feat: CSV table rendering + fix: group chat write race & SSH spawn

[pedramamini]

Summary

• CSV and TSV files now render as themed, sortable tables instead of plain text in file preview
• New CsvTableRenderer component with RFC-compliant CSV parsing, numeric column detection, click-to-sort headers, and row truncation
• Edit mode toggle falls through to raw text editor for direct CSV editing
• Fix: Serialize concurrent writes to group chat metadata.json to prevent file corruption from racing listeners
• Fix: Add SSH wrapping for group chat participant spawns (user-mention auto-add + recovery respawn)
• Fix: Group chat history panel layout — filter pills, activity graph, and entries now stack vertically instead of being squeezed into a single row

Group Chat History Panel Layout

The filter pills and activity graph were crammed into a single flex row, causing the graph to be too narrow. Refactored to three distinct vertical sections:

1. Filter pills — centered horizontally
2. Activity graph — full-width on its own row
3. History entries — scrollable list

CSV Table Rendering

• New CsvTableRenderer component with RFC-compliant CSV parsing, numeric column detection, click-to-sort headers, and row truncation
• Edit mode toggle falls through to raw text editor for direct CSV editing

Group Chat Race Condition Fix

Multiple concurrent callers (usage-listener, session-id-listener, group-chat-router) could corrupt metadata.json via unserialized read-modify-write patterns. The fix adds:

• Per-chat write queue — promise chain serializes all metadata writes per group chat ID
• Atomic file I/O — writes to .tmp then rename() for crash safety
• Refactored updateGroupChat, updateParticipant, addParticipantToChat, removeParticipantFromChat to use both protections
• Added concurrent write serialization tests

Group Chat SSH Spawn Fix

SSH remote participants in group chat would fail with ENOENT because the agent binary was being spawned locally instead of via SSH:

• User-mention auto-add (routeUserMessage) was missing sshRemoteConfig and sshStore — now matches the moderator-mention path
• Recovery respawn (respawnParticipantWithRecovery) spawned directly without SSH wrapping — now applies wrapSpawnWithSsh when session has SSH config

Test plan

• Open a .csv file in file preview — should render as a styled table with headers, row numbers, and alternating row colors
• Open a .tsv file — same table rendering
• Click column headers to sort (asc → desc → clear)
• Verify numeric columns right-align and sort numerically (2, 10, 100 not "10", "100", "2")
• Open a CSV with >500 rows — should show truncation banner
• Toggle edit mode — should show raw CSV text in textarea
• Verify table colors match current theme
• Start a group chat with multiple participants — metadata.json should remain valid JSON throughout
• Start a group chat with SSH remote participants — agents should spawn on remote host, not fail with ENOENT
• Reset an SSH remote participant in group chat — recovery spawn should use SSH wrapping
• Open group chat history — filter pills should be centered, graph on its own full-width row, entries below

[claude]

PR Review: CSV/TSV Table Rendering in File Preview

This is a well-implemented feature with strong code quality and comprehensive test coverage. The implementation follows RFC-compliant CSV parsing and provides an excellent UX for viewing structured data files.

---

✅ Strengths

1. Excellent Code Quality

• Clean separation of concerns with pure utility functions (parseCsv, isNumericValue, detectColumnAlignments, compareValues)
• Proper use of React hooks (useMemo, useState) to optimize performance
• Well-documented functions with clear JSDoc comments
• Follows the codebase style (tabs for indentation ✅)

2. RFC-Compliant CSV Parsing

• Correctly handles quoted fields with embedded commas (RFC 4180)
• Properly escapes double quotes ("" → ")
• Supports both CRLF (\r\n) and LF (\n) line endings
• Gracefully handles malformed rows (different column counts)

3. Smart UX Features

• Automatic numeric detection with right-alignment (solves the "2, 10, 100" vs "10, 100, 2" problem)
• Three-state sorting (asc → desc → clear) with visual indicators
• Row truncation at 500 rows with clear warning banner
• Edit mode fallback to raw text editor
• Sticky headers for scrollable tables
• Row hover effects for better readability

4. Comprehensive Test Coverage (181 lines of tests!)

• Basic rendering, CSV parsing edge cases, sorting behavior, truncation
• All critical code paths are covered

---

🔍 Potential Issues & Suggestions

1. TSV Support Missing (Medium Priority)

The PR description mentions TSV support, and FilePreview.tsx:176 maps .tsv → csv language. However, the CSV parser only handles commas as delimiters (line 45 in CsvTableRenderer.tsx).

Problem: TSV files will render incorrectly — tabs will be treated as cell content, not delimiters.

Fix:
Add a delimiter prop to CsvTableRenderer and pass it through from FilePreview based on file extension.

Test case needed:
Test TSV files with tab delimiters to ensure proper rendering.

2. Parser Edge Case: Trailing Empty Field (Low Priority)

The final field/row logic (lines 65-69) may create spurious empty rows for inputs with trailing newlines.

Recommendation: Add filtering or guard condition for completely empty rows.

3. Edge Case: Header-Only CSV (Low Priority)

If a CSV has only headers (no data rows), the component shows "0 rows × N columns" but renders an empty table body.

Suggestion: Show a subtle message like "No data rows" in the tbody when dataRows.length === 0.

4. Accessibility: Missing ARIA Labels (Low Priority)

Sortable headers lack screen reader context. Consider adding aria-label and aria-sort attributes.

---

🔒 Security Considerations

✅ No XSS vulnerabilities:

• Cell content is rendered as text nodes, not dangerouslySetInnerHTML
• All user-controlled values are safely escaped by React

✅ No DoS concerns:

• Truncation at 500 rows prevents rendering thousands of DOM elements
• Parser is O(n) single-pass (efficient)

---

🧪 Test Coverage Assessment

Coverage: Excellent (9/10)

Missing test cases:

1. TSV delimiter handling
2. Trailing newlines creating empty rows
3. Header-only CSV (no data rows)
4. Very long cell content truncation
5. Empty string headers

Recommendation: Add at least #1 and #2 before merging.

---

🎨 Code Style & Conventions

✅ Follows codebase standards:

• Uses tabs for indentation (matches CLAUDE.md requirement)
• Theme integration matches existing patterns
• React patterns consistent with codebase
• Lucide icons match other components

✅ Integration with FilePreview:

• Correctly placed in render priority
• Edit mode toggle works correctly
• Language mapping follows existing pattern

---

Final Recommendation

Status: Approve with Minor Fixes

Required before merge:

1. ⚠️ Fix TSV delimiter handling (High priority — feature is advertised but broken)

Recommended before merge:
2. Add test for TSV files
3. Fix trailing newline creating empty rows (or add test to verify current behavior)

Optional enhancements (can be separate PR):
4. Add accessibility ARIA labels
5. Handle header-only CSV edge case
6. Add empty column header fallback

---

Overall assessment: This is high-quality work. The RFC-compliant parser, smart numeric detection, and comprehensive tests demonstrate strong engineering. The TSV delimiter issue is the only blocking concern — once fixed, this is ready to ship. 🚀

Great job on the table UI design and performance optimizations!

[claude]

PR Review: CSV/TSV Table Rendering

Overall Assessment: This is a well-implemented feature with excellent test coverage. The code is clean, performant, and follows React best practices. A few minor issues to address before merging.

---

✅ Strengths

1. Excellent test coverage - 265 lines of comprehensive tests covering parsing, sorting, filtering, truncation, and edge cases
2. RFC-compliant CSV parsing - Handles quoted fields, escaped quotes, and CRLF line endings correctly
3. Performance-conscious - Row truncation (500 max), memoization, and limited alignment detection (first 100 rows)
4. Smart numeric detection - Right-aligns and sorts numeric columns properly
5. Clean integration - Minimal changes to FilePreview.tsx (only 16 additions, 2 deletions)
6. Good UX - Click-to-sort headers, search highlighting, row numbers, themed styling

---

🐛 Issues Found

1. TSV Support Not Implemented (Bug)

Location: src/renderer/components/CsvTableRenderer.tsx:24-73

The PR description claims TSV support, but parseCsv() only handles comma delimiters. TSV files use tabs as delimiters.

Impact: TSV files will render incorrectly with all columns merged into one.

Fix: Either:

• Rename component to indicate CSV-only support and remove TSV from PR description
• Add delimiter detection/parameter to support both formats

2. Row Number Discrepancy After Sorting (UX Issue)

Location: src/renderer/components/CsvTableRenderer.tsx:329

Row numbers display rowIdx + 1 based on the sorted/filtered array index, not the original CSV row number. After sorting, row numbers become misleading (row #1 might actually be row #50 in the original file).

Impact: Confusing when cross-referencing with the original CSV or edit mode.

Recommendation: Either:

• Track original row indices through sort/filter operations
• Add a note in the UI that row numbers reflect current sort order

3. Potential Performance Issue with Large Search Results (Performance)

Location: src/renderer/components/CsvTableRenderer.tsx:141-163

The highlightMatches() function is called for every cell in every visible row on each render. For a 500-row table with 10 columns, that's 5000 regex operations per keystroke during search.

Impact: Could cause input lag when searching large filtered datasets.

Recommendation:

• Memoize highlighted cell content
• Or use CSS Custom Highlight API (like markdown preview does in FilePreview.tsx:1340-1387)

4. Missing TSV Tests

Location: src/__tests__/renderer/components/CsvTableRenderer.test.tsx

Tests thoroughly cover CSV parsing but don't test TSV files at all, despite the feature claiming TSV support.

Required: Add test cases with tab-delimited content if TSV support is intended.

---

⚠️ Minor Issues

5. Truncation Message Uses Wrong Count (Display Bug)

Location: src/renderer/components/CsvTableRenderer.tsx:243

The truncation banner shows total data rows before filtering, not filtered count. If search filters to 600 matches from 1000 total rows, the banner would incorrectly say "Showing 500 of 1000 rows" instead of "Showing 500 of 600 matching rows".

Fix: Use displayRows.length instead of totalDataRows

6. Redundant Variable (Code Quality)

Location: src/renderer/components/CsvTableRenderer.tsx:189

This assignment serves no purpose. Use filteredRows directly.

7. Index as Key in highlightMatches (React Warning Risk)

Location: src/renderer/components/CsvTableRenderer.tsx:147-162

Using array index as React key is problematic when the array can change. React may not properly update highlighted text when search query changes.

Fix: Use a more stable key combining index and content.

---

🔒 Security

✅ No security concerns - All user input (CSV content, search query) is properly escaped:

• CSV parsing doesn't use eval() or execute code
• Search query is escaped for regex properly
• React auto-escapes rendered content

---

🎨 Code Style

✅ Follows project conventions:

• Uses tabs for indentation (matches CLAUDE.md requirement)
• Proper TypeScript typing throughout
• Good JSDoc comments on utility functions
• Consistent with existing FilePreview patterns

---

📝 Recommendations

1. Fix TSV support or remove from PR description (blocking)
2. Fix truncation count display bug (blocking)
3. Address row numbering UX issue (consider for follow-up)
4. Optimize search highlighting for large datasets (consider for follow-up)
5. Remove redundant displayRows variable
6. Fix React key warning in highlightMatches()

---

Test Plan Verification

The PR test plan is comprehensive. I would add:

• Open a .tsv file with actual tab delimiters to verify TSV support works
• Sort a CSV and verify row numbers make sense (address issue 2)
• Search a large CSV to verify no input lag (address issue 3)
• Filter results then verify truncation banner shows correct count (address issue 5)

---

Verdict: Approve after fixing TSV support and truncation count issues. The implementation is solid overall - great work!

[claude]

Pull Request Review

This PR delivers two significant improvements: CSV table rendering and a critical race condition fix in group chat metadata storage. Overall, the code quality is high with excellent test coverage and thoughtful implementation.

---

✅ Strengths

CSV Table Renderer (CsvTableRenderer.tsx)

Excellent implementation:

• RFC-compliant CSV parsing - Properly handles quoted fields, escaped quotes, CRLF/LF line endings, and malformed rows
• Smart features - Numeric column detection (>50% threshold), intelligent sorting, search highlighting, row truncation (500 rows)
• Comprehensive test coverage - 265 lines of tests covering parsing edge cases, sorting, search filtering, and truncation
• Performance considerations - Uses useMemo extensively to prevent unnecessary re-parsing, samples only first 100 rows for alignment detection
• Clean UX - Row numbers, sticky headers, alternating row colors, hover states, click-to-sort with visual indicators

Group Chat Race Condition Fix (group-chat-storage.ts)

Solid concurrency solution:

• Write serialization - Per-chat promise queues prevent concurrent metadata writes from corrupting JSON
• Atomic writes - Write to .tmp then rename() prevents partial reads during crashes (atomic on POSIX, effectively atomic on NTFS)
• Excellent test coverage - 111 lines of concurrent write tests validate serialization, interleaving, and atomic file operations
• Proper error handling - Queue continues on failures (prev.then(fn, fn) pattern)

---

🔍 Issues Found

1. TSV Support Missing Delimiter Conversion (Medium Severity - Functional Bug)

Location: FilePreview.tsx:1107-1110

TSV files are detected as language: csv and passed directly to CsvTableRenderer, which assumes comma delimiters. TSV files will not parse correctly.

Test gap: No test case for actual TSV content (only checks that .tsv files render the component).

Recommendation: Convert tabs to commas before passing to renderer, or add a delimiter prop to CsvTableRenderer.

2. Truncation Banner Shows Wrong Count When Filtering (Low Severity - UX Issue)

Location: CsvTableRenderer.tsx:189-190

When a user searches and gets 800 matching rows, they see "Showing 500 of 3000 rows" - confusing because the banner shows total row count, not filtered count.

Recommendation: Update truncation message to distinguish total vs. filtered rows.

3. Write Queue Memory Leak (Low Severity)

Location: group-chat-storage.ts:35

The writeQueues map grows unbounded. Deleted group chats leave zombie queue entries in memory.

Recommendation: Add writeQueues.delete(id) in deleteGroupChat().

4. CSV Parser: Double Increment Needs Comment (Low Severity)

Location: CsvTableRenderer.tsx:38, 55

The parser increments i inside the loop (i++), and the for loop also increments. This is correct but risky for maintainability.

Recommendation: Add comment: // Skip second quote (loop header will increment again)

5. Missing Edge Case: Newlines Inside Quoted Fields (Low Severity)

Location: CsvTableRenderer.tsx:24-74

The parser does not handle literal newlines inside quoted fields per RFC 4180. For a file preview feature, current behavior is acceptable. Consider documenting the limitation.

---

🧪 Test Coverage Assessment

CSV Renderer: Excellent (265 lines)

• ✅ Parsing edge cases (quotes, CRLF, malformed rows)
• ✅ Sorting (asc/desc/clear, numeric vs string)
• ✅ Search filtering and highlighting
• ✅ Truncation banner
• ❌ Missing: TSV delimiter handling (tabs)
• ❌ Missing: Newlines inside quoted fields

Group Chat Storage: Excellent (111 lines)

• ✅ Concurrent updateGroupChat calls
• ✅ Concurrent updateParticipant calls
• ✅ Interleaved top-level + participant updates
• ✅ Atomic writes (no .tmp files left behind)

---

🔒 Security Review

No security concerns identified.

---

📝 Recommendations Summary

Must fix before merge:

1. TSV delimiter handling - Currently broken for tab-delimited files

Should fix:
2. Truncation banner message when filtering (UX clarity)
3. Write queue cleanup in deleteGroupChat() (prevent slow memory leak)

Nice to have:
4. Comment explaining double-increment in CSV parser
5. Test case for TSV content rendering
6. Document limitation on newlines in quoted fields

---

Overall Assessment

Strong PR. The race condition fix is well-architected and thoroughly tested. The CSV renderer is feature-rich and performant. The TSV bug is the only blocker - everything else is polish.

Recommendation: Request changes to fix TSV support, then approve. 🚀

[claude]

Pull Request Review

This PR introduces CSV/TSV table rendering and fixes two critical group chat issues. Implementation is well-structured with comprehensive test coverage.

Strengths

1. Excellent Test Coverage - 265 lines for CsvTableRenderer, 111 lines for race condition fix
2. RFC-compliant CSV parser with proper handling of quoted fields, escaped quotes, CRLF, ragged rows
3. Race condition fix uses correct per-chat write queue with atomic writes via temp file + rename
4. SSH remote fix covers both spawn sites (user-mention auto-add + recovery respawn)

Issues and Recommendations

1. CSV Parser: TSV Support Missing (CRITICAL)

Location: CsvTableRenderer.tsx:24-74

The component claims to support TSV files but parseCsv() hardcodes comma delimiters. Need to add delimiter parameter.

2. Numeric Detection Regex Too Permissive

Location: CsvTableRenderer.tsx:83

Unescaped hyphen in character class matches entire ASCII range from space to hyphen. Need to escape hyphen.

3. Race Condition Fix: Missing Rejection Propagation

Location: group-chat-storage.ts:619

If fn throws, queue continues with rejected promise. Subsequent operations execute immediately (not serialized).

4. Memory Leak: Queue Not Cleared After Idle Period

Location: group-chat-storage.ts:609

Write queues persist in memory indefinitely. Recommend clearing after idle timeout.

5. CSV Table: Performance Concern for Large Files

Location: CsvTableRenderer.tsx:1033

Component parses and filters all rows before truncating to 500. Consider early truncation for large files.

6. Test Does Not Verify Serialization

Location: group-chat-storage.test.ts:23-36

Test only verifies no corruption, not that writes were serialized.

7. Inconsistent Error Handling in SSH Wrapping

Location: group-chat-router.ts:530-556

SSH wrapping lacks try/catch. If wrapSpawnWithSsh throws, participant state remains working instead of error.

Security and Safety

No vulnerabilities detected. CSV parser does not use eval. No XSS risk. Atomic writes prevent partial reads. SSH wrapping validates config.

Final Recommendation: Approve with Minor Fixes

Required before merge:

1. Fix TSV delimiter support (issue 1)
2. Fix numeric regex character class (issue 2)

Recommended for follow-up PR:
3. Improve write queue rejection handling
4. Add queue cleanup timeout

Excellent work on the race condition fix. CSV renderer is feature-complete. SSH fixes close critical gaps.

Code quality: 9/10, Test coverage: 10/10, Architecture: 9/10

[claude]

Code Review: PR #364

Summary

This PR delivers three significant improvements with solid implementation quality:

1. ✅ CSV/TSV table rendering with search filtering
2. ✅ Race condition fix for group chat metadata writes
3. ✅ SSH remote execution support for group chat participants

Overall Assessment: 8.5/10 - Production-ready with minor security hardening needed

---

Critical Issues (Must Fix Before Merge)

1. CSV Parser DoS Vulnerability

File: src/renderer/components/CsvTableRenderer.tsx:49-84

Issue: No file size limits allow memory exhaustion attacks.

// Current: parseCsv accepts unlimited content size
function parseCsv(content: string, delimiter: string): string[][] {
  const rows: string[][] = [];
  // ... no size check
}

Fix:

function parseCsv(content: string, delimiter: string): string[][] {
  // Add at start
  const MAX_CSV_SIZE = 50 * 1024 * 1024; // 50MB
  const MAX_CELL_SIZE = 100000; // 100KB
  if (content.length > MAX_CSV_SIZE) {
    throw new Error('CSV file too large to render');
  }
  
  // In parse loop, validate cell size:
  if (current.length > MAX_CELL_SIZE) {
    throw new Error('CSV cell exceeds maximum size');
  }
}

2. Delete Race Condition Still Exists

File: src/main/group-chat/group-chat-storage.ts:402-420

Issue: deleteGroupChat() bypasses the write queue, creating a delete-during-write race.

// Current: delete runs immediately, not serialized
export async function deleteGroupChat(chatId: string): Promise<void> {
  // Cleans up queue but doesn't wait for pending writes
  writeQueues.delete(chatId);
  await fs.rm(chatDir, { recursive: true, force: true });
}

Scenario:

updateGroupChat(id, { name: 'New' }); // Queued write in progress
deleteGroupChat(id);                   // Runs immediately, deletes file mid-write

Fix:

export async function deleteGroupChat(chatId: string): Promise<void> {
  return enqueueWrite(chatId, async () => {
    await fs.rm(chatDir, { recursive: true, force: true });
    writeQueues.delete(chatId); // Clean up after deletion completes
  });
}

3. SSH Config Lost After Session Cleanup

File: src/main/group-chat/group-chat-router.ts:1382-1408

Issue: Participant respawn uses matchingSession?.sshRemoteConfig, but if the matching session is closed/deleted, SSH config is lost → participant spawns locally instead of remotely.

Current Flow:

1. User creates group chat with SSH participant
2. User closes the matching session
3. Participant needs recovery respawn
4. matchingSession is undefined → no SSH config → spawns locally ❌

Fix: Store full SSH config in participant metadata:

// In src/main/group-chat/group-chat-storage.ts
export interface GroupChatParticipant {
  // ... existing fields
  sshRemoteName?: string;
  sshRemoteConfig?: AgentSshRemoteConfig; // Add this
}

Then in spawn logic:

// Fallback to stored config if session no longer exists
const sshConfig = matchingSession?.sshRemoteConfig || participant.sshRemoteConfig;
if (sshStore && sshConfig) {
  const sshWrapped = await wrapSpawnWithSsh(..., sshConfig, sshStore);
}

---

Recommended Improvements

4. Search Performance Degradation

File: src/renderer/components/GroupChatHistoryPanel.tsx:490-496

Issue: Searches full fullResponse text on every keystroke without debouncing. With 1000+ history entries containing long AI responses, this causes noticeable UI lag.

Current:

const filteredAndSortedHistory = useMemo(() => {
  // Filters entire array on every keystroke
  if (searchFilter) {
    const q = searchFilter.toLowerCase();
    const responseMatch = entry.fullResponse?.toLowerCase().includes(q);
    // ...
  }
}, [searchFilter, ...]);

Fix: Debounce the search input:

const [searchInputValue, setSearchInputValue] = useState('');
const [searchFilter, setSearchFilter] = useState('');

useEffect(() => {
  const timer = setTimeout(() => setSearchFilter(searchInputValue), 300);
  return () => clearTimeout(timer);
}, [searchInputValue]);

// In render:
<input value={searchInputValue} onChange={(e) => setSearchInputValue(e.target.value)} />

5. Write Queue Error Observability

File: src/main/group-chat/group-chat-storage.ts:76-87

Issue: Swallowed errors in the queue chain are invisible, making debugging difficult.

// Current: errors disappear into the void
writeQueues.set(chatId, next.then(() => {}, () => {}));
//                                          ^^^^^ Silent failure

Fix:

writeQueues.set(chatId, next.then(() => {}, (err) => {
  logger.warn(`Swallowed error in write queue for ${chatId}`, '[WriteQueue]', { err });
}));

6. CSV Numeric Detection Too Permissive

File: src/renderer/components/CsvTableRenderer.tsx:153-155

Current:

const numericPattern = /^-?\d+\.?\d*$/;

This matches malformed numbers like 123. or .456.

Fix:

const numericPattern = /^-?\d+(\.\d+)?$/;

---

Minor Polish

7. Focus Timing Fragility

File: src/renderer/components/GroupChatHistoryPanel.tsx:522

// Current: setTimeout is fragile if React batching delays render
setTimeout(() => searchInputRef.current?.focus(), 0);

Better:

// Use autoFocus attribute instead
<input ref={searchInputRef} autoFocus />

---

Strengths Worth Highlighting

Excellent Race Condition Fix ⭐

• Per-chat write queues prevent cross-chat interference
• Atomic writes (temp file + rename) prevent corruption from crashes
• Promise chain architecture allows failed writes to not cascade
• Comprehensive test coverage for concurrent scenarios

Proper SSH Implementation ⭐⭐

• Correctly uses wrapSpawnWithSsh utility (prevents injection)
• Passes SSH store through entire call chain
• Uses agent's binaryName for remote execution (not local paths)
• Handles custom args, env vars, and model configuration
• Good test coverage for SSH vs non-SSH scenarios

CSV Rendering Quality ⭐

• RFC-compliant CSV parsing with proper quote/escape handling
• Smart numeric column detection with right-alignment
• Click-to-sort with visual indicators
• Row truncation prevents performance issues
• Clean integration with file preview edit mode
• Search filtering with match highlighting

Strong Test Coverage

• 5 new test files with 1059 lines of tests
• Tests cover concurrent writes, SSH wrapping, search filtering
• Good use of mocks and spies to verify behavior
• Tests align with actual failure scenarios

---

Security Analysis

✅ XSS Protection: React escaping + controlled <mark> injection
✅ File I/O: Atomic writes, proper Windows retry logic
✅ SSH Injection: Uses dedicated wrapper utility, proper escaping
⚠️ DoS Risk: No CSV size limits (see Critical Issue #1)
⚠️ ReDoS: Complex search on very long cells (mitigated by 500 row limit)

---

Performance Analysis

✅ CSV Parsing: Good memoization, row truncation at 500 entries
✅ Write Queue: Minimal overhead (Promise chain, not array)
✅ Component Rendering: Proper useMemo usage throughout
⚠️ Search: No debouncing on text search (see Recommendation #4)

---

Adherence to CLAUDE.md

✅ Uses tabs for indentation
✅ Follows SSH remote execution pattern from CLAUDE-PATTERNS.md
✅ Proper error handling (no silent swallowing except in queue)
✅ Maintains scope discipline (no unrelated refactoring)
✅ Clean separation of concerns (parser, renderer, storage separate)
✅ Comprehensive test coverage per project standards

---

Test Plan Verification

The PR description includes a thorough test plan. I recommend adding these specific cases:

For CSV Security:

• Open a 100MB CSV file — should reject with size limit error
• Open a CSV with a 200KB cell — should reject with cell size error

For Delete Race:

• Trigger rapid metadata updates while deleting chat — verify no corruption

For SSH Config Persistence:

• Create SSH group chat → close matching session → trigger participant respawn → verify still spawns remotely

---

Final Recommendation

Action: Request changes for Critical Issues #1-3, approve after fixes.

The PR demonstrates excellent engineering practices with proper race condition handling, SSH implementation, and test coverage. The critical issues are all straightforward defensive programming fixes that will make this production-ready.

Estimated fix effort: 30-45 minutes for all critical issues.

[claude]

Code Review for PR #364

This PR introduces CSV/TSV table rendering and fixes critical group chat bugs. Overall excellent work with strong attention to detail, proper error handling, and comprehensive test coverage.

---

Strengths

1. CSV Table Renderer

• RFC-compliant CSV parsing with proper handling of quoted fields and escaped quotes
• Smart numeric detection with right-alignment when >50% of values are numeric
• Performance-conscious with 500-row truncation and clear user messaging
• Search integration with highlighting and match counts
• Excellent UX with sort indicators, hover states, row numbers, themed colors

2. Race Condition Fix

• Properly identified root cause: concurrent read-modify-write to metadata.json
• Elegant solution using per-chat write queues with promise chains
• Atomic file I/O using temp-then-rename pattern for crash safety
• All mutating functions refactored to use enqueueWrite()
• Proper cleanup in deleteGroupChat

3. SSH Remote Fix

• Consistent SSH wrapping applied to user-mention auto-add, moderator-mention, and recovery respawn
• Correct use of wrapSpawnWithSsh() with session sshRemoteConfig
• Windows-aware with proper getWindowsSpawnConfig() usage

4. Test Coverage

• 1059 new test lines across 5 test files
• Critical scenarios covered: concurrent writes, SSH wrapping, search filtering
• Good test hygiene with appropriate mocks and edge cases

---

Potential Issues

1. Write Queue Memory Leak (Medium Priority)

Location: group-chat-storage.ts, lines 35-47

The writeQueues map never shrinks except on deleteGroupChat(). For long-running processes with many group chats, this could accumulate resolved promises indefinitely.

Recommendation: Add cleanup logic to remove settled queues.

Impact: Low for typical usage but could matter in long-running scenarios.

2. Numeric Detection Regex (Low Priority)

Location: CsvTableRenderer.tsx, line 83

Current regex can match invalid patterns like double dashes or unbalanced parens.

Suggestion: Tighten regex to allow one optional dash and ensure decimal portions have digits.

Impact: Very low (alignment is cosmetic).

---

Security Review

CSV XSS Protection:

• Search query properly escaped before regex construction
• Returns React nodes, not dangerouslySetInnerHTML
• No XSS risk detected

File Path Injection:

• sanitizeChatName removes all filesystem-invalid characters
• Empty names handled with fallback
• Length limited to 255 chars
• UUIDs used for chat IDs prevent path traversal

All security considerations properly addressed.

---

Performance

• CSV row limit (500) prevents DOM bloat
• Proper use of useMemo for parsing, filtering, sorting
• Atomic file operations use standard best practices
• Promise chain overhead negligible for typical write frequencies

---

Code Style & Documentation

• Consistent with CLAUDE.md guidelines (tabs, error handling, SSH awareness)
• Excellent TSDoc comments on group chat functions
• Complex logic has inline explanations
• Follows project naming conventions

---

Final Assessment

Rating: Excellent (9/10)

Strengths:

• Strong understanding of concurrency issues and solutions
• Comprehensive test coverage
• Attention to UX and error handling
• Proper adherence to project conventions
• Full SSH remote execution support

Minor improvements suggested:

• Write queue cleanup to prevent unbounded growth
• Tighter numeric regex for edge cases

Recommendation: APPROVE with optional follow-up for medium-priority items.

No blocking issues found. Great work!

[claude]

PR Review: CSV Table Rendering + Group Chat Fixes

Overall Assessment

This is a high-quality PR with excellent attention to detail. The CSV rendering feature is well-implemented, and the group chat fixes address critical race conditions and SSH execution bugs. Strong test coverage demonstrates thoroughness.

---

Code Quality & Best Practices

✅ Strengths

1. CSV Parser Implementation (CsvTableRenderer.tsx)

   • RFC-compliant CSV parsing with proper quote escaping
   • Smart numeric detection and alignment (>50% threshold)
   • Clean separation of concerns (parsing, sorting, rendering)
   • Good use of useMemo for performance optimization

2. Atomic File Operations (group-chat-storage.ts:53-58)

   • atomicWriteJson using tmp file + rename pattern is excellent
   • Prevents corruption from mid-write crashes
   • Follows POSIX atomic write conventions

3. Write Serialization (group-chat-storage.ts:28-47)

   • Per-chat write queue elegantly prevents race conditions
   • Clean promise chaining with enqueueWrite
   • Good use of Map for tracking per-resource locks

4. SSH Wrapping (group-chat-router.ts:502-529, 879-907, 1382-1408)

   • Consistent SSH wrapping pattern across all spawn paths
   • Proper propagation of sshRemoteConfig from sessions
   • Good debugging logs for SSH execution paths

5. Test Coverage

   • Comprehensive tests for CSV parsing edge cases
   • Concurrent write serialization tests (storage.test.ts)
   • SSH wrapping tests with proper mocks (router.test.ts)

---

Potential Issues & Suggestions

🔴 Critical

None identified - no blocking issues

🟡 Medium Priority

1. CSV Memory Usage (CsvTableRenderer.tsx:172)

   • Large CSV files (>100MB) parsed entirely in memory
   • Consider streaming parser or warning for files >10MB

2. Regex Backtracking Risk (CsvTableRenderer.tsx:146)

   • User-controlled search queries could cause ReDoS
   • Add query length limit: searchQuery?.trim().slice(0, 100)

3. Delete Retry Logic (group-chat-storage.ts:317-335)

   • Already implements exponential backoff ✅
   • Just add comment documenting pattern

🟢 Low Priority (Code Style)

4. Magic Numbers - Extract to constants (MAX_DISPLAY_ROWS, etc.)
5. Console.log - 50+ debug logs; consider logger utility
6. Type Safety - Good use of nullish coalescing ✅

---

Performance Considerations

✅ Good Patterns

• Memoization, truncation, lazy loading ✅

🟡 Potential Optimizations

• Virtual scrolling for 100-500 row CSVs
• Memoize search highlighting

---

Security Concerns

✅ No Critical Issues

• Input sanitization ✅
• Regex escaping ✅
• Path traversal protection ✅

---

Test Coverage

✅ Excellent Coverage

• CSV parsing edge cases ✅
• Concurrent write races ✅
• SSH wrapping ✅

🟡 Suggested Additions

• Large CSV files (>10k rows)
• Malformed CSV
• Windows file lock retry

---

Final Verdict

APPROVED ✅

Excellent engineering with critical bug fixes and well-tested features. Issues identified are minor and don't block merging.

Impact: High value (fixes production bugs + adds useful feature)
Risk: Low (good coverage, atomic operations, graceful fallbacks)

Great work! 🚀

[claude]

Code Review - PR #364

This is a comprehensive, well-executed PR that addresses multiple important issues. Overall quality is excellent with strong attention to detail, proper testing, and adherence to the project's coding standards.

Summary

The PR successfully delivers:

1. CSV/TSV table rendering with sorting, search highlighting, and theme support
2. Group chat metadata race condition fix via serialized writes and atomic file I/O
3. SSH remote execution support for group chat participants
4. Group chat history panel layout fix for better UX

Strengths

CSV Table Renderer

• RFC-compliant parsing with proper handling of quoted fields and line endings
• Smart column alignment based on content analysis
• Performance-conscious with 500-row truncation
• Excellent UX with sorting, search highlighting, row numbers
• Full theme integration

Group Chat Storage

• Write serialization via per-chat queue prevents race conditions
• Atomic file I/O with write-to-temp-then-rename pattern
• Windows file lock retry logic
• Clean, reusable abstraction

SSH Remote Support

• Comprehensive coverage across all spawn paths
• Consistent wrapSpawnWithSsh usage
• Preserves SSH remote name for UI display

Test Coverage

• 1,736 lines of tests added
• Verifies concurrent write serialization
• Validates SSH wrapping behavior
• Covers CSV parsing edge cases and UI interactions

Code Quality

Excellent Practices:

• Follows project tab indentation
• Uses standardized vernacular
• Proper Sentry integration
• Power management integration
• Comprehensive debug logging
• Respects read-only mode

Minor Observations:

1. CSV parser could filter rows with all-empty cells (low priority)
2. Numeric detection works for USD, could enhance for international currencies later
3. writeQueues Map grows unbounded - consider cleanup when queue is empty
4. SSH check pattern repeated 3x - could extract helper if more spawn paths added

Security & Performance

Security: No issues found

• Proper JSON serialization
• React XSS protection
• Path validation with UUIDs
• Safe SSH env var handling

Performance: Generally excellent

• Proper memoization throughout
• Row truncation prevents DOM bloat
• Atomic I/O operations
• Note: Large CSV files (multi-GB) could be problematic - recommend documenting max size

Recommendations

Optional before merge:

1. Add writeQueues cleanup after queue completes
2. Filter CSV rows with all-empty cells

Future enhancements:

1. CSV file size warning for large files
2. Export filtered/sorted rows feature
3. International currency detection

Final Verdict

Approve with minor suggestions

This PR demonstrates strong understanding of concurrency, excellent test coverage, proper adherence to conventions, and thorough implementation. The race condition fix is critical and well-implemented. The CSV renderer is a great UX improvement.

Great work!

---

Review conducted by Claude Sonnet 4.5

[claude]

Pull Request Review: CSV Table Rendering + Group Chat Fixes

Summary

This PR introduces CSV/TSV table rendering, fixes critical race conditions in group chat metadata writes, and adds SSH remote execution support for group chat participants. The changes are well-architected and address real production issues.

---

Positive Highlights

Excellent Engineering Practices

1. Atomic File Operations: The atomicWriteJson() pattern (write to .tmp then rename()) is the correct approach for crash safety. This is a textbook implementation.

2. Write Queue Serialization: The enqueueWrite() pattern using promise chains is clean and elegant. The automatic cleanup when writeQueues.get(chatId) === settled prevents memory leaks.

3. CSV Parser Compliance: The RFC 4180-compliant CSV parser with proper quote handling, escaped quotes (""), and CRLF support shows attention to detail.

4. Test Coverage: 1,824 new lines of tests across 5 test files is exemplary. The concurrent write tests in group-chat-storage.test.ts are particularly valuable for catching race conditions.

5. Comprehensive SSH Support: The fix properly threads SSH configuration through all group chat spawn paths (user-mention auto-add, moderator-mention, and recovery respawn).

Smart UX Decisions

• 500-row truncation with banner: Good balance between performance and utility
• Numeric column detection: Right-aligning numeric columns improves readability
• Three-state sort (asc → desc → clear): Intuitive pattern
• Edit mode fallback: Allowing CSV editing via textarea is practical

---

Critical Issues

1. Race Condition Still Possible in History Writes

Location: src/main/group-chat/group-chat-storage.ts:540-560

Problem: While metadata.json writes are now serialized, history.jsonl appends are not. Multiple concurrent addGroupChatHistoryEntry() calls can still corrupt the JSONL file with interleaved writes.

Solution: Wrap history operations in the same enqueueWrite() pattern. Same issue affects deleteGroupChatHistoryEntry() and clearGroupChatHistory().

---

2. Missing Error Handling in SSH Wrapping

Location: src/main/group-chat/group-chat-router.ts:503-520

Problem: If wrapSpawnWithSsh() throws (e.g., remote not found, SSH key issues), the error is uncaught and will bubble up as an unhandled rejection. The state machine remains stuck in "moderator-thinking" and the power block isn't removed.

Solution: Wrap in try-catch and clean up state (emitStateChange to idle, removeBlockReason).

Same pattern needed in:

• routeModeratorResponse:879-907 (participant SSH wrapping)
• respawnParticipantWithRecovery:1382-1408 (recovery SSH wrapping)

---

3. CSV Parser Unicode Handling

Location: src/renderer/components/CsvTableRenderer.tsx:26-76

Problem: The character-by-character parser uses JavaScript string indexing which treats each UTF-16 code unit as a "character." This will split emoji and other characters outside the BMP (Basic Multilingual Plane) incorrectly.

Solution: Use a for-of loop that respects Unicode code points or use a proper CSV parsing library like papaparse.

Impact: Medium - only affects files with multi-codepoint Unicode characters

---

High Priority Issues

4. Missing Boundary Check in highlightMatches

Location: src/renderer/components/CsvTableRenderer.tsx:143-171

Problem: If query contains regex metacharacters that expand when escaped, the regex could become extremely complex and cause ReDoS (Regular Expression Denial of Service).

Solution: Add length check after escaping (e.g., if escaped.length > 500 return text)

---

5. GroupChatHistoryPanel Layout Fixes Missing Tests

Location: src/renderer/components/GroupChatHistoryPanel.tsx

Problem: The PR description mentions fixing the layout where "filter pills and activity graph were crammed into a single flex row," but no test verifies the layout fix.

Recommendation: Add a test that verifies the vertical stacking structure.

---

Medium Priority Issues

6. Inconsistent Error Logging Patterns

Some error handlers use logger.error() without captureException(), others do both, and some only throw.

Recommendation: Document the pattern in CLAUDE.md for when to use logger.error() vs captureException() vs both.

---

7. Magic Number for Truncation

MAX_DISPLAY_ROWS = 500 is hardcoded with no explanation of why 500 was chosen.

Recommendation: Either document the reasoning, make it configurable, or use dynamic calculation based on viewport.

---

8. Potential Memory Leak in React Key Generation

While the key generation using character offset is clever, React will track every span and mark element. For a 10,000-row CSV with 50 matches per row, this creates 500,000 React elements. Since we truncate at 500 rows this is mitigated, but worth noting.

---

Minor Issues / Suggestions

9. Inconsistent Delimiter Detection

Question: How is the delimiter determined for .tsv vs .csv files? If purely based on extension, files named .csv but tab-delimited will render incorrectly.

Suggestion: Auto-detect delimiter by sampling the first few lines.

---

10. Test Organization

The test files are well-organized, but some tests have very long setup blocks. Consider extracting common test fixtures to a fixtures directory.

---

11. Missing JSDoc for Public API

Functions like parseCsv(), isNumericValue(), and detectColumnAlignments() are well-named but lack JSDoc.

---

Security Considerations

No Security Issues Found

• CSV parsing doesn't evaluate code (safe from injection)
• Regex escaping in highlightMatches() prevents regex injection
• SSH wrapping uses existing secure patterns
• File operations use atomicWriteJson() which prevents symlink attacks

---

Performance Considerations

Well-Optimized

1. CSV parsing is memoized via useMemo()
2. Sorting is memoized
3. Column alignment detection samples only first 100 rows
4. 500-row truncation prevents DOM bloat
5. Write queue cleanup prevents unbounded memory growth

Potential Optimization

The alignments useMemo depends on dataRows which is a new array reference on every parse. Consider using content as a dependency instead for more stable memoization.

---

Test Coverage Assessment

Excellent Coverage

• group-chat-storage.test.ts: 598 additions with concurrent write tests, atomic write verification, Windows retry logic
• group-chat-router.test.ts: 150 additions with SSH spawn verification
• CsvTableRenderer.test.tsx: 359 additions with parser edge cases, sort behavior, truncation
• GroupChatHistoryPanel.test.tsx: 643 additions

Missing Test Cases

1. CSV parser doesn't test multi-line quoted fields, mixed CRLF/LF, Unicode edge cases
2. Group chat doesn't test wrapSpawnWithSsh() error handling or power manager cleanup on error paths

---

Recommended Action Items

Before Merge (Critical)

• Serialize history.jsonl writes using enqueueWrite()
• Add error handling around all wrapSpawnWithSsh() calls with state cleanup
• Fix CSV parser Unicode handling (use for-of loop or library)

High Priority (Should Address)

• Add ReDoS protection in highlightMatches()
• Add layout verification test for GroupChatHistoryPanel
• Document error handling pattern in CLAUDE.md

Nice to Have (Consider)

• Auto-detect CSV delimiter
• Make MAX_DISPLAY_ROWS configurable
• Add JSDoc to CSV utility functions
• Extract test fixtures to dedicated files
• Optimize alignment detection dependencies

---

Overall Assessment

Grade: A- (90/100)

This is a high-quality PR that demonstrates strong software engineering practices. The atomic write pattern and write queue serialization show deep understanding of concurrency issues. The CSV renderer is feature-complete with good UX. Test coverage is exemplary.

The critical issues around history write races and SSH error handling are straightforward to fix and don't detract from the overall quality. Once addressed, this will be production-ready.

Strengths:

• Excellent concurrency control for metadata writes
• Comprehensive test coverage (1,824 lines)
• Proper SSH remote execution support
• Clean separation of concerns
• Atomic file operations for crash safety

Areas for Improvement:

• Extend serialization to history writes
• Add error handling for SSH operations
• Consider Unicode edge cases in CSV parser

Great work overall!