refactor: split oversized files for IDE/LLM ergonomics

[erraggy]

Summary

• Split parser/parser.go (1,622 → 3 files): core parsing, options, format detection
• Split joiner/joiner.go (1,236 → 2 files): core join logic, options
• Split generator/security_gen_shared.go (1,194 → 2 files): security helpers, server/client helpers
• Split integration/harness/pipeline.go (1,294 → 4 files): orchestrator+assertions, parse/validate, transform, generate/build
• Replace custom containsSubstring/findSubstring with strings.Contains

Details

Pure file moves within existing packages. No logic changes, no API changes.
All functions remain in the same package — the Go compiler resolves symbols across files at the package level, so this requires zero code changes beyond cutting/pasting and adjusting imports.

The one behavioral cleanup: replaced a hand-rolled substring search (containsSubstring/findSubstring) with strings.Contains in the integration harness.

Design: docs/plans/2026-02-16-code-simplification-design.md

File size results

File	Before	After
parser/parser.go	1,622	1,107 (+367 options +169 format)
joiner/joiner.go	1,236	669 (+574 options)
security_gen_shared.go	1,194	636 (+567 server helpers)
pipeline.go	1,294	492 (+112 +561 +162)

Test plan

• make check passes (8,236 tests, lint, formatting)
• All existing tests pass unchanged
• No production file over 1,000 lines in affected packages (except parser.go at 1,107 — cohesive core logic)
• Zero public API changes

🤖 Generated with Claude Code

[coderabbitai]

Warning

Rate limit exceeded

@erraggy has exceeded the limit for the number of commits that can be reviewed per hour. Please wait 2 minutes and 47 seconds before requesting another review.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

📝 Walkthrough

Walkthrough

Reorganizes and deduplicates core packages: introduces planning docs; splits parser, joiner, generator, and integration harness into smaller files; adds parser format utilities and options APIs; moves/centralizes server/client generation into a shared generator; and implements new integration pipeline helpers for parse/validate/transform/generate steps.

Changes

Cohort / File(s)	Summary
Planning & Design docs/plans/2026-02-16-code-simplification-design.md, docs/plans/2026-02-16-code-simplification-plan.md	Adds a two‑workstream refactor plan (file splitting + generator deduplication), success criteria, risk mitigation and PR strategy.
Parser: options & format parser/parser.go, parser/parser_options.go, parser/parser_format.go	Moves the parser functional-options API into parser_options.go (new ParseWithOptions and With* helpers) and restores format/URL utilities into parser_format.go (FormatBytes, detectFormat*, fetchURL, isURL); removes the old options block from parser.go.
Joiner: options split joiner/joiner.go, joiner/joiner_options.go	Extracts the joiner functional-options surface and overlay handling into joiner_options.go (Option type, JoinWithOptions, many With* helpers) and removes the prior options/overlay machinery from joiner.go, leaving core JoinParsed logic.
Generator: server/client shared logic generator/security_gen_shared.go, generator/server_gen_shared.go	Removes extensive server/client generation helpers from security_gen_shared.go and introduces server_gen_shared.go containing unified server/client generation helpers (router, stubs, base/split server, client scaffold) for use across generators.
Integration harness: pipeline split integration/harness/pipeline.go, integration/harness/pipeline_parse_validate.go, integration/harness/pipeline_transform.go, integration/harness/pipeline_generate.go, integration/harness/assertions.go	Splits the monolithic pipeline into focused modules: parse/validate helpers, transform (fix/join/convert/diff/overlay) helpers, generate/build helpers; updates assertion checks to use strings.Contains; removes many previously embedded helpers from main pipeline.go.

Sequence Diagram

sequenceDiagram
    participant Scenario
    participant Pipeline
    participant ParseValidate as Parse/Validate
    participant Transform
    participant Generate
    participant Parser
    participant Validator
    participant Fixer
    participant Joiner
    participant Converter
    participant Differ
    participant Generator
    participant Builder

    Scenario->>Pipeline: run scenario
    Pipeline->>ParseValidate: executeParse(step)
    ParseValidate->>Parser: Parse spec
    Parser-->>ParseValidate: ParseResult
    ParseValidate->>Pipeline: store ParseResult

    Pipeline->>ParseValidate: executeValidate(step)
    ParseValidate->>Validator: Validate ParseResult
    Validator-->>ParseValidate: ValidationResult
    ParseValidate->>Pipeline: store ValidationResult

    Pipeline->>Transform: executeFix(step)
    Transform->>Fixer: Apply fixes
    Fixer-->>Transform: Updated ParseResult
    Transform->>Pipeline: store ParseResult

    Pipeline->>Transform: executeJoin/convert/diff/overlay
    Transform->>Joiner: Join specs
    Joiner-->>Transform: JoinResult
    Transform->>Converter: Convert versions
    Converter-->>Transform: ConvertResult
    Transform->>Differ: Compute diff
    Differ-->>Transform: DiffResult
    Transform->>Pipeline: store results

    Pipeline->>Generate: executeGenerate(step)
    Generate->>Generator: Generate code
    Generator-->>Generate: GenerateResult + files
    Generate->>Pipeline: record output dir

    Pipeline->>Generate: executeBuild(step)
    Generate->>Builder: go build output
    Builder-->>Generate: build status
    Generate->>Pipeline: log result

Loading

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~60 minutes

Possibly related PRs

• fix: resolve corpus testing bugs in generator and converter #317: Touches the same server-generation helpers (resolveWrapperName, buildServerMethodSignature, router/stubs contexts) and may conflict with the relocated/removed functions.
• feat(mcp): add MCP server exposing all oastools capabilities #310: Relies on parser/generator options APIs (e.g., ParseWithOptions, GenerateWithOptions) introduced or restored by this change.
• chore: remove duplication, dead code, and over-abstraction #300: Contains overlapping refactors of shared utilities and generator/server helper reorganizations referenced by this plan.

🚥 Pre-merge checks | ✅ 4

✅ Passed checks (4 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title clearly summarizes the main change: splitting oversized files into smaller ones for ergonomics, which directly aligns with the changeset's primary purpose.
Description check	✅ Passed	The description is well-structured, detailing file splits, line count reductions, behavioral changes, test results, and design references—all clearly related to the changeset.
Docstring Coverage	✅ Passed	Docstring coverage is 96.51% which is sufficient. The required threshold is 80.00%.
Merge Conflict Detection	✅ Passed	✅ No merge conflicts detected when merging into main

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch chore/code-simplification

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[codecov]

Codecov Report

❌ Patch coverage is 88.03301% with 87 lines in your changes missing coverage. Please review.
✅ Project coverage is 84.72%. Comparing base (51bf851) to head (1c61c35).
⚠️ Report is 1 commits behind head on main.

Files with missing lines	Patch %	Lines
generator/server_gen_shared.go	84.31%	23 Missing and 17 partials ⚠️
joiner/joiner_options.go	89.01%	16 Missing and 13 partials ⚠️
parser/parser_format.go	85.71%	9 Missing and 3 partials ⚠️
parser/parser_options.go	95.16%	6 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main     #332      +/-   ##
==========================================
- Coverage   84.73%   84.72%   -0.01%     
==========================================
  Files         186      190       +4     
  Lines       27067    27070       +3     
==========================================
  Hits        22936    22936              
- Misses       2813     2815       +2     
- Partials     1318     1319       +1     

Files with missing lines	Coverage Δ
generator/security_gen_shared.go	81.26% <ø> (-1.37%)	⬇️
joiner/joiner.go	81.20% <ø> (-3.98%)	⬇️
parser/parser.go	78.68% <ø> (-3.91%)	⬇️
parser/parser_options.go	95.16% <95.16%> (ø)
parser/parser_format.go	85.71% <85.71%> (ø)
joiner/joiner_options.go	89.01% <89.01%> (ø)
generator/server_gen_shared.go	84.31% <84.31%> (ø)

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[coderabbitai]

Actionable comments posted: 4

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@integration/harness/pipeline_generate.go`:
- Around line 141-155: The executeBuild function is swallowing build failures
when step.Expect == "error" which conflicts with ExecuteStep's uniform
expectation handling; remove the internal expected-error logic from executeBuild
(both the early-return nil when step.Expect == "error" after a build error and
the later check that returns an error when a build succeeds but step.Expect ==
"error"), and instead always return the real error (or nil on success); you may
keep debug logging (e.g., t.Logf) but ensure executeBuild returns the actual err
so ExecuteStep can perform the expected-error validation.

In `@joiner/joiner_options.go`:
- Line 235: In joinWithOverlays update the inline step comments so numbering is
sequential—change the comment currently labeled "Step 5: Perform the join" to
"Step 4: Perform the join" and then renumber the following "Step 6" comment to
"Step 5" (or renumber all subsequent step comments to maintain a continuous
sequence) so the step labels in the function (joinWithOverlays) read 1, 2, 3, 4,
5 consistently.

In `@parser/parser_format.go`:
- Line 18: The parameter name in FormatBytes shadows the imported bytes package;
rename the parameter (e.g., from bytes to size or n) in the FormatBytes function
signature and update all usages inside the FormatBytes function body (any
arithmetic/returns referencing the parameter) to the new name so the function no
longer conflicts with the bytes package import.
- Around line 87-90: The TLS config in the http.Transport construction (the
transport variable/TLSClientConfig) leaves MinVersion unset, allowing legacy TLS
1.0/1.1 negotiation; update the TLS config for transport to set MinVersion to a
safe minimum (e.g., tls.VersionTLS12) alongside the existing InsecureSkipVerify
comment so static analyzers stop flagging CWE-327 and the code explicitly
prevents downgrades.

[coderabbitai]

Actionable comments posted: 5

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@integration/harness/pipeline_generate.go`:
- Around line 113-134: The os.Stat check for goModPath currently only handles
the "not exist" case and ignores other errors; change the logic in the block
around goModPath and os.Stat so that you: call os.Stat(goModPath), if err == nil
skip module init, if os.IsNotExist(err) perform the existing module init/tidy
(using modCmd and tidyCmd), and for any other non-nil err return it (wrap with
context like "stat go.mod" or similar) instead of proceeding; ensure you update
the handling around goModPath, os.Stat, modCmd and tidyCmd accordingly.
- Around line 108-111: The os.Stat call checking outputDir currently only
handles os.IsNotExist(err) and ignores other errors; update the check around
os.Stat(outputDir) to return a descriptive error when err != nil (e.g.,
fmt.Errorf("build: checking output directory %s failed: %w", outputDir, err))
and preserve the existing not-exist message for os.IsNotExist; reference
os.Stat, os.IsNotExist, outputDir and fmt.Errorf when making the change so
permission or IO errors are surfaced instead of being silently ignored.

In `@joiner/joiner_options.go`:
- Around line 472-477: The WithEquivalenceMode option should validate the
provided mode string immediately: in function WithEquivalenceMode check that
mode is one of the allowed values "none", "shallow", or "deep" before assigning
cfg.equivalenceMode; if it is invalid return a non-nil error (e.g.
fmt.Errorf("invalid equivalence mode %q: valid values are none, shallow, deep"))
and do not mutate cfg. Update the closure in WithEquivalenceMode to perform this
check and return the error to fail fast.

In `@parser/parser_format.go`:
- Around line 103-107: Replace http.NewRequest with http.NewRequestWithContext
to allow cancellation: either add a context.Context parameter to the surrounding
function and pass that context into http.NewRequestWithContext(ctx,
http.MethodGet, urlStr, nil), or if you cannot change the signature yet use
context.Background() as the context. Update the req creation (the req, err :=
... line) accordingly and import the context package so the noctx linter is
satisfied.
- Around line 130-134: Replace the unbounded io.ReadAll(resp.Body) with a
bounded read using io.LimitReader and a defined size constant (e.g.,
MaxResponseBodySize) to avoid memory exhaustion; create a package-level constant
MaxResponseBodySize (for example 10<<20 for 10MB), read via
io.ReadAll(io.LimitReader(resp.Body, MaxResponseBodySize+1)), and if the
returned byte length exceeds MaxResponseBodySize return an error (e.g.,
"response body too large") so callers (in the parser code that uses resp.Body
and the data variable) get a clear failure instead of OOM.

---

Duplicate comments:
In `@integration/harness/pipeline_generate.go`:
- Around line 136-150: executeBuild currently returns raw build errors (previous
internal handling for step.Expect == "error" was removed); restore uniform
expectation handling by ensuring executeBuild returns the build error unchanged
and do not perform expectation checks inside executeBuild itself—leave
expectation matching to ExecuteStep (refer to function executeBuild and caller
ExecuteStep and any Step.Expect usage) so that ExecuteStep can uniformly compare
the returned error against step.Expect.

In `@parser/parser_format.go`:
- Around line 86-101: The current change only sets TLS minimum version in the
InsecureSkipVerify branch; ensure both branches enforce TLS 1.2+ by adding a
tls.Config with MinVersion: tls.VersionTLS12 to the secure client path as well
(i.e., when constructing http.Client in the else branch), and keep the explicit
InsecureSkipVerify setting only in the p.InsecureSkipVerify branch; update the
http.Transport/tls.Config used by http.Client so both branches reference an
explicit MinVersion via tls.VersionTLS12.