fix: Skip open() for some linux envs

Author: jahooma

cli/src/chat.tsx

@@ -1,6 +1,6 @@
 import { AnalyticsEvent } from '@codebuff/common/constants/analytics-events'
 import type { FeedbackCategory } from '@codebuff/common/constants/feedback'
-import open from 'open'
+import { safeOpen } from './utils/open-url'
 import {
   useCallback,
   useEffect,
@@ -1158,7 +1158,7 @@ export const Chat = ({
           return
         }
         // Otherwise open the buy credits page
-        open(WEBSITE_URL + '/usage')
+        safeOpen(WEBSITE_URL + '/usage')
       },
     }),
     [

cli/src/commands/command-registry.ts

@@ -1,6 +1,6 @@
 import { CHATGPT_OAUTH_ENABLED } from '@codebuff/common/constants/chatgpt-oauth'
 import { CLAUDE_OAUTH_ENABLED } from '@codebuff/common/constants/claude-oauth'
-import open from 'open'
+import { safeOpen } from '../utils/open-url'
 
 import { handleAdsEnable, handleAdsDisable } from './ads'
 import { buildInterviewPrompt, buildPlanPrompt, buildReviewPromptFromArgs } from './prompt-builders'
@@ -407,7 +407,7 @@ const ALL_COMMANDS: CommandDefinition[] = [
     name: 'subscribe',
     aliases: ['strong', 'sub', 'buy-credits'],
     handler: (params) => {
-      open(WEBSITE_URL + '/subscribe')
+      safeOpen(WEBSITE_URL + '/subscribe')
       clearInput(params)
     },
   }),

cli/src/components/ad-banner.tsx

@@ -1,13 +1,12 @@
 import { TextAttributes } from '@opentui/core'
-import open from 'open'
+import { safeOpen } from '../utils/open-url'
 import React, { useState } from 'react'
 
 import { Button } from './button'
 import { Clickable } from './clickable'
 import { useTerminalDimensions } from '../hooks/use-terminal-dimensions'
 import { useTheme } from '../hooks/use-theme'
 import { IS_FREEBUFF } from '../utils/constants'
-import { logger } from '../utils/logger'
 
 import type { AdResponse } from '../hooks/use-gravity-ad'
 
@@ -49,9 +48,7 @@ export const AdBanner: React.FC<AdBannerProps> = ({ ad, onDisableAds, isFreeMode
   const handleAdMouseOut = () => setIsLinkHovered(false)
   const handleAdClick = () => {
     if (ad.clickUrl) {
-      open(ad.clickUrl).catch((err) => {
-        logger.error(err, 'Failed to open ad link')
-      })
+      safeOpen(ad.clickUrl)
     }
   }
 

cli/src/components/subscription-limit-banner.tsx

@@ -1,6 +1,6 @@
 import { SUBSCRIPTION_TIERS } from '@codebuff/common/constants/subscription-plans'
 import { IS_FREEBUFF } from '../utils/constants'
-import open from 'open'
+import { safeOpen } from '../utils/open-url'
 import React from 'react'
 
 import { Button } from './button'
@@ -61,11 +61,11 @@ export const SubscriptionLimitBanner = () => {
   }
 
   const handleBuyCredits = () => {
-    open(WEBSITE_URL + '/usage')
+    safeOpen(WEBSITE_URL + '/usage')
   }
 
   const handleUpgrade = () => {
-    open(WEBSITE_URL + '/subscribe')
+    safeOpen(WEBSITE_URL + '/subscribe')
   }
 
   const borderColor = isWeeklyLimit ? theme.error : theme.warning

cli/src/components/usage-banner.tsx

@@ -3,7 +3,7 @@ import { CLAUDE_OAUTH_ENABLED } from '@codebuff/common/constants/claude-oauth'
 import { IS_FREEBUFF } from '../utils/constants'
 import { isChatGptOAuthValid, isClaudeOAuthValid } from '@codebuff/sdk'
 import { TextAttributes } from '@opentui/core'
-import open from 'open'
+import { safeOpen } from '../utils/open-url'
 import React, { useEffect, useMemo } from 'react'
 
 import { BottomBanner } from './bottom-banner'
@@ -135,7 +135,7 @@ export const UsageBanner = ({ showTime }: { showTime: number }) => {
         {/* Codebuff credits section - structured layout */}
         <Button
           onClick={() => {
-            open(WEBSITE_URL + '/usage')
+            safeOpen(WEBSITE_URL + '/usage')
           }}
         >
           <box style={{ flexDirection: 'column', gap: 0 }}>

cli/src/hooks/use-fetch-login-url.ts

@@ -1,5 +1,5 @@
 import { useMutation } from '@tanstack/react-query'
-import open from 'open'
+import { safeOpen } from '../utils/open-url'
 
 import { WEBSITE_URL } from '../login/constants'
 import { generateLoginUrl } from '../login/login-flow'
@@ -45,12 +45,7 @@ export function useFetchLoginUrl({
       setHasOpenedBrowser(true)
 
       // Open browser after fetching URL
-      try {
-        await open(data.loginUrl)
-      } catch (err) {
-        logger.error(err, 'Failed to open browser')
-        // Don't show error, user can still click the URL
-      }
+      await safeOpen(data.loginUrl)
     },
     onError: (err) => {
       setError(err instanceof Error ? err.message : 'Failed to get login URL')

cli/src/utils/chatgpt-oauth.ts

@@ -19,7 +19,7 @@ import {
   resetChatGptOAuthRateLimit,
   saveChatGptOAuthCredentials,
 } from '@codebuff/sdk'
-import open from 'open'
+import { safeOpen } from './open-url'
 
 import type { ChatGptOAuthCredentials } from '@codebuff/sdk'
 
@@ -218,12 +218,7 @@ export function connectChatGptOAuth(): {
   const { codeVerifier, authUrl } = startChatGptOAuthFlow()
   const credentials = startCallbackServer(codeVerifier)
 
-  open(authUrl).catch(() => {
-    console.debug(
-      'Failed to open browser for ChatGPT OAuth. Manual URL:',
-      authUrl,
-    )
-  })
+  void safeOpen(authUrl)
 
   return { authUrl, credentials }
 }

cli/src/utils/claude-oauth.ts

@@ -12,7 +12,7 @@ import {
   isClaudeOAuthValid,
   resetClaudeOAuthRateLimit,
 } from '@codebuff/sdk'
-import open from 'open'
+import { safeOpen } from './open-url'
 
 import type { ClaudeOAuthCredentials } from '@codebuff/sdk'
 
@@ -78,7 +78,7 @@ export function startOAuthFlow(): { codeVerifier: string; authUrl: string } {
  */
 export async function openOAuthInBrowser(): Promise<string> {
   const { authUrl, codeVerifier } = startOAuthFlow()
-  await open(authUrl)
+  await safeOpen(authUrl)
   return codeVerifier
 }
 

cli/src/utils/open-url.ts

@@ -0,0 +1,37 @@
+import os from 'os'
+
+import open from 'open'
+
+import { logger } from './logger'
+
+/**
+ * Safely open a URL in the user's default browser.
+ *
+ * On headless Linux (no DISPLAY or WAYLAND_DISPLAY), calling `open()` spawns
+ * `xdg-open` which can crash the entire process — even inside a try/catch —
+ * because the child process may trigger fatal signals. This wrapper detects
+ * headless environments and skips the call entirely.
+ *
+ * @returns `true` if the browser was (likely) opened, `false` if skipped.
+ */
+export async function safeOpen(url: string): Promise<boolean> {
+  if (os.platform() === 'linux') {
+    const hasDisplay = Boolean(
+      process.env.DISPLAY || process.env.WAYLAND_DISPLAY,
+    )
+    if (!hasDisplay) {
+      logger.warn(
+        'No display server detected (DISPLAY / WAYLAND_DISPLAY unset). Skipping browser open.',
+      )
+      return false
+    }
+  }
+
+  try {
+    await open(url)
+    return true
+  } catch (err) {
+    logger.error(err, 'Failed to open browser')
+    return false
+  }
+}