fix: sentry memory leak by patching `@sentry/remix` to stop cloning request #2389

ericallam · 2025-08-13T15:40:19Z

No description provided.

changeset-bot · 2025-08-13T15:40:23Z

⚠️ No Changeset found

Latest commit: a854230

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

coderabbitai · 2025-08-13T15:40:26Z

Warning

Rate limit exceeded

@ericallam has exceeded the limit for the number of commits or files that can be reviewed per hour. Please wait 1 minutes and 42 seconds before requesting another review.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

📥 Commits

Reviewing files that changed from the base of the PR and between dd77aea and a854230.

⛔ Files ignored due to path filters (1)

pnpm-lock.yaml is excluded by !**/pnpm-lock.yaml

📒 Files selected for processing (6)

apps/webapp/app/routes/admin.api.v1.gc.ts (2 hunks)
apps/webapp/app/routes/admin.api.v1.snapshot.ts (2 hunks)
apps/webapp/app/routes/api.v1.mock.ts (1 hunks)
apps/webapp/package.json (1 hunks)
package.json (1 hunks)
patches/@[email protected] (1 hunks)

Walkthrough

apps/webapp/.gitignore: Adds .memory-snapshots.
apps/webapp/app/routes/admin.api.v1.snapshot.ts and admin.api.v1.gc.ts: Replace session-based requireUser with authenticateApiRequestWithPersonalAccessToken, verify admin via Prisma, and add explicit GC stabilization in the snapshot route.
apps/webapp/memory-leak-detector.js: New MemoryLeakDetector CLI/class to build/run the server, run phased load tests, capture V8 or process memory snapshots, analyze growth, and emit a JSON report.
apps/webapp/sentry.server.ts: Adds includeLocalVariables: false to Sentry.init.
apps/webapp/app/presenters/v3/TaskListPresenter.server.ts: Replace exported singleton with getTaskListPresenter() factory.
apps/webapp/app/routes/.../_index/route.tsx: Use getTaskListPresenter() and instantiate per-request.
apps/webapp/app/routes/api.v1.mock.ts: Add non-production mock action route returning JSON.
apps/webapp/app/v3/scheduleEngine.server.ts: Introduce module-scoped TriggerTaskService reused across invocations.
package.json and patches/@[email protected]: Pin @sentry/remix to 9.46.0, add pnpm patch that removes request.clone()/formData inspection in RemixInstrumentation.

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~40 minutes

✨ Finishing Touches

📝 Generate Docstrings

🧪 Generate unit tests

Create PR with unit tests
Post copyable unit tests in a comment
Commit unit tests in branch fix/sentry-memory-leak

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

Review comments: Directly reply to a review comment made by CodeRabbit. Example:
- I pushed a fix in commit <commit_id>, please review it.
- Open a follow-up GitHub issue for this discussion.
Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query.
PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
- @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
- @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.

Support

Need help? Create a ticket on our support page for assistance with any issues or questions.

CodeRabbit Commands (Invoked using PR/Issue comments)

Type @coderabbitai help to get the list of available commands.

Other keywords and placeholders

Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (`.coderabbit.yaml`)

You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
Please see the configuration documentation for more information.
If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Status, Documentation and Community

Visit our Status Page to check the current availability of CodeRabbit.
Visit our Documentation for detailed information on how to use CodeRabbit.
Join our Discord Community to get help, request features, and share feedback.
Follow us on X/Twitter for updates and announcements.

coderabbitai

Actionable comments posted: 1

🔭 Outside diff range comments (1)

apps/webapp/app/routes/admin.api.v1.snapshot.ts (1)
72-79: Add missing export and switch to env for ECS_CONTAINER_METADATA_URI

The ECS_CONTAINER_METADATA_URI var isn’t defined in env.server.ts, and this file is directly reading process.env.*. Per our webapp conventions, all env vars must be surfaced via the env export.

• In apps/webapp/app/env.server.ts
 export const env = {
   // …existing entries
+  /** URI for ECS container metadata */
+  ECS_CONTAINER_METADATA_URI: process.env.ECS_CONTAINER_METADATA_URI!,
 };
• In apps/webapp/app/routes/admin.api.v1.snapshot.ts (lines 72–79)
- if (!process.env.ECS_CONTAINER_METADATA_URI) {
+ if (!env.ECS_CONTAINER_METADATA_URI) {
    return "local";
  }

- const url = new URL(process.env.ECS_CONTAINER_METADATA_URI);
+ const url = new URL(env.ECS_CONTAINER_METADATA_URI);

  return url.pathname.split("/")[2].split("-")[0];
}
• Ensure at the top of this file you import the shared env:
import { env } from "app/env.server";
This aligns with our pattern of centralizing environment-variable access through env.server.ts.

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between b39658b and e674dee.

📒 Files selected for processing (4)

apps/webapp/.gitignore (1 hunks)
apps/webapp/app/routes/admin.api.v1.snapshot.ts (2 hunks)
apps/webapp/memory-leak-detector.js (1 hunks)
apps/webapp/sentry.server.ts (1 hunks)

🚧 Files skipped from review as they are similar to previous changes (2)

apps/webapp/.gitignore
apps/webapp/sentry.server.ts

🧰 Additional context used

📓 Path-based instructions (3)

**/*.{ts,tsx}

📄 CodeRabbit Inference Engine (.github/copilot-instructions.md)

**/*.{ts,tsx}: Always prefer using isomorphic code like fetch, ReadableStream, etc. instead of Node.js specific code
For TypeScript, we usually use types over interfaces
Avoid enums
No default exports, use function declarations

Files:

apps/webapp/app/routes/admin.api.v1.snapshot.ts

{packages/core,apps/webapp}/**/*.{ts,tsx}

📄 CodeRabbit Inference Engine (.github/copilot-instructions.md)

We use zod a lot in packages/core and in the webapp

Files:

apps/webapp/app/routes/admin.api.v1.snapshot.ts

apps/webapp/**/*.{ts,tsx}

📄 CodeRabbit Inference Engine (.cursor/rules/webapp.mdc)

apps/webapp/**/*.{ts,tsx}: In the webapp, all environment variables must be accessed through the env export of env.server.ts, instead of directly accessing process.env.
When importing from @trigger.dev/core in the webapp, never import from the root @trigger.dev/core path; always use one of the subpath exports as defined in the package's package.json.

Files:

apps/webapp/app/routes/admin.api.v1.snapshot.ts

🧬 Code Graph Analysis (1)

apps/webapp/app/routes/admin.api.v1.snapshot.ts (1)

apps/webapp/app/services/personalAccessToken.server.ts (1)

authenticateApiRequestWithPersonalAccessToken (105-114)

🪛 Biome (2.1.2)

apps/webapp/memory-leak-detector.js

[error] 529-529: Shouldn't redeclare 'heapGrowth'. Consider to delete it or rename it.

'heapGrowth' is defined here:

(lint/suspicious/noRedeclare)

[error] 530-530: Shouldn't redeclare 'heapGrowthPercent'. Consider to delete it or rename it.

'heapGrowthPercent' is defined here:

(lint/suspicious/noRedeclare)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (15)

GitHub Check: units / internal / 🧪 Unit Tests: Internal (2, 8)
GitHub Check: units / webapp / 🧪 Unit Tests: Webapp (8, 8)
GitHub Check: units / webapp / 🧪 Unit Tests: Webapp (1, 8)
GitHub Check: units / internal / 🧪 Unit Tests: Internal (3, 8)
GitHub Check: units / internal / 🧪 Unit Tests: Internal (4, 8)
GitHub Check: units / internal / 🧪 Unit Tests: Internal (6, 8)
GitHub Check: units / internal / 🧪 Unit Tests: Internal (5, 8)
GitHub Check: units / webapp / 🧪 Unit Tests: Webapp (6, 8)
GitHub Check: units / internal / 🧪 Unit Tests: Internal (1, 8)
GitHub Check: units / webapp / 🧪 Unit Tests: Webapp (4, 8)
GitHub Check: units / packages / 🧪 Unit Tests: Packages (1, 1)
GitHub Check: units / webapp / 🧪 Unit Tests: Webapp (2, 8)
GitHub Check: e2e / 🧪 CLI v3 tests (windows-latest - pnpm)
GitHub Check: e2e / 🧪 CLI v3 tests (windows-latest - npm)
GitHub Check: typecheck / typecheck

🔇 Additional comments (19)

apps/webapp/app/routes/admin.api.v1.snapshot.ts (3)

7-8: LGTM: Correct import updates for token-based authentication.

The imports correctly replace session-based authentication with token-based authentication and add Prisma for user lookup.

28-32: LGTM: Proper token-based authentication implementation.

The implementation correctly uses authenticateApiRequestWithPersonalAccessToken and returns a 403 response when authentication fails.

34-42: LGTM: Secure admin privilege verification.

The implementation properly:

Fetches the user by authenticated userId from Prisma

Uses null-safe checking with user?.admin

Returns consistent 403 error message for unauthorized access

This maintains security while switching to token-based authentication.

apps/webapp/memory-leak-detector.js (16)

1-11: LGTM: Clear shebang and comprehensive documentation.

The file header provides excellent documentation explaining the purpose and usage of the script.

18-80: LGTM: Well-structured class with comprehensive configuration.

The constructor provides excellent configurability with sensible defaults and creates a proper timestamped directory structure for organizing results.

82-91: LGTM: Clean logging implementation.

The logging method provides proper timestamp formatting and handles both verbose and error-specific output correctly.

93-102: LGTM: Proper directory creation with error handling.

The method ensures required directories exist with proper recursive creation and logging.

104-142: LGTM: Well-designed snapshot abstraction.

The method provides a clean abstraction that supports both V8 heap snapshots (via admin API) and basic memory snapshots, with proper fallback behavior.

144-212: LGTM: Robust V8 heap snapshot implementation.

The method includes:

Proper timeout handling (120 seconds for large snapshots)

Progress logging during download

Stream error handling and cleanup

Proper file cleanup on errors

214-296: LGTM: Comprehensive server startup process.

The method handles the complete build and startup flow with proper error handling, timeout management, and server readiness detection.

298-346: LGTM: Well-implemented HTTP request method.

The method provides proper timeout handling, error handling, and includes necessary headers for API authentication.

348-428: LGTM: Comprehensive request phase implementation.

The method includes:

Progress reporting for long-running tests

Proper error tracking and limiting

Performance metrics calculation

Clean result aggregation

430-540: LGTM: Thorough memory analysis with multiple snapshot types.

The method handles both V8 heap snapshots and process memory snapshots with proper growth calculations and percentage analysis.

542-655: LGTM: Comprehensive analysis reporting and recommendations.

The method provides detailed analysis output and generates actionable recommendations based on configurable thresholds.

657-681: LGTM: Proper report generation with sensitive data redaction.

The method correctly redacts the admin token while preserving other configuration details for the report.

683-699: LGTM: Proper cleanup with graceful shutdown.

The cleanup method handles both SIGTERM and SIGKILL with appropriate delays for graceful shutdown.

701-772: LGTM: Well-orchestrated main execution flow.

The main run method coordinates all phases properly with appropriate delays, garbage collection, and comprehensive error handling.

775-845: LGTM: Complete CLI argument parsing.

The CLI interface provides comprehensive options with clear help documentation and proper argument parsing.

847-867: LGTM: Proper module execution and export.

The main execution guard and module export are implemented correctly with proper error handling and exit codes.

apps/webapp/memory-leak-detector.js

To facilitate more accurate and consistent heap memory snapshots, a new function forceConsistentGC was added before taking a snapshot. This ensures the garbage collector (GC) runs multiple times, stabilizing the heap state for more reliable analysis. This is particularly helpful when debugging memory-related issues. Updates to the memory-leak-detector script now allow labeling of snapshot runs using the --label flag. This helps in distinguishing different runs for easier tracking and comparison of memory usage across test sessions. Additionally, the --expose-gc flag ensures that the GC can be manually triggered during test runs, leading to more consistent memory states and potentially uncovering hidden memory leaks.

The function forceConsistentGC was refactored to enhance code readability and consistency. The main improvements include: - Updated syntax for consistent string quotation and spacing. - Simplified garbage collection by removing specific major/minor GC calls, as the distinction isn't necessary. - Implemented minor changes to arrow function formatting for consistency. These changes neither impact the program logic nor the function behavior but help maintain code quality standards and readability.

Identified that the memory leak in the project was linked to the usage of request.clone() within the `@sentry/remix` package's callRouteAction handler. Although initially suspected as a Sentry issue, the problem appears to arise from the handling of request.clone() in Remix version 2.1.0. By removing the call to request.clone(), the memory leak has been resolved. - Introduced garbage collection execution before snapshot to manage memory allocation effectively. - Improved error handling and timeout mechanisms in the memory leak detector to enhance its resilience during runtime. - Expanded testing for both GET and POST requests to monitor and validate potential memory leaks better. The POST requests involve sending large payloads to stress-test the system. - The modification particularly focuses on enhancing robust memory tracking and providing detailed progress reporting during request phases.

coderabbitai

Actionable comments posted: 5

🔭 Outside diff range comments (3)

apps/webapp/app/presenters/v3/TaskListPresenter.server.ts (1)

108-114: Action required: remove/update remaining call site(s) that reference the removed taskListPresenter singleton

Search shows a lingering usage — update this call site to use the new factory/api or remove the import of the removed singleton.

apps/webapp/app/routes/_app.orgs.$organizationSlug.projects.$projectParam.env.$envParam._index/route.tsx

~127: const taskListPresenter = getTaskListPresenter();

~129: const { tasks, activity, runningStats, durations } = await taskListPresenter.call({ ... })

No matches for setupTaskListPresenter were found in the initial scan. Please fix the above call site(s) and re-run the search to confirm no remaining references.
apps/webapp/app/routes/admin.api.v1.gc.ts (1)
8-36: Disconnect PerformanceObserver and fix V8 flag; avoid process-wide flag flapping.

The observer is never disconnected, which can retain callbacks and leak memory.

The disable flag should be --no-expose-gc (with a hyphen) to correctly revert the setting.

Setting/unsetting V8 flags is process-wide and can race with concurrent requests. Consider leaving GC exposed for the process lifetime or avoid toggling it off in a request path.

Apply this diff to tighten up the implementation:
 async function waitTillGcFinishes() {
-  let resolver: (value: PerformanceEntry) => void;
-  let rejector: (reason?: any) => void;
+  let resolver: (value: PerformanceEntry) => void;

   const promise = new Promise<PerformanceEntry>((resolve, reject) => {
     resolver = resolve;
-    rejector = reject;
   });

-  const obs = new PerformanceObserver((list) => {
+  const obs = new PerformanceObserver((list) => {
     const entry = list.getEntries()[0];

     if (entry.name === "gc") {
       resolver(entry);
+      // Disconnect once we've observed the GC event to prevent leaks
+      try {
+        obs.disconnect();
+      } catch {}
     }
   });

   obs.observe({ entryTypes: ["gc"] });

-  v8.setFlagsFromString("--expose-gc");
+  v8.setFlagsFromString("--expose-gc");
   const gc = global.gc ?? runInNewContext("gc");

   gc();

-  // disable expose-gc
-  v8.setFlagsFromString("--noexpose-gc");
+  // Avoid toggling off in a request path; if you must, use the correct flag:
+  // v8.setFlagsFromString("--no-expose-gc");

   return promise;
 }
apps/webapp/app/routes/admin.api.v1.snapshot.ts (1)
93-101: Use env.server.ts for environment access and harden parsing.

Direct process.env access violates webapp conventions. Also, new URL(...) can throw on malformed values; guard it.
-function getTaskIdentifier() {
-  if (!process.env.ECS_CONTAINER_METADATA_URI) {
+import { env } from "~/env.server";
+
+function getTaskIdentifier() {
+  if (!env.ECS_CONTAINER_METADATA_URI) {
     return "local";
   }
 
-  const url = new URL(process.env.ECS_CONTAINER_METADATA_URI);
+  let url: URL | undefined;
+  try {
+    url = new URL(env.ECS_CONTAINER_METADATA_URI);
+  } catch {
+    return "local";
+  }
 
   return url.pathname.split("/")[2].split("-")[0];
 }

♻️ Duplicate comments (1)

apps/webapp/memory-leak-detector.js (1)

595-596: Fix variable redeclaration issue.

The static analysis correctly identifies variable redeclaration. The var declarations create variables in function scope that conflict with earlier declarations.

Apply this diff to fix the redeclaration:

      // Use total growth for recommendations
-     var heapGrowth = totalGrowth;
-     var heapGrowthPercent = totalGrowthPercent;
+     heapGrowth = totalGrowth;
+     heapGrowthPercent = totalGrowthPercent;
    } else if (snapshot1.processMemory && snapshot2.processMemory && snapshot3.processMemory) {
      // Traditional process memory analysis with 3 snapshots
      const heap1 = snapshot1.processMemory.heapUsed;
      const heap2 = snapshot2.processMemory.heapUsed;
      const heap3 = snapshot3.processMemory.heapUsed;
      const rss1 = snapshot1.processMemory.rss;
      const rss2 = snapshot2.processMemory.rss;
      const rss3 = snapshot3.processMemory.rss;

      const heapGrowth1to2 = heap2 - heap1;
      const heapGrowth2to3 = heap3 - heap2;
      const totalHeapGrowth = heap3 - heap1;
      const rssGrowth1to2 = rss2 - rss1;
      const rssGrowth2to3 = rss3 - rss2;
      const totalRssGrowth = rss3 - rss1;

      analysis = {
        heapUsage: {
          phase1: Math.round(heap1 / 1024 / 1024),
          phase2: Math.round(heap2 / 1024 / 1024),
          phase3: Math.round(heap3 / 1024 / 1024),
          growth1to2: Math.round(heapGrowth1to2 / 1024 / 1024),
          growth2to3: Math.round(heapGrowth2to3 / 1024 / 1024),
          totalGrowth: Math.round(totalHeapGrowth / 1024 / 1024),
          totalGrowthPercent: Math.round((totalHeapGrowth / heap1) * 100 * 100) / 100,
        },
        rssUsage: {
          phase1: Math.round(rss1 / 1024 / 1024),
          phase2: Math.round(rss2 / 1024 / 1024),
          phase3: Math.round(rss3 / 1024 / 1024),
          growth1to2: Math.round(rssGrowth1to2 / 1024 / 1024),
          growth2to3: Math.round(rssGrowth2to3 / 1024 / 1024),
          totalGrowth: Math.round(totalRssGrowth / 1024 / 1024),
          totalGrowthPercent: Math.round((totalRssGrowth / rss1) * 100 * 100) / 100,
        },
        snapshots: this.results.snapshots.length,
      };

-     var heapGrowth = totalHeapGrowth;
-     var heapGrowthPercent = (totalHeapGrowth / heap1) * 100;
+     heapGrowth = totalHeapGrowth;
+     heapGrowthPercent = (totalHeapGrowth / heap1) * 100;

Also declare these variables at the function start:

  analyzeMemoryUsage() {
    if (this.results.snapshots.length < 3) {
      this.log("Need at least 3 snapshots to analyze memory usage", "warn");
      return;
    }

    const snapshot1 = this.results.snapshots[0]; // after warmup
    const snapshot2 = this.results.snapshots[1]; // after first load test
    const snapshot3 = this.results.snapshots[2]; // after second load test

-   let analysis = {};
+   let analysis = {};
+   let heapGrowth;
+   let heapGrowthPercent;

Also applies to: 635-636

🧹 Nitpick comments (7)

apps/webapp/app/presenters/v3/TaskListPresenter.server.ts (1)
108-114: Add explicit return type for clarity and API stability

Minor nit: declare the return type to make the factory’s API explicit and resilient to refactors.

Apply this diff:
-export function getTaskListPresenter() {
+export function getTaskListPresenter(): TaskListPresenter {
   const environmentMetricsRepository = new ClickHouseEnvironmentMetricsRepository({
     clickhouse: clickhouseClient,
   });

   return new TaskListPresenter(environmentMetricsRepository, $replica);
 }
apps/webapp/app/v3/scheduleEngine.server.ts (1)

50-52: Consider service disposal on process/engine shutdown if applicable.

If TriggerTaskService opens connections or timers and exposes a cleanup (e.g., close()/dispose()), wire it into whatever shutdown hooks ScheduleEngine or your process uses. This prevents resource retention over long uptimes.

If TriggerTaskService has a lifecycle method, I can propose the exact wiring points once you confirm its API.
patches/@[email protected] (1)
9-11: Remove unused clonedRequest variable (dead code).

After removing the formData handling block, clonedRequest is no longer used. Keeping it may confuse future readers and slightly increases bundle size.

Apply this diff inside the patch to drop the unused assignment:
-        const clonedRequest = params.request;
apps/webapp/app/routes/admin.api.v1.gc.ts (1)
39-53: Auth flow looks good; prefer findUnique for primary key lookups.

Using findUnique on the id field is more idiomatic and conveys intent to Prisma.
-  const user = await prisma.user.findFirst({
-    where: {
-      id: authenticationResult.userId,
-    },
-  });
+  const user = await prisma.user.findUnique({
+    where: { id: authenticationResult.userId },
+  });
apps/webapp/app/routes/api.v1.mock.ts (1)
8-19: Return JSON with proper content-type; consider Remix json() helper.

Set the Content-Type header to application/json for clients/tools expecting JSON. Optionally, use json() from @remix-run/node.

Minimal header adjustment:
   return new Response(
     JSON.stringify({
       data: {
         id: "123",
         type: "mock",
         attributes: {
           name: "Mock",
         },
       },
     }),
-    { status: 200 }
+    { status: 200, headers: { "Content-Type": "application/json" } }
   );
Or:
import { json, type ActionFunctionArgs } from "@remix-run/node";

export async function action({}: ActionFunctionArgs) {
  if (env.NODE_ENV === "production") return new Response("Not found", { status: 404 });
  return json({ data: { id: "123", type: "mock", attributes: { name: "Mock" } } });
}
apps/webapp/app/routes/admin.api.v1.snapshot.ts (2)
77-84: Prefer web streams (or Remix helper) over Node streams; simplify error handling.

Returning a Node PassThrough typed as any works but is less portable and requires manual error wiring. Use the isomorphic ReadableStream via createReadableStreamFromReadable.
-import { PassThrough } from "stream";
+import { createReadableStreamFromReadable } from "@remix-run/node";
@@
-  const body = new PassThrough();
-  const stream = fs.createReadStream(snapshotPath);
-  stream.on("open", () => stream.pipe(body));
-  stream.on("error", (err) => body.end(err));
-  stream.on("end", () => body.end());
+  const nodeStream = fs.createReadStream(snapshotPath);
+  const body = createReadableStreamFromReadable(nodeStream);
53-61: Prefer findUnique for primary key lookups.

Same as in the GC route, this conveys intent and may benefit query planning.
-  const user = await prisma.user.findFirst({
-    where: {
-      id: authenticationResult.userId,
-    },
-  });
+  const user = await prisma.user.findUnique({
+    where: { id: authenticationResult.userId },
+  });

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

💡 Knowledge Base configuration:

MCP integration is disabled by default for public repositories
Jira integration is disabled by default for public repositories
Linear integration is disabled by default for public repositories

You can enable these settings in your CodeRabbit configuration.

📥 Commits

Reviewing files that changed from the base of the PR and between e674dee and 39d1b8d.

⛔ Files ignored due to path filters (1)

pnpm-lock.yaml is excluded by !**/pnpm-lock.yaml

📒 Files selected for processing (11)

apps/webapp/.gitignore (1 hunks)
apps/webapp/app/presenters/v3/TaskListPresenter.server.ts (1 hunks)
apps/webapp/app/routes/_app.orgs.$organizationSlug.projects.$projectParam.env.$envParam._index/route.tsx (2 hunks)
apps/webapp/app/routes/admin.api.v1.gc.ts (2 hunks)
apps/webapp/app/routes/admin.api.v1.snapshot.ts (2 hunks)
apps/webapp/app/routes/api.v1.mock.ts (1 hunks)
apps/webapp/app/v3/scheduleEngine.server.ts (1 hunks)
apps/webapp/memory-leak-detector.js (1 hunks)
apps/webapp/sentry.server.ts (1 hunks)
package.json (1 hunks)
patches/@[email protected] (1 hunks)

🚧 Files skipped from review as they are similar to previous changes (2)

apps/webapp/sentry.server.ts
apps/webapp/.gitignore

🧰 Additional context used

📓 Path-based instructions (3)

**/*.{ts,tsx}

📄 CodeRabbit Inference Engine (.github/copilot-instructions.md)

**/*.{ts,tsx}: Always prefer using isomorphic code like fetch, ReadableStream, etc. instead of Node.js specific code
For TypeScript, we usually use types over interfaces
Avoid enums
No default exports, use function declarations

Files:

apps/webapp/app/routes/api.v1.mock.ts
apps/webapp/app/v3/scheduleEngine.server.ts
apps/webapp/app/routes/admin.api.v1.gc.ts
apps/webapp/app/routes/_app.orgs.$organizationSlug.projects.$projectParam.env.$envParam._index/route.tsx
apps/webapp/app/presenters/v3/TaskListPresenter.server.ts
apps/webapp/app/routes/admin.api.v1.snapshot.ts

{packages/core,apps/webapp}/**/*.{ts,tsx}

📄 CodeRabbit Inference Engine (.github/copilot-instructions.md)

We use zod a lot in packages/core and in the webapp

Files:

apps/webapp/app/routes/api.v1.mock.ts
apps/webapp/app/v3/scheduleEngine.server.ts
apps/webapp/app/routes/admin.api.v1.gc.ts
apps/webapp/app/routes/_app.orgs.$organizationSlug.projects.$projectParam.env.$envParam._index/route.tsx
apps/webapp/app/presenters/v3/TaskListPresenter.server.ts
apps/webapp/app/routes/admin.api.v1.snapshot.ts

apps/webapp/**/*.{ts,tsx}

📄 CodeRabbit Inference Engine (.cursor/rules/webapp.mdc)

apps/webapp/**/*.{ts,tsx}: In the webapp, all environment variables must be accessed through the env export of env.server.ts, instead of directly accessing process.env.
When importing from @trigger.dev/core in the webapp, never import from the root @trigger.dev/core path; always use one of the subpath exports as defined in the package's package.json.

Files:

apps/webapp/app/routes/api.v1.mock.ts
apps/webapp/app/v3/scheduleEngine.server.ts
apps/webapp/app/routes/admin.api.v1.gc.ts
apps/webapp/app/routes/_app.orgs.$organizationSlug.projects.$projectParam.env.$envParam._index/route.tsx
apps/webapp/app/presenters/v3/TaskListPresenter.server.ts
apps/webapp/app/routes/admin.api.v1.snapshot.ts

🧠 Learnings (9)