feat: standalone Electron debugger with MCP integration

[ryanbas21]

Summary

Adds a standalone Electron desktop app for OIDC/OAuth2 debugging, following the react-devtools model. Apps opt in by calling attachDebugger() from @wolfcola/devtools-bridge — the debugger spawns automatically and receives events over WebSocket.

• New package: @wolfcola/devtools-standalone — Electron app with WebSocket server (@effect/platform NodeSocketServer), session management (per-session ManagedRuntime), IPC bridge, and MCP server (@effect/ai Toolkit)
• Enhanced: @wolfcola/devtools-bridge — attachDebugger() API with fetch/XHR/Node HTTP interceptors, WebSocket client with HMR singleton guard, auto-launch via binary discovery
• MCP integration — 10 tools (list-sessions, get-events, get-diagnosis, search-events, export-json, etc.) registered via @effect/ai Toolkit with Effect Schema parameters. Headless --mcp mode for stdio transport
• Reuses existing packages unchanged — devtools-types, devtools-core, devtools-ui (Elm)

Architecture

App (devtools-bridge)              Standalone Debugger (Electron)
  attachDebugger()                   Main Process
  ├─ WebSocket client ──── WS ────>    ├─ NodeSocketServer.makeWebSocket
  ├─ fetch/XHR interceptor             ├─ SessionManager (per-session runtime)
  └─ auto-launch                       ├─ DiagnosisEngine
                                       └─ IPC → Renderer (Elm UI)

Key decisions

• @effect/platform NodeSocketServer.makeWebSocket for the WS server — proper fiber lifecycle, scoped cleanup, FiberSet for concurrent connections
• @effect/ai Tool.make + Toolkit + McpServer.layerStdio for MCP — typed schemas, Layer composition, no manual JSON-RPC handling
• Schema.parseJson for WebSocket protocol — single decode step combining JSON parsing + schema validation
• Session/SessionInternal split — public API never exposes ManagedRuntime
• Typed SessionManagerShape with getState(), clearSession(), ingestEvent() instead of handleMessage(unknown) → unknown

Test plan

• 575 tests passing (80+ new), zero regressions
• tsc --noEmit clean on both packages
• Electron app launches, WS server binds to 127.0.0.1:19417
• Client connects, handshakes, sends SDK events — state updates correctly
• MCP tools invoked via McpServer.callTool — all 10 tools verified
• Integration tests: full handshake → event → state flow, multi-client sessions
• 4 rounds of automated PR review (code, errors, types, simplification)
• Manual: test --mcp stdio mode with Claude Code
• Manual: test attachDebugger() from a real app with HMR

🤖 Generated with Claude Code

[pullfrog]

Caution

This PR has two critical issues that should block merge: ManagedRuntime leak on disconnect (every disconnect/reconnect cycle leaks a runtime, unbounded under HMR reload) and unredacted OAuth token exposure in MCP data-retrieval tools (get-events, get-event-detail, search-events return raw tokens while export-json/export-markdown correctly apply redactFlowState). Also notable: race conditions in reconnect/remove and error message leakage to WebSocket clients.

TL;DR — Adds a standalone Electron desktop app for OIDC/OAuth2 debugging plus an enhanced attachDebugger() API in the bridge package, with WebSocket-based event transport and an optional @effect/ai MCP server for headless use. The architecture is well-structured and the test coverage is strong, but several correctness and security gaps need addressing.

Key changes

• New @wolfcola/devtools-standalone package — Electron app with WebSocket server, per-session ManagedRuntime, IPC bridge, Elm renderer, and MCP server with 10 tools
• Enhanced @wolfcola/devtools-bridge — attachDebugger() API with fetch/XHR/Node HTTP interceptors, WebSocket client with HMR singleton guard, auto-launch via binary discovery
• Protocol schemas — Typed Schema.parseJson-based WebSocket message protocol for handshake, SDK events, network events, and clear
• Core export — IncomingMessage type made public from devtools-core

Reuses devtools-types, devtools-core, and devtools-ui unchanged.

_{Summary ｜ 42 files ｜ 20 commits ｜ base: main ← feat/standalone-debugger}

  ^{｜ Fix all ➔ ｜ Fix 👍s ➔ ｜ View workflow run ｜ 𝕏}

[pullfrog]

Addressed all 7 review comments from review #4295525192:

1. panel.html — Added CSP meta tag (default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; connect-src 'none')
2. main.ts — Added will-quit handler that interrupts the daemon fiber and gracefully closes the WS server
3. mcp/tools.ts — Applied redactFlowState to get-events, get-event-detail, and search-events to redact OAuth tokens
4. session-manager.ts:remove — Switched to Ref.modify for atomic extract-and-dispose
5. session-manager.ts:disconnect — Atomically disposes runtime on disconnect to prevent ManagedRuntime leak
6. session-manager.ts:reconnect — Switched to Ref.modify for atomic check-and-insert with a fresh runtime
7. ws-server.ts — Return generic 'Failed to process message' to clients; full details logged server-side

Tests: 169 passing (48 standalone + 121 bridge), tsc --noEmit clean.

Task list (10/10 completed)

• Checkout PR feat: standalone Electron debugger with MCP integration #57 branch
• Fetch review comments for review #4295525192
• Add CSP meta tag to panel.html
• Add will-quit handler to main.ts
• Apply redactFlowState to MCP tools (get-events, get-event-detail, search-events)
• Fix remove() atomicity in session-manager.ts
• Fix disconnect() runtime leak in session-manager.ts
• Fix reconnect() atomicity in session-manager.ts
• Return generic error messages in ws-server.ts
• Test, commit, push, reply, resolve, report

  ^{｜ View workflow run ｜ via Pullfrog ｜ 𝕏}

[pullfrog]

Addressed all 7 review comments from review #4295525192:

1. panel.html — Added strict CSP meta tag (default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; connect-src 'none')
2. main.ts — Added will-quit handler that calls mgr.shutdown() to dispose all runtimes; changed window-all-closed to always quit (removed macOS platform check)
3. mcp/tools.ts — Applied redactFlowState(state) before returning events in get-events, get-event-detail, and search-events
4. session-manager.ts — remove: replaced non-atomic Ref.get+Ref.update with atomic Ref.modify
5. session-manager.ts — disconnect: now atomically extracts and disposes the ManagedRuntime via Ref.modify; reconnect creates a new runtime
6. session-manager.ts — reconnect: replaced non-atomic Ref.get+Ref.update with atomic Ref.modify for check-and-insert/replace
7. ws-server.ts — Error responses now return generic 'Failed to process message' to clients; full details logged server-side only

• Added shutdown() method to SessionManagerShape for clean disposal of all runtimes.

tsc --noEmit passes cleanly.

Task list (10/11 completed)

• Checkout PR branch feat: standalone Electron debugger with MCP integration #57
• Read review comments file
• Read source files to understand current code
• Fix Chore/fix description #1: Add CSP meta tag to panel.html
• Fix fix: use pnpm run version in release workflow #2: Add will-quit handler to main.ts
• Fix chore: version packages #3: Redact events in MCP tools (get-events, get-event-detail, search-events)
• Fix chore: add repository fields and fix CI workflows #4: Atomic Ref.modify in session-manager remove
• Fix chore: move-snapshot-job #5: Dispose ManagedRuntime on disconnect
• Fix fix: restore registry-url and add provenance for snapshot publish #6: Atomic Ref.modify in session-manager reconnect
• Fix fix: add publishConfig for public access on scoped packages #7: Generic error messages in ws-server.ts
• Commit, push, reply to comments, resolve threads

  ^{｜ View workflow run ｜ via Pullfrog ｜ 𝕏}

[pullfrog]

Reviewed the following changes:

• Added CLAUDE.md with project guidance for agentic workers
• Added docs/superpowers/plans/ implementation plan and docs/superpowers/specs/ design document
• Added unreferenced packages/devtools-types/src/lib/test.ts placeholder (see inline comment)

  ^{｜ Fix all ➔ ｜ Fix 👍s ➔ ｜ View workflow run ｜ 𝕏}

[pullfrog]

Addressed the single review comment: removed unreferenced packages/devtools-types/src/lib/test.ts placeholder file (confirmed no imports or re-exports exist). All 40 tests still pass. Committed as 06523de, pushed to feat/standalone-debugger.

Task list (5/5 completed)

• Checkout PR branch
• Read review comments and understand feedback
• Remove unreferenced packages/devtools-types/src/lib/test.ts
• Quality check: verify no other references exist, run typecheck/test
• Commit, push, reply to comment, resolve thread, report progress

  ^{｜ View workflow run ｜ via Pullfrog ｜ 𝕏}

[ryanbas21]

@pullfrog approve or request further changes.

[pullfrog]

No new issues. Reviewed the following changes:

• Added changeset with minor bumps for devtools-bridge and devtools-core
• Updated bridge README with standalone debugger docs and attachDebugger() API section
• Added comprehensive standalone package README (quick start, modes, protocol, MCP tools, architecture)

All 8 prior review findings remain resolved. No new code changes introduced.

  ^{｜ View workflow run ｜ 𝕏}

[pullfrog]

TL;DR — Adds a standalone Electron desktop app for OIDC/OAuth2 debugging with a new @wolfcola/devtools-standalone package, a public attachDebugger() API in devtools-bridge, and headless --mcp mode. Apps connect via WebSocket; events flow through the same pipeline as the Chrome extension.

Key changes

• New @wolfcola/devtools-standalone package — Electron app with @effect/platform NodeSocketServer.makeWebSocket for WS, session management with per-session ManagedRuntime, IPC bridge to Elm UI, and @effect/ai MCP server with 10 tools
• attachDebugger() API in devtools-bridge — WebSocket client with HMR singleton guard, fetch/XHR/Node HTTP interceptors filtered by isAuthRelated, auto-launch via binary discovery with exponential backoff
• MCP integration — 10 tools registered via @effect/ai Toolkit with Effect Schema parameters. Headless --mcp mode via McpServer.layerStdio
• Minimal core changes — IncomingMessage type exported from devtools-core; devtools-bridge gains devtools-core dependency for isAuthRelated

_{Summary ｜ 51 files ｜ 26 commits ｜ base: main ← feat/standalone-debugger}

  ^{｜ Fix all ➔ ｜ Fix 👍s ➔ ｜ View workflow run ｜ 𝕏}

[pullfrog]

When reconnecting, a new ManagedRuntime is created and assigned to the session, but the old runtime (existing.runtime) is never disposed. In the normal WS flow (connect → disconnect on socket close → reconnect), the old runtime is already disposed by disconnect, so this is safe. But if reconnect is called while a session is still connected (e.g., two concurrent WS connections with the same name), the old runtime is orphaned and its resources leak until process exit. Consider disposing the old runtime before replacing it.