feat: add complete logging system for bug troubleshooting

[AmintaCCCP]

Summary

• Add structured logging system covering both frontend and backend with automatic sensitive data sanitization
• New "日志导出" (Log Export) UI section in Settings > Data Management for users to export logs for AI-powered debugging
• Replace ~100 console.* calls across 17 files with structured logger.* calls

Details

New files (5)

• src/utils/logSanitizer.ts — Frontend sanitization (mask tokens, API keys, passwords, emails, URL params)
• server/src/services/logSanitizer.ts — Backend sanitization (same logic)
• src/services/logger.ts — Frontend Logger singleton (ring buffer 2000 entries, write-time sanitization)
• server/src/services/logger.ts — Backend Logger singleton + Morgan stream integration
• server/src/routes/logs.ts — GET /api/logs endpoint with X-Log-Count header

Modified files (17)

• Backend: index.ts, errorHandler.ts, proxyService.ts, configs.ts, proxy.ts, migrations.ts, connection.ts
• Frontend: autoSync.ts, backendAdapter.ts, aiService.ts, webdavService.ts, githubApi.ts, updateService.ts, useAppStore.ts, ErrorBoundary.tsx, main.tsx, DataManagementPanel.tsx

Log Export UI

• Location: Settings > Data Management > below "数据导出与导入"
• Scope selection: Frontend logs + Backend logs (backend only when connected)
• Level selection: Info/Warn/Error/Debug (Debug unchecked by default)
• Export produces JSON file with environment info + frontendLogs + backendLogs
• All sensitive data masked at write time (***<last4> format)

Sanitization

• GitHub tokens (ghp_*): ***<last4>
• API keys: ***<last4>
• Passwords: ****
• Emails: u***@domain.com
• URL query params: values replaced with ***
• Sensitive field names: apiKey, token, password, secret, etc.

Coverage (based on 50 historical issues)

• AI test/analysis bugs (AI配置测试成功，实际分析不可用 #166, 确认API key和端点都没问题，AI测试失败 #156, 部分仓库总是分析失败，希望有办法知道为什么失败 #153, bug: Gemini connection test fails due to restrictive token limit #73, 【BUG】思维链模型适配问题 #70, AI 总结中有 json 乱码 #67, 错误的把思考过程写入描述 #149)
• Sync/data bugs (同步功能异常 #133, Release 初始同步仅覆盖前 20 个仓库，且增量更新机制存在缺陷 #119, 恢复备份的时候出现了密钥遗漏 #138, Token 每小时5000限制 如何避免没额度还能保存已经获取的，，？ #137)
• Network/connection bugs (WebDAV无法链接 #125, AI服务连接失败 #101)
• UI/interaction bugs ([Bug] 添加 AI 时，除下拉框外其他输入框无法点击或输入；WebDAV 页面同样受影响（非100%复现） #103, 输入框焦点问题：输入时外框无高亮显示且光标不闪动 #109)
• Crypto/decrypt bugs (Missing Error Handling for Invalid Decryption in maskApiKey and maskPassword #64)
• Plus future scenarios: IDB corruption, network timeout, proxy issues, CORS, concurrency, Electron, migration failure

Test plan

• Start dev:all, perform typical operations (sync, AI analysis, search)
• Open Settings > Data Management, verify "日志导出" section shows correct counts
• Click export, verify JSON file contains frontendLogs and backendLogs
• Search exported file for any unmasked sensitive data (ghp_, sk-, etc.)
• Verify backend logs checkbox is disabled when backend not connected
• Verify ring buffer eviction works (entries beyond 2000 are dropped)
• Test AI failure scenario: check logs contain configId, model, finishReason
• Test sync failure: check logs contain push/pull direction, data hash context

🤖 Generated with Claude Code

Summary by CodeRabbit

• New Features

  • Centralized frontend+backend logging, searchable /api/logs endpoint, and in-app "Log Export" (scope & level filters, download).

• Improvements

  • Replaced scattered console output with structured, queryable logs; HTTP access routed into central logs and a log-count header is exposed.
  • Real-time frontend/backend log counts in UI; export includes environment and sanitization notes.
  • Robust automatic sanitization/masking of sensitive data in logs.

• Other

  • More consistent startup/shutdown and error reporting across app.

[coderabbitai]

Note

Reviews paused

It looks like this branch is under active development. To avoid overwhelming you with review comments due to an influx of new commits, CodeRabbit has automatically paused this review. You can configure this behavior by changing the reviews.auto_review.auto_pause_after_reviewed_commits setting.

Use the following commands to manage reviews:

• @coderabbitai resume to resume automatic reviews.
• @coderabbitai review to trigger a single review.

Use the checkboxes below for quick actions:

• ▶️ Resume reviews
• 🔍 Trigger review

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 11a3613c-f0a2-408a-a0fd-7062b7088d8c

📥 Commits

Reviewing files that changed from the base of the PR and between 582f5a3 and bb3667c.

📒 Files selected for processing (2)

• server/src/services/logSanitizer.ts
• src/utils/logSanitizer.ts

🚧 Files skipped from review as they are similar to previous changes (1)

• server/src/services/logSanitizer.ts

---

📝 Walkthrough

Walkthrough

Centralizes logging: adds sanitizers, backend/frontend in-memory loggers, replaces console.* with structured logger usage across server and client, exposes GET /api/logs, and adds a frontend log-export UI.

Changes

Logging Infrastructure and Log Export

Layer / File(s)	Summary
Sanitizers (backend + frontend) server/src/services/logSanitizer.ts, src/utils/logSanitizer.ts	Adds recursive sanitization utilities that mask secrets, redact sensitive URL query parameters, sanitize errors, and protect common sensitive field names and authorization headers before logging.
Backend logger (ring buffer + morgan stream) server/src/services/logger.ts	Implements backend in-memory ring-buffer logger with LogLevel/LogEntry types, write-time sanitization, forwarding to console, query helpers (getEntries, getCounts, clear, setLevel), errorFromError, and morganLoggerStream for HTTP access logs.
Frontend logger (ring buffer + export) src/services/logger.ts	Adds frontend in-memory logger mirroring backend behavior, with convenience methods, errorFromError, filtering (getEntries, getCounts), buffer management, and exportEntries for UI consumption.
Server wiring & core integration server/src/index.ts, server/src/db/connection.ts, server/src/db/migrations.ts, server/src/middleware/errorHandler.ts	Wires centralized logger into DB connection, migration progress, app startup/shutdown, Morgan stream configuration, and global error handler (replacing prior console outputs).
Logs API endpoint server/src/routes/logs.ts	Adds GET /api/logs with query validation (limit, level, since), clamps limit, returns filtered backend log entries, sets X-Log-Count, and logs internal errors via logger.errorFromError.
Routes & proxy updates server/src/routes/configs.ts, server/src/routes/proxy.ts, server/src/services/proxyService.ts	Replaces many console.* usages with structured logger calls (info/warn/error/errorFromError) and uses shared redactUrl for proxy logging; preserves existing HTTP responses and control flow.
Server & client service logging updates src/services/*, server/src/services/*	Replaces console logging in aiService, autoSync, backendAdapter, githubApi, webdavService, updateService, proxyService, runMigrations, and other services with structured logger calls; behavior and fallbacks unchanged.
Frontend wiring & UI log export src/components/settings/DataManagementPanel.tsx, src/components/ErrorBoundary.tsx, src/main.tsx, src/store/useAppStore.ts	Adds Log Export UI with frontend/backend scope and level filters, periodic counts refresh, export handler that fetches frontend/backend entries and downloads sanitized JSON; replaces console logs in ErrorBoundary, main bootstrap, and store rehydration with structured logger usage.

Sequence Diagram

sequenceDiagram
  participant Client
  participant UI as DataManagementPanel
  participant FrontendLogger as Frontend Logger
  participant API as Backend API
  participant BackendLogger as Backend Logger

  Client->>UI: open Log Export
  UI->>FrontendLogger: getCounts()
  FrontendLogger-->>UI: {total,debug,info,warn,error}

  UI->>API: GET /api/logs?level=warn&limit=100
  API->>BackendLogger: getEntries(filters)
  BackendLogger-->>API: entries + counts
  API-->>UI: entries + X-Log-Count

  Client->>UI: Click export
  UI->>FrontendLogger: getEntries(filters)
  FrontendLogger-->>UI: frontend entries
  UI->>API: GET /api/logs (filtered)
  API-->>UI: backend entries
  UI->>Client: Download logs.json

Loading

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

Possibly related PRs

• AmintaCCCP/GithubStarsManager#87: Overlaps proxy route logging and related proxy handlers.
• AmintaCCCP/GithubStarsManager#43: Related prior work on server error handling and migration logging.
• AmintaCCCP/GithubStarsManager#168: Modifies bulk AI/WebDAV sync handlers that this PR also touches (logging for skipped/errors).

Poem

🐰 Soft paws tidy the logs tonight,
Secrets masked and stars kept bright,
Buffers hum and routers sing,
A rabbit guards the logging ring,
Hop—export safely in the light.

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 56.67% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title clearly and accurately describes the main change: a complete logging system implementation for bug troubleshooting across both frontend and backend.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

📝 Generate docstrings

• Create stacked PR
• Commit on current branch

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch feat/logging-system

Warning

Review ran into problems

🔥 Problems

Stopped waiting for pipeline failures after 30000ms. One of your pipelines takes longer than our 30000ms fetch window to run, so review may not consider pipeline-failure results for inline comments if any failures occurred after the fetch window. Increase the timeout if you want to wait longer or run a @coderabbit review after the pipeline has finished.

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 11

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

server/src/services/proxyService.ts (1)

141-162: ⚠️ Potential issue | 🟠 Major | ⚡ Quick win

Log the handled Axios failure branches before returning.

logger.errorFromError(...) on Line 161 only runs for the final fallthrough case. The early returns for timeout, ECONNREFUSED, ETIMEDOUT, and error.response all skip logging, so the most common proxy failures never make it into the ring buffer or /api/logs export.

Proposed fix

   } catch (error) {
     if (axios.isAxiosError(error)) {
       if (error.code === 'ECONNABORTED' || error.message.includes('timeout')) {
+        logger.errorFromError('proxy.error', 'Proxy request timed out', error, {
+          method,
+          url: redactUrl(url),
+        });
         return { status: 504, headers: {}, data: { error: 'Gateway Timeout', code: 'GATEWAY_TIMEOUT' } };
       }
       if (error.code === 'ECONNREFUSED') {
+        logger.errorFromError('proxy.error', 'Proxy connection refused', error, {
+          method,
+          url: redactUrl(url),
+        });
         return { status: 502, headers: {}, data: { error: 'Proxy connection refused', code: 'PROXY_CONNECTION_REFUSED', details: error.message } };
       }
       if (error.code === 'ETIMEDOUT') {
+        logger.errorFromError('proxy.error', 'Proxy connection timeout', error, {
+          method,
+          url: redactUrl(url),
+        });
         return { status: 504, headers: {}, data: { error: 'Proxy connection timeout', code: 'PROXY_TIMEOUT', details: error.message } };
       }
       if (error.response) {
+        logger.errorFromError('proxy.error', 'Upstream returned an error response', error, {
+          method,
+          url: redactUrl(url),
+          status: error.response.status,
+        });
         return {
           status: error.response.status,
           headers: {},
           data: error.response.data || { error: 'Upstream error' }
         };
       }
     }

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@server/src/services/proxyService.ts` around lines 141 - 162, The catch block
in proxyService.ts currently returns early for several Axios error branches
(timeout, ECONNABORTED, ECNREFUSED, ETIMEDOUT, and error.response) without
logging, so add logging before each early return: invoke
logger.errorFromError('proxy.error', <descriptive message>, error) (or a small
helper like logProxyError) in the catch block inside the function that handles
proxy requests so the timeout/ECONNREFUSED/ETIMEDOUT and error.response branches
are recorded to the ring buffer and /api/logs, then return the same response
objects as before; ensure the message includes the branch context (e.g., "Proxy
timeout", "Proxy connection refused", "Proxy upstream response") and include the
original error object.

🧹 Nitpick comments (4)

src/main.tsx (1)

35-35: ⚡ Quick win

Capture bootstrap exceptions with errorFromError.

Use logger.errorFromError('app', 'Failed to render React app', error) so startup failures consistently retain sanitized error details.

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@src/main.tsx` at line 35, Replace the direct logger.error call with the
error-retaining helper: in main.tsx where logger.error('app', 'Failed to render
React app', error) is invoked, call logger.errorFromError('app', 'Failed to
render React app', error) instead so startup exceptions use the sanitized
error-preserving path (referencing logger.errorFromError and the existing error
variable).

src/services/updateService.ts (1)

57-57: ⚡ Quick win

Use errorFromError in update-check catch path.

Switching this to logger.errorFromError('update', '检查更新失败', error) keeps error serialization consistent with other exception logging paths.

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@src/services/updateService.ts` at line 57, Replace the plain logger.error
call in the update-check catch path with logger.errorFromError to keep error
serialization consistent; locate the occurrence of logger.error('update',
'检查更新失败', error) in updateService.ts (the update-check catch block) and change
it to logger.errorFromError('update', '检查更新失败', error) so the error is
serialized the same way as other exception logging paths.

src/services/githubApi.ts (1)

195-195: ⚡ Quick win

Prefer logger.errorFromError / normalized error payload for caught exceptions.

Several catch blocks log error directly via logger.warn/error. For consistent stack/message capture in exported logs, use logger.errorFromError(...) (or stringify explicitly) at these sites.

Suggested pattern

- logger.warn('githubApi', `Failed to fetch README for ${owner}/${repo}`, error);
+ logger.errorFromError('githubApi', `Failed to fetch README for ${owner}/${repo}`, error);

Also applies to: 224-224, 406-406, 554-554, 563-563, 774-774, 791-791, 978-978, 1038-1038, 1048-1048, 1061-1061

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@src/services/githubApi.ts` at line 195, Caught exceptions in
src/services/githubApi.ts are being logged directly via logger.warn/error which
loses normalized stack/message formatting; replace those calls with the
normalized error helper logger.errorFromError (or build a normalized payload) so
the stack and message are exported consistently. Locate each occurrence that
currently calls logger.warn or logger.error with the raw error (examples shown
at the README fetch block and the other spots listed: the calls at lines ~195,
224, 406, 554, 563, 774, 791, 978, 1038, 1048, 1061) and change them to use
logger.errorFromError(<context-string>, error) or
logger.errorFromError(<context-string>, new Error(String(error))) as
appropriate, preserving the original log message text (e.g., "Failed to fetch
README for ${owner}/${repo}") as the context argument so logs remain informative
and normalized across the file.

src/services/webdavService.ts (1)

17-17: ⚡ Quick win

Use errorFromError for exception objects in WebDAV failure paths.

Some warning/error calls pass raw exceptions. Switching those to logger.errorFromError(...) will keep error details consistent in sanitized logs.

Also applies to: 67-67, 87-87, 193-193, 196-196, 204-204, 291-291, 296-296, 301-301, 373-373, 533-533

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@src/services/webdavService.ts` at line 17, Replace instances where raw
exception objects are passed to logger.warn/logger.error in
src/services/webdavService.ts with logger.errorFromError so sanitized logs
include the exception details; specifically, locate calls like
logger.warn('webdav', 'JSON压缩失败，使用原始内容', e) and the other occurrences noted in
the review and change them to use logger.errorFromError while preserving the
original tag ('webdav') and message text and passing the exception object as the
error parameter; update every listed occurrence (including the ones around JSON
compression and the other line locations) to follow this pattern so the message,
tag, and exception are all captured via errorFromError.

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@server/src/routes/configs.ts`:
- Around line 30-34: The log message interpolates user-provided
configName/configId directly into the free-text message
(logger.warn('configs.decrypt', ...)), which bypasses sanitization; change the
message to a generic constant (e.g., "Failed to decrypt config" or include only
kind) and move any sensitive fields (configId, configName, c.id, c.name) into
the structured data argument passed to logger (the third param) so they are
sanitized at write-time; update the logger.warn calls in configs.ts that
currently use template strings with configName/configId (including the
occurrences with c.id/c.name) to follow this pattern.

In `@server/src/routes/logs.ts`:
- Around line 9-15: Validate the incoming query params before calling
logger.getEntries: check that level (the variable `level`) is one of the allowed
LogLevel values (or a key in `LEVEL_ORDER`) and reject with 400 when it's not,
and check that since (the variable `since`) is either undefined or a valid
ISO/timestamp parseable by Date (or use Date.parse and verify !isNaN) and reject
with 400 when invalid; only call `logger.getEntries({ level, since })` when both
validations pass and include clear error responses for invalid inputs.

In `@server/src/services/logger.ts`:
- Around line 32-45: The LogEntry currently persists message raw (in log method)
allowing unsanitized content to be stored and returned; update the logger.log
implementation to sanitize the message using sanitizeForLog() (or a string-safe
variant) before assigning it to the LogEntry and before passing it to
morganLoggerStream.write so any interpolated secrets or request targets are
scrubbed; apply the same change to the other logging block referenced (the
similar code around the second LogEntry creation at the 131-136 section) and
ensure you keep using sanitizedData for data and sanitizedMessage for message
when constructing LogEntry and writing to morganLoggerStream.

In `@server/src/services/logSanitizer.ts`:
- Around line 77-83: sanitizeString currently misses plain-string API keys
because it never calls looksLikeSecret; update sanitizeString to first check
looksLikeSecret(value) and return maskSecret(value) for suspected secrets before
the other checks (while preserving existing handling for GitHub tokens, emails,
URLs, Bearer/Basic prefixes). Reference: sanitizeString, looksLikeSecret,
maskSecret, redactUrl, EMAIL_RE.
- Around line 43-49: The redactUrl function currently uses URLSearchParams.has()
which is case-sensitive; update redactUrl to perform case-insensitive matching
by building a lower-cased set of SENSITIVE_URL_PARAMS (e.g., lowerSensitive =
new Set(SENSITIVE_URL_PARAMS.map(k => k.toLowerCase()))), then iterate over
parsed.searchParams (for...of parsed.searchParams) and for each paramName check
if lowerSensitive.has(paramName.toLowerCase()); if so call
parsed.searchParams.set(paramName, '***') to replace the original-cased key's
value and return parsed.toString() as before.

In `@src/components/settings/DataManagementPanel.tsx`:
- Around line 230-241: The export currently allows no scopes selected; add a
guard after computing scopeCheckboxes/selectedScopes (the same pattern used for
selectedLevels) to check if selectedScopes.length === 0 and if so call
showError(t('请至少选择一个日志范围', 'Please select at least one log scope')), call
setIsExportingLogs(false), and return to prevent export; locate the block where
scopeCheckboxes and selectedScopes are defined in DataManagementPanel.tsx and
mirror the existing level-validation logic using those symbols.
- Around line 242-260: The current logic reduces selectedLevels into a minimum
threshold (minLevelName) which allows non-selected severities through; instead,
after fetching entries from logger.getEntries and from the backend fetch
(variables: frontendLogs, backendLogs, logger.getEntries, fetch(`/api/logs?...`)
and selectedLevels/levelOrder), filter the returned arrays to include only
entries whose level is explicitly in selectedLevels. Update the frontend path to
call logger.getEntries(...) as you do now but then run frontendLogs =
frontendLogs.filter(e => selectedLevels.includes(e.level)), and for backendLogs,
after parsing res.json() run backendLogs = backendLogs.filter(e =>
selectedLevels.includes(e.level)); keep using levelOrder only if you need to map
names to numbers elsewhere but do not rely on minLevel/minLevelName for final
filtering.

In `@src/services/logger.ts`:
- Around line 31-45: The log method currently only sanitizes the structured data
field but leaves the message verbatim; update the log(level, module, message,
data?) implementation to sanitize the message as well before building the
LogEntry (e.g., create sanitizedMessage = sanitizeForLog(message.toString()) or
use a string-specific sanitizer), then use sanitizedMessage in the LogEntry
instead of raw message; keep sanitizing data via sanitizeForLog(data) as before
and ensure logger.getEntries() will return the sanitized message field.

In `@src/store/useAppStore.ts`:
- Around line 781-783: The logger in the setUser function is currently emitting
a PII field (user?.login); update the logger.info call inside setUser to remove
the login field and only include non-identifying info (e.g., hasUser) — locate
the setUser function and the logger.info invocation (within useAppStore) and
change the logged payload so it no longer contains user.login before calling
set({ user, isAuthenticated: !!user }).

In `@src/utils/logSanitizer.ts`:
- Around line 43-49: redactUrl and maskUrlDomain only match lowercase param
names so sensitive params like "apiKey" or "ClientSecret" bypass redaction;
update both functions to perform case-insensitive matching by normalizing param
names before comparison: for each param in parsed.searchParams, compare its
lowercased name against SENSITIVE_URL_PARAMS entries (also lowercased) and
replace the value with '***' when matched, or alternatively map
SENSITIVE_URL_PARAMS to a Set of lowercase keys and use that for lookups; apply
the same lowercasing logic to the code path in maskUrlDomain that handles URL
query param masking (the block referenced around lines 66-68) so both helpers
redact regardless of case.
- Around line 110-133: sanitizeString currently skips masking standalone API
keys/JWTs because looksLikeSecret is never used; update sanitizeString (and any
helpers it calls like maskSecret) to call looksLikeSecret(value) for non-empty
strings before returning the raw value and, when it returns true, replace the
entire sensitive value with maskSecret(value) (or an appropriately
truncated/masked form) so standalone tokens (provider API keys, JWTs) are
redacted even when they don't match EMAIL_RE/URL/Authorization/Basic patterns;
ensure this check runs early (e.g., immediately after GitHub token check or
before URL/Authorization checks) to catch raw secrets.

---

Outside diff comments:
In `@server/src/services/proxyService.ts`:
- Around line 141-162: The catch block in proxyService.ts currently returns
early for several Axios error branches (timeout, ECONNABORTED, ECNREFUSED,
ETIMEDOUT, and error.response) without logging, so add logging before each early
return: invoke logger.errorFromError('proxy.error', <descriptive message>,
error) (or a small helper like logProxyError) in the catch block inside the
function that handles proxy requests so the timeout/ECONNREFUSED/ETIMEDOUT and
error.response branches are recorded to the ring buffer and /api/logs, then
return the same response objects as before; ensure the message includes the
branch context (e.g., "Proxy timeout", "Proxy connection refused", "Proxy
upstream response") and include the original error object.

---

Nitpick comments:
In `@src/main.tsx`:
- Line 35: Replace the direct logger.error call with the error-retaining helper:
in main.tsx where logger.error('app', 'Failed to render React app', error) is
invoked, call logger.errorFromError('app', 'Failed to render React app', error)
instead so startup exceptions use the sanitized error-preserving path
(referencing logger.errorFromError and the existing error variable).

In `@src/services/githubApi.ts`:
- Line 195: Caught exceptions in src/services/githubApi.ts are being logged
directly via logger.warn/error which loses normalized stack/message formatting;
replace those calls with the normalized error helper logger.errorFromError (or
build a normalized payload) so the stack and message are exported consistently.
Locate each occurrence that currently calls logger.warn or logger.error with the
raw error (examples shown at the README fetch block and the other spots listed:
the calls at lines ~195, 224, 406, 554, 563, 774, 791, 978, 1038, 1048, 1061)
and change them to use logger.errorFromError(<context-string>, error) or
logger.errorFromError(<context-string>, new Error(String(error))) as
appropriate, preserving the original log message text (e.g., "Failed to fetch
README for ${owner}/${repo}") as the context argument so logs remain informative
and normalized across the file.

In `@src/services/updateService.ts`:
- Line 57: Replace the plain logger.error call in the update-check catch path
with logger.errorFromError to keep error serialization consistent; locate the
occurrence of logger.error('update', '检查更新失败', error) in updateService.ts (the
update-check catch block) and change it to logger.errorFromError('update',
'检查更新失败', error) so the error is serialized the same way as other exception
logging paths.

In `@src/services/webdavService.ts`:
- Line 17: Replace instances where raw exception objects are passed to
logger.warn/logger.error in src/services/webdavService.ts with
logger.errorFromError so sanitized logs include the exception details;
specifically, locate calls like logger.warn('webdav', 'JSON压缩失败，使用原始内容', e) and
the other occurrences noted in the review and change them to use
logger.errorFromError while preserving the original tag ('webdav') and message
text and passing the exception object as the error parameter; update every
listed occurrence (including the ones around JSON compression and the other line
locations) to follow this pattern so the message, tag, and exception are all
captured via errorFromError.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: b2431695-7dbf-4d12-9c04-c1c1998b17eb

📥 Commits

Reviewing files that changed from the base of the PR and between 12a14d7 and a9ecf55.

📒 Files selected for processing (22)

• server/src/db/connection.ts
• server/src/db/migrations.ts
• server/src/index.ts
• server/src/middleware/errorHandler.ts
• server/src/routes/configs.ts
• server/src/routes/logs.ts
• server/src/routes/proxy.ts
• server/src/services/logSanitizer.ts
• server/src/services/logger.ts
• server/src/services/proxyService.ts
• src/components/ErrorBoundary.tsx
• src/components/settings/DataManagementPanel.tsx
• src/main.tsx
• src/services/aiService.ts
• src/services/autoSync.ts
• src/services/backendAdapter.ts
• src/services/githubApi.ts
• src/services/logger.ts
• src/services/updateService.ts
• src/services/webdavService.ts
• src/store/useAppStore.ts
• src/utils/logSanitizer.ts

[coderabbitai]

🧹 Nitpick comments (1)

server/src/services/logSanitizer.ts (1)

113-124: ⚡ Quick win

Add masking for Cookie / Set-Cookie / Proxy-Authorization in sanitizeHeaders() (defense in depth)

sanitizeHeaders() currently masks only authorization and x-api-key; cookie, set-cookie, and proxy-authorization aren’t handled, so they could leak if a headers object is ever logged.

Current log paths don’t appear to include header objects: access logging uses morgan('combined') (which doesn’t include Cookie), and the existing logger.* calls log strings/URL/status rather than req.headers/res.headers.

🔒 Proposed fix to mask credential-bearing headers

 function sanitizeHeaders(headers: Record<string, unknown>): Record<string, unknown> {
   const result: Record<string, unknown> = {};
   for (const [key, value] of Object.entries(headers)) {
     const lowerKey = key.toLowerCase();
-    if (lowerKey === 'authorization' || lowerKey === 'x-api-key') {
+    if (lowerKey === 'authorization' || lowerKey === 'x-api-key' || lowerKey === 'proxy-authorization') {
       result[key] = typeof value === 'string' ? sanitizeString(value) : '****';
+    } else if (lowerKey === 'cookie' || lowerKey === 'set-cookie') {
+      result[key] = '****';
     } else {
       result[key] = sanitizeForLog(value);
     }
   }
   return result;
 }

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@server/src/services/logSanitizer.ts` around lines 113 - 124, The
sanitizeHeaders function currently only masks 'authorization' and 'x-api-key';
update sanitizeHeaders to also detect and mask credential-bearing headers
'cookie', 'set-cookie', and 'proxy-authorization' (case-insensitively) the same
way as 'authorization' (i.e., use sanitizeString when value is a string,
otherwise replace with '****'), leaving non-credential headers to
sanitizeForLog; reference the sanitizeHeaders function and existing helpers
sanitizeString and sanitizeForLog when making the change.

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Nitpick comments:
In `@server/src/services/logSanitizer.ts`:
- Around line 113-124: The sanitizeHeaders function currently only masks
'authorization' and 'x-api-key'; update sanitizeHeaders to also detect and mask
credential-bearing headers 'cookie', 'set-cookie', and 'proxy-authorization'
(case-insensitively) the same way as 'authorization' (i.e., use sanitizeString
when value is a string, otherwise replace with '****'), leaving non-credential
headers to sanitizeForLog; reference the sanitizeHeaders function and existing
helpers sanitizeString and sanitizeForLog when making the change.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 0d7ae9e0-cf85-44cd-81db-3e891d73cdfc

📥 Commits

Reviewing files that changed from the base of the PR and between a9ecf55 and 3292374.

📒 Files selected for processing (6)

• server/src/routes/configs.ts
• server/src/routes/logs.ts
• server/src/services/logSanitizer.ts
• server/src/services/logger.ts
• src/services/logger.ts
• src/utils/logSanitizer.ts

✅ Files skipped from review due to trivial changes (1)

• server/src/routes/configs.ts

🚧 Files skipped from review as they are similar to previous changes (4)

• server/src/routes/logs.ts
• src/services/logger.ts
• server/src/services/logger.ts
• src/utils/logSanitizer.ts

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@src/components/settings/DataManagementPanel.tsx`:
- Around line 248-251: ESLint flags the unused "_" in the Object.entries
destructure; update the find callback in the minLevelName calculation to ignore
the first entry without creating an unused identifier—for example change the
callback from ([_, v]) => v === minLevel to ([, v]) => v === minLevel (or rename
to (_key, v) if you prefer) so that levelOrder, minLevel, minLevelName and
selectedLevels remain used correctly and the warning is suppressed.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: f0e2e2f4-29a4-4412-ae74-977fe5610fce

📥 Commits

Reviewing files that changed from the base of the PR and between 3292374 and 457f154.

📒 Files selected for processing (4)

• server/src/services/logSanitizer.ts
• src/components/settings/DataManagementPanel.tsx
• src/store/useAppStore.ts
• src/utils/logSanitizer.ts

🚧 Files skipped from review as they are similar to previous changes (2)

• server/src/services/logSanitizer.ts
• src/store/useAppStore.ts

[coderabbitai]

⚠️ Potential issue | 🟡 Minor | ⚡ Quick win

Fix unused variable from static analysis.

ESLint flags _ as unused in the destructuring pattern. Use a void expression or rename to suppress the warning.

🔧 Proposed fix

-      const minLevelName = (Object.entries(levelOrder).find(([_, v]) => v === minLevel)?.[0] as LogLevel) || 'debug';
+      const minLevelName = (Object.entries(levelOrder).find(([, v]) => v === minLevel)?.[0] as LogLevel) || 'debug';

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	// Determine min level for filtering
	const levelOrder: Record<LogLevel, number> = { debug: 0, info: 1, warn: 2, error: 3 };
	const minLevel = selectedLevels.reduce((min, lvl) => Math.min(min, levelOrder[lvl]), 3);
	const minLevelName = (Object.entries(levelOrder).find(([_, v]) => v === minLevel)?.[0] as LogLevel) || 'debug';
	// Determine min level for filtering
	const levelOrder: Record<LogLevel, number> = { debug: 0, info: 1, warn: 2, error: 3 };
	const minLevel = selectedLevels.reduce((min, lvl) => Math.min(min, levelOrder[lvl]), 3);
	const minLevelName = (Object.entries(levelOrder).find(([, v]) => v === minLevel)?.[0] as LogLevel) || 'debug';

🧰 Tools

🪛 ESLint

[error] 251-251: '_' is defined but never used.

(@typescript-eslint/no-unused-vars)

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@src/components/settings/DataManagementPanel.tsx` around lines 248 - 251,
ESLint flags the unused "_" in the Object.entries destructure; update the find
callback in the minLevelName calculation to ignore the first entry without
creating an unused identifier—for example change the callback from ([_, v]) => v
=== minLevel to ([, v]) => v === minLevel (or rename to (_key, v) if you prefer)
so that levelOrder, minLevel, minLevelName and selectedLevels remain used
correctly and the warning is suppressed.

[AmintaCCCP]

@coderabbitai full review

[coderabbitai]

✅ Actions performed

Full review triggered.

[coderabbitai]

Actionable comments posted: 4

🧹 Nitpick comments (3)

src/services/aiService.ts (1)

677-710: ⚡ Quick win

Log the caught error for better diagnostics.

Line 701 catches error but never uses it. The warning message on line 702 should include the error for troubleshooting.

📊 Proposed fix

     } catch (error) {
-      logger.warn('ai', 'AI semantic search failed, falling back to enhanced basic search', { apiType: this.getApiType(), model: this.config.model, configId: this.config.id });
+      logger.errorFromError('ai', 'AI semantic search failed, falling back to enhanced basic search', error, { apiType: this.getApiType(), model: this.config.model, configId: this.config.id });
     }

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@src/services/aiService.ts` around lines 677 - 710, In
searchRepositoriesWithReranking, the caught error in the catch block is not
included in the warning log—update the logger.warn call in the catch to include
the error details (e.g., error.message and/or error.stack or a stringified
error) as part of the metadata (alongside apiType, model, configId) so
diagnostics capture the actual exception thrown during requestText/AI semantic
search.

server/src/services/logger.ts (2)

76-93: 💤 Low value

Consider renaming dataStr or stringifying it for clarity.

Line 78 assigns entry.data (which may be an object) directly to dataStr, but the name suggests a string. While console methods handle objects correctly, the naming is misleading. Consider renaming to dataValue or using JSON.stringify if you want actual string output.

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@server/src/services/logger.ts` around lines 76 - 93, The variable dataStr in
forwardToConsole is misleading because it can hold non-string values; rename it
(e.g., dataValue) and ensure you output a readable string when required by
stringifying objects — implement: const dataValue = entry.data !== undefined ?
entry.data : ''; then before logging, if (typeof dataValue === 'object' &&
dataValue !== null) { try { const dataJson = JSON.stringify(dataValue); use
dataJson in the console call } catch { /* fallback to dataValue to avoid
throwing */ } } — update all console.* calls in forwardToConsole to use the new
symbol (dataValue or dataJson) and keep the LogEntry.type handling unchanged.

---

72-74: 💤 Low value

Validate the type of extra before spreading.

If extra is not an object (e.g., a string or number), the type assertion on line 73 is unsafe and could cause runtime errors when spreading. Consider adding a runtime check or wrapping non-objects in a property.

🛡️ Proposed defensive check

  errorFromError(module: string, message: string, err: unknown, extra?: unknown): void {
-    this.log('error', module, message, { ...sanitizeError(err), ...(extra !== undefined ? sanitizeForLog(extra) as Record<string, unknown> : {}) });
+    const sanitizedExtra = extra !== undefined ? sanitizeForLog(extra) : undefined;
+    const extraObj = sanitizedExtra !== undefined && typeof sanitizedExtra === 'object' && !Array.isArray(sanitizedExtra)
+      ? sanitizedExtra as Record<string, unknown>
+      : sanitizedExtra !== undefined ? { extra: sanitizedExtra } : {};
+    this.log('error', module, message, { ...sanitizeError(err), ...extraObj });
  }

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@server/src/services/logger.ts` around lines 72 - 74, The errorFromError
method spreads sanitizeForLog(extra) without ensuring extra is an object, which
can throw at runtime for primitives; update errorFromError to validate extra at
runtime (e.g., check extra !== null && typeof extra === 'object' &&
!Array.isArray(extra')) before spreading sanitizeForLog(extra) into the log
payload, and for non-objects wrap the value under a safe key (e.g., { extra })
or include it as { extraValue: extra } so sanitizeForLog is only called/spread
for real objects; references: errorFromError, sanitizeForLog, sanitizeError, and
the log(...) call.

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@server/src/index.ts`:
- Line 25: The CORS middleware is not exposing the custom response header
X-Log-Count, so browsers can’t read res.headers.get('X-Log-Count'); update the
cors configuration in server startup by replacing app.use(cors()) with
app.use(cors({ exposedHeaders: ['X-Log-Count'] })) (or equivalent CORS options)
so the X-Log-Count header set in routes/logs.ts is accessible to the frontend;
ensure the Express app variable (app) uses this new cors(...) call.

In `@server/src/services/logSanitizer.ts`:
- Around line 70-112: sanitizeForLog and its helpers can recurse into cyclic
objects causing stack overflows; add a WeakSet "seen" that sanitizeForLog
accepts (default new WeakSet()) and check seen.has(obj) at the top to return a
safe marker (e.g., '[Circular]') for already-seen objects; when processing an
object, call seen.add(obj) before recursing and pass the same seen into
sanitizeObject, sanitizeHeaders and any recursive sanitizeForLog calls so cycles
are short-circuited. Ensure sanitizeObject and sanitizeHeaders signatures accept
and forward the seen WeakSet and only use the marker for object reference cycles
(primitives unchanged).

In `@src/services/logger.ts`:
- Around line 76-78: The errorFromError helper currently spreads
sanitizeForLog(extra) regardless of runtime type, which throws for
primitives/arrays/strings; update errorFromError to detect whether extra is a
plain object (e.g. typeof extra === 'object' && extra !== null &&
!Array.isArray(extra')) and only spread sanitizeForLog(extra) in that case,
otherwise attach the sanitized value under a single key (e.g. { extra:
sanitizeForLog(extra) }); reference the errorFromError method and
sanitizeForLog/sanitizeError helpers when making the change.

In `@src/utils/logSanitizer.ts`:
- Around line 104-112: sanitizeForLog and sanitizeObject currently recurse
without tracking visited objects, causing stack overflows on circular
references; fix by threading a WeakSet (e.g., visited) through sanitizeForLog
and sanitizeObject, add an early check that if an object is already in visited
return a canonical placeholder like "[Circular]" (or null), add newly-seen
objects to visited before recursing into their properties/array items and remove
if necessary, and ensure calls from top-level entry create the WeakSet and pass
it into recursive calls so both sanitizeForLog and sanitizeObject use the same
visited tracking (also apply the same pattern to the other recursive sanitizer
code block mentioned).

---

Nitpick comments:
In `@server/src/services/logger.ts`:
- Around line 76-93: The variable dataStr in forwardToConsole is misleading
because it can hold non-string values; rename it (e.g., dataValue) and ensure
you output a readable string when required by stringifying objects — implement:
const dataValue = entry.data !== undefined ? entry.data : ''; then before
logging, if (typeof dataValue === 'object' && dataValue !== null) { try { const
dataJson = JSON.stringify(dataValue); use dataJson in the console call } catch {
/* fallback to dataValue to avoid throwing */ } } — update all console.* calls
in forwardToConsole to use the new symbol (dataValue or dataJson) and keep the
LogEntry.type handling unchanged.
- Around line 72-74: The errorFromError method spreads sanitizeForLog(extra)
without ensuring extra is an object, which can throw at runtime for primitives;
update errorFromError to validate extra at runtime (e.g., check extra !== null
&& typeof extra === 'object' && !Array.isArray(extra')) before spreading
sanitizeForLog(extra) into the log payload, and for non-objects wrap the value
under a safe key (e.g., { extra }) or include it as { extraValue: extra } so
sanitizeForLog is only called/spread for real objects; references:
errorFromError, sanitizeForLog, sanitizeError, and the log(...) call.

In `@src/services/aiService.ts`:
- Around line 677-710: In searchRepositoriesWithReranking, the caught error in
the catch block is not included in the warning log—update the logger.warn call
in the catch to include the error details (e.g., error.message and/or
error.stack or a stringified error) as part of the metadata (alongside apiType,
model, configId) so diagnostics capture the actual exception thrown during
requestText/AI semantic search.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: cceeaad4-c872-41b4-8018-24a829580f96

📥 Commits

Reviewing files that changed from the base of the PR and between 12a14d7 and 457f154.

📒 Files selected for processing (22)

• server/src/db/connection.ts
• server/src/db/migrations.ts
• server/src/index.ts
• server/src/middleware/errorHandler.ts
• server/src/routes/configs.ts
• server/src/routes/logs.ts
• server/src/routes/proxy.ts
• server/src/services/logSanitizer.ts
• server/src/services/logger.ts
• server/src/services/proxyService.ts
• src/components/ErrorBoundary.tsx
• src/components/settings/DataManagementPanel.tsx
• src/main.tsx
• src/services/aiService.ts
• src/services/autoSync.ts
• src/services/backendAdapter.ts
• src/services/githubApi.ts
• src/services/logger.ts
• src/services/updateService.ts
• src/services/webdavService.ts
• src/store/useAppStore.ts
• src/utils/logSanitizer.ts

[coderabbitai]

Actionable comments posted: 2

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (2)

server/src/services/logSanitizer.ts (1)

17-18: ⚠️ Potential issue | 🟡 Minor | ⚡ Quick win

Standalone JWTs bypass detection here too.

GENERIC_SECRET_RE excludes ., so JWTs slip through looksLikeSecret(). On the backend this is higher-stakes: Morgan/request logging can surface bearer JWTs as raw values. Add a JWT pattern as suggested for the frontend copy.

🔧 Proposed fix

 const GITHUB_TOKEN_RE = /^ghp_[a-zA-Z0-9]{36}$/;
 const GENERIC_SECRET_RE = /^[a-zA-Z0-9+/=_-]{20,}$/;
+const JWT_RE = /^[A-Za-z0-9_-]{8,}\.[A-Za-z0-9_-]{8,}\.[A-Za-z0-9_-]{8,}$/;

 function sanitizeString(value: string): string {
   if (isGitHubToken(value)) return maskSecret(value);
   if (looksLikeSecret(value)) return maskSecret(value);
+  if (JWT_RE.test(value)) return maskSecret(value);
   if (EMAIL_RE.test(value)) return maskEmail(value);

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@server/src/services/logSanitizer.ts` around lines 17 - 18, Update
logSanitizer to detect standalone JWTs: add a JWT regex (e.g., matching three
base64url segments separated by dots) alongside GITHUB_TOKEN_RE and
GENERIC_SECRET_RE and ensure looksLikeSecret() checks this new JWT pattern too
so bearer JWTs are caught by backend logging sanitization; reference the
existing constants GITHUB_TOKEN_RE, GENERIC_SECRET_RE and the looksLikeSecret
function when making the change.

src/utils/logSanitizer.ts (1)

17-18: ⚠️ Potential issue | 🟡 Minor | ⚡ Quick win

Standalone JWTs bypass secret detection.

GENERIC_SECRET_RE omits ., so looksLikeSecret() never matches a JWT (eyJ...........). A JWT logged as a raw value — or under a key like jwt (not in SENSITIVE_FIELD_NAMES, no token/secret/apikey substring) — is persisted unmasked and ends up in exported logs. Add a dedicated JWT pattern rather than widening GENERIC_SECRET_RE (which would over-match dotted identifiers/paths).

🔧 Proposed fix

 const GITHUB_TOKEN_RE = /^ghp_[a-zA-Z0-9]{36}$/;
 const GENERIC_SECRET_RE = /^[a-zA-Z0-9+/=_-]{20,}$/; // long base64-ish strings
+const JWT_RE = /^[A-Za-z0-9_-]{8,}\.[A-Za-z0-9_-]{8,}\.[A-Za-z0-9_-]{8,}$/;

 function sanitizeString(value: string): string {
   // GitHub token pattern
   if (isGitHubToken(value)) return maskSecret(value);

   // Plain-string secrets (e.g., sk-..., long base64-like strings)
   if (looksLikeSecret(value)) return maskSecret(value);
+
+  // JWT (header.payload.signature)
+  if (JWT_RE.test(value)) return maskSecret(value);

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@src/utils/logSanitizer.ts` around lines 17 - 18, looksLikeSecret() currently
misses JWTs because GENERIC_SECRET_RE excludes dots; add a new JWT regex
constant (e.g., JWT_RE or JWT_PATTERN) that matches typical three-dot base64url
segments (header.payload.signature) and include it in the set of checks used by
looksLikeSecret() alongside GITHUB_TOKEN_RE and GENERIC_SECRET_RE so raw JWTs
are detected and masked without widening GENERIC_SECRET_RE to over-match dotted
identifiers.

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@server/src/services/logSanitizer.ts`:
- Around line 70-81: sanitizeForLog currently treats any shared reference as a
cycle because the WeakSet `seen` keeps objects forever; to fix it, only mark an
object as "in-progress" while traversing its subtree: for arrays and for object
handling in sanitizeForLog (and when delegating to sanitizeObject), call
seen.add(input) before recursing into members/properties and call
seen.delete(input) after finishing that subtree so non-cyclic shared references
(e.g., diamonds or repeated references like [a, a]) are preserved instead of
being collapsed to '[Circular]'; update the logic around Array.isArray(input)
and the object branch that calls sanitizeObject (and adjust sanitizeObject if it
also uses `seen`) to use the add-then-delete pattern while still returning
'[Circular]' when seen.has(input) at the start.

In `@src/utils/logSanitizer.ts`:
- Around line 104-116: sanitizeForLog currently keeps every visited object in
the WeakSet for the whole traversal which mislabels shared but non-circular
references as "[Circular]"; change the visitation to path-based: when you add an
object to seen (in sanitizeForLog) do so on entry and ensure you remove it
(seen.delete(input as object)) after processing its subtree so only ancestor
path membership is checked; apply this for both Array.isArray handling (map) and
the object branch that calls sanitizeObject (ensure sanitizeObject either
follows the same add/delete pattern or let sanitizeForLog add/delete around that
call) so genuine cycles still short-circuit but legitimate shared references are
preserved.

---

Outside diff comments:
In `@server/src/services/logSanitizer.ts`:
- Around line 17-18: Update logSanitizer to detect standalone JWTs: add a JWT
regex (e.g., matching three base64url segments separated by dots) alongside
GITHUB_TOKEN_RE and GENERIC_SECRET_RE and ensure looksLikeSecret() checks this
new JWT pattern too so bearer JWTs are caught by backend logging sanitization;
reference the existing constants GITHUB_TOKEN_RE, GENERIC_SECRET_RE and the
looksLikeSecret function when making the change.

In `@src/utils/logSanitizer.ts`:
- Around line 17-18: looksLikeSecret() currently misses JWTs because
GENERIC_SECRET_RE excludes dots; add a new JWT regex constant (e.g., JWT_RE or
JWT_PATTERN) that matches typical three-dot base64url segments
(header.payload.signature) and include it in the set of checks used by
looksLikeSecret() alongside GITHUB_TOKEN_RE and GENERIC_SECRET_RE so raw JWTs
are detected and masked without widening GENERIC_SECRET_RE to over-match dotted
identifiers.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: c04ce96f-1b4f-4a38-88b2-2415d238dcc7

📥 Commits

Reviewing files that changed from the base of the PR and between 457f154 and 582f5a3.

📒 Files selected for processing (5)

• server/src/index.ts
• server/src/services/logSanitizer.ts
• server/src/services/logger.ts
• src/services/logger.ts
• src/utils/logSanitizer.ts

🚧 Files skipped from review as they are similar to previous changes (3)

• server/src/index.ts
• server/src/services/logger.ts
• src/services/logger.ts