sqlite-graphrag 1.0.79

Persistent GraphRAG memory for Claude Code, Codex, Cursor, and 24+ AI agents in a single 6 MB Rust binary. LLM-only and one-shot in v1.0.78: every `remember` / `ingest` spawns a headless claude code or codex subprocess (OAuth, no MCP, no hooks). No daemon. No ONNX runtime. No model download. Graph-native retrieval with FTS5 + cosine + multi-hop traversal. OAuth-only enforcement: API keys ABORT the spawn.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87

//! Cross-platform signal handling: SIGINT, SIGTERM, SIGHUP.

use std::sync::atomic::Ordering;

/// Registers the global shutdown handler for Ctrl+C / SIGTERM / SIGHUP.
///
/// First signal: sets [`SHUTDOWN`](crate::SHUTDOWN) flag, cancels the global
/// cancellation token and emits a best-effort notice on stderr.
///
/// Second signal: calls [`std::process::exit(130)`] for immediate termination
/// following Unix convention (128 + SIGINT=2) — with ZERO I/O on that path.
///
/// # G42/S8 — panic-free by contract
///
/// The pre-v1.0.79 handler used `eprintln!` (second signal) and
/// `tracing::warn!` (first signal). When the parent shell dies the CLI is
/// reparented to PID 1 and stderr becomes a CLOSED pipe; `eprintln!` then
/// panics with `BrokenPipe`, which under `panic = "abort"` becomes the
/// SIGABRT observed on the "ctrl-c" thread (G42/C2 crash report). This
/// handler therefore:
/// - writes the first-signal notice with `writeln!` and IGNORES any I/O
///   error (`let _ =`), never panicking;
/// - performs NO I/O at all on the forced-exit path.
///
/// BrokenPipe on stdout/stderr elsewhere is handled by resetting SIGPIPE
/// to its default disposition in `main` (clean exit 141, Unix convention).
pub fn register_shutdown_handler() {
    if let Err(e) = ctrlc::set_handler(move || {
        let prev = crate::SIGNAL_COUNT.fetch_add(1, Ordering::AcqRel);
        if prev == 0 {
            crate::SHUTDOWN.store(true, Ordering::Release);
            crate::SIGNAL_NUMBER.store(2, Ordering::Release);
            crate::cancel_token().cancel();
            // Best-effort notice: a closed stderr pipe must NEVER abort
            // the process (G42/S8). `writeln!` returns the io::Error that
            // the panicking macro would swallow into an abort; we
            // discard it explicitly.
            use std::io::Write;
            let _ = writeln!(
                std::io::stderr(),
                "shutdown signal received; finishing current operation gracefully"
            );
        } else {
            // Forced shutdown: NO I/O of any kind before exiting (a
            // write here was the exact SIGABRT trigger of G42/C2).
            std::process::exit(130);
        }
    }) {
        tracing::warn!(target: "signals", error = %e, "signal handler registration failed");
    }
}

#[cfg(test)]
mod tests {
    /// G42/S8 regression guard: the handler source must not contain
    /// `eprintln!` or `tracing::warn!` inside the signal closure — both
    /// can panic (and abort under `panic = "abort"`) when stderr is a
    /// closed pipe in an orphaned process.
    #[test]
    fn handler_source_has_no_panicking_io() {
        let source = include_str!("signals.rs");
        let closure_start = source
            .find("ctrlc::set_handler")
            .expect("handler registration must exist");
        // The closure body ends at the forced-exit call (searched FROM
        // the closure start — the doc comment above the fn also mentions
        // exit(130)); the registration-failure log AFTER the closure may
        // use tracing (it runs on the main thread with a live stderr).
        let closure_end = closure_start
            + source[closure_start..]
                .find("std::process::exit(130)")
                .expect("forced-exit path must exist");
        let closure_body = &source[closure_start..closure_end];
        assert!(
            !closure_body.contains("eprintln!"),
            "signal closure must not use eprintln! (BrokenPipe panic, G42/C2)"
        );
        assert!(
            !closure_body.contains("tracing::"),
            "signal closure must not use tracing (stderr I/O can panic, G42/C2)"
        );
        assert!(
            closure_body.contains("let _ = writeln!"),
            "first-signal notice must be a best-effort write"
        );
    }
}