu.

/api/providers/${provider}/skills is additive here, but any thrown error from that request currently lands in the outer catch and clears even the built-in/custom commands that were already fetched successfully. A flaky skills response should degrade to [], not take down the entire menu.

Suggested fix

-        const skillsResponse = await authenticatedFetch(
-          `/api/providers/${encodeURIComponent(provider)}/skills${skillsParams.toString() ? `?${skillsParams.toString()}` : ''}`,
-        );
-        const skillsData = skillsResponse.ok
-          ? ((await skillsResponse.json()) as ProviderSkillsResponse)
-          : null;
+        let skillsData: ProviderSkillsResponse | null = null;
+        try {
+          const skillsResponse = await authenticatedFetch(
+            `/api/providers/${encodeURIComponent(provider)}/skills${skillsParams.toString() ? `?${skillsParams.toString()}` : ''}`,
+          );
+          skillsData = skillsResponse.ok
+            ? ((await skillsResponse.json()) as ProviderSkillsResponse)
+            : null;
+        } catch (error) {
+          console.warn('Error fetching provider skills:', error);
+        }
         const skillCommands = dedupeProviderSkills(skillsData?.data?.skills || [])
           .map(mapSkillToSlashCommand);

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@src/components/chat/hooks/useSlashCommands.ts` around lines 197 - 236, The
skills fetch currently lives inside the main try and any error from
authenticatedFetch(`/api/providers/${encodeURIComponent(provider)}/skills...`)
bubbles out and clears all commands; isolate that fetch so failures degrade to
an empty skills list instead of aborting the whole flow: wrap the provider
skills request/parse (the logic around skillsResponse, skillsData, skillCommands
and dedupeProviderSkills/mapSkillToSlashCommand) in its own try/catch (or handle
non-ok responses) and set skillCommands = [] on error, then continue building
allCommands and calling setSlashCommands; keep the rest of the logic (sorting,
readCommandHistory, setSlashCommands) unchanged so built-in/custom commands
still show when the skills endpoint is flaky.

🧹 Nitpick comments (2)

server/modules/providers/list/claude/claude-skills.provider.ts (2)

146-161: ⚡ Quick win

Plugins with both commands/ and skills/ only discover commands.

The continue statement at line 150 skips skills/ discovery when commands/ exists. This precedence behavior means a plugin containing both folders will only surface commands, not skills. If this is intentional, consider adding a comment explaining the design choice. If not, both folders should be processed.

📝 Option 1: Add clarifying comment

           const commandsPath = path.join(pluginFolder, 'commands');
           if (await pathExistsAsDirectory(commandsPath)) {
+            // Only process commands/ if present; skills/ is ignored when commands/ exists
             skills.push(
               ...(await this.listPluginCommandSkills(commandsPath, pluginId, pluginName)),
             );
             continue;
           }

♻️ Option 2: Process both folders

           const commandsPath = path.join(pluginFolder, 'commands');
           if (await pathExistsAsDirectory(commandsPath)) {
             skills.push(
               ...(await this.listPluginCommandSkills(commandsPath, pluginId, pluginName)),
             );
-            continue;
           }

           const skillsPath = path.join(pluginFolder, 'skills');
-          if (!(await pathExistsAsDirectory(skillsPath))) {
-            continue;
-          }
-
-          skills.push(
-            ...(await this.listPluginSkillMarkdowns(pluginFolder, pluginId, pluginName)),
-          );
+          if (await pathExistsAsDirectory(skillsPath)) {
+            skills.push(
+              ...(await this.listPluginSkillMarkdowns(pluginFolder, pluginId, pluginName)),
+            );
+          }

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@server/modules/providers/list/claude/claude-skills.provider.ts` around lines
146 - 161, The current loop uses a continue after discovering commands which
prevents also discovering skills when a plugin has both folders; update the
logic in the loop around pathExistsAsDirectory(commandsPath),
listPluginCommandSkills, listPluginSkillMarkdowns, commandsPath and skillsPath
so both folders are processed: either remove the continue and let execution fall
through to check skillsPath and call listPluginSkillMarkdowns (ensuring
duplicates aren’t added to skills) or explicitly call both
listPluginCommandSkills(...) and listPluginSkillMarkdowns(...) when both paths
exist; if the original precedence was intentional, add a clear comment
explaining why the continue short-circuits discovery.

---

195-197: ⚡ Quick win

Consider logging errors for debugging plugin discovery issues.

The error handlers at lines 195-197, 199-201, and 242-244 silently ignore malformed or unreadable plugin files to ensure resilient discovery. While this prevents one bad file from blocking others, it may make troubleshooting plugin configuration issues difficult for users. Consider logging these errors at debug or warning level.

📊 Proposed enhancement to add logging

For example, at lines 195-197:

-        } catch {
+        } catch (error) {
           // Malformed command markdown should not block sibling plugin commands.
+          console.debug(`Skipping malformed command file ${sourcePath}:`, error);
         }

Apply similar changes to other catch blocks for improved observability.

Also applies to: 199-201, 242-244

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@server/modules/providers/list/claude/claude-skills.provider.ts` around lines
195 - 197, The catch blocks that silently swallow errors (the one with the
comment "Malformed command markdown should not block sibling plugin commands."
and the other similar catches at the locations you flagged) should log the
caught error at debug or warn level to aid troubleshooting; update the error
handlers inside ClaudeSkillsProvider (the plugin discovery/loading routine) to
call the module logger (e.g., this.logger.debug or this.logger.warn) and include
the error object plus contextual details like the plugin filename or command
name, then continue to swallow the error as before so discovery remains
resilient—apply the same change to the other two empty catch blocks you noted
(the ones handling unreadable/malformed plugin files).

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@server/modules/providers/list/claude/claude-skills.provider.ts`:
- Around line 23-26: getClaudePluginName currently returns an empty string for
inputs like '' or '@', leading to malformed command strings; update
getClaudePluginName to validate pluginId: if pluginId is falsy, equals '@', or
the part before '@' is empty, throw a clear Error (or return null) instead of
returning an empty string, and update the callers that construct commands (the
code that assembles "/${pluginName}:${commandName}") to either catch this error
or skip the plugin prefix when the function returns null so no "/:command" is
emitted. Ensure you modify the function named getClaudePluginName and the
command-construction sites to handle the new validation behavior.

In `@server/modules/providers/list/codex/codex-skills.provider.ts`:
- Around line 87-91: The hardcoded admin path passed to addUniqueSource
(sources, seenRootDirs, { rootDir: path.join('/etc','codex','skills'), scope:
'admin', ... }) is platform-unsafe; change it to derive adminDir from an
environment variable with a default (e.g. adminDir =
process.env.CODEX_ADMIN_SKILLS_DIR ?? path.join('/etc','codex','skills')) and
only call addUniqueSource when either process.platform !== 'win32' or the env
var is explicitly set (so Windows users must opt-in), updating the
addUniqueSource invocation to use adminDir and preserving scope/commandPrefix.

In `@src/components/chat/hooks/useSlashCommands.ts`:
- Around line 313-328: selectCommandFromKeyboard currently inserts every command
into the input before executing, causing keyboard Enter behavior to differ from
mouse clicks and leaving stale text on failures; change it so only skill
commands call insertCommandIntoInput(command) (and return early), while
non-skill commands call onExecuteCommand(command) directly and then trigger the
same menu reset/close logic used by the click selection path so the menu is
cleared even if execution fails; keep the existing promise handling
(isPromiseLike) for onExecuteCommand results.

---

Outside diff comments:
In `@src/components/chat/hooks/useSlashCommands.ts`:
- Around line 197-236: The skills fetch currently lives inside the main try and
any error from
authenticatedFetch(`/api/providers/${encodeURIComponent(provider)}/skills...`)
bubbles out and clears all commands; isolate that fetch so failures degrade to
an empty skills list instead of aborting the whole flow: wrap the provider
skills request/parse (the logic around skillsResponse, skillsData, skillCommands
and dedupeProviderSkills/mapSkillToSlashCommand) in its own try/catch (or handle
non-ok responses) and set skillCommands = [] on error, then continue building
allCommands and calling setSlashCommands; keep the rest of the logic (sorting,
readCommandHistory, setSlashCommands) unchanged so built-in/custom commands
still show when the skills endpoint is flaky.

---

Nitpick comments:
In `@server/modules/providers/list/claude/claude-skills.provider.ts`:
- Around line 146-161: The current loop uses a continue after discovering
commands which prevents also discovering skills when a plugin has both folders;
update the logic in the loop around pathExistsAsDirectory(commandsPath),
listPluginCommandSkills, listPluginSkillMarkdowns, commandsPath and skillsPath
so both folders are processed: either remove the continue and let execution fall
through to check skillsPath and call listPluginSkillMarkdowns (ensuring
duplicates aren’t added to skills) or explicitly call both
listPluginCommandSkills(...) and listPluginSkillMarkdowns(...) when both paths
exist; if the original precedence was intentional, add a clear comment
explaining why the continue short-circuits discovery.
- Around line 195-197: The catch blocks that silently swallow errors (the one
with the comment "Malformed command markdown should not block sibling plugin
commands." and the other similar catches at the locations you flagged) should
log the caught error at debug or warn level to aid troubleshooting; update the
error handlers inside ClaudeSkillsProvider (the plugin discovery/loading
routine) to call the module logger (e.g., this.logger.debug or this.logger.warn)
and include the error object plus contextual details like the plugin filename or
command name, then continue to swallow the error as before so discovery remains
resilient—apply the same change to the other two empty catch blocks you noted
(the ones handling unreadable/malformed plugin files).

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Repository UI

Review profile: CHILL

Plan: Pro

Run ID: 94323d6d-8b30-4d89-a29c-ba761e18c57d

📥 Commits

Reviewing files that changed from the base of the PR and between 039696c and 053e434.

📒 Files selected for processing (20)

• server/modules/providers/index.ts
• server/modules/providers/list/claude/claude-skills.provider.ts
• server/modules/providers/list/claude/claude.provider.ts
• server/modules/providers/list/codex/codex-skills.provider.ts
• server/modules/providers/list/codex/codex.provider.ts
• server/modules/providers/list/cursor/cursor-skills.provider.ts
• server/modules/providers/list/cursor/cursor.provider.ts
• server/modules/providers/list/gemini/gemini-skills.provider.ts
• server/modules/providers/list/gemini/gemini.provider.ts
• server/modules/providers/provider.routes.ts
• server/modules/providers/services/skills.service.ts
• server/modules/providers/shared/base/abstract.provider.ts
• server/modules/providers/shared/skills/skills.provider.ts
• server/modules/providers/tests/skills.test.ts
• server/shared/interfaces.ts
• server/shared/types.ts
• server/shared/utils.ts
• src/components/chat/hooks/useChatComposerState.ts
• src/components/chat/hooks/useSlashCommands.ts
• src/components/chat/view/subcomponents/CommandMenu.tsx

[coderabbitai]

Actionable comments posted: 1

🧹 Nitpick comments (1)

server/modules/providers/README.md (1)

314-321: ⚡ Quick win

Add npm run build to the validation checklist.

The checklist currently includes lint/typecheck but not the required build verification step.

Suggested doc patch

 ## Validation

 After adding or changing a provider, run the relevant checks:

 ```bash
+npm run build
 npx eslint server/modules/providers/**/*.ts server/shared/types.ts server/shared/interfaces.ts
 npx tsc --noEmit -p server/tsconfig.json

</details>




As per coding guidelines, "Ensure the build passes before PR (run npm run build)."

<details>
<summary>🤖 Prompt for AI Agents</summary>

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In @server/modules/providers/README.md around lines 314 - 321, Update the
"Validation" checklist under the Validation heading to include running the
project build; specifically add the command npm run build before or alongside
the existing npx eslint ... and npx tsc --noEmit -p server/tsconfig.json steps
so PR authors run the build verification as part of provider changes.

</details>

</blockquote></details>

</blockquote></details>

<details>
<summary>🤖 Prompt for all review comments with AI agents</summary>

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In @server/modules/providers/README.md:

• Line 1: Remove the UTF-8 BOM at the start of the README by editing the file
  content that begins with the heading "Providers Module Guide" so the first
  character is the '#' character (no invisible BOM prefix); ensure the file's
  encoding is UTF-8 without BOM and save the change so diffs and tooling no longer
  show the BOM before the heading.

---

Nitpick comments:
In @server/modules/providers/README.md:

• Around line 314-321: Update the "Validation" checklist under the Validation
  heading to include running the project build; specifically add the command npm
  run build before or alongside the existing npx eslint ... and npx tsc --noEmit
  -p server/tsconfig.json steps so PR authors run the build verification as part
  of provider changes.

</details>

<details>
<summary>🪄 Autofix (Beta)</summary>

Fix all unresolved CodeRabbit comments on this PR:

- [ ] <!-- {"checkboxId": "4b0d0e0a-96d7-4f10-b296-3a18ea78f0b9"} --> Push a commit to this branch (recommended)
- [ ] <!-- {"checkboxId": "ff5b1114-7d8c-49e6-8ac1-43f82af23a33"} --> Create a new PR with the fixes

</details>

---

<details>
<summary>ℹ️ Review info</summary>

<details>
<summary>⚙️ Run configuration</summary>

**Configuration used**: Repository UI

**Review profile**: CHILL

**Plan**: Pro

**Run ID**: `186d7bd4-5390-45f8-b7a7-7e95ce9855c3`

</details>

<details>
<summary>📥 Commits</summary>

Reviewing files that changed from the base of the PR and between aabf331e91fb78e9a4104f4893decc19c1c40cb5 and 7e92de7cb7d86521198295356014580a07be8b8b.

</details>

<details>
<summary>📒 Files selected for processing (7)</summary>

* `eslint.config.js`
* `server/modules/providers/README.md`
* `server/modules/providers/list/claude/claude-skills.provider.ts`
* `server/routes/commands.js`
* `server/shared/frontmatter.ts`
* `server/shared/utils.ts`
* `server/utils/commandParser.js`

</details>

<details>
<summary>🚧 Files skipped from review as they are similar to previous changes (1)</summary>

* server/modules/providers/list/claude/claude-skills.provider.ts

</details>

</details>

<!-- This is an auto-generated comment by CodeRabbit for review status -->

[coderabbitai]

⚠️ Potential issue | 🟡 Minor | ⚡ Quick win

Remove the BOM at file start.

Line 1 includes a UTF-8 BOM character before the heading, which can cause noisy diffs/tooling inconsistencies.

🧰 Tools

🪛 LanguageTool

[grammar] ~1-~1: Ensure spelling is correct
Context: # Providers Module Guide This file documents the current provider...

(QB_NEW_EN_ORTHOGRAPHY_ERROR_IDS_1)

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@server/modules/providers/README.md` at line 1, Remove the UTF-8 BOM at the
start of the README by editing the file content that begins with the heading
"Providers Module Guide" so the first character is the '#' character (no
invisible BOM prefix); ensure the file's encoding is UTF-8 without BOM and save
the change so diffs and tooling no longer show the BOM before the heading.