GH#3605: fix critical quality-debt from PR #796 review — unsafe echo -e in supervisor log functions

[alex-solovyev]

Summary

Fixes the two issues flagged by the Gemini code review on PR #796:

1. Unsafe argument handling (echo -e with $*): echo -e interprets backslash sequences in the message string. If a log message contains \n, \t, or other escape sequences, they would be silently transformed, corrupting log output. Switching to printf "%b %s\n" passes the caller's message as a %s argument — backslash sequences in $* are never interpreted.

2. Explicit return 0 statements: Already present in the multi-line form in _common.sh (added during the supervisor modularisation in t1031: Modularize supervisor-helper.sh into domain modules #1359). This commit preserves them and adds a block comment documenting the printf rationale.

Changes

• .agents/scripts/supervisor-archived/_common.sh: Replace echo -e "... $*" with printf "%b %s\n" "..." "$*" in all five logging functions (log_info, log_success, log_warn, log_error, log_verbose). Preserve existing return 0 statements.

Verification

• ShellCheck passes (only SC1091 info for sourced file, expected)
• Manual test confirms: backslash sequences in messages are printed literally, not interpreted; ANSI color codes in the format string still render correctly; log_verbose only outputs when SUPERVISOR_VERBOSE=true; all functions return 0

Closes #3605

[coderabbitai]

Important

Review skipped

Auto reviews are limited based on label configuration.

🚫 Review skipped — only excluded labels are configured. (1)

• no-review

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: a2163f88-618f-40ec-8260-55ee72b56580

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Use the checkbox below for a quick retry:

• 🔍 Trigger review

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch bugfix/gh3605-logging-quote-return

📝 Coding Plan

• Generate coding plan for human review comments

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[gemini-code-assist]

Summary of Changes

Hello, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request resolves a critical quality debt by refactoring the supervisor's logging functions to use printf instead of echo -e. This change significantly improves the safety and reliability of log output by preventing the unintended interpretation of backslash sequences in log messages, thus ensuring accurate and uncorrupted logging. The update also includes documentation for the printf rationale and preserves existing explicit return statements.

Highlights

• Unsafe argument handling: Replaced echo -e with printf "%b %s\n" in supervisor log functions to prevent unintended interpretation of backslash sequences in log messages, enhancing log output reliability.
• Explicit return statements: Preserved existing return 0 statements in logging functions and added a block comment documenting the printf rationale for clarity and maintainability.

Changelog

• .agents/scripts/supervisor-archived/_common.sh
  • Replaced echo -e "... $*" with printf "%b %s\n" "..." "$*" in log_info, log_success, log_warn, log_error, and log_verbose functions.
  • Added a block comment explaining the rationale for using printf to safely handle arbitrary message content.

Activity

• Addressed two issues flagged during a Gemini code review on PR fix: redirect supervisor log functions to stderr (unblocks all workers) #796 related to unsafe argument handling and explicit return statements.
• Verified changes with ShellCheck, confirming only expected SC1091 info for sourced files.
• Manually tested to confirm backslash sequences are printed literally, ANSI color codes render correctly, and log_verbose functions as expected.
• Closed issue quality-debt: PR #796 review feedback (critical) #3605.

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for GitHub and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[github-actions]

🔍 Code Quality Report

�[0;35m[MONITOR]�[0m Code Review Monitoring Report

�[0;34m[INFO]�[0m Latest Quality Status:
SonarCloud: 0 bugs, 0 vulnerabilities, 413 code smells

�[0;34m[INFO]�[0m Recent monitoring activity:
Fri Mar 13 07:20:20 UTC 2026: Code review monitoring started
Fri Mar 13 07:20:20 UTC 2026: SonarCloud - Bugs: 0, Vulnerabilities: 0, Code Smells: 413

📈 Current Quality Metrics

• BUGS: 0
• CODE SMELLS: 413
• VULNERABILITIES: 0

Generated on: Fri Mar 13 07:20:24 UTC 2026

---

Generated by AI DevOps Framework Code Review Monitoring

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[gemini-code-assist]

Code Review

This pull request correctly addresses a critical security issue by replacing the unsafe echo -e with printf for logging. This prevents potential log corruption or unexpected behavior from special characters in log messages. My review includes suggestions to further improve the robustness of these logging functions by ensuring they don't cause a script to exit on a logging failure, and to improve consistency across all the logging functions.

[gemini-code-assist]

For improved robustness, consider adding || true to the printf command. This prevents the script from exiting on a logging failure (e.g., a broken pipe on stderr) when set -e is active. This change also makes the explicit return 0 redundant, as the command will always succeed.

Suggested change

	printf "%b %s\n" "${BLUE}[SUPERVISOR]${NC}" "$*" >&2
	return 0
	printf "%b %s\n" "${BLUE}[SUPERVISOR]${NC}" "$*" >&2 || true

References

1. When set -e is active, using || true for non-critical commands like logging prevents the script from exiting prematurely on minor failures (e.g., broken pipe), ensuring robustness.

[gemini-code-assist]

For consistency and robustness, consider adding || true here as well. This prevents script termination on logging failures and makes the return 0 redundant.

Suggested change

	printf "%b %s\n" "${GREEN}[SUPERVISOR]${NC}" "$*" >&2
	return 0
	printf "%b %s\n" "${GREEN}[SUPERVISOR]${NC}" "$*" >&2 || true

References

1. When set -e is active, using || true for non-critical commands like logging prevents the script from exiting prematurely on minor failures (e.g., broken pipe), ensuring robustness.

[gemini-code-assist]

For consistency and robustness, consider adding || true here as well. This prevents script termination on logging failures and makes the return 0 redundant.

Suggested change

	printf "%b %s\n" "${YELLOW}[SUPERVISOR]${NC}" "$*" >&2
	return 0
	printf "%b %s\n" "${YELLOW}[SUPERVISOR]${NC}" "$*" >&2 || true

References

1. When set -e is active, using || true for non-critical commands like logging prevents the script from exiting prematurely on minor failures (e.g., broken pipe), ensuring robustness.

[gemini-code-assist]

For consistency and robustness, consider adding || true here as well. This prevents script termination on logging failures and makes the return 0 redundant.

Suggested change

	printf "%b %s\n" "${RED}[SUPERVISOR]${NC}" "$*" >&2
	return 0
	printf "%b %s\n" "${RED}[SUPERVISOR]${NC}" "$*" >&2 || true

References

1. When set -e is active, using || true for non-critical commands like logging prevents the script from exiting prematurely on minor failures (e.g., broken pipe), ensuring robustness.