Release: layered architecture refactor, drop the vault (ADR-002), and Sheets-401 toast fix#10
Open
notedwin-dev wants to merge 56 commits into
Open
Release: layered architecture refactor, drop the vault (ADR-002), and Sheets-401 toast fix#10notedwin-dev wants to merge 56 commits into
notedwin-dev wants to merge 56 commits into
Conversation
… account impact, budget consumption, and savings movement
The old computeBalanceDeltas bundled three independent financial concepts under
jargon ("Deltas"). Each new function tells exactly what it computes:
- computeAccountTransactionAmount(tx, factor, accounts, usdRate) -> Map<accountId, amount>
The realised monetary impact in the account's currency.
- computeBudgetConsumption(tx, factor, pots) -> Map<potId, amount>
How much budget is consumed by spending or replenished by income.
- computeSavingsMovement(tx, factor, pockets) -> Map<pocketId, amount>
How much savings are added or withdrawn from each pocket.
…lt state from DataProvider into Zustand stores Add usdRate, cryptoPrices, exchangeRate fields and setters to finance.store. Create write-through wrappers in DataProvider so every displayCurrency change, showToast call, and vault unlock also updates the corresponding store. Pipe data into stores on initial load and after cloud sync completes.
…odules under commands/ The 625-line commands.ts was a single file containing every command (transactions, accounts, categories, goals, subscriptions, chat sessions, pots, pockets, balance, helpers). Split each domain into its own file under commands/ and make commands.ts a barrel re-export so all existing imports continue to work.
…ve migrated handlers from DataProvider Pages now read usdRate, cryptoPrices, displayCurrency, and exchangeRate from Zustand stores instead of useData(). HistoryPage and AssetsPage fully off useData(). Remove the 12 handler signatures (account, category, goal, pot, pocket, subscription, chat session CRUD) from DataContextType and their implementations from DataProvider. State now flows: DataProvider pipes initial data into stores on load and sync; pages read stores directly.
…agents, update AGENTS.md with domain functions and session log - Add src/ path alias in tsconfig.json and vite.config.ts so imports like 'src/lib/domain/balance.engine' resolve correctly within the non-src/ code. - Install vitest v4 for ESM-compatible test runner. - Create opencode.json with three refactor subagents (state-migrator, commands-splitter, page-migrator) for parallel execution. - Update AGENTS.md: replace computeBalanceDeltas with the three new functions, document parallel refactor session in the log, add Agent skills section. - Create PLAN.md to track the phased refactor roadmap.
…rolled docs/ contains Architecture Decision Records (docs/adrs/) and agent configuration docs (docs/agents/) that should be tracked.
…r to commands, fix H1 write-through gap, fix H2 type error - Rewrote commands/transactions.ts with full StorageService + SheetService calls (submitTransaction, deleteTransaction, batchDeleteTransaction, bulkImportTransactions, batchEditTransactions) - Rewrote commands/balance.ts with full StorageService + SheetService calls (recalculateBalances) - Fixed barrel re-export paths (./commands/ instead of ./) - Switched MainLayout handleTransactionSubmit → submitTransaction command - Switched History.tsx handleBatchTransactionEdit → batchEditTransactions command - Switched AccountPage handleBulkTransactionImport → bulkImportTransactions command - Switched Profile.tsx recalculateBalances → recalculateBalances command - Removed 4 dead handlers from DataProvider (handleTransactionSubmit, handleBulkTransactionImport, handleBatchTransactionEdit, recalculateBalances) - Removed 5 dead signatures from context/types.ts (incl. handleTransactionDelete — fixes H2) - Fixed orphaned function body left in DataProvider.tsx causing TS1128 parse error - Updated test signatures for new command params (profileId, isCloudEnabled) - All 82 tests pass, 6 pre-existing vault errors remain
…n function calls - Removed applyLegToPotsPockets and applyLegToAccounts (80 lines of duplicated domain logic) - Replaced with applyDeltas that calls computeAccountTransactionAmount, computeBudgetConsumption, computeSavingsMovement - Added isHistorical guard to applyDeltas (the only behavioral addition vs the domain functions) - Fixes a latent bug: old code skipped account recalculations when accountId/toAccountId didn't change, even if amount/type/date changed - 82 tests pass, 6 pre-existing vault errors remain
…plicate balance logic)
Critical bugs: - DataProvider: eliminate redundant StorageService.get calls (CR#1) - transactions: remove duplicate store.removeTransactions for partner (CR#13) - transactions: fix partner leg missing linkedTransactionId cross-ref (CR#14) - transactions: replace inline 40-line currency conversion with domain fn (CR#16) - History: make handleSwipeDelete async, await onDeleteTransaction (CR#23,#24) - History: wrap batch handlers in try/finally for endSubmit (CR#21) - Profile: wrap recalculateBalances in try/catch (CR#20) - goals: fix toast always says 'Goal updated' regardless of create vs edit (CR#25) - pockets: fix null as any type assertion (CR#10) - currency: add input validation for usdRate and unsupported pairs (CR#8) Docs: - AGENTS.md: fix docs/ gitignore claim - PLAN.md: update handler count 20/23, fix domain fn names - docs/agents/domain.md: fix ADR filename, add escalation directive - docs/adrs/001: update domain function names Tests: 83 pass (added convertAmount validation tests)
Critical bugs: - balance.engine: add explicit pot/pocket existence guard (CR#18) - transactions: sync shared transfer fields (amount, currency, date, fee) to partner leg (CR#16) - transactions: fix partner SheetService existence check uses pre-update store (CR#17) - balance: guard store/disk/cloud writes behind !startDate && !endDate (CR#13) - accounts: block deleteAccount when transactions reference accountId (CR#29) - accounts: persist to disk before updating in-memory store for atomicity (CR#30) - pockets: persist to disk before updating in-memory store (CR#14) - AccountPage: guard profile access against null in bulk import (CR#10) Architecture: - Profile: extract handleRecalculateBalances to ProfilePage, pass as prop (CR#3) - ProfilePage: read all finance data from useFinanceStore (CR#24) - MainLayout: read transactions from useFinanceStore instead of useData() (CR#9) - DataProvider: hydrate persisted pockets on load (CR#4) Tests: - commands.test: fix id generation test (pass empty id) (CR#11) - commands.test: deleteTransaction uses real store accounts (CR#12) - test-setup: use @testing-library/jest-dom/vitest entrypoint (CR#20) - tsconfig: add @testing-library/jest-dom to types array (CR#21) Security: - opencode.json: add .env deny to subagent permission blocks (CR#28) Docs: - issues/004: fix handler count 5->3 remaining (CR#6) - issues/README: add Recently Closed section for issue #1 (CR#7) - issues/review-pr2: mark as SUPERSEDED, strike H1/H2/verdict (CR#8) - rename issue file to 001- prefix convention (CR#22) - domain.md: add text language specifier, remove proceed-silently (CR#5, CR#27) - ADR: update computeBalanceDeltas references to 3 new functions (CR#25-26) Skipped (minimality): - helpers.ts: generateId() doesn't need Transaction import (CR#1) - History synthetic IDs: deleteTransaction safely no-ops (CR#2) - Banner comments: style preference, no behavioral impact (CR#15) - privacy.store atomic ops: tracked in Issue #3 (CR#19) - PLAN.md dedup: large restructuring, deferred (CR#23) - finance.store defaults: tracked in Issue #5 (CR#31)
…re, add useMask hook Issue #4: - Migrate handleMigrateData, handleResetAndSync, handleSelectExistingSheet to src/lib/application/commands/sync.ts - Remove 3 handlers + 10 setter signatures from DataProvider/DataContext - ProfilePage reads all finance data from useFinanceStore - MainLayout: unused handlers removed from destructure - DataProvider reduced 1503->1382 lines Issue #3 (partial): - Sync privacy/security state (privacyMode, isVaultEnabled, isVaultCreated, securityUnlocked) from DataProvider to privacy.store via useEffect - Create helpers/useMask.tsx hook — returns maskAmount/maskText reading privacyMode from usePrivacyStore (no longer from useData()) - Switch 4 components from useData() to useMask(): AccountCard, Charts, Goals, SubscriptionManager - finance.store: replace fabricated defaults (usdRate 4.45, cryptoPrices BTC/ETH) with zero values
Add isVaultEnabled, isVaultCreated, isVaultLocked, vaultSalt, biometricCredId to UserCloudSettings as optional legacy fields. These are destructured in storage.services.ts but were missing from the type definition, causing 6 TS errors.
…0-usdRate corruption Code review follow-up fixes: - AccountForm/AccountPage: bind loadData with profile before passing to vault commands to prevent boolean-instead-of-profile argument mismatch - useAppInit: track init by profile.id (resets on profile change); set hasSynced only on successful sync - disableVault: handle SEC: prefix, validate decryption, clear profile security flags, add success toast - resetAndSync: fetch cloud data before localStorage clear (abort if unavailable) - processSubscriptions: guard USD/MYR conversion with usdRate>0 && isFinite(usdRate) to prevent 0/Infinity balance corruption - trustCloud merge: preserve local-only items (else-if i.id branch) - subscription processing moved before cloud sync; re-encrypt post-sub accounts so cloud receives subscription-adjusted balances
Critical:
- C1: resetAndSync: guard against empty {} cloud data (corrupts
localStorage with 'undefined' on first-run path); fix upstream
sheets.service to return null instead of {}
- C2: processSubscriptions: stop writing plaintext account details
to Sheets/localStorage during sync; caller now does re-encrypted
persistence (persist: false option)
- C3: auth.logout: reset usePrivacyStore, useFinanceStore, sync
flag — prevents user B from inheriting user A's vault-unlocked
state on shared device or multi-account login
- C4: processSubscriptions: cap iteration loop at 365 to prevent
DoS hang on malformed/corrupted nextPaymentDate
- C5: decryptAccount: return encrypted blob when TOTP missing
instead of wiping details: {} (silent data loss)
- C6: Sheets writes: await StorageService.saveAccounts and the
post-subscription save to prevent out-of-order writes leaving
Sheets in plaintext
Major:
- M1: processSubscriptions: deterministic tx id (sub-{id}-{date})
for idempotency on partial-failure retry
- M2: processSubscriptions: bail cross-currency sub when usdRate
invalid instead of silently treating tx amount as native
currency
- M3: enableVault/disableVault: set isVaultEnabled/isVaultCreated
in privacy store (was dead state)
- M5: submitTransaction: pre-check usdRate and toast early instead
of throwing silently in convertAmount
- M6: vault unlock: loadData BEFORE flipping isVaultUnlocked flag
so failed decryption leaves vault in correct locked state
- M8: useAppInit: don't latch hasSynced on sync failure (allow
retry on next dep change)
- M9: useAppInit: wrap loadData in try/catch with user-facing toast
- M10: saveAccount: pipe through encryptAccount when profile
available (vault-enabled users no longer leak plaintext details
on new accounts)
- M11: disableVault: clear totpSecret, biometricCredIds, vaultSalt,
encrypted_vault_key, masterKey, securityUnlocked; reset
isVaultEnabled/Created
- M18: ProfilePage export: strip details from accounts + add _note
warning user
- M20: loadData: token-based cancellation (drop stale writes when
a newer loadData fires)
- ADR-002: removes the vault crypto system and the sensitive account fields it was protecting. Rationale: TOTP-as-key stored the encryption key in the same Google Sheet as the ciphertext, making the encryption security theatre. Data minimization (don't store what you don't need) is the only design that honestly addresses the user's threat model. - CONTEXT.md: canonical vocabulary for the project. Marks 'vault', TOTP-as-key, sensitive account fields, and in-app biometric as 'removed terms' so future sessions don't re-litigate them. Records the vault schema migration as temporary with an explicit removal criterion. Published as GitHub issue #7 (PRD) with ready-for-agent label.
…p, xcur guard) Verified 10 CodeRabbit findings against the current code; fixed 3, skipped 7 with explicit reasons: Fixed: - helpers/useAppInit.tsx: hasSynced.current in deps array was a no-op (refs don't trigger re-renders). Converted to useState so the subscription-processing effect re-runs when sync completes. - src/lib/application/commands/sync.ts: processSubscriptions toast was unreachable when dedupedNewTxs.length === 0; now toasts on that early return. Final toast also now reports both processedCount and the actual number of new transactions applied. - src/lib/application/commands/transactions.ts: usdRate guard only checked the source account. Transfers to a different-currency destination slipped through. Guard now also checks toAccount. Also removed a broken duplicate predicate (a.currency !== tx.currency && a.currency !== tx.currency). Skipped (with reason): - .gitignore line 8: wrong file, issue is in opencode.json - opencode.json absolute plugin path: user chose project-local in prior session - 5 vault-crypto findings: ADR-002 deletes this code; fix is moot 0 TypeScript errors, 83/83 tests pass.
Layered Architecture: Eliminate DataProvider bottleneck, finalize ADR-001 migration
Per ADR-002, remove the encrypted-account vault and replace it with a
data-minimisation model. This commit lays the type/store/domain
foundation for the cleanup.
types.ts
- Drop AccountDetails interface
- Drop Account.details and Account.isEncrypted fields
- Add Account.note?: string as the unencrypted freeform note
- Simplify UserCloudSettings to { schemaVersion?, maskMode?, lastSyncAt?, lastUpdatedAt? }
src/stores/mask.store.ts (new, replaces privacy.store.ts)
- Rename usePrivacyStore -> useMaskStore
- Drop vault fields (isVaultEnabled, isVaultCreated, isVaultUnlocked, securityUnlocked, masterKey)
- Keep maskMode boolean; add setMaskMode/reset actions
- Rename VaultState/PrivacyActions -> MaskState/MaskActions
src/lib/domain/migration.ts (new, TEMPORARY)
- migrateSchemaV1toV2 strips legacy fields from accounts and profile
- needsV1Migration predicate: returns true if schemaVersion != 2 OR
any legacy field is present (defends against v1 client re-introducing them)
- isPresent helper treats empty arrays/strings as absent
- CURRENT_SCHEMA_VERSION = 2
- Removal criterion in CONTEXT.md / docs/adrs/002
Tests: 110/110 passing (33 new migration tests).
Wire the v1->v2 schema migration into the data flow and drop every
read/write path that touched the removed vault fields.
services/sheets.services.ts
- findUser: required headers are now {maskMode, schemaVersion, showAIAssistant,
syncChatToSheets, lastUpdatedAt, lastSyncAt}
- createUser: header row is now 9 columns; legacy aliases
isVaultEnabled/isVaultCreated/vaultSalt removed
- updateUser: drop the biometricCredIds/devices array-merge branch; simple
key-by-key update (no array fields remain in profile)
- saveToSheet: keep the defensive sensitive-field filter (data no longer
carries those keys, but the guard stays)
services/storage.services.ts
- Remove KEYS.SECURITY (zenfinance_security_settings_v1)
- Drop getStoredSecuritySettings / saveSecuritySettings
- getStoredProfile: no longer merges a security file; defaults for
syncChatToSheets/showAIAssistant/maskMode/schemaVersion only
- saveProfile: single-key write; no more vault-field destructure
services/security.services.ts (deleted, 306 lines)
services/twofa.services.ts (deleted, 109 lines)
services/biometric.services.ts (deleted, 112 lines)
services/auth.services.tsx
- Import useMaskStore (not usePrivacyStore)
- handleGoogleSuccess / emailLogin / loginOffline: new profiles set
schemaVersion: 2
- Drop LegacyVaultProfile and the entire vault branch in
handleGoogleSuccess / emailLogin
- Logout: remove vault_password_session cleanup
- Error messages: 'secure vault' -> 'data'/'account'
src/lib/application/commands/privacy.ts (deleted, 479 lines)
src/lib/application/commands/migration.ts (new, TEMPORARY)
- runVaultSchemaMigration(): reads stored profile, runs
needsV1Migration, executes migrateSchemaV1toV2, persists accounts +
profile to localStorage, updates the in-memory store, and best-effort
pushes the cleaned profile to Sheets (skipped if offline or gapi not
ready). Header comment marks it temporary; removal criterion in
CONTEXT.md / ADR-002.
src/lib/application/commands/sync.ts
- Drop usePrivacyStore, decryptAccount/normalizeAccount/encryptAccount,
isBiometricAvailable, verifyWithBiometrics, registerBiometrics
- loadData: no decrypt pass; profile merge keeps only name/maskMode/
showAIAssistant/syncChatToSheets
- saveAccountSyncPost: no encrypt; just saveProfile
- Drop encrypted_vault_key from the keep set
- _forceUnlock param replaces the removed force-unlock concept
src/lib/application/commands/accounts.ts
- saveAccount: no encryptAccount call; _profile param
- deleteAccount: no decrypt/clear-key side effects
src/lib/application/commands.ts
- Drop privacy re-exports
- Add runVaultSchemaMigration export
Strip every UI surface that interacted with the removed vault. The
Mask Mode toggle stays as a UI-only flag.
helpers/useAppInit.tsx
- Remove the vault-lock effect (no more isVaultUnlocked state to enforce)
- Wire runVaultSchemaMigration into the post-loadData .then(); failures
are logged but never block the app
- Toast on successful migration
helpers/useMask.tsx
- Read from useMaskStore (was usePrivacyStore)
layouts/MainLayout.tsx
- 'Privacy Mode' label renamed to 'Mask Mode' in sidebar + mobile header
- useMaskStore wired in
pages/AccountPage.tsx (981 -> 693 lines, -288)
- Remove AccountDetails import + all vault unlock state/handlers
- Remove the entire Identity Details block (card number, holder, expiry, CVV)
- Remove the Unlock Vault modal
- Replace with a small account.note display in the account header
pages/ProfilePage.tsx
- handleExportData no longer strips { details, ...rest }; no _note warning
- Updated to also write a clean, vault-free backup
components/Profile.tsx (1441 -> 603 lines, -838)
- Drop SecurityService, TwoFAService, LegacyVaultProfile, usePrivacyStore
- Remove the Vault, TOTP Setup, and Biometric Management modals
- Remove the Security & Biometrics section (2FA, Vault, Passkey items)
- Drop unused icons (LockClosedIcon, FingerPrintIcon, ShieldCheckIcon)
- Rename 'Privacy Mode' toggle -> 'Mask Mode' (now backed by maskMode)
components/AccountForm.tsx (774 -> 412 lines, -362)
- Drop AccountDetails, SecurityService, usePrivacyStore,
unlockVaultWithTOTP, unlockVaultWithBiometrics, Modal, LockClosedIcon,
FingerPrintIcon imports
- Remove isVaultEnabled, isVaultUnlocked, vaultTOTPCode state and all
vault unlock/biometric handlers
- Remove the 5 sensitive-field inputs (accountNumber, cardNumber,
holderName, expiry, cvv)
- loadAccountData: no sensitive-field init; no reload on vault unlock
- handleSubmit: no finalDetails wrap; note passes through directly
- Remove the entire Unlock Vault modal
- Add a single Notes textarea in its place
components/History.tsx
- Drop the stale usePrivacyStore import (useMask was already wired)
Final tallies: 19 files changed, 525 insertions, 3471 deletions across
the three commits of this branch. Tests: 110/110 passing.
Wires the existing runVaultSchemaMigration() to a manual button in
Profile > Cloud & Data. Visible only when needsV1Migration() returns
true (i.e. local profile is still on schemaVersion < 2 or carries
legacy vault fields). Disappears after a successful run because the
predicate returns false once the profile is bumped to v2.
Confirmation modal explains the multi-device caveat. Local cleanup
runs first; cloud push is best-effort and may be skipped if offline.
Per CONTEXT.md / ADR-002, this button + runVaultSchemaMigration() +
the migration domain are all marked temporary. When the v1 -> v2
cutover is complete:
1. Delete the SettingItem block in components/Profile.tsx
2. Delete the showV1Migration hook (2 lines)
3. Delete the runVaultSchemaMigration + needsV1Migration imports (2 lines)
4. Later: delete src/lib/application/commands/migration.ts and
src/lib/domain/migration.ts (when no v1 clients are reachable)
Tests: 110/110 passing.
…om sheets Adds 10 application tests for runVaultSchemaMigration covering: early-return on missing profile, no-op on clean v2, full v1 cleanup, self-healing, offline/no-client skips cloud push, push-fail doesn't throw, in-memory store update, store-vs-storage source authority. Brings total to 120/120 tests. Removes the defensive 'sensitiveFields' filter from saveToSheet that excluded accountNumber/cardNumber/cvv/expiry/holderName from sheet headers. This is dead code per ADR-002 (all such fields deleted from Account type and the v1 codebase), and per the PRD's 'Code deleted' section. 120/120 tests still pass.
When Google Sheets returned 401, loadFromGoogleSheets and getSpreadsheetId silently swallowed the error and returned null. syncData then took the 'if (cloudData)' early-skip path with no toast replacement, leaving the user staring at 'Syncing with Google Sheets...' indefinitely. Fix: re-throw 401 errors from getSpreadsheetId and loadFromGoogleSheets' batchGet catch. syncData's catch now detects 401 and shows 'Session expired. Please sign in again.' then triggers loginWithGoogle. Also adds an else branch on the cloudData null path to dismiss the stuck toast (handles legitimate 'no spreadsheet linked' case). Adds 3 regression tests covering: (1) generic throw shows 'Cloud sync failed', (2) 401 throw shows 'Session expired' + triggers re-login, (3) null return dismisses stuck toast. All 86 tests pass.
10 findings fixed (2 skipped — see body):
Domain layer (src/lib/domain/migration.ts):
- migration.ts: profile.privacyMode is now used as a fallback for maskMode when v2 maskMode is absent. Preserves v1 user preference instead of forcing maskMode to false. Added 2 regression tests.
- migration.test.ts: replaced PAN-like fixture (4111111111111111) with NON_PAN_PLACEHOLDER. Updated existing 'cleans in one pass' assertion to reflect the new privacyMode-fallback behavior.
Application layer (src/lib/application/commands/sync.ts):
- Sanitizes mergedAccounts with stripVaultFromAccount before setAccounts/saveAccounts (defense in depth: cloud might still carry legacy v1 fields even after local migration).
- Sanitizes postSubAccounts with stripVaultFromAccount before saveAccounts and the syncWithGoogleSheets upload.
Infrastructure layer:
- services/sheets.services.ts: saveToSheet now filters cardNumber/cvv/expiry/holderName/accountNumber/details from combinedData before generating headers/rows, so removed v1 columns are not reintroduced when re-serializing.
- services/sheets.services.ts: initial Profile/Users sheet header row now includes 'lastSyncAt' (was missing, causing findUser to treat it as absent and rewrite headers). Range expanded from A1:I1 to A1:J1.
- services/auth.services.tsx: logout now removes the persisted 'google_refresh_token' from localStorage so initAuth() cannot reuse it after logout.
UI layer:
- components/AccountForm.tsx: Notes placeholder no longer suggests 'last 4 digits'; new sanitizeNote() strips 3+ consecutive digit runs and 'last XXXX' patterns from the onChange handler.
- components/Profile.tsx: Mask Mode toggle now reads from useMaskStore (source of truth) and calls setMaskMode; profile.maskMode is only persisted via onUpdate. Was using profile.maskMode for UI state, causing divergence from helpers/useMask + MainLayout.
- pages/AccountPage.tsx: account.note is masked when Mask Mode is active (• chars, preserves whitespace-pre-wrap). Uses reactive maskMode from useMaskStore so toggling re-renders.
- pages/ProfilePage.tsx: data export strips legacy 'details' and 'isEncrypted' from each account (defense in depth: localStorage may still have v1 keys even after migration).
- layouts/MainLayout.tsx: mobile Mask Mode button now has aria-label='Toggle mask mode' and aria-pressed={maskMode} for screen reader state.
Application bootstrap (helpers/useAppInit.tsx):
- runVaultSchemaMigration() promise is now returned from the .then() callback so any rejection flows into the same .catch() and ordering with loadData is preserved.
Skipped findings (1 additional user finding):
- 'Cloud sync complete toast does not go away on staging': not a regression. Toast component JSX (layouts/MainLayout.tsx:487) is byte-identical on main and feature/drop-vault, and the sync flow's showToast('Cloud sync complete', 'success') is also identical. The behavior is pre-existing on main too. The fix would be a UX improvement (auto-dismiss), but is out of scope for this PR.
Validation: npx tsc --noEmit clean, npx vitest run 11/11 files 122/122 tests pass.
Before PR #6 (refactor/layered-architecture), main's DataProvider.tsx had a local showToast that called setTimeout(() => setToast(null), 3000) for auto-dismiss. When toast state was extracted into useSyncStore in PR #6, the auto-dismiss was dropped — the new showToast only set state, never cleared it. Restores the 3-second auto-dismiss in useSyncStore.showToast, matching main's behavior. Tracks the timer ID inside the store so: - Subsequent showToast calls cancel the previous timer (no premature dismissal of a fresh toast) - dismissToast() and reset() cancel the pending timer Adds 5 regression tests covering: 3s auto-dismiss, no-dismiss before 3s, timer reset on new toast, manual dismiss clears timer, reset clears timer. 127/127 tests pass.
…nc cleanup-before-fetch Two issues addressed: 1. logger.redact: The errorOut object built for Error instances preserved raw value.message and value.stack, leaking any secrets they contained (e.g. an API key embedded in a network error message or a stack frame URL). Wrap both in the same redact() pass used for top-level strings so the inline API-key regex fires. Keeps value.name intact. 2. resetAndSync: A prior auto-fix moved localStorage.clear() back inside the try block with the comment 'Only clear localStorage after successful cloud validation'. This breaks the 401-path test (__tests__/sync.test.ts: keeps keep-list / drops other keys) because the 401 throw skips the clear. Move the cleanup back outside the try: a 'reset' is a user-initiated destructive action, so the cache should be cleared even if the cloud fetch fails — the next login will re-fetch. 153 tests pass (2 new), npx tsc --noEmit clean.
Security: redact sensitive fields in logs, harden password hashing, strip API key from export
…Page conflict Conflict in pages/ProfilePage.tsx: HEAD used a deny-list regex (11 patterns) for export sanitization; staging's PR #11 used an allow-list for profile (11 fields) + deny-list of { details, isEncrypted } for accounts. Resolved with the deny-list approach but extended the regex to match the logger's SENSITIVE_KEYS set plus common identifier patterns (apikey lowercase, vite_* env keys, totpSecret, encryptionKey, biometricCred[Id|Ids], devices, cardNumber, cvv, expiry, holderName, accountNumber, pin, ssn, taxId, iban, routingNumber, swift). Why deny-list over allow-list: - Export is user-initiated data backup; preserve as much as possible - UserProfile type has 16+ fields; the 11-field allow-list silently dropped photoUrl, updatedAt, isSecurityEnabled, isVaultEnabled, totpEnabled, biometricEnabled — that's data loss for a backup feature - Recursive redact() handles nested objects uniformly (transactions referencing accounts, goals, pockets) without per-entity allow-lists - The OWASP 'default deny' rule applies to auth/authz on untrusted input, not to user data export 153 tests pass, npx tsc --noEmit clean.
![coderabbitai[bot]](https://avatars.githubusercontent.com/in/347564?s=60&v=4){kind=small}
There was a problem hiding this comment.
Actionable comments posted: 4
Caution
Some comments are outside the diff and can’t be posted inline due to platform limitations.
⚠️ Outside diff range comments (4)
vite.config.ts (1)
64-69: 🛠️ Refactor suggestion | 🟠 Major | ⚡ Quick winDomain tests should run without jsdom per coding guidelines.
The global
environment: "jsdom"applies to all tests including those insrc/lib/domain/__tests__/. This violates the guideline that domain tests should run without jsdom to ensure domain functions remain pure and don't accidentally depend on browser APIs.Use
environmentMatchGlobsto run domain tests in thenodeenvironment:Suggested fix
test: { globals: true, environment: "jsdom", setupFiles: ["./src/test-setup.ts"], include: ["src/**/*.test.{ts,tsx}"], + environmentMatchGlobs: [ + ["src/lib/domain/**/*.test.ts", "node"], + ], },🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the rest with a brief reason, keep changes minimal, and validate. In `@vite.config.ts` around lines 64 - 69, The global test config currently sets environment: "jsdom" for all tests; update the Vite/Vitest test config (the test object) to keep environment: "jsdom" as default but add environmentMatchGlobs to override domain tests to node (e.g., match "src/lib/domain/**" or "src/lib/domain/**/__tests__/**" to run in node). Modify the test config entry named test to include environmentMatchGlobs with a pattern targeting the domain test files so those tests run in the "node" environment while leaving other tests using "jsdom".services/auth.services.tsx (2)
256-260:⚠️ Potential issue | 🟠 Major | ⚡ Quick winClear all OAuth tokens on logout.
google_access_tokenandgoogle_token_expiryremain in localStorage after logout, so credentials are retained longer than expected.Suggested fix
const logout = () => { googleLogout(); SheetService.clearGapiAccessToken(); + localStorage.removeItem("google_access_token"); + localStorage.removeItem("google_token_expiry"); localStorage.removeItem("google_refresh_token"); const emptyProfile: UserProfile = { name: "",🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the rest with a brief reason, keep changes minimal, and validate. In `@services/auth.services.tsx` around lines 256 - 260, The logout function currently calls googleLogout() and clears the refresh token but leaves google_access_token and google_token_expiry in localStorage; update the logout implementation (function logout) to also remove "google_access_token" and "google_token_expiry" from localStorage and ensure SheetService.clearGapiAccessToken() is called to revoke in-memory GAPI state so all OAuth credentials are cleared on logout.
286-297:⚠️ Potential issue | 🟠 Major | ⚡ Quick winFix use of
setProfileupdater side effects inupdateProfilesoupdatedPis always defined.In
services/auth.services.tsx(lines 286-297),updatedPis assigned inside thesetProfile(prev => { ... })updater, but then immediately read afterward (updatedP.email). The updater execution isn’t guaranteed to happen before the following conditional runs, soupdatedPcan beundefined. Compute the merged “next profile” synchronously first (and then use that same value forStorageService.saveProfileandSheetService.updateUser) rather than relying on the updater side effect.🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the rest with a brief reason, keep changes minimal, and validate. In `@services/auth.services.tsx` around lines 286 - 297, In updateProfile, avoid relying on setProfile's updater side-effects: compute the merged next profile synchronously (e.g., const nextProfile = { ...currentProfile, ...u }) before calling setProfile, then call setProfile(nextProfile), StorageService.saveProfile(nextProfile), and use nextProfile when checking nextProfile.email and calling SheetService.updateUser; keep the existing guards (skipCloud and SheetService.isClientReady()) and await SheetService.updateUser(nextProfile.email, u) as before.services/sheets.services.ts (1)
306-326: 🧹 Nitpick | 🔵 Trivial | 💤 Low valueHeader migration may cause infinite recursion if sheet write fails.
If the
updatecall at line 318-323 succeeds but a subsequent re-fetch in the recursivefindUser(email)call still reports missing headers (e.g., due to eventual consistency or a race), this could loop. Consider adding a guard parameter to limit recursion depth.♻️ Proposed fix
-export const findUser = async (email: string) => { +export const findUser = async (email: string, _migrationAttempted = false): Promise<any> => { if (!gapiInited || !hasAccessToken) return null; try { // ... existing code ... const missingHeaders = requiredHeaders.filter((h) => !headers.includes(h)); - if (missingHeaders.length > 0) { + if (missingHeaders.length > 0 && !_migrationAttempted) { // ... update headers ... - return findUser(email); + return findUser(email, true); } + if (missingHeaders.length > 0 && _migrationAttempted) { + logger.warn("Header migration did not persist, proceeding with available headers"); + }🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the rest with a brief reason, keep changes minimal, and validate. In `@services/sheets.services.ts` around lines 306 - 326, The header-migration path can recurse indefinitely via the findUser(email) call after calling window.gapi.client.sheets.spreadsheets.values.update; add a guard (e.g., an optional retryCount or maxRetries parameter) to the findUser function and use it when re-fetching so that after N attempts you stop retrying (return a clear error/partial result or throw), update the call site here to pass/increment that retry counter, and keep references to requiredHeaders, getProfileSheetName, getColumnLetter and the update call when implementing the guard to prevent infinite recursion if the sheet write is not visible immediately.
♻️ Duplicate comments (1)
pages/ProfilePage.tsx (1)
42-46:⚠️ Potential issue | 🟠 Major | ⚡ Quick winAccount sanitization still incomplete per ADR-002.
The current sanitizer only strips
detailsandisEncrypted, but legacy accounts may contain other sensitive fields (cardNumber,cvv,expiry,holderName,accountNumber). This matches the concern raised in a previous review.🐛 Proposed fix aligning with sheets.services.ts sensitiveFields
const sanitizedAccounts = accounts.map((a) => { - const bag = a as unknown as Record<string, unknown>; - const { details, isEncrypted, ...rest } = bag; - return rest; + const sensitiveKeys = new Set([ + "details", + "isEncrypted", + "accountNumber", + "cardNumber", + "holderName", + "expiry", + "cvv", + ]); + return Object.fromEntries( + Object.entries(a as unknown as Record<string, unknown>).filter( + ([key]) => !sensitiveKeys.has(key), + ), + ); });🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the rest with a brief reason, keep changes minimal, and validate. In `@pages/ProfilePage.tsx` around lines 42 - 46, The sanitizer in the accounts.map (sanitizedAccounts) only removes details and isEncrypted; update it to also strip all legacy sensitive fields (e.g., cardNumber, cvv, expiry, holderName, accountNumber) before returning each account. Locate the accounts.map callback (const bag = a as unknown as Record<string, unknown>; const { details, isEncrypted, ...rest } = bag;) and extend the destructuring or explicitly delete those sensitive keys from bag/rest so the returned object excludes them, matching the sensitiveFields set used in sheets.services.ts.
🤖 Prompt for all review comments with AI agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
Inline comments:
In `@components/AccountForm.tsx`:
- Around line 39-42: The current sanitizeNote() regex uses a global lookahead
that depends on digit distribution and the proposed simpler pattern changes
behavior; instead, update sanitizeNote to find candidate runs matching /(?:\d[
-]?){13,19}/ (or similar), then for each match strip non-digits and check the
digit-count is between 13 and 19 before replacing with "[redacted]"; also keep
the existing CVV/CVC regex logic in sanitizeNote to redact 3–4 digit codes. This
ensures strict 13–19 digit redaction without the original lookahead’s
cross-string sensitivity while preserving the sanitizeNote function name and
intent.
In `@components/GoogleDrivePicker.tsx`:
- Around line 44-46: Duplicate maskFileId functions exist inside the
GoogleDrivePicker component and a hook; extract a single typed
maskFileId(fileId: string): string to module scope (top of the file), remove the
duplicate implementations, and update both the GoogleDrivePicker component and
the hook to call the shared maskFileId function so they use the single
implementation; ensure the signature remains the same and adjust any
imports/exports only if the hook is moved to a different module.
In `@src/lib/application/commands/__tests__/sync.test.ts`:
- Line 88: The test suite stubs the global confirm with vi.stubGlobal("confirm",
...) in beforeEach but never restores it; add a restoration in afterEach using
vi.unstubAllGlobals() (or explicitly unstub the confirm global) alongside the
existing vi.useRealTimers() so the global stub doesn't leak into other suites;
locate the beforeEach/afterEach in the sync.test.ts file and update the
afterEach to call vi.useRealTimers() followed by vi.unstubAllGlobals().
In `@src/lib/domain/__tests__/crypto.test.ts`:
- Around line 1-8: The test file that imports hashPassword, verifyPassword,
isLegacyHash and PBKDF2_ITERATIONS is placed in the domain tests folder but
targets services/crypto.services.ts—move the test file so it is co-located with
the module under test (i.e., place the test next to crypto.services.ts in the
services tests directory), rename it to crypto.services.test.ts (or similar) to
match the module, and update any import paths so imports for hashPassword,
verifyPassword, isLegacyHash and PBKDF2_ITERATIONS resolve correctly.
---
Outside diff comments:
In `@services/auth.services.tsx`:
- Around line 256-260: The logout function currently calls googleLogout() and
clears the refresh token but leaves google_access_token and google_token_expiry
in localStorage; update the logout implementation (function logout) to also
remove "google_access_token" and "google_token_expiry" from localStorage and
ensure SheetService.clearGapiAccessToken() is called to revoke in-memory GAPI
state so all OAuth credentials are cleared on logout.
- Around line 286-297: In updateProfile, avoid relying on setProfile's updater
side-effects: compute the merged next profile synchronously (e.g., const
nextProfile = { ...currentProfile, ...u }) before calling setProfile, then call
setProfile(nextProfile), StorageService.saveProfile(nextProfile), and use
nextProfile when checking nextProfile.email and calling SheetService.updateUser;
keep the existing guards (skipCloud and SheetService.isClientReady()) and await
SheetService.updateUser(nextProfile.email, u) as before.
In `@services/sheets.services.ts`:
- Around line 306-326: The header-migration path can recurse indefinitely via
the findUser(email) call after calling
window.gapi.client.sheets.spreadsheets.values.update; add a guard (e.g., an
optional retryCount or maxRetries parameter) to the findUser function and use it
when re-fetching so that after N attempts you stop retrying (return a clear
error/partial result or throw), update the call site here to pass/increment that
retry counter, and keep references to requiredHeaders, getProfileSheetName,
getColumnLetter and the update call when implementing the guard to prevent
infinite recursion if the sheet write is not visible immediately.
In `@vite.config.ts`:
- Around line 64-69: The global test config currently sets environment: "jsdom"
for all tests; update the Vite/Vitest test config (the test object) to keep
environment: "jsdom" as default but add environmentMatchGlobs to override domain
tests to node (e.g., match "src/lib/domain/**" or
"src/lib/domain/**/__tests__/**" to run in node). Modify the test config entry
named test to include environmentMatchGlobs with a pattern targeting the domain
test files so those tests run in the "node" environment while leaving other
tests using "jsdom".
---
Duplicate comments:
In `@pages/ProfilePage.tsx`:
- Around line 42-46: The sanitizer in the accounts.map (sanitizedAccounts) only
removes details and isEncrypted; update it to also strip all legacy sensitive
fields (e.g., cardNumber, cvv, expiry, holderName, accountNumber) before
returning each account. Locate the accounts.map callback (const bag = a as
unknown as Record<string, unknown>; const { details, isEncrypted, ...rest } =
bag;) and extend the destructuring or explicitly delete those sensitive keys
from bag/rest so the returned object excludes them, matching the sensitiveFields
set used in sheets.services.ts.
🪄 Autofix (Beta)
Fix all unresolved CodeRabbit comments on this PR:
- Push a commit to this branch (recommended)
- Create a new PR with the fixes
ℹ️ Review info
⚙️ Run configuration
Configuration used: Organization UI
Review profile: ASSERTIVE
Plan: Pro Plus
Run ID: a7f3a6eb-1588-4a34-a257-4f54a8d9a30f
📒 Files selected for processing (22)
components/AIInsights.tsxcomponents/AccountForm.tsxcomponents/BulkImportModal.tsxcomponents/GoogleDrivePicker.tsxcomponents/Profile.tsxcomponents/history/useFilteredTransactions.tshelpers/useAppInit.tsxpages/ProfilePage.tsxservices/auth.services.tsxservices/coin.services.tsservices/crypto.services.tsservices/exchange.services.tsservices/gemini.services.tsservices/sheets.services.tsservices/storage.services.tssrc/lib/application/__tests__/logger.test.tssrc/lib/application/commands/__tests__/sync.test.tssrc/lib/application/commands/migration.tssrc/lib/application/commands/sync.tssrc/lib/application/logger.tssrc/lib/domain/__tests__/crypto.test.tsvite.config.ts
📜 Review details
🧰 Additional context used
📓 Path-based instructions (6)
**/*.{ts,tsx}
📄 CodeRabbit inference engine (AGENTS.md)
Avoid comments — prefer self-documenting code with clear names and structure
Files:
services/exchange.services.tscomponents/AIInsights.tsxcomponents/BulkImportModal.tsxservices/coin.services.tssrc/lib/application/__tests__/logger.test.tssrc/lib/application/commands/__tests__/sync.test.tscomponents/history/useFilteredTransactions.tssrc/lib/application/logger.tsservices/gemini.services.tssrc/lib/domain/__tests__/crypto.test.tspages/ProfilePage.tsxcomponents/GoogleDrivePicker.tsxservices/crypto.services.tsservices/storage.services.tssrc/lib/application/commands/migration.tshelpers/useAppInit.tsxvite.config.tssrc/lib/application/commands/sync.tsservices/auth.services.tsxcomponents/AccountForm.tsxcomponents/Profile.tsxservices/sheets.services.ts
{components,pages,layouts}/**/*.{ts,tsx}
📄 CodeRabbit inference engine (AGENTS.md)
Use Tailwind CSS utility-first approach for styling
React components should read state from
useFinanceStoreinstead of legacyuseData()contextUse domain commands exported from
src/lib/application/commands.tsfor state mutations instead of handler callbacks
Files:
components/AIInsights.tsxcomponents/BulkImportModal.tsxcomponents/history/useFilteredTransactions.tspages/ProfilePage.tsxcomponents/GoogleDrivePicker.tsxcomponents/AccountForm.tsxcomponents/Profile.tsx
src/lib/application/**/*.ts
📄 CodeRabbit inference engine (AGENTS.md)
Application layer should orchestrate commands without side effects, delegating to domain and infrastructure layers
Files:
src/lib/application/__tests__/logger.test.tssrc/lib/application/commands/__tests__/sync.test.tssrc/lib/application/logger.tssrc/lib/application/commands/migration.tssrc/lib/application/commands/sync.ts
src/lib/domain/**/*.ts
📄 CodeRabbit inference engine (AGENTS.md)
Domain layer functions must be pure functions with no React, no side effects, and no imports from
context/,services/, orstores/All domain layer dependencies must be explicit parameters
Use
TransactionTypeenum from types for type discrimination in domain logicUse one module per file in the domain layer with co-located tests in
__tests__/
Files:
src/lib/domain/__tests__/crypto.test.ts
src/lib/domain/__tests__/**/*.ts
📄 CodeRabbit inference engine (AGENTS.md)
Co-locate domain layer unit tests in
__tests__/directories next to the module being tested
Files:
src/lib/domain/__tests__/crypto.test.ts
src/lib/domain/__tests__/**/*.test.ts
📄 CodeRabbit inference engine (AGENTS.md)
Write pure unit tests for domain functions using Vitest without jsdom
Files:
src/lib/domain/__tests__/crypto.test.ts
🧠 Learnings (1)
📓 Common learnings
Learnt from: CR
Repo: notedwin-dev/finance-tracker-app
Timestamp: 2026-06-05T16:24:37.064Z
Learning: Create feature branches with prefix `feature/*` for new features (e.g., `feature/export-csv`)
Learnt from: CR
Repo: notedwin-dev/finance-tracker-app
Timestamp: 2026-06-05T16:24:37.064Z
Learning: Create refactor branches with prefix `refactor/*` for major code refactoring or UI revamps (e.g., `refactor/layered-architecture`)
Learnt from: CR
Repo: notedwin-dev/finance-tracker-app
Timestamp: 2026-06-05T16:24:37.064Z
Learning: Create bugfix branches with prefix `bugfix/*` for bug fixes (e.g., `bugfix/search-overlay-crash`)
Learnt from: CR
Repo: notedwin-dev/finance-tracker-app
Timestamp: 2026-06-05T16:24:37.064Z
Learning: Open pull requests to `staging` branch for review before merging to `main`
🔇 Additional comments (25)
vite.config.ts (2)
8-20: LGTM!
22-63: LGTM!src/lib/application/logger.ts (1)
1-109: LGTM!src/lib/application/__tests__/logger.test.ts (1)
1-109: LGTM!src/lib/application/commands/migration.ts (1)
8-8: LGTM!Also applies to: 39-42
src/lib/application/commands/sync.ts (1)
9-9: LGTM!Also applies to: 42-55, 107-107, 162-164, 171-171, 203-206, 240-242, 290-292, 309-309, 364-368, 402-402, 569-569
helpers/useAppInit.tsx (1)
14-14: LGTM!Also applies to: 33-33, 72-72
services/coin.services.ts (1)
1-1: LGTM!Also applies to: 44-44
services/auth.services.tsx (1)
9-10: LGTM!Also applies to: 60-60, 163-168, 193-200, 299-302
services/crypto.services.ts (1)
1-135: LGTM!services/exchange.services.ts (1)
2-2: LGTM!Also applies to: 47-47, 151-151
services/gemini.services.ts (1)
12-12: LGTM!Also applies to: 289-289, 408-417, 455-455, 495-499, 565-565
services/storage.services.ts (1)
14-14: LGTM!Also applies to: 82-83, 90-90, 163-163, 167-167
components/AIInsights.tsx (1)
18-18: LGTM!Also applies to: 376-376
components/BulkImportModal.tsx (1)
18-18: LGTM!Also applies to: 106-106
services/sheets.services.ts (3)
29-35: LGTM!
57-68: LGTM!Also applies to: 97-97, 124-124, 149-159, 211-214, 231-231, 248-253, 264-269, 283-283, 462-462, 500-511, 533-548, 675-678, 771-778, 825-828, 877-880, 969-977, 1004-1004, 1061-1067, 1131-1134, 1180-1191, 1316-1316, 1373-1375, 1402-1402
694-709: Sensitive fields set should includenotefor v1 accounts if it contained sensitive data.The
sensitiveFieldsset correctly strips legacy vault fields. However, per the context snippet fromsync.tsand ADR-002, this list appears complete for the v1→v2 migration. The implementation looks correct.LGTM!
src/lib/domain/__tests__/crypto.test.ts (2)
9-93: LGTM!
95-101: LGTM!components/AccountForm.tsx (1)
59-100: LGTM!Also applies to: 102-128, 130-183, 185-380
components/GoogleDrivePicker.tsx (1)
1-6: LGTM!Also applies to: 20-105, 107-177
components/Profile.tsx (1)
28-28: LGTM!Also applies to: 63-72, 287-310, 394-394, 436-472
components/history/useFilteredTransactions.ts (1)
9-9: LGTM!Also applies to: 64-71
pages/ProfilePage.tsx (1)
9-9: LGTM!Also applies to: 48-67, 98-113, 115-125
Code:
- History.handleSwipeDelete: drop inline comment from empty catch
block (project rule: no comments)
- useAppInit: accurate warning messages — store retains initial
usdRate (0) / exchangeRate (null) / cryptoPrices ({ BTC: 0, ETH: 0 })
on fetch failure, not '1' or 'empty list' as previously stated
- ProfilePage.stripSensitive: recurse into retained values so nested
sensitive fields (meta.apiKey, accounts[].geminiApiKey) are caught
- commands/pockets.saveSavingPocket: persist before setPockets to match
the deleteSavingPocket pattern (UI never shows unsaved state)
- commands/pockets.deleteSavingPocket: always build new tx object so
both savingPocketId and toSavingPocketId are cleared when a pocket
is deleted (was: early return after first match)
- domain/migration: drop default for updatedAt param (was a side effect
in a pure function); callers in commands/migration now pass
new Date().toISOString() explicitly
- domain/__tests__/migration: update existing tests to pass FIXED_TS as
required third argument
Skipped:
- opencode.json plugin path: ./opencode-power-pack directory exists in
the repo (verified) — finding invalid
153 tests pass, npx tsc --noEmit clean.
fix(cleanup): address post-merge code review findings
There was a problem hiding this comment.
Caution
Some comments are outside the diff and can’t be posted inline due to platform limitations.
⚠️ Outside diff range comments (2)
components/History.tsx (2)
174-188: 🧹 Nitpick | 🔵 Trivial | 💤 Low valueRemove stable imports from dependency arrays.
batchDeleteTransactionis a module-level import, not a reactive value. Including it in the dependency array is unnecessary and slightly misleading.♻️ Proposed fix
- }, [batch, batchDeleteTransaction, accounts, pots, pockets, usdRate, transactions]); + }, [batch, accounts, pots, pockets, usdRate, transactions]);🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the rest with a brief reason, keep changes minimal, and validate. In `@components/History.tsx` around lines 174 - 188, The useCallback for handleBatchDelete incorrectly includes the module-level import batchDeleteTransaction in its dependency array; remove batchDeleteTransaction from the dependency array and leave only reactive values (batch, accounts, pots, pockets, usdRate, transactions) so the hook dependencies reflect actual reactive inputs used by handleBatchDelete (function name: handleBatchDelete, imported symbol: batchDeleteTransaction).
190-206: 🧹 Nitpick | 🔵 Trivial | 💤 Low valueRemove stable import from dependency array.
Same as above—
batchEditTransactionsis a module-level import.♻️ Proposed fix
- }, [batch, batchEditTransactions, transactions, accounts, pots, pockets, usdRate]); + }, [batch, transactions, accounts, pots, pockets, usdRate]);🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the rest with a brief reason, keep changes minimal, and validate. In `@components/History.tsx` around lines 190 - 206, The useCallback for handleBatchEditSubmit incorrectly includes the module-level import batchEditTransactions in its dependency array; remove batchEditTransactions from the dependency array of handleBatchEditSubmit and leave only reactive values (batch, transactions, accounts, pots, pockets, usdRate) so the callback doesn't re-create unnecessarily; update the dependency list for handleBatchEditSubmit accordingly in the component where handleBatchEditSubmit is declared.
♻️ Duplicate comments (1)
layouts/MainLayout.tsx (1)
246-249:⚠️ Potential issue | 🟡 Minor | ⚡ Quick winAdd
aria-labelto match mobile toggle.The mobile mask-mode button (line 306) has both
aria-labelandaria-pressed. The desktop toggle now hasaria-pressedbut is missingaria-labelfor screen-reader parity.♿ Proposed fix
<button onClick={() => setMaskMode(!maskMode)} + aria-label="Toggle mask mode" aria-pressed={maskMode} className="w-full flex items-center justify-between p-3 rounded-xl bg-gray-900/50 hover:bg-gray-800/50 border border-gray-800/50 transition-all group" >🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the rest with a brief reason, keep changes minimal, and validate. In `@layouts/MainLayout.tsx` around lines 246 - 249, The desktop mask-mode toggle button that calls setMaskMode(!maskMode) currently has aria-pressed but is missing an aria-label; add an aria-label to that same button element (the one using onClick={() => setMaskMode(!maskMode)} and aria-pressed={maskMode}) and use the same label text as the mobile mask-mode button so screen readers get parity between toggles.
🤖 Prompt for all review comments with AI agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
Outside diff comments:
In `@components/History.tsx`:
- Around line 174-188: The useCallback for handleBatchDelete incorrectly
includes the module-level import batchDeleteTransaction in its dependency array;
remove batchDeleteTransaction from the dependency array and leave only reactive
values (batch, accounts, pots, pockets, usdRate, transactions) so the hook
dependencies reflect actual reactive inputs used by handleBatchDelete (function
name: handleBatchDelete, imported symbol: batchDeleteTransaction).
- Around line 190-206: The useCallback for handleBatchEditSubmit incorrectly
includes the module-level import batchEditTransactions in its dependency array;
remove batchEditTransactions from the dependency array of handleBatchEditSubmit
and leave only reactive values (batch, transactions, accounts, pots, pockets,
usdRate) so the callback doesn't re-create unnecessarily; update the dependency
list for handleBatchEditSubmit accordingly in the component where
handleBatchEditSubmit is declared.
---
Duplicate comments:
In `@layouts/MainLayout.tsx`:
- Around line 246-249: The desktop mask-mode toggle button that calls
setMaskMode(!maskMode) currently has aria-pressed but is missing an aria-label;
add an aria-label to that same button element (the one using onClick={() =>
setMaskMode(!maskMode)} and aria-pressed={maskMode}) and use the same label text
as the mobile mask-mode button so screen readers get parity between toggles.
ℹ️ Review info
⚙️ Run configuration
Configuration used: Organization UI
Review profile: ASSERTIVE
Plan: Pro Plus
Run ID: 604ee940-4633-457f-be89-3b3e20c98755
📒 Files selected for processing (25)
.opencode/prompts/page-migrator.txt.opencode/prompts/state-migrator.txtAGENTS.mdcomponents/History.tsxcomponents/history/useFilteredTransactions.tsdocs/adrs/001-layered-architecture-refactor.mddocs/issues/003-privacy-store.mddocs/issues/004-commands-extraction.mddocs/issues/005-cleanup.mddocs/issues/review-pr2.mdhelpers/useAppInit.tsxlayouts/MainLayout.tsxopencode.jsonpages/ProfilePage.tsxsrc/lib/application/commands/balance.tssrc/lib/application/commands/chat-sessions.tssrc/lib/application/commands/migration.tssrc/lib/application/commands/pockets.tssrc/lib/application/commands/pots.tssrc/lib/application/commands/subscriptions.tssrc/lib/application/commands/sync.tssrc/lib/domain/__tests__/matchesSearch.test.tssrc/lib/domain/__tests__/migration.test.tssrc/lib/domain/migration.tssrc/lib/domain/search.ts
📜 Review details
🧰 Additional context used
📓 Path-based instructions (7)
{src,components,pages,helpers,layouts,services}/**/*.{ts,tsx}
📄 CodeRabbit inference engine (AGENTS.md)
Avoid comments in code—prefer self-documenting code with clear naming and structure.
Files:
src/lib/application/commands/pots.tssrc/lib/domain/search.tssrc/lib/application/commands/migration.tssrc/lib/application/commands/chat-sessions.tssrc/lib/application/commands/pockets.tssrc/lib/application/commands/subscriptions.tssrc/lib/domain/__tests__/matchesSearch.test.tshelpers/useAppInit.tsxsrc/lib/application/commands/balance.tspages/ProfilePage.tsxsrc/lib/domain/migration.tssrc/lib/domain/__tests__/migration.test.tscomponents/History.tsxsrc/lib/application/commands/sync.tscomponents/history/useFilteredTransactions.tslayouts/MainLayout.tsx
src/lib/application/commands/**/*.ts
📄 CodeRabbit inference engine (AGENTS.md)
Command handlers in
src/lib/application/commands/should orchestrate domain logic and coordinate with stores. Each command should perform a single action (e.g., save, delete) and delegate business logic to domain functions.
Files:
src/lib/application/commands/pots.tssrc/lib/application/commands/migration.tssrc/lib/application/commands/chat-sessions.tssrc/lib/application/commands/pockets.tssrc/lib/application/commands/subscriptions.tssrc/lib/application/commands/balance.tssrc/lib/application/commands/sync.ts
src/lib/domain/**/*.ts
📄 CodeRabbit inference engine (AGENTS.md)
Domain layer functions must be pure functions with no React dependencies, no side effects, and no imports from
services/orstores/. All dependencies must be explicit parameters.Use
TransactionTypeenum from types for type discrimination in domain logic.
Files:
src/lib/domain/search.tssrc/lib/domain/__tests__/matchesSearch.test.tssrc/lib/domain/migration.tssrc/lib/domain/__tests__/migration.test.ts
**/__tests__/**/*.{ts,tsx}
📄 CodeRabbit inference engine (AGENTS.md)
Co-locate unit tests in
__tests__/directories next to the module being tested. Domain functions use pure unit tests (Vitest, no jsdom). Zustand stores use store action tests (Vitest + jsdom). React components use component tests (Vitest + React Testing Library + jsdom).
Files:
src/lib/domain/__tests__/matchesSearch.test.tssrc/lib/domain/__tests__/migration.test.ts
{components,pages}/**/*.{ts,tsx}
📄 CodeRabbit inference engine (AGENTS.md)
State management lives in Zustand stores under
src/stores/. React components must never call storage or sheet services directly—they must go through command handlers insrc/lib/application/commands/.
Files:
pages/ProfilePage.tsxcomponents/History.tsxcomponents/history/useFilteredTransactions.ts
{components,pages,layouts}/**/*.tsx
📄 CodeRabbit inference engine (AGENTS.md)
Use Tailwind CSS for styling with a utility-first approach.
Files:
pages/ProfilePage.tsxcomponents/History.tsxlayouts/MainLayout.tsx
{components,pages}/**/*.tsx
📄 CodeRabbit inference engine (AGENTS.md)
React components should read goals, subscriptions, and chatSessions from
useFinanceStoreand call domain commands likesaveGoal,deleteGoal,addSubscription,deleteSubscription,saveChatSession, anddeleteChatSessioninstead of using DataContext handlers.React components should read pots, pockets, and accounts from
useFinanceStoreand call domain commands likesavePot,deletePot,saveSavingPocket,deleteSavingPocket,saveAccount, anddeleteAccountinstead of using DataContext handlers.
Files:
pages/ProfilePage.tsxcomponents/History.tsx
🧠 Learnings (1)
📓 Common learnings
Learnt from: CR
Repo: notedwin-dev/finance-tracker-app
Timestamp: 2026-06-05T18:25:25.897Z
Learning: Create Git branches with prefixes: `feature/*` for new features, `refactor/*` for major code refactoring or UI revamp, `bugfix/*` for bug fixes. Use kebab-case for branch names.
Learnt from: CR
Repo: notedwin-dev/finance-tracker-app
Timestamp: 2026-06-05T18:25:25.897Z
Learning: Push feature/refactor/bugfix branches to `staging` for review before merging into `main`. `main` auto-deploys to Vercel.
Learnt from: CR
Repo: notedwin-dev/finance-tracker-app
Timestamp: 2026-06-05T18:25:25.897Z
Learning: Document significant architectural decisions in Architecture Decision Records (ADRs) in `docs/adrs/` using the template: Context → Decision → Consequences → Status. Number sequentially and use kebab-case filenames.
Learnt from: CR
Repo: notedwin-dev/finance-tracker-app
Timestamp: 2026-06-05T18:25:25.897Z
Learning: Environment variables must be prefixed with `VITE_` for frontend use: `VITE_BACKEND_API_URL` (backend URL, empty = Vite proxy), `VITE_GEMINI_API_KEY` (Gemini API key), `VITE_GOOGLE_API_KEY` (Google API key).
🔇 Additional comments (25)
src/lib/application/commands/balance.ts (1)
73-77: LGTM!src/lib/application/commands/chat-sessions.ts (1)
17-17: LGTM!Also applies to: 30-30
src/lib/application/commands/migration.ts (1)
18-18: LGTM!src/lib/application/commands/pockets.ts (1)
24-24: LGTM!Also applies to: 40-45
src/lib/application/commands/pots.ts (1)
26-26: LGTM!Also applies to: 39-39
src/lib/application/commands/subscriptions.ts (1)
22-22: LGTM!Also applies to: 35-35
src/lib/application/commands/sync.ts (1)
547-547: LGTM!src/lib/domain/__tests__/migration.test.ts (2)
301-308: Test description still contradicts assertion.The test title says "returns true" but the assertion expects
false. This was flagged in a previous review and remains unfixed.📝 Proposed fix
- it("returns true when v1 user has plain empty array for biometricCredIds (treated as absent)", () => { + it("returns false when v1 user has plain empty array for biometricCredIds (treated as absent)", () => {
177-188: LGTM!Also applies to: 196-196, 212-212, 218-218
components/History.tsx (1)
158-172: LGTM!components/history/useFilteredTransactions.ts (1)
9-12: LGTM!helpers/useAppInit.tsx (1)
40-54: LGTM!pages/ProfilePage.tsx (1)
42-58: LGTM!src/lib/domain/__tests__/matchesSearch.test.ts (1)
1-5: LGTM!Also applies to: 92-99
docs/issues/003-privacy-store.md (1)
24-24: Use a non-brittle verification gate instead of fixed test counts.The hardcoded test count is likely stale; prefer wording like “All tests pass” to keep this checklist durable.
docs/issues/004-commands-extraction.md (1)
29-29: Avoid pinning verification to a fixed test count.Use a stable criterion (e.g., “All tests pass”) so this issue doc does not go stale.
AGENTS.md (1)
79-79: LGTM!Also applies to: 97-97
docs/adrs/001-layered-architecture-refactor.md (1)
113-113: LGTM!src/lib/domain/migration.ts (1)
58-58: LGTM!Also applies to: 63-63
src/lib/domain/search.ts (1)
1-31: LGTM!docs/issues/005-cleanup.md (1)
16-19: LGTM!Also applies to: 26-26
docs/issues/review-pr2.md (1)
3-3: LGTM!.opencode/prompts/page-migrator.txt (1)
3-3: LGTM!Also applies to: 6-6, 8-11
.opencode/prompts/state-migrator.txt (1)
1-3: LGTM!Also applies to: 6-11
opencode.json (1)
4-4: LGTM!
Owner
Author
|
@coderabbitai what is not fixed yet? List the issues and prompt |
|
Tip For best results, initiate chat on the files or code changes. 🧩 Analysis chain🏁 Script executed: #!/bin/bash
set -euo pipefail
REPO="notedwin-dev/finance-tracker-app"
PR=10
echo "=== PR basic info ==="
gh pr view "$PR" --repo "$REPO" --json number,title,state,mergeable,reviewDecision,url,comments,reviews,files --jq '{
number,title,state,mergeable,reviewDecision,url,
commentsCount:(.comments|length),
reviewsCount:(.reviews|length),
filesCount:(.files|length)
}'
echo
echo "=== Review comments by coderabbitai / CodeRabbit-like bots ==="
gh api "repos/$REPO/pulls/$PR/comments?per_page=100" --paginate \
--jq '.[] | select((.user.login|ascii_downcase) | test("coderabbit")) | {
id,
user:.user.login,
path,
line,
original_line,
position,
in_reply_to_id,
outdated,
url:.html_url,
body
}' || true
echo
echo "=== Top-level issue comments by coderabbitai / CodeRabbit-like bots ==="
gh api "repos/$REPO/issues/$PR/comments?per_page=100" --paginate \
--jq '.[] | select((.user.login|ascii_downcase) | test("coderabbit")) | {
id,
user:.user.login,
created_at,
updated_at,
url:.html_url,
body
}' || true
echo
echo "=== GraphQL review threads (resolved/unresolved, comments) ==="
gh api graphql -f owner=notedwin-dev -f name=finance-tracker-app -F number="$PR" -f query='
query($owner:String!, $name:String!, $number:Int!) {
repository(owner:$owner, name:$name) {
pullRequest(number:$number) {
reviewThreads(first:100) {
nodes {
id
isResolved
isOutdated
path
line
originalLine
comments(first:20) {
nodes {
id
author { login }
body
url
createdAt
}
}
}
}
}
}
}' --jq '.data.repository.pullRequest.reviewThreads.nodes[] | select([.comments.nodes[].author.login | ascii_downcase | test("coderabbit")] | any) | {
threadId:.id,
isResolved,
isOutdated,
path,
line,
originalLine,
comments:[.comments.nodes[] | {author:.author.login, url, createdAt, body}]
}' || trueLength of output: 276179 🏁 Script executed: #!/bin/bash
set -euo pipefail
REPO="notedwin-dev/finance-tracker-app"
PR=10
echo "=== PR basic info ==="
gh pr view "$PR" --repo "$REPO" --json number,title,state,mergeable,reviewDecision,url,comments,reviews,files --jq '{
number,title,state,mergeable,reviewDecision,url,
commentsCount:(.comments|length),
reviewsCount:(.reviews|length),
filesCount:(.files|length)
}'
echo
echo "=== Review comments by coderabbitai / CodeRabbit-like bots ==="
gh api "repos/$REPO/pulls/$PR/comments?per_page=100" --paginate \
--jq '.[] | select((.user.login|ascii_downcase) | test("coderabbit")) | {
id,
user:.user.login,
path,
line,
original_line,
position,
in_reply_to_id,
outdated,
url:.html_url,
body
}' || true
echo
echo "=== Top-level issue comments by coderabbitai / CodeRabbit-like bots ==="
gh api "repos/$REPO/issues/$PR/comments?per_page=100" --paginate \
--jq '.[] | select((.user.login|ascii_downcase) | test("coderabbit")) | {
id,
user:.user.login,
created_at,
updated_at,
url:.html_url,
body
}' || true
echo
echo "=== GraphQL review threads (resolved/unresolved, comments) ==="
gh api graphql -f owner=notedwin-dev -f name=finance-tracker-app -F number="$PR" -f query='
query($owner:String!, $name:String!, $number:Int!) {
repository(owner:$owner, name:$name) {
pullRequest(number:$number) {
reviewThreads(first:100) {
nodes {
id
isResolved
isOutdated
path
line
originalLine
comments(first:20) {
nodes {
id
author { login }
body
url
createdAt
}
}
}
}
}
}
}' --jq '.data.repository.pullRequest.reviewThreads.nodes[] | select([.comments.nodes[].author.login | ascii_downcase | test("coderabbit")] | any) | {
threadId:.id,
isResolved,
isOutdated,
path,
line,
originalLine,
comments:[.comments.nodes[] | {author:.author.login, url, createdAt, body}]
}' || trueLength of output: 289231
High priority / should fix before merge
Medium / architecture and correctness cleanup
Docs / markdown cleanup
Copy-paste fix prompt |
Addresses remaining CodeRabbit comments on the staging→main PR.
Persistence order + field naming:
- accounts.ts: build opening + adjustment txs in a single newTxs[]
array, persist via saveTransactions BEFORE saveAccounts, update
stores only after both persists succeed
- transactions.ts: sharedFields corrected to 'note' (was 'notes')
Domain correctness:
- balance.engine.ts: computeBudgetConsumption and computeSavingsMovement
now return empty maps for t.isHistorical, matching the existing
computeAccountTransactionAmount pattern
- balance.engine.ts: replaces implicit date coercion with explicit
parseDateSafe + normalizeDate from new src/lib/domain/dates.ts
Input sanitization:
- AccountForm.tsx: sanitizeNote hardened to match digit/separator
runs and redact only when 13-19 digits remain after stripping
non-digits; CVV/CVC redaction preserved
Subagent permissions:
- opencode.json: 3 subagent 'bash' settings changed from 'allow' to
'deny' for state-migrator, commands-splitter, page-migrator
Test hygiene:
- sync.test.ts: static import of resetAndSync, vi.unstubAllGlobals()
in afterEach
- migration.test.ts: fix mismatched 'returns true' description
(assertion expects false) for empty biometricCredIds case
- crypto.test.ts: moved to services/__tests__/ to co-locate with
crypto.services.ts; vite.config.ts include extended to pick up
services/**/*.test.{ts,tsx}
Docs:
- adrs/001 + adrs/002: reordered to Context → Decision → Consequences
→ Status (Status moved to end)
- PLAN.md: fence blocks tagged with language hints; vault commands
replaced with mask-mode guidance (Phase 4 row + Commit 14)
Misc:
- GoogleDrivePicker.tsx: maskFileId extracted to module scope
(was duplicated in 2 components)
- transactions.ts: removed 8 inline section comments
- migration.ts: removed redundant temp-migration note (already in
CONTEXT.md line 60)
- MainLayout.tsx: desktop Mask Mode toggle now has type='button'
(mobile already did)
Skipped findings:
- sync.ts loadData: _forceUnlock already uses underscore prefix
(intentionally unused, preserved for AccountPage caller)
Validated: npx tsc --noEmit clean, npm test 14 files / 153 tests pass
Fixed 3 file(s) based on 3 unresolved review comments. Co-authored-by: CodeRabbit <noreply@coderabbit.ai>
fix(cleanup): address PR #10 CodeRabbit review findings
There was a problem hiding this comment.
Caution
Some comments are outside the diff and can’t be posted inline due to platform limitations.
⚠️ Outside diff range comments (1)
src/lib/application/commands/accounts.ts (1)
90-92:⚠️ Potential issue | 🟠 Major | ⚡ Quick winBlock deletion when the account is referenced via
toAccountIdtoo.Line 90 only checks
t.accountId === accountId. Transfer rows also keep the destination account intoAccountId, so an account used only on that side can still be deleted and leave orphaned transactions.Suggested fix
- const referencing = existingTransactions.filter((t) => t.accountId === accountId); + const referencing = existingTransactions.filter( + (t) => t.accountId === accountId || t.toAccountId === accountId, + );🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the rest with a brief reason, keep changes minimal, and validate. In `@src/lib/application/commands/accounts.ts` around lines 90 - 92, The deletion guard only checks existingTransactions.filter(t => t.accountId === accountId) so it misses transactions that reference the account via toAccountId; update the check in the same function to filter for either t.accountId === accountId || t.toAccountId === accountId (or similar predicate) so referencing includes both sides, update the referencing variable name if needed, and keep the existing showToast message (or adjust wording) to reflect the combined count before preventing deletion.
♻️ Duplicate comments (4)
components/AccountForm.tsx (1)
42-44:⚠️ Potential issue | 🟡 Minor | ⚡ Quick winMatch whole digit runs before redacting.
This still redacts 13–19 digit substrings inside longer runs, so a 20-digit reference becomes
[redacted]0. Match the full digit/separator run first, then redact only when the normalized digit count is 13–19.Suggested fix
const sanitizeNote = (value: string) => value .replace(/\b(cvv|cvc)\s*:?\s*\d{3,4}\b/gi, "[redacted]") - .replace(/\d[ -]?(?:\d[ -]?){11,17}\d/g, (run) => { + .replace(/\d(?:[ -]?\d)+/g, (run) => { const digits = run.replace(/\D/g, ""); return digits.length >= 13 && digits.length <= 19 ? "[redacted]" : run; });🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the rest with a brief reason, keep changes minimal, and validate. In `@components/AccountForm.tsx` around lines 42 - 44, The current .replace callback in AccountForm.tsx is matching 13–19 digit substrings inside longer runs; update the pattern used in the .replace call so it matches the entire digit/separator run (the whole matched "run" passed into the callback) instead of substrings, then keep the existing logic in the callback that computes digits = run.replace(/\D/g, "") and only return "[redacted]" when digits.length is between 13 and 19, otherwise return the original run; locate the .replace invocation and the variables run and digits to implement this change.src/lib/application/commands/accounts.ts (1)
63-72:⚠️ Potential issue | 🟠 Major | ⚡ Quick winPersist the ledger entry before the account snapshot.
Line 65 still saves
updatedaccounts beforeupdatedTxs. If the transaction write fails or the process dies between those calls, the balance change lands without the compensatingACCOUNT_OPENING/ADJUSTMENTentry.🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the rest with a brief reason, keep changes minimal, and validate. In `@src/lib/application/commands/accounts.ts` around lines 63 - 72, The current sequence writes accounts (StorageService.saveAccounts(updated)) before transactions, risking an account balance change without its ledger entry; change the order to first persist the composed transaction list (await StorageService.saveTransactions(updatedTxs)), then persist the account snapshot (await StorageService.saveAccounts(updated)), and only after both succeed call store.setTransactions(updatedTxs) and store.setAccounts(updated); if saveTransactions fails, ensure you still restore the original accounts (await StorageService.saveAccounts(existingAccounts)) and rethrow the error (as the current catch already does), using the same symbols updatedTxs, updated, existingAccounts, StorageService.saveTransactions, StorageService.saveAccounts, store.setTransactions, and store.setAccounts to locate the changes.docs/adrs/002-drop-vault-data-minimization.md (1)
16-54:⚠️ Potential issue | 🟡 Minor | ⚡ Quick winKeep the ADR’s top-level headings to the required template.
Considered OptionsandReferencesstill break the mandatedContext → Decision → Consequences → Statusorder. Fold them into subsections underContext/Consequencesso the ADR stays parseable and consistent.Based on learnings, significant architectural decisions in
docs/adrs/should use the templateContext → Decision → Consequences → Status.🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the rest with a brief reason, keep changes minimal, and validate. In `@docs/adrs/002-drop-vault-data-minimization.md` around lines 16 - 54, Move the ADR headings to match the required template by folding the "Considered Options" and "References" sections into the appropriate top-level template sections: merge the "Considered Options" content under the "Context" section (as a "Considered Options" subsection) and move the "References" list under "Consequences" (as a "References" subsection), ensure the file now follows the exact top-level order "Context → Decision → Consequences → Status", and keep the subsection titles "Considered Options" and "References" intact for clarity.src/lib/application/commands/transactions.ts (1)
536-545:⚠️ Potential issue | 🟠 Major | ⚡ Quick winPartner-leg updates still skip shared-field-only transfer edits.
Line 536’s condition still excludes cases where only shared transfer fields change, so linked legs can remain out-of-sync even though Line 561 now maps
note.Suggested fix
ids.forEach((id) => { const originalTx = txMap.get(id); if (!originalTx) return; const thisUpdates: any = { ...cleanUpdates }; + const sharedTransferFieldChanged = + cleanUpdates.amount !== undefined || + cleanUpdates.currency !== undefined || + cleanUpdates.date !== undefined || + cleanUpdates.fee !== undefined || + cleanUpdates.feeType !== undefined || + cleanUpdates.note !== undefined || + cleanUpdates.shopName !== undefined; @@ if ( originalTx.linkedTransactionId && (nullifiedFields.includes("potId") || nullifiedFields.includes("savingPocketId") || nullifiedFields.includes("toSavingPocketId") || cleanUpdates.accountId !== undefined || cleanUpdates.toAccountId !== undefined || cleanUpdates.savingPocketId !== undefined || - cleanUpdates.toSavingPocketId !== undefined) + cleanUpdates.toSavingPocketId !== undefined || + sharedTransferFieldChanged) ) {Also applies to: 561-565
🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the rest with a brief reason, keep changes minimal, and validate. In `@src/lib/application/commands/transactions.ts` around lines 536 - 545, The current guard around originalTx.linkedTransactionId skips partner-leg updates when only shared transfer fields changed; update the condition in transactions.ts so it also checks for changes to shared transfer fields (e.g., note and any other shared transfer fields your domain uses) by adding a sharedTransferFields array and testing if any of those fields appear in nullifiedFields or in Object.keys(cleanUpdates) — if any are present, do not short-circuit the linked-leg update (this ensures the mapping at where note is handled around the existing note mapping code still propagates).
🤖 Prompt for all review comments with AI agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
Outside diff comments:
In `@src/lib/application/commands/accounts.ts`:
- Around line 90-92: The deletion guard only checks
existingTransactions.filter(t => t.accountId === accountId) so it misses
transactions that reference the account via toAccountId; update the check in the
same function to filter for either t.accountId === accountId || t.toAccountId
=== accountId (or similar predicate) so referencing includes both sides, update
the referencing variable name if needed, and keep the existing showToast message
(or adjust wording) to reflect the combined count before preventing deletion.
---
Duplicate comments:
In `@components/AccountForm.tsx`:
- Around line 42-44: The current .replace callback in AccountForm.tsx is
matching 13–19 digit substrings inside longer runs; update the pattern used in
the .replace call so it matches the entire digit/separator run (the whole
matched "run" passed into the callback) instead of substrings, then keep the
existing logic in the callback that computes digits = run.replace(/\D/g, "") and
only return "[redacted]" when digits.length is between 13 and 19, otherwise
return the original run; locate the .replace invocation and the variables run
and digits to implement this change.
In `@docs/adrs/002-drop-vault-data-minimization.md`:
- Around line 16-54: Move the ADR headings to match the required template by
folding the "Considered Options" and "References" sections into the appropriate
top-level template sections: merge the "Considered Options" content under the
"Context" section (as a "Considered Options" subsection) and move the
"References" list under "Consequences" (as a "References" subsection), ensure
the file now follows the exact top-level order "Context → Decision →
Consequences → Status", and keep the subsection titles "Considered Options" and
"References" intact for clarity.
In `@src/lib/application/commands/accounts.ts`:
- Around line 63-72: The current sequence writes accounts
(StorageService.saveAccounts(updated)) before transactions, risking an account
balance change without its ledger entry; change the order to first persist the
composed transaction list (await StorageService.saveTransactions(updatedTxs)),
then persist the account snapshot (await StorageService.saveAccounts(updated)),
and only after both succeed call store.setTransactions(updatedTxs) and
store.setAccounts(updated); if saveTransactions fails, ensure you still restore
the original accounts (await StorageService.saveAccounts(existingAccounts)) and
rethrow the error (as the current catch already does), using the same symbols
updatedTxs, updated, existingAccounts, StorageService.saveTransactions,
StorageService.saveAccounts, store.setTransactions, and store.setAccounts to
locate the changes.
In `@src/lib/application/commands/transactions.ts`:
- Around line 536-545: The current guard around originalTx.linkedTransactionId
skips partner-leg updates when only shared transfer fields changed; update the
condition in transactions.ts so it also checks for changes to shared transfer
fields (e.g., note and any other shared transfer fields your domain uses) by
adding a sharedTransferFields array and testing if any of those fields appear in
nullifiedFields or in Object.keys(cleanUpdates) — if any are present, do not
short-circuit the linked-leg update (this ensures the mapping at where note is
handled around the existing note mapping code still propagates).
ℹ️ Review info
⚙️ Run configuration
Configuration used: Organization UI
Review profile: ASSERTIVE
Plan: Pro Plus
Run ID: db816171-9e2e-4ac8-bc80-cd7e915a1c9a
📒 Files selected for processing (16)
components/AccountForm.tsxcomponents/GoogleDrivePicker.tsxdocs/PLAN.mddocs/adrs/001-layered-architecture-refactor.mddocs/adrs/002-drop-vault-data-minimization.mdlayouts/MainLayout.tsxopencode.jsonservices/__tests__/crypto.test.tssrc/lib/application/commands/__tests__/sync.test.tssrc/lib/application/commands/accounts.tssrc/lib/application/commands/migration.tssrc/lib/application/commands/transactions.tssrc/lib/domain/__tests__/migration.test.tssrc/lib/domain/balance.engine.tssrc/lib/domain/dates.tsvite.config.ts
💤 Files with no reviewable changes (1)
- src/lib/application/commands/migration.ts
📜 Review details
🧰 Additional context used
📓 Path-based instructions (7)
src/lib/domain/**/*.{ts,tsx}
📄 CodeRabbit inference engine (AGENTS.md)
Domain layer functions must be pure — no React, no side effects, no imports from
services/orstores/. All dependencies must be explicit parameters.Use
TransactionTypeenum from types for type discrimination in domain layer functions
Files:
src/lib/domain/dates.tssrc/lib/domain/__tests__/migration.test.tssrc/lib/domain/balance.engine.ts
**/*.{ts,tsx,js,jsx}
📄 CodeRabbit inference engine (AGENTS.md)
Avoid comments — prefer self-documenting code
Files:
src/lib/domain/dates.tscomponents/GoogleDrivePicker.tsxsrc/lib/domain/__tests__/migration.test.tsservices/__tests__/crypto.test.tssrc/lib/application/commands/__tests__/sync.test.tssrc/lib/application/commands/accounts.tsvite.config.tslayouts/MainLayout.tsxsrc/lib/domain/balance.engine.tscomponents/AccountForm.tsxsrc/lib/application/commands/transactions.ts
**/*.{ts,tsx}
📄 CodeRabbit inference engine (AGENTS.md)
State lives in Zustand stores under
src/stores/— React components and domain functions must not manage local state that duplicates store state
Files:
src/lib/domain/dates.tscomponents/GoogleDrivePicker.tsxsrc/lib/domain/__tests__/migration.test.tsservices/__tests__/crypto.test.tssrc/lib/application/commands/__tests__/sync.test.tssrc/lib/application/commands/accounts.tsvite.config.tslayouts/MainLayout.tsxsrc/lib/domain/balance.engine.tscomponents/AccountForm.tsxsrc/lib/application/commands/transactions.ts
src/lib/**/*.{ts,tsx}
📄 CodeRabbit inference engine (AGENTS.md)
Use
convertAmount()function fromsrc/lib/domain/currency.tsfor MYR/USD currency conversionUse
computeAccountTransactionAmount()function fromsrc/lib/domain/balance.engine.tsto calculate account balance impact per transactionUse
computeBudgetConsumption()function fromsrc/lib/domain/balance.engine.tsto calculate budget consumed/replenished per transactionUse
computeSavingsMovement()function fromsrc/lib/domain/balance.engine.tsto calculate savings added/withdrawn per transactionUse
matchesSearch()function fromsrc/lib/domain/search.tsfor transaction text matching operations
Files:
src/lib/domain/dates.tssrc/lib/domain/__tests__/migration.test.tssrc/lib/application/commands/__tests__/sync.test.tssrc/lib/application/commands/accounts.tssrc/lib/domain/balance.engine.tssrc/lib/application/commands/transactions.ts
docs/adrs/*.md
📄 CodeRabbit inference engine (AGENTS.md)
Name ADR files sequentially as
NNN-title-kebab-case.mdindocs/adrs/directory
Files:
docs/adrs/002-drop-vault-data-minimization.mddocs/adrs/001-layered-architecture-refactor.md
components/**/*.{ts,tsx}
📄 CodeRabbit inference engine (AGENTS.md)
Use Tailwind CSS utility-first styling for all UI components
React components must never call storage or sheet services directly — they must use command handlers in
src/lib/application/commands/
Files:
components/GoogleDrivePicker.tsxcomponents/AccountForm.tsx
src/lib/domain/__tests__/**/*.{ts,tsx}
📄 CodeRabbit inference engine (AGENTS.md)
Co-locate unit tests for domain functions in
__tests__/subdirectories withinsrc/lib/domain/Write domain functions as pure unit tests using Vitest without jsdom
Files:
src/lib/domain/__tests__/migration.test.ts
🧠 Learnings (1)
📓 Common learnings
Learnt from: CR
Repo: notedwin-dev/finance-tracker-app
Timestamp: 2026-06-05T19:32:15.434Z
Learning: Create feature branches with prefix `feature/*` for new features (e.g., `feature/export-csv`)
Learnt from: CR
Repo: notedwin-dev/finance-tracker-app
Timestamp: 2026-06-05T19:32:15.434Z
Learning: Create refactor branches with prefix `refactor/*` for major code refactoring or UI revamp (e.g., `refactor/layered-architecture`)
Learnt from: CR
Repo: notedwin-dev/finance-tracker-app
Timestamp: 2026-06-05T19:32:15.434Z
Learning: Create bugfix branches with prefix `bugfix/*` for bug fixes (e.g., `bugfix/search-overlay-crash`)
Learnt from: CR
Repo: notedwin-dev/finance-tracker-app
Timestamp: 2026-06-05T19:32:15.434Z
Learning: Follow the PR workflow: create feature/bugfix/refactor branches from `main`, develop on the branch, push and open PR to `staging`, review on `staging`, then merge `staging` into `main` for auto-deployment to Vercel
Learnt from: CR
Repo: notedwin-dev/finance-tracker-app
Timestamp: 2026-06-05T19:32:15.434Z
Learning: Document significant architectural decisions in Architecture Decision Records (ADRs) located in `docs/adrs/` using the template: Context → Decision → Consequences → Status
Learnt from: CR
Repo: notedwin-dev/finance-tracker-app
Timestamp: 2026-06-05T19:32:15.434Z
Learning: Run all tests with `npm run test`, watch mode with `npm run test:watch`
Learnt from: CR
Repo: notedwin-dev/finance-tracker-app
Timestamp: 2026-06-05T19:32:15.434Z
Learning: Read the latest ADR in `docs/adrs/` before making architectural changes to understand current decisions and constraints
🔇 Additional comments (7)
docs/PLAN.md (1)
7-7: LGTM!Also applies to: 36-36, 53-53, 82-82, 90-90, 102-102, 134-134, 147-147, 149-150, 162-162
docs/adrs/001-layered-architecture-refactor.md (1)
268-272: LGTM!services/__tests__/crypto.test.ts (1)
7-7: LGTM!src/lib/application/commands/__tests__/sync.test.ts (1)
5-5: LGTM!Also applies to: 97-97
src/lib/domain/balance.engine.ts (1)
2-2: LGTM!Also applies to: 12-12, 45-45
src/lib/domain/dates.ts (1)
1-26: LGTM!vite.config.ts (1)
68-68: LGTM!
Deletion guard + sanitization:
- accounts.ts deleteAccount: guard now also matches t.toAccountId ===
accountId so transfers to the account block deletion too
- AccountForm.tsx sanitizeNote: pattern changed from a 14-20 char
window (\d[ -]?(?:\d[ -]?){12,18}\d) to /[\d -]+/g so the entire
digit/separator run is matched, not just a substring of a longer
run; the callback's digits.length 13-19 check then decides
redaction
Persistence failure recovery:
- accounts.ts saveAccount: persist wrapped in try/catch; if
saveTransactions fails, restore existingAccounts and rethrow so
the in-memory state matches the failed persist
Partner-leg propagation:
- transactions.ts: hoist sharedTransferFields to function scope and
extend the partner-leg guard to also fire when any shared field
appears in nullifiedFields or Object.keys(cleanUpdates); ensures
note/shopName/etc. edits on a transfer propagate to the linked leg
ADR structure:
- 002-drop-vault-data-minimization.md: Considered Options moved
under Context (### subsection), Migration shape and References
moved under Consequences (### subsections); top-level order is
now Context → Decision → Consequences → Status with Status at end
Validated: npx tsc --noEmit clean, npm test 14 files / 153 tests pass
fix(cleanup): address round 2 of CodeRabbit review findings
There was a problem hiding this comment.
Actionable comments posted: 1
♻️ Duplicate comments (1)
src/lib/application/commands/accounts.ts (1)
65-70:⚠️ Potential issue | 🟠 Major | ⚡ Quick winRollback is incomplete on partial failure and can still desync ledger/account state.
If Line 66 succeeds and Line 67 fails, Line 69 restores only accounts; newly persisted transactions are left behind. This still allows divergence under partial failure.
Suggested patch
if (newTxs.length > 0) { const updatedTxs = [...newTxs, ...existingTransactions]; try { await StorageService.saveTransactions(updatedTxs); await StorageService.saveAccounts(updated); } catch (err) { - await StorageService.saveAccounts(existingAccounts); + await Promise.allSettled([ + StorageService.saveTransactions(existingTransactions), + StorageService.saveAccounts(existingAccounts), + ]); throw err; } store.setTransactions(updatedTxs); store.setAccounts(updated);🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the rest with a brief reason, keep changes minimal, and validate. In `@src/lib/application/commands/accounts.ts` around lines 65 - 70, The current try/catch around StorageService.saveTransactions(updatedTxs) and StorageService.saveAccounts(updated) only restores accounts on error, leaving newly saved transactions if saveAccounts fails; update the error path to fully rollback transactions as well so ledger/account state cannot desync. Specifically, inside the catch for the block containing saveTransactions and saveAccounts, after calling StorageService.saveAccounts(existingAccounts) also remove or restore transaction state to its previous value (e.g., call StorageService.deleteTransactions(updatedTxs) or StorageService.saveTransactions(existingTransactions) depending on available APIs), or preferably use an atomic/storage transaction API if StorageService supports it; ensure this change references saveTransactions, saveAccounts, updatedTxs and existingAccounts so both sides are consistently rolled back on failure.
🤖 Prompt for all review comments with AI agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
Inline comments:
In `@docs/adrs/002-drop-vault-data-minimization.md`:
- Around line 36-42: The markdown headings "Migration shape" and "References" in
docs/adrs/002-drop-vault-data-minimization.md need a blank line after each to
satisfy MD022; edit that file to insert a single empty line immediately after
those two headings so the following paragraph/blockquote list is separated,
leaving the rest of content (including mentions of migrateSchemaV1toV2,
ProfilePage.handleExportData, and src/lib/application/commands/privacy.ts)
unchanged.
---
Duplicate comments:
In `@src/lib/application/commands/accounts.ts`:
- Around line 65-70: The current try/catch around
StorageService.saveTransactions(updatedTxs) and
StorageService.saveAccounts(updated) only restores accounts on error, leaving
newly saved transactions if saveAccounts fails; update the error path to fully
rollback transactions as well so ledger/account state cannot desync.
Specifically, inside the catch for the block containing saveTransactions and
saveAccounts, after calling StorageService.saveAccounts(existingAccounts) also
remove or restore transaction state to its previous value (e.g., call
StorageService.deleteTransactions(updatedTxs) or
StorageService.saveTransactions(existingTransactions) depending on available
APIs), or preferably use an atomic/storage transaction API if StorageService
supports it; ensure this change references saveTransactions, saveAccounts,
updatedTxs and existingAccounts so both sides are consistently rolled back on
failure.
🪄 Autofix (Beta)
Fix all unresolved CodeRabbit comments on this PR:
- Push a commit to this branch (recommended)
- Create a new PR with the fixes
ℹ️ Review info
⚙️ Run configuration
Configuration used: Organization UI
Review profile: ASSERTIVE
Plan: Pro Plus
Run ID: 3673fc75-e6f0-446e-85be-a2da61b8b1bc
📒 Files selected for processing (4)
components/AccountForm.tsxdocs/adrs/002-drop-vault-data-minimization.mdsrc/lib/application/commands/accounts.tssrc/lib/application/commands/transactions.ts
📜 Review details
🧰 Additional context used
📓 Path-based instructions (5)
docs/adrs/*.md
📄 CodeRabbit inference engine (AGENTS.md)
Create Architecture Decision Records (ADRs) in docs/adrs/ with sequential numbering (NNN-title-kebab-case.md) following the template: Context → Decision → Consequences → Status
Files:
docs/adrs/002-drop-vault-data-minimization.md
**/*.{ts,tsx}
📄 CodeRabbit inference engine (AGENTS.md)
Use Tailwind CSS utility-first styling throughout the application
Avoid comments in code; prefer self-documenting code with clear naming
Files:
src/lib/application/commands/accounts.tscomponents/AccountForm.tsxsrc/lib/application/commands/transactions.ts
src/lib/{domain,application}/**/*.{ts,tsx}
📄 CodeRabbit inference engine (AGENTS.md)
Use TransactionType enum from types for type discrimination in domain functions
Files:
src/lib/application/commands/accounts.tssrc/lib/application/commands/transactions.ts
src/lib/application/commands/**/*.{ts,tsx}
📄 CodeRabbit inference engine (AGENTS.md)
Command handlers in src/lib/application/commands/ must orchestrate domain logic and state management operations
Files:
src/lib/application/commands/accounts.tssrc/lib/application/commands/transactions.ts
{components,pages,layouts}/**/*.{ts,tsx}
📄 CodeRabbit inference engine (AGENTS.md)
React component files must not call storage or sheet services directly; all external operations must go through command handlers in src/lib/application/commands/
Files:
components/AccountForm.tsx
🧠 Learnings (1)
📓 Common learnings
Learnt from: CR
Repo: notedwin-dev/finance-tracker-app
Timestamp: 2026-06-05T20:32:28.594Z
Learning: Use feature/*, refactor/*, bugfix/*, staging, and main git branch prefixes according to ZenFinance conventions
Learnt from: CR
Repo: notedwin-dev/finance-tracker-app
Timestamp: 2026-06-05T20:32:28.594Z
Learning: Run tests with npm run test for single run or npm run test:watch for watch mode; test files are co-located in __tests__/ directories
Learnt from: CR
Repo: notedwin-dev/finance-tracker-app
Timestamp: 2026-06-05T20:32:28.594Z
Learning: Significant architectural decisions must be documented in ADRs before implementation; read the latest ADR before making architectural changes
Learnt from: CR
Repo: notedwin-dev/finance-tracker-app
Timestamp: 2026-06-05T20:32:28.594Z
Learning: Use domain layer functions for currency conversion, balance computation, budget tracking, savings movement, and transaction matching as defined in the Key Domain Functions table
🪛 markdownlint-cli2 (0.22.1)
docs/adrs/002-drop-vault-data-minimization.md
[warning] 36-36: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 41-41: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
🔇 Additional comments (2)
components/AccountForm.tsx (1)
39-45: LGTM!src/lib/application/commands/transactions.ts (1)
521-548: LGTM!Also applies to: 565-569
MD022 (headings should be surrounded by blank lines): - docs/adrs/002-drop-vault-data-minimization.md: insert blank line after ### Migration shape and ### References so the following list items are separated from the heading Persistence rollback symmetry: - accounts.ts saveAccount: catch now restores both existingTransactions and existingAccounts on failure, so if saveAccounts fails after saveTransactions has already persisted the new ledger entries, the new txs are also reverted to existingTransactions. Prevents partial state where a tx exists without a corresponding account balance update. Validated: npx tsc --noEmit clean, npm test 14 files / 153 tests pass
fix(cleanup): round 3 CodeRabbit review findings
Owner
Author
|
@coderabbitai do final full code review |
|
✅ Action performedFull review finished. |
There was a problem hiding this comment.
Actionable comments posted: 27
♻️ Duplicate comments (1)
PLAN.md (1)
145-157:⚠️ Potential issue | 🟡 Minor | ⚡ Quick winReplace stale vault/privacy references with mask-store equivalents.
Lines 145 and 157 still reference
usePrivacyStore,setVaultUnlocked(),isVaultEnabled, andisVaultUnlocked, which conflict with the vault removal (ADR-002) in this PR. Replace these with the currentuseMaskStoreAPIs to prevent confusion and backsliding.🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the rest with a brief reason, keep changes minimal, and validate. In `@PLAN.md` around lines 145 - 157, Replace all lingering usePrivacyStore references and vault method names with the mask-store equivalents: change calls like usePrivacyStore.getState().setVaultUnlocked() inside setSecurityUnlockedWithRef to the corresponding useMaskStore API (e.g., useMaskStore.getState().setMaskUnlocked() or the project’s exact setter), and update reads of isVaultEnabled/isVaultUnlocked in pages (DashboardPage/AssetsPage/AccountPage) to use useMaskStore’s boolean selectors (e.g., useMaskStore().isMaskEnabled / useMaskStore().isMaskUnlocked or the store’s exact property names). Ensure all imports of usePrivacyStore are replaced with useMaskStore and method/property names are updated consistently.
🤖 Prompt for all review comments with AI agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
Inline comments:
In `@AGENTS.md`:
- Around line 3-4: Add required blank lines around top-level headings and fenced
code blocks and include a language identifier for fenced blocks (for example
change ``` to ```text) to satisfy MD022/MD031/MD040; specifically, ensure there
is an empty line above and below "## Project Structure" and every fenced block,
update the fences to include a language token (e.g., text), and apply the same
fixes to the other affected heading/fence occurrences noted (around lines
referenced in the review) so all headings and code fences have proper
surrounding blank lines and a fenced language.
In `@App.tsx`:
- Around line 51-57: Remove the inline JSX comments like {/* Public Routes */}
and {/* Protected App Routes */} in App.tsx; instead make the grouping
self-descriptive by either extracting the sets of Route elements into named
components (e.g., PublicRoutes and ProtectedRoutes) or using clearly named JSX
wrappers/fragments so the Route entries (LandingPage, AuthPage, PrivacyPolicy,
TermsOfService, etc.) are organized without comments; ensure any other similar
inline comment nodes (including the one near Routes around the protected
section) are deleted and replaced with the descriptive structure.
In `@components/AccountForm.tsx`:
- Line 12: The onSave prop on the AccountForm component is typed as returning
void but is awaited where it's used; update the prop signature to return a
Promise (e.g., onSave: (account: Omit<Account, "userId">) => Promise<void>) and
adjust any related callers to return/propagate a Promise as needed so awaiting
the call is type-safe; look for the AccountForm props/interface and the function
using await onSave to ensure both sides match.
In `@components/Profile.tsx`:
- Around line 43-44: The "Recalculate Balances" action is rendered as an
always-clickable setting even though the prop onRecalculateBalances is optional;
update the Profile component to guard rendering and interaction by checking
onRecalculateBalances before enabling the control: either hide the control when
onRecalculateBalances is undefined or render it in a disabled state (and prevent
clicks) and optionally show a tooltip/message; ensure the click handler bound in
the Recalculate Balances setting uses the presence check (e.g., if
(!onRecalculateBalances) return) and the UI reflects disabled state so there is
no silent no-op when onRecalculateBalances is not provided.
In `@docs/adrs/001-layered-architecture-refactor.md`:
- Around line 120-128: The code block showing the command flow for
handleTransactionSubmit is missing a language identifier; update the opening
fence for that snippet to include a language tag (e.g., change ``` to ```text or
```typescript) so the example is properly labeled—locate the code block
containing handleTransactionSubmit and add the appropriate language identifier
to the opening ``` fence.
- Around line 32-56: The fenced code block containing the ASCII architecture
diagram is missing a language identifier, so update the Markdown fenced block
around the diagram (the triple-backtick block in the ADR content) to include the
language tag "text" (i.e., replace ``` with ```text) so linters and renderers
treat it as plain text; locate the diagram block in the ADR (the big box
starting with "┌─────────────────────────────────────────────┐") and add the tag
to the opening fence accordingly.
In `@docs/issues/001-rename-and-split-computeBalanceDeltas.md`:
- Around line 45-47: The migration plan is contradictory about
computeAccountTransactionAmount — it is introduced as the new API earlier but
also listed for deletion; fix by choosing one intent and making the doc
consistent: either keep computeAccountTransactionAmount as the new exported API
and remove the "Delete `computeAccountTransactionAmount`" bullet (and instead
describe how to deprecate old APIs like computeBalanceDeltas and
AccountTransactionMap), or if the intent is to remove it, change earlier lines
that introduce computeAccountTransactionAmount to instead introduce the three
split functions and update the call-site change notes for commands.ts and
DataProvider.tsx accordingly so computeAccountTransactionAmount and
AccountTransactionMap are no longer referenced. Ensure the doc references the
exact symbols computeAccountTransactionAmount, AccountTransactionMap,
computeBalanceDeltas, commands.ts, and DataProvider.tsx so readers can find and
apply the changes.
In `@docs/issues/003-privacy-store.md`:
- Around line 8-9: The document still references the old store API names:
replace occurrences of privacyMode and setPrivacyMode with the current mask
store names maskMode and setMaskMode, and update any mentions of
DataProvider-held state (maskAmount, maskText, privacyMode) to reflect that mask
state now lives in mask.store.ts (maskAmount, maskText, maskMode); ensure the
text and examples use maskMode/setMaskMode and reference mask.store.ts instead
of privacy.store.ts or DataProvider so the issue plan matches the current
contract.
In `@helpers/useAppInit.tsx`:
- Around line 29-33: The code currently allows syncData to run before
loadData(profile).then(runVaultSchemaMigration()) completes; prevent auto-sync
by keeping the "not synced" gate until both loadData and runVaultSchemaMigration
finish: call setHasSynced(false) before starting, chain
loadData(profile).then(() => runVaultSchemaMigration()) and only after that
promise resolves setHasSynced(true) (and propagate errors in the catch to keep
the gate closed); update the logic around the sync trigger (where syncData is
invoked) to check hasSynced so syncData only runs after the resolved chain
completes, referencing setHasSynced, loadData, runVaultSchemaMigration, and
syncData.
In `@layouts/MainLayout.tsx`:
- Line 226: Remove the inline JSX comment {/* Mask Mode Toggle */} in
MainLayout.tsx and replace its intent with a self-documenting element name or
attribute: either rename the surrounding component/element to a descriptive name
(e.g., MaskModeToggle or ToggleMaskMode) or add a clear aria-label/title on the
existing JSX element that currently sits where the comment is, so the UI intent
is conveyed without an inline comment.
In `@pages/AccountPage.tsx`:
- Line 12: AccountPage.tsx is directly calling SheetService.isClientReady() (and
nearby sheet readiness logic lines ~676-690); move this logic into an
application command instead and have the page call that command. Create or reuse
a command in src/lib/application/commands (e.g., a checkSheetClientReadyCommand
or add to an existing sheet-related command handler) that performs the
SheetService.isClientReady() call and returns the minimal page-level result
(ready flag / error). Replace direct calls to SheetService.isClientReady() in
AccountPage.tsx with an invocation of the new command, passing only page inputs
and using the command's result to drive UI state.
In `@pages/ProfilePage.tsx`:
- Around line 85-96: The page component calls SheetService.isClientReady()
inside handleRecalculateBalances which violates the rule that pages must not
call storage/sheet services directly; instead create (or update) an application
command e.g. recalculateBalancesCommand in src/lib/application/commands that
accepts accounts, pots, pockets, transactions, usdRate, profileId and resolves
isCloud by calling SheetService.isClientReady() inside the command (or have the
store provide the ready flag), then have ProfilePage.handleRecalculateBalances
call recalculateBalancesCommand (or dispatch the command) and pass the data but
not call SheetService.isClientReady() itself; update any references to
recalculateBalances to use the new command API and remove direct SheetService
usage from the page.
In `@services/__tests__/crypto.test.ts`:
- Around line 63-70: Remove the inline comments and make the test
self-documenting by replacing the commented steps with clear, intent-revealing
identifiers and/or small helper functions: e.g., use a named helper
decodeBase64ToBytes(parts[3]) to get hashBytes, call flipFirstByte(hashBytes) to
mutate, and encodeBytesToBase64(hashBytes) to produce tamperedHash (or rename
variables to decodeHashBytes and tamperedHashBytes and use a single-line
re-encode expression). Update the test to call these helpers or use expressive
variable names so the three operations (decode, flip byte, re-encode) are
explicit without comments; keep the same logic and variable references (parts,
hashBytes, tamperedHash).
In `@services/sheets.services.ts`:
- Around line 29-31: Remove the inline/doc comment and make the intent
self-descriptive by renaming the symbol and/or using a helper: replace the
comment + ambiguous identifier with a clearly named function like
maskFileIdForLogging (or maskedFileIdForLog) and move any masking logic into
that helper, then update all usages (including the other instances flagged) to
call maskFileIdForLogging so the code documents itself without comments.
- Around line 94-99: The init flow sets gapiInitializing = true but never resets
it on early returns or errors; update the initialization function so every
early-exit branch (e.g., the getApiKey() missing branch that calls logger.warn,
and any other returns or catches in the same init routine) sets gapiInitializing
= false before returning, or better wrap the whole init sequence in a
try/finally and set gapiInitializing = false in the finally block to guarantee
reset on success, error, or early return; apply this change to the getApiKey()
branch and the other init/error branches where gapiInitializing is currently
left true.
In `@src/lib/application/commands/__tests__/sync.test.ts`:
- Around line 104-135: The test contains inline narrative comments (e.g., before
localStorage setup, assertions checking preserved keys, and removed keys) that
should be removed and replaced with clearer test structure; update the test
around resetAndSync, useSyncStore.getState, and the localStorage assertions by
deleting the inline comments and instead rename the test or add nested
describe/it blocks (or clearer assertion grouping) so expectations about
"keep-list keys preserved" and "non-kept keys removed" are self-explanatory
without inline comments; ensure StorageService.KEYS.PROFILE, the resetAndSync
call, and the loginWithGoogle/ updateProfile mocks remain unchanged while
removing the comment lines at the positions flagged.
In `@src/lib/application/commands/balance.ts`:
- Around line 72-105: The date-filtered branch computes
updatedAccounts/updatedPots/updatedPockets but never persists or applies them;
update the logic so that after computing those arrays you call
StorageService.saveAccounts(updatedAccounts)/savePots/savePockets and call
store.setAccounts(updatedAccounts)/setPots/setPockets for the filtered run as
well (i.e., move or duplicate the save+set calls so they run when startDate or
endDate are present), then run the existing cloud updates under isCloudEnabled
as appropriate (or keep them limited to the no-date case if intended), and only
call showToast("Recalculation complete", "success") after persistence/store
updates complete; reference updatedAccounts/updatedPots/updatedPockets,
StorageService.saveAccounts/savePots/savePockets,
store.setAccounts/setPots/setPockets, isCloudEnabled, SheetService.updateMany,
and showToast.
In `@src/lib/application/commands/categories.ts`:
- Around line 24-25: The code currently calls store.setCategories(updated)
before awaiting StorageService.saveCategories(updated), which can leave
in-memory Zustand state inconsistent if the save fails; change the flow in the
functions using store.setCategories and the second occurrence (lines showing
store.setCategories / StorageService.saveCategories) to await
StorageService.saveCategories(updated) first, only call
store.setCategories(updated) after the save succeeds, and handle/save errors
(log and return or surface the error) so you do not mutate the store on
persistence failure.
In `@src/lib/application/commands/goals.ts`:
- Around line 23-25: Persist changes to durable storage before mutating
in-memory Zustand state: in the functions that call store.setGoals(updated)
(e.g., the create/update goal handlers where you call
StorageService.saveGoals(updated) and showToast(...)), swap the order so you
await StorageService.saveGoals(updated) first and only then call
store.setGoals(updated) and showToast(...); also handle save errors by catching
and showing an error toast (and do not call store.setGoals on failure) so the UI
remains consistent with durable storage.
In `@src/lib/application/commands/helpers.ts`:
- Around line 1-3: The current generateId function (and idCounter) uses
Date.now() + Math.random() which risks collisions and diverges from the project
standard; replace it with a UUID-based ID using crypto.randomUUID() (e.g.,
return `tx_${crypto.randomUUID()}`) and remove the idCounter variable, ensuring
generateId() uses the built-in crypto API to produce collision-resistant IDs
consistent with other code that uses UUIDs.
In `@src/lib/application/commands/pockets.ts`:
- Around line 37-47: When deleting a pocket, persist the transaction cleanup
before persisting the pocket to avoid dangling references: move the
updatedTransactions creation and call to
StorageService.saveTransactions(updatedTransactions) (and then
store.setTransactions(updatedTransactions)) to occur before calling
StorageService.savePockets(updatedPockets) and store.setPockets(updatedPockets).
Update the code around the existingTransactions mapping and the calls to
StorageService.saveTransactions, StorageService.savePockets,
store.setTransactions, and store.setPockets so transactions are saved first,
then pockets are saved, and in-memory store updates follow the same safe order.
In `@src/lib/application/commands/sync.ts`:
- Line 112: Remove the inline comment "// Module-level refs for sync debouncing
(replaces React useRef)" and rely on clear, self-documenting variable/function
names instead; locate that exact comment in the top of the module (the one
referencing module-level refs and React useRef) and delete it so the codebase
follows the guideline of preferring self-explanatory identifiers over inline
comments.
- Around line 144-278: processSubscriptions mixes orchestration with business
rules (date advancement/recurrence, transaction id creation, dedupe semantics,
and currency conversion); extract pure domain functions and replace inline logic
with calls: create a pure computeNextOccurrences(sub, today, maxIterations) that
returns { nextDateStr, generatedTxDates[], bailed } (used where parseDateSafe,
nextDateStr and the while loop are), a pure buildSubscriptionTransaction(sub,
date, userId) that builds the Transaction object (used where newTx is created
and id/shopName/date are set), a pure
convertTransactionAmountForAccount(transaction, account, usdRate, rateValid)
that returns numeric amount (used where accUpdates computes amount and handles
USD/MYR conversion and rateValid checks), and a pure
dedupeTransactions(existingTxs, candidateTxs) that returns the deduped list
(used where newTxs are filtered). Keep processSubscriptions only orchestrating:
call these domain functions, update accUpdates/updatedSubs/updatedAccounts, and
persist/showToast as before.
- Around line 226-232: When dedupedNewTxs is empty the code returns early and
never persists the advanced nextPaymentDate values held in updatedSubs; ensure
updatedSubs is applied even when dedupedNewTxs.length === 0 by invoking the same
persistence/update routine used for non-empty cases (i.e., call the function
that saves/applies subscription updates for updatedSubs) before returning, then
show the no-new-transactions toast via useSyncStore.getState().showToast as
currently done.
In `@src/lib/application/commands/transactions.ts`:
- Around line 145-153: The code currently mutates the in-memory store via
store.setTransactions / store.setAccounts / store.setPots / store.setPockets and
then fires StorageService.saveTransactions / saveAccounts / savePots /
savePockets without awaiting, which can expose UI/state before persistence
succeeds; change the flow so you first call and await the corresponding
StorageService.save* calls, check for success (handle or surface errors), and
only after successful persistence perform the store.setTransactions /
store.setAccounts / store.setPots / store.setPockets mutations (apply the same
fix for the other identical blocks that call StorageService.save* and store.set*
in this file).
- Around line 44-72: This command embeds domain rules (cross-currency check and
delta-computation orchestration) inside application logic: extract the business
logic into domain functions/services and call them from the command;
specifically move the isCrossCurrency logic and the usdRate/cross-currency
validation into a domain/validation function (e.g.,
TransactionDomain.validateExchangeRate(tx, txAccount, toAccount, usdRate)) and
move the applyDeltas orchestration into a domain service (e.g.,
TransactionDomain.computeDeltas(tx, factor, accounts, pots, pockets) that
internally uses computeAccountTransactionAmount, computeBudgetConsumption,
computeSavingsMovement) and then replace the inline isCrossCurrency/if-check and
applyDeltas usage in this file with calls to those domain functions (keeping
showToast usage only for presenting errors returned by the domain validation).
In `@src/lib/domain/__tests__/balance.engine.test.ts`:
- Around line 219-264: Add tests mirroring the existing isHistorical assertion
for computeAccountTransactionAmount: create test cases for
computeBudgetConsumption and computeSavingsMovement that pass transactions with
isHistorical: true (using makeTx) and assert the result flips sign (i.e.,
consumption/movement is multiplied by -1) compared to the non-historical case;
also include a historical case for when no potId and when transaction is before
pot reset date to ensure size is 0/undefined as appropriate. Reference
computeBudgetConsumption, computeSavingsMovement, makeTx, makePot and
TransactionType to locate where to add these assertions.
---
Duplicate comments:
In `@PLAN.md`:
- Around line 145-157: Replace all lingering usePrivacyStore references and
vault method names with the mask-store equivalents: change calls like
usePrivacyStore.getState().setVaultUnlocked() inside setSecurityUnlockedWithRef
to the corresponding useMaskStore API (e.g.,
useMaskStore.getState().setMaskUnlocked() or the project’s exact setter), and
update reads of isVaultEnabled/isVaultUnlocked in pages
(DashboardPage/AssetsPage/AccountPage) to use useMaskStore’s boolean selectors
(e.g., useMaskStore().isMaskEnabled / useMaskStore().isMaskUnlocked or the
store’s exact property names). Ensure all imports of usePrivacyStore are
replaced with useMaskStore and method/property names are updated consistently.
🪄 Autofix (Beta)
Fix all unresolved CodeRabbit comments on this PR:
- Push a commit to this branch (recommended)
- Create a new PR with the fixes
ℹ️ Review info
⚙️ Run configuration
Configuration used: Organization UI
Review profile: ASSERTIVE
Plan: Pro Plus
Run ID: ee72e72e-4374-4d89-a36f-89854db6b0ef
⛔ Files ignored due to path filters (1)
package-lock.jsonis excluded by!**/package-lock.json
📒 Files selected for processing (99)
.gitignore.opencode/prompts/commands-splitter.txt.opencode/prompts/page-migrator.txt.opencode/prompts/state-migrator.txtAGENTS.mdApp.tsxCONTEXT.mdPLAN.mdcomponents/AIInsights.tsxcomponents/AccountCard.tsxcomponents/AccountForm.tsxcomponents/BulkImportModal.tsxcomponents/Charts.tsxcomponents/Goals.tsxcomponents/GoogleDrivePicker.tsxcomponents/History.tsxcomponents/Profile.tsxcomponents/SubscriptionManager.tsxcomponents/history/SearchOverlay.tsxcomponents/history/useFilteredTransactions.tscontext/DataContext.tsxcontext/DataProvider.tsxcontext/types.tsdocs/PLAN.mddocs/adrs/001-layered-architecture-refactor.mddocs/adrs/002-drop-vault-data-minimization.mddocs/agents/domain.mddocs/agents/issue-tracker.mddocs/agents/triage-labels.mddocs/issues/001-rename-and-split-computeBalanceDeltas.mddocs/issues/003-privacy-store.mddocs/issues/004-commands-extraction.mddocs/issues/005-cleanup.mddocs/issues/README.mddocs/issues/review-pr2.mdhelpers/useAppInit.tsxhelpers/useMask.tsxlayouts/MainLayout.tsxopencode.jsonpackage.jsonpages/AccountPage.tsxpages/AssetsPage.tsxpages/DashboardPage.tsxpages/GoalsPage.tsxpages/HistoryPage.tsxpages/ProfilePage.tsxservices/__tests__/crypto.test.tsservices/auth.services.tsxservices/biometric.services.tsservices/coin.services.tsservices/crypto.services.tsservices/exchange.services.tsservices/gemini.services.tsservices/security.services.tsservices/sheets.services.tsservices/storage.services.tsservices/twofa.services.tsskills-lock.jsonsrc/lib/application/__tests__/commands.test.tssrc/lib/application/__tests__/logger.test.tssrc/lib/application/commands.tssrc/lib/application/commands/__tests__/migration.test.tssrc/lib/application/commands/__tests__/sync.test.tssrc/lib/application/commands/accounts.tssrc/lib/application/commands/balance.tssrc/lib/application/commands/categories.tssrc/lib/application/commands/chat-sessions.tssrc/lib/application/commands/goals.tssrc/lib/application/commands/helpers.tssrc/lib/application/commands/migration.tssrc/lib/application/commands/pockets.tssrc/lib/application/commands/pots.tssrc/lib/application/commands/subscriptions.tssrc/lib/application/commands/sync.tssrc/lib/application/commands/transactions.tssrc/lib/application/logger.tssrc/lib/domain/__tests__/SearchOverlay.test.tsxsrc/lib/domain/__tests__/balance.engine.test.tssrc/lib/domain/__tests__/currency.test.tssrc/lib/domain/__tests__/matchesSearch.test.tssrc/lib/domain/__tests__/migration.test.tssrc/lib/domain/balance.engine.tssrc/lib/domain/currency.tssrc/lib/domain/dates.tssrc/lib/domain/migration.tssrc/lib/domain/search.tssrc/stores/__tests__/finance.store.test.tssrc/stores/__tests__/mask.store.test.tssrc/stores/__tests__/sync.store.test.tssrc/stores/__tests__/ui.store.test.tssrc/stores/finance.store.tssrc/stores/index.tssrc/stores/mask.store.tssrc/stores/sync.store.tssrc/stores/ui.store.tssrc/test-setup.tstsconfig.jsontypes.tsvite.config.ts
💤 Files with no reviewable changes (5)
- services/biometric.services.ts
- context/types.ts
- services/twofa.services.ts
- services/security.services.ts
- context/DataContext.tsx
📜 Review details
🧰 Additional context used
📓 Path-based instructions (13)
tsconfig.json
📄 CodeRabbit inference engine (AGENTS.md)
TypeScript configuration must be defined in
tsconfig.json
Files:
tsconfig.json
src/stores/__tests__/**/*.ts
📄 CodeRabbit inference engine (AGENTS.md)
Zustand stores: Store action tests using Vitest with jsdom
Files:
src/stores/__tests__/ui.store.test.tssrc/stores/__tests__/mask.store.test.tssrc/stores/__tests__/sync.store.test.tssrc/stores/__tests__/finance.store.test.ts
**/*.{ts,tsx}
📄 CodeRabbit inference engine (AGENTS.md)
Avoid comments — prefer self-documenting code
Files:
src/stores/__tests__/ui.store.test.tscomponents/BulkImportModal.tsxsrc/lib/domain/currency.tscomponents/SubscriptionManager.tsxsrc/stores/mask.store.tsservices/coin.services.tscomponents/AccountCard.tsxsrc/stores/index.tscomponents/Goals.tsxcomponents/AIInsights.tsxcomponents/history/SearchOverlay.tsxsrc/lib/domain/__tests__/currency.test.tssrc/lib/application/commands/helpers.tspages/DashboardPage.tsxpages/GoalsPage.tsxsrc/stores/__tests__/mask.store.test.tssrc/test-setup.tssrc/stores/__tests__/sync.store.test.tsservices/exchange.services.tspages/HistoryPage.tsxcomponents/Charts.tsxsrc/stores/ui.store.tssrc/lib/application/commands/__tests__/sync.test.tssrc/lib/application/commands.tssrc/lib/application/logger.tssrc/lib/application/commands/pockets.tspages/AssetsPage.tsxsrc/lib/application/__tests__/logger.test.tsApp.tsxservices/__tests__/crypto.test.tssrc/lib/domain/__tests__/balance.engine.test.tssrc/lib/application/__tests__/commands.test.tssrc/lib/application/commands/categories.tssrc/lib/application/commands/migration.tssrc/lib/domain/__tests__/migration.test.tssrc/lib/application/commands/goals.tscomponents/History.tsxservices/gemini.services.tshelpers/useMask.tsxsrc/lib/application/commands/balance.tssrc/lib/application/commands/subscriptions.tssrc/lib/domain/__tests__/SearchOverlay.test.tsxsrc/stores/sync.store.tsservices/storage.services.tshelpers/useAppInit.tsxsrc/lib/application/commands/__tests__/migration.test.tssrc/lib/domain/dates.tssrc/stores/__tests__/finance.store.test.tssrc/lib/application/commands/pots.tssrc/lib/application/commands/chat-sessions.tscomponents/GoogleDrivePicker.tsxtypes.tssrc/lib/domain/search.tssrc/lib/application/commands/accounts.tssrc/lib/domain/__tests__/matchesSearch.test.tsservices/crypto.services.tscomponents/history/useFilteredTransactions.tspages/AccountPage.tsxsrc/stores/finance.store.tscomponents/Profile.tsxservices/auth.services.tsxpages/ProfilePage.tsxsrc/lib/application/commands/sync.tscomponents/AccountForm.tsxvite.config.tssrc/lib/domain/migration.tslayouts/MainLayout.tsxsrc/lib/domain/balance.engine.tssrc/lib/application/commands/transactions.tsservices/sheets.services.ts
components/**/*.{ts,tsx}
📄 CodeRabbit inference engine (AGENTS.md)
React components must not call storage or sheet services directly — they must go through command handlers in
src/lib/application/commands/State lives in Zustand stores under
src/stores/— components must read from stores instead of DataContext or direct service callsUse Tailwind CSS for styling with utility-first approach
Files:
components/BulkImportModal.tsxcomponents/SubscriptionManager.tsxcomponents/AccountCard.tsxcomponents/Goals.tsxcomponents/AIInsights.tsxcomponents/history/SearchOverlay.tsxcomponents/Charts.tsxcomponents/History.tsxcomponents/GoogleDrivePicker.tsxcomponents/history/useFilteredTransactions.tscomponents/Profile.tsxcomponents/AccountForm.tsx
src/lib/domain/**/*.ts
📄 CodeRabbit inference engine (AGENTS.md)
Domain layer functions must be pure functions with no React, no side effects, and no imports from
services/orstores/All dependencies in domain layer functions must be explicit parameters
Domain layer modules must use one module per file with co-located tests in
__tests__/directoriesUse
TransactionTypeenum from types for type discrimination in domain functions
Files:
src/lib/domain/currency.tssrc/lib/domain/__tests__/currency.test.tssrc/lib/domain/__tests__/balance.engine.test.tssrc/lib/domain/__tests__/migration.test.tssrc/lib/domain/dates.tssrc/lib/domain/search.tssrc/lib/domain/__tests__/matchesSearch.test.tssrc/lib/domain/migration.tssrc/lib/domain/balance.engine.ts
.gitignore
📄 CodeRabbit inference engine (AGENTS.md)
Do not track
.env,.agents/,node_modules/,dist/,build/,.next/in Git — add to.gitignoreTrack
docs/in Git — ensure.gitignorerules are commented out for documentation directory
Files:
.gitignore
src/lib/domain/__tests__/**/*.ts
📄 CodeRabbit inference engine (AGENTS.md)
Domain functions: Pure unit tests using Vitest without jsdom
Files:
src/lib/domain/__tests__/currency.test.tssrc/lib/domain/__tests__/balance.engine.test.tssrc/lib/domain/__tests__/migration.test.tssrc/lib/domain/__tests__/matchesSearch.test.ts
src/lib/application/**/*.ts
📄 CodeRabbit inference engine (AGENTS.md)
Application layer in
src/lib/application/must orchestrate commands without business logic
Files:
src/lib/application/commands/helpers.tssrc/lib/application/commands/__tests__/sync.test.tssrc/lib/application/commands.tssrc/lib/application/logger.tssrc/lib/application/commands/pockets.tssrc/lib/application/__tests__/logger.test.tssrc/lib/application/__tests__/commands.test.tssrc/lib/application/commands/categories.tssrc/lib/application/commands/migration.tssrc/lib/application/commands/goals.tssrc/lib/application/commands/balance.tssrc/lib/application/commands/subscriptions.tssrc/lib/application/commands/__tests__/migration.test.tssrc/lib/application/commands/pots.tssrc/lib/application/commands/chat-sessions.tssrc/lib/application/commands/accounts.tssrc/lib/application/commands/sync.tssrc/lib/application/commands/transactions.ts
src/lib/application/commands/**/*.ts
📄 CodeRabbit inference engine (AGENTS.md)
Extract command handlers to
src/lib/application/commands.tsorsrc/lib/application/commands/instead of keeping them in component contexts
Files:
src/lib/application/commands/helpers.tssrc/lib/application/commands/__tests__/sync.test.tssrc/lib/application/commands/pockets.tssrc/lib/application/commands/categories.tssrc/lib/application/commands/migration.tssrc/lib/application/commands/goals.tssrc/lib/application/commands/balance.tssrc/lib/application/commands/subscriptions.tssrc/lib/application/commands/__tests__/migration.test.tssrc/lib/application/commands/pots.tssrc/lib/application/commands/chat-sessions.tssrc/lib/application/commands/accounts.tssrc/lib/application/commands/sync.tssrc/lib/application/commands/transactions.ts
pages/**/*.{ts,tsx}
📄 CodeRabbit inference engine (AGENTS.md)
React components must not call storage or sheet services directly — they must go through command handlers in
src/lib/application/commands/State lives in Zustand stores under
src/stores/— pages must read from stores instead of DataContext or direct service callsUse Tailwind CSS for styling with utility-first approach in page components
Files:
pages/DashboardPage.tsxpages/GoalsPage.tsxpages/HistoryPage.tsxpages/AssetsPage.tsxpages/AccountPage.tsxpages/ProfilePage.tsx
src/test-setup.ts
📄 CodeRabbit inference engine (AGENTS.md)
Test setup for Vitest and React Testing Library must be in
src/test-setup.ts
Files:
src/test-setup.ts
docs/adrs/**/*.md
📄 CodeRabbit inference engine (AGENTS.md)
Architecture Decision Records (ADRs) must be stored in
docs/adrs/with sequential numbering and kebab-case filenamesADRs must use template with sections: Context → Decision → Consequences → Status
Files:
docs/adrs/001-layered-architecture-refactor.mddocs/adrs/002-drop-vault-data-minimization.md
vite.config.ts
📄 CodeRabbit inference engine (AGENTS.md)
Vite and Vitest configuration must be defined in
vite.config.ts
Files:
vite.config.ts
🧠 Learnings (1)
📓 Common learnings
Learnt from: CR
Repo: notedwin-dev/finance-tracker-app
Timestamp: 2026-06-05T21:00:30.450Z
Learning: Create feature branches with prefix `feature/*` for new features
Learnt from: CR
Repo: notedwin-dev/finance-tracker-app
Timestamp: 2026-06-05T21:00:30.450Z
Learning: Create refactor branches with prefix `refactor/*` for major code refactoring or UI revamp
Learnt from: CR
Repo: notedwin-dev/finance-tracker-app
Timestamp: 2026-06-05T21:00:30.450Z
Learning: Create bugfix branches with prefix `bugfix/*` for bug fixes
Learnt from: CR
Repo: notedwin-dev/finance-tracker-app
Timestamp: 2026-06-05T21:00:30.450Z
Learning: Use `staging` as the pre-production review branch and merge to `main` only after approval
🪛 LanguageTool
docs/issues/review-pr2.md
[grammar] ~31-~31: Ensure spelling is correct
Context: ... handleTransactionDelete removed from DataContextType. ## MEDIUM Issues ### M1 — Duplicate balanc...
(QB_NEW_EN_ORTHOGRAPHY_ERROR_IDS_1)
.opencode/prompts/commands-splitter.txt
[grammar] ~1-~1: Use a hyphen to join words.
Context: You are a code splitting specialist. Your task is to sp...
(QB_NEW_EN_HYPHEN)
[style] ~19-~19: ‘exact same’ might be wordy. Consider a shorter alternative.
Context: ...everything 6. Zero behavioral changes — exact same function bodies 7. Every existing impor...
(EN_WORDINESS_PREMIUM_EXACT_SAME)
docs/issues/001-rename-and-split-computeBalanceDeltas.md
[style] ~58-~58: ‘exact same’ might be wordy. Consider a shorter alternative.
Context: ... ## Decision Document - Functions use exact same logic from the original — no behavioral...
(EN_WORDINESS_PREMIUM_EXACT_SAME)
🪛 markdownlint-cli2 (0.22.1)
AGENTS.md
[warning] 3-3: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 4-4: Fenced code blocks should be surrounded by blank lines
(MD031, blanks-around-fences)
[warning] 4-4: Fenced code blocks should have a language specified
(MD040, fenced-code-language)
[warning] 40-40: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 58-58: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 63-63: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 123-123: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 133-133: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 146-146: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
docs/PLAN.md
[warning] 223-223: Fenced code blocks should be surrounded by blank lines
(MD031, blanks-around-fences)
[warning] 233-233: Fenced code blocks should be surrounded by blank lines
(MD031, blanks-around-fences)
[warning] 242-242: Fenced code blocks should be surrounded by blank lines
(MD031, blanks-around-fences)
docs/adrs/001-layered-architecture-refactor.md
[warning] 32-32: Fenced code blocks should have a language specified
(MD040, fenced-code-language)
[warning] 120-120: Fenced code blocks should have a language specified
(MD040, fenced-code-language)
[warning] 141-141: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 145-145: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 149-149: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 153-153: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 156-156: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 163-163: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 172-172: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 179-179: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 188-188: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 197-197: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 203-203: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 211-211: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 221-221: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 229-229: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 234-234: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 243-243: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 246-246: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 249-249: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 252-252: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 255-255: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
PLAN.md
[warning] 9-9: Fenced code blocks should have a language specified
(MD040, fenced-code-language)
[warning] 38-38: Fenced code blocks should have a language specified
(MD040, fenced-code-language)
[warning] 66-66: Fenced code blocks should have a language specified
(MD040, fenced-code-language)
[warning] 120-120: Fenced code blocks should be surrounded by blank lines
(MD031, blanks-around-fences)
[warning] 133-133: Fenced code blocks should be surrounded by blank lines
(MD031, blanks-around-fences)
[warning] 166-166: Fenced code blocks should have a language specified
(MD040, fenced-code-language)
[warning] 189-189: Fenced code blocks should be surrounded by blank lines
(MD031, blanks-around-fences)
[warning] 259-259: Fenced code blocks should be surrounded by blank lines
(MD031, blanks-around-fences)
[warning] 259-259: Fenced code blocks should have a language specified
(MD040, fenced-code-language)
[warning] 271-271: Fenced code blocks should be surrounded by blank lines
(MD031, blanks-around-fences)
[warning] 271-271: Fenced code blocks should have a language specified
(MD040, fenced-code-language)
[warning] 283-283: Fenced code blocks should be surrounded by blank lines
(MD031, blanks-around-fences)
[warning] 283-283: Fenced code blocks should have a language specified
(MD040, fenced-code-language)
🔇 Additional comments (72)
.gitignore (1)
7-8: LGTM!components/history/SearchOverlay.tsx (1)
162-167: LGTM!docs/adrs/002-drop-vault-data-minimization.md (1)
1-55: LGTM!docs/agents/domain.md (1)
1-38: LGTM!docs/agents/issue-tracker.md (1)
1-23: LGTM!src/lib/application/commands.ts (1)
1-12: LGTM!pages/HistoryPage.tsx (1)
27-27: Verify deleteTransaction handling for synthetic${id}_intransfer IDs.
HistoryPage.tsxfabricates display IDs via${id}_in(line 27) but forwards the passediddirectly intodeleteTransaction(lines 70-72). Confirm thatsrc/lib/application/commands/transactions.tsnormalizes/resolves_inIDs to the canonical transaction (or deletes the correct transfer leg); otherwise the IN-row delete may fail/no-op.components/History.tsx (1)
174-206: ⚡ Quick winCatch failures in batch delete/edit handlers to prevent unhandled promise rejections
handleBatchDelete/handleBatchEditSubmitonly usetry/finally; ifbatchDeleteTransactionorbatchEditTransactionsrejects, the async callback can leak a rejected promise from the click handler. Add an explicitcatchto surface/log the error and keepbatch.endSubmit()behavior.Suggested patch
const handleBatchDelete = useCallback(async () => { batch.startSubmit(); try { @@ await batchDeleteTransaction(batch.selectedIds, accounts, pots, pockets, usdRate, transactions); batch.clearSelection(); } + } catch (error) { + void error; } finally { batch.endSubmit(); } }, [batch, batchDeleteTransaction, accounts, pots, pockets, usdRate, transactions]); const handleBatchEditSubmit = useCallback(async () => { batch.startSubmit(); try { @@ false, ); + } catch (error) { + void error; } finally { batch.endSubmit(); } }, [batch, batchEditTransactions, transactions, accounts, pots, pockets, usdRate]);PLAN.md (1)
9-18: Add language identifier to fenced code block.The ASCII diagram fence is missing a language tag, causing markdown lint warnings. Add
textas the language identifier.📝 Suggested fix
-``` +```text Sheets ──→ DataProvider ──→ Stores ──→ Componentscomponents/history/useFilteredTransactions.ts (1)
9-12: LGTM!App.tsx (1)
4-4: LGTM!Also applies to: 40-50
CONTEXT.md (1)
1-64: LGTM!components/AIInsights.tsx (1)
18-18: LGTM!Also applies to: 376-376
components/Goals.tsx (1)
4-4: LGTM!Also applies to: 42-42
pages/AssetsPage.tsx (1)
4-5: LGTM!Also applies to: 11-14
pages/GoalsPage.tsx (1)
3-9: LGTM!Also applies to: 12-17, 26-31
components/AccountCard.tsx (1)
11-11: LGTM!Also applies to: 35-35
components/Charts.tsx (1)
17-17: LGTM!Also applies to: 876-876
components/SubscriptionManager.tsx (1)
15-15: LGTM!Also applies to: 37-37
helpers/useMask.tsx (1)
1-52: LGTM!opencode.json (1)
1-89: LGTM!package.json (1)
9-11: LGTM!Also applies to: 34-46
pages/AccountPage.tsx (1)
6-10: LGTM!Also applies to: 34-35, 55-67, 91-91, 546-555, 619-625
pages/DashboardPage.tsx (1)
12-14: LGTM!Also applies to: 36-40
components/BulkImportModal.tsx (1)
18-18: LGTM!Also applies to: 106-106
docs/agents/triage-labels.md (1)
1-15: LGTM!src/stores/__tests__/finance.store.test.ts (1)
1-107: LGTM!src/stores/ui.store.ts (1)
1-23: LGTM!components/GoogleDrivePicker.tsx (1)
6-10: LGTM!Also applies to: 41-42, 48-49, 54-55, 62-63, 120-121, 130-131, 145-148
components/Profile.tsx (1)
19-24: LGTM!Also applies to: 60-72, 289-306, 394-395, 436-472, 541-542
docs/issues/004-commands-extraction.md (1)
1-34: LGTM!docs/issues/005-cleanup.md (1)
1-31: LGTM!docs/issues/README.md (1)
1-24: LGTM!src/lib/application/commands/__tests__/migration.test.ts (1)
1-247: LGTM!src/lib/application/commands/migration.ts (1)
17-19: ConfirmStorageService.saveProfileis synchronous; otherwiseawaitit (and the similar block at 21–24)
saveProfile(cleanedProfile)is called withoutawaitwhilesaveAccounts(...)is awaited—ifsaveProfilereturns aPromise/isasync, addawait StorageService.saveProfile(cleanedProfile);to preserve persistence ordering.docs/issues/review-pr2.md (1)
1-81: LGTM!src/lib/application/commands/accounts.ts (1)
6-103: LGTM!src/lib/application/commands/chat-sessions.ts (1)
6-33: LGTM!src/lib/application/commands/subscriptions.ts (1)
6-37: LGTM!services/coin.services.ts (1)
1-1: LGTM!Also applies to: 44-44
services/crypto.services.ts (1)
1-135: LGTM!services/exchange.services.ts (1)
2-2: LGTM!Also applies to: 47-47, 151-151
services/gemini.services.ts (1)
12-12: LGTM!Also applies to: 289-290, 408-417, 455-456, 495-499, 565-566
skills-lock.json (1)
1-137: LGTM!services/auth.services.tsx (1)
286-303: ⚡ Quick winAvoid using
updatedPassigned insidesetProfilefor the post-update Sheets sync
updatedPis mutated inside thesetProfile((prev) => { ... })updater, then used immediately afterward in the sync branch. React doesn’t guarantee that updater assignment will have completed (and the updater may run more than once), so the sync logic can see stale/undefined data. Compute the next profile in a way that’s available synchronously for both persistence and cloud sync, or move the Sheets sync into auseEffectthat runs when the updated profile/email state changes.services/storage.services.ts (1)
14-14: LGTM!Also applies to: 82-84, 90-90, 163-163, 167-167, 493-507, 510-510
src/lib/application/commands/pots.ts (1)
1-41: LGTM!src/lib/domain/__tests__/SearchOverlay.test.tsx (1)
1-123: LGTM!src/stores/finance.store.ts (1)
1-202: LGTM!types.ts (1)
35-35: LGTM!Also applies to: 86-87
src/lib/application/__tests__/commands.test.ts (1)
1-141: LGTM!src/lib/domain/__tests__/matchesSearch.test.ts (1)
1-106: LGTM!src/lib/domain/__tests__/migration.test.ts (1)
1-319: LGTM!src/lib/domain/search.ts (1)
1-32: LGTM!src/stores/__tests__/mask.store.test.ts (1)
1-21: LGTM!src/stores/__tests__/sync.store.test.ts (1)
1-92: LGTM!src/stores/__tests__/ui.store.test.ts (1)
1-20: LGTM!src/lib/application/commands/sync.ts (1)
117-117: UnusedloadDataparameters are still present (profile,_forceUnlock).This appears to be the same unresolved issue previously reported.
src/lib/domain/migration.ts (2)
1-2: Top-of-file temporary comment is still present in this TypeScript module.Already reported previously.
4-92: LGTM!src/lib/application/__tests__/logger.test.ts (1)
1-108: LGTM!src/lib/application/logger.ts (1)
1-109: LGTM!src/stores/index.ts (1)
1-12: LGTM!src/stores/mask.store.ts (1)
1-22: LGTM!src/lib/domain/__tests__/currency.test.ts (1)
1-33: LGTM!src/lib/domain/currency.ts (1)
1-23: LGTM!src/lib/domain/dates.ts (1)
1-26: LGTM!src/stores/sync.store.ts (1)
1-67: LGTM!src/test-setup.ts (1)
1-1: LGTM!tsconfig.json (1)
14-16: LGTM!vite.config.ts (1)
1-1: LGTM!Also applies to: 8-8, 15-19, 64-69
src/lib/domain/balance.engine.ts (1)
17-20: ⚡ Quick winFix reset-gate date comparisons in
src/lib/domain/balance.engine.ts(lines 17-20, 49-52, 78-80).
These comparisons are done on normalized date strings (lexicographic order), which can misclassify ordering due to locale/format changes or invalid normalization—skewing pot/pocket delta gating. Compare using numeric timestamps (e.g.,Date(...).getTime()) and handle invalid dates explicitly (null/skip gate).
Comment on lines
+3
to
+4
| ## Project Structure | ||
| ``` |
There was a problem hiding this comment.
Fix markdownlint violations for heading spacing and fenced code metadata.
This block currently violates MD022/MD031/MD040. Add blank lines around the affected headings/fences and add a language to the fenced structure block (e.g., text).
Also applies to: 40-40, 58-58, 63-63, 123-123, 133-133, 146-146
🧰 Tools
🪛 markdownlint-cli2 (0.22.1)
[warning] 3-3: Headings should be surrounded by blank lines
Expected: 1; Actual: 0; Below
(MD022, blanks-around-headings)
[warning] 4-4: Fenced code blocks should be surrounded by blank lines
(MD031, blanks-around-fences)
[warning] 4-4: Fenced code blocks should have a language specified
(MD040, fenced-code-language)
🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
In `@AGENTS.md` around lines 3 - 4, Add required blank lines around top-level
headings and fenced code blocks and include a language identifier for fenced
blocks (for example change ``` to ```text) to satisfy MD022/MD031/MD040;
specifically, ensure there is an empty line above and below "## Project
Structure" and every fenced block, update the fences to include a language token
(e.g., text), and apply the same fixes to the other affected heading/fence
occurrences noted (around lines referenced in the review) so all headings and
code fences have proper surrounding blank lines and a fenced language.
Comment on lines
+51
to
+57
| {/* Public Routes */} | ||
| <Route path="/" element={<LandingPage />} /> | ||
| <Route path="/login" element={<AuthPage />} /> | ||
| <Route path="/privacy" element={<PrivacyPolicy />} /> | ||
| <Route path="/terms" element={<TermsOfService />} /> | ||
|
|
||
| {/* Protected App Routes */} | ||
| <Route | ||
| path="/app" | ||
| element={ | ||
| <ProtectedRoute> | ||
| <MainLayout /> | ||
| </ProtectedRoute> | ||
| } | ||
| > | ||
| <Route index element={<DashboardPage />} /> | ||
| <Route path="history" element={<HistoryPage />} /> | ||
| <Route path="account/:id" element={<AccountPage />} /> | ||
| <Route path="goals" element={<GoalsPage />} /> | ||
| <Route path="assets" element={<AssetsPage />} /> | ||
| <Route path="ai" element={<div />} /> | ||
| <Route path="profile" element={<ProfilePage />} /> | ||
| </Route> | ||
| {/* Protected App Routes */} |
There was a problem hiding this comment.
🧹 Nitpick | 🔵 Trivial | ⚡ Quick win
Remove inline JSX route-section comments in this TSX file.
Please drop these comments and keep the route grouping self-descriptive via structure/naming.
Suggested cleanup
- {/* Public Routes */}
<Route path="/" element={<LandingPage />} />
<Route path="/login" element={<AuthPage />} />
<Route path="/privacy" element={<PrivacyPolicy />} />
<Route path="/terms" element={<TermsOfService />} />
- {/* Protected App Routes */}
<Route
path="/app"
element={
@@
- {/* fallback */}
<Route path="/404" element={<NotFound />} />
<Route path="*" element={<Navigate to="/404" replace />} />As per coding guidelines, **/*.{ts,tsx}: Avoid comments — prefer self-documenting code.
Also applies to: 75-75
🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
In `@App.tsx` around lines 51 - 57, Remove the inline JSX comments like {/* Public
Routes */} and {/* Protected App Routes */} in App.tsx; instead make the
grouping self-descriptive by either extracting the sets of Route elements into
named components (e.g., PublicRoutes and ProtectedRoutes) or using clearly named
JSX wrappers/fragments so the Route entries (LandingPage, AuthPage,
PrivacyPolicy, TermsOfService, etc.) are organized without comments; ensure any
other similar inline comment nodes (including the one near Routes around the
protected section) are deleted and replaced with the descriptive structure.
| initialAccount?: Account; | ||
| accounts: Account[]; | ||
| onSave: (account: Omit<Account, "userId">) => void; // App handles userId injection | ||
| onSave: (account: Omit<Account, "userId">) => void; |
There was a problem hiding this comment.
🛠️ Refactor suggestion | 🟠 Major | ⚡ Quick win
Align onSave typing with awaited async behavior.
Line 12 types onSave as void, but Line 170 awaits it. This weakens the contract and can mask non-awaited persistence paths.
Proposed fix
interface Props {
initialAccount?: Account;
accounts: Account[];
- onSave: (account: Omit<Account, "userId">) => void;
+ onSave: (account: Omit<Account, "userId">) => Promise<void>;
onDelete?: (id: string, name: string) => void;
onClose: () => void;
}Also applies to: 164-171
🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
In `@components/AccountForm.tsx` at line 12, The onSave prop on the AccountForm
component is typed as returning void but is awaited where it's used; update the
prop signature to return a Promise (e.g., onSave: (account: Omit<Account,
"userId">) => Promise<void>) and adjust any related callers to return/propagate
a Promise as needed so awaiting the call is type-safe; look for the AccountForm
props/interface and the function using await onSave to ensure both sides match.
Comment on lines
+43
to
44
| onRecalculateBalances?: () => Promise<void>; | ||
| isSyncing?: boolean; |
There was a problem hiding this comment.
Guard the "Recalculate Balances" action when the handler is unavailable.
Line 43 makes onRecalculateBalances optional, but Lines 429-435 always render a clickable setting. When the prop is missing, this becomes a silent no-op.
Suggested fix
- <SettingItem
- icon={CalculatorIcon}
- label="Recalculate Balances"
- description="Fix account balance desyncs from history"
- onClick={handleRecalculateBalances}
- color="text-emerald-400"
- />
+ {onRecalculateBalances && (
+ <SettingItem
+ icon={CalculatorIcon}
+ label="Recalculate Balances"
+ description="Fix account balance desyncs from history"
+ onClick={handleRecalculateBalances}
+ color="text-emerald-400"
+ />
+ )}Also applies to: 429-435
🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
In `@components/Profile.tsx` around lines 43 - 44, The "Recalculate Balances"
action is rendered as an always-clickable setting even though the prop
onRecalculateBalances is optional; update the Profile component to guard
rendering and interaction by checking onRecalculateBalances before enabling the
control: either hide the control when onRecalculateBalances is undefined or
render it in a disabled state (and prevent clicks) and optionally show a
tooltip/message; ensure the click handler bound in the Recalculate Balances
setting uses the presence check (e.g., if (!onRecalculateBalances) return) and
the UI reflects disabled state so there is no silent no-op when
onRecalculateBalances is not provided.
Comment on lines
+32
to
+56
| ``` | ||
| ┌─────────────────────────────────────────────┐ | ||
| │ Presentation Layer │ | ||
| │ pages/ components/ layouts/ │ | ||
| │ (thin React components, feature folders) │ | ||
| ├─────────────────────────────────────────────┤ | ||
| │ Application Layer │ | ||
| │ src/lib/application/commands.ts │ | ||
| │ (orchestration: validate → domain → store │ | ||
| │ → persist, no React code) │ | ||
| ├─────────────────────────────────────────────┤ | ||
| │ State Layer │ | ||
| │ src/stores/*.store.ts │ | ||
| │ (Zustand stores, holds state + dispatch) │ | ||
| ├─────────────────────────────────────────────┤ | ||
| │ Infrastructure Layer │ | ||
| │ src/lib/infrastructure/*.ts │ | ||
| │ (interfaces + implementations: storage, │ | ||
| │ sheets, auth, AI, exchange rate, crypto) │ | ||
| ├─────────────────────────────────────────────┤ | ||
| │ Domain Layer │ | ||
| │ src/lib/domain/*.ts │ | ||
| │ (pure functions, no side effects, │ | ||
| │ no React, fully testable) │ | ||
| └─────────────────────────────────────────────┘ |
There was a problem hiding this comment.
🧹 Nitpick | 🔵 Trivial | 💤 Low value
Add language identifier to architecture diagram.
The fenced block containing the architecture diagram is missing a language tag. Add text to satisfy markdown linting and improve rendering.
📝 Suggested fix
-```
+```text
┌─────────────────────────────────────────────┐🧰 Tools
🪛 markdownlint-cli2 (0.22.1)
[warning] 32-32: Fenced code blocks should have a language specified
(MD040, fenced-code-language)
🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
In `@docs/adrs/001-layered-architecture-refactor.md` around lines 32 - 56, The
fenced code block containing the ASCII architecture diagram is missing a
language identifier, so update the Markdown fenced block around the diagram (the
triple-backtick block in the ADR content) to include the language tag "text"
(i.e., replace ``` with ```text) so linters and renderers treat it as plain
text; locate the diagram block in the ADR (the big box starting with
"┌─────────────────────────────────────────────┐") and add the tag to the
opening fence accordingly.
Comment on lines
+144
to
+278
| export function processSubscriptions( | ||
| accounts: Account[], | ||
| usdRate: number, | ||
| options: { persist?: boolean } = { persist: true }, | ||
| ) { | ||
| const { persist = true } = options; | ||
| const subs = StorageService.getStoredSubscriptions(); | ||
| const currentTxs = StorageService.getStoredTransactions(); | ||
| const today = new Date().toLocaleDateString("en-CA"); | ||
| let newTxs: Transaction[] = []; | ||
| let updatedSubs = [...subs]; | ||
| let processedCount = 0; | ||
| let bailedSubIds = new Set<string>(); | ||
| const storedProfile = StorageService.getStoredProfile(); | ||
| const currentUserId = storedProfile.id || "guest"; | ||
|
|
||
| const rateValid = usdRate > 0 && isFinite(usdRate); | ||
| if (!rateValid) { | ||
| logger.warn( | ||
| "processSubscriptions: usdRate invalid, cross-currency subs will be skipped to avoid silent balance corruption", | ||
| ); | ||
| } | ||
|
|
||
| updatedSubs = updatedSubs.map((sub) => { | ||
| if (!sub.active) return sub; | ||
| let nextDateStr = normalizeDate(sub.nextPaymentDate); | ||
| if (!nextDateStr) { | ||
| logger.warn(`processSubscriptions: invalid nextPaymentDate for sub ${sub.id}, skipping`); | ||
| return sub; | ||
| } | ||
| let hasProcessed = false; | ||
| let iterations = 0; | ||
| const MAX_ITERATIONS = 365; | ||
| while (nextDateStr <= today && iterations < MAX_ITERATIONS) { | ||
| iterations++; | ||
| hasProcessed = true; | ||
| const newTx: Transaction = { | ||
| id: `sub-${sub.id}-${nextDateStr}`, | ||
| userId: currentUserId, | ||
| accountId: sub.accountId, | ||
| amount: sub.amount, | ||
| currency: sub.currency, | ||
| type: TransactionType.EXPENSE, | ||
| categoryId: sub.categoryId, | ||
| shopName: sub.name + " (Subscription)", | ||
| date: nextDateStr, | ||
| subscriptionId: sub.id, | ||
| createdAt: new Date().toISOString(), | ||
| updatedAt: new Date().toISOString(), | ||
| }; | ||
| newTxs.push(newTx); | ||
| const d = parseDateSafe(nextDateStr); | ||
| if (sub.frequency === "WEEKLY") d.setDate(d.getDate() + 7); | ||
| else if (sub.frequency === "MONTHLY") d.setMonth(d.getMonth() + 1); | ||
| else if (sub.frequency === "YEARLY") d.setFullYear(d.getFullYear() + 1); | ||
| else d.setDate(d.getDate() + 1); | ||
| nextDateStr = d.toLocaleDateString("en-CA"); | ||
| } | ||
| if (iterations >= MAX_ITERATIONS) { | ||
| logger.warn( | ||
| `processSubscriptions: sub ${sub.id} hit iteration cap; nextPaymentDate may be corrupted`, | ||
| sub.nextPaymentDate, | ||
| ); | ||
| bailedSubIds.add(sub.id); | ||
| return { ...sub, nextPaymentDate: nextDateStr }; | ||
| } | ||
| if (hasProcessed) { | ||
| processedCount++; | ||
| return { | ||
| ...sub, | ||
| nextPaymentDate: nextDateStr, | ||
| updatedAt: new Date().toISOString(), | ||
| }; | ||
| } | ||
| return { ...sub, nextPaymentDate: nextDateStr }; | ||
| }); | ||
|
|
||
| if (newTxs.length === 0) return; | ||
|
|
||
| const dedupedNewTxs = newTxs.filter( | ||
| (t) => !currentTxs.some((existing) => existing.id === t.id), | ||
| ); | ||
| if (dedupedNewTxs.length === 0) { | ||
| useSyncStore.getState().showToast( | ||
| "No new subscription payments to apply.", | ||
| "info", | ||
| ); | ||
| return; | ||
| } | ||
|
|
||
| const allTxs = [...currentTxs, ...dedupedNewTxs]; | ||
| const accUpdates = new Map<string, number>(); | ||
| dedupedNewTxs.forEach((t) => { | ||
| const acc = accounts.find((a) => a.id === t.accountId); | ||
| if (!acc) return; | ||
| if (t.currency !== acc.currency && !rateValid) { | ||
| logger.warn( | ||
| `processSubscriptions: skipping cross-currency sub for ${t.id} due to invalid usdRate`, | ||
| ); | ||
| return; | ||
| } | ||
| let amount = t.amount; | ||
| if (acc && t.currency !== acc.currency) { | ||
| if (t.currency === "USD") amount *= usdRate; | ||
| else if (t.currency === "MYR") amount /= usdRate; | ||
| } | ||
| accUpdates.set(t.accountId, (accUpdates.get(t.accountId) || 0) + amount); | ||
| }); | ||
|
|
||
| const updatedAccounts = accounts.map((a) => { | ||
| if (accUpdates.has(a.id)) | ||
| return { | ||
| ...a, | ||
| balance: a.balance - (accUpdates.get(a.id) || 0), | ||
| updatedAt: new Date().toISOString(), | ||
| }; | ||
| return a; | ||
| }); | ||
|
|
||
| const store = useFinanceStore.getState(); | ||
| store.setTransactions(allTxs); | ||
| store.setSubscriptions(updatedSubs); | ||
| store.setAccounts(updatedAccounts); | ||
|
|
||
| if (persist) { | ||
| StorageService.saveTransactions(allTxs); | ||
| StorageService.saveSubscriptions(updatedSubs); | ||
| StorageService.saveAccounts(updatedAccounts); | ||
| } | ||
|
|
||
| useSyncStore.getState().showToast( | ||
| `Processed ${processedCount} subscription payments, ${dedupedNewTxs.length} new transactions applied.`, | ||
| "success", | ||
| ); | ||
| } |
There was a problem hiding this comment.
🛠️ Refactor suggestion | 🟠 Major | 🏗️ Heavy lift
Move subscription recurrence/conversion rules into domain-layer pure functions.
processSubscriptions currently embeds business rules inside application commands (date advancement, recurrence interpretation, currency conversion, dedupe behavior). Keep this module for orchestration and move rule computation to src/lib/domain/... with explicit inputs/outputs.
As per coding guidelines, src/lib/application/**/*.ts: Application layer in src/lib/application/ must orchestrate commands without business logic.
🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
In `@src/lib/application/commands/sync.ts` around lines 144 - 278,
processSubscriptions mixes orchestration with business rules (date
advancement/recurrence, transaction id creation, dedupe semantics, and currency
conversion); extract pure domain functions and replace inline logic with calls:
create a pure computeNextOccurrences(sub, today, maxIterations) that returns {
nextDateStr, generatedTxDates[], bailed } (used where parseDateSafe, nextDateStr
and the while loop are), a pure buildSubscriptionTransaction(sub, date, userId)
that builds the Transaction object (used where newTx is created and
id/shopName/date are set), a pure
convertTransactionAmountForAccount(transaction, account, usdRate, rateValid)
that returns numeric amount (used where accUpdates computes amount and handles
USD/MYR conversion and rateValid checks), and a pure
dedupeTransactions(existingTxs, candidateTxs) that returns the deduped list
(used where newTxs are filtered). Keep processSubscriptions only orchestrating:
call these domain functions, update accUpdates/updatedSubs/updatedAccounts, and
persist/showToast as before.
Comment on lines
+226
to
+232
| if (dedupedNewTxs.length === 0) { | ||
| useSyncStore.getState().showToast( | ||
| "No new subscription payments to apply.", | ||
| "info", | ||
| ); | ||
| return; | ||
| } |
There was a problem hiding this comment.
updatedSubs can be silently lost when all generated txs are duplicates.
If dedupedNewTxs.length === 0, the function returns before applying/persisting advanced nextPaymentDate values, so the same cycle can repeat indefinitely.
Proposed fix
+ const store = useFinanceStore.getState();
if (dedupedNewTxs.length === 0) {
+ store.setSubscriptions(updatedSubs);
+ if (persist) {
+ StorageService.saveSubscriptions(updatedSubs);
+ }
useSyncStore.getState().showToast(
"No new subscription payments to apply.",
"info",
);
return;
}
@@
- const store = useFinanceStore.getState();
store.setTransactions(allTxs);📝 Committable suggestion
‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.
Suggested change
| if (dedupedNewTxs.length === 0) { | |
| useSyncStore.getState().showToast( | |
| "No new subscription payments to apply.", | |
| "info", | |
| ); | |
| return; | |
| } | |
| const store = useFinanceStore.getState(); | |
| if (dedupedNewTxs.length === 0) { | |
| store.setSubscriptions(updatedSubs); | |
| if (persist) { | |
| StorageService.saveSubscriptions(updatedSubs); | |
| } | |
| useSyncStore.getState().showToast( | |
| "No new subscription payments to apply.", | |
| "info", | |
| ); | |
| return; | |
| } | |
| store.setTransactions(allTxs); |
🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
In `@src/lib/application/commands/sync.ts` around lines 226 - 232, When
dedupedNewTxs is empty the code returns early and never persists the advanced
nextPaymentDate values held in updatedSubs; ensure updatedSubs is applied even
when dedupedNewTxs.length === 0 by invoking the same persistence/update routine
used for non-empty cases (i.e., call the function that saves/applies
subscription updates for updatedSubs) before returning, then show the
no-new-transactions toast via useSyncStore.getState().showToast as currently
done.
Comment on lines
+44
to
+72
| const isCrossCurrency = (acc: Account | undefined) => | ||
| !!acc && | ||
| acc.currency !== tx.currency && | ||
| (tx.currency === "USD" || tx.currency === "MYR") && | ||
| (acc.currency === "USD" || acc.currency === "MYR"); | ||
|
|
||
| if (usdRate <= 0 && (isCrossCurrency(txAccount) || isCrossCurrency(toAccount))) { | ||
| showToast( | ||
| "Exchange rate not loaded. Please wait a moment and try again.", | ||
| "alert", | ||
| ); | ||
| return; | ||
| } | ||
|
|
||
| const accountUpdates = new Map<string, number>(); | ||
| const potUpdates = new Map<string, number>(); | ||
| const pocketUpdates = new Map<string, number>(); | ||
|
|
||
| const applyDeltas = (t: Transaction, factor: 1 | -1) => { | ||
| for (const [id, delta] of computeAccountTransactionAmount(t, factor, accounts, usdRate)) { | ||
| accountUpdates.set(id, (accountUpdates.get(id) || 0) + delta); | ||
| } | ||
| for (const [id, delta] of computeBudgetConsumption(t, factor, pots)) { | ||
| potUpdates.set(id, (potUpdates.get(id) || 0) + delta); | ||
| } | ||
| for (const [id, delta] of computeSavingsMovement(t, factor, pockets)) { | ||
| pocketUpdates.set(id, (pocketUpdates.get(id) || 0) + delta); | ||
| } | ||
| }; |
There was a problem hiding this comment.
🛠️ Refactor suggestion | 🟠 Major | 🏗️ Heavy lift
Move domain rules out of the application command.
The command currently embeds business logic (delta computation orchestration details, subscription next-date progression, cross-currency rule checks) instead of only orchestrating dependencies.
As per coding guidelines: src/lib/application/**/*.ts: Application layer in src/lib/application/ must orchestrate commands without business logic.
Also applies to: 174-216
🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
In `@src/lib/application/commands/transactions.ts` around lines 44 - 72, This
command embeds domain rules (cross-currency check and delta-computation
orchestration) inside application logic: extract the business logic into domain
functions/services and call them from the command; specifically move the
isCrossCurrency logic and the usdRate/cross-currency validation into a
domain/validation function (e.g., TransactionDomain.validateExchangeRate(tx,
txAccount, toAccount, usdRate)) and move the applyDeltas orchestration into a
domain service (e.g., TransactionDomain.computeDeltas(tx, factor, accounts,
pots, pockets) that internally uses computeAccountTransactionAmount,
computeBudgetConsumption, computeSavingsMovement) and then replace the inline
isCrossCurrency/if-check and applyDeltas usage in this file with calls to those
domain functions (keeping showToast usage only for presenting errors returned by
the domain validation).
Comment on lines
+145
to
+153
| store.setTransactions(updatedTransactions); | ||
| if (accountUpdates.size > 0) store.setAccounts(updatedAccounts); | ||
| if (potUpdates.size > 0) store.setPots(updatedPots); | ||
| if (pocketUpdates.size > 0) store.setPockets(updatedPockets); | ||
|
|
||
| StorageService.saveTransactions(updatedTransactions); | ||
| if (accountUpdates.size > 0) StorageService.saveAccounts(updatedAccounts); | ||
| if (potUpdates.size > 0) StorageService.savePots(updatedPots); | ||
| if (pocketUpdates.size > 0) StorageService.savePockets(updatedPockets); |
There was a problem hiding this comment.
Await local persistence and move store mutation behind a single success boundary.
Line 150 (and similar paths at Line 301, Line 457, Line 584) fire async saves without await after mutating store state. This can show success while persistence fails, leaving local/cloud/state divergence.
Suggested direction
- store.setTransactions(updatedTransactions);
- if (accountUpdates.size > 0) store.setAccounts(updatedAccounts);
- if (potUpdates.size > 0) store.setPots(updatedPots);
- if (pocketUpdates.size > 0) store.setPockets(updatedPockets);
-
- StorageService.saveTransactions(updatedTransactions);
- if (accountUpdates.size > 0) StorageService.saveAccounts(updatedAccounts);
- if (potUpdates.size > 0) StorageService.savePots(updatedPots);
- if (pocketUpdates.size > 0) StorageService.savePockets(updatedPockets);
+ await Promise.all([
+ StorageService.saveTransactions(updatedTransactions),
+ ...(accountUpdates.size > 0 ? [StorageService.saveAccounts(updatedAccounts)] : []),
+ ...(potUpdates.size > 0 ? [StorageService.savePots(updatedPots)] : []),
+ ...(pocketUpdates.size > 0 ? [StorageService.savePockets(updatedPockets)] : []),
+ ]);
+
+ store.setTransactions(updatedTransactions);
+ if (accountUpdates.size > 0) store.setAccounts(updatedAccounts);
+ if (potUpdates.size > 0) store.setPots(updatedPots);
+ if (pocketUpdates.size > 0) store.setPockets(updatedPockets);Also applies to: 299-302, 456-458, 583-585
🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
In `@src/lib/application/commands/transactions.ts` around lines 145 - 153, The
code currently mutates the in-memory store via store.setTransactions /
store.setAccounts / store.setPots / store.setPockets and then fires
StorageService.saveTransactions / saveAccounts / savePots / savePockets without
awaiting, which can expose UI/state before persistence succeeds; change the flow
so you first call and await the corresponding StorageService.save* calls, check
for success (handle or surface errors), and only after successful persistence
perform the store.setTransactions / store.setAccounts / store.setPots /
store.setPockets mutations (apply the same fix for the other identical blocks
that call StorageService.save* and store.set* in this file).
Comment on lines
+219
to
+264
| describe("computeBudgetConsumption", () => { | ||
| it("consumes budget for expense", () => { | ||
| const result = computeBudgetConsumption( | ||
| makeTx({ type: TransactionType.EXPENSE, potId: "pot1" }), | ||
| 1, | ||
| [makePot()], | ||
| ); | ||
| expect(result.get("pot1")).toBe(100); | ||
| }); | ||
|
|
||
| it("reverses budget consumption for income", () => { | ||
| const result = computeBudgetConsumption( | ||
| makeTx({ type: TransactionType.INCOME, potId: "pot1" }), | ||
| 1, | ||
| [makePot()], | ||
| ); | ||
| expect(result.get("pot1")).toBe(-100); | ||
| }); | ||
|
|
||
| it("returns empty map when no potId", () => { | ||
| const result = computeBudgetConsumption( | ||
| makeTx({ type: TransactionType.EXPENSE }), | ||
| 1, | ||
| [makePot()], | ||
| ); | ||
| expect(result.size).toBe(0); | ||
| }); | ||
|
|
||
| it("reverses with factor -1", () => { | ||
| const result = computeBudgetConsumption( | ||
| makeTx({ type: TransactionType.EXPENSE, potId: "pot1" }), | ||
| -1, | ||
| [makePot()], | ||
| ); | ||
| expect(result.get("pot1")).toBe(-100); | ||
| }); | ||
|
|
||
| it("skips consumption when transaction is before pot reset date", () => { | ||
| const result = computeBudgetConsumption( | ||
| makeTx({ type: TransactionType.EXPENSE, potId: "pot1", date: "2025-01-01" }), | ||
| 1, | ||
| [makePot({ resetDate: "2026-01-01" })], | ||
| ); | ||
| expect(result.get("pot1")).toBeUndefined(); | ||
| }); | ||
| }); |
There was a problem hiding this comment.
🛠️ Refactor suggestion | 🟠 Major | ⚡ Quick win
Add historical-transaction test cases for budget and savings calculators.
The suite asserts isHistorical behavior for computeAccountTransactionAmount (Line 62) but not for computeBudgetConsumption and computeSavingsMovement. Add those assertions to lock in parity and prevent regressions.
Proposed test additions
describe("computeBudgetConsumption", () => {
+ it("returns empty map for historical transactions", () => {
+ const result = computeBudgetConsumption(
+ makeTx({ type: TransactionType.EXPENSE, potId: "pot1", isHistorical: true }),
+ 1,
+ [makePot()],
+ );
+ expect(result.size).toBe(0);
+ });
@@
describe("computeSavingsMovement", () => {
+ it("returns empty map for historical transactions", () => {
+ const result = computeSavingsMovement(
+ makeTx({ type: TransactionType.INCOME, savingPocketId: "pocket1", isHistorical: true }),
+ 1,
+ [makePocket()],
+ );
+ expect(result.size).toBe(0);
+ });Also applies to: 266-311
🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
In `@src/lib/domain/__tests__/balance.engine.test.ts` around lines 219 - 264, Add
tests mirroring the existing isHistorical assertion for
computeAccountTransactionAmount: create test cases for computeBudgetConsumption
and computeSavingsMovement that pass transactions with isHistorical: true (using
makeTx) and assert the result flips sign (i.e., consumption/movement is
multiplied by -1) compared to the non-historical case; also include a historical
case for when no potId and when transaction is before pot reset date to ensure
size is 0/undefined as appropriate. Reference computeBudgetConsumption,
computeSavingsMovement, makeTx, makePot and TransactionType to locate where to
add these assertions.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Promotes
stagingtomain. This release bundles three strands of work plus the bugfix follow-ups from the most recent CodeRabbit review.Layered architecture refactor (PR #6)
src/lib/domain/— pure functions (no React, no I/O):balance.engine.ts,currency.ts,migration.ts,SearchOverlay,matchesSearchsrc/lib/application/commands/— orchestration, one file per domain (accounts, transactions, sync, goals, subscriptions, pots, pockets, migration, privacy, helpers)src/stores/— Zustand:finance.store,sync.store,mask.store,ui.storeDataProvider/DataContextremoved;context/directory deletedsrc/configured intsconfig.json+vite.config.tsDrop the vault (ADR-002, PR #8)
Accounttype dropscardNumber,cvv,expiry,holderName,accountNumber,details,isEncryptedProfiletype dropstotpSecret,vaultSalt,isSecurityEnabled,isVaultLocked,biometricCredId(s)Account.note(freeform unencrypted) added;Profile.schemaVersion: 2addedusePrivacyStore→useMaskStore(UI-only toggle renamed)security.services.ts,twofa.services.ts,biometric.services.tsmigration.ts) is temporary — self-healing, idempotent, hard v1→v2 cleanup; user confirms removal once both devices are on v2sheets.services.tsfilters legacy sensitive fields on save; Profile sheet header expanded to A1:J1TransactionForm.tsx:344comment ("Will be updated by DataProvider logic") left as-is (no functional impact)Stuck Sheets-toast fix (PR #9)
resetAndSync+syncDatanow re-throw 401 in three places insheets.services.ts; non-401 errors fall through to "Working offline" pathgetSpreadsheetIdsaved-ID catch: rethrows 401 withclearGapiAccessToken()so token-clearing is consistent with the drive.files.list pathauth.services.tsxupdateProfileusesupdatedP!.emailinstead of staleprofile.emailclosure for the cloud writefindUserrethrows 401 (other errors still returnnull) sohandleGoogleSuccesscan distinguish auth failure from "user not found" and not create a duplicate rowuseSyncStore.showToast(regression from PR Layered Architecture: Eliminate DataProvider bottleneck, finalize ADR-001 migration #6)sanitizeNoteregex scoped to PAN-length (13–19 digit word-boundary) + explicit CVV/CVC labelsFollow-ups / CodeRabbit review
account.notemasking inAccountPage— applied tofeature/drop-vault)Fixed Issues
Closes #1 — Refactor: Rename and split
computeBalanceDeltasinto three named functionsCloses #3 — Privacy store: migrate masking and vault from DataProvider (mask part done; vault part superseded by #7)
Closes #4 — Commands: extract remaining handlers from DataProvider
Closes #5 — Cleanup: remove DataProvider and DataContext
Closes #7 — Drop the vault: data minimization for a personal finance tracker
Verification
npx tsc --noEmit— cleannpm run test— 11 test files, 127 tests passFollow-ups (post-merge)
backend-index.jsfor CORS fix infinance-tracker-app-backendS(separate repo) + redeployrunVaultSchemaMigrationimports inProfile.tsx, then deletesrc/lib/application/commands/migration.tsandsrc/lib/domain/migration.tsaria-label/aria-pressed(only the mobile button was in the CodeRabbit findings list)components/TransactionForm.tsx:344Summary by CodeRabbit
New Features
Improvements
Chores