refactor: Replace @cocalc/ansi-to-react with the anser library directly

[kingston]

Summary by CodeRabbit

• New Features

  • Introduced an AnsiText component for rendering ANSI color formatted text.
  • Enhanced console displays with improved text formatting capabilities.

• Refactor

  • Updated the console display functionality to integrate the new AnsiText component for more consistent output.

• Tests

  • Added comprehensive tests to validate the rendering and styling of the AnsiText component across various scenarios.

[linear]

ENG-588 Replace cocalc/ansi-to-react

[changeset-bot]

🦋 Changeset detected

Latest commit: dd47fbd

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 3 packages

Name	Type
@halfdomelabs/project-builder-web	Patch
@halfdomelabs/project-builder-cli	Patch
@halfdomelabs/project-builder-test	Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

[coderabbitai]

Walkthrough

The pull request replaces the dependency on @cocalc/ansi-to-react with the anser library in the @halfdomelabs/project-builder-web package. It updates the dependency in package.json, refactors import paths in a modal component, and revises the Console component to use the new AnsiText component for rendering ANSI-formatted text. Additionally, a new React component, AnsiText, along with its unit tests, has been added. Finally, the central export file has been updated to expose the new and modified components.

Changes

File(s)	Change Summary
.changeset/quiet-flies-report.md	Added a changeset entry noting a patch for @halfdomelabs/project-builder-web that replaces @cocalc/ansi-to-react with anser.
packages/project-builder-web/package.json	Updated dependencies: removed "@cocalc/ansi-to-react": "^7.0.0" and added "anser": "2.3.2".
packages/project-builder-web/src/app/…/ProjectSyncModal.tsx	Refactored imports: updated ConsoleRef and Console import paths to use @src/components for improved module structure.
packages/project-builder-web/src/components/AnsiText/AnsiText.tsx packages/project-builder-web/src/components/AnsiText/AnsiText.unit.test.tsx	Introduced a new AnsiText React component that renders ANSI-formatted text using anser, along with comprehensive unit tests using vitest and @testing-library/react.
packages/project-builder-web/src/components/Console/Console.tsx	Modified the Console component: replaced the usage of @cocalc/ansi-to-react with AnsiText and updated its export style to a direct export.
packages/project-builder-web/src/components/index.ts	Added new export statements for the AnsiText and Console components to expand available module exports.

Sequence Diagram(s)

sequenceDiagram
    participant User
    participant Console
    participant AnsiText
    participant anserLib

    User->>Console: Provide console text input
    Console->>AnsiText: Delegates text rendering
    AnsiText->>anserLib: Parses ANSI text
    anserLib-->>AnsiText: Returns formatted output
    AnsiText->>Console: Supplies styled text elements
    Console->>User: Displays formatted console output

Loading

---

📜 Recent review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Lite

📥 Commits

Reviewing files that changed from the base of the PR and between dd47fbd and f9fb8b6.

📒 Files selected for processing (1)

• packages/project-builder-web/src/components/AnsiText/AnsiText.unit.test.tsx (1 hunks)

🚧 Files skipped from review as they are similar to previous changes (1)

• packages/project-builder-web/src/components/AnsiText/AnsiText.unit.test.tsx

---

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (1)

packages/project-builder-web/src/components/AnsiText/AnsiText.tsx (1)

59-66: Consider alternative implementation for blink effect.

The current implementation adds 'blink' to textDecoration, but CSS has no standard 'blink' text-decoration value. For better browser compatibility, consider implementing blinking with CSS animations.

-if (decorations.includes('blink')) textDecorations.push('blink');
+if (decorations.includes('blink')) {
+  style.animation = 'blink 1s step-end infinite';
+}

And add a global CSS rule:

@keyframes blink {
  0%, 100% { opacity: 1; }
  50% { opacity: 0; }
}

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Lite

📥 Commits

Reviewing files that changed from the base of the PR and between 7cede9b and a65eaf4.

⛔ Files ignored due to path filters (1)

• pnpm-lock.yaml is excluded by !**/pnpm-lock.yaml

📒 Files selected for processing (7)

• .changeset/quiet-flies-report.md (1 hunks)
• packages/project-builder-web/package.json (1 hunks)
• packages/project-builder-web/src/app/AppLayout/ProjectSyncModal.tsx (1 hunks)
• packages/project-builder-web/src/components/AnsiText/AnsiText.tsx (1 hunks)
• packages/project-builder-web/src/components/AnsiText/AnsiText.unit.test.tsx (1 hunks)
• packages/project-builder-web/src/components/Console/Console.tsx (3 hunks)
• packages/project-builder-web/src/components/index.ts (1 hunks)

🧰 Additional context used

🧬 Code Definitions (2)

packages/project-builder-web/src/components/AnsiText/AnsiText.unit.test.tsx (1)

packages/project-builder-web/src/components/AnsiText/AnsiText.tsx (1) (1)

• AnsiText (17-83)

packages/project-builder-web/src/components/Console/Console.tsx (1)

packages/project-builder-web/src/components/AnsiText/AnsiText.tsx (1) (1)

• AnsiText (17-83)

🔇 Additional comments (19)

.changeset/quiet-flies-report.md (1)

1-6: Changeset looks good!

The changeset correctly documents the dependency change as a patch release, which is appropriate for this type of internal refactoring that doesn't affect the public API.

packages/project-builder-web/package.json (1)

53-53:

Details

✅ Verification successful

Dependency change looks good!

The direct use of the anser library at version 2.3.2 is appropriate. This eliminates a dependency layer by using the underlying library directly instead of going through @cocalc/ansi-to-react.

---

🌐 Web query:

Is anser 2.3.2 the latest version and are there any known vulnerabilities?

💡 Result:

The latest version of the anser npm package is 2.3.2, released on February 13, 2025 [7]. As of the current date (March 20, 2025), no security vulnerabilities have been reported for this version or any previous releases in the available sources.

Key Details:

1. Latest Version Stability:

   • No CVEs or security advisories are documented in the search results for anser 2.3.2 [7], unlike other packages like Log4j [2][8], OpenSSL [3], or Apache Spark [5], which have well-documented vulnerabilities.
   • The package is described as a low-level ANSI sequence parser for converting terminal output to HTML/JSON, with no mention of security risks in its core functionality [7].

2. Comparison to Other Packages:
   While the query results highlight critical vulnerabilities in libraries like:

   • Log4j (CVE-2021-44832 [2])
   • OpenSSL (CVE-2022-3602 and CVE-2022-3786 [3])
   • Apple WebKit (CVE-2025-24201 [11])
     There is no similar advisory for anser.

3. Recommendations:

   • Always verify updates via the npm registry for post-March 2025 releases.
   • Even without known vulnerabilities, follow standard security practices (audit third-party packages, restrict unnecessary privileges).

Citations:

• 1: https://learn.microsoft.com/en-us/entra/identity/hybrid/connect/reference-connect-version-history
• 2: https://logging-log4j.staged.apache.org/log4j/2.x/security.html
• 3: https://pentest-tools.com/blog/openssl-vulnerabilities-2022
• 4: https://www.ubisoft.com/en-ca/game/rainbow-six/siege/news-updates/G4txnR6Lnq2SKwm71IsJX/update-23
• 5: https://spark.apache.org/security.html
• 6: https://www.irs.gov/irm/part10/irm_10-008-050r
• 7: https://www.npmjs.com/package/anser
• 8: https://www.cisa.gov/news-events/news/apache-log4j-vulnerability-guidance
• 9: https://backstage.forgerock.com/knowledge/advisories/article/a39102625
• 10: https://www.emvco.com/knowledge-hub/what-is-new-with-emv-3ds-v2-3/
• 11: https://cybernews.com/security/apple-fixes-zero-day-webkit/
• 12: https://cve.mitre.org/cgi-bin/cvekey.cgi
• 13: https://www.irs.gov/irm/part35/irm_35-002-002
• 14: https://www.first.org/cvss/v2/guide
• 15: https://itexamanswers.net/2-3-2-module-quiz-switching-concepts-answers.html
• 16: https://www.bigcommerce.com/blog/magento-security-vulnerabilities/
• 17: https://www.npmjs.com/package/anser/v/1.3.0?activeTab=versions
• 18: https://nvd.nist.gov/vuln/detail/cve-2021-44228
• 19: https://secure.software/npm/packages/anser
• 20: quartz-scheduler/quartz#943

---

Review Approved: Dependency Change Verified!

The update to using the anser library at version 2.3.2 has been confirmed as appropriate. According to the latest data, version 2.3.2 is indeed the current release (released February 13, 2025) and no known vulnerabilities have been reported. This change effectively removes an unnecessary dependency layer by replacing @cocalc/ansi-to-react with its underlying library.

packages/project-builder-web/src/components/index.ts (2)

3-3: Export of AnsiText component looks good!

Adding the AnsiText component to the main exports makes it available for use throughout the application.

---

6-6: Export of Console component looks good!

Exporting the Console component from the main index file improves modularity and follows the pattern used for other components.

packages/project-builder-web/src/app/AppLayout/ProjectSyncModal.tsx (1)

14-16: Import changes look good!

The updates to import statements correctly reflect the changes in how the Console component is exported. Using the barrel import from '@src/components' is cleaner and more maintainable than importing directly from the component folder.

packages/project-builder-web/src/components/Console/Console.tsx (3)

15-15: Import looks good.

The import for the new AnsiText component correctly uses a relative path.

---

25-25: Export style improvement.

Changing from a separate export statement to a direct export with the declaration improves readability and follows modern React patterns.

---

94-94: Successfully migrated from Ansi to AnsiText.

The component has been properly updated to use the new AnsiText component with the same props interface, maintaining functionality while removing the dependency on @cocalc/ansi-to-react.

packages/project-builder-web/src/components/AnsiText/AnsiText.unit.test.tsx (5)

1-36: Well-structured test setup with proper typing.

The test file has a well-organized structure with:

• Proper imports and type definitions
• Clean mocking of the anser library
• A helper function for creating properly typed mock entries
• Correctly typed mock setup with vi.mocked

The attention to TypeScript typing is particularly commendable.

---

37-56: Good test hygiene and basic functionality testing.

This test section:

• Uses beforeEach to clear mocks between tests
• Tests the basic rendering of plain text
• Verifies that ansiToJson is called with the correct parameters

This ensures isolation between tests and validates the most basic functionality first.

---

58-100: Comprehensive styling tests.

These tests thoroughly validate that:

• Text colors (foreground and background) are correctly applied
• Text decorations (bold, italic, underline) are properly handled

The style assertions are specific and verify exact CSS property values.

---

102-126: Effective testing of complex rendering scenarios.

This test effectively validates the component's ability to handle multiple differently-styled segments within a single line, ensuring that each segment maintains its own unique styling.

---

128-155: Thorough multiline text testing.

This test:

• Verifies correct handling of line breaks
• Confirms that each line can have its own distinct styling
• Checks that ansiToJson is called exactly once per line

This ensures the component correctly handles more complex text inputs.

packages/project-builder-web/src/components/AnsiText/AnsiText.tsx (6)

1-8: Clean interface definition and imports.

The component has:

• Proper type imports from React
• A direct import of the anser library
• A clear and simple props interface

This follows good React component design patterns.

---

9-16: Excellent documentation.

The JSDoc comments:

• Clearly describe the component's purpose
• Explicitly state it uses inline styles only
• Document the props with proper param tags
• Include return type information

This level of documentation greatly enhances code maintainability.

---

17-41: Well-implemented ANSI parsing logic.

The component effectively:

• Splits text by newlines to handle multiline input
• Uses anser.ansiToJson with the correct parameters to get RGB values
• Properly applies both foreground and background colors with correct CSS syntax

The implementation is clean and well-commented.

---

42-70: Comprehensive text decoration handling.

The code:

• Handles all common ANSI text decorations (bold, italic, dim, hidden)
• Properly combines multiple text-decoration values when needed
• Uses appropriate CSS properties for each decoration type

This ensures full compatibility with terminal ANSI output.

---

71-83: Efficient rendering approach.

The component:

• Uses a clean Fragment to render multiple lines without adding extra DOM nodes
• Correctly applies key props to both divs and spans for React reconciliation
• Efficiently applies all computed styles to each span

This results in a performant and semantically correct rendering.

---

84-85: Export pattern supports both named and default imports.

Providing both a named export and a default export gives consumers flexibility in how they import the component.