Merge branch 'main' into fix/show-more-cursor-and-transition

Author: Marve10s

.docs/scripts.md

@@ -5,7 +5,7 @@
 - `bun run dev:web` — Starts just the Vite dev server for the web app.
 - Dev commands default `T3CODE_STATE_DIR` to `~/.t3/dev` to keep dev state isolated from desktop/prod state.
 - Override server CLI-equivalent flags from root dev commands with `--`, for example:
-  `bun run dev -- --state-dir ~/.t3/another-dev-state`
+  `bun run dev -- --base-dir ~/.t3-2`
 - `bun run start` — Runs the production server (serves built web app as static files).
 - `bun run build` — Builds contracts, web app, and server through Turbo.
 - `bun run typecheck` — Strict TypeScript checks for all packages.

.gitattributes

@@ -0,0 +1,2 @@
+# git autocrlf=true converts LF to CRLF on Windows, causing issues with oxfmt
+* text=auto eol=lf

.github/VOUCHED.td

@@ -28,4 +28,5 @@ github:realAhmedRoach
 github:shiroyasha9
 github:Yash-Singh1
 github:eggfriedrice24
-github:Ymit24
+github:Ymit24
+github:shivamhwp

.github/workflows/pr-size.yml

@@ -24,32 +24,32 @@ jobs:
               {
                 name: "size:XS",
                 color: "0e8a16",
-                description: "0-9 changed lines (additions + deletions).",
+                description: "0-9 effective changed lines (test files excluded in mixed PRs).",
               },
               {
                 name: "size:S",
                 color: "5ebd3e",
-                description: "10-29 changed lines (additions + deletions).",
+                description: "10-29 effective changed lines (test files excluded in mixed PRs).",
               },
               {
                 name: "size:M",
                 color: "fbca04",
-                description: "30-99 changed lines (additions + deletions).",
+                description: "30-99 effective changed lines (test files excluded in mixed PRs).",
               },
               {
                 name: "size:L",
                 color: "fe7d37",
-                description: "100-499 changed lines (additions + deletions).",
+                description: "100-499 effective changed lines (test files excluded in mixed PRs).",
               },
               {
                 name: "size:XL",
                 color: "d93f0b",
-                description: "500-999 changed lines (additions + deletions).",
+                description: "500-999 effective changed lines (test files excluded in mixed PRs).",
               },
               {
                 name: "size:XXL",
                 color: "b60205",
-                description: "1,000+ changed lines (additions + deletions).",
+                description: "1,000+ effective changed lines (test files excluded in mixed PRs).",
               },
             ];
 
@@ -124,19 +124,49 @@ jobs:
       group: pr-size-${{ github.event.pull_request.number }}
       cancel-in-progress: true
     steps:
+      - name: Checkout base repository
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
       - name: Sync PR size label
         uses: actions/github-script@v8
         env:
           PR_SIZE_LABELS_JSON: ${{ needs.prepare-config.outputs.labels_json }}
         with:
           script: |
+            const { execFileSync } = require("node:child_process");
+
             const issueNumber = context.payload.pull_request.number;
-            const additions = context.payload.pull_request.additions ?? 0;
-            const deletions = context.payload.pull_request.deletions ?? 0;
-            const changedLines = additions + deletions;
+            const baseSha = context.payload.pull_request.base.sha;
+            const headSha = context.payload.pull_request.head.sha;
+            const headTrackingRef = `refs/remotes/pr-size/${issueNumber}`;
             const managedLabels = JSON.parse(process.env.PR_SIZE_LABELS_JSON ?? "[]");
-
             const managedLabelNames = new Set(managedLabels.map((label) => label.name));
+            // Keep this aligned with the repo's test entrypoints and test-only support files.
+            const testExcludePathspecs = [
+              ":(glob,exclude)**/__tests__/**",
+              ":(glob,exclude)**/test/**",
+              ":(glob,exclude)**/tests/**",
+              ":(glob,exclude)apps/server/integration/**",
+              ":(glob,exclude)**/*.test.*",
+              ":(glob,exclude)**/*.spec.*",
+              ":(glob,exclude)**/*.browser.*",
+              ":(glob,exclude)**/*.integration.*",
+            ];
+
+            const sumNumstat = (text) =>
+              text
+                .split("\n")
+                .filter(Boolean)
+                .reduce((total, line) => {
+                  const [insertionsRaw = "0", deletionsRaw = "0"] = line.split("\t");
+                  const additions =
+                    insertionsRaw === "-" ? 0 : Number.parseInt(insertionsRaw, 10) || 0;
+                  const deletions =
+                    deletionsRaw === "-" ? 0 : Number.parseInt(deletionsRaw, 10) || 0;
+
+                  return total + additions + deletions;
+                }, 0);
 
             const resolveSizeLabel = (totalChangedLines) => {
               if (totalChangedLines < 10) {
@@ -162,6 +192,55 @@ jobs:
               return "size:XXL";
             };
 
+            execFileSync("git", ["fetch", "--no-tags", "origin", baseSha], {
+              stdio: "inherit",
+            });
+
+            execFileSync(
+              "git",
+              ["fetch", "--no-tags", "origin", `+refs/pull/${issueNumber}/head:${headTrackingRef}`],
+              {
+                stdio: "inherit",
+              },
+            );
+
+            const resolvedHeadSha = execFileSync("git", ["rev-parse", headTrackingRef], {
+              encoding: "utf8",
+            }).trim();
+
+            if (resolvedHeadSha !== headSha) {
+              core.warning(
+                `Fetched head SHA ${resolvedHeadSha} does not match pull request head SHA ${headSha}; using fetched ref for sizing.`,
+              );
+            }
+
+            execFileSync("git", ["cat-file", "-e", `${baseSha}^{commit}`], {
+              stdio: "inherit",
+            });
+
+            const diffArgs = [
+              "diff",
+              "--numstat",
+              "--ignore-all-space",
+              "--ignore-blank-lines",
+              `${baseSha}...${resolvedHeadSha}`,
+            ];
+
+            const totalChangedLines = sumNumstat(
+              execFileSync(
+                "git",
+                diffArgs,
+                { encoding: "utf8" },
+              ),
+            );
+            const nonTestChangedLines = sumNumstat(
+              execFileSync("git", [...diffArgs, "--", ".", ...testExcludePathspecs], {
+                encoding: "utf8",
+              }),
+            );
+            const testChangedLines = Math.max(0, totalChangedLines - nonTestChangedLines);
+
+            const changedLines = nonTestChangedLines === 0 ? testChangedLines : nonTestChangedLines;
             const nextLabelName = resolveSizeLabel(changedLines);
 
             const { data: currentLabels } = await github.rest.issues.listLabelsOnIssue({
@@ -199,4 +278,15 @@ jobs:
               });
             }
 
-            core.info(`PR #${issueNumber}: ${changedLines} changed lines -> ${nextLabelName}`);
+            const classification =
+              nonTestChangedLines === 0
+                ? testChangedLines > 0
+                  ? "test-only PR"
+                  : "no line changes"
+                : testChangedLines > 0
+                  ? "test lines excluded"
+                  : "all non-test changes";
+
+            core.info(
+              `PR #${issueNumber}: ${nonTestChangedLines} non-test lines, ${testChangedLines} test lines, ${changedLines} effective lines -> ${nextLabelName} (${classification})`,
+            );

.gitignore

@@ -12,9 +12,12 @@ packages/*/dist
 build/
 .logs/
 release/
+release-mock/
 .t3
 .idea/
 apps/web/.playwright
 apps/web/playwright-report
 apps/web/src/components/__screenshots__
-.vitest-*
+.vitest-*
+__screenshots__/
+.tanstack

CLAUDE.md

@@ -1 +1 @@
-AGENTS.md
+AGENTS.md

README.md

@@ -2,18 +2,42 @@
 
 T3 Code is a minimal web GUI for coding agents (currently Codex and Claude, more coming soon).
 
-## How to use
+## Installation
 
 > [!WARNING]
-> You need to have [Codex CLI](https://github.com/openai/codex) installed and authorized for T3 Code to work.
+> T3 Code currently supports Codex and Claude.
+> Install and authenticate at least one provider before use:
+>
+> - Codex: install [Codex CLI](https://github.com/openai/codex) and run `codex login`
+> - Claude: install Claude Code and run `claude auth login`
+
+### Run without installing
 
 ```bash
 npx t3
 ```
 
-You can also just install the desktop app. It's cooler.
+### Desktop app
+
+Install the latest version of the desktop app from [GitHub Releases](https://github.com/pingdotgg/t3code/releases), or from your favorite package registry:
+
+#### Windows (`winget`)
+
+```bash
+winget install T3Tools.T3Code
+```
+
+#### macOS (Homebrew)
 
-Install the [desktop app from the Releases page](https://github.com/pingdotgg/t3code/releases)
+```bash
+brew install --cask t3-code
+```
+
+#### Arch Linux (AUR)
+
+```bash
+yay -S t3code-bin
+```
 
 ## Some notes
 

REMOTE.md

@@ -6,21 +6,24 @@ Use this when you want to open T3 Code from another device (phone, tablet, anoth
 
 The T3 Code CLI accepts the following configuration options, available either as CLI flags or environment variables:
 
-| CLI flag                | Env var               | Notes                              |
-| ----------------------- | --------------------- | ---------------------------------- |
-| `--mode <web\|desktop>` | `T3CODE_MODE`         | Runtime mode.                      |
-| `--port <number>`       | `T3CODE_PORT`         | HTTP/WebSocket port.               |
-| `--host <address>`      | `T3CODE_HOST`         | Bind interface/address.            |
-| `--state-dir <path>`    | `T3CODE_STATE_DIR`    | State directory.                   |
-| `--dev-url <url>`       | `VITE_DEV_SERVER_URL` | Dev web URL redirect/proxy target. |
-| `--no-browser`          | `T3CODE_NO_BROWSER`   | Disable auto-open browser.         |
-| `--auth-token <token>`  | `T3CODE_AUTH_TOKEN`   | WebSocket auth token.              |
+| CLI flag                | Env var               | Notes                                                                                |
+| ----------------------- | --------------------- | ------------------------------------------------------------------------------------ |
+| `--mode <web\|desktop>` | `T3CODE_MODE`         | Runtime mode.                                                                        |
+| `--port <number>`       | `T3CODE_PORT`         | HTTP/WebSocket port.                                                                 |
+| `--host <address>`      | `T3CODE_HOST`         | Bind interface/address.                                                              |
+| `--base-dir <path>`     | `T3CODE_HOME`         | Base directory.                                                                      |
+| `--dev-url <url>`       | `VITE_DEV_SERVER_URL` | Dev web URL redirect/proxy target.                                                   |
+| `--no-browser`          | `T3CODE_NO_BROWSER`   | Disable auto-open browser.                                                           |
+| `--auth-token <token>`  | `T3CODE_AUTH_TOKEN`   | WebSocket auth token. Use this for standard CLI and remote-server flows.             |
+| `--bootstrap-fd <fd>`   | `T3CODE_BOOTSTRAP_FD` | Read a one-shot bootstrap envelope from an inherited file descriptor during startup. |
 
 > TIP: Use the `--help` flag to see all available options and their descriptions.
 
 ## Security First
 
 - Always set `--auth-token` before exposing the server outside localhost.
+  - When you control the process launcher, prefer sending the auth token in a JSON envelope via `--bootstrap-fd <fd>`.
+    With `--bootstrap-fd <fd>`, the launcher starts the server first, then sends a one-shot JSON envelope over the inherited file descriptor. This allows the auth token to be delivered without putting it in process environment or command line arguments.
 - Treat the token like a password.
 - Prefer binding to trusted interfaces (LAN IP or Tailnet IP) instead of opening all interfaces unless needed.
 

apps/desktop/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@t3tools/desktop",
-  "version": "0.0.13",
+  "version": "0.0.15",
   "private": true,
   "main": "dist-electron/main.js",
   "scripts": {

apps/desktop/src/confirmDialog.ts

@@ -14,7 +14,7 @@ export async function showDesktopConfirmDialog(
   const options = {
     type: "question" as const,
     buttons: ["No", "Yes"],
-    defaultId: CONFIRM_BUTTON_INDEX,
+    defaultId: 0,
     cancelId: 0,
     noLink: true,
     message: normalizedMessage,