feat: wizard tool selection for runtimes and AI tools

[muneebs]

Summary

• Add multi-select wizard steps for dev runtimes (Node.js, Bun, Docker) and AI tools (claude-code, gemini, codex, opencode, ollama).
• Flow selections through WizardResult → api.ProvisionOptions and config.ToolsConfig; Lima provider provisions via new aitools.go / provision.go pipeline.
• Refactor snapshot logic in internal/vm/lima/snapshot.go with expanded test coverage; tune CWD-basename default naming in the wizard.

Principles check

• SRP / OCP: AI tool registry (internal/vm/lima/aitools.go) is table-driven — new tools register without editing the switch. Wizard only knows keys via wizard/mappings.go.
• DIP: CLI/wizard depend on api.ProvisionOptions; Lima provider implements. No direct Lima import from wizard.
• DRY: Single source of truth for AI tool keys (mappings.go constants) shared by wizard, API, and provisioner; AIToolRequiresNpm centralizes the Node implication.
• Usability: Safe defaults preserved (nothing auto-selected); summary screen shows runtimes + AI tools before confirm.
• Tests: go vet ./... clean, go test ./... 380 pass. New coverage in wizard/mappings_test.go, wizard/questions_test.go, internal/vm/lima/snapshot_test.go, internal/config/config_test.go.

AI transparency

AI-generated with human review. Used Claude Code to draft wizard steps, provisioner pipeline, and expanded snapshot tests; every line reviewed and tested by author before commit.

Test plan

• `go test ./...` passes
• `airlock init` walks runtime + AI tool steps; summary matches selections
• Created sandbox has selected runtimes/tools installed (manual verify on macOS + Lima)
• Saved `airlock.toml` contains `[tools]` block with picks

🤖 Generated with Claude Code

Summary by CodeRabbit

Release Notes

• New Features

  • Interactive selection for development runtimes (Node.js, Bun, Docker) during sandbox setup
  • Optional AI tools installation (Claude Code, Gemini, Codex, OpenCode, Ollama) from the wizard
  • Selected runtimes and AI tools persist to config for future use

• Bug Fixes

  • Improved error/log message formatting for clearer CLI output

• Chores

  • Provisioning now honors chosen runtimes and tools during VM setup
  • Snapshot storage moved to a dedicated snapshots location

• Documentation

  • Added README docs for the interactive wizard and new tools config section

[coderabbitai]

Warning

Rate limit exceeded

@muneebs has exceeded the limit for the number of commits that can be reviewed per hour. Please wait 36 minutes and 41 seconds before requesting another review.

Your organization is not enrolled in usage-based pricing. Contact your admin to enable usage-based pricing to continue reviews beyond the rate limit, or try again in 36 minutes and 41 seconds.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 30e8680b-ec51-4488-89aa-969a61dbae05

📥 Commits

Reviewing files that changed from the base of the PR and between 06143a0 and f6b08cb.

📒 Files selected for processing (2)

• cmd/airlock/cli/wizard/mappings.go
• internal/config/config.go

Walkthrough

Adds optional runtime (Node, Bun, Docker) and AI-tool selection to the CLI/wizard, extends config with a tools section, changes the provisioner API to accept ProvisionOptions, implements AI-tool installer registry and Lima-based provision-step generation, and moves snapshot storage to an external snapshot directory with legacy fallback.

Changes

Cohort / File(s)	Summary
CLI flags & wiring cmd/airlock/cli/cli.go	Adds --node, --bun, --docker, repeatable --ai-tool flags; build api.ProvisionOptions (flags take precedence over config) and pass it to provisioner calls.
Wizard: mappings & questions cmd/airlock/cli/wizard/mappings.go, cmd/airlock/cli/wizard/questions.go, cmd/airlock/cli/wizard/*.go	Defines runtime/AITool constants and AIToolInfo; extends WizardResult with InstallNode, InstallBun, InstallDocker, AITools; adds wizard multi-selects for runtimes and AI tools, forces Node when npm-based tools chosen, updates name derivation and confirmation summary.
TUI error cleaning cmd/airlock/cli/tui/styles.go	Refactors CleanError with helpers (cleanErrorLine, indexLogField, extractLogMessage) to better normalize multi-line and quoted log msg fields.
Provisioning API internal/api/vm.go	Replaces nodeVersion int parameters with exported ProvisionOptions (NodeVersion, InstallNode, InstallBun, InstallDocker, AITools) on Provisioner methods.
Lima provider: provision & aitools internal/vm/lima/provision.go, internal/vm/lima/aitools.go	New ProvisionSteps and ProvisionVM generate baseline and optional steps (Node/pnpm/npm prefix, Bun, Docker, AI tools); introduces ai-tool installer registry and installers for listed tools; optional/AI-tool install failures are non-fatal (logged).
Lima provider: snapshots & provider ctor internal/vm/lima/provider.go, internal/vm/lima/snapshot.go	Adds snapshotDir to LimaProvider and NewLimaProviderWithPaths(..., snapshotDir); SnapshotClean writes to temp sibling and atomically swaps into snapshotDir; RestoreClean/HasCleanSnapshot support legacy in-limaDir fallback; provisioning logic moved out of snapshot.go.
Config: tools internal/config/config.go, internal/config/save.go	Adds ToolsConfig (Node/Bun/Docker booleans and AITools []string) and Config.Tools; Defaults() initializes tool booleans to false and AITools nil; mergeWithDefaults merges Tools sensibly; TOML section comment added.
Tests & integration updates cmd/airlock/cli/wizard/mappings_test.go, cmd/airlock/cli/wizard/questions_test.go, internal/config/config_test.go, internal/vm/lima/*_test.go, test/integration/*	Adds tests for AITools list, wizard conversions, TOML round-trip for tools, provisioning-step generation and legacy snapshot fallback; updates many tests and harnesses to pass new snapshotDir arg and to assert new behavior.

Sequence Diagram(s)

sequenceDiagram
    participant User
    participant CLI
    participant Config
    participant LimaProvider
    participant VM

    User->>CLI: Run wizard / provide flags (runtimes, AI tools)
    CLI->>CLI: Build api.ProvisionOptions (flags > config)
    CLI->>Config: Persist Config.Tools (optional)
    CLI->>LimaProvider: ProvisionVM(ctx, name, provisionOpts)
    LimaProvider->>LimaProvider: ProvisionSteps(name, provisionOpts)
    note right of LimaProvider: Build baseline steps + optional steps\n(Node/pnpm, Bun, Docker, AI tools)
    loop for each ProvisionStep
        LimaProvider->>VM: Execute step (pkg install, user setup, tool install)
        VM-->>LimaProvider: step success/failure
    end
    LimaProvider-->>CLI: Provisioning complete
    CLI-->>User: VM ready (with selected runtimes/tools)

Loading

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~60 minutes

Possibly related PRs

• feat: implement Lima VM provider (api.Provider) #2 — Overlaps Lima provider refactor and snapshot/provisioning changes (same provider files and tests updated).
• feat: init wizard + principles audit fixes (DIP, OCP) #7 — Related to CLI wizard/mapping changes and the ProvisionOptions API evolution used by the wizard.
• feat: add integration tests with fake limactl #5 — Related to integration harness and tests that now pass the additional snapshotDir parameter to the Lima provider.

Poem

🐰 Hopping through prompts, I pick and I choose,

Node, Bun, Docker — a basket of tools to use.
AI helpers lined up, npm dancing in tow,
Snapshots kept safe where the clean breezes blow,
Provisioned and ready — the sandbox will grow!

🚥 Pre-merge checks | ✅ 2 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 27.91% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title clearly and concisely describes the primary change: adding wizard multi-select steps for choosing development runtimes and AI tools.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch feat/wizard-tool-selection

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 6

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

internal/vm/lima/snapshot_test.go (1)

24-92: ⚠️ Potential issue | 🟡 Minor

Replace nil context with context.Background() (or t.Context() on Go 1.24+).

golangci-lint/staticcheck SA1012 is flagging the nil contexts passed to SnapshotClean/RestoreClean at lines 24, 70, and 92 (and similar nil calls exist in the non-diffed tests below). Even though these implementations don't currently read from ctx, passing nil is the kind of thing that blows up the first time anyone adds a ctx.Done() check. Cheap to fix and silences the linter.

🛠️ Proposed fix

-	if err := p.SnapshotClean(nil, "test-vm"); err != nil {
+	if err := p.SnapshotClean(context.Background(), "test-vm"); err != nil {
 		t.Fatalf("SnapshotClean() error: %v", err)
 	}

Apply the same pattern to the other nil-context sites in this file. (context is already imported.)

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@internal/vm/lima/snapshot_test.go` around lines 24 - 92, Replace nil contexts
passed to SnapshotClean and RestoreClean with a real context (use
context.Background() or t.Context() if on Go 1.24+) so the calls like
p.SnapshotClean(nil, "test-vm") and p.RestoreClean(nil, "test-vm") become
non-nil; update all occurrences in this test file (including other nil uses
around TestSnapshotClean_RemovesLegacy and TestRestoreClean) to pass a proper
context to the methods to satisfy staticcheck SA1012.

🧹 Nitpick comments (2)

cmd/airlock/cli/wizard/questions.go (1)

427-435: Optional: replace containsString with slices.Contains.

slices.Contains (stdlib slices, Go 1.21+) does exactly this. One-liner call site, no helper to maintain.

♻️ Proposed diff

-// containsString reports whether slice contains target.
-func containsString(slice []string, target string) bool {
-	for _, s := range slice {
-		if s == target {
-			return true
-		}
-	}
-	return false
-}

At the call sites:

-	result.InstallNode = containsString(runtimes, RuntimeNode)
-	result.InstallBun = containsString(runtimes, RuntimeBun)
-	result.InstallDocker = containsString(runtimes, RuntimeDocker)
+	result.InstallNode = slices.Contains(runtimes, RuntimeNode)
+	result.InstallBun = slices.Contains(runtimes, RuntimeBun)
+	result.InstallDocker = slices.Contains(runtimes, RuntimeDocker)

Add "slices" to the import block.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@cmd/airlock/cli/wizard/questions.go` around lines 427 - 435, The helper
function containsString can be removed and replaced with the standard library
slices.Contains; update all call sites that call containsString(...) to call
slices.Contains(...) instead and add "slices" to the import block of the
package, then delete the containsString function declaration to avoid
duplication. Ensure the semantics remain the same (slice []string, target
string) when swapping calls and run tests/build to confirm imports are correct.

cmd/airlock/cli/wizard/mappings.go (1)

212-221: Consider keeping npm-requirement metadata alongside AITools() to avoid drift.

AIToolRequiresNpm hard-codes the npm-based tool keys in a separate switch, while AITools() on lines 225–233 is already the declared single source of truth for tool options. If a new npm-based tool is added to AITools() (or one of the existing keys stops requiring npm), the switch here must also be updated, and — per the comment — must additionally stay in sync with the provisioner registry in internal/vm/lima. That's three places to keep aligned.

A small refactor to carry a RequiresNpm bool on AIToolInfo would collapse the wizard-side duplication to one table, leaving only the cross-package sync with the Lima registry:

♻️ Proposed refactor

 type AIToolInfo struct {
 	Key        string
 	Label      string // shown in multi-select
 	ShortLabel string // shown in summary
+	RequiresNpm bool
 }

-func AIToolRequiresNpm(key string) bool {
-	switch key {
-	case AIToolClaudeCode, AIToolGemini, AIToolCodex:
-		return true
-	}
-	return false
-}
+func AIToolRequiresNpm(key string) bool {
+	for _, t := range AITools() {
+		if t.Key == key {
+			return t.RequiresNpm
+		}
+	}
+	return false
+}
@@
-		{Key: AIToolClaudeCode, Label: "Claude Code (Anthropic)", ShortLabel: "Claude Code"},
-		{Key: AIToolGemini, Label: "Gemini CLI (Google)", ShortLabel: "Gemini CLI"},
-		{Key: AIToolCodex, Label: "Codex CLI (OpenAI)", ShortLabel: "Codex CLI"},
-		{Key: AIToolOpenCode, Label: "OpenCode", ShortLabel: "OpenCode"},
-		{Key: AIToolOllama, Label: "Ollama (local LLM runtime)", ShortLabel: "Ollama"},
+		{Key: AIToolClaudeCode, Label: "Claude Code (Anthropic)", ShortLabel: "Claude Code", RequiresNpm: true},
+		{Key: AIToolGemini, Label: "Gemini CLI (Google)", ShortLabel: "Gemini CLI", RequiresNpm: true},
+		{Key: AIToolCodex, Label: "Codex CLI (OpenAI)", ShortLabel: "Codex CLI", RequiresNpm: true},
+		{Key: AIToolOpenCode, Label: "OpenCode", ShortLabel: "OpenCode"},
+		{Key: AIToolOllama, Label: "Ollama (local LLM runtime)", ShortLabel: "Ollama"},

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@cmd/airlock/cli/wizard/mappings.go` around lines 212 - 221, Refactor to keep
npm-requirement with the tool definitions: add a RequiresNpm bool to the
AIToolInfo struct and set it on each entry returned by AITools(), then replace
the hard-coded switch in AIToolRequiresNpm to look up the tool by key via
AITools() (or a small map derived from it) and return that tool's RequiresNpm
value; update any callers to use the new field lookup so the npm requirement is
maintained in one place (refer to AIToolInfo, AITools, and AIToolRequiresNpm).

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@cmd/airlock/cli/cli.go`:
- Around line 184-206: mergeWithDefaults currently skips merging the
Config.Tools fields so empty/partial [tools] in airlock.toml override defaults;
update mergeWithDefaults (and ensure Defaults() provides defaults) to copy
missing tool values from defaults into cfg: for boolean fields Node, Bun, Docker
set cfg.Tools.<Field> = defaults.Tools.<Field> when cfg.Tools.<Field> is
false/zero and for the slice AITools set cfg.Tools.AITools =
defaults.Tools.AITools when cfg.Tools.AITools is nil; this aligns
mergeWithDefaults with how VM/Dev/Security/Mounts are merged and fixes Load/CLI
precedence behavior.

In `@cmd/airlock/cli/tui/styles.go`:
- Around line 212-217: extractLogMessage currently uses strings.Index to find
"msg=" which can match inside quoted field values; implement a small key-aware
scanner (e.g., findKeyOutsideQuotes or indexKeyOutsideQuotes) that iterates the
line, tracks whether it's inside double quotes (taking escapes into account),
and returns the index of "msg=" only when found outside quoted regions, then
replace the raw strings.Index call in extractLogMessage with this helper so the
function extracts the actual msg= key's value.

In `@cmd/airlock/cli/wizard/mappings.go`:
- Around line 251-261: The ToProvisionOptions function currently copies
r.AITools verbatim into api.ProvisionOptions, so CLI-provided duplicates
(collected via StringSliceVar) flow through and get persisted by ToConfig into
cfg.Tools.AITools; fix by de-duplicating the AI tools when constructing the
ProvisionOptions (or alternatively immediately after flag collection) —
implement a deterministic dedupe that preserves first-seen order (e.g., iterate
r.AITools with a set to skip repeats) and use that unique slice in
ToProvisionOptions (and ensure ToConfig uses the same deduped list if you choose
CLI-side dedupe).

In `@internal/config/config.go`:
- Around line 63-70: The Defaults() implementation currently turns on Node, Bun,
and Docker causing Load() with no config to auto-provision tools; update
Defaults() so ToolsConfig defaults to all false/empty (Node=false, Bun=false,
Docker=false, AITools=nil or empty slice) to preserve opt-in behavior described
by ToolsConfig; locate the ToolsConfig type and the Defaults() function and
change the returned ToolsConfig values accordingly and ensure Load() relies on
Defaults() without mutating them to true.

In `@internal/vm/lima/aitools.go`:
- Around line 38-47: The npmInstallGlobal function uses fmt.Sprintf("%q", pkg)
which emits a double-quoted string and allows command substitution; replace that
with the repository's single-quote escaping helper (shellEscape from
provider.go) so the pkg is safely single-quoted for the bash -c invocation
(i.e., call shellEscape(pkg) when building the command passed to p.Exec under
npmInstallGlobal); after updating, remove the "fmt" import if it becomes unused.

In `@internal/vm/lima/provision.go`:
- Around line 100-132: The Run closures for optional installs (p.installBun,
p.installDocker and the install variable used for AI tools) currently swallow
errors and always return nil; change each closure to capture the returned error
(e.g., err := p.installBun(...)/err := p.installDocker(...)/err :=
install(...)), and if err != nil write a clear message to stderr (e.g., via
fmt.Fprintf(os.Stderr, ...) or the package logger) including the tool name and
error, then return nil so the overall provision continues; apply this pattern to
the Bun step, the Docker step, and inside the loop where install is used for
opts.AITools (optionally consider adding an Optional flag to api.ProvisionStep
later to surface warnings in the TUI).

---

Outside diff comments:
In `@internal/vm/lima/snapshot_test.go`:
- Around line 24-92: Replace nil contexts passed to SnapshotClean and
RestoreClean with a real context (use context.Background() or t.Context() if on
Go 1.24+) so the calls like p.SnapshotClean(nil, "test-vm") and
p.RestoreClean(nil, "test-vm") become non-nil; update all occurrences in this
test file (including other nil uses around TestSnapshotClean_RemovesLegacy and
TestRestoreClean) to pass a proper context to the methods to satisfy staticcheck
SA1012.

---

Nitpick comments:
In `@cmd/airlock/cli/wizard/mappings.go`:
- Around line 212-221: Refactor to keep npm-requirement with the tool
definitions: add a RequiresNpm bool to the AIToolInfo struct and set it on each
entry returned by AITools(), then replace the hard-coded switch in
AIToolRequiresNpm to look up the tool by key via AITools() (or a small map
derived from it) and return that tool's RequiresNpm value; update any callers to
use the new field lookup so the npm requirement is maintained in one place
(refer to AIToolInfo, AITools, and AIToolRequiresNpm).

In `@cmd/airlock/cli/wizard/questions.go`:
- Around line 427-435: The helper function containsString can be removed and
replaced with the standard library slices.Contains; update all call sites that
call containsString(...) to call slices.Contains(...) instead and add "slices"
to the import block of the package, then delete the containsString function
declaration to avoid duplication. Ensure the semantics remain the same (slice
[]string, target string) when swapping calls and run tests/build to confirm
imports are correct.

🪄 Autofix (Beta)

✅ Autofix completed

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: a79a25b8-5e78-49d7-bc33-62e9f340e1fa

📥 Commits

Reviewing files that changed from the base of the PR and between 0f49274 and 3e97146.

📒 Files selected for processing (18)

• cmd/airlock/cli/cli.go
• cmd/airlock/cli/tui/styles.go
• cmd/airlock/cli/wizard/mappings.go
• cmd/airlock/cli/wizard/mappings_test.go
• cmd/airlock/cli/wizard/questions.go
• cmd/airlock/cli/wizard/questions_test.go
• internal/api/vm.go
• internal/config/config.go
• internal/config/config_test.go
• internal/config/save.go
• internal/vm/lima/aitools.go
• internal/vm/lima/config_test.go
• internal/vm/lima/provider.go
• internal/vm/lima/provision.go
• internal/vm/lima/snapshot.go
• internal/vm/lima/snapshot_test.go
• test/integration/harness_test.go
• test/integration/snapshot_test.go

[muneebs]

Addressed CodeRabbit feedback in d27a29f:

Fixed

• internal/vm/lima/aitools.go — replaced %q with shellEscape for npm package names (bash double-quotes still expand $(...)).
• internal/vm/lima/provision.go — optional install failures now log to stderr instead of being silently swallowed.
• internal/vm/lima/provision.go — dedup opts.AITools in ProvisionSteps so CLI duplicates don't queue redundant steps.
• cmd/airlock/cli/tui/styles.go — extractLogMessage now uses a key-aware scanner (indexLogField) so msg= is only matched at a token boundary.

Declined / deferred

• Defaults() enables Node/Bun/Docker=true and mergeWithDefaults() should merge Tools: these two reports conflict. Flag defaults for airlock setup are historically true and line 196 falls back to cfg.Tools.Node when the flag is unchanged. If Defaults() goes to false, airlock setup with no airlock.toml would stop installing Node — a silent regression for existing users. A plain if !cfg.Tools.Node { cfg.Tools.Node = defaults.Tools.Node } merge would also prevent ever setting node = false in a config (bool zero-value ambiguity). The correct fix is either *bool on ToolsConfig or section-presence detection during load; both are larger than this PR's scope. Tracking for a follow-up.

[coderabbitai]

Note

Autofix is a beta feature. Expect some limitations and changes as we gather feedback and continue to improve it.

Fixes Applied Successfully

Fixed 2 file(s) based on 3 unresolved review comments.

Files modified:

• cmd/airlock/cli/wizard/mappings.go
• internal/config/config.go

Commit: 06143a0a4b5284e4d5d44d932fd7c10ee90b3ccc

The changes have been pushed to the feat/wizard-tool-selection branch.

Time taken: 2m 36s

[coderabbitai]

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

internal/config/config.go (1)

1-1: ⚠️ Potential issue | 🟡 Minor

Run gofmt -w . to fix formatting.

CI reports make fmt failing for this file — likely struct-tag alignment in Config after inserting the new Tools field on Line 24. Please run gofmt -w internal/config/config.go before merging.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@internal/config/config.go` at line 1, The Config struct’s formatting
(specifically the newly added Tools field) is misaligned causing gofmt to fail;
open the Config type (symbol: Config) and the Tools field declaration, run gofmt
-w on the file (or run make fmt) to normalize struct tag alignment and
formatting, then stage and commit the formatted file so CI's formatting check
passes.

🧹 Nitpick comments (1)

internal/config/config.go (1)

188-200: mergeWithDefaults for Tools is effectively a no-op.

Since Defaults() now returns Node/Bun/Docker=false and AITools=nil, each branch here copies zero/nil onto zero/nil. This matches the opt-in behavior the PR intends, and I see from the PR description that the proper fix (pointer-bools or detect-presence-on-load) is explicitly tracked as follow-up — flagging only so the dead-looking code isn't mistaken for working defaults preservation later.

No change requested in this PR.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@internal/config/config.go` around lines 188 - 200, The mergeWithDefaults
block for Tools (function mergeWithDefaults in internal/config/config.go) is
effectively a no-op because Defaults() now sets Node/Bun/Docker to false and
AITools to nil; to avoid confusion mark this as intentionally opt-in: add an
inline comment or TODO above the Tools merge stating that current behavior is
intentional, reference that Defaults() returns false/nil for Tools, and note the
planned follow-up to switch to pointer-bools or presence-detection so future
readers won’t assume this code is meant to populate defaults.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Outside diff comments:
In `@internal/config/config.go`:
- Line 1: The Config struct’s formatting (specifically the newly added Tools
field) is misaligned causing gofmt to fail; open the Config type (symbol:
Config) and the Tools field declaration, run gofmt -w on the file (or run make
fmt) to normalize struct tag alignment and formatting, then stage and commit the
formatted file so CI's formatting check passes.

---

Nitpick comments:
In `@internal/config/config.go`:
- Around line 188-200: The mergeWithDefaults block for Tools (function
mergeWithDefaults in internal/config/config.go) is effectively a no-op because
Defaults() now sets Node/Bun/Docker to false and AITools to nil; to avoid
confusion mark this as intentionally opt-in: add an inline comment or TODO above
the Tools merge stating that current behavior is intentional, reference that
Defaults() returns false/nil for Tools, and note the planned follow-up to switch
to pointer-bools or presence-detection so future readers won’t assume this code
is meant to populate defaults.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 209cba44-bfb5-4eb6-aa81-efa4ebbaec18

📥 Commits

Reviewing files that changed from the base of the PR and between 3e97146 and 06143a0.

📒 Files selected for processing (6)

• README.md
• cmd/airlock/cli/tui/styles.go
• cmd/airlock/cli/wizard/mappings.go
• internal/config/config.go
• internal/vm/lima/aitools.go
• internal/vm/lima/provision.go

🚧 Files skipped from review as they are similar to previous changes (2)

• cmd/airlock/cli/tui/styles.go
• cmd/airlock/cli/wizard/mappings.go