feat(mail): support large email attachments

[chanthuang]

Summary

Adds support for sending emails with attachments that exceed the 25MB EML size limit — up to 3GB per file. Oversized attachments are automatically uploaded to mail attachment storage and rendered as a download-card in the email body, matching the desktop client's behavior.

What's new

Large attachments, automatically handled

• Pass any file path with --attach in mail +send / +draft-create / +reply / +reply-all / +forward. When the accumulated attachments would push the email past 25MB, the overflow files are uploaded as large attachments instead of embedded — no extra flag needed.
• Each large attachment is represented as a download-card in the email body (with filename, size, and a download link). External recipients without the Lark/Feishu client can still download via the link.
• Single-file cap: 3GB.

Large attachment management in draft-edit

• mail +draft-edit now treats large attachments as first-class siblings of normal attachments, with a consistent mental model:
  • Add: { op: "add_attachment", path: "..." } — automatically routes to large-attachment upload when the file would overflow 25MB.
  • Remove: { op: "remove_attachment", target: { token: "..." } } — by file token, same op used for normal attachments (which use part_id / cid).
  • Inspect: --inspect returns a new large_attachments_summary listing each large attachment's token, filename, and size.
• Body-edit ops (set_body / set_reply_body) automatically preserve signature block and attachment cards (normal + large), mirroring how normal attachment MIME parts survive body edits. Users delete signatures/attachments via the dedicated ops (remove_signature, remove_attachment), not by clearing the body.

Reply/reply-all: strip large attachment card from quote

• When replying or replying-all to a message that contains large attachment download cards, the card HTML is now stripped from the quoted block. Replies should not carry forward the original sender's large attachment references.

Forward: skip invalid/deleted attachments automatically and print warning info

• Forwarding a message with deleted or expired attachments (both normal and large) no longer blocks the operation. Invalid attachments are automatically removed — including their HTML download-card and header token for large attachments — and a warning is emitted listing the skipped files. Valid attachments proceed normally.
• RemoveLargeFileItemFromHTML now matches server-generated cards (which use href?token=) in addition to CLI-generated cards (data-mail-token attribute).

Localization and branding

• Card title and download text follow the CLI's language setting: Chinese uses "来自{飞书/Lark}邮箱的超大附件" / "下载", English uses "Large file from {Feishu/Lark} Mail" / "Download".
• Product name switches between Feishu/飞书 (domestic brand) and Lark (international brand).

Documentation

Skill references updated under skills/lark-mail/references/ for all affected compose shortcuts, and lark-mail-draft-edit.md documents the unified attachment model, the new large_attachments_summary field, and the body-edit preservation semantics.

Test plan

• mail +send / +reply / +reply-all / +forward with a mix of small and large attachments
• mail +draft-create with signature + large attachment
• mail +draft-edit --inspect on a draft with large attachments — verify large_attachments_summary is populated
• mail +draft-edit with add_attachment (oversized) on existing drafts
• mail +draft-edit with remove_attachment by token
• mail +draft-edit with set_body / set_reply_body — verify signature, large attachment card, and quote block (for set_reply_body) are preserved
• Verify external recipients (non-Lark/Feishu clients) see the download-card and can retrieve the file via the download link
• Verify the card title/download text switches between zh/en and between Feishu/Lark brands
• mail +reply / +reply-all on a message with large attachment cards — verify the card is stripped from the quote
• mail +forward on a message with a deleted/expired large attachment — verify the attachment is skipped with a warning, HTML card removed, and the forward succeeds
• mail +forward on a message with valid attachments — verify no regression, all attachments preserved

[coderabbitai]

Note

Reviews paused

It looks like this branch is under active development. To avoid overwhelming you with review comments due to an influx of new commits, CodeRabbit has automatically paused this review. You can configure this behavior by changing the reviews.auto_review.auto_pause_after_reviewed_commits setting.

Use the following commands to manage reviews:

• @coderabbitai resume to resume automatic reviews.
• @coderabbitai review to trigger a single review.

Use the checkboxes below for quick actions:

• ▶️ Resume reviews
• 🔍 Trigger review

📝 Walkthrough

Walkthrough

Adds end-to-end large-attachment support: classify attachments by estimated EML size, upload oversized files via media APIs, insert download-link HTML cards into draft HTML, store ordered tokens in a base64+JSON draft header, and preserve/remove cards and signatures via new draft/HTML helpers.

Changes

Cohort / File(s)	Summary
Large Attachment Parsing & Removal shortcuts/mail/draft/large_attachment_parse.go, shortcuts/mail/draft/large_attachment_parse_test.go	New header/HTML parsing for large-attachment tokens and metadata, size-display parsing, token removal/update flows that sync header + HTML (best-effort for HTML), and unit tests covering parsing, projection merging, and removal semantics.
Draft Model & Projection shortcuts/mail/draft/model.go, shortcuts/mail/draft/projection.go	Added LargeAttachmentSummary and DraftProjection.LargeAttachmentsSummary; AttachmentTarget.Token and hasAnyKey(); projection now builds large-attachment summary by merging server/CLI headers with HTML-parsed metadata and exposes helpers for splitting/inserting around cards and signature extraction.
Draft Patching & Body Management shortcuts/mail/draft/patch.go, shortcuts/mail/draft/patch_body_large_attachment_test.go, shortcuts/mail/draft/patch_signature_test.go	Route token-only remove_attachment to large-attachment removal; auto-preserve system-managed regions (signature + large-attachment cards) on body edits; centralize signature placement; add comprehensive preservation/patch tests.
Large Attachment Core Pipeline shortcuts/mail/large_attachment.go, shortcuts/mail/large_attachment_test.go	EML-size estimation, classify attachments into normal vs oversized, per-file 3GB cap, upload oversized files via drive media APIs, generate escaped brand/lang HTML cards, write ordered tokens into draft header, and preprocess patches to strip oversized add_attachment ops.
Mail Command Integrations shortcuts/mail/mail_draft_create.go, shortcuts/mail/mail_draft_edit.go, shortcuts/mail/mail_forward.go, shortcuts/mail/mail_reply.go, shortcuts/mail/mail_reply_all.go, shortcuts/mail/mail_send.go, shortcuts/mail/mail_draft_create_test.go	Replace early size/count prechecks and direct AddFileAttachment loops with delegated processLargeAttachments using composed HTML and estimated EML base size; add context propagation to draft-create; update tests.
EML Builder & Tests shortcuts/mail/emlbuilder/builder.go, shortcuts/mail/emlbuilder/builder_test.go	Wrap body lines based on Content-Transfer-Encoding (7bit → 998 cols; base64/qp → 76); tests adjusted to RFC 5322 limit.
Attachment Validation Refactor shortcuts/mail/helpers.go, shortcuts/mail/helpers_test.go	Removed early checkAttachmentSizeLimit and related tests; inline JSON parsing retained; deferred size/count enforcement to large-attachment processing; tightened inline-image CID handling.
Signature Placement & Utilities shortcuts/mail/signature_compose.go	Signature injection now delegates to PlaceSignatureBeforeSystemTail helper; local quote-splitting/placement removed.
Drive Media Upload Helper shortcuts/common/drive_media_upload.go	DriveMediaUploadAllConfig gains optional Reader io.Reader; upload uses Reader when provided (fallback to FilePath otherwise).
Docs skills/lark-mail/references/...	Updated --attach docs across mail commands to document 25 MB EML threshold, 3 GB per-file limit, and new draft-edit semantics about system-managed element preservation and attachment targeting.

Sequence Diagram(s)

sequenceDiagram
    participant Client
    participant Composer as Mail Command
    participant Classifier as Attachment<br/>Classifier
    participant Uploader as Media<br/>Upload API
    participant HTMLBuilder as HTML Card<br/>Builder
    participant Draft as Draft<br/>Snapshot

    Client->>Composer: compose/send with attachments + body
    Composer->>Classifier: classifyAttachments(files, emlBase)
    Classifier-->>Composer: normal[], oversized[]
    loop upload oversized files
        Composer->>Uploader: upload file (medias/upload)
        Uploader-->>Composer: {token, meta}
    end
    Composer->>HTMLBuilder: buildLargeAttachmentHTML(results)
    HTMLBuilder-->>Composer: htmlCard
    Composer->>Draft: InsertBeforeQuoteOrAppend(htmlCard)
    Draft-->>Composer: updatedHTML
    Composer->>Draft: set header `X-Lms-Large-Attachment-Ids` (base64 JSON)
    Composer->>Composer: attach normal files to EML builder
    Composer-->>Client: return/send result

Loading

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~60 minutes

Possibly related PRs

• feat: support multipart doc media uploads #294 — drive media upload helper changes and Reader-based upload body support overlap with the upload wiring used here.
• refactor: migrate mail shortcuts to FileIO #356 — overlapping mail-shortcuts refactors touching attachment handling, draft/patch/model logic, and signature placement.
• feat(mail): add email signature support #485 — related changes around draft HTML helpers, projection, and patch validation.

Suggested labels

enhancement

Suggested reviewers

• infeng
• fangshuyu-768

Poem

🐇 I nibble bytes beyond the modest line,
Tokens tucked neat where attachments shine,
Cards hop into HTML with links so spry,
Signatures and quotes stay tidy nearby,
When twenty‑five MB whispers, up they fly!

🚥 Pre-merge checks | ✅ 2 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 47.69% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title 'feat(mail): support large email attachments' clearly and concisely summarizes the primary change — adding support for large email attachments. It is specific, directly related to the changeset, and follows conventional commit format.
Description check	✅ Passed	The PR description comprehensively covers objectives, changes, and test plan with clear examples and implementation details.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch feat/mail-large-attachment

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[github-actions]

🚀 PR Preview Install Guide

🧰 CLI update

npm i -g https://pkg.pr.new/larksuite/cli/@larksuite/cli@912c8a35d39542eaf667312d0b65e2d3a987ed4d

🧩 Skill update

npx skills add larksuite/cli#feat/mail-large-attachment -y -g

[coderabbitai]

Actionable comments posted: 3

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

shortcuts/mail/mail_draft_create.go (1)

162-200: ⚠️ Potential issue | 🟠 Major

Plain-text + large attachment forces an HTML body onto the draft.

When input.PlainText is true, composedHTMLBody stays empty and bld only has a text body. But if any attachment is oversized, processLargeAttachments will unconditionally call bld.HTMLBody(...) with the download-card HTML (via InsertBeforeQuoteOrAppend("", largeHTML) → just largeHTML). Result: a draft the user asked to keep plain-text gets an HTML body containing only the large-attachment card, with no plain-text mention of the download link — so plain-text-only readers lose the link entirely and the --plain-text contract is broken.

The root cause is in processLargeAttachments (shortcuts/mail/large_attachment.go); the same call site exists in the other four compose shortcuts (mail_send, mail_reply, mail_reply_all, mail_forward). Two reasonable fixes:

1. Reject --plain-text + oversized attachments with a clear error; or
2. Append a plain-text block (e.g., Large files:\n - name (size) — <url>) via bld.TextBody in addition to the HTML card so both bodies stay consistent.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@shortcuts/mail/mail_draft_create.go` around lines 162 - 200, The code allows
input.PlainText to be true but processLargeAttachments can force an HTML body
(via InsertBeforeQuoteOrAppend → bld.HTMLBody), breaking the plain-text
contract; update the flow so plain-text drafts remain valid by either rejecting
plain-text + oversized attachments or by ensuring a plain-text fallback is
added: modify processLargeAttachments (in shortcuts/mail/large_attachment.go) to
accept a plainText flag (or detect composedHTMLBody==""/input.PlainText) and
when it would insert the download-card HTML (via InsertBeforeQuoteOrAppend /
largeHTML) also return or apply a corresponding plain-text block and call
bld.TextBody(...) (or return an explicit error) so the call site in
mail_draft_create.go (where input.PlainText, composedHTMLBody and
processLargeAttachments are used) preserves a proper text body instead of
silently converting to HTML.

♻️ Duplicate comments (1)

shortcuts/mail/large_attachment.go (1)

412-416: ⚠️ Potential issue | 🟠 Major

Root cause of the plain-text HTML-body issue flagged at mail_draft_create.go.

bld.HTMLBody(...) is called unconditionally here when any file is oversized, regardless of whether the caller built a plain-text-only draft. See the consolidated comment on shortcuts/mail/mail_draft_create.go lines 162–200 for the full impact analysis and suggested fixes (error out on plain-text + oversized, or append a plain-text fallback listing).

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@shortcuts/mail/large_attachment.go` around lines 412 - 416, The code
unconditionally calls bld.HTMLBody(...) with an oversized-file HTML block (built
via buildLargeAttachmentHTML and inserted with
draftpkg.InsertBeforeQuoteOrAppend) even when the caller intended a
plain-text-only draft; change this to only set bld.HTMLBody when the original
htmlBody is non-empty/HTML-mode (e.g., if htmlBody != "" or an “isHTML” flag),
and for plain-text-only drafts do not call bld.HTMLBody but instead append a
plain-text fallback listing of the oversized files to the text body (use
bld.TextBody and create a simple plain-text representation from results)
inserted before the quote or appended analogously; keep references to
buildLargeAttachmentHTML, draftpkg.InsertBeforeQuoteOrAppend, bld.HTMLBody and
bld.TextBody to locate and update the logic.

🧹 Nitpick comments (3)

shortcuts/mail/mail_draft_create_test.go (1)

77-104: Test now passes via the "no user identity" fallback, not the size-limit semantics it was written to verify.

With newRuntimeWithFrom the runtime has no Config/UserOpenId, so processLargeAttachments always returns via its identity-guard branch ("total attachment size ... exceeds the 25 MB EML limit; large attachment upload requires user identity"). Both substrings match regardless of whether the auto-resolved inline image is actually counted toward the EML budget — so this test no longer meaningfully verifies "auto-resolve counted in size limit" once identity is plumbed in. Consider either:

• tightening the assertion to require the exact "requires user identity" message, so regressions in the identity guard are caught, or
• extending the test with a runtime that has a (fake) user identity and a stub upload path to exercise the oversized classification itself.

Non-blocking; the current form is consistent with the ai_summary, but the test name now slightly overstates its coverage.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@shortcuts/mail/mail_draft_create_test.go` around lines 77 - 104, The test
TestBuildRawEMLForDraftCreate_AutoResolveCountedInSizeLimit is passing due to
the "no user identity" fallback (newRuntimeWithFrom yields no Config/UserOpenId)
so processLargeAttachments returns the identity-guard message instead of
exercising the actual size-counting logic; update the test either by tightening
the assertion to explicitly expect the identity guard message (e.g., assert
error contains "requires user identity" or the exact identity-related text from
processLargeAttachments) or change the runtime passed into
buildRawEMLForDraftCreate to include a fake UserOpenId/Config and a stubbed
upload path so processLargeAttachments runs the oversized-classification branch
that counts auto-resolved inline images — locate references in the test to
newRuntimeWithFrom, buildRawEMLForDraftCreate, and processLargeAttachments to
implement the chosen fix.

shortcuts/mail/mail_forward.go (1)

185-205: Minor: origAttBytes is now dead code.

origAttBytes is accumulated (Line 204) but no longer read after the refactor — processLargeAttachments now relies on origAttEMLBytes (base64-estimated size) for headroom calculations. Consider removing origAttBytes to keep the function lean.

♻️ Proposed cleanup

 		var origAtts []downloadedAtt
-		var origAttBytes int64
 		type largeAttID struct {
@@
 			origAtts = append(origAtts, downloadedAtt{content, contentType, att.Filename})
-			origAttBytes += int64(len(content))
 		}

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@shortcuts/mail/mail_forward.go` around lines 185 - 205, The variable
origAttBytes is accumulated in the loop over sourceMsg.ForwardAttachments but is
unused after the refactor (processLargeAttachments now uses origAttEMLBytes);
remove the origAttBytes declaration and the line that increments it
(origAttBytes += int64(len(content))) to eliminate dead code, leaving the rest
of the loop (including largeAttID, largeAttIDs, and appending to origAtts)
intact.

shortcuts/mail/draft/large_attachment_parse.go (1)

98-137: extractItemMeta filename/size inference is positional and brittle.

texts[0] is treated as the filename and texts[1] as the size display, but this depends on the exact template shape documented in the comment. If largeAttItemTpl ever grows an icon <img alt="…"> with a non-empty alt, or adds any other text node between the item root and the filename <div>, the projection silently reports the wrong filename and a size of 0. Consider scoping extraction by structural role rather than text order — e.g. first read filename/size from a <div id="large-file-meta"> wrapper (or dedicated classes), and only fall back to positional text collection.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@shortcuts/mail/draft/large_attachment_parse.go` around lines 98 - 137, The
current extractItemMeta collects all non-anchor text nodes and assumes texts[0]
is the filename and texts[1] the size, which is brittle; update extractItemMeta
to first look for structured nodes (e.g., a wrapper element like a div with
id/class such as "large-file-meta" or dedicated filename/size classes) and
extract the filename and size from those nodes directly (use parseSizeDisplay on
the size node's text); only if those structural selectors are not present, fall
back to the existing positional collection (the token extraction via
LargeAttachmentTokenAttr should remain unchanged) so you preserve backward
compatibility and avoid mis-parsing when icons or extra text nodes are added.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@shortcuts/mail/draft/large_attachment_parse.go`:
- Around line 283-309: The current removeLargeFileItemFromHTML uses xhtml.Parse
and xhtml.Render which wrap fragment inputs into a full HTML document; change
removeLargeFileItemFromHTML to parse fragments instead (use xhtml.ParseFragment
with a body node: &xhtml.Node{Type: xhtml.ElementNode, DataAtom: atom.Body,
Data: "body"}), locate and remove the matching node from the returned fragment
slice, then serialize only those fragment nodes (not the full document) back to
string so original fragment structure is preserved; update
findLargeFileItemByToken/remove logic to work on the fragment nodes and add a
regression test named TestRemoveLargeAttachmentPreservesFragmentStructure that
passes a fragment like "<p>…</p><div>…</div>" through
removeLargeFileItemFromHTML and asserts the output remains a fragment (no
surrounding html/body).

In `@shortcuts/mail/mail_reply_all.go`:
- Around line 190-198: The code calls processLargeAttachments which
unconditionally injects an HTML card via bld.HTMLBody even when the draft is
plain-text (composedHTMLBody is empty), causing plain-text drafts to become
HTML; update the caller flow in mail_reply_all.go (and mirror the same change in
mail_reply.go, mail_send.go, mail_forward.go) to detect plain-text mode (e.g.,
composedHTMLBody == "" or the plain-text flag) before calling
processLargeAttachments and instead return a clear error like "oversized
attachments require HTML mode" (or skip HTML injection) so
processLargeAttachments is not allowed to convert plain-text drafts to HTML
unexpectedly.

In `@skills/lark-mail/references/lark-mail-send.md`:
- Line 172: Update the documentation to reflect the real attachment count limit
enforced by the code: change the "总附件数量上限 100 个" text to "总附件数量上限 250 个" in
lark-mail-send.md; note that the actual limit is defined by the
MaxAttachmentCount constant in shortcuts/mail/limits.go and enforced by
processLargeAttachments in shortcuts/mail/large_attachment.go, so keep the doc
consistent with those symbols.

---

Outside diff comments:
In `@shortcuts/mail/mail_draft_create.go`:
- Around line 162-200: The code allows input.PlainText to be true but
processLargeAttachments can force an HTML body (via InsertBeforeQuoteOrAppend →
bld.HTMLBody), breaking the plain-text contract; update the flow so plain-text
drafts remain valid by either rejecting plain-text + oversized attachments or by
ensuring a plain-text fallback is added: modify processLargeAttachments (in
shortcuts/mail/large_attachment.go) to accept a plainText flag (or detect
composedHTMLBody==""/input.PlainText) and when it would insert the download-card
HTML (via InsertBeforeQuoteOrAppend / largeHTML) also return or apply a
corresponding plain-text block and call bld.TextBody(...) (or return an explicit
error) so the call site in mail_draft_create.go (where input.PlainText,
composedHTMLBody and processLargeAttachments are used) preserves a proper text
body instead of silently converting to HTML.

---

Duplicate comments:
In `@shortcuts/mail/large_attachment.go`:
- Around line 412-416: The code unconditionally calls bld.HTMLBody(...) with an
oversized-file HTML block (built via buildLargeAttachmentHTML and inserted with
draftpkg.InsertBeforeQuoteOrAppend) even when the caller intended a
plain-text-only draft; change this to only set bld.HTMLBody when the original
htmlBody is non-empty/HTML-mode (e.g., if htmlBody != "" or an “isHTML” flag),
and for plain-text-only drafts do not call bld.HTMLBody but instead append a
plain-text fallback listing of the oversized files to the text body (use
bld.TextBody and create a simple plain-text representation from results)
inserted before the quote or appended analogously; keep references to
buildLargeAttachmentHTML, draftpkg.InsertBeforeQuoteOrAppend, bld.HTMLBody and
bld.TextBody to locate and update the logic.

---

Nitpick comments:
In `@shortcuts/mail/draft/large_attachment_parse.go`:
- Around line 98-137: The current extractItemMeta collects all non-anchor text
nodes and assumes texts[0] is the filename and texts[1] the size, which is
brittle; update extractItemMeta to first look for structured nodes (e.g., a
wrapper element like a div with id/class such as "large-file-meta" or dedicated
filename/size classes) and extract the filename and size from those nodes
directly (use parseSizeDisplay on the size node's text); only if those
structural selectors are not present, fall back to the existing positional
collection (the token extraction via LargeAttachmentTokenAttr should remain
unchanged) so you preserve backward compatibility and avoid mis-parsing when
icons or extra text nodes are added.

In `@shortcuts/mail/mail_draft_create_test.go`:
- Around line 77-104: The test
TestBuildRawEMLForDraftCreate_AutoResolveCountedInSizeLimit is passing due to
the "no user identity" fallback (newRuntimeWithFrom yields no Config/UserOpenId)
so processLargeAttachments returns the identity-guard message instead of
exercising the actual size-counting logic; update the test either by tightening
the assertion to explicitly expect the identity guard message (e.g., assert
error contains "requires user identity" or the exact identity-related text from
processLargeAttachments) or change the runtime passed into
buildRawEMLForDraftCreate to include a fake UserOpenId/Config and a stubbed
upload path so processLargeAttachments runs the oversized-classification branch
that counts auto-resolved inline images — locate references in the test to
newRuntimeWithFrom, buildRawEMLForDraftCreate, and processLargeAttachments to
implement the chosen fix.

In `@shortcuts/mail/mail_forward.go`:
- Around line 185-205: The variable origAttBytes is accumulated in the loop over
sourceMsg.ForwardAttachments but is unused after the refactor
(processLargeAttachments now uses origAttEMLBytes); remove the origAttBytes
declaration and the line that increments it (origAttBytes +=
int64(len(content))) to eliminate dead code, leaving the rest of the loop
(including largeAttID, largeAttIDs, and appending to origAtts) intact.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 059ddf86-4020-4a36-a61a-906b2af5d7bf

📥 Commits

Reviewing files that changed from the base of the PR and between 94bba91 and 1593853.

📒 Files selected for processing (27)

• shortcuts/mail/draft/large_attachment_parse.go
• shortcuts/mail/draft/large_attachment_parse_test.go
• shortcuts/mail/draft/model.go
• shortcuts/mail/draft/patch.go
• shortcuts/mail/draft/patch_body_large_attachment_test.go
• shortcuts/mail/draft/patch_signature_test.go
• shortcuts/mail/draft/projection.go
• shortcuts/mail/emlbuilder/builder.go
• shortcuts/mail/emlbuilder/builder_test.go
• shortcuts/mail/helpers.go
• shortcuts/mail/helpers_test.go
• shortcuts/mail/large_attachment.go
• shortcuts/mail/large_attachment_test.go
• shortcuts/mail/mail_draft_create.go
• shortcuts/mail/mail_draft_create_test.go
• shortcuts/mail/mail_draft_edit.go
• shortcuts/mail/mail_forward.go
• shortcuts/mail/mail_reply.go
• shortcuts/mail/mail_reply_all.go
• shortcuts/mail/mail_send.go
• shortcuts/mail/signature_compose.go
• skills/lark-mail/references/lark-mail-draft-create.md
• skills/lark-mail/references/lark-mail-draft-edit.md
• skills/lark-mail/references/lark-mail-forward.md
• skills/lark-mail/references/lark-mail-reply-all.md
• skills/lark-mail/references/lark-mail-reply.md
• skills/lark-mail/references/lark-mail-send.md

💤 Files with no reviewable changes (1)

• shortcuts/mail/helpers_test.go

[coderabbitai]

🧹 Nitpick comments (3)

shortcuts/mail/helpers.go (1)

2006-2020: Remove unused fio and attachFlag parameters from validateComposeInlineAndAttachments.

The function body uses only inlineFlag, plainText, and body; fio and attachFlag are now unused and create misleading intent (appears to suggest attachment-level validation still occurs here). Simplify the signature to (inlineFlag string, plainText bool, body string) and update all 5 call sites: mail_forward.go:74, mail_send.go:72, mail_reply_all.go:67, mail_reply.go:66, and mail_draft_create.go:79.

Attachment count limits (MaxAttachmentCount) are enforced downstream in large_attachment.go:367–369 during processLargeAttachments, confirming the removed early validation is correctly deferred.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@shortcuts/mail/helpers.go` around lines 2006 - 2020, Remove the unused fio
and attachFlag parameters from validateComposeInlineAndAttachments by changing
its signature to validateComposeInlineAndAttachments(inlineFlag string,
plainText bool, body string) and keep the existing body logic (including the
parseInlineSpecs call); then update the five call sites in mail_forward.go,
mail_send.go, mail_reply_all.go, mail_reply.go, and mail_draft_create.go to call
the new three-argument function (pass inlineFlag, plainText, body) instead of
the old five-argument form so attachment handling remains deferred to
processLargeAttachments/large_attachment.go.

shortcuts/mail/large_attachment_test.go (1)

98-113: Consider adding a token-escaping case.

buildLargeAttachmentPreviewURL passes the token through url.QueryEscape and the return value through htmlEscape (at the HTML layer). The current assertions only use alphanumeric tokens. A token containing &, =, or + would catch regressions in either escape, e.g.:

{core.BrandFeishu, "a&b=c", "https://www.feishu.cn/mail/page/attachment?token=a%26b%3Dc"},

Optional; not a correctness blocker.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@shortcuts/mail/large_attachment_test.go` around lines 98 - 113, Add a test
case to TestBuildLargeAttachmentPreviewURL that verifies tokens with special
characters are correctly escaped: update the table in the test to include an
entry (for example using buildLargeAttachmentPreviewURL with core.BrandFeishu
and a token like "a&b=c+1") and assert the expected URL contains the
percent-encoded token (i.e., the token value should match url.QueryEscape's
output); this targets the buildLargeAttachmentPreviewURL function and ensures
both url.QueryEscape/html escaping regressions are caught.

shortcuts/mail/draft/projection.go (1)

127-137: Minor: HTML part is parsed twice in Project.

findPart(snapshot.Body, snapshot.PrimaryHTMLPartID) + string(part.Body) is invoked at Line 78 and again here at Line 128. For large HTML bodies this performs a redundant byte→string conversion (plus the findPart traversal). You could hoist htmlBody above the first block and reuse it for summarizeHTML / hasQuotedContent / signature detection as well.

♻️ Possible consolidation

+	var htmlBody string
+	if part := findPart(snapshot.Body, snapshot.PrimaryHTMLPartID); part != nil {
+		htmlBody = string(part.Body)
+	}
-	if part := findPart(snapshot.Body, snapshot.PrimaryHTMLPartID); part != nil {
-		html := string(part.Body)
+	if htmlBody != "" {
+		html := htmlBody
 		proj.BodyHTMLSummary = summarizeHTML(html)
 		proj.HasQuotedContent = hasQuotedContent(html)
 		...
 	}
 	...
-	var htmlBody string
-	if part := findPart(snapshot.Body, snapshot.PrimaryHTMLPartID); part != nil {
-		htmlBody = string(part.Body)
-		for _, cid := range extractCIDRefs(htmlBody) {
+	if htmlBody != "" {
+		for _, cid := range extractCIDRefs(htmlBody) {
 			...
 		}
 	}

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@shortcuts/mail/draft/projection.go` around lines 127 - 137, The code is
parsing the HTML part twice via findPart(snapshot.Body,
snapshot.PrimaryHTMLPartID) and converting bytes→string again; to fix, compute
htmlBody once (call findPart(...) and set htmlBody = string(part.Body) in a
single hoisted variable) near where the snapshot is first processed and reuse
that htmlBody for extractCIDRefs/proj.Warnings, projectLargeAttachments,
summarizeHTML, hasQuotedContent and signature detection instead of re-calling
findPart or reconverting the bytes; update references to
findPart/snapshot.PrimaryHTMLPartID/htmlBody across functions (e.g.,
projectLargeAttachments and extractCIDRefs usage) so they use the shared
htmlBody variable.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Nitpick comments:
In `@shortcuts/mail/draft/projection.go`:
- Around line 127-137: The code is parsing the HTML part twice via
findPart(snapshot.Body, snapshot.PrimaryHTMLPartID) and converting bytes→string
again; to fix, compute htmlBody once (call findPart(...) and set htmlBody =
string(part.Body) in a single hoisted variable) near where the snapshot is first
processed and reuse that htmlBody for extractCIDRefs/proj.Warnings,
projectLargeAttachments, summarizeHTML, hasQuotedContent and signature detection
instead of re-calling findPart or reconverting the bytes; update references to
findPart/snapshot.PrimaryHTMLPartID/htmlBody across functions (e.g.,
projectLargeAttachments and extractCIDRefs usage) so they use the shared
htmlBody variable.

In `@shortcuts/mail/helpers.go`:
- Around line 2006-2020: Remove the unused fio and attachFlag parameters from
validateComposeInlineAndAttachments by changing its signature to
validateComposeInlineAndAttachments(inlineFlag string, plainText bool, body
string) and keep the existing body logic (including the parseInlineSpecs call);
then update the five call sites in mail_forward.go, mail_send.go,
mail_reply_all.go, mail_reply.go, and mail_draft_create.go to call the new
three-argument function (pass inlineFlag, plainText, body) instead of the old
five-argument form so attachment handling remains deferred to
processLargeAttachments/large_attachment.go.

In `@shortcuts/mail/large_attachment_test.go`:
- Around line 98-113: Add a test case to TestBuildLargeAttachmentPreviewURL that
verifies tokens with special characters are correctly escaped: update the table
in the test to include an entry (for example using
buildLargeAttachmentPreviewURL with core.BrandFeishu and a token like "a&b=c+1")
and assert the expected URL contains the percent-encoded token (i.e., the token
value should match url.QueryEscape's output); this targets the
buildLargeAttachmentPreviewURL function and ensures both url.QueryEscape/html
escaping regressions are caught.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: c4bfea97-9a6a-41cd-84c5-01197a9b19f2

📥 Commits

Reviewing files that changed from the base of the PR and between 1593853 and 1488610.

📒 Files selected for processing (7)

• shortcuts/mail/draft/large_attachment_parse.go
• shortcuts/mail/draft/large_attachment_parse_test.go
• shortcuts/mail/draft/projection.go
• shortcuts/mail/emlbuilder/builder.go
• shortcuts/mail/helpers.go
• shortcuts/mail/large_attachment.go
• shortcuts/mail/large_attachment_test.go

🚧 Files skipped from review as they are similar to previous changes (3)

• shortcuts/mail/draft/large_attachment_parse_test.go
• shortcuts/mail/large_attachment.go
• shortcuts/mail/draft/large_attachment_parse.go

[coderabbitai]

Actionable comments posted: 3

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@shortcuts/mail/mail_forward.go`:
- Around line 216-222: The emlBase is undercounting the real EML size because it
uses int64(len(body)) instead of the actual composed body and it omits
source-message inline images; update the calculation so estimateEMLBaseSize uses
the length of the actually-composed body (use composedHTMLBody when HTML branch
is used, or call buildForwardedMessage(&orig, body) and use its length in the
plain-text branch) and include the byte total for source inline images (have
addInlineImagesToBuilder return or populate the inline paths and byte count and
add that byte count to origAttEMLBytes or a new extraBytes), ensure
allInlinePaths includes those inline image paths, then pass the corrected
emlBase into processLargeAttachments (symbols to locate: emlBase,
estimateEMLBaseSize, composedHTMLBody, buildForwardedMessage,
addInlineImagesToBuilder, allInlinePaths, origAttEMLBytes,
processLargeAttachments).

In `@shortcuts/mail/mail_reply.go`:
- Around line 179-181: emlBase understates the true EML size because it uses
int64(len(body)) and omits downloaded source-inline images added by
addInlineImagesToBuilder/bld.AddInline; update the flow so estimateEMLBaseSize
is seeded with the actual composed body length (use len(composedHTMLBody) or the
plain-text equivalent used for replies, not len(body)) and include the byte
count of source-inline images returned from addInlineImagesToBuilder (modify
addInlineImagesToBuilder to return totalBytes or otherwise report downloaded
byte size as extraBytes/srcInlineBytes); then add those bytes and/or the
returned inline file paths into allInlinePaths/extraBytes before calling
estimateEMLBaseSize or passing emlBase into processLargeAttachments so
classifyAttachments sees the true baseline.

In `@skills/lark-mail/references/lark-mail-send.md`:
- Line 71: Update the `--attach` parameter description to replace the ambiguous
phrase "超出部分自动上传为超大附件" with "超出的文件自动上传为超大附件" to make clear that whole files (not
parts) are uploaded, and append a brief constraint note that auto-uploaded large
attachments (download-card presentation) are incompatible with plain-text
messages—reflecting the rejection implemented in
shortcuts/mail/large_attachment.go (see the "plain-text messages cannot include
the download card" check). Ensure the `--attach <paths>` line mentions both the
single-file 3 GB limit and the incompatibility with plain-text messages.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 7235df45-5b6a-4469-9a62-c15f2aaf4bf9

📥 Commits

Reviewing files that changed from the base of the PR and between 1488610 and dad9902.

📒 Files selected for processing (10)

• shortcuts/mail/draft/large_attachment_parse.go
• shortcuts/mail/helpers.go
• shortcuts/mail/large_attachment.go
• shortcuts/mail/large_attachment_test.go
• shortcuts/mail/mail_draft_create.go
• shortcuts/mail/mail_forward.go
• shortcuts/mail/mail_reply.go
• shortcuts/mail/mail_reply_all.go
• shortcuts/mail/mail_send.go
• skills/lark-mail/references/lark-mail-send.md

✅ Files skipped from review due to trivial changes (3)

• shortcuts/mail/large_attachment_test.go
• shortcuts/mail/large_attachment.go
• shortcuts/mail/draft/large_attachment_parse.go

🚧 Files skipped from review as they are similar to previous changes (3)

• shortcuts/mail/mail_reply_all.go
• shortcuts/mail/mail_send.go
• shortcuts/mail/mail_draft_create.go

[coderabbitai]

Actionable comments posted: 1

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

shortcuts/common/drive_media_upload.go (1)

55-78: ⚠️ Potential issue | 🟡 Minor

Add test coverage for the Reader upload path.

The Reader field is used in production (shortcuts/mail/large_attachment.go:200), but no test exercises this code path. Add a test that constructs DriveMediaUploadAllConfig with Reader set and verifies the multipart body contains the reader bytes, per the coding guideline that every behavior change must have an accompanying test.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@shortcuts/common/drive_media_upload.go` around lines 55 - 78, Add a unit test
that exercises the UploadDriveMediaAll code path when
DriveMediaUploadAllConfig.Reader is non-nil: create a mock RuntimeContext with a
FileIO that is not used, construct DriveMediaUploadAllConfig with Reader set to
an in-memory bytes.Reader and other required fields (FileName, ParentType,
FileSize, etc.), call UploadDriveMediaAll, capture the created
multipart/form-data payload (e.g., by injecting or mocking larkcore.NewFormdata
or the HTTP client used by UploadDriveMediaAll), and assert that the multipart
body contains the exact bytes from the provided Reader and correct form fields;
focus on UploadDriveMediaAll, DriveMediaUploadAllConfig, and verifying the
"file" part contains the reader bytes.

♻️ Duplicate comments (2)

shortcuts/mail/mail_forward.go (1)

203-208: ⚠️ Potential issue | 🟡 Minor

emlBase still underestimates the EML body and inline payloads.

This still uses len(body) instead of the actual composed body (composedHTMLBody or buildForwardedMessage(&orig, body)), and it does not account for source inline images added via addInlineImagesToBuilder. Near the 25MB limit, this can still classify an attachment as normal even though the final EML build exceeds the limit.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@shortcuts/mail/mail_forward.go` around lines 203 - 208, The EML size
estimation uses len(body) and omits inline images added later, causing
underestimation; update the estimation to use the actual composed body and
include all inline image paths produced by addInlineImagesToBuilder: compute the
composed HTML body (e.g., composedHTMLBody or via buildForwardedMessage(&orig,
body)) and collect inline paths as allInlinePaths :=
append(inlineSpecFilePaths(inlineSpecs), autoResolvedPaths...,
pathsReturnedByAddInlineImagesToBuilder...), then call
estimateEMLBaseSize(runtime.FileIO(), int64(len(composedBody)), allInlinePaths,
0) so the EML base size reflects the final payload.

shortcuts/mail/draft/large_attachment_parse.go (1)

430-433: ⚠️ Potential issue | 🟠 Major

Strip the parser envelope atomically.

TrimSuffix currently runs even when the <html><head></head><body> prefix was not present. For a real full document with a non-empty <head>, removing a large-attachment card can return malformed HTML by stripping only </body></html>.

🛠️ Proposed fix

 func stripHTMLEnvelope(s string) string {
-	s = strings.TrimPrefix(s, "<html><head></head><body>")
-	s = strings.TrimSuffix(s, "</body></html>")
+	const prefix = "<html><head></head><body>"
+	const suffix = "</body></html>"
+	if strings.HasPrefix(s, prefix) && strings.HasSuffix(s, suffix) {
+		s = strings.TrimPrefix(s, prefix)
+		s = strings.TrimSuffix(s, suffix)
+	}
 	return s
 }

Verification: this demonstrates the one-sided suffix strip without touching repository files.

#!/bin/bash
set -euo pipefail

cat >/tmp/verify_strip_html_envelope.go <<'EOF'
package main

import (
	"fmt"
	"strings"
)

func stripHTMLEnvelope(s string) string {
	s = strings.TrimPrefix(s, "<html><head></head><body>")
	s = strings.TrimSuffix(s, "</body></html>")
	return s
}

func main() {
	in := `<html><head><style>.x{}</style></head><body><p>ok</p></body></html>`
	out := stripHTMLEnvelope(in)
	fmt.Println(out)
	if strings.Contains(out, "<body>") && !strings.Contains(out, "</body></html>") {
		panic("suffix stripped without prefix; output is malformed")
	}
}
EOF

go run /tmp/verify_strip_html_envelope.go

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@shortcuts/mail/draft/large_attachment_parse.go` around lines 430 - 433, The
stripHTMLEnvelope function currently trims the suffix even when the prefix
wasn't present, which can produce malformed HTML; modify stripHTMLEnvelope to
check for the full envelope atomically (e.g., test strings.HasPrefix(s,
"<html><head></head><body>") && strings.HasSuffix(s, "</body></html>") ) and
only remove both the prefix and suffix when both are present (otherwise return s
unchanged), locating and updating the stripHTMLEnvelope function to implement
this conditional removal.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@shortcuts/mail/mail_forward.go`:
- Around line 209-242: The classification loses the original ordering because
origAtts are appended to allFiles without an identity and code uses a shared
cursor (origIdx) when iterating classified.Normal and classified.Oversized; add
an OriginalIndex int field to the attachmentFile type, set OriginalIndex to the
index for each entry built from origAtts (and a sentinel like -1 for userFiles),
then change the embedding loops (the loop over classified.Normal and the similar
loop for classified.Oversized) to use f.OriginalIndex to fetch the correct
origAtts entry when f.Path == "" (instead of advancing origIdx), and keep using
AddAttachment for original entries and AddFileAttachment for file-path entries
so attachments are no longer swapped.

---

Outside diff comments:
In `@shortcuts/common/drive_media_upload.go`:
- Around line 55-78: Add a unit test that exercises the UploadDriveMediaAll code
path when DriveMediaUploadAllConfig.Reader is non-nil: create a mock
RuntimeContext with a FileIO that is not used, construct
DriveMediaUploadAllConfig with Reader set to an in-memory bytes.Reader and other
required fields (FileName, ParentType, FileSize, etc.), call
UploadDriveMediaAll, capture the created multipart/form-data payload (e.g., by
injecting or mocking larkcore.NewFormdata or the HTTP client used by
UploadDriveMediaAll), and assert that the multipart body contains the exact
bytes from the provided Reader and correct form fields; focus on
UploadDriveMediaAll, DriveMediaUploadAllConfig, and verifying the "file" part
contains the reader bytes.

---

Duplicate comments:
In `@shortcuts/mail/draft/large_attachment_parse.go`:
- Around line 430-433: The stripHTMLEnvelope function currently trims the suffix
even when the prefix wasn't present, which can produce malformed HTML; modify
stripHTMLEnvelope to check for the full envelope atomically (e.g., test
strings.HasPrefix(s, "<html><head></head><body>") && strings.HasSuffix(s,
"</body></html>") ) and only remove both the prefix and suffix when both are
present (otherwise return s unchanged), locating and updating the
stripHTMLEnvelope function to implement this conditional removal.

In `@shortcuts/mail/mail_forward.go`:
- Around line 203-208: The EML size estimation uses len(body) and omits inline
images added later, causing underestimation; update the estimation to use the
actual composed body and include all inline image paths produced by
addInlineImagesToBuilder: compute the composed HTML body (e.g., composedHTMLBody
or via buildForwardedMessage(&orig, body)) and collect inline paths as
allInlinePaths := append(inlineSpecFilePaths(inlineSpecs), autoResolvedPaths...,
pathsReturnedByAddInlineImagesToBuilder...), then call
estimateEMLBaseSize(runtime.FileIO(), int64(len(composedBody)), allInlinePaths,
0) so the EML base size reflects the final payload.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: fe1ff9df-5220-418a-aff9-f3fae8bf309d

📥 Commits

Reviewing files that changed from the base of the PR and between dad9902 and a9a3535.

📒 Files selected for processing (7)

• shortcuts/common/drive_media_upload.go
• shortcuts/mail/draft/large_attachment_parse.go
• shortcuts/mail/draft/projection.go
• shortcuts/mail/helpers.go
• shortcuts/mail/helpers_test.go
• shortcuts/mail/large_attachment.go
• shortcuts/mail/mail_forward.go

✅ Files skipped from review due to trivial changes (1)

• shortcuts/mail/large_attachment.go

🚧 Files skipped from review as they are similar to previous changes (1)

• shortcuts/mail/draft/projection.go

[coderabbitai]

Actionable comments posted: 2

♻️ Duplicate comments (1)

shortcuts/mail/mail_forward.go (1)

157-188: ⚠️ Potential issue | 🟡 Minor

Use the actual forwarded body and source inline images in the EML estimate.

Line 218 still estimates from len(body), but the built EML uses composedHTMLBody in HTML mode or buildForwardedMessage(&orig, body) in plain-text mode, and source inline images added via addInlineImagesToBuilder are not included. Near 25 MB, this can misclassify an attachment as embeddable and fail during EML build/send.

Also applies to: 217-218

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@shortcuts/mail/mail_forward.go` around lines 157 - 188, The current EML size
estimation still uses len(body) and omits source inline images (srcCIDs),
causing misclassification; update the estimator to use the actual content used
for the EML: when HTML path is taken use len(composedHTMLBody) (or
len(bodyWithSig) / len(composedHTMLBody) as appropriate after building
composedHTMLBody in the block that calls buildForwardQuoteHTML,
addInlineImagesToBuilder, draftpkg.ResolveLocalImagePaths, and
addSignatureImagesToBuilder), and when plain-text path is taken use
len(buildForwardedMessage(&orig, body)); also include all inline CIDs from
srcCIDs, userCIDs (from inlineSpecs loop), and signatureCIDs(sigResult) in the
inline/attachment size calculation so the estimation reflects images added via
addInlineImagesToBuilder and addSignatureImagesToBuilder before calling
validateInlineCIDs or EML build/send.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@shortcuts/mail/mail_forward.go`:
- Around line 237-240: The current attachment-count check uses totalCount :=
len(origAtts) + len(userFiles) but omits preserved large attachments
(largeAttIDs), allowing forwards with many large attachments to bypass
MaxAttachmentCount; update the check to include the number of preserved large
attachments (e.g., add len(largeAttIDs) into totalCount or otherwise account for
them before the if that returns output.ErrValidation), and keep the error
message using totalCount and MaxAttachmentCount so the validation fails locally
when the sum of origAtts, userFiles, and largeAttIDs exceeds MaxAttachmentCount.
- Around line 11-12: Replace the predictable temp file creation that uses
".lark-cli-fwd-"+filepath.Base(att.filename) with os.CreateTemp to generate a
unique temp file for each attachment; in the function that handles attachments
(references: att.filename, the upload path variable and the deferred cleanup
logic in mail_forward.go), write the attachment to the os.CreateTemp file, use
that returned temporary filename for the upload, and keep the existing deferred
removal but ensure it removes the exact os.CreateTemp path; apply the same
change to the other attachment-handling block that currently uses the
predictable name.

---

Duplicate comments:
In `@shortcuts/mail/mail_forward.go`:
- Around line 157-188: The current EML size estimation still uses len(body) and
omits source inline images (srcCIDs), causing misclassification; update the
estimator to use the actual content used for the EML: when HTML path is taken
use len(composedHTMLBody) (or len(bodyWithSig) / len(composedHTMLBody) as
appropriate after building composedHTMLBody in the block that calls
buildForwardQuoteHTML, addInlineImagesToBuilder,
draftpkg.ResolveLocalImagePaths, and addSignatureImagesToBuilder), and when
plain-text path is taken use len(buildForwardedMessage(&orig, body)); also
include all inline CIDs from srcCIDs, userCIDs (from inlineSpecs loop), and
signatureCIDs(sigResult) in the inline/attachment size calculation so the
estimation reflects images added via addInlineImagesToBuilder and
addSignatureImagesToBuilder before calling validateInlineCIDs or EML build/send.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 2a4a7639-1936-4faf-afe3-0b46fc6653ec

📥 Commits

Reviewing files that changed from the base of the PR and between a9a3535 and 704e64a.

📒 Files selected for processing (2)

• shortcuts/mail/large_attachment.go
• shortcuts/mail/mail_forward.go

✅ Files skipped from review due to trivial changes (1)

• shortcuts/mail/large_attachment.go

[infeng]

Re-checked the latest head. All previously raised review items are addressed, local go test ./shortcuts/mail/... passes, and there are no unresolved review threads on the PR.

[codecov]

Codecov Report

❌ Patch coverage is 66.15087% with 350 lines in your changes missing coverage. Please review.
✅ Project coverage is 61.29%. Comparing base (04e3a28) to head (912c8a3).
⚠️ Report is 2 commits behind head on main.

Files with missing lines	Patch %	Lines
shortcuts/mail/large_attachment.go	70.63%	130 Missing and 8 partials ⚠️
shortcuts/mail/draft/large_attachment_parse.go	71.72%	47 Missing and 20 partials ⚠️
shortcuts/mail/mail_forward.go	19.27%	59 Missing and 8 partials ⚠️
shortcuts/mail/mail_draft_edit.go	0.00%	22 Missing ⚠️
shortcuts/mail/mail_send.go	0.00%	15 Missing ⚠️
shortcuts/mail/draft/projection.go	87.17%	5 Missing and 5 partials ⚠️
shortcuts/mail/helpers.go	65.21%	5 Missing and 3 partials ⚠️
shortcuts/common/drive_media_upload.go	50.00%	2 Missing and 3 partials ⚠️
shortcuts/mail/draft/patch.go	87.87%	3 Missing and 1 partial ⚠️
shortcuts/mail/mail_draft_create.go	80.00%	3 Missing ⚠️
... and 5 more

Additional details and impacted files

@@            Coverage Diff             @@
##             main     #537      +/-   ##
==========================================
+ Coverage   61.05%   61.29%   +0.23%     
==========================================
  Files         400      402       +2     
  Lines       34130    35045     +915     
==========================================
+ Hits        20838    21480     +642     
- Misses      11368    11605     +237     
- Partials     1924     1960      +36     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[infeng]

Re-checked the current head (c478a63). I don't have any additional must-fix / should-fix findings beyond the previously discussed large-attachment classification edge case that you've explicitly decided not to address in this PR. The latest push is test-only formatting (mail_draft_create_test.go), and go test ./shortcuts/mail/... still passes on this head.

Residual risk remains the same: the borderline EML-size acceptance path discussed in the thread at shortcuts/mail/large_attachment.go is still open by choice. Other than that, I don't see new blocking issues on the current head.