Skip to content

fix: skip system prompt for claude #299

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
shuv1337 wants to merge 104 commits into from
Closed

fix: skip system prompt for claude #299

shuv1337 wants to merge 104 commits into from

Conversation

@shuv1337
Copy link
Collaborator

@shuv1337 shuv1337 commented Jan 14, 2026
edited by greptile-apps bot
Loading

Summary

  • prevent system prompt injection for Claude models via Anthropic provider
  • keep existing prompt routing for other providers

Greptile Summary

This PR prevents system prompt duplication for Claude models accessed via the Anthropic provider. Previously, Claude models would receive the system prompt both through the standard system message mechanism and via the options.instructions field, causing prompt injection issues.

Key Changes:

  • Modified SystemPrompt.provider() to return an empty array for Claude models via Anthropic provider (checking both providerID.includes("anthropic") and api.id.includes("claude"))
  • Updated llm.ts to move provider/auth lookups earlier in the flow and conditionally skip SystemPrompt.provider() for Codex sessions
  • The system prompt for Claude via Anthropic is now only sent via options.instructions (for Codex) or not at all (letting the native provider handle it)

Additional Improvements:

  • Fixed missing return statement in prompt.ts when transitioning from plan to build mode
  • Added AWS Web Identity Token support for Bedrock provider
  • Improved bearer token precedence handling for AWS Bedrock
  • Removed unused anthropicModel parameter from GitLab provider
  • Added provider existence validation in Provider.list()

Confidence Score: 5/5
  • This PR is safe to merge with minimal risk
  • The changes are well-targeted and address a specific system prompt injection issue. The logic is straightforward - adding early returns and conditional checks to prevent duplicate prompts. The PR includes test coverage for new AWS Web Identity Token functionality. All changes follow existing patterns in the codebase.
  • No files require special attention

Important Files Changed
Filename Overview
packages/opencode/src/session/llm.ts Refactored system prompt handling for Claude models via Anthropic provider - moves provider/auth lookup earlier and conditionally skips SystemPrompt.provider() for Codex sessions
packages/opencode/src/session/system.ts Changed SystemPrompt.provider() to return empty array for Claude models via Anthropic provider, preventing duplicate system prompt injection
packages/opencode/src/provider/provider.ts Added AWS_WEB_IDENTITY_TOKEN_FILE support for Bedrock, improved bearer token handling, removed unused anthropicModel parameter from GitLab, added provider existence check
packages/opencode/src/session/prompt.ts Fixed missing return statement when switching from plan to build mode, refactored plan path template to use string concatenation

Sequence Diagram

 
sequenceDiagram
    participant Client
    participant LLM
    participant SystemPrompt
    participant Provider
    participant API

    Client->>LLM: stream(input)
    Note over LLM: Fetch provider and auth info early
    
    LLM->>Provider: getProvider and getLanguage
    Provider-->>LLM: provider and language info
    
    Note over LLM: Determine if Codex session
    
    LLM->>SystemPrompt: header(providerID)
    SystemPrompt-->>LLM: header array
    
    alt Has agent prompt
        Note over LLM: Use agent prompt
    else isCodex
        Note over LLM: Skip SystemPrompt.provider()
    else Regular session
        LLM->>SystemPrompt: provider(model)
        alt Anthropic with Claude
            SystemPrompt-->>LLM: empty array (prevents duplicate)
        else Other providers
            SystemPrompt-->>LLM: provider prompt
        end
    end
    
    alt isCodex
        Note over LLM: Set options.instructions<br/>Wrap system as user message
    else Anthropic (non-Codex)
        Note over LLM: Send as system role
    end
    
    LLM->>API: Send request with appropriate format
    API-->>LLM: Stream response
    LLM-->>Client: StreamTextResult
Loading

fwang and others added 30 commits January 13, 2026 13:36
@fwang
sync
f24251f
@fwang
sync
8ae10f1
@actions-user
Update Nix flake.lock and x86_64-linux hash
b7a1d8f
@actions-user
Update aarch64-darwin hash
f3d4dd5
@LeonMueller-OneAndOnly
fix(TUI): make tui work when OPENCODE_SERVER_PASSWORD is set (anomaly…
bee4b68 
…co#8179)
@actions-user
chore: generate
7aa7dd3
@fwang
wip: black
eaf18d9
@Eduard-Voiculescu
docs: Update plan mode restrictions (anomalyco#8290)
2f7b2cf
@mthezi
docs: add 302ai provider (anomalyco#8142)
b8828f2
@danielmbrasil
fix: add missing metadata() and ask() defintions to ToolContext type (a…
73d5cac 
…nomalyco#8269)
@sauerdaniel
fix(tui): track all timeouts in Footer to prevent memory leak (anomal…
1ff46c7 
…yco#8255)
@felixzsh
fix: deduplicate file refs in sent prompts (anomalyco#8303)
562f067
@actions-user
chore: generate
f242541
@fwang
wip: black
45fa4ed
@fwang
wip: black
82319bb
@fwang
release: v1.1.17
aa522aa
@thdxr @fwang
add fullscreen view to permission prompt
4368053
@actions-user @fwang
chore: generate
15e80fc
@usvimal @fwang
fix(desktop): correct health check endpoint URL to /global/health (an…
a761f66 
…omalyco#8231)
@dbpolito @fwang
feat(desktop): Adding Provider Icons (anomalyco#8215)
3c9d80d
@actions-user @fwang
chore: generate
fcaa041
@Brendonovich @fwang
console: reduce desktop download cache ttl to 5 minutes
bc557e8
@LeonMueller-OneAndOnly @fwang
fix(github): add persist-credentials: false to workflow templates (an…
5b699a0 
…omalyco#8202)
@fwang
release: v1.1.18
c67b0a9
@dbpolito @fwang
fix(desktop): Revert provider icon on select model dialog (anomalyco#…
dc654c9 
…8245)
@cmdr-chara @fwang
feat: add Undertale and Deltarune built-in themes (anomalyco#8240)
e37104c
@actions-user @fwang
chore: generate
f642a6c
@dbpolito @fwang
feat(desktop): Ask Question Tool Support (anomalyco#8232)
dfa59dd
@sauerdaniel @fwang
fix(mcp): close existing client before reassignment to prevent leaks (a…
4dc7266 
…nomalyco#8253)
@sauerdaniel @fwang
fix(state): delete key from recordsByKey on instance disposal (anomal…
9b76337 
…yco#8252)
actions-user and others added 27 commits January 14, 2026 15:35
@actions-user
Update Nix flake.lock and x86_64-linux hash
cc67bc0
@R44VC0RP
docs: update screenshot images (anomalyco#8479)
b75d4d1
@itsrainingmani
feat: add choco and scoop to opencode upgrade methods (anomalyco#8439)
ad17e8d
@actions-user
Update aarch64-darwin hash
b5e9f96
@R44VC0RP
feat(console): add /changelog page (anomalyco#8476)
78be8fe
@aaroniker
feat(console/app): Style changes, view transitions, small improvements (
8ce5c2b 
anomalyco#8481)
@R44VC0RP
docs: add Web usage page (anomalyco#8482)
e6e7eaf
@thdxr
copy changes
9d92ae7
@bainos
feat(opencode): add AWS Web Identity Token File support for Bedrock (a…
3a9e6b5 
…nomalyco#8461)
@thdxr
ignore: fix auth redirect to preserve selected plan during subscripti…
44d24d4 
…on flow
@thdxr
ignore: remove nowrap constraint to allow text wrapping in console UI
5b431c3
@R44VC0RP
fix(console): make logo on /black link back to homepage (anomalyco#8498)
346c5e0
@R44VC0RP
feat(console): add OG image and SEO meta tags for /black page (anomal…
3206ed4 
…yco#8506)
@rekram1-node
ignore: add slash command to checks ai sdk deps
c0b43d3
@actions-user
chore: generate
d83756e
@rekram1-node
fix: adjust gitlab logic in provider.ts
1f86aa8
@rekram1-node @actions-user
chore: upgrade bun from 1.3.5 -> 1.3.6, also update types/bun from 1.…
50dfa9c 
…3.4 -> 1.3.6 and fix type errs (anomalyco#8499)

Co-authored-by: Github Action <[email protected]>
@rekram1-node
add check incase provider doesnt exist in models list
7d3c7a9
@samiulsami
feat(install): respect ZDOTDIR for zsh config detection (anomalyco#8511)
4d08123 
Signed-off-by: sami <[email protected]>
@rekram1-node
fix: plan path permissions
b3ae193
@thdxr
docs: add comprehensive security threat model and architecture docume…
207a59a 
…ntation
@thdxr
update security
6b6d6e9
@opencode-agent @rekram1-node
ci: dedup stuff in changelog (anomalyco#8522)
87438fb 
Co-authored-by: opencode-agent[bot] <opencode-agent[bot]@users.noreply.github.com>
Co-authored-by: rekram1-node <[email protected]>
@fwang
wip: black
9e4438f
@fwang
zen: gpt-5.2-codex
bbb3120
@rekram1-node
tweak: adjust lsp wording a bit more to encourage fixing
096e14d
@shuv1337
fix: skip system prompt for claude
18f4216
@shuv1337
Copy link
Collaborator Author

shuv1337 commented Jan 14, 2026

nevermind, dario just hates opencode. remove opencode references from system prompts and it works

@shuv1337 shuv1337 closed this Jan 14, 2026
@shuv1337 shuv1337 deleted the systemprompt-claude-skip branch January 14, 2026 23:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.