You have reached your Codex usage limits for code reviews. You can see your limits in the Codex usage dashboard.

Walkthrough

Adds fresh-app onboarding: generated apps include a root landing page at /, bin/dev can auto-open the browser once on first run, the CLI records step-by-step educational git commits during scaffold phases, validators now require git, and generator/Dev tooling and docs were updated accordingly.

Changes

Sequence Diagram(s)

sequenceDiagram
    participant CLI as CLI (create-app)
    participant Git as Git
    participant RailsGen as Rails generator
    participant Server as ServerManager

    CLI->>Git: ensure repository exists / read user.name & user.email
    CLI->>RailsGen: run `rails new` + generator args (--new-app, --rsc/--pro...)
    RailsGen-->>CLI: scaffold (may inject root route, HomeController, landing page)
    CLI->>Git: createEducationalCommit("rails new")
    CLI->>CLI: bundle add react_on_rails (and optionally react_on_rails_pro)
    CLI->>Git: createEducationalCommit("add react_on_rails / pro")
    CLI->>RailsGen: run react_on_rails generator (--new-app)
    CLI->>Git: createEducationalCommit("run generators / scaffold")
    CLI->>Server: print success message (visit http://localhost:3000) + git-history hint
    Note right of Server: on first bin/dev run, ServerManager may poll port and open browser once

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~60 minutes

Poem

🐰 I hop through commits, one tidy trace,
A cozy home page waits at the root space,
The dev server peeks, opens once to say hi,
Links to demos, docs, and guides waving nigh,
Little commits teach — come build and try!

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

size-limit report 📦

Greptile Summary

This PR significantly improves the fresh-app onboarding experience: create-react-on-rails-app now validates git as a prerequisite, creates one educational git commit per scaffold step, and the generated bin/dev auto-opens the app's new landing page on first boot. The landing page (app/views/home/index.html.erb) is a data-driven ERB template rendered from a Ruby config hash in base_generator.rb, linking to example routes, key files, and Pro/RSC resources. The browser-open feature in ServerManager is implemented as a background thread with CI/TTY guards and a marker file for "open once" semantics; because run_with_process_manager uses system() (not exec), the thread correctly survives the foreman/overmind call.

Key observations:

• createEducationalCommit is nested inside each step's try/catch block — a git failure here would fire the step's error message (e.g. "Failed to create Rails application") and trigger cleanupAppDirectory, even though the step itself succeeded. This is the main concrete issue to fix.
• The smoke-test assertion grep -q -- '--open-browser-once' is trivially true because the string always appears in the template; grep -q 'AUTO_OPEN_BROWSER_ONCE = true' is the meaningful check.
• The --new-app flag is correctly declared as a hidden option in both base_generator.rb and install_generator.rb and forwarded through invoke.
• The preexisting_root_route? guard correctly memoises the file read so no double root route is injected on existing apps.
• educationalGitEnv gracefully falls back to DEFAULT_GIT_AUTHOR_NAME/DEFAULT_GIT_AUTHOR_EMAIL when git config user.* is not set, covering fresh CI environments and first-time developers.

Confidence Score: 4/5

• Safe to merge after addressing the git-commit error-handling conflation in create-app.ts.
• The PR is well-structured with comprehensive tests, correct CI/TTY guards on browser opening, proper memoisation in the route guard, and all existing tests updated. The one concrete bug — createEducationalCommit nested inside step try/catch blocks producing misleading errors and spurious cleanup — is straightforward to fix but is a real failure path (any git failure during scaffolding would delete the successfully-created app). The smoke-test assertion weakness is a minor follow-up. No security, data-loss, or production-runtime risk.
• packages/create-react-on-rails-app/src/create-app.ts (git commit error handling), packages/create-react-on-rails-app/scripts/smoke-test-local-gems.sh (assertion strength)

Important Files Changed

Sequence Diagram

sequenceDiagram
    participant CLI as create-react-on-rails-app
    participant Git as Git
    participant Rails as rails new
    participant Bundle as Bundler
    participant Gen as react_on_rails:install --new-app
    participant Dev as bin/dev (thread)
    participant Browser as Browser

    CLI->>CLI: validateAll() — includes validateGit()
    CLI->>Rails: rails new --database=postgresql --skip-javascript
    Rails-->>CLI: app directory created + git init
    CLI->>Git: createEducationalCommit("Create Rails app with PostgreSQL")

    CLI->>Bundle: bundle add react_on_rails
    CLI->>Git: createEducationalCommit("Add react_on_rails gem")

    opt --rsc or --pro
        CLI->>Bundle: bundle add react_on_rails_pro
        CLI->>Git: createEducationalCommit("Add react_on_rails_pro gem")
    end

    CLI->>Gen: rails generate react_on_rails:install --new-app [flags]
    Gen-->>CLI: home_controller.rb + index.html.erb.tt + root route + bin/dev (AUTO_OPEN_BROWSER_ONCE=true)
    CLI->>Git: createEducationalCommit("Install React on Rails with …")

    opt packageManager == pnpm
        CLI->>CLI: normalizeGeneratedPackageManager (pnpm import + install)
        CLI->>Git: createEducationalCommit("Normalize the generated app for pnpm")
    end

    Note over CLI: User runs bin/dev
    Dev->>Dev: inject --open-browser-once into argv (AUTO_OPEN_BROWSER_ONCE=true)
    Dev->>Dev: schedule_browser_open thread spawned
    Dev->>Dev: ProcessManager.run_with_process_manager (system() — thread survives)
    Dev-->>Browser: wait_for_server_on_port → open_browser(url)
    Dev->>Dev: mark_browser_opened_once (writes tmp/react_on_rails/browser_opened_once)

_{Reviews (1): Last reviewed commit: "Add changelog entry for fresh app onboar..." | Re-trigger Greptile}

AGENTS.md

Instructions for AI coding agents working on the React on Rails codebase.

React on Rails is a Ruby gem + npm package that integrates React with Ruby on Rails, providing server-side rendering (SSR) via Node.js or ExecJS. This is a monorepo: the open-source gem lives at react_on_rails/, the npm package at packages/react-on-rails/, and the Pro package at react_on_rails_pro/.

Reusable Workflows

• AGENTS.md: canonical entry point for agent instructions and workflow discovery
• .claude/commands/: Claude Code slash commands
• .agents/workflows/: shared prompt templates and reusable workflows for Codex, GPT, and other non-Claude tools
• When the user asks to address PR review comments outside Claude slash commands, follow .agents/workflows/address-review.md

Canonical Agent Policy

AGENTS.md is the canonical source for repository-wide agent rules:

• Commands and test/lint workflow
• Code style and formatting expectations
• Git/PR boundaries and safety rules
• Directory and documentation boundaries

Other agent-facing docs (for example CLAUDE.md) should contain only tool-specific workflow notes and link back here.
If there is a conflict, AGENTS.md wins.

Commands

# Install dependencies
bundle && pnpm install

# Build TypeScript → JavaScript
pnpm run build

# Lint (MANDATORY before every commit)
bundle exec rubocop                  # Ruby — must pass with zero offenses
pnpm run lint                        # JS/TS via ESLint
pnpm start format.listDifferent      # Check Prettier formatting
rake lint                            # All linting (Ruby + JS + formatting)

# Auto-fix formatting
rake autofix                         # Preferred for all formatting

# Run tests
rake run_rspec:gem                   # Ruby unit tests (gem code)
rake run_rspec:dummy                 # Ruby integration tests (dummy Rails app)
pnpm run test                        # JavaScript/TypeScript tests
rake                                 # Full suite (lint + all tests except examples)

# Type checking
pnpm run type-check                  # TypeScript
bundle exec rake rbs:validate        # RBS signatures

# Additional test subsets
rake run_rspec                       # All Ruby tests
rake all_but_examples                # All tests except generated examples
rake run_rspec:shakapacker_examples_basic  # Single example test

# Full initial setup
bundle && pnpm install && rake shakapacker_examples:gen_all && rake node_package && rake

# CI/workflow linting
actionlint                           # GitHub Actions lint
yamllint .github/                    # YAML lint (do NOT run RuboCop on .yml files)

# Dependency version updates
rake shakapacker:update_version[9.6.1]  # Update shakapacker across the monorepo

Updating Shakapacker

Use rake shakapacker:update_version[VERSION] to update shakapacker across the entire monorepo. This single command updates all Gemfiles, package.json files, Gemfile.lock files, and pnpm-lock.yaml. Do not manually edit individual version references — always use the rake task to keep everything in sync.

The task handles Ruby version switching for apps that require a different Ruby version (set RUBY_VERSION_MANAGER to rvm, rbenv, asdf, or mise if needed; defaults to rvm). It continues gracefully if a single lock file update fails (e.g., due to a missing Ruby version).

Testing

• Prefer local testing over CI iteration — don't push "hopeful" fixes. Apply the 15-minute rule: if 15 more minutes of local testing would catch the issue before CI does, spend the 15 minutes.
• Never claim a test is "fixed" without running it locally first. Use "This SHOULD fix..." or "Proposed fix (UNTESTED)" for unverified changes.
• Ruby: RSpec. Unit tests in react_on_rails/spec/react_on_rails/, integration tests via a dummy Rails app in react_on_rails/spec/dummy/.
• JavaScript/TypeScript: Jest. Tests in packages/react-on-rails/tests/.
• E2E: Playwright. Tests in react_on_rails/spec/dummy/e2e/playwright/e2e/. Run with cd react_on_rails/spec/dummy && pnpm test:e2e.
• The dummy app (react_on_rails/spec/dummy/) is a full Rails application used for integration testing. Many tests require it.

Run specific test files:

bundle exec rspec react_on_rails/spec/react_on_rails/path/to/spec.rb
cd react_on_rails/spec/dummy && bundle exec rspec spec/path/to/spec.rb

Project Structure

Code Style

Ruby (RuboCop)

Line length max 120 characters. Run bundle exec rubocop [file] to check.

Line length — break long chains:

# Bad
content = pack_content.gsub(/import.*from.*['"];/, "").gsub(/ReactOnRails\.register.*/, "")

# Good
content = pack_content.gsub(/import.*from.*['"];/, "")
                      .gsub(/ReactOnRails\.register.*/, "")

Named subjects in RSpec:

# Bad
subject { instance.method_name(arg) }

# Good
subject(:method_result) { instance.method_name(arg) }

Security violations — scope disable comments tightly:

# rubocop:disable Security/Eval
expect { evaluate(sanitized_content) }.not_to raise_error
# rubocop:enable Security/Eval

JavaScript/TypeScript

Prettier handles all formatting. Never manually format — run rake autofix instead.

Git Workflow

Branch naming: type/descriptive-name (e.g., fix/ssr-hydration-mismatch)

Commit messages: Explain why, not what. One logical change per commit.

PR creation: Use gh pr create with a clear title, summary, and test plan.

Review Workflow

For small, focused PRs (roughly 5 files changed or fewer and one clear purpose):

• Use at most one AI reviewer that leaves inline comments. Additional AI tools should be summary-only or used manually.
• Wait for the first full review pass to finish before pushing follow-up commits.
• Batch review fixes into one follow-up push when practical. Do not create a new commit for each minor comment.
• Treat as blocking only: correctness bugs, failing tests, regressions, and clear inconsistencies with adjacent code. Nits and style suggestions are optional unless a maintainer asks for them.
• Verify language, runtime, and library claims locally before changing code in response to AI review comments.
• Deduplicate repeated bot comments before acting on them. Fix the underlying issue once, then resolve the duplicates.
• Rebase or merge main once, near the end of the review cycle. For CHANGELOG.md conflicts, prefer resolving them as the final step before merge.
• When asking an agent to address review comments, instruct it to classify comments into blocking, optional, and noise, then apply only the blocking items plus any explicitly selected optional items.

Boundaries

Always

• Run bundle exec rubocop before committing — CI will reject violations
• Use pnpm for all JS operations — never npm or yarn
• Use bundle exec for Ruby commands
• Ensure all files end with a newline
• Let Prettier and RuboCop handle formatting — never format manually

Ask First

• Destructive git operations (force push, reset --hard, branch deletion)
• Changes to CI workflows (.github/workflows/)
• Changes to build configuration (package.json scripts, webpack config)
• Modifying the Pro package (react_on_rails_pro/)

Never

• Skip pre-commit hooks (--no-verify)
• Commit secrets, credentials, or .env files
• Commit package-lock.json, yarn.lock, or other non-pnpm lock files
• Add files to the docs/ root — OSS docs go in docs/oss/ subdirectories (getting-started/, core-concepts/, building-features/, configuration/, api-reference/, deployment/, migrating/, upgrading/, misc/); Pro docs go in docs/pro/
• Force push to main or master

Key Concept: File Suffixes vs. RSC Directive

React on Rails has two independent systems that both use "client" and "server" terminology. Do not confuse them.

1. Bundle Placement (.client. / .server. file suffixes)

A React on Rails auto-bundling feature that controls which webpack bundle imports a file. This exists independently of React Server Components and is used with or without RSC:

• Component.client.jsx → imported only in the client bundle (browser)
• Component.server.jsx → imported only in the server bundle (and RSC bundle when RSC enabled)
• Component.jsx (no suffix) → imported in both bundles

This controls where the source file is loaded, nothing more. A .server.jsx file is NOT a React Server Component — it is simply a file that webpack includes in the server bundle (and the RSC bundle when RSC is enabled). These suffixes only make sense for client components, as server components exist only in the RSC bundle.

2. RSC Classification ('use client' directive)

The 'use client' directive is part of the React Server Components architecture. It marks a component as a React Client Component. Components without it are treated as React Server Components.

When auto-bundling is enabled with RSC support (Pro feature), React on Rails uses this directive to control:

• Registration: 'use client' → ReactOnRails.register(), no 'use client' → registerServerComponent()
• RSC bundling: The RSC webpack loader uses this directive to decide whether a component is included in the RSC bundle or replaced with a client reference in that bundle

The client_entrypoint? method in packs_generator.rb checks for this directive.

They Are Orthogonal

A .client.jsx file can be a React Server Component (if it lacks 'use client'), and a .server.jsx file can be a React Client Component (if it has 'use client'). In practice, paired .client./.server. files should have consistent 'use client' status because the client and server must agree on the component's RSC role for hydration to work.

Changelog

Update /CHANGELOG.md for user-visible changes only (features, bug fixes, breaking changes, deprecations, performance improvements). Do not add entries for linting, formatting, refactoring, tests, or doc fixes.

• Format: [PR 1818](https://github.com/shakacode/react_on_rails/pull/1818) by [username](https://github.com/username) (no hash before PR number)
• Pro-only changes use an inline **[Pro]** tag prefix within the standard category sections (e.g., - **[Pro]** **Feature name**: Description...); do NOT create separate #### Pro subsections

PR Review: Improve create-react-on-rails-app fresh app onboarding

Overall this is a well-structured feature. The generated landing page, educational git history, and browser auto-open are all valuable developer UX improvements. Good test coverage across the new code paths. A few issues worth addressing before merging:

Bug: explicit --open-browser silently no-ops in non-TTY contexts

browser_auto_open_allowed? checks stdin.tty? and stdout.tty?, which makes sense for the auto/generated AUTO_OPEN_BROWSER_ONCE behavior. But schedule_browser_open applies this same guard for both the implicit case (generated constant) and the explicit case (user typed --open-browser). In a Docker container, an SSH session without a pseudo-TTY, or when output is piped, the flag silently does nothing with no warning or error.

The TTY guard should only apply to the auto-open path, not to explicit user opt-in. Consider threading an explicit: keyword through schedule_browser_open that bypasses the TTY check.

Bug: OPEN_BROWSER_ONCE_MARKER is a relative path

This constant resolves against Dir.pwd at constant-evaluation time (when the file is first required). If Dir.pwd is not the Rails app root at that moment the marker lands in the wrong directory and the once-open guard silently misfires. Prefer resolving it lazily at call time, e.g. relative to Rails.root.

Smoke test gap: JS-only template has no git-history assertion

expect_git_history is called for the TypeScript and RSC-JS variants but not for the plain-JS, Rspack-only, RSC-TS, or RSC-Rspack variants. A commit-message string change on those paths would go undetected. Consider adding expect_git_history for at least the JS-only variant to cover the non-TypeScript branch.

Nit: unreachable npm branch in packageManagerCommitMessage

The function constructs a body for the non-pnpm case, but the call site is guarded by a pnpm check - the npm branch is dead code. Either remove it from the function or add a comment at the call site explaining why npm does not get a normalization commit.

Nit: Windows start empty-string idiom deserves a comment

browser_command returns cmd /c start with an empty string on Windows. The empty string is the required window-title placeholder that keeps start from misinterpreting the URL as the title. This is correct but non-obvious - a brief inline comment would save the next reader from a grep detour.

AGENTS.md

Instructions for AI coding agents working on the React on Rails codebase.

React on Rails is a Ruby gem + npm package that integrates React with Ruby on Rails, providing server-side rendering (SSR) via Node.js or ExecJS. This is a monorepo: the open-source gem lives at react_on_rails/, the npm package at packages/react-on-rails/, and the Pro package at react_on_rails_pro/.

Reusable Workflows

• AGENTS.md: canonical entry point for agent instructions and workflow discovery
• .claude/commands/: Claude Code slash commands
• .agents/workflows/: shared prompt templates and reusable workflows for Codex, GPT, and other non-Claude tools
• When the user asks to address PR review comments outside Claude slash commands, follow .agents/workflows/address-review.md

Canonical Agent Policy

AGENTS.md is the canonical source for repository-wide agent rules:

• Commands and test/lint workflow
• Code style and formatting expectations
• Git/PR boundaries and safety rules
• Directory and documentation boundaries

Other agent-facing docs (for example CLAUDE.md) should contain only tool-specific workflow notes and link back here.
If there is a conflict, AGENTS.md wins.

Commands

# Install dependencies
bundle && pnpm install

# Build TypeScript → JavaScript
pnpm run build

# Lint (MANDATORY before every commit)
bundle exec rubocop                  # Ruby — must pass with zero offenses
pnpm run lint                        # JS/TS via ESLint
pnpm start format.listDifferent      # Check Prettier formatting
rake lint                            # All linting (Ruby + JS + formatting)

# Auto-fix formatting
rake autofix                         # Preferred for all formatting

# Run tests
rake run_rspec:gem                   # Ruby unit tests (gem code)
rake run_rspec:dummy                 # Ruby integration tests (dummy Rails app)
pnpm run test                        # JavaScript/TypeScript tests
rake                                 # Full suite (lint + all tests except examples)

# Type checking
pnpm run type-check                  # TypeScript
bundle exec rake rbs:validate        # RBS signatures

# Additional test subsets
rake run_rspec                       # All Ruby tests
rake all_but_examples                # All tests except generated examples
rake run_rspec:shakapacker_examples_basic  # Single example test

# Full initial setup
bundle && pnpm install && rake shakapacker_examples:gen_all && rake node_package && rake

# CI/workflow linting
actionlint                           # GitHub Actions lint
yamllint .github/                    # YAML lint (do NOT run RuboCop on .yml files)

# Dependency version updates
rake shakapacker:update_version[9.6.1]  # Update shakapacker across the monorepo

Updating Shakapacker

Use rake shakapacker:update_version[VERSION] to update shakapacker across the entire monorepo. This single command updates all Gemfiles, package.json files, Gemfile.lock files, and pnpm-lock.yaml. Do not manually edit individual version references — always use the rake task to keep everything in sync.

The task handles Ruby version switching for apps that require a different Ruby version (set RUBY_VERSION_MANAGER to rvm, rbenv, asdf, or mise if needed; defaults to rvm). It continues gracefully if a single lock file update fails (e.g., due to a missing Ruby version).

Testing

• Prefer local testing over CI iteration — don't push "hopeful" fixes. Apply the 15-minute rule: if 15 more minutes of local testing would catch the issue before CI does, spend the 15 minutes.
• Never claim a test is "fixed" without running it locally first. Use "This SHOULD fix..." or "Proposed fix (UNTESTED)" for unverified changes.
• Ruby: RSpec. Unit tests in react_on_rails/spec/react_on_rails/, integration tests via a dummy Rails app in react_on_rails/spec/dummy/.
• JavaScript/TypeScript: Jest. Tests in packages/react-on-rails/tests/.
• E2E: Playwright. Tests in react_on_rails/spec/dummy/e2e/playwright/e2e/. Run with cd react_on_rails/spec/dummy && pnpm test:e2e.
• The dummy app (react_on_rails/spec/dummy/) is a full Rails application used for integration testing. Many tests require it.

Run specific test files:

bundle exec rspec react_on_rails/spec/react_on_rails/path/to/spec.rb
cd react_on_rails/spec/dummy && bundle exec rspec spec/path/to/spec.rb

Project Structure

Code Style

Ruby (RuboCop)

Line length max 120 characters. Run bundle exec rubocop [file] to check.

Line length — break long chains:

# Bad
content = pack_content.gsub(/import.*from.*['"];/, "").gsub(/ReactOnRails\.register.*/, "")

# Good
content = pack_content.gsub(/import.*from.*['"];/, "")
                      .gsub(/ReactOnRails\.register.*/, "")

Named subjects in RSpec:

# Bad
subject { instance.method_name(arg) }

# Good
subject(:method_result) { instance.method_name(arg) }

Security violations — scope disable comments tightly:

# rubocop:disable Security/Eval
expect { evaluate(sanitized_content) }.not_to raise_error
# rubocop:enable Security/Eval

JavaScript/TypeScript

Prettier handles all formatting. Never manually format — run rake autofix instead.

Git Workflow

Branch naming: type/descriptive-name (e.g., fix/ssr-hydration-mismatch)

Commit messages: Explain why, not what. One logical change per commit.

PR creation: Use gh pr create with a clear title, summary, and test plan.

Review Workflow

For small, focused PRs (roughly 5 files changed or fewer and one clear purpose):

• Use at most one AI reviewer that leaves inline comments. Additional AI tools should be summary-only or used manually.
• Wait for the first full review pass to finish before pushing follow-up commits.
• Batch review fixes into one follow-up push when practical. Do not create a new commit for each minor comment.
• Treat as blocking only: correctness bugs, failing tests, regressions, and clear inconsistencies with adjacent code. Nits and style suggestions are optional unless a maintainer asks for them.
• Verify language, runtime, and library claims locally before changing code in response to AI review comments.
• Deduplicate repeated bot comments before acting on them. Fix the underlying issue once, then resolve the duplicates.
• Rebase or merge main once, near the end of the review cycle. For CHANGELOG.md conflicts, prefer resolving them as the final step before merge.
• When asking an agent to address review comments, instruct it to classify comments into blocking, optional, and noise, then apply only the blocking items plus any explicitly selected optional items.

Boundaries

Always

• Run bundle exec rubocop before committing — CI will reject violations
• Use pnpm for all JS operations — never npm or yarn
• Use bundle exec for Ruby commands
• Ensure all files end with a newline
• Let Prettier and RuboCop handle formatting — never format manually

Ask First

• Destructive git operations (force push, reset --hard, branch deletion)
• Changes to CI workflows (.github/workflows/)
• Changes to build configuration (package.json scripts, webpack config)
• Modifying the Pro package (react_on_rails_pro/)

Never

• Skip pre-commit hooks (--no-verify)
• Commit secrets, credentials, or .env files
• Commit package-lock.json, yarn.lock, or other non-pnpm lock files
• Add files to the docs/ root — OSS docs go in docs/oss/ subdirectories (getting-started/, core-concepts/, building-features/, configuration/, api-reference/, deployment/, migrating/, upgrading/, misc/); Pro docs go in docs/pro/
• Force push to main or master

Key Concept: File Suffixes vs. RSC Directive

React on Rails has two independent systems that both use "client" and "server" terminology. Do not confuse them.

1. Bundle Placement (.client. / .server. file suffixes)

A React on Rails auto-bundling feature that controls which webpack bundle imports a file. This exists independently of React Server Components and is used with or without RSC:

• Component.client.jsx → imported only in the client bundle (browser)
• Component.server.jsx → imported only in the server bundle (and RSC bundle when RSC enabled)
• Component.jsx (no suffix) → imported in both bundles

This controls where the source file is loaded, nothing more. A .server.jsx file is NOT a React Server Component — it is simply a file that webpack includes in the server bundle (and the RSC bundle when RSC is enabled). These suffixes only make sense for client components, as server components exist only in the RSC bundle.

2. RSC Classification ('use client' directive)

The 'use client' directive is part of the React Server Components architecture. It marks a component as a React Client Component. Components without it are treated as React Server Components.

When auto-bundling is enabled with RSC support (Pro feature), React on Rails uses this directive to control:

• Registration: 'use client' → ReactOnRails.register(), no 'use client' → registerServerComponent()
• RSC bundling: The RSC webpack loader uses this directive to decide whether a component is included in the RSC bundle or replaced with a client reference in that bundle

The client_entrypoint? method in packs_generator.rb checks for this directive.

They Are Orthogonal

A .client.jsx file can be a React Server Component (if it lacks 'use client'), and a .server.jsx file can be a React Client Component (if it has 'use client'). In practice, paired .client./.server. files should have consistent 'use client' status because the client and server must agree on the component's RSC role for hydration to work.

Changelog

Update /CHANGELOG.md for user-visible changes only (features, bug fixes, breaking changes, deprecations, performance improvements). Do not add entries for linting, formatting, refactoring, tests, or doc fixes.

• Format: [PR 1818](https://github.com/shakacode/react_on_rails/pull/1818) by [username](https://github.com/username) (no hash before PR number)
• Pro-only changes use an inline **[Pro]** tag prefix within the standard category sections (e.g., - **[Pro]** **Feature name**: Description...); do NOT create separate #### Pro subsections

PR Review: Improve create-react-on-rails-app fresh app onboarding

Overall this is a well-structured, thoughtful onboarding improvement. The layered design — git-validation → educational commits → landing page → first-run browser open — is clean, and the guard logic (CI detection, TTY check, --no-open-browser override, marker file) is solid. A few issues worth addressing before merge:

Blocker: GPG commit signing hangs scaffolding

Developers with commit.gpgsign = true in their global git config will see the scaffolding block waiting for a GPG passphrase (or fail outright in non-TTY CI environments). Since educational commits are machine-generated, signing adds no value. The git commit call in createEducationalCommit should pass -c commit.gpgsign=false to disable signing for these automated commits. See inline comment on create-app.ts:221.

Medium: WSL users get no browser open and no feedback

browser_command correctly handles macOS, Linux (via xdg-open), and native Windows, but silently returns nil on WSL where xdg-open is absent. WSL is a common Rails dev environment on Windows. At minimum, a "Auto-open not supported on this platform — visit http://localhost:3000" message when browser_command returns nil would prevent confusion. See inline comment on server_manager.rb:923.

Medium: Thread.new + report_on_exception = false + next

The combination of suppressed exceptions and the non-idiomatic next in a non-iterating block will make debugging any future issue in schedule_browser_open very difficult. next works in MRI today, but this is fragile. Restructuring with a rescue clause that at least logs to $stderr in verbose mode would be safer and more conventional. See inline comment on server_manager.rb:875.

Medium: Brittle positional mock chain in tests

The mockImplementationOnce stacks in create-app.test.ts now require adding 2-6 new blank stubs every time a git operation is added to the flow. This PR already had to update nthCalledWith(2) to nthCalledWith(4) and nthCalledWith(3) to nthCalledWith(7) because of this. A mockImplementation keyed on (command, args) would make these tests resilient to future additions. See inline comment on create-app.test.ts:477.

Minor: Memoize educationalGitEnv

readGitConfig spawns a subprocess each time, and educationalGitEnv calls it twice per commit across 4-5 commits per scaffold run (8-10 subprocesses). The name and email don't change mid-run — caching after the first read is trivial. See inline comment on create-app.ts:196.

Minor: Soft race condition in --open-browser-once

The marker-file existence check happens before the thread is spawned; the write happens inside the thread. Two near-simultaneous bin/dev restarts could both pass the check and both open a browser tab. Very unlikely in practice — just documenting it for if it ever gets reported as a bug. See inline comment on server_manager.rb:872.

Observations (no action needed)

• OPEN_BROWSER_ONCE_MARKER is a relative path (tmp/react_on_rails/browser_opened_once). This is fine — Rails convention is to always run bin/dev from the app root, and tmp/ is gitignored. Worth a note in the constant comment for future maintainers.
• ensureGitRepository is called on every createEducationalCommit invocation but is idempotent and cheap since rails new already initialises git. No change needed.
• The open_browser method correctly short-circuits on non-zero exit, so the marker is only written when the browser command actually succeeded. Good.

Following up on #2849 (comment):

I moved the three maintainability-focused discuss items into follow-up issue #2890 so they can be handled outside this merge path:
#2890

Skipping the remaining items for this PR:

• The detached browser-open thread is intentional best-effort behavior; it does not change correctness for the onboarding flow.
• The xdg-open wording suggestion is a nice improvement, but it is warning-text polish rather than a blocking issue.
• The mutual exclusion between --open-browser and --open-browser-once is already intentional and covered by tests; extra commentary can happen later if we want it.
• The explicit protect_from_forgery with: :exception in the generated HomeController is redundant, but harmless and not a merge blocker for this onboarding work.

No code changes needed for this comment in PR #2849.