fix: harden claude code settings and subagent editing

Author: linhay

app_mappers.go

@@ -981,7 +981,7 @@ func mapClaudeCodeSubagentsSnapshot(result *wailsapp.ClaudeCodeSubagentsSnapshot
 			Name: a.Name, Description: a.Description, Path: a.Path, Scope: a.Scope,
 			FrontmatterValid: a.FrontmatterValid, FrontmatterError: a.FrontmatterError,
 			ValidationErrors: a.ValidationErrors, KnownFields: a.KnownFields,
-			UnknownFields: a.UnknownFields, BodyPreview: a.BodyPreview,
+			UnknownFields: a.UnknownFields, Body: a.Body, BodyPreview: a.BodyPreview,
 			IsPlugin: a.IsPlugin, IgnoredFields: a.IgnoredFields,
 		})
 	}
@@ -994,4 +994,3 @@ func mapClaudeCodeSubagentSaveResult(result *wailsapp.SaveClaudeCodeSubagentResu
 	}
 	return &SaveClaudeCodeSubagentResultDTO{Path: result.Path, Preview: result.Preview}
 }
-

app_types.go

@@ -373,15 +373,15 @@ type ClaudeCodeLocalApplyResult struct {
 }
 
 type ClaudeCodeLocalApplyOptions struct {
-	Model                      string `json:"model,omitempty"`
-	DefaultHaikuModel          string `json:"defaultHaikuModel,omitempty"`
-	DefaultSonnetModel         string `json:"defaultSonnetModel,omitempty"`
-	DefaultOpusModel           string `json:"defaultOpusModel,omitempty"`
-	SmallFastModel             string `json:"smallFastModel,omitempty"`
-	MaxOutputTokens            string `json:"maxOutputTokens,omitempty"`
-	APITimeoutMS               string `json:"apiTimeoutMs,omitempty"`
-	DisableNonEssentialTraffic  bool `json:"disableNonEssentialTraffic,omitempty"`
-	ClaudeCodeAttributionHeader bool `json:"claudeCodeAttributionHeader,omitempty"`
+	Model                       string `json:"model,omitempty"`
+	DefaultHaikuModel           string `json:"defaultHaikuModel,omitempty"`
+	DefaultSonnetModel          string `json:"defaultSonnetModel,omitempty"`
+	DefaultOpusModel            string `json:"defaultOpusModel,omitempty"`
+	SmallFastModel              string `json:"smallFastModel,omitempty"`
+	MaxOutputTokens             string `json:"maxOutputTokens,omitempty"`
+	APITimeoutMS                string `json:"apiTimeoutMs,omitempty"`
+	DisableNonEssentialTraffic  bool   `json:"disableNonEssentialTraffic,omitempty"`
+	ClaudeCodeAttributionHeader bool   `json:"claudeCodeAttributionHeader,omitempty"`
 }
 
 type UsageStatisticsResponse struct {
@@ -694,17 +694,17 @@ type SaveCodexSkillEnabledInput struct {
 }
 
 type ClaudeCodeSettingsSnapshotDTO struct {
-	ProjectPath string                     `json:"projectPath"`
-	Layers      []ClaudeCodeSettingsLayer  `json:"layers"`
-	Warnings    []string                   `json:"warnings,omitempty"`
+	ProjectPath string                    `json:"projectPath"`
+	Layers      []ClaudeCodeSettingsLayer `json:"layers"`
+	Warnings    []string                  `json:"warnings,omitempty"`
 }
 
 type ClaudeCodeSettingsLayer struct {
-	Scope       string                        `json:"scope"`
-	Path        string                        `json:"path"`
-	Exists      bool                          `json:"exists"`
-	ParseError  string                        `json:"parseError,omitempty"`
-	KnownFields *ClaudeCodeSettingsFieldsDTO  `json:"knownFields,omitempty"`
+	Scope       string                       `json:"scope"`
+	Path        string                       `json:"path"`
+	Exists      bool                         `json:"exists"`
+	ParseError  string                       `json:"parseError,omitempty"`
+	KnownFields *ClaudeCodeSettingsFieldsDTO `json:"knownFields,omitempty"`
 }
 
 type ClaudeCodeSettingsFieldsDTO struct {
@@ -727,8 +727,8 @@ type ClaudeCodeSettingsChangeDTO struct {
 }
 
 type PatchClaudeCodeSettingsResultDTO struct {
-	ConfigPath string                       `json:"configPath"`
-	Preview    string                       `json:"preview"`
+	ConfigPath string                        `json:"configPath"`
+	Preview    string                        `json:"preview"`
 	Changes    []ClaudeCodeSettingsChangeDTO `json:"changes"`
 }
 
@@ -929,83 +929,84 @@ type SessionManagementMessageRecord struct {
 	Summary   string `json:"summary"`
 	Content   string `json:"content"`
 	Truncated bool   `json:"truncated,omitempty"`
+}
+
+// CLAUDE.md Memory File types
+type ClaudeCodeMemoryFilesSnapshotDTO struct {
+	ProjectPath string                          `json:"projectPath"`
+	Files       []ClaudeCodeMemoryFileRecordDTO `json:"files"`
+	Warnings    []string                        `json:"warnings,omitempty"`
+}
+
+type ClaudeCodeMemoryFileRecordDTO struct {
+	Scope            string                          `json:"scope"`
+	Path             string                          `json:"path"`
+	Exists           bool                            `json:"exists"`
+	GitIgnored       bool                            `json:"gitIgnored,omitempty"`
+	Imports          []ClaudeCodeMemoryFileImportDTO `json:"imports,omitempty"`
+	Content          string                          `json:"content,omitempty"`
+	ContentTruncated bool                            `json:"contentTruncated,omitempty"`
+	Size             int64                           `json:"size"`
+}
+
+type ClaudeCodeMemoryFileImportDTO struct {
+	Raw      string `json:"raw"`
+	Resolved string `json:"resolved"`
+	Exists   bool   `json:"exists"`
+	Depth    int    `json:"depth"`
+}
+
+type SaveClaudeCodeMemoryFileInputDTO struct {
+	Path    string `json:"path"`
+	Content string `json:"content"`
+}
+
+type SaveClaudeCodeMemoryFileResultDTO struct {
+	Path    string `json:"path"`
+	Size    int64  `json:"size"`
+	Warning string `json:"warning,omitempty"`
+}
+
+// Subagents types
+type ClaudeCodeSubagentsSnapshotDTO struct {
+	UserPath    string                        `json:"userPath"`
+	ProjectPath string                        `json:"projectPath"`
+	Agents      []ClaudeCodeSubagentRecordDTO `json:"agents"`
+	Warnings    []string                      `json:"warnings,omitempty"`
+}
+
+type ClaudeCodeSubagentRecordDTO struct {
+	Name             string         `json:"name"`
+	Description      string         `json:"description"`
+	Path             string         `json:"path"`
+	Scope            string         `json:"scope"`
+	FrontmatterValid bool           `json:"frontmatterValid"`
+	FrontmatterError string         `json:"frontmatterError,omitempty"`
+	ValidationErrors []string       `json:"validationErrors,omitempty"`
+	KnownFields      map[string]any `json:"knownFields,omitempty"`
+	UnknownFields    map[string]any `json:"unknownFields,omitempty"`
+	Body             string         `json:"body,omitempty"`
+	BodyPreview      string         `json:"bodyPreview,omitempty"`
+	IsPlugin         bool           `json:"isPlugin,omitempty"`
+	IgnoredFields    []string       `json:"ignoredFields,omitempty"`
+}
+
+type SaveClaudeCodeSubagentInputDTO struct {
+	Scope         string         `json:"scope"`
+	Path          string         `json:"path"`
+	Name          string         `json:"name"`
+	Description   string         `json:"description"`
+	KnownFields   map[string]any `json:"knownFields,omitempty"`
+	UnknownFields map[string]any `json:"unknownFields,omitempty"`
+	Body          string         `json:"body"`
+}
+
+type SaveClaudeCodeSubagentResultDTO struct {
+	Path    string `json:"path"`
+	Preview string `json:"preview"`
+}
 
-	// CLAUDE.md Memory File types
-	type ClaudeCodeMemoryFilesSnapshotDTO struct {
-		ProjectPath string                         `json:"projectPath"`
-		Files       []ClaudeCodeMemoryFileRecordDTO `json:"files"`
-		Warnings    []string                       `json:"warnings,omitempty"`
-	}
-
-	type ClaudeCodeMemoryFileRecordDTO struct {
-		Scope            string                         `json:"scope"`
-		Path             string                         `json:"path"`
-		Exists           bool                           `json:"exists"`
-		GitIgnored       bool                           `json:"gitIgnored,omitempty"`
-		Imports          []ClaudeCodeMemoryFileImportDTO `json:"imports,omitempty"`
-		Content          string                         `json:"content,omitempty"`
-		ContentTruncated bool                           `json:"contentTruncated,omitempty"`
-		Size             int64                          `json:"size"`
-	}
-
-	type ClaudeCodeMemoryFileImportDTO struct {
-		Raw      string `json:"raw"`
-		Resolved string `json:"resolved"`
-		Exists   bool   `json:"exists"`
-		Depth    int    `json:"depth"`
-	}
-
-	type SaveClaudeCodeMemoryFileInputDTO struct {
-		Path    string `json:"path"`
-		Content string `json:"content"`
-	}
-
-	type SaveClaudeCodeMemoryFileResultDTO struct {
-		Path    string `json:"path"`
-		Size    int64  `json:"size"`
-		Warning string `json:"warning,omitempty"`
-	}
-
-	// Subagents types
-	type ClaudeCodeSubagentsSnapshotDTO struct {
-		UserPath    string                        `json:"userPath"`
-		ProjectPath string                        `json:"projectPath"`
-		Agents      []ClaudeCodeSubagentRecordDTO `json:"agents"`
-		Warnings    []string                      `json:"warnings,omitempty"`
-	}
-
-	type ClaudeCodeSubagentRecordDTO struct {
-		Name             string         `json:"name"`
-		Description      string         `json:"description"`
-		Path             string         `json:"path"`
-		Scope            string         `json:"scope"`
-		FrontmatterValid bool           `json:"frontmatterValid"`
-		FrontmatterError string         `json:"frontmatterError,omitempty"`
-		ValidationErrors []string       `json:"validationErrors,omitempty"`
-		KnownFields      map[string]any `json:"knownFields,omitempty"`
-		UnknownFields    map[string]any `json:"unknownFields,omitempty"`
-		BodyPreview      string         `json:"bodyPreview,omitempty"`
-		IsPlugin         bool           `json:"isPlugin,omitempty"`
-		IgnoredFields    []string       `json:"ignoredFields,omitempty"`
-	}
-
-	type SaveClaudeCodeSubagentInputDTO struct {
-		Scope         string         `json:"scope"`
-		Path          string         `json:"path"`
-		Name          string         `json:"name"`
-		Description   string         `json:"description"`
-		KnownFields   map[string]any `json:"knownFields,omitempty"`
-		UnknownFields map[string]any `json:"unknownFields,omitempty"`
-		Body          string         `json:"body"`
-	}
-
-	type SaveClaudeCodeSubagentResultDTO struct {
-		Path    string `json:"path"`
-		Preview string `json:"preview"`
-	}
-
-	type DeleteClaudeCodeSubagentInputDTO struct {
-		Scope string `json:"scope"`
-		Path  string `json:"path"`
-	}
+type DeleteClaudeCodeSubagentInputDTO struct {
+	Scope string `json:"scope"`
+	Path  string `json:"path"`
 }

docs-linhay/memory/2026-05-22.md

@@ -159,3 +159,9 @@
 - 已推送 `master` 与 tag `v1.0.20`；GitHub Release 地址：https://github.com/AxApp/GetTokens/releases/tag/v1.0.20。
 - Release workflow `26282156016` 成功完成，产物包含 Apple Silicon / Intel 的 DMG、tar.gz 与 `checksums.txt`，并更新分架构 Sparkle appcast。
 - 分发校验已通过：`shasum -a 256 -c checksums.txt`、两个 DMG 的 Gatekeeper `spctl`、两个 DMG 的 `xcrun stapler validate`、包内 app `codesign -dv --verbose=4`、主程序与 `cli-proxy-api` 架构、`CFBundleShortVersionString=1.0.20`、`CFBundleVersion=1.0.20`、分架构 `SUFeedURL` 与远端 appcast 指向均通过。
+
+## Claude Code settings/subagents 审计修复
+- 根因：`PatchClaudeCodeSettings` 信任前端传入 path，可写入 scope 外 JSON；Subagents 后端只返回截断 `bodyPreview`，前端编辑会把截断内容当完整 body 保存并丢失 frontmatter；Subagents 新建按钮把空字符串 `editingPath` 误判为编辑态；Settings 通用 Edit/Cancel/Save 控件未接线。
+- 修复：settings patch 统一按 scope 解析默认路径并拒绝 scope 外 path；subagent snapshot 返回完整 `body`，保存时保留 known/unknown frontmatter；前端编辑使用完整 body，并修正新建按钮与 settings 编辑按钮回调。
+- 补充：修复 `app_types.go` 中 Claude Code Memory/Subagents DTO 被误嵌入 `SessionManagementMessageRecord` 的结构问题，并同步 Wails 绑定到 `*DTO` 类型；Claude Code Memory/Subagents/Settings 三个 story 已补齐设计系统 Overview 和 admitted manifest。
+- 验证：`go test ./...`、`npm --prefix frontend run typecheck`、`npm --prefix frontend run test:unit` 通过；新增 settings scope 越界拒绝、subagent 完整 body 暴露、frontmatter 保留和 settings 编辑回调回归测试。

frontend/package-lock.json

@@ -1,7 +1,7 @@
 {
   "name": "gettokens-frontend",
   "private": true,
-  "version": "1.0.20",
+  "version": "1.0.21",
   "type": "module",
   "scripts": {
     "dev": "vite",

frontend/package.json

@@ -1 +1 @@
-8e2666598a55cc5bf1d44dd15af321a6
+f6c6e0669fd3f49877ad376c85a2186d

frontend/package.json.md5

@@ -64,13 +64,13 @@ test('Generated Wails bindings expose CLAUDE.md DTOs', () => {
 
   assert.match(appSource, /export function GetClaudeCodeMemoryFilesSnapshot\(\)/);
   assert.match(appSource, /export function SaveClaudeCodeMemoryFile\(arg1\)/);
-  assert.match(appTypes, /GetClaudeCodeMemoryFilesSnapshot\(\):Promise<main\.ClaudeCodeMemoryFilesSnapshot>/);
-  assert.match(appTypes, /SaveClaudeCodeMemoryFile\(arg1:main\.SaveClaudeCodeMemoryFileInput\):Promise<main\.SaveClaudeCodeMemoryFileResult>/);
-  assert.match(modelSource, /export class ClaudeCodeMemoryFilesSnapshot/);
-  assert.match(modelSource, /export class ClaudeCodeMemoryFileRecord/);
-  assert.match(modelSource, /export class ClaudeCodeMemoryFileImport/);
-  assert.match(modelSource, /export class SaveClaudeCodeMemoryFileInput/);
-  assert.match(modelSource, /export class SaveClaudeCodeMemoryFileResult/);
+  assert.match(appTypes, /GetClaudeCodeMemoryFilesSnapshot\(\):Promise<main\.ClaudeCodeMemoryFilesSnapshotDTO>/);
+  assert.match(appTypes, /SaveClaudeCodeMemoryFile\(arg1:main\.SaveClaudeCodeMemoryFileInputDTO\):Promise<main\.SaveClaudeCodeMemoryFileResultDTO>/);
+  assert.match(modelSource, /export class ClaudeCodeMemoryFilesSnapshotDTO/);
+  assert.match(modelSource, /export class ClaudeCodeMemoryFileRecordDTO/);
+  assert.match(modelSource, /export class ClaudeCodeMemoryFileImportDTO/);
+  assert.match(modelSource, /export class SaveClaudeCodeMemoryFileInputDTO/);
+  assert.match(modelSource, /export class SaveClaudeCodeMemoryFileResultDTO/);
 });
 
 test('Local file not gitignored shows warning', () => {

frontend/src/features/claude-code/claude-md/ClaudeMdFeature.test.mjs

@@ -7,15 +7,15 @@ import type { MemoryFilesPanelState } from '../components/ClaudeCodeMemoryFilesP
 import { previewAllFilesSnapshot, previewEmptySnapshot } from './previewData';
 
 export default function ClaudeMdFeature() {
-  const [snapshot, setSnapshot] = useState<main.ClaudeCodeMemoryFilesSnapshot>(previewAllFilesSnapshot);
+  const [snapshot, setSnapshot] = useState<main.ClaudeCodeMemoryFilesSnapshotDTO>(previewAllFilesSnapshot);
   const [loadError, setLoadError] = useState('');
   const [editingPath, setEditingPath] = useState('');
   const [editContent, setEditContent] = useState('');
   const [savePreview, setSavePreview] = useState('');
   const [saveError, setSaveError] = useState('');
   const [saving, setSaving] = useState(false);
 
-  const { files, warnings } = snapshot;
+  const { files, warnings = [] } = snapshot;
 
   const state = useMemo<MemoryFilesPanelState>(() => {
     const existing = files.filter((f) => f.exists);