Fix local reset flow and Accessibility permission handling

[senamakel]

Summary

• add a core-owned config_reset_local_data flow and wire destructive logout to clear local OpenHuman data before restarting the sidecar
• keep Tauri host responsibilities thin by using the existing restart command only for sidecar lifecycle, not filesystem deletion
• remove screen recording from Accessibility settings and stop the bulk accessibility permission request from prompting for screen recording
• tighten related tests and helper coverage around the new reset/restart path and Accessibility settings behavior
• include small cleanup fixes already present on the branch for Memory Workspace / Skill Setup Wizard copy and Rust import cleanup

Problem

• "Logout and clear all data" was only clearing frontend/browser state and the auth session; it did not remove persisted OpenHuman data under the local workspace or fully restart the core
• Accessibility settings still exposed screen recording as if it were part of the accessibility automation permission flow, which no longer matches the intended product model
• some small branch-local cleanup fixes were already stacked on top of main and need to land together with this branch

Solution

• add a new core config controller that deletes the active OpenHuman config/workspace directory, clears the active workspace marker, and removes the default ~/.openhuman directory when present
• update the frontend reset helper to call the core RPC first and then restart the sidecar using the existing Tauri restart command
• update destructive settings flow to run the backend reset, then purge browser-side caches and local UI state
• remove screen recording from the Accessibility settings panel and change the shared request_permissions() core path to request only Accessibility and Input Monitoring; explicit per-permission screen recording requests remain available for Screen Intelligence
• keep logging and test coverage around the new reset path and the Accessibility panel behavior

Submission Checklist

• Unit tests — Vitest (app/) and/or cargo test (core) for logic you add or change
• E2E / integration — Not run for this branch; no new end-to-end coverage added in this pass
• N/A — Full E2E was not run in this turn; targeted unit / cargo check coverage was used instead
• Doc comments — /// / //! (Rust), JSDoc or brief file/module headers (TS) on public APIs and non-obvious modules
• Inline comments — Where logic, invariants, or edge cases aren’t clear from names alone (keep them grep-friendly; avoid restating the code)

Impact

• desktop app behavior changes only; no mobile/web scope
• destructive logout now removes persisted local OpenHuman data and forces a clean core restart on next boot cycle
• Accessibility settings no longer imply that screen recording is part of the accessibility automation permission set
• explicit screen recording permission requests still exist for Screen Intelligence flows that need capture access

Related

• Issue(s): none linked in this branch
• Follow-up PR(s)/TODOs: clean up remaining screen-recording copy in other Screen Intelligence / onboarding surfaces if product wants the terminology fully separated

Summary by CodeRabbit

• New Features

  • Added a full core reset action that clears local app data and restarts the backend.

• Style

  • Updated SkillSetupWizard to a lighter stone color palette.
  • Renamed Memory workspace header to "Memory (EverMind)".

• Bug Fixes

  • Clear-all sequence now resets backend before purging client caches.
  • Removed Screen Recording from accessibility permission requests.

• Tests / Chores

  • Added tests verifying reset behavior.
  • Added repository hooks for commit tooling.

[coderabbitai]

Warning

Rate limit exceeded

@senamakel has exceeded the limit for the number of commits that can be reviewed per hour. Please wait 4 minutes and 40 seconds before requesting another review.

Your organization is not enrolled in usage-based pricing. Contact your admin to enable usage-based pricing to continue reviews beyond the rate limit, or try again in 4 minutes and 40 seconds.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: db4955cd-7d21-4acb-aa41-d80bd39579a0

📥 Commits

Reviewing files that changed from the base of the PR and between 6543afa and 39eabb7.

📒 Files selected for processing (2)

• src/openhuman/config/ops.rs
• tests/skills_debug_e2e.rs

📝 Walkthrough

Walkthrough

This PR removes screen-recording from permission requests, adds a core RPC and Tauri command to reset local OpenHuman data and restart the core, updates Settings to invoke that reset before client purges, tweaks UI text/styling, and cleans up unused imports across backend modules.

Changes

Cohort / File(s)	Summary
Core process & Tauri glue app/src-tauri/src/core_process.rs, app/src-tauri/src/lib.rs	Minor logging/formatting changes and parameter formatting; no behavior change to restart/shutdown or hotkey registration semantics.
Reset RPC & controller src/openhuman/config/ops.rs, src/openhuman/config/schemas.rs	New config.reset_local_data RPC added with implementation to remove active_workspace.toml and current/default OpenHuman dirs; controller schema and handler registered; includes a Tokio test.
Tauri command & tests app/src/utils/tauriCommands.ts, app/src/utils/__tests__/tauriCommands.test.ts	Added resetOpenHumanDataAndRestartCore() Tauri-exported function that calls the RPC then invokes core restart; test asserts RPC call and invoke('restart_core_process').
Settings & data purge flow app/src/components/settings/SettingsHome.tsx	clearAllAppData() now calls backend reset (resetOpenHumanDataAndRestartCore()) before client-side purges; on reset failure it logs/wraps and prevents subsequent purges.
Permissions / Accessibility src/openhuman/screen_intelligence/engine.rs, src/openhuman/screen_intelligence/ops.rs, src/openhuman/screen_intelligence/schemas.rs, app/src/components/settings/panels/AccessibilityPanel.tsx, app/src/components/settings/panels/__tests__/AccessibilityPanel.test.tsx	Removed Screen Recording permission from request flow, UI, tests, and schema descriptions; request_permissions() now only requests Accessibility and InputMonitoring; one log message text updated.
UI text & styling app/src/components/intelligence/MemoryWorkspace.tsx, app/src/components/skills/SkillSetupWizard.tsx	Memory header changed to "Memory (EverMind)"; SkillSetupWizard color palette/lightening and related button/icon text/color adjustments.
Import cleanup src/core/skills_cli.rs, src/openhuman/skills/registry_ops.rs, src/openhuman/subconscious/engine.rs	Removed unused imports (IntoResponse/Json, PathBuf, MemoryClient/Path), simplifying modules without behavior change.
Package hooks app/package.json, package.json	Moved Husky hooks: removed prepare from app/package.json; added root husky devDependency and prepare/postinstall scripts at repository root.

Sequence Diagram

sequenceDiagram
    participant Browser as Browser Client
    participant TauriCmd as Tauri Command<br/>(tauriCommands.ts)
    participant RPC as Core RPC<br/>(config_reset_local_data)
    participant FileIO as File I/O<br/>(Directory Removal)
    participant CoreRestart as Core Restart<br/>(restart_core_process)

    Browser->>TauriCmd: resetOpenHumanDataAndRestartCore()
    TauriCmd->>RPC: callCoreRpc({ method: 'openhuman.config_reset_local_data' })
    RPC->>FileIO: Delete active_workspace.toml & remove dirs
    FileIO-->>RPC: removed_paths[] (results)
    RPC-->>TauriCmd: RpcOutcome with removed_paths
    TauriCmd->>CoreRestart: invoke('restart_core_process')
    CoreRestart-->>TauriCmd: restart result
    TauriCmd-->>Browser: Promise resolved
    Browser->>Browser: Proceed with client storage/cache purge

Loading

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~45 minutes

Possibly related PRs

• feat(memory): redesign memory workspace with graph, insights, heatmap #185 — touches MemoryWorkspace.tsx header text; overlaps with the Memory header change.
• Feat/add dictation #278 — related to dictation hotkey / Tauri command changes touching app/src-tauri/src/lib.rs.
• fix(macos): restart sidecar so TCC permission state updates after System Settings (#133) #182 — related to core restart flow and restart plumbing used by the new reset+restart sequence.

Poem

🐰 A Tiny Reset Note
Soft paws clear the scattered tracks,
No screen record, just lighter stacks.
Configs wiped, the core restarts,
New headings, brighter parts.
Hop, hop—clean slate and happy hearts! ✨

🚥 Pre-merge checks | ✅ 2 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 75.00% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately describes the main changes: it references the two primary objectives of adding a local reset flow and updating accessibility permission handling.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 2

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@app/src-tauri/src/core_process.rs`:
- Around line 211-214: Formatting changes are needed: run rustfmt over the
workspace (cargo fmt --manifest-path ../Cargo.toml --all) to normalize the
formatting around the log::debug calls in core_process.rs (the restart/shutdown
debug statements where log::debug! is invoked, also the similar statement around
the other debug at the noted location), then commit the resulting formatted
changes so cargo fmt --check passes.

In `@app/src/components/settings/panels/AccessibilityPanel.tsx`:
- Line 156: The CI failure is due to formatting checks; run the repository
format tasks and commit the results so the className change in
AccessibilityPanel.tsx (the "mt-1 rounded-lg border ..." JSX attribute) matches
Prettier/format rules. Run the frontend formatting/check commands (e.g. yarn
workspace openhuman-app format or yarn workspace openhuman-app format:fix, then
yarn workspace openhuman-app format:check, plus run eslint and tsc --noEmit) and
commit the updated files; if you also changed Rust code run cargo fmt and cargo
check before committing. Ensure the JSX file AccessibilityPanel.tsx is saved
with the formatter's output and pushed.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 2561c83d-8ddf-47f2-8a6a-dda29382146d

📥 Commits

Reviewing files that changed from the base of the PR and between fa1c618 and 15ce81b.

📒 Files selected for processing (17)

• app/src-tauri/src/core_process.rs
• app/src-tauri/src/lib.rs
• app/src/components/intelligence/MemoryWorkspace.tsx
• app/src/components/settings/SettingsHome.tsx
• app/src/components/settings/panels/AccessibilityPanel.tsx
• app/src/components/settings/panels/__tests__/AccessibilityPanel.test.tsx
• app/src/components/skills/SkillSetupWizard.tsx
• app/src/utils/__tests__/tauriCommands.test.ts
• app/src/utils/tauriCommands.ts
• src/core/skills_cli.rs
• src/openhuman/config/ops.rs
• src/openhuman/config/schemas.rs
• src/openhuman/screen_intelligence/engine.rs
• src/openhuman/screen_intelligence/ops.rs
• src/openhuman/screen_intelligence/schemas.rs
• src/openhuman/skills/registry_ops.rs
• src/openhuman/subconscious/engine.rs

💤 Files with no reviewable changes (1)

• src/core/skills_cli.rs

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

Run cargo fmt to fix formatting issues.

The pipeline is failing because cargo fmt --check detected formatting differences. The changes themselves are correct, but please run cargo fmt --manifest-path ../Cargo.toml --all before merging.

Also applies to: 271-271

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@app/src-tauri/src/core_process.rs` around lines 211 - 214, Formatting changes
are needed: run rustfmt over the workspace (cargo fmt --manifest-path
../Cargo.toml --all) to normalize the formatting around the log::debug calls in
core_process.rs (the restart/shutdown debug statements where log::debug! is
invoked, also the similar statement around the other debug at the noted
location), then commit the resulting formatted changes so cargo fmt --check
passes.

[coderabbitai]

⚠️ Potential issue | 🟠 Major

CI formatting gate is failing and blocks merge.

The current pipeline reports yarn workspace openhuman-app format:check failing. Please run and commit formatter output before merge (this check includes Prettier and cargo fmt --check).

As per coding guidelines: “Run Prettier, ESLint, and tsc --noEmit before merging changes to app/ code” and “Run cargo fmt and cargo check before merging changes to Rust code.”

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@app/src/components/settings/panels/AccessibilityPanel.tsx` at line 156, The
CI failure is due to formatting checks; run the repository format tasks and
commit the results so the className change in AccessibilityPanel.tsx (the "mt-1
rounded-lg border ..." JSX attribute) matches Prettier/format rules. Run the
frontend formatting/check commands (e.g. yarn workspace openhuman-app format or
yarn workspace openhuman-app format:fix, then yarn workspace openhuman-app
format:check, plus run eslint and tsc --noEmit) and commit the updated files; if
you also changed Rust code run cargo fmt and cargo check before committing.
Ensure the JSX file AccessibilityPanel.tsx is saved with the formatter's output
and pushed.

[coderabbitai]

🧹 Nitpick comments (2)

app/src/utils/tauriCommands.ts (1)

203-217: Implementation follows established patterns; note partial-reset edge case.

The function correctly follows the file's conventions: early isTauri() guard, debug logging, and letting errors propagate to the caller.

One consideration: per the Rust handler in src/openhuman/config/ops.rs, the reset performs sequential remove_file / remove_dir_all operations without transactional rollback. If an error occurs mid-way (e.g., permission denied on the second directory), restartCoreProcess() will not execute, leaving the system in a partially-reset state. The caller (SettingsHome.clearAllAppData) handles this by re-throwing and aborting the client purge, which is reasonable—but users may need to re-run the reset manually to complete cleanup.

This is acceptable for a destructive logout flow, but consider documenting this behavior in the JSDoc.

📝 Suggested JSDoc enhancement

+/**
+ * Delete local OpenHuman config/workspace directories and restart the core process.
+ *
+ * This is a destructive operation intended for "clear all app data" flows.
+ * The backend reset is NOT atomic: if a filesystem error occurs mid-way,
+ * the core will NOT restart and partial state may remain. Callers should
+ * re-invoke on failure or instruct the user to retry.
+ */
 export async function resetOpenHumanDataAndRestartCore(): Promise<void> {

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@app/src/utils/tauriCommands.ts` around lines 203 - 217, Add a JSDoc block to
resetOpenHumanDataAndRestartCore explaining that the underlying Rust handler
performs sequential removals without rollback, so a mid-way error can leave a
partially-reset state and will prevent restartCoreProcess() from running; note
that errors are propagated to the caller (SettingsHome.clearAllAppData) and that
callers may need to re-run the reset manually to complete cleanup. Include the
function name resetOpenHumanDataAndRestartCore, mention the Rust handler
behavior (sequential remove_file/remove_dir_all) and the restartCoreProcess()
restart dependency, and ensure the JSDoc briefly describes expected caller
behavior on failure.

package.json (1)

20-31: Remove redundant Husky installation hook and consolidate to root only.

Running Husky in both "prepare" and "postinstall" at root is redundant and unnecessary. Husky v9 official guidance recommends using only "prepare": "husky" for development setup. Additionally, Husky is currently declared in both root and app/package.json, which can cause conflicts in monorepos with centralized Git hooks. Remove "postinstall" and declare Husky only at the monorepo root.

Changes needed

--- a/package.json
+++ b/package.json
@@
-    "prepare": "husky",
-    "postinstall": "husky",
+    "prepare": "husky",

--- a/app/package.json
+++ b/app/package.json
@@
-    "husky": "^9.1.7",

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@package.json` around lines 20 - 31, Remove the redundant "postinstall":
"husky" script from the package.json scripts and keep only "prepare": "husky";
also ensure the "husky" devDependency is declared only at the monorepo root
(remove the duplicate declaration from app/package.json) so Git hooks are
centralized and Husky runs per official v9 guidance.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Nitpick comments:
In `@app/src/utils/tauriCommands.ts`:
- Around line 203-217: Add a JSDoc block to resetOpenHumanDataAndRestartCore
explaining that the underlying Rust handler performs sequential removals without
rollback, so a mid-way error can leave a partially-reset state and will prevent
restartCoreProcess() from running; note that errors are propagated to the caller
(SettingsHome.clearAllAppData) and that callers may need to re-run the reset
manually to complete cleanup. Include the function name
resetOpenHumanDataAndRestartCore, mention the Rust handler behavior (sequential
remove_file/remove_dir_all) and the restartCoreProcess() restart dependency, and
ensure the JSDoc briefly describes expected caller behavior on failure.

In `@package.json`:
- Around line 20-31: Remove the redundant "postinstall": "husky" script from the
package.json scripts and keep only "prepare": "husky"; also ensure the "husky"
devDependency is declared only at the monorepo root (remove the duplicate
declaration from app/package.json) so Git hooks are centralized and Husky runs
per official v9 guidance.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 85c74c3e-bb5d-456a-b49f-203298210ba4

📥 Commits

Reviewing files that changed from the base of the PR and between 15ce81b and 6543afa.

📒 Files selected for processing (3)

• app/package.json
• app/src/utils/tauriCommands.ts
• package.json