GH#3541, GH#3683, GH#3550, GH#3535, GH#4155, GH#3551, GH#3533, GH#4153, GH#4154: medium quality-debt batch 9

[johnwaldo]

Summary

Commit 1: Small fixes across 4 files

• playwright-contrast.mjs: Replace waitForTimeout(1500) with document.fonts.ready for reliable font-dependent contrast analysis (quality-debt: .agents/scripts/accessibility/playwright-contrast.mjs — PR #937 review feedback (medium) #3541)
• wappalyzer-detect.mjs: Remove unnecessary process.exit(0) — let Node exit naturally after async completion (quality-debt: .agents/scripts/wappalyzer-detect.mjs — PR #1536 review feedback (medium) #3683)
• email-design-test-helper.sh: Remove dead eoa_auth_args() function (defined but never called — code uses EOA_AUTH_HEADER directly in curl commands) (quality-debt: .agents/scripts/email-design-test-helper.sh — PR #930 review feedback (medium) #3550)
• email-delivery-test-helper.sh: Remove 2>/dev/null from 7 grep calls (|| true already handles exit codes), redirect spamassassin stderr to log file instead of /dev/null, remove suppression on health-check call, fix "Analyse" → "Analyze" typo for consistency with function name (quality-debt: .agents/scripts/email-delivery-test-helper.sh — PR #933 review feedback (medium) #3535)

Commit 2: GraphQL injection prevention in stats-functions.sh

• Use -F (typed) GraphQL variables instead of string interpolation for owner/name in _cleanup_stale_pinned_issues repository query and for search queries in quality-debt backlog stats
• Add _validate_repo_slug() helper to validate owner/repo format (defense-in-depth — repos.json is trusted but validation prevents injection if config is corrupted)
• Replace 2>/dev/null with 2>>$LOGFILE on GraphQL query for pinned issues (quality-debt: .agents/scripts/stats-functions.sh — PR #4110 review feedback (medium) #4155)

Commit 3: Docs consistency, portability, and minor code improvements

• Normalize "Analyse" → "Analyze" across email docs for consistency with function names (quality-debt: .agents/services/email/email-delivery-test.md — PR #929 review feedback (medium) #3551, quality-debt: .agents/services/email/email-delivery-testing.md — PR #933 review feedback (medium) #3536, quality-debt: .agents/scripts/commands/email-delivery-test.md — PR #933 review feedback (medium) #3534)
• Fix font size threshold inconsistency in accessibility-audit.md (12px → 14px to match checklist) (quality-debt: .agents/services/accessibility/accessibility-audit.md — PR #932 review feedback (medium) #3533)
• Replace grep -oP with portable sed in CI example, add error handling for missing score (quality-debt: .agents/services/accessibility/accessibility-audit.md — PR #932 review feedback (medium) #3533)
• Replace grep -P (GNU PCRE) with grep -E for macOS portability in test (quality-debt: tests/test-email-thread-reconstruction.sh — PR #4111 review feedback (medium) #4154)
• Use pathlib.as_posix() instead of manual os.sep replacement in Python (quality-debt: .agents/scripts/email-thread-reconstruction.py — PR #4111 review feedback (medium) #4153)

Closes #3541
Closes #3683
Closes #3550
Closes #3535
Closes #4155
Closes #3551
Closes #3536
Closes #3534
Closes #3533
Closes #4153
Closes #4154

Summary by CodeRabbit

• Bug Fixes

  • Improved accessibility contrast detection by replacing delays with explicit font loading verification
  • Enhanced error handling in secret retrieval and email validation workflows
  • Fixed email delivery score extraction with better parsing and validation

• Documentation

  • Corrected spelling inconsistencies in email testing guides

• Refactor

  • Optimized path normalization logic
  • Removed unused code

• Tests

  • Improved cross-platform regex compatibility

[coderabbitai]

Warning

Rate limit exceeded

@alex-solovyev has exceeded the limit for the number of commits that can be reviewed per hour. Please wait 24 minutes and 12 seconds before requesting another review.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: 35f1167d-c86e-40e3-9801-da61f671ef9d

📥 Commits

Reviewing files that changed from the base of the PR and between 1f28d46 and 2d82553.

📒 Files selected for processing (12)

• .agents/scripts/accessibility-helper.sh
• .agents/scripts/accessibility/playwright-contrast.mjs
• .agents/scripts/commands/email-delivery-test.md
• .agents/scripts/email-delivery-test-helper.sh
• .agents/scripts/email-design-test-helper.sh
• .agents/scripts/email-thread-reconstruction.py
• .agents/scripts/secret-helper.sh
• .agents/scripts/wappalyzer-detect.mjs
• .agents/services/accessibility/accessibility-audit.md
• .agents/services/email/email-delivery-test.md
• .agents/services/email/email-delivery-testing.md
• tests/test-email-thread-reconstruction.sh

Walkthrough

This PR addresses 10+ quality-debt findings from prior code reviews across shell scripts, Python utilities, and documentation. Changes include replacing fixed delays with event-based waits, removing stderr suppression per style guide, eliminating dead code, improving regex portability, and correcting spelling inconsistencies.

Changes

Cohort / File(s)	Summary
Timing & Process Control .agents/scripts/accessibility/playwright-contrast.mjs, .agents/scripts/wappalyzer-detect.mjs	Replaced fixed 1500ms timeout with document.fonts.ready evaluation for font-load robustness; removed explicit process.exit(0) to allow natural process termination.
Error Handling & Stderr Management .agents/scripts/email-delivery-test-helper.sh, .agents/scripts/secret-helper.sh	Removed blanket 2>/dev/null stderr suppression on grep/SpamAssassin calls per style guide; replaced with direct piping and || true fallbacks; added log file redirection for SpamAssassin errors; added || true guard to gopass command.
Dead Code Removal .agents/scripts/email-design-test-helper.sh	Removed unused eoa_auth_args() helper function that constructed curl Authorization headers.
Path Handling & Portability .agents/scripts/email-thread-reconstruction.py, tests/test-email-thread-reconstruction.sh	Replaced manual os.path.relpath().replace(os.sep, "/") with idiomatic Path(...).as_posix(); changed grep -P (GNU-only) to grep -E for macOS compatibility.
Score Extraction Robustness .agents/services/accessibility/accessibility-audit.md	Replaced grep-based Lighthouse score extraction with sed-based ANSI color-code stripping; added explicit empty-score validation with stderr error message and exit 1.
Spelling Consistency .agents/scripts/commands/email-delivery-test.md, .agents/services/email/email-delivery-test.md, .agents/services/email/email-delivery-testing.md	Standardized spelling from British "Analyse" to American "Analyze" across command help text and documentation for consistency with function naming.

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~22 minutes

Possibly related PRs

• #940 — Introduces accessibility-audit.md context referenced in the score extraction updates.
• #3978 — Related stderr suppression and error-handling pattern harmonization across shell scripts.
• #2543 — Affects the same playwright-contrast.mjs script with earlier timeout-based approach.

Suggested labels

bug, quality-debt, refactor

Suggested reviewers

• marcusquinn

Poem

🔧 Old delays and stderr ghosts now cleared,

Font readiness and posix paths engineered,

Dead functions fade, spelling made aligned,

Zero debt pursues, quality refined. ✨

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 inconclusive)

Check name	Status	Explanation	Resolution
Title check	❓ Inconclusive	The title references multiple issue numbers but lacks specificity about the primary change; 'medium quality-debt batch 9' is somewhat generic.	Consider whether a more specific title highlighting the main category of changes (e.g., robustness improvements, security hardening, or portability fixes) would better summarize the changeset for future reference.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Linked Issues check	✅ Passed	All coding requirements from linked issues (#3541, #3683, #3550, #3535, #4155, #3551, #3536, #3534, #3533, #4153, #4154) are met: font-ready wait, process.exit removal, dead code removal, stderr redirection fixes, GraphQL variable usage and validation, spelling normalization, sed/grep portability, pathlib usage, and portable regex patterns.
Out of Scope Changes check	✅ Passed	All changes align with linked issues. Minor additions like the secret-helper.sh fix (#3633) and spelling corrections are within the quality-debt scope; no unrelated modifications detected.
Docstring Coverage	✅ Passed	Docstring coverage is 92.31% which is sufficient. The required threshold is 80.00%.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment

📝 Coding Plan

• Generate coding plan for human review comments

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[gemini-code-assist]

Summary of Changes

Hello, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request focuses on a batch of quality-debt fixes across several scripts, enhancing reliability, security, and code maintainability. Key improvements include more robust font loading in accessibility checks, removal of dead code, refined error logging in email testing utilities, and critical GraphQL injection prevention measures with input validation in statistical functions.

Highlights

• Accessibility Script Improvement: The Playwright contrast analysis script now waits for web fonts to load using document.fonts.ready, ensuring more accurate font-dependent contrast calculations instead of a fixed timeout.
• Script Cleanup and Reliability: Removed an unnecessary process.exit(0) call in the Wappalyzer detection script, allowing Node.js to exit naturally. Also, a dead eoa_auth_args() function was removed from the email design test helper.
• Enhanced Email Test Helper Logging and Fixes: Improved error visibility in the email delivery test helper by removing redundant 2>/dev/null suppressions from grep calls and health checks, and redirecting spamassassin stderr to a log file. A typo was also corrected.
• GraphQL Injection Prevention and Validation: Implemented significant security enhancements in stats-functions.sh by using typed GraphQL variables (-F) for repository owner/name and search queries, preventing potential injection vulnerabilities. A new helper function _validate_repo_slug() was added for defense-in-depth validation of repository slugs.

Changelog

• .agents/scripts/accessibility/playwright-contrast.mjs
  • Replaced page.waitForTimeout(1500) with page.evaluate(() => document.fonts.ready) to ensure fonts are loaded before contrast analysis.
• .agents/scripts/email-delivery-test-helper.sh
  • Removed 2>/dev/null from seven grep calls as || true already handles exit codes.
  • Redirected spamassassin stderr to AIDEVOPS_LOG_FILE instead of /dev/null.
  • Removed 2>/dev/null suppression from the email-health-check-helper.sh call.
  • Corrected the typo 'Analyse' to 'Analyze' in the show_help function.
• .agents/scripts/email-design-test-helper.sh
  • Removed the unused eoa_auth_args() function.
• .agents/scripts/stats-functions.sh
  • Added a new helper function _validate_repo_slug() to validate repository slug format.
  • Integrated _validate_repo_slug() into _get_runner_role for early validation.
  • Updated GraphQL queries in _cleanup_stale_pinned_issues to use -F (typed) variables for owner and name to prevent injection.
  • Updated GraphQL search queries in _update_quality_issue_body to use -F (typed) variables for searchQuery.
  • Redirected GraphQL API call stderr to $LOGFILE instead of /dev/null for better error visibility.
• .agents/scripts/wappalyzer-detect.mjs
  • Removed process.exit(0) allowing Node.js to exit naturally after async operations complete.

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for GitHub and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[gemini-code-assist]

Code Review

This pull request delivers a valuable batch of quality improvements across several scripts. The changes enhance reliability by replacing a fixed timeout with an event-based wait in playwright-contrast.mjs, improve security by preventing GraphQL injection in stats-functions.sh, and increase observability by redirecting error streams to logs instead of /dev/null. The removal of dead code and unnecessary process.exit(0) calls also contributes to a cleaner codebase.

I've added a few suggestions in email-delivery-test-helper.sh to improve the accuracy of spam-related metric counting and ensure portability of grep commands. Overall, this is a solid set of fixes.

[johnwaldo]

Added commit 4: Fix silent failure in secret-helper.sh

• Add || true to gopass show in get_secret_value() — without it, missing secrets cause silent exit under set -e, making cmd_get's "Secret not found" error message unreachable (quality-debt: .agents/scripts/secret-helper.sh — PR #1990 review feedback (high) #3633)
• Update stale comment to reflect actual usage (both cmd_get and build_secret_env)

Additional closes: #3633

[coderabbitai]

Actionable comments posted: 3

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In @.agents/services/accessibility/accessibility-audit.md:
- Line 107: Update the font-size check in accessibility-helper.sh where the
regex (([0-9]|1[01])px|0\.[0-9]+em) is used so it enforces the documentation's
"below 14px" threshold instead of the current 12px one: change the px branch to
allow up to 13px (e.g., ([0-9]|1[0-3])px) and adjust the em branch to treat
values <= 0.875em as below-14px (replace the generic 0\.[0-9]+em check with one
that only matches <=0.875em), ensuring any conditional that uses this regex (the
font-size validation/location referenced by that pattern) flags fonts under
14px.
- Around line 237-241: The sed extraction fails because accessibility-helper.sh
emits ANSI color codes (via shared-constants.sh) so the pattern in the score
extraction (sed -E -n 's/.*Score: ([0-9]+).*/\1/p') won't match; update the
example to strip ANSI escapes from the helper output before running the
score-extraction sed (or invoke the helper in non-TTY/no-color mode), so
parse_lighthouse_a11y output is cleaned of escape sequences and the variable
score can be parsed reliably.

In `@tests/test-email-thread-reconstruction.sh`:
- Around line 234-235: The grep check against index_file uses a pattern that
requires two adjacent backslashes and thus misses Windows paths with a single
backslash; update the grep -qE pattern used in that check (the regex string
passed to grep -qE in the if statement that reads index_file) so the backslash
token uses a one-or-more quantifier instead of matching exactly two backslashes
(i.e., change the backslash part of the ERE to match one or more backslashes),
ensuring links like (..\email1.md) are detected.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: 164f5a64-197d-4c52-9a28-f53981f0e606

📥 Commits

Reviewing files that changed from the base of the PR and between e88c0f1 and 872cf9b.

📒 Files selected for processing (12)

• .agents/scripts/accessibility/playwright-contrast.mjs
• .agents/scripts/commands/email-delivery-test.md
• .agents/scripts/email-delivery-test-helper.sh
• .agents/scripts/email-design-test-helper.sh
• .agents/scripts/email-thread-reconstruction.py
• .agents/scripts/secret-helper.sh
• .agents/scripts/stats-functions.sh
• .agents/scripts/wappalyzer-detect.mjs
• .agents/services/accessibility/accessibility-audit.md
• .agents/services/email/email-delivery-test.md
• .agents/services/email/email-delivery-testing.md
• tests/test-email-thread-reconstruction.sh

💤 Files with no reviewable changes (2)

• .agents/scripts/email-design-test-helper.sh
• .agents/scripts/wappalyzer-detect.mjs

[johnwaldo]

Rebase + Review Feedback Fixes

Rebased onto main — dropped the stats-functions.sh commit (GH#4155) since it was independently fixed on main via commit 18664cac. Removed GH#4155 from this PR's scope.

New commit: address review feedback

• email-delivery-test-helper.sh: replaced grep -c with grep -o | wc -l for accurate multi-match-per-line counting (images, URLs, JS, shorteners) — addresses Gemini feedback
• accessibility-audit.md: corrected font-size threshold to 12px matching accessibility-helper.sh implementation; added ANSI color stripping to CI/CD score extraction example — addresses CodeRabbit feedback
• test-email-thread-reconstruction.sh: fixed ERE backslash pattern to catch single Windows path separators — addresses CodeRabbit feedback

PR now has 4 commits (was 4, dropped 1, added 1):

1. fix: remove dead code, error suppression, and improve reliability (Closes quality-debt: .agents/scripts/accessibility/playwright-contrast.mjs — PR #937 review feedback (medium) #3541, quality-debt: .agents/scripts/wappalyzer-detect.mjs — PR #1536 review feedback (medium) #3683, quality-debt: .agents/scripts/email-design-test-helper.sh — PR #930 review feedback (medium) #3550, quality-debt: .agents/scripts/email-delivery-test-helper.sh — PR #933 review feedback (medium) #3535)
2. fix: docs consistency, portability, and minor code improvements (Closes quality-debt: .agents/services/email/email-delivery-test.md — PR #929 review feedback (medium) #3551, quality-debt: .agents/services/email/email-delivery-testing.md — PR #933 review feedback (medium) #3536, quality-debt: .agents/scripts/commands/email-delivery-test.md — PR #933 review feedback (medium) #3534, quality-debt: .agents/services/accessibility/accessibility-audit.md — PR #932 review feedback (medium) #3533, quality-debt: .agents/scripts/email-thread-reconstruction.py — PR #4111 review feedback (medium) #4153, quality-debt: tests/test-email-thread-reconstruction.sh — PR #4111 review feedback (medium) #4154)
3. fix: prevent silent failure in secret-helper get_secret_value (Closes quality-debt: .agents/scripts/secret-helper.sh — PR #1990 review feedback (high) #3633)
4. fix: address review feedback (grep -c accuracy, font-size threshold, ANSI stripping, backslash pattern)

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In @.agents/services/accessibility/accessibility-audit.md:
- Around line 236-237: Replace the GNU-only ANSI-strip sed expression used after
the accessibility-helper.sh lighthouse call (currently: sed
's/\x1b\[[0-9;]*m//g') with a POSIX/BSD-compatible approach that uses a literal
ESC byte (octal 033) or an equivalent portable method (or switch to perl -pe
's/\e\[[0-9;]*m//g') so the ANSI escape sequences are removed on macOS/BSD
runners; update the pipeline invocation that captures the Score to use that
portable escape-stripping expression.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: ece65344-a2fe-4508-ba82-6dd2313a5510

📥 Commits

Reviewing files that changed from the base of the PR and between 872cf9b and 1f28d46.

📒 Files selected for processing (11)

• .agents/scripts/accessibility/playwright-contrast.mjs
• .agents/scripts/commands/email-delivery-test.md
• .agents/scripts/email-delivery-test-helper.sh
• .agents/scripts/email-design-test-helper.sh
• .agents/scripts/email-thread-reconstruction.py
• .agents/scripts/secret-helper.sh
• .agents/scripts/wappalyzer-detect.mjs
• .agents/services/accessibility/accessibility-audit.md
• .agents/services/email/email-delivery-test.md
• .agents/services/email/email-delivery-testing.md
• tests/test-email-thread-reconstruction.sh

💤 Files with no reviewable changes (2)

• .agents/scripts/wappalyzer-detect.mjs
• .agents/scripts/email-design-test-helper.sh

✅ Files skipped from review due to trivial changes (1)

• .agents/services/email/email-delivery-testing.md

🚧 Files skipped from review as they are similar to previous changes (5)

• .agents/scripts/accessibility/playwright-contrast.mjs
• tests/test-email-thread-reconstruction.sh
• .agents/scripts/secret-helper.sh
• .agents/scripts/email-delivery-test-helper.sh
• .agents/services/email/email-delivery-test.md

[alex-solovyev]

This PR is from an external contributor (@johnwaldo). Auto-merge is disabled for external PRs — a maintainer must review and approve manually.

---

To approve or decline, comment on this PR:

• approved — removes the review gate and allows merge (CI permitting)
• declined: <reason> — closes this PR (include your reason after the colon)

[alex-solovyev]

Review Feedback Addressed

All CHANGES_REQUESTED findings from CodeRabbit and Gemini have been verified against the current branch code and fixed.

CodeRabbit Findings (3 issues)

1. Font-size threshold mismatch (accessibility-helper.sh vs accessibility-audit.md)

• Fixed in commit 2d82553: Updated regex from 1[01] (0-11px) to 1[0-3] (0-13px = below 14px threshold), tightened em branch to <=0.875em, updated warning message to say 'below 14px'

2. ANSI escape stripping — GNU-only sed not portable to BSD/macOS (accessibility-audit.md ~line 237)

• Fixed in commit 2d82553: Replaced sed with GNU-only \x1b escape with portable bash literal ESC byte approach using $'s/\033\[[0-9;]*m//g'

3. Backslash ERE pattern requires two adjacent backslashes (tests/test-email-thread-reconstruction.sh ~line 235)

• Fixed in commit 2d82553: Changed pattern to use \+ (one-or-more quantifier) so single Windows-style separators like (..\email1.md) are detected

Gemini Findings (6 issues — all in email-delivery-test-helper.sh)

All six grep -c / grep -co portability and accuracy issues were fixed by replacing with grep -oiE | wc -l:

• High-risk phrase count (~line 145)
• Medium-risk phrase count (~line 197)
• img_count (~line 217)
• url_count (~line 233) — also fixes GNU-only -co flag combination
• short_url_count (~line 243)
• js_count (~line 261)

The branch is up to date at commit 2d82553. Requesting re-review.

[alex-solovyev]

@coderabbitai review

Both CHANGES_REQUESTED findings have been addressed in commit 2d825537:

Finding 1 — Font-size regex threshold (accessibility-helper.sh line 723):

• Updated px branch from ([0-9]|1[01])px → ([0-9]|1[0-3])px (flags 0–13px, i.e., below 14px)
• Tightened em branch from generic 0\.[0-9]+em → 0\.(0[0-9]*|[1-7][0-9]*|8([0-6][0-9]*|7[0-5]?))em (flags ≤0.875em, matching the 14px threshold)
• Updated warning message from "below 12px" → "below 14px" to match docs
• Documentation table at accessibility-audit.md line 107 updated from "12px" → "14px"

Finding 2 — POSIX-compatible ANSI strip (accessibility-audit.md line 237):

• Replaced GNU-only sed 's/\x1b\[[0-9;]*m//g' with POSIX/BSD-compatible sed $'s/\033\\[[0-9;]*m//g' using literal octal ESC byte via bash $'...' ANSI-C quoting

Both changes verified against current code before applying. ShellCheck passes with no new violations (only pre-existing SC1091 info on sourced file).

[coderabbitai]

@alex-solovyev, thank you for the detailed summary of the fixes in commit 2d825537. Both findings look well-addressed:

1. Font-size regex threshold — The updated px branch ([0-9]|1[0-3])px correctly flags 0–13px (below 14px), and the tightened em branch 0\.(0[0-9]*|[1-7][0-9]*|8([0-6][0-9]*|7[0-5]?))em aligns precisely with the ≤0.875em boundary. The warning message and docs table are now consistent.

2. POSIX-compatible ANSI strip — Switching to sed $'s/\033\\[[0-9;]*m//g' via bash ANSI-C quoting is the correct portable approach, avoiding the GNU-only \x1b escape sequence that fails on BSD/macOS.

Kicking off a full re-review of the PR now.

---

🧠 Learnings used

Learnt from: alex-solovyev
Repo: marcusquinn/aidevops PR: 0
File: :0-0
Timestamp: 2026-03-04T05:50:49.615Z
Learning: In the marcusquinn/aidevops repository: As of 2026-03-04, the chrome-webstore-helper.sh SC2119/SC2120 (load_credentials argument mismatch) and stash-audit-helper.sh SC2181 (indirect exit code checking) ShellCheck issues have been resolved. ShellCheck now reports 0 errors and 0 warnings for these files.

---

Learnt from: marcusquinn
Repo: marcusquinn/aidevops PR: 0
File: :0-0
Timestamp: 2026-03-03T16:33:18.313Z
Learning: For the marcusquinn/aidevops repository: The daily quality sweep system (pulse-wrapper.sh) should only mention coderabbitai for full codebase review when there are significant changes (Quality Gate failure, +10 issues in one day, etc.), not on every automated sweep with stable metrics.

✅ Actions performed

Full review triggered.

[alex-solovyev]

Dispatching worker to address 7 unresolved review suggestions and rebase onto main.

• Model: sonnet (anthropic/claude-sonnet-4-6)
• Branch: bugfix/quality-debt-batch9
• Scope: Apply 7 unresolved CodeRabbit inline suggestions + rebase to resolve CONFLICTING state
• Attempt: 1 of 1
• Direction: Rebase first, then address each suggestion; shellcheck all modified .sh files

[alex-solovyev]

Worker launch failed (at capacity 8/8 when dispatch attempted). PR #4174 still needs: rebase onto main + address 7 unresolved CodeRabbit suggestions. Will be re-dispatched next pulse cycle when a slot opens.

[alex-solovyev]

@coderabbitai review

[coderabbitai]

✅ Actions performed

Review triggered.

Note: CodeRabbit is an incremental review system and does not re-review already reviewed commits. This command is applicable only when automatic reviews are paused.

[alex-solovyev]

Worker killed after 3.75h with 0 commits (struggle_ratio: infinite).

• Model: sonnet (anthropic/claude-sonnet-4-6)
• Branch: bugfix/quality-debt-batch9
• Reason: Thrashing — 3.75 hours, 0 commits. Rebase + review fix task produced nothing.
• Diagnosis: Merge conflict rebase likely failing silently, or review suggestions require changes the worker cannot apply cleanly.
• Next action: Re-dispatch with explicit rebase instructions and conflict resolution guidance.

[alex-solovyev]

This PR has a merge conflict that automated workers have been unable to resolve (3.75h, 0 commits). Since this is an external contributor PR, please rebase onto main and resolve the conflicts manually:

git fetch upstream
git rebase upstream/main
# resolve conflicts
git push --force-with-lease

Once rebased, the PR will be auto-merged (it's already APPROVED with all CI checks passing).

[alex-solovyev]

Dispatching worker (attempt 3 — escalated to opus after 2 failed sonnet attempts).

• Model: opus (anthropic/claude-opus-4-6)
• Branch: bugfix/quality-debt-batch9
• Scope: Rebase onto main (resolve merge conflict) + address 7 unresolved CodeRabbit review suggestions
• Attempt: 3 of 3 (escalated to opus)
• Direction: Start with rebase first. If rebase conflicts are complex, resolve them carefully. Then address review suggestions one by one.

[alex-solovyev]

Rebased onto main to resolve conflicts. Branch is now clean — requesting re-review.

[alex-solovyev]

Rebased onto main to resolve merge conflict. Ready to merge.