feat: VSCode Extension Implementation

[yiliang114]

TLDR

qwen-code-12.10.0.4.1.1.mp4

This PR implements a comprehensive VSCode extension for Qwen Code, providing a full-featured chat interface with ACP (Agent Communication Protocol) integration. The extension enables seamless interaction with Qwen Code CLI through a modern UI, featuring file system operations, session management, real-time tool call visualization, permission controls, and extensive UI/UX improvements. This work transforms Qwen Code from a CLI-only tool into a fully integrated IDE experience.

Dive Deeper

Background

This PR introduces the VSCode IDE companion extension for Qwen Code, building upon the existing CLI tool to provide a graphical interface for AI-assisted coding. The extension implements the full ACP protocol, allowing users to interact with Qwen Code's capabilities directly within VSCode, with visual feedback, permission controls, and session management.

Core Feature Changes

Implemented Features:

• ✅ Full ACP (Agent Communication Protocol) client implementation (acpConnection.ts)
• ✅ JSON-RPC 2.0 based message handling
• ✅ Support for all ACP methods: initialize, session/create, session/list, session/load, session/save, permission/request, permission/respond
• ✅ File system operations: fs/read_text_file, fs/write_text_file
• ✅ Bidirectional communication with CLI via stdio
• ✅ Request/response correlation with promise-based async handling
• ✅ Real-time session updates via session/update notifications

Technical Implementation:

• ACP connection spawns Qwen CLI process with chat --acp mode
• Message handler parses JSON-RPC messages from CLI stdout
• Pending request tracking ensures responses match requests
• Session manager handles session lifecycle (create, list, load, save)
• File handler implements file read/write with pagination support
• Support for both absolute and relative paths with proper normalization

Reviewer Test Plan

Quick Start

# 1. Install dependencies (first time only)
npm install

# 2. Press F5 or select "Launch Companion VS Code Extension" from debug dropdown

Debugging Options:

• From Root (Recommended): Open project root, select "Launch Companion VS Code Extension", press F5
• From Extension Dir: cd packages/vscode-ide-companion, open in VSCode, select "Run Extension", press F5

Note: The pre-launch task automatically compiles the extension. No manual build required.

Key Test Scenarios

1. CLI Detection & Installation

Test: Extension activation without CLI installed

• Verify friendly installation prompt appears
• Test "Install Now" → terminal opens → npm install runs
• Confirm reload prompt after installation
• Verify CLI is detected after reload

2. ACP Connection & Session Management

Test: Create and manage chat sessions

• Open chat panel (Command: "Qwen Code: Open Chat")
• Send first message → verify session created
• Check session appears in session selector
• Create new session → verify old messages cleared
• Switch back to previous session → verify messages restored

3. File Operations & Permissions

Test: File read/write with permission control

• Chat: "Read package.json"
  • Verify permission request appears (if interactive mode)
  • Test "Allow Once" → file contents displayed
• Chat: "Create a test.txt file with 'Hello Qwen'"
  • Verify permission request for file write
  • Test "Always Allow" → subsequent writes don't prompt
• Chat: "Edit package.json to add a comment"
  • Verify permission request for file edit
  • Test "Reject Once" → operation cancelled

4. Tool Call Visualization

Test: Real-time tool call status updates

• Execute any operation (e.g., file read)
• Verify tool call card appears with:
  • Status badge: pending → in_progress → completed
  • Appropriate icon for operation type
  • Input parameters visible
  • Collapsible sections work
• For edit operations, verify side-by-side diff displays

5. Permission Approval Modes

Test: Cycle through approval modes

• Click approval mode button in header
• Verify modes cycle: Interactive → Always Allow → Always Deny → Interactive
• In "Always Allow" mode: verify no permission prompts
• In "Always Deny" mode: verify operations blocked
• In "Interactive" mode: verify prompts appear

6. Authentication & Caching

Test: Auth token persistence

• First login: complete OAuth or API key flow
• Restart VSCode
• Verify no re-authentication needed
• Command: "Qwen Code: Clear Auth Cache"
• Verify next operation prompts for auth

7. Markdown Rendering & Code Blocks

Test: Rich text and code display

• Chat: "Show me a Python hello world example"
• Verify markdown renders correctly
• Verify code blocks have syntax highlighting
• Test inline code formatting

8. Error Handling & Recovery

Test: Graceful error handling

• Chat: "Read nonexistent-file.txt"
  • Verify error displayed in tool call card
• Disconnect CLI (kill process)
  • Verify reconnection attempt
  • Verify clear error message if reconnection fails
• Invalid authentication
  • Verify cache cleared
  • Verify re-authentication prompt

9. UI Responsiveness & Theming

Test: Visual adaptation

• Resize chat panel (narrow → wide)
  • Verify components adapt responsively
  • Verify no horizontal scrolling
• Toggle VSCode theme (dark ↔ light)
  • Verify colors adapt correctly
  • Verify all UI elements readable

10. Session History & Rehydration

Test: Load historical conversations

• Create session with multiple messages
• Close VSCode
• Reopen VSCode
• Open session selector
• Load previous session
• Verify all messages restored correctly

Testing Matrix

Extension Development & Debugging

	🍏 macOS	🪟 Windows	🐧 Linux
F5 Debug	✅	❓	❓
Manual	✅	❓	❓

Testing Coverage:

• ✅ macOS: Full development workflow tested (F5 debug from root and extension dir)
• ✅ macOS: Manual feature testing (CLI detection, file operations, permissions, tool calls)
• ❓ Windows: Pending cross-platform validation
• ❓ Linux: Pending cross-platform validation

Note: This PR focuses on the VSCode extension package. The extension runs within VSCode's extension host, so traditional runtime testing (npm run, Docker, etc.) applies only to the CLI tool, not the extension itself.

Feature Checklist

✅ Completed Features

Core Infrastructure:

• Complete ACP (Agent Communication Protocol) implementation with JSON-RPC 2.0
• CLI management system (detection, installation, version checking, path detection)
• Authentication state management with secure token caching
• Session management (create, list, load, save, delete, rehydration)
• File operations (read/write with pagination and permission control)

UI/UX Components (70+ components):

• React-based WebView with modern chat interface
• Permission drawer with interactive approval modes
• 10+ specialized tool call components (Edit, Read, Write, Search, Execute, etc.)
• Markdown renderer with syntax highlighting
• Message timeline with real-time updates
• Session selector with date grouping
• Input form with command auto-completion
• Comprehensive icon system (40+ SVG icons)
• Responsive design with dark/light theme support

Developer Experience:

• esbuild + TypeScript + React build pipeline
• Tailwind CSS integration with PostCSS
• Hot reload and watch mode
• Two debug configurations (root / extension dir)
• Comprehensive README and documentation
• ESLint and TypeScript strict mode

Testing & Quality:

• Unit tests for CLI modules
• Manual testing on macOS (full feature coverage)
• Type safety with comprehensive TypeScript types
• Error handling and logging throughout

🚧 Pending Work

Testing:

• Automated tests for UI components (React Testing Library)
• Integration tests for ACP message flows
• E2E tests for user workflows
• Cross-platform testing (Windows, Linux)

Future Enhancements:

• Message virtualization for long conversations (performance)
• Advanced search and filtering in session list
• Accessibility improvements (ARIA labels, keyboard navigation)
• Workspace-specific settings and multi-workspace support
• Extension marketplace publication preparation

Review Focus Areas

For Reviewers

Architecture & Design:

1. Separation of Concerns: Well-structured with dedicated modules for ACP, CLI, Session, Auth, UI
2. Scalability: Modular architecture supports easy addition of new features
3. Maintainability: Clear file organization, consistent naming conventions
4. Extension Points: Hook-based architecture for easy customization

Code Quality:

1. Type Safety: Comprehensive TypeScript types for all components (99%+ coverage)
2. Error Handling: Try-catch blocks, error boundaries, user-friendly error messages
3. Logging: Console logging for debugging, structured log messages
4. Code Comments: JSDoc for public APIs, inline comments for complex logic

Testing:

1. Unit Tests: Added for CLI detection and version management modules
2. Integration Tests: Manual testing performed on macOS
3. Coverage Gaps: UI components need automated tests (planned for future PR)

Performance:

1. Caching: CLI detection, authentication tokens, session list
2. Lazy Loading: React component lazy loading where appropriate
3. Debouncing: Input debouncing for auto-completion
4. Memory Management: Cleanup on component unmount, process cleanup on disconnect

Security:

1. CSP: Content Security Policy for WebView
2. Auth Storage: Secure storage using VSCode global state API
3. Path Validation: File operations validate and normalize paths
4. Command Approval: User must approve shell commands before execution

User Experience:

1. Visual Feedback: Loading states, status indicators, progress bars
2. Error Recovery: Clear error messages, retry options, graceful degradation
3. Accessibility: Keyboard navigation, ARIA labels (partial implementation)
4. Responsive Design: Works across different panel sizes

Review Checklist

• Architecture: Review separation of concerns and module boundaries
• ACP Protocol: Verify JSON-RPC implementation correctness
• CLI Integration: Test CLI detection and installation flow
• Session Management: Test session creation, loading, switching
• Permission System: Test permission requests and approval modes
• Tool Call Display: Verify tool call rendering and diff visualization
• Authentication: Test auth flow and token caching
• UI/UX: Review visual design and interaction patterns
• Error Handling: Test error scenarios and recovery
• Performance: Check for memory leaks and bottlenecks
• Security: Review CSP, auth storage, path validation
• Documentation: Review README and inline documentation
• Build System: Verify build configuration and watch mode
• Cross-Platform: Test on Windows and Linux (if possible)

Commit Summary

This PR includes 160+ commits across multiple feature branches, consolidated into the following major areas:

Core Implementation:

• ✅ Complete ACP protocol implementation (JSON-RPC client, message handling)
• ✅ CLI management system (detection, installation, version checking, path detection)
• ✅ Session management (create, list, load, save, delete, rehydration)
• ✅ Authentication state management with secure caching
• ✅ File read/write operations with permission control

UI/UX Components:

• ✅ React-based WebView with 70+ components
• ✅ Permission drawer with interactive approval modes
• ✅ Specialized tool call components (Edit, Read, Write, Search, Execute, Bash, Think)
• ✅ Markdown renderer with syntax highlighting
• ✅ Message timeline with infinite scroll
• ✅ Session selector with date grouping
• ✅ Input form with auto-completion
• ✅ Comprehensive icon system

Developer Experience:

• ✅ Build system with esbuild, Tailwind CSS, PostCSS
• ✅ Hot reload in development mode
• ✅ Two debug configurations (from root / from extension dir)
• ✅ ESLint and TypeScript configuration
• ✅ Comprehensive README with setup instructions

Infrastructure:

• ✅ Type definitions for all ACP messages and responses
• ✅ Custom React hooks for state management
• ✅ Utility functions (diff, time, session grouping)
• ✅ Windows encoding fix for shell output
• ✅ Copyright header updates (Qwen Team, Apache 2.0)

---

Summary

This PR delivers a production-ready VSCode extension for Qwen Code, transforming the CLI tool into a full-featured IDE integration. The implementation includes:

🎯 Core Achievements:

• Complete ACP Integration: Full protocol implementation with JSON-RPC messaging
• Rich UI: 70+ React components providing modern, responsive interface
• Seamless CLI Integration: Automatic detection, installation, and version management
• Session Management: Full lifecycle support with history and rehydration
• Permission System: Interactive approval with always-allow/always-deny modes
• Tool Visualization: Specialized components for each tool type with real-time status

[github-actions]

📋 Review Summary

This PR introduces comprehensive file read/write capabilities to the Qwen Code VSCode extension with significantly improved UI/UX. The changes include new ACP protocol handlers for file operations, CLI detection and auto-installation, authentication state management, and enhanced UI components for permission requests and tool call visualization.

🔍 General Feedback

• The implementation shows good separation of concerns with dedicated classes for different responsibilities (AuthStateManager, CliDetector, QwenAgentManager)
• The React-based webview UI with permission requests and tool call components provides a much better user experience
• Good use of TypeScript interfaces and type safety throughout the new components
• The addition of CLI detection and auto-installation improves the user onboarding experience
• Authentication caching helps reduce repeated authentication prompts
• Comprehensive error handling and logging in the new components

🎯 Specific Feedback

🔴 Critical

No critical issues identified in this review.

🟡 High

1. File: packages/vscode-ide-companion/src/acp/AcpConnection.ts:245 - In the handleReadTextFile method, the error handling for file reading could be more specific. Consider catching specific error types (e.g., file not found, permission denied) and providing more detailed error messages to the user.

2. File: packages/vscode-ide-companion/src/acp/AcpConnection.ts:307 - In the handleWriteTextFile method, there's a potential security concern with automatic directory creation. While convenient, automatically creating directories could be used maliciously. Consider adding validation or user confirmation for directory creation.

3. File: packages/vscode-ide-companion/src/auth/AuthStateManager.ts:65 - The authentication cache duration is hardcoded to 24 hours. Consider making this configurable or using a more dynamic approach based on the authentication method.

🟢 Medium

1. File: packages/vscode-ide-companion/src/utils/CliDetector.ts:52 - The CLI installation command uses npm install -g which requires elevated permissions. Consider providing alternative installation methods for users who cannot use global installations.

2. File: packages/vscode-ide-companion/src/agents/QwenAgentManager.ts:120 - The retry logic for CLI detection could be improved with exponential backoff to avoid overwhelming the system with repeated attempts.

3. File: packages/vscode-ide-companion/src/webview/components/ToolCall.tsx:105 - The diff view component could benefit from syntax highlighting for code content to improve readability.

4. File: packages/vscode-ide-companion/src/WebViewProvider.ts:150 - There's some code duplication in the permission request handling. Consider refactoring to reduce duplication.

🔵 Low

1. File: packages/vscode-ide-companion/src/acp/AcpConnection.ts:190 - Consider adding JSDoc comments to the new ACP handler methods for better documentation.

2. File: packages/vscode-ide-companion/src/webview/App.css - The CSS file is quite large. Consider splitting it into smaller, more modular files for better maintainability.

3. File: packages/vscode-ide-companion/src/webview/components/PermissionRequest.tsx:45 - The icon mapping could be extracted to a constants file for easier maintenance.

4. File: packages/vscode-ide-companion/package.json - Consider adding a command to clear the authentication cache directly from the command palette for better user accessibility.

✅ Highlights

• Excellent implementation of file read/write capabilities with proper error handling
• Well-designed permission request UI that provides clear information to users
• Comprehensive tool call visualization with status tracking and diff views
• Smart CLI detection and auto-installation flow that improves user experience
• Good authentication state management with caching to reduce repeated prompts
• Clean React component structure with proper TypeScript typing
• Thoughtful session management improvements with historical session loading

[tanzhenxin]

This change has no impact on end users, as long as its scope is limited to the vscode-ide-companion package—and we don’t plan to publish new release to the VS Code Marketplace.

Therefore, it’s safe to merge all such commits for now. The implementation is still a bit rough, we can refine the details once the MVP version is ready. @pomelo-nwu

[yiliang114]

There seems to be such logic in the core directory, won't it be checked by github?

[pomelo-nwu]

@yiliang114 Awesome work — this feature is super exciting! I've tested it thoroughly and everything works perfectly. This is going to be a huge help for so many IDE users. Thanks a ton for your contribution!