Skip to content

don't add escaping to the command field #6519

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
jamadeo merged 1 commit into from
Jan 15, 2026
Merged

don't add escaping to the command field #6519

jamadeo merged 1 commit into from
Jan 15, 2026
+1 −2

Conversation

@jamadeo
Copy link
Collaborator

@jamadeo jamadeo commented Jan 15, 2026
edited
Loading

Removes the escaping from the "command" field in MCP extension list.

fixes #6500

Copilot AI review requested due to automatic review settings January 15, 2026 20:24
@jamadeo jamadeo changed the title Don't quote don't add escaping to the command field Jan 15, 2026
Copilot AI reviewed Jan 15, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR removes the quote function usage from shell-quote in the ExtensionList component, replacing it with a simple .join(' ') operation to display extension commands. The goal appears to be reducing dependency on the shell-quote library.

Changes:

  • Removed import of quote from shell-quote
  • Changed command display logic from quote([config.cmd, ...config.args]) to [config.cmd, ...config.args].join(' ')

ui/desktop/src/components/settings/extensions/subcomponents/ExtensionList.tsx
return {
description: config.description || null,
command: 'cmd' in config ? quote([config.cmd, ...config.args]) : null,
command: 'cmd' in config ? [config.cmd, ...config.args].join(' ') : null,
Copy link

Copilot AI Jan 15, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Simple space joining will incorrectly display commands with arguments containing spaces or special characters. For example, if args contain "value with spaces", it will display as ambiguous "cmd value with spaces" instead of properly showing "cmd 'value with spaces'". While this is only for display purposes (not execution), it makes it unclear to users what the actual command structure is. Consider keeping shell-quote for proper visual formatting, or implement proper escaping/quoting logic to handle arguments with spaces and special characters.

Copilot uses AI. Check for mistakes.
@jamadeo jamadeo merged commit b1a53f3 into main Jan 15, 2026
25 checks passed
@jamadeo jamadeo deleted the dont-quote branch January 15, 2026 20:50
lifeizhou-ap added a commit that referenced this pull request Jan 15, 2026
@lifeizhou-ap
Merge branch 'main' into lifei/refactor-cli-sessin-builder
745dc1f 
* main:
  don't add escaping to the command field (#6519)
  Fix popular topics not starting chat when clicked (#6508)
  fix[desktop]: deeplink ui repeat on refresh (#6469)
  fixed test compilation on main branch (#6512)
  fix: correctly parse extension name from tool call for MCP apps (#6482)
jamadeo added a commit that referenced this pull request Jan 16, 2026
@jamadeo
don't add escaping to the command field (#6519)
be50c88
@github-actions github-actions bot mentioned this pull request Jan 16, 2026
Merged
zanesq added a commit that referenced this pull request Jan 16, 2026
@zanesq
Merge branch 'main' of github.com:block/goose into zane/models-params
0c8ea78 
* 'main' of github.com:block/goose: (28 commits)
  chore(deps): bump aiohttp from 3.13.0 to 3.13.3 in /scripts/provider-error-proxy (#6539)
  chore(deps): bump brotli from 1.1.0 to 1.2.0 in /scripts/provider-error-proxy (#6538)
  docs: temp correction for agent directory (#6544)
  chore: upgrade rmcp (#6516)
  docs: clarify directory in /documentation readme (#6541)
  Release 1.20.0
  Standalone mcp apps (#6458)
  don't add escaping to the command field (#6519)
  Fix popular topics not starting chat when clicked (#6508)
  fix[desktop]: deeplink ui repeat on refresh (#6469)
  fixed test compilation on main branch (#6512)
  fix: correctly parse extension name from tool call for MCP apps (#6482)
  fixed 0 token in openrouter steaming (#6493)
  feat(goose-acp): enable parallel sessions with isolated agent state (#6392)
  copilot instruction to flag prelease docs (#6504)
  docs: acp mcp support (#6491)
  feat: add flatpak support for linux (#6387)
  fix(code_execution): serialize record_result output as JSON (#6495)
  perf(google): avoid accumulating thoughtSignatures across conversation history (#6462)
  fix(openai): make tool_call arguments optional and fix silent stream termination (#6309)
  ...
@github-actions github-actions bot mentioned this pull request Jan 22, 2026
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@DOsinga DOsinga DOsinga approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1.20.0 release branch: extensions have backslashes escaping characters in command field

3 participants

@jamadeo @DOsinga