Render user content as Markdown with raw fallback toggle

[cboos]

Summary

User messages have always been escaped into <pre> blocks, which is safe but visually coarse — markdown formatting in the source (**bold**, # headings, backticks) showed up as literal asterisks and pounds. This branch renders user text through the same mistune pipeline as assistant text while preserving the raw view as a one-click fallback.

Rendering safety

• render_user_markdown() uses escape=True so raw <script> or <iframe> tags are escaped rather than passed through. Assistant-side rendering keeps escape=False (by design, since assistants emit trusted structured HTML).
• Every rendered output is validated by is_well_formed_html() (stdlib HTMLParser tracking a tag stack). XHTML-style self-closing tags (<br />, <hr />, <img />) are recognised as atomic — mistune emits these with hard_wrap=True.
• If the output is ill-formed (unclosed tag, mismatched nesting), the message falls back to a bare <pre> with no toggle. Well-formed output emits both .user-md and .user-raw inside a .user-content wrapper.

Toggle UX

• Per-message: the .user-view-toggle button flips one message's wrapper by setting data-user-view="raw" or "md".
• Global: the floating #toggleUserView button flips body.show-raw-user, which cascades to every wrapper that has no explicit data-user-view attribute. A user who explicitly chose md on a specific message keeps that choice even if global raw is on.
• Default view is Markdown. Default state ships with no data-user-view attribute so the global toggle actually matches default messages (an earlier iteration baked data-user-view="md" in, which broke the global toggle — fixed in 659bce8).
• Global preference persists via localStorage["claude-code-log:user-view"].

Validation

• 955 tests / 7 skipped across unit, snapshot, and Playwright browser suites.
• Fixture audit: 0/102 user messages rejected by is_well_formed_html (down from 27/102 before the XHTML self-close fix in 3c6fe86).
• pyright, ty, and ruff all clean on the branch tip.

Test plan

• Unit tests: uv run pytest -n auto -m \"not (tui or browser)\" -v
• Browser tests: uv run pytest -n auto -m browser -v (5 Playwright scenarios covering default load, global toggle, per-message toggle, explicit-md precedence, and localStorage persistence across reload)
• Type checks: uv run pyright and uv run ty check
• Lint: uv run ruff check
• Snapshot tests: uv run pytest -n auto test/test_snapshot_html.py
• Fixture audit: render every user message in test/test_data/ and confirm 0/102 fall back to the raw-only path

🤖 Generated with Claude Code

Summary by CodeRabbit

• New Features

  • Per-message and global floating toggles to switch user messages between rendered Markdown and raw text; global choice persists across sessions and shows active state and updated labels.

• Behavior / Fixes

  • Well-formed Markdown now displays as rendered HTML alongside a preserved raw view; ill-formed Markdown falls back to raw-only. Per-message explicit choices override the global setting and button labels reflect the next view.

• Tests

  • Added unit and browser tests validating dual-view rendering, precedence, persistence, HTML-validation, and edge cases.

[coderabbitai]

Note

Reviews paused

It looks like this branch is under active development. To avoid overwhelming you with review comments due to an influx of new commits, CodeRabbit has automatically paused this review. You can configure this behavior by changing the reviews.auto_review.auto_pause_after_reviewed_commits setting.

Use the following commands to manage reviews:

• @coderabbitai resume to resume automatic reviews.
• @coderabbitai review to trigger a single review.

Use the checkboxes below for quick actions:

• ▶️ Resume reviews
• 🔍 Trigger review

📝 Walkthrough

Walkthrough

Adds server-side Markdown rendering with HTML validation and a dual-view UI for user messages (rendered Markdown vs escaped raw), plus per-message and global toggles (persisted in localStorage), CSS visibility rules, and expanded unit and Playwright browser tests.

Changes

Cohort / File(s)	Summary
CSS & Styling claude_code_log/html/templates/components/global_styles.css	Adds .user-content, .user-md, .user-raw, .user-view-toggle, and .user-view-global.floating-btn rules; implements selector precedence for data-user-view and body.show-raw-user and floating button .active styling.
Frontend HTML & JS claude_code_log/html/templates/transcript.html	Adds global floating toggle #toggleUserView, DOMContentLoaded initialization, localStorage persistence (claude-code-log:user-view), per-message toggle labels, and delegated handlers to flip data-user-view.
Server-side formatters claude_code_log/html/user_formatters.py	format_user_text_content() now attempts render_user_markdown() + is_well_formed_html() and emits a dual-view <div class='user-content'> with .user-md, .user-raw, and a toggle when valid; falls back to legacy <pre> when rendering is ill-formed.
Rendering utils claude_code_log/html/utils.py	Adds cached Mistune renderer _get_user_markdown_renderer, render_user_markdown(text), _VOID_HTML_TAGS, and is_well_formed_html(fragment) for fragment validation and timing instrumentation.
Markdown renderer logic claude_code_log/markdown/renderer.py	Adds _TagProtectingMarkdownRenderer, _protect_html_tags() and cached pipeline; format_UserTextMessage now uses render_user_markdown + is_well_formed_html to choose inline-protected Markdown or fenced fallback.
Snapshots & Unit Tests test/__snapshots__/*, test/test_ide_tags.py, test/test_user_renderer.py, test/test_message_types.py, test/test_markdown_helpers.py, test/test_markdown_rendering.py	Updates snapshots and assertions to expect dual-view output; adds tests for HTML validation, fallback on ill-formed HTML, _protect_html_tags, newline/escape edge cases, and adjusts expectations for duplicate emissions (MD + raw).
Browser E2E tests test/test_user_view_toggle_browser.py	New Playwright test suite validating default Markdown view, global toggle persistence, per-message toggles and overrides, deterministic localStorage handling, and interactions across reloads.

Sequence Diagram(s)

sequenceDiagram
    participant Browser as Browser/Client
    participant JS as JS Toggle Handler
    participant DOM as DOM & CSS
    participant Storage as localStorage
    participant Py as Python Renderer

    rect rgba(200, 150, 150, 0.5)
    Note over Py,Browser: Server-side render during page generation
    Py->>Py: render_user_markdown(text)
    Py->>Py: is_well_formed_html(rendered)
    Py-->>Browser: emit HTML (`.user-content` with `.user-md` & `.user-raw` or fallback `<pre>`)
    end

    rect rgba(150, 200, 150, 0.5)
    Note over Browser,JS: Page init & global toggle state
    JS->>Storage: read 'claude-code-log:user-view'
    Storage-->>JS: value or null
    JS->>DOM: apply/remove `body.show-raw-user`
    JS->>DOM: update `#toggleUserView` UI
    end

    rect rgba(150, 150, 200, 0.5)
    Note over Browser,DOM: User interactions
    Browser->>JS: click `#toggleUserView` or `.user-view-toggle`
    JS->>DOM: toggle body class or `data-user-view` on `.user-content`
    JS->>Storage: persist global choice when applicable
    DOM->>DOM: CSS rules determine visible `.user-md` / `.user-raw`
    end

Loading

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~45 minutes

Possibly related PRs

• Integrate review feedback from #71 + MarkdownPreview in TUI #75 — Overlaps changes to claude_code_log/markdown/renderer.py (HTML/tag-protection and UserTextMessage formatting).
• Add Markdown renderer #71 — Related to Markdown rendering utilities and gating (render_user_markdown, is_well_formed_html).
• Refactor content formatting to use dispatcher pattern #67 — Modifies user text formatting logic (html/user_formatters.py) and relates to dual-view output changes.

Suggested labels

enhancement

Suggested reviewers

• daaain

Poem

A rabbit hopped through CSS and script,
Toggling views with a tiny skip,
Markdown blooms while raw stays near,
Per-message clicks make modes appear,
LocalStorage hums — the toggle's clear. 🐰

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately summarizes the main change: rendering user content as Markdown with a raw fallback toggle mechanism, which is the core feature across all modified files.
Docstring Coverage	✅ Passed	Docstring coverage is 83.87% which is sufficient. The required threshold is 80.00%.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch dev/user-markdown

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 4

🧹 Nitpick comments (6)

claude_code_log/html/utils.py (1)

323-383: Validator is reasonable; one permissiveness note worth being aware of.

handle_startendtag as a no-op correctly handles mistune's XHTML-style <br /> / <hr /> output, but it also silently accepts non-void self-closing tags like <div />, <span />, or <p /> as a zero-op (neither opening nor closing). Mistune won't emit those today, so this isn't a real bug — just flagging in case the underlying renderer ever changes or a new plugin is added that could emit them. If you want to tighten, you could check tag in _VOID_HTML_TAGS inside handle_startendtag and fall back to handle_starttag + handle_endtag for non-voids.

Also: because the check runs on every well-formed render, consider moving the from html.parser import HTMLParser and the _Checker class definition to module scope so the class isn't re-defined per call (minor — unlikely to matter unless you render thousands of messages per request).

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@claude_code_log/html/utils.py` around lines 323 - 383, The current
is_well_formed_html treats every XHTML-style self-closing tag as a no-op which
silently accepts non-void self-closing tags (e.g., <div />) — update
_Checker.handle_startendtag to only treat tags in _VOID_HTML_TAGS as no-ops and
otherwise invoke handle_starttag + handle_endtag (or push/pop) so non-void
self-closing tags are validated; additionally move the "from html.parser import
HTMLParser" import and the _Checker class definition out of is_well_formed_html
into module scope to avoid re-defining the class on every call.

claude_code_log/html/templates/components/global_styles.css (1)

288-288: Stylelint: unnecessary quotes around SFMono-Regular.

Stylelint's font-family-name-quotes rule flagged lines 288 and 330. The identifier is a valid CSS <custom-ident> and doesn't need quoting. Same nit applies to the older .debug-toggle.floating-btn block above, so you may want to fix it repo-wide or add a stylelint exception — either is fine, but the current CI warning should be resolved.

♻️ Suggested fix (lines 288 and 330)

-    font-family: 'SFMono-Regular', Consolas, monospace;
+    font-family: SFMono-Regular, Consolas, monospace;

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@claude_code_log/html/templates/components/global_styles.css` at line 288,
Remove the unnecessary quotes around the SFMono-Regular identifier in the
font-family declarations flagged by Stylelint: update the occurrences in the
global styles where you set font-family to 'SFMono-Regular', Consolas, monospace
(and the older .debug-toggle.floating-btn block) to use SFMono-Regular without
quotes; this resolves the font-family-name-quotes lint rule by treating
SFMono-Regular as a valid custom-ident rather than a quoted string.

test/__snapshots__/test_snapshot_html.ambr (2)

6059-6068: Per-message toggle doesn't account for global state.

When the global toggle is active (showing raw) and a user clicks the per-message toggle on a message without an explicit data-user-view attribute, the code assumes the current view is 'md' and switches to 'raw', but the message is already showing raw due to the global toggle. This means the first click produces no visual change—only the button text updates. The user must click a second time to see the expected switch to Markdown.

The current detection logic defaults to 'md' when no attribute is present, but should also check the global state:

♻️ Proposed fix to account for global state

 // Delegated per-message toggle.
 document.addEventListener('click', function (event) {
     const btn = event.target.closest('.user-view-toggle');
     if (!btn) return;
     const container = btn.closest('.user-content');
     if (!container) return;
-    const current = container.getAttribute('data-user-view') || 'md';
+    const current = container.getAttribute('data-user-view') || 
+                    (document.body.classList.contains('show-raw-user') ? 'raw' : 'md');
     const next = current === 'md' ? 'raw' : 'md';
     container.setAttribute('data-user-view', next);
     btn.textContent = next === 'md' ? 'raw' : 'md';
 });

Also applies to: 11512-11521, 16991-17033, 22345-22387

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@test/__snapshots__/test_snapshot_html.ambr` around lines 6059 - 6068, The
per-message toggle handler (the document.addEventListener('click'...) that
queries .user-view-toggle and .user-content and uses
container.getAttribute('data-user-view') to compute current/next) currently
defaults missing per-message state to 'md' and ignores the global state; change
the logic so current = container.getAttribute('data-user-view') ||
document.documentElement.getAttribute('data-user-view') || 'md' (or read the
equivalent global toggle attribute/place your app uses for global view), then
compute next as before and set container.setAttribute('data-user-view', next)
and btn.textContent accordingly so the first click respects the global toggle.

---

6037-6043: Minor: Inconsistent button label conventions.

The global toggle button displays the current state ('raw' when showing raw, 'md' when showing markdown), while per-message toggles display the next action ('raw' when currently showing markdown). This inconsistency may cause confusion about what the labels indicate.

Consider standardizing to one convention—either both show current state or both show next action.

Also applies to: 6067-6067

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@test/__snapshots__/test_snapshot_html.ambr` around lines 6037 - 6043, The
user/global toggle uses the current-state labels while per-message toggles use
next-action labels; standardize them by updating applyUserViewButtonLabel to
match the per-message convention (or vice versa). In applyUserViewButtonLabel,
change userViewButton.textContent and userViewButton.title to present the next
action (e.g., textContent = showingRaw ? 'md' : 'raw' and title = showingRaw ?
'Show user messages as Markdown' : 'Show user messages as raw text' swapped
accordingly), and ensure the active class logic
(userViewButton.classList.toggle('active', ...)) remains consistent with the
chosen convention; also audit the per-message label function (e.g.,
applyMessageViewButtonLabel or messageViewButton handlers) to make both use the
same "next action" wording.

test/test_user_view_toggle_browser.py (1)

79-88: Prefer Path.as_uri() for cross-platform file URLs.

f"file://{html}" works on POSIX where temp paths start with /, but on Windows a path like C:\Users\...\foo.html would produce file://C:\Users\... which is not a valid file URI. Path.as_uri() handles both platforms correctly.

♻️ Proposed refactor

-        page.goto(f"file://{html}")
+        page.goto(html.as_uri())
         page.evaluate("() => localStorage.clear()")
         page.reload()

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@test/test_user_view_toggle_browser.py` around lines 79 - 88, In _goto_clean,
replace the manual f"file://{html}" URL with the platform-safe file URI from
Path.as_uri() so the page.goto call uses html.as_uri() (or equivalent) to
produce a valid file:// URL on Windows and POSIX; update the call site in the
_goto_clean function where page.goto is invoked to use the Path.as_uri() value
before calling page.evaluate and page.reload.

test/test_markdown_rendering.py (1)

113-118: Fragile string-equality assertions on rendered HTML.

"<pre class='user-raw'># A rendered heading" and the raw-asterisks check both assume the renderer emits single-quoted attributes and exact substring layout. If the template (or any future HTML-escape pass) switches to double quotes or inserts whitespace/attributes before the text, these assertions break without signalling a real regression. Consider asserting on DOM structure (e.g. parse with html.parser/BeautifulSoup and check .user-raw text content) or at least matching both quote styles.

Non-blocking — flagging because this pattern is replicated across several new tests (also lines 139-141, 188-190).

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@test/test_markdown_rendering.py` around lines 113 - 118, The brittle
substring assertions that expect exact attribute quoting should be replaced with
DOM checks: parse the rendered HTML with html.parser or BeautifulSoup, locate
the <pre> element with class "user-raw" (e.g. find('pre', class_='user-raw')),
and assert its .text contains the raw content "# A rendered heading" and "**And
some bold text**" instead of relying on literal quote/spacing; apply the same
change to the other similar assertions (the other raw-view checks) so they
verify element existence and text content rather than exact attribute string
formatting.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@claude_code_log/html/templates/components/global_styles.css`:
- Around line 282-305: The per-message toggle (.user-content .user-view-toggle)
is hidden via opacity:0 and only shown on parent :hover, making it invisible to
keyboard users; add keyboard-visible focus styles instead of relying on :hover
by adding :focus and/or :focus-visible selectors (e.g., .user-content
.user-view-toggle:focus and .user-content .user-view-toggle:focus-visible) that
set opacity:1 and a clear focus outline/box-shadow and visible color/background
so the control becomes apparent when tabbed to; ensure these rules coexist with
the existing .user-content:hover .user-view-toggle so mouse hover and keyboard
focus both reveal the button.

In `@claude_code_log/html/templates/transcript.html`:
- Around line 242-252: The click handler assumes absence of data-user-view means
'md', causing a no-op when the global raw toggle is active; change the logic in
the delegated listener (the function that reads
container.getAttribute('data-user-view') || 'md') to compute the effective
current view by checking for an explicit attribute first and otherwise deriving
it from the global state (e.g.,
document.body.classList.contains('show-raw-user') ? 'raw' : 'md'), then flip to
the opposite and update data-user-view and btn.textContent accordingly; also
update the initial-label routine (applyUserViewButtonLabel or a new helper that
runs on load) to correct server-rendered labels by setting each
.user-view-toggle.textContent to the effective opposite view when the container
has no data-user-view and global raw is active so the button accurately reflects
the action.
- Line 186: The hard-coded button label/title in the static HTML causes a flash
before JS applies the persisted state; remove the initial text and title from
the element with id="toggleUserView" (render it empty, maybe with hidden or
aria-hidden while JS initializes) and let applyUserViewButtonLabel() set both
textContent and title based on the restored localStorage value (and remove the
hidden flag after updating). Ensure applyUserViewButtonLabel() is called during
startup before the button is shown so the DOM reflects the persisted
"show-raw-user" state immediately.

In `@test/test_markdown_rendering.py`:
- Around line 204-210: The __main__ test runner omitted calling
test_user_markdown_with_newline_keeps_dual_view so that test (defined around
line 181) doesn't run when executing the file directly; add a call to
test_user_markdown_with_newline_keeps_dual_view() alongside the other test_*
calls in the if __name__ == "__main__": block so the standalone python
test_markdown_rendering.py invocation covers that regression.

---

Nitpick comments:
In `@claude_code_log/html/templates/components/global_styles.css`:
- Line 288: Remove the unnecessary quotes around the SFMono-Regular identifier
in the font-family declarations flagged by Stylelint: update the occurrences in
the global styles where you set font-family to 'SFMono-Regular', Consolas,
monospace (and the older .debug-toggle.floating-btn block) to use SFMono-Regular
without quotes; this resolves the font-family-name-quotes lint rule by treating
SFMono-Regular as a valid custom-ident rather than a quoted string.

In `@claude_code_log/html/utils.py`:
- Around line 323-383: The current is_well_formed_html treats every XHTML-style
self-closing tag as a no-op which silently accepts non-void self-closing tags
(e.g., <div />) — update _Checker.handle_startendtag to only treat tags in
_VOID_HTML_TAGS as no-ops and otherwise invoke handle_starttag + handle_endtag
(or push/pop) so non-void self-closing tags are validated; additionally move the
"from html.parser import HTMLParser" import and the _Checker class definition
out of is_well_formed_html into module scope to avoid re-defining the class on
every call.

In `@test/__snapshots__/test_snapshot_html.ambr`:
- Around line 6059-6068: The per-message toggle handler (the
document.addEventListener('click'...) that queries .user-view-toggle and
.user-content and uses container.getAttribute('data-user-view') to compute
current/next) currently defaults missing per-message state to 'md' and ignores
the global state; change the logic so current =
container.getAttribute('data-user-view') ||
document.documentElement.getAttribute('data-user-view') || 'md' (or read the
equivalent global toggle attribute/place your app uses for global view), then
compute next as before and set container.setAttribute('data-user-view', next)
and btn.textContent accordingly so the first click respects the global toggle.
- Around line 6037-6043: The user/global toggle uses the current-state labels
while per-message toggles use next-action labels; standardize them by updating
applyUserViewButtonLabel to match the per-message convention (or vice versa). In
applyUserViewButtonLabel, change userViewButton.textContent and
userViewButton.title to present the next action (e.g., textContent = showingRaw
? 'md' : 'raw' and title = showingRaw ? 'Show user messages as Markdown' : 'Show
user messages as raw text' swapped accordingly), and ensure the active class
logic (userViewButton.classList.toggle('active', ...)) remains consistent with
the chosen convention; also audit the per-message label function (e.g.,
applyMessageViewButtonLabel or messageViewButton handlers) to make both use the
same "next action" wording.

In `@test/test_markdown_rendering.py`:
- Around line 113-118: The brittle substring assertions that expect exact
attribute quoting should be replaced with DOM checks: parse the rendered HTML
with html.parser or BeautifulSoup, locate the <pre> element with class
"user-raw" (e.g. find('pre', class_='user-raw')), and assert its .text contains
the raw content "# A rendered heading" and "**And some bold text**" instead of
relying on literal quote/spacing; apply the same change to the other similar
assertions (the other raw-view checks) so they verify element existence and text
content rather than exact attribute string formatting.

In `@test/test_user_view_toggle_browser.py`:
- Around line 79-88: In _goto_clean, replace the manual f"file://{html}" URL
with the platform-safe file URI from Path.as_uri() so the page.goto call uses
html.as_uri() (or equivalent) to produce a valid file:// URL on Windows and
POSIX; update the call site in the _goto_clean function where page.goto is
invoked to use the Path.as_uri() value before calling page.evaluate and
page.reload.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 9a98bed0-7736-4d04-9155-287d8e7a212a

📥 Commits

Reviewing files that changed from the base of the PR and between 1dd392d and 9503f0f.

📒 Files selected for processing (10)

• claude_code_log/html/templates/components/global_styles.css
• claude_code_log/html/templates/transcript.html
• claude_code_log/html/user_formatters.py
• claude_code_log/html/utils.py
• test/__snapshots__/test_snapshot_html.ambr
• test/test_ide_tags.py
• test/test_markdown_rendering.py
• test/test_message_types.py
• test/test_user_renderer.py
• test/test_user_view_toggle_browser.py

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

Per-message toggle is unreachable/invisible for keyboard users.

.user-view-toggle sits at opacity: 0 and is only revealed by the parent's :hover. A keyboard user tabbing through the page will focus the button but see no visible control, and there's no :focus / :focus-visible rule to surface it. Since the button is inside every well-formed user message, this is the most-repeated focusable element in a transcript.

♻️ Suggested fix

 .user-content:hover .user-view-toggle {
     opacity: 1;
 }

+.user-content .user-view-toggle:focus,
+.user-content .user-view-toggle:focus-visible {
+    opacity: 1;
+    outline: 2px solid `#4a90e2`;
+    outline-offset: 1px;
+}
+
 .user-content .user-view-toggle:hover {
     background-color: `#f0f0f0`;
     color: `#333`;
 }

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	.user-content .user-view-toggle {
	position: absolute;
	top: 2px;
	right: 2px;
	padding: 1px 6px;
	font-size: 0.7em;
	font-family: 'SFMono-Regular', Consolas, monospace;
	background: transparent;
	border: 1px solid #ccc;
	border-radius: 3px;
	color: #888;
	cursor: pointer;
	opacity: 0;
	transition: opacity 0.15s;
	}
	.user-content:hover .user-view-toggle {
	opacity: 1;
	}
	.user-content .user-view-toggle:hover {
	background-color: #f0f0f0;
	color: #333;
	}
	.user-content .user-view-toggle {
	position: absolute;
	top: 2px;
	right: 2px;
	padding: 1px 6px;
	font-size: 0.7em;
	font-family: 'SFMono-Regular', Consolas, monospace;
	background: transparent;
	border: 1px solid `#ccc`;
	border-radius: 3px;
	color: `#888`;
	cursor: pointer;
	opacity: 0;
	transition: opacity 0.15s;
	}
	.user-content:hover .user-view-toggle {
	opacity: 1;
	}
	.user-content .user-view-toggle:focus,
	.user-content .user-view-toggle:focus-visible {
	opacity: 1;
	outline: 2px solid `#4a90e2`;
	outline-offset: 1px;
	}
	.user-content .user-view-toggle:hover {
	background-color: `#f0f0f0`;
	color: `#333`;
	}

🧰 Tools

🪛 Stylelint (17.7.0)

[error] 288-288: Expected no quotes around "SFMono-Regular" (font-family-name-quotes)

(font-family-name-quotes)

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@claude_code_log/html/templates/components/global_styles.css` around lines 282
- 305, The per-message toggle (.user-content .user-view-toggle) is hidden via
opacity:0 and only shown on parent :hover, making it invisible to keyboard
users; add keyboard-visible focus styles instead of relying on :hover by adding
:focus and/or :focus-visible selectors (e.g., .user-content
.user-view-toggle:focus and .user-content .user-view-toggle:focus-visible) that
set opacity:1 and a clear focus outline/box-shadow and visible color/background
so the control becomes apparent when tabbed to; ensure these rules coexist with
the existing .user-content:hover .user-view-toggle so mouse hover and keyboard
focus both reveal the button.

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

__main__ runner missing test_user_markdown_with_newline_keeps_dual_view.

The four other new tests are wired in, but test_user_markdown_with_newline_keeps_dual_view (line 181) is skipped when running this file directly. Not a correctness issue when running via pytest, but it makes the python test_markdown_rendering.py path under-cover the regression suite.

♻️ Proposed fix

     test_user_ill_formed_markdown_falls_back_to_raw()
     test_is_well_formed_html_unit()
+    test_user_markdown_with_newline_keeps_dual_view()
     test_render_user_markdown_escapes_html()
     print("\n✅ All markdown rendering tests passed!")

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	if __name__ == "__main__":
	test_server_side_markdown_rendering()
	test_user_message_not_markdown_rendered()
	test_user_message_markdown_rendered_with_raw_preserved()
	test_user_ill_formed_markdown_falls_back_to_raw()
	test_is_well_formed_html_unit()
	test_render_user_markdown_escapes_html()
	print("\n✅ All markdown rendering tests passed!")
	if __name__ == "__main__":
	test_server_side_markdown_rendering()
	test_user_message_markdown_rendered_with_raw_preserved()
	test_user_ill_formed_markdown_falls_back_to_raw()
	test_is_well_formed_html_unit()
	test_user_markdown_with_newline_keeps_dual_view()
	test_render_user_markdown_escapes_html()
	print("\n✅ All markdown rendering tests passed!")

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@test/test_markdown_rendering.py` around lines 204 - 210, The __main__ test
runner omitted calling test_user_markdown_with_newline_keeps_dual_view so that
test (defined around line 181) doesn't run when executing the file directly; add
a call to test_user_markdown_with_newline_keeps_dual_view() alongside the other
test_* calls in the if __name__ == "__main__": block so the standalone python
test_markdown_rendering.py invocation covers that regression.

[coderabbitai]

Actionable comments posted: 2

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@claude_code_log/markdown/renderer.py`:
- Around line 85-118: _protect_html_tags currently rewrites HTML tags even when
they appear inside inline code spans or indented code blocks; update it to (1)
detect and skip indented code lines (lines that start with four or more spaces
or a tab) similarly to fenced blocks, and (2) for non-fenced, non-indented lines
split the line into literal inline-code spans and non-code segments (using
backtick parsing) and apply _HTML_TAG_RE.sub(r"`\1`", ...) only to non-code
segments so constructs like `x <br> y` are preserved; keep using _FENCE_OPEN_RE
and _HTML_TAG_RE to locate fences and tags and ensure backtick-delimited
segments are left untouched.
- Around line 370-374: The code currently checks
is_well_formed_html(render_user_markdown(item.text)) and then emits the original
Markdown via _protect_html_tags(item.text), which leaves unsafe URL destinations
like javascript: or data: active; instead, parse and sanitize link/image
destinations or emit the sanitized/rendered HTML: run a sanitizer over the
rendered HTML (or rewrite Markdown AST) to remove or rewrite unsafe schemes
(allow only http, https, mailto, etc.), and replace the
parts.append(_protect_html_tags(item.text)) branch with
parts.append(sanitized_rendered_html) or
parts.append(_protect_markdown_with_sanitized_urls(item.text)) so that
link/image URLs are validated and unsafe schemes stripped/neutralized; use the
existing functions render_user_markdown, is_well_formed_html and replace
_protect_html_tags/_code_fence usage accordingly.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: ced12254-a95d-47f9-a339-266dafe56b51

📥 Commits

Reviewing files that changed from the base of the PR and between 9503f0f and babc990.

📒 Files selected for processing (3)

• claude_code_log/markdown/renderer.py
• test/__snapshots__/test_snapshot_markdown.ambr
• test/test_markdown_helpers.py

💤 Files with no reviewable changes (1)

• test/snapshots/test_snapshot_markdown.ambr

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@claude_code_log/markdown/renderer.py`:
- Around line 93-99: Neutralising HTML tokens uses fixed backticks which can be
broken by backticks inside the token; update inline_html and block_html to
mirror _code_fence's adaptive delimiter approach: retrieve raw as you do now,
compute a safe delimiter with _backtick_delimiter(raw, minimum=1) for
inline_html and _backtick_delimiter(raw, minimum=3) for block_html, then wrap
the content using that computed fence instead of hard-coded backticks (keep
trimming/strip logic for block_html as before). Ensure you reference the
existing helper _backtick_delimiter and the pattern used in _code_fence when
implementing the change.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: f324fad1-0073-42f5-8405-61cd59a8ca23

📥 Commits

Reviewing files that changed from the base of the PR and between babc990 and fc1488f.

📒 Files selected for processing (5)

• claude_code_log/html/templates/transcript.html
• claude_code_log/markdown/renderer.py
• test/__snapshots__/test_snapshot_html.ambr
• test/test_markdown_helpers.py
• test/test_user_view_toggle_browser.py

✅ Files skipped from review due to trivial changes (1)

• test/snapshots/test_snapshot_html.ambr

🚧 Files skipped from review as they are similar to previous changes (1)

• test/test_markdown_helpers.py

[coderabbitai]

Actionable comments posted: 2

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@claude_code_log/markdown/renderer.py`:
- Around line 113-116: inline_html currently chooses a backtick wrapper using
only the token's raw content, which can merge with adjacent backticks and allow
live HTML; change inline_html (and its use of _backtick_delimiter) to emit
HTML-escaped content instead of raw when token represents inline HTML (escape
'<', '>', '&', etc.), or alternatively make the delimiter context-aware by
inspecting surrounding text via the state parameter to ensure the opening and
closing backtick runs match; implement the safer option: HTML-escape
token.get("raw") before computing/wrapping with _backtick_delimiter in
inline_html so adjacent backticks cannot create mismatched code spans.

In `@test/test_markdown_helpers.py`:
- Around line 437-441: The test is using mistune.create_markdown() which
defaults to escaping HTML, so change the renderer used in the assertions to a
permissive one to ensure escaping comes from _protect_html_tags() and not the
renderer; replace calls to mistune.create_markdown() with creating a Markdown
renderer using mistune.HTMLRenderer(escape=False) (e.g.,
mistune.create_markdown(renderer=mistune.HTMLRenderer(escape=False))) for the
checks that assert "&lt;span" and "<span title" (also update the analogous
assertions at the 449-453 block) so the test verifies the protection function
itself rather than renderer-level escaping.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 5a6dc03d-2fec-4abe-8d51-9b8b05ee25a1

📥 Commits

Reviewing files that changed from the base of the PR and between fc1488f and e6f62be.

📒 Files selected for processing (2)

• claude_code_log/markdown/renderer.py
• test/test_markdown_helpers.py

[cboos]

This one might be a bit controversial... I mostly always use Markdown in my prompts, so I think it would be nice to see them rendered as such, I made it the default. But I'd also be OK with a more conservative approach (keep the status quo), as there's a global switch md/raw.

[daaain]

This is great! I sometimes use Markdown too and also often paste in random stuff that might break it, but having a toggle as an escape hatch is a good solution