feat: voice channel activity tracking — join/leave/move, leaderboard, export

[BillChirico]

Closes #135

Summary

Implements voice channel activity tracking for engagement metrics.

Features

🎙️ Join/Leave/Move Tracking

• voiceStateUpdate handler fires on every voice state change
• Sessions opened on join, closed on leave, replaced on move
• Bots and disabled guilds are skipped
• 5-minute periodic flush so in-progress sessions survive crashes

⏱️ Time-in-Voice Calculation

• In-memory activeSessions Map for hot-path tracking
• voice_sessions table stores: guild_id, user_id, channel_id, joined_at, left_at, duration_seconds
• Partial durations flushed every 5 minutes (not lost on crash)

🏆 Voice Leaderboard

• /voice leaderboard [period] — top 10 by voice time (week/month/all-time)
• Displays: rank medal, display name, formatted duration, session count

📊 User Stats

• /voice stats [user] — total voice time, sessions, favourite channel
• Works for any guild member

📥 Data Export

• /voice export [period] — moderator-only CSV download
• Up to 5000 sessions, filtered by period

Files Changed

File	Change
migrations/004_voice_sessions.cjs	New migration — voice_sessions table + indexes
src/modules/voice.js	Core tracking module (400 lines)
src/commands/voice.js	/voice slash command with 3 subcommands
src/modules/events.js	Wire voiceStateUpdate handler
src/index.js	Wire startVoiceFlush/stopVoiceFlush into lifecycle
src/api/utils/configAllowlist.js	Add voice to safe config keys
config.json	Add voice defaults (enabled: false, xpPerMinute: 2, dailyXpCap: 120)
tests/modules/voice.test.js	29 tests covering all paths

Config

{
  "voice": {
    "enabled": false,
    "xpPerMinute": 2,
    "dailyXpCap": 120,
    "logChannel": null
  }
}

Enable per-guild via /config set voice.enabled true.

Tests

✓ tests/modules/voice.test.js (29 tests)

Pre-existing failures (17) on main unrelated to this PR.

Notes

• GuildVoiceStates intent was already enabled ✅
• Config API allowlist updated so voice settings can be saved via dashboard ✅
• Feature is opt-in (voice.enabled: false by default) ✅

[coderabbitai]

Warning

Rate limit exceeded

@BillChirico has exceeded the limit for the number of commits that can be reviewed per hour. Please wait 16 minutes and 35 seconds before requesting another review.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

📥 Commits

Reviewing files that changed from the base of the PR and between abfb03c and 92f57da.

📒 Files selected for processing (9)

• config.json
• migrations/004_voice_sessions.cjs
• src/api/utils/configAllowlist.js
• src/api/utils/configValidation.js
• src/commands/voice.js
• src/index.js
• src/modules/events.js
• src/modules/voice.js
• tests/modules/voice.test.js

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch feat/issue-53

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[greptile-apps]

Greptile Summary

Implements voice channel activity tracking with dual-state architecture: in-memory Map for hot-path performance and PostgreSQL for persistence. The implementation correctly handles join/leave/move events with proper session lifecycle management.

Architecture highlights:

• DB-first writes (lines 81-85, 109-122 in voice.js) ensure consistency by updating database before in-memory state
• Unique partial index (migration line 39-42) prevents duplicate open sessions per user/guild
• 5-minute periodic flush (lines 320-345) writes partial durations to survive crashes without closing sessions
• Graceful degradation: close operations work even when feature is disabled (lines 155-171)

Implementation quality:

• All database queries use parameterized statements
• Proper error handling with try/catch and .catch() chains
• Winston logger used throughout (no console methods)
• Comprehensive test coverage (29 tests)
• ESM modules with correct .cjs extension for migration

Known limitation (acknowledged):
Crash recovery not implemented — if the bot restarts while users are in voice, orphaned DB sessions accumulate. The unique constraint prevents new sessions from opening for affected users until manual cleanup. Developer acknowledged this as acceptable trade-off.

Confidence Score: 4/5

• Safe to merge with one known limitation around crash recovery that has been acknowledged
• Strong implementation with proper error handling, parameterized queries, and test coverage. The crash recovery limitation is a known trade-off that won't cause data corruption, only orphaned sessions requiring manual cleanup. All other aspects follow project conventions correctly.
• No files require special attention — the crash recovery limitation in src/modules/voice.js has been acknowledged and documented in previous review threads

Important Files Changed

Filename	Overview
migrations/004_voice_sessions.cjs	Creates voice_sessions table with proper indexes and unique constraint to prevent duplicate open sessions
src/modules/voice.js	Core tracking module with in-memory session Map, DB persistence, periodic flush, and leaderboard/stats functions — crash recovery for orphaned sessions acknowledged as limitation
src/commands/voice.js	Three subcommands (leaderboard, stats, export) with proper permission checks and error handling
src/index.js	Wires startVoiceFlush and stopVoiceFlush into bot lifecycle startup/shutdown
src/modules/events.js	Registers voiceStateUpdate handler with error handling wrapper

Flowchart

%%{init: {'theme': 'neutral'}}%%
flowchart TD
    A[Discord voiceStateUpdate Event] --> B{User Action}
    B -->|Join Channel| C[handleVoiceStateUpdate]
    B -->|Leave Channel| C
    B -->|Move Channel| C
    B -->|Mute/Deafen| C
    
    C --> D{Bot or No Guild?}
    D -->|Yes| E[Skip]
    D -->|No| F{Event Type?}
    
    F -->|Leave| G[closeSession]
    F -->|Move| H[closeSession then openSession]
    F -->|Join| I{voice.enabled?}
    F -->|Mute/Deafen| E
    
    I -->|Yes| J[openSession]
    I -->|No| E
    
    G --> K[Update DB: set left_at, duration]
    G --> L[Delete from activeSessions Map]
    
    J --> M[Insert DB: new row with left_at=NULL]
    J --> N[Add to activeSessions Map]
    
    H --> K
    H --> L
    H --> O{voice.enabled?}
    O -->|Yes| M
    O -->|Yes| N
    O -->|No| E
    
    P[5-min Flush Timer] --> Q[flushActiveSessions]
    Q --> R[For each active session]
    R --> S[Update DB: partial duration]
    R --> T[Keep in activeSessions Map]
    
    U[voice leaderboard command] --> V[Query DB: SUM duration WHERE left_at NOT NULL]
    W[voice stats command] --> X[Query DB: total time and favorite channel]
    Y[voice export command] --> Z[Query DB: raw sessions as CSV]

Loading

_{Last reviewed commit: 92f57da}

[greptile-apps]

_{9 files reviewed, 2 comments}

_{Edit Code Review Agent Settings | Greptile}

[Copilot]

Pull request overview

Adds first-class voice activity tracking to the bot, persisting voice join/leave/move sessions to Postgres and exposing voice stats via a new /voice command suite.

Changes:

• Introduces voice_sessions persistence + periodic flushing of active (in-memory) sessions
• Wires a voiceStateUpdate event handler and lifecycle start/stop for the periodic flusher
• Adds /voice leaderboard|stats|export and accompanying tests

Reviewed changes

Copilot reviewed 8 out of 8 changed files in this pull request and generated 7 comments.

Show a summary per file

File	Description
migrations/004_voice_sessions.cjs	Creates voice_sessions table and indexes for querying voice activity
src/modules/voice.js	Implements session open/close, periodic flush, leaderboard/stats/export queries
src/modules/events.js	Registers voiceStateUpdate listener that delegates to the voice module
src/index.js	Starts/stops the voice flush interval during app lifecycle
src/commands/voice.js	Adds /voice slash command with leaderboard/stats/export subcommands
src/api/utils/configAllowlist.js	Allowlists voice for dashboard/API config writes
config.json	Adds default voice config section
tests/modules/voice.test.js	Adds unit tests for voice module behaviors

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Pull request overview

Copilot reviewed 9 out of 9 changed files in this pull request and generated 6 comments.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

closeSession() bails out when the in-memory activeSessions map doesn't contain an entry. After a process restart/crash, users can still be in voice but activeSessions will be empty, so subsequent leave/move events won't close the existing left_at IS NULL row in voice_sessions (and the UNIQUE partial index will then cause future joins to fail). Consider adding crash-recovery (e.g., hydrate activeSessions from voice_sessions WHERE left_at IS NULL on startup) and/or a DB fallback path in closeSession() when no in-memory session is found.

Suggested change

	* @param {string} guildId
	* @param {string} userId
	* @returns {Promise<number|null>} Duration in seconds, or null if no open session found.
	*/
	export async function closeSession(guildId, userId) {
	const key = sessionKey(guildId, userId);
	const session = activeSessions.get(key);
	if (!session) return null;
	const leftAt = new Date();
	const durationSeconds = Math.floor((leftAt.getTime() - session.joinedAt.getTime()) / 1000);
	// Update DB first - only delete from in-memory state after DB succeeds
	const pool = getPool();
	await pool.query(
	`UPDATE voice_sessions
	SET left_at = $1, duration_seconds = $2
	WHERE id = (
	SELECT id FROM voice_sessions
	WHERE guild_id = $3
	AND user_id = $4
	AND channel_id = $5
	AND left_at IS NULL
	ORDER BY joined_at DESC
	LIMIT 1
	)`,
	[leftAt.toISOString(), durationSeconds, guildId, userId, session.channelId],
	);
	* This function is resilient to process restarts: if no in-memory session
	* is found, it falls back to locating an open session in the database
	* (left_at IS NULL) for the given guild/user and closes it.
	*
	* @param {string} guildId
	* @param {string} userId
	* @returns {Promise<number|null>} Duration in seconds, or null if no open session found.
	*/
	export async function closeSession(guildId, userId) {
	const key = sessionKey(guildId, userId);
	let session = activeSessions.get(key);
	const leftAt = new Date();
	let durationSeconds = null;
	// Update DB first - only delete from in-memory state after DB succeeds
	const pool = getPool();
	if (session) {
	// Normal path: we have an in-memory session with a precise joinedAt.
	durationSeconds = Math.floor(
	(leftAt.getTime() - session.joinedAt.getTime()) / 1000,
	);
	await pool.query(
	`UPDATE voice_sessions
	SET left_at = $1, duration_seconds = $2
	WHERE id = (
	SELECT id FROM voice_sessions
	WHERE guild_id = $3
	AND user_id = $4
	AND channel_id = $5
	AND left_at IS NULL
	ORDER BY joined_at DESC
	LIMIT 1
	)`,
	[leftAt.toISOString(), durationSeconds, guildId, userId, session.channelId],
	);
	} else {
	// Fallback path: no in-memory session (e.g., after process restart).
	// Look for the most recent open session in the database and close it.
	const { rows } = await pool.query(
	`SELECT id, channel_id, joined_at
	FROM voice_sessions
	WHERE guild_id = $1
	AND user_id = $2
	AND left_at IS NULL
	ORDER BY joined_at DESC
	LIMIT 1`,
	[guildId, userId],
	);
	if (rows.length === 0) {
	// No open session exists in DB either.
	return null;
	}
	const openSession = rows[0];
	const joinedAt = new Date(openSession.joined_at);
	durationSeconds = Math.floor(
	(leftAt.getTime() - joinedAt.getTime()) / 1000,
	);
	await pool.query(
	`UPDATE voice_sessions
	SET left_at = $1, duration_seconds = $2
	WHERE id = $3`,
	[leftAt.toISOString(), durationSeconds, openSession.id],
	);
	}

[Copilot]

In the join path, openSession() errors are caught and swallowed, but info('Voice join', ...) is still logged unconditionally afterward. This can produce misleading logs (join recorded even though the DB insert failed). Log the join only when openSession() succeeds, or include a success/error flag in the log event.

Suggested change

	await openSession(guildId, userId, newChannel).catch((err) =>
	logError('openSession failed', { guildId, userId, error: err.message }),
	);
	// Log success only after openSession resolves
	info('Voice join', { guildId, userId, channelId: newChannel });
	try {
	await openSession(guildId, userId, newChannel);
	// Log successful join only after openSession resolves without throwing
	info('Voice join', {
	guildId,
	userId,
	channelId: newChannel,
	success: true,
	});
	} catch (err) {
	// Preserve existing error logging behavior for failed session opens
	logError('openSession failed', {
	guildId,
	userId,
	error: err?.message ?? String(err),
	});
	// Also record the join event with explicit failure status for log consumers
	info('Voice join', {
	guildId,
	userId,
	channelId: newChannel,
	success: false,
	error: err?.message ?? String(err),
	});
	}

[Copilot]

openSession() only adds the session to activeSessions after the INSERT completes. Because voiceStateUpdate handlers are async and Discord.js does not serialize/await listeners, multiple events for the same user can overlap (e.g., join immediately followed by move/leave). In that window, closeSession() may see no in-memory session and do nothing, leaving an open DB row and/or causing later INSERTs to hit the UNIQUE open-session constraint. Consider serializing operations per (guildId,userId) (mutex/queue) or using a DB-first approach (e.g., INSERT ... ON CONFLICT with the partial unique index) to make join/move/leave idempotent under concurrency.

[Copilot]

flushActiveSessions() performs one awaited UPDATE per active session in a tight loop. With many concurrent voice users, this becomes an N-queries-per-flush pattern and can extend flush duration (and potentially overlap intervals). Consider batching updates into a single query (e.g., VALUES/UNNEST + UPDATE ... FROM) or running updates with a bounded concurrency limit.

Suggested change

	* @returns {Promise<void>}
	*/
	export async function flushActiveSessions() {
	if (activeSessions.size === 0) return;
	const pool = getPool();
	const now = new Date();
	for (const [key, session] of activeSessions) {
	const [guildId, userId] = key.split(':');
	const partialDuration = Math.floor((now.getTime() - session.joinedAt.getTime()) / 1000);
	// Update duration_seconds without closing (left_at stays NULL)
	await pool
	.query(
	`UPDATE voice_sessions
	SET duration_seconds = $1
	WHERE guild_id = $2
	AND user_id = $3
	AND channel_id = $4
	AND left_at IS NULL`,
	[partialDuration, guildId, userId, session.channelId],
	)
	.catch((err) =>
	logError('Failed to flush voice session', { guildId, userId, error: err.message }),
	);
	}
	* The implementation performs a single batched UPDATE to avoid issuing
	* one awaited query per active session, which can become costly with
	* many concurrent voice users.
	*
	* @returns {Promise<void>}
	*/
	export async function flushActiveSessions() {
	if (activeSessions.size === 0) {
	return;
	}
	const pool = getPool();
	const now = new Date();
	/**
	* Collect parameter values and VALUES placeholders for a single
	* batched UPDATE statement.
	*/
	const valuesPlaceholders = [];
	const queryParams = [];
	let paramIndex = 1;
	for (const [key, session] of activeSessions) {
	const [guildId, userId] = key.split(':');
	const partialDuration = Math.floor(
	(now.getTime() - session.joinedAt.getTime()) / 1000,
	);
	// Each row contributes: (duration_seconds, guild_id, user_id, channel_id)
	valuesPlaceholders.push(
	`($${paramIndex}, $${paramIndex + 1}, $${paramIndex + 2}, $${paramIndex + 3})`,
	);
	queryParams.push(partialDuration, guildId, userId, session.channelId);
	paramIndex += 4;
	}
	// Safety check: if, for some reason, there are no sessions, nothing to do.
	if (valuesPlaceholders.length === 0) {
	return;
	}
	const sql = `
	UPDATE voice_sessions AS vs
	SET duration_seconds = data.duration_seconds
	FROM (
	VALUES
	${valuesPlaceholders.join(',\n ')}
	) AS data(duration_seconds, guild_id, user_id, channel_id)
	WHERE vs.guild_id = data.guild_id
	AND vs.user_id = data.user_id
	AND vs.channel_id = data.channel_id
	AND vs.left_at IS NULL;
	`;
	try {
	await pool.query(sql, queryParams);
	} catch (err) {
	// Log once for the batch; individual failures are not distinguishable here.
	logError('Failed to flush voice sessions batch', { error: err.message });
	}

[Copilot]

The export subcommand is documented as “moderators only”, but the permission check only allows members with Discord’s Manage Server permission. Elsewhere in the codebase, moderator-gated commands use isModerator(member, config) (supports bot owner + configured moderator/admin roles), e.g. src/utils/permissions.js and src/commands/announce.js. Consider switching this check to the shared helper so the authorization model is consistent across commands.

[Copilot]

The new voice config block uses different indentation than the rest of config.json, which makes the file formatting inconsistent and harder to diff going forward. Please reformat these lines to match the existing indentation style used throughout the file.

Suggested change

	},
	"voice": {
	"enabled": false,
	"xpPerMinute": 2,
	"dailyXpCap": 120,
	"logChannel": null
	}
	},
	"voice": {
	"enabled": false,
	"xpPerMinute": 2,
	"dailyXpCap": 120,
	"logChannel": null
	}