Add review-patch command for interactive patch inspection#1290
Open
spoorcc wants to merge 18 commits into
Open
Add review-patch command for interactive patch inspection#1290spoorcc wants to merge 18 commits into
spoorcc wants to merge 18 commits into
Conversation
Contributor
|
Note Reviews pausedIt looks like this branch is under active development. To avoid overwhelming you with review comments due to an influx of new commits, CodeRabbit has automatically paused this review. You can configure this behavior by changing the Use the following commands to manage reviews:
Use the checkboxes below for quick actions:
WalkthroughAdds the Changesreview-patch command feature
Estimated code review effort🎯 4 (Complex) | ⏱️ ~60 minutes Possibly related issues
Possibly related PRs
Suggested labels
Suggested reviewers
🚥 Pre-merge checks | ✅ 4 | ❌ 1❌ Failed checks (1 warning)
✅ Passed checks (4 passed)
✏️ Tip: You can configure your own custom pre-merge checks in the settings. ✨ Finishing Touches📝 Generate docstrings
🧪 Generate unit tests (beta)
Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out. Comment |
![github-code-quality[bot]](https://avatars.githubusercontent.com/u/9919?s=60&v=4){kind=small}
![coderabbitai[bot]](https://avatars.githubusercontent.com/in/347564?s=60&v=4){kind=small}
Contributor
There was a problem hiding this comment.
Actionable comments posted: 5
🤖 Prompt for all review comments with AI agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
Inline comments:
In `@dfetch/commands/review_patch.py`:
- Around line 113-200: The `_review_project` method has too many branches and
conditional paths, exceeding the cyclomatic complexity limit of 8. Extract the
guard validations (checking for patch existence, on_disk_version, and local
changes) into a separate helper method that returns early if validation fails,
move the interactive review logic and non-interactive logic into their own
helper methods, and simplify the main method to orchestrate validation,
application, and restoration in a clearer sequence. This will distribute the
branching logic across focused helper methods while keeping the main method as a
clear orchestrator.
- Around line 70-78: The --count argument lacks validation, allowing negative
integers that produce unexpected Python slice behavior rather than a meaningful
CLI contract. Add a custom type validator to the add_argument call for --count
to ensure only positive integers are accepted. Additionally, update the logic
around line 173 where the raw count is forwarded to patch_count to validate
against negative values and clamp to valid ranges. Finally, modify the reporting
logic around line 181 to track and report the actual number of patches that were
successfully applied, not the requested count, since the effective count may
differ from what was requested.
- Around line 183-187: The logger.print_info_line call in the review_patch
function currently hardcodes the instruction to use git diff, but this is
inconsistent with non-Git superprojects like SVN that should use their own diff
commands. Make the diff command suggestion in the message VCS-aware by checking
the project's VCS type and conditionally including the appropriate diff command
(git diff for Git projects, svn diff for SVN projects, etc.) in the status
message printed to the user.
In `@dfetch/vcs/git.py`:
- Around line 785-793: Add the `--` separator before the path argument in both
the add_path and restore_staged methods to prevent Git from interpreting
option-style paths as flags. In add_path, insert `"--"` between `"add"` and
`path` in the command list passed to run_on_cmdline. In restore_staged, insert
`"--"` between `"--staged"` and `path` in the command list passed to
run_on_cmdline. This ensures Git treats the path as a positional argument rather
than a potential option flag.
In `@tests/test_review_patch.py`:
- Around line 79-97: Add a new test function to validate that negative count
values are rejected by the ReviewPatch command. Create a test that instantiates
ReviewPatch, mocks the required dependencies (create_super_project,
create_sub_project, in_directory, is_tty) similar to
test_review_count_1_uses_patch_count_1, and then calls cmd(_make_args(count=-1))
while asserting that this raises an appropriate validation error or exception.
This ensures the CLI contract maintains count-based validation and prevents
regression to slice-driven behavior for negative values.
🪄 Autofix (Beta)
Fix all unresolved CodeRabbit comments on this PR:
- Push a commit to this branch (recommended)
- Create a new PR with the fixes
ℹ️ Review info
⚙️ Run configuration
Configuration used: Path: .coderabbit.yaml
Review profile: ASSERTIVE
Plan: Pro
Run ID: 1290abec-833f-46ef-9d9d-5ff586b6111b
📒 Files selected for processing (11)
CHANGELOG.rstdfetch/__main__.pydfetch/commands/command.pydfetch/commands/review_patch.pydfetch/commands/update_patch.pydfetch/project/gitsuperproject.pydfetch/vcs/git.pydoc/howto/patching.rstfeatures/review-patch-in-git.featurefeatures/review-patch-in-svn.featuretests/test_review_patch.py
| import argparse | ||
| import tempfile | ||
| from pathlib import Path | ||
| from unittest.mock import ANY, Mock, call, patch |
Introduces `dfetch review-patch` which stages the clean upstream source in the git index and applies the selected patches to the working tree, so any diff-aware editor sees `git diff` (working tree vs index) showing exactly what the patches contribute. The command always restores original state on exit — no permanent changes to working tree or index. - New command: dfetch/commands/review_patch.py with --count/-n, --interactive/-i - GitSuperProject.add_path() and restore_staged() methods for index control - GitLocalRepo.add_path() and restore_staged() as git-level primitives - SVN superprojects supported (with a warning; no staging step) - Interactive TUI uses read_key()/Screen for ← → step-through - 8 unit tests, 4 git BDD scenarios - Documentation and changelog updated Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> Claude-Session: https://claude.ai/code/session_017zY8BoH65KBX6cz7Pm8aeF
- Extract shared project-iteration loop into Command._iter_projects to eliminate duplicate code between review_patch and update_patch (R0801) - Fix import order: review_patch before update in __main__.py (isort) - Remove redundant `import dfetch.project` in review_patch; import create_sub_project directly instead (code review finding) - Remove unused MagicMock import from test_review_patch (code review finding) - Update test patch targets to match new import locations Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> Claude-Session: https://claude.ai/code/session_017zY8BoH65KBX6cz7Pm8aeF
- Add `dfetch review-patch` step after `dfetch update-patch` in both the `run` (all platforms) and `test-cygwin` jobs in run.yml - Add `review-patch-demo.sh` cast generation script (mirrors update-patch-demo.sh; pipes stdin to avoid blocking on input()) - Register the demo in generate-casts.sh after the update-patch line - Add synthetic review-patch.cast (asciicast v2) showing the full flow: manifest inspection, patch preview, staging, and restore - Wire `.. asciinema:: ../asciicasts/review-patch.cast` into the Reviewing a patch section of doc/howto/patching.rst Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> Claude-Session: https://claude.ai/code/session_017zY8BoH65KBX6cz7Pm8aeF
In the default (all-patches) case review-patch was fetching three times: once for clean upstream, once to apply all patches, and once more in the finally block to "restore" — even though the working tree was already fully patched after the second fetch. Track worktree_fully_patched after the non-interactive update call and skip the finally fetch when the working tree is already at patch_count=-1. The --count N and --interactive paths still re-fetch because the final working-tree state differs from fully patched. Update tests and the synthetic demo cast accordingly. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> Claude-Session: https://claude.ai/code/session_017zY8BoH65KBX6cz7Pm8aeF
After the initial update(patch_count=0) puts clean upstream in the working tree there is no reason to re-fetch for any subsequent step. - Add SubProject.apply_patches(count) — applies patch files to the already-fetched working tree without going back to the remote. - Add GitSuperProject.restore_worktree(path) / GitLocalRepo.restore_worktree — runs `git restore <path>` to reset the working tree from the staged index (which holds clean upstream throughout the review session). - Non-interactive: replace the second update() call with apply_patches(). Git all-patches case: 1 fetch total (was 2). Git --count N case: 1 fetch + restore_worktree + apply_patches (was 3). - Interactive TUI: replace per-step update() calls with direct patch apply/reverse (Patch.from_file().apply() / .reverse().apply()). No fetch at all during stepping, for both Git and SVN. - Finally block (Git): restore_worktree + apply_patches instead of a re-fetch. SVN still re-fetches when the worktree is not fully patched (no staged index to restore from). Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> Claude-Session: https://claude.ai/code/session_017zY8BoH65KBX6cz7Pm8aeF
Extract _can_review_project, _apply_review, _restore_project, _draw_tui_frame, and _apply_step as module-level helpers so every function stays below the CC=8 limit enforced by CI. Black-format tests to match. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> Claude-Session: https://claude.ai/code/session_017zY8BoH65KBX6cz7Pm8aeF
After the refactor, review-patch does only one fetch (clean upstream) and applies/reverses patches directly without re-fetching. The expected output in the BDD scenarios previously included 3 Fetched lines; update them to reflect the new single-fetch flow. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> Claude-Session: https://claude.ai/code/session_017zY8BoH65KBX6cz7Pm8aeF
…ff cmd - Reject --count < 0 with a RuntimeError early in __call__ - Add test_negative_count_raises to prevent regression - Add -- separator before path in git add, git restore --staged, and git restore to prevent option-style paths being parsed as flags - Show `svn diff` in the status message for SVN superprojects instead of always saying `git diff` - Clamp reported patch count to min(requested, total) so the message reflects patches actually applied rather than the raw CLI argument - Add review-patch to the dfetch_cli threat-model description, noting the transient git index mutation and interruption risk - Reduce _apply_review to 5 args by pre-computing chosen_count and info_msg in _review_project (fixes pylint too-many-arguments) Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> Claude-Session: https://claude.ai/code/session_017zY8BoH65KBX6cz7Pm8aeF
Remove the second (now-eliminated) fetch from the cast, regenerate with agg to produce an animated GIF showing the single-fetch flow. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> Claude-Session: https://claude.ai/code/session_017zY8BoH65KBX6cz7Pm8aeF
- Replace sp.__class__ = GitSuperProject/NoVcsSuperProject with Mock(spec=...) so isinstance() checks work without unsafe __class__ mutation that pyright rejects - Add str | None type annotation to on_disk_version parameter so passing None in test_never_fetched_logs_warning_and_skips is valid Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> Claude-Session: https://claude.ai/code/session_017zY8BoH65KBX6cz7Pm8aeF
Replace is_git: bool + assert isinstance(superproject, GitSuperProject) pattern with git_super: GitSuperProject | None so the type checker tracks the narrowed type directly — no assert needed. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> Claude-Session: https://claude.ai/code/session_017zY8BoH65KBX6cz7Pm8aeF
update(patch_count=0) writes patch: '' to the metadata file. The restore path fixes the working tree but apply_patches() has no metadata-writing logic, leaving the metadata file missing the patch list. Fix: snapshot the metadata file bytes before the clean-upstream fetch and write them back in the finally block after restore completes. Add a BDD step "the metadata of ... lists patch ..." and assert it in both Git and SVN review-patch scenarios to pin the invariant. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> Claude-Session: https://claude.ai/code/session_017zY8BoH65KBX6cz7Pm8aeF
Instead of asserting the patch field in dfetch_data.yaml directly, verify from the user's VCS perspective: git status --porcelain SomeProject must report nothing after review-patch exits, covering both the working tree files and the metadata file in one shot. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> Claude-Session: https://claude.ai/code/session_017zY8BoH65KBX6cz7Pm8aeF
patch_ng logs "successfully patched N/M: file" via Python logging when Patch.apply() is called. In the TUI loop this output appears between frames, so Screen.draw()'s cursor-up count is wrong and the help line gets duplicated on each arrow keypress. Suppress the patch_ng logger to CRITICAL for the duration of each LEFT/RIGHT apply/reverse operation inside the TUI loop. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> Claude-Session: https://claude.ai/code/session_017zY8BoH65KBX6cz7Pm8aeF
If Patch.apply() or Patch.reverse().apply() raises RuntimeError during the interactive stepper, the TUI frame was left on screen while the error and 'restored' messages printed below it. Catch RuntimeError in _step_tui, clear the screen, then re-raise so the existing try/finally in _review_project still runs _restore_project (working tree and metadata are always restored), and _iter_projects logs the error under the project name as usual. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> Claude-Session: https://claude.ai/code/session_017zY8BoH65KBX6cz7Pm8aeF
The old restore path did restore_worktree (WT = staged = clean upstream) followed by apply_patches(), which would hit the same failing patch and raise again, leaving the index staged, the metadata corrupted, and the working tree in the wrong state. Replace with restore_from_head (git restore --source=HEAD --staged --worktree -- <path>) which atomically resets both the working tree and the index to the committed HEAD state without re-applying patches. This makes restore unconditionally safe regardless of patch health. Also nest the metadata write_bytes in its own try/finally so the dfetch_data.yaml snapshot is always restored even if _restore_project encounters an error (e.g. SVN path where apply_patches can still fail). Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> Claude-Session: https://claude.ai/code/session_017zY8BoH65KBX6cz7Pm8aeF
spoorcc
force-pushed
the
claude/review-patch-command-xyosoo
branch
from
cfc9798 to
6312b9a
Compare
Contributor
There was a problem hiding this comment.
Actionable comments posted: 7
🤖 Prompt for all review comments with AI agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
Inline comments:
In `@dfetch/commands/review_patch.py`:
- Line 260: The Ctrl-C handler is currently catching KeyboardInterrupt, clearing
the screen, and returning normally, but the UI message advertises "Ctrl-C abort"
which implies the command should abort. Locate the exception handlers that catch
KeyboardInterrupt (near lines 260 and 319-321 in the review_patch.py file) and
modify them to re-raise the KeyboardInterrupt exception after clearing the
screen, rather than returning normally. This will allow the outer finally block
to restore state before the command properly aborts.
- Line 47: The import statement in review_patch.py violates the command-layer
dependency boundary by directly importing from dfetch.terminal, which is not an
allowed dependency. The imports of Screen, is_tty, read_key, BOLD, DIM, and
RESET must be sourced from one of the allowed layers (dfetch.reporting,
dfetch.project, dfetch.manifest, dfetch.vcs, dfetch.util, or dfetch.log). Either
move these terminal primitives to one of the allowed modules or create a
wrapper/facade in an allowed module that exposes these utilities, then update
the import in review_patch.py to import from the allowed layer instead of
directly from dfetch.terminal.
- Around line 137-147: The mutations to the subproject via subproject.update()
and to git_super via git_super.add_path() are occurring before the try/finally
restore guard begins, which means if either call fails, the restore mechanism in
the finally block will not execute and the worktree/index could be left in an
inconsistent state. Move the subproject.update() call (with patch_count=0) and
the conditional git_super.add_path() call to occur after the try block starts,
so they are protected by the restore guard in the finally block. The same issue
also applies to the code in the range around lines 159-174, so ensure all
mutations that need protection occur within the try block.
- Around line 183-202: The ReviewPatch functionality needs to validate patch
files exist and are accessible before treating them as applicable or performing
worktree operations. Add comprehensive patch file validation in the ReviewPatch
method that performs checks similar to those shown in the diff (verifying patch
existence via subproject.patch, confirming the subproject version exists via
on_disk_version(), and checking for local changes via
has_local_changes_in_dir()) to ensure that chosen_count == -1 or any decision to
apply patches is only made when the patch file is actually valid and accessible.
Ensure this validation logic is applied consistently across all locations where
patches are processed (including the locations at lines 217-221, 233-246, and
290-297) before any worktree replacement operations occur, and validate the
actual patch file object when calling Patch.from_file to catch missing or
out-of-root patch files early.
In `@dfetch/project/subproject.py`:
- Around line 90-97: The apply_patches method accepts a count parameter but does
not validate the input, allowing invalid values like -2 to be passed and cause
unexpected behavior in the slicing logic. Add a validation guard at the
beginning of the apply_patches method that raises a ValueError if count is less
than -1, ensuring only -1 (meaning all patches) or positive values are accepted
as documented in the docstring.
In `@features/steps/git_steps.py`:
- Around line 264-266: In the subprocess.check_output call for the git status
command, add the `--` separator argument between the `--porcelain` option and
the path argument to prevent paths starting with a hyphen from being interpreted
as git options. Modify the command list from `["git", "status", "--porcelain",
path]` to `["git", "status", "--porcelain", "--", path]`.
- Line 10: Move the no-name-in-module pylint suppression from the inline comment
on the import statement (from behave import given, then, when) to the
module-level header. Locate the existing pylint disable comment on line 3 in the
module header and add no-name-in-module to that existing disable list, then
remove the inline # pylint: disable=no-name-in-module comment from the import
statement on line 10.
🪄 Autofix (Beta)
Fix all unresolved CodeRabbit comments on this PR:
- Push a commit to this branch (recommended)
- Create a new PR with the fixes
ℹ️ Review info
⚙️ Run configuration
Configuration used: Path: .coderabbit.yaml
Review profile: ASSERTIVE
Plan: Pro
Run ID: 8c8ecd44-472d-43c4-89d7-b69bfa272e16
⛔ Files ignored due to path filters (1)
doc/asciicasts/review-patch.gifis excluded by!**/*.gif
📒 Files selected for processing (18)
.github/workflows/run.ymlCHANGELOG.rstdfetch/__main__.pydfetch/commands/command.pydfetch/commands/review_patch.pydfetch/commands/update_patch.pydfetch/project/gitsuperproject.pydfetch/project/subproject.pydfetch/vcs/git.pydoc/asciicasts/review-patch.castdoc/generate-casts/generate-casts.shdoc/generate-casts/review-patch-demo.shdoc/howto/patching.rstfeatures/review-patch-in-git.featurefeatures/review-patch-in-svn.featurefeatures/steps/git_steps.pysecurity/tm_usage.pytests/test_review_patch.py
| from dfetch.project.gitsuperproject import GitSuperProject | ||
| from dfetch.project.subproject import SubProject | ||
| from dfetch.project.superproject import NoVcsSuperProject, SuperProject | ||
| from dfetch.terminal import BOLD, DIM, RESET, Screen, is_tty, read_key |
Contributor
There was a problem hiding this comment.
📐 Maintainability & Code Quality | 🟠 Major | 🏗️ Heavy lift
Route terminal primitives through an allowed layer.
dfetch.commands.review_patch imports dfetch.terminal directly, which violates the command-layer dependency boundary. Move or expose Screen, is_tty, read_key, and the style constants through an allowed lower layer before merging.
As per coding guidelines, dfetch/commands/*.py commands may only import from dfetch.reporting, dfetch.project, dfetch.manifest, dfetch.vcs, dfetch.util, and dfetch.log.
🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
In `@dfetch/commands/review_patch.py` at line 47, The import statement in
review_patch.py violates the command-layer dependency boundary by directly
importing from dfetch.terminal, which is not an allowed dependency. The imports
of Screen, is_tty, read_key, BOLD, DIM, and RESET must be sourced from one of
the allowed layers (dfetch.reporting, dfetch.project, dfetch.manifest,
dfetch.vcs, dfetch.util, or dfetch.log). Either move these terminal primitives
to one of the allowed modules or create a wrapper/facade in an allowed module
that exposes these utilities, then update the import in review_patch.py to
import from the allowed layer instead of directly from dfetch.terminal.
Source: Coding guidelines
Comment on lines
+137
to
+147
| saved_metadata = Path(subproject.metadata_path).read_bytes() | ||
| total_patches = len(list(subproject.patch)) | ||
| subproject.update( | ||
| force=True, | ||
| ignored_files_callback=_ignored, | ||
| patch_count=0, | ||
| eol_preferences_callback=superproject.eol_preferences, | ||
| ) | ||
|
|
||
| if git_super is not None: | ||
| git_super.add_path(subproject.local_path) |
Contributor
There was a problem hiding this comment.
🗄️ Data Integrity & Integration | 🟠 Major | ⚡ Quick win
Start the restore guard before mutating the project.
subproject.update(... patch_count=0) and git_super.add_path(...) both mutate the worktree/index before the try/finally begins. If either raises, the command can leave the project at clean upstream or with a staged index, bypassing the restore path.
🛡️ Proposed restore-scope fix
saved_metadata = Path(subproject.metadata_path).read_bytes()
total_patches = len(list(subproject.patch))
- subproject.update(
- force=True,
- ignored_files_callback=_ignored,
- patch_count=0,
- eol_preferences_callback=superproject.eol_preferences,
- )
-
- if git_super is not None:
- git_super.add_path(subproject.local_path)
-
chosen_count = count if count is not None else -1
effective = (
total_patches if chosen_count == -1 else min(chosen_count, total_patches)
)
@@
)
worktree_fully_patched = False
try:
+ subproject.update(
+ force=True,
+ ignored_files_callback=_ignored,
+ patch_count=0,
+ eol_preferences_callback=superproject.eol_preferences,
+ )
+
+ if git_super is not None:
+ git_super.add_path(subproject.local_path)
+
worktree_fully_patched = _apply_review(
subproject, project.name, chosen_count, interactive, info_msg
)Also applies to: 159-174
🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
In `@dfetch/commands/review_patch.py` around lines 137 - 147, The mutations to the
subproject via subproject.update() and to git_super via git_super.add_path() are
occurring before the try/finally restore guard begins, which means if either
call fails, the restore mechanism in the finally block will not execute and the
worktree/index could be left in an inconsistent state. Move the
subproject.update() call (with patch_count=0) and the conditional
git_super.add_path() call to occur after the try block starts, so they are
protected by the restore guard in the finally block. The same issue also applies
to the code in the range around lines 159-174, so ensure all mutations that need
protection occur within the try block.
Comment on lines
+183
to
+202
| if not subproject.patch: | ||
| logger.print_warning_line( | ||
| project_name, | ||
| 'skipped - there is no patch file, use "dfetch diff"' | ||
| f" {project_name} to create one", | ||
| ) | ||
| return False | ||
| if not subproject.on_disk_version(): | ||
| logger.print_warning_line( | ||
| project_name, | ||
| f'skipped - the project was never fetched, use "dfetch update {project_name}"', | ||
| ) | ||
| return False | ||
| if superproject.has_local_changes_in_dir(subproject.local_path): | ||
| logger.print_warning_line( | ||
| project_name, | ||
| f"skipped - uncommitted changes in {subproject.local_path}", | ||
| ) | ||
| return False | ||
| return True |
Contributor
There was a problem hiding this comment.
🗄️ Data Integrity & Integration | 🟠 Major | ⚡ Quick win
Validate patch files before replacing the worktree.
SubProject._apply_patches skips missing or out-of-root patch files, but ReviewPatch still treats chosen_count == -1 as fully restored/applicable and may only unstage Git afterwards. A missing patch can leave the working tree at clean upstream instead of the original patched state; interactive mode also feeds raw manifest paths directly to Patch.from_file.
🛡️ Proposed pre-validation shape
-from collections.abc import Callable, Generator
+from collections.abc import Callable, Generator, Sequence
@@
def _can_review_project(
@@
return True
+
+
+def _patch_paths_for_review(
+ patches: Sequence[str],
+ project_name: str,
+) -> list[str] | None:
+ """Return normalized patch paths, or None when review should be skipped."""
+ cwd = Path(".").resolve()
+ normalized: list[str] = []
+ for patch in patches:
+ patch_path = (cwd / patch).resolve()
+ try:
+ relative_patch_path = patch_path.relative_to(cwd)
+ except ValueError:
+ logger.print_warning_line(
+ project_name,
+ f'skipped - patch "{patch}" is outside {cwd}',
+ )
+ return None
+ if not patch_path.exists():
+ logger.print_warning_line(
+ project_name,
+ f'skipped - patch "{patch}" does not exist',
+ )
+ return None
+ normalized.append(relative_patch_path.as_posix())
+ return normalized if not _can_review_project(superproject, subproject, project.name):
return
+ patches = _patch_paths_for_review(subproject.patch, project.name)
+ if patches is None:
+ return
+
saved_metadata = Path(subproject.metadata_path).read_bytes()
- total_patches = len(list(subproject.patch))
+ total_patches = len(patches)
@@
worktree_fully_patched = _apply_review(
- subproject, project.name, chosen_count, interactive, info_msg
+ subproject, project.name, chosen_count, interactive, info_msg, patches
) def _apply_review(
subproject: SubProject,
project_name: str,
chosen_count: int,
interactive: bool,
info_msg: str,
+ patches: list[str],
) -> bool:
@@
if interactive:
- _step_tui(list(subproject.patch), subproject.local_path, project_name)
+ _step_tui(patches, subproject.local_path, project_name)
return FalseAlso applies to: 217-221, 233-246, 290-297
🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
In `@dfetch/commands/review_patch.py` around lines 183 - 202, The ReviewPatch
functionality needs to validate patch files exist and are accessible before
treating them as applicable or performing worktree operations. Add comprehensive
patch file validation in the ReviewPatch method that performs checks similar to
those shown in the diff (verifying patch existence via subproject.patch,
confirming the subproject version exists via on_disk_version(), and checking for
local changes via has_local_changes_in_dir()) to ensure that chosen_count == -1
or any decision to apply patches is only made when the patch file is actually
valid and accessible. Ensure this validation logic is applied consistently
across all locations where patches are processed (including the locations at
lines 217-221, 233-246, and 290-297) before any worktree replacement operations
occur, and validate the actual patch file object when calling Patch.from_file to
catch missing or out-of-root patch files early.
| """Render the current patch-stack state to the screen.""" | ||
| count_label = str(current) if current < total else "all" | ||
| lines: list[str] = [ | ||
| f" {DIM}← → step Enter restore and exit Ctrl-C abort{RESET}", |
Contributor
There was a problem hiding this comment.
🎯 Functional Correctness | 🟠 Major | ⚡ Quick win
Do not swallow Ctrl-C when the UI says abort.
The frame advertises Ctrl-C abort, but the handler clears the screen and returns normally. Re-raise after clearing so the command aborts after the outer finally restores state.
🛠️ Proposed signal-handling fix
try:
key = read_key()
except KeyboardInterrupt:
screen.clear()
- return
+ raiseAlso applies to: 319-321
🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
In `@dfetch/commands/review_patch.py` at line 260, The Ctrl-C handler is currently
catching KeyboardInterrupt, clearing the screen, and returning normally, but the
UI message advertises "Ctrl-C abort" which implies the command should abort.
Locate the exception handlers that catch KeyboardInterrupt (near lines 260 and
319-321 in the review_patch.py file) and modify them to re-raise the
KeyboardInterrupt exception after clearing the screen, rather than returning
normally. This will allow the outer finally block to restore state before the
command properly aborts.
Comment on lines
+90
to
+97
| def apply_patches(self, count: int = -1) -> None: | ||
| """Apply patches to the already-fetched working tree without fetching from remote. | ||
|
|
||
| Args: | ||
| count: Number of patches to apply (-1 means all). | ||
| """ | ||
| self._apply_patches(count) | ||
|
|
Contributor
There was a problem hiding this comment.
🎯 Functional Correctness | 🟡 Minor | ⚡ Quick win
Validate count in the new public API to reject unsupported negative values.
Line 90 exposes count publicly, but values like -2 flow into slicing logic and apply an unintended subset of patches, which contradicts the documented contract (-1 means all). Add an explicit guard for < -1.
💡 Proposed fix
def apply_patches(self, count: int = -1) -> None:
"""Apply patches to the already-fetched working tree without fetching from remote.
Args:
count: Number of patches to apply (-1 means all).
"""
+ if count < -1:
+ raise RuntimeError("patch count must be >= 0 or -1")
self._apply_patches(count)🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
In `@dfetch/project/subproject.py` around lines 90 - 97, The apply_patches method
accepts a count parameter but does not validate the input, allowing invalid
values like -2 to be passed and cause unexpected behavior in the slicing logic.
Add a validation guard at the beginning of the apply_patches method that raises
a ValueError if count is less than -1, ensuring only -1 (meaning all patches) or
positive values are accepted as documented in the docstring.
| import subprocess | ||
|
|
||
| from behave import given, when # pylint: disable=no-name-in-module | ||
| from behave import given, then, when # pylint: disable=no-name-in-module |
Contributor
There was a problem hiding this comment.
📐 Maintainability & Code Quality | 🟠 Major
🧩 Analysis chain
🏁 Script executed:
#!/bin/bash
# Verify forbidden inline suppressions in this changed module.
rg -n 'pylint:\s*disable|#\s*noqa|#\s*type:\s*ignore|#\s*pyright:\s*ignore' features/steps/git_steps.pyRepository: dfetch-org/dfetch
Length of output: 327
🏁 Script executed:
#!/bin/bash
# Check if this is a test file and review the module structure
head -15 features/steps/git_steps.py
echo "---"
# Check for any pylint/pytest configuration
fd -t f '(pytest\.ini|pylintrc|setup.cfg|pyproject\.toml|tox\.ini)' | head -5Repository: dfetch-org/dfetch
Length of output: 634
🏁 Script executed:
#!/bin/bash
# Check pyproject.toml for pylint configuration related to behave
cat pyproject.toml | grep -A 20 "\[tool.pylint"Repository: dfetch-org/dfetch
Length of output: 733
🏁 Script executed:
#!/bin/bash
# Verify: is no-name-in-module a real issue or false positive from behave?
# Check if behave is installed and exports these symbols
python3 -c "from behave import given, then, when; print('behave exports found')" 2>&1
echo "---"
# Check if there are other test files with similar pattern
rg -l 'from behave import' --type py | head -5Repository: dfetch-org/dfetch
Length of output: 279
🏁 Script executed:
#!/bin/bash
# Check if no-name-in-module can be added to the module-level header
# and if there are other behave step files with the same issue
rg 'from behave import' features/steps/ -A 1 -B 1Repository: dfetch-org/dfetch
Length of output: 1324
🏁 Script executed:
#!/bin/bash
# Check the module-level headers in behave step files
for file in features/steps/{git_steps,generic_steps,add_steps}.py; do
echo "=== $file ==="
head -5 "$file"
echo
doneRepository: dfetch-org/dfetch
Length of output: 888
Move the no-name-in-module suppression to the module-level header.
The inline # pylint: disable=no-name-in-module on line 10 violates repository policy. Per coding guidelines, inline suppressions are disallowed except in module-level headers (lines 1–5 of test files). Add no-name-in-module to the existing pylint disable list on line 3, then remove the inline comment from line 10.
🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
In `@features/steps/git_steps.py` at line 10, Move the no-name-in-module pylint
suppression from the inline comment on the import statement (from behave import
given, then, when) to the module-level header. Locate the existing pylint
disable comment on line 3 in the module header and add no-name-in-module to that
existing disable list, then remove the inline # pylint:
disable=no-name-in-module comment from the import statement on line 10.
Source: Coding guidelines
Comment on lines
+264
to
+266
| result = subprocess.check_output( | ||
| ["git", "status", "--porcelain", path], text=True | ||
| ) |
Contributor
There was a problem hiding this comment.
🎯 Functional Correctness | 🟡 Minor | ⚡ Quick win
Harden the git path argument with -- before the pathspec.
Without --, a path beginning with - can be parsed as an option. Use ["git", "status", "--porcelain", "--", path] for unambiguous behavior.
Suggested patch
- result = subprocess.check_output(
- ["git", "status", "--porcelain", path], text=True
- )
+ result = subprocess.check_output(
+ ["git", "status", "--porcelain", "--", path], text=True
+ )📝 Committable suggestion
‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.
Suggested change
| result = subprocess.check_output( | |
| ["git", "status", "--porcelain", path], text=True | |
| ) | |
| result = subprocess.check_output( | |
| ["git", "status", "--porcelain", "--", path], text=True | |
| ) |
🤖 Prompt for AI Agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
In `@features/steps/git_steps.py` around lines 264 - 266, In the
subprocess.check_output call for the git status command, add the `--` separator
argument between the `--porcelain` option and the path argument to prevent paths
starting with a hyphen from being interpreted as git options. Modify the command
list from `["git", "status", "--porcelain", path]` to `["git", "status",
"--porcelain", "--", path]`.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Introduces
dfetch review-patchwhich stages the clean upstream source inthe git index and applies the selected patches to the working tree, so any
diff-aware editor sees
git diff(working tree vs index) showing exactlywhat the patches contribute. The command always restores original state on
exit — no permanent changes to working tree or index.
Co-Authored-By: Claude Sonnet 4.6 noreply@anthropic.com
Claude-Session: https://claude.ai/code/session_017zY8BoH65KBX6cz7Pm8aeF
Summary by CodeRabbit
Release Notes
New Features
review-patchcommand to interactively inspect patches without permanently applying them--countDocumentation
Tests