chore(deps): update ⬆️ aqua-packages

[renovate]

This PR contains the following updates:

Package	Update	Change
GoogleContainerTools/skaffold	minor	v2.16.1 -> v2.17.0
antonmedv/fx	minor	39.1.0 -> 39.2.0
aquaproj/aqua-registry	minor	v4.433.0 -> v4.435.0
awslabs/amazon-ecr-credential-helper	minor	v0.10.1 -> v0.11.0
casey/just	patch	1.43.0 -> 1.43.1
charmbracelet/crush	minor	v0.15.2 -> v0.18.1
cli/cli	patch	v2.83.0 -> v2.83.1
fastfetch-cli/fastfetch	minor	2.54.0 -> 2.55.0
golangci/golangci-lint	patch	v2.6.1 -> v2.6.2
kubernetes-sigs/kustomize	minor	v5.7.1 -> v5.8.0
openai/codex	minor	v0.55.0 -> v0.58.0
sst/opencode	patch	v1.0.39 -> v1.0.65
vitor-mariano/regex-tui	minor	v0.1.0 -> v0.3.0
walles/moor	minor	v2.8.1 -> v2.9.0
weaveworks/eksctl	minor	v0.216.0 -> v0.217.0
withgraphite/homebrew-tap	patch	v1.7.7 -> v1.7.8

---

Release Notes

GoogleContainerTools/skaffold (GoogleContainerTools/skaffold)

v2.17.0

Compare Source

Linux amd64
curl -Lo skaffold https://storage.googleapis.com/skaffold/releases/v2.17.0/skaffold-linux-amd64 && chmod +x skaffold && sudo mv skaffold /usr/local/bin

Linux arm64
curl -Lo skaffold https://storage.googleapis.com/skaffold/releases/v2.17.0/skaffold-linux-arm64 && chmod +x skaffold && sudo mv skaffold /usr/local/bin

macOS amd64
curl -Lo skaffold https://storage.googleapis.com/skaffold/releases/v2.17.0/skaffold-darwin-amd64 && chmod +x skaffold && sudo mv skaffold /usr/local/bin

macOS arm64
curl -Lo skaffold https://storage.googleapis.com/skaffold/releases/v2.17.0/skaffold-darwin-arm64 && chmod +x skaffold && sudo mv skaffold /usr/local/bin

Windows
https://storage.googleapis.com/skaffold/releases/v2.17.0/skaffold-windows-amd64.exe

Docker image
gcr.io/k8s-skaffold/skaffold:v2.17.0

Highlights:

New Features and Additions:

• feat(helm): Support Helm v4 for rendering and deployment, drop Helm v2 support for rendering since helm version --client parameter is not supported anymore in v4 #​9892
• Add support for workerpool resource. #​9852

Fixes:

• fix: Avoid sync retry if file/directory was not found #​9721
• fix: Enable registries with self-signed certificates #​9863
• fix: use print-access-token to allow iam impersonation #​9841
• fix: open skaffold-overrides.yaml: no such file or directory since up grading to skaffold "v2.15.0" (#​9788) #​9849
• fix: handle heredoc in Dockerfile #​9835
• fix: Update PrintNamespacesList to use a YAML parser for multiple manifest files (#​9825) #​9833
• fix: update debug skip probes annotation to be Kubernetes valid annotation #​9831
• fix: Update PrintNamespacesList to use a YAML parser for multiple manifest files #​9825
• fix(helm): Fix unformatted error message #​9814

Updates and Refactors:

Docs, Test, and Release Updates:

• chore: upgrade golang to 1.25.4 #​9909
• chore: bump rack from 2.2.14 to 2.2.20 in /integration/examples/ruby/backend #​9907
• chore: bump github.com/opencontainers/selinux from 1.12.0 to 1.13.0 #​9908
• chore: bump the golang group with 10 updates #​9905
• chore: bump github.com/containerd/containerd from 1.7.28 to 1.7.29 #​9903
• chore: fix the broken integration tests #​9904
• chore: bump the golang group with 3 updates #​9899
• chore: bump actions/upload-artifact from 4 to 5 in the github-actions group #​9897
• chore: bump the golang group with 2 updates #​9896
• chore: send one PR a week with all golang dependabot updates #​9888
• chore: tell dependabot to ignore the examples directories #​9887
• chore: upgrade the rest of the dependencies #​9886
• Fix minor typo in custom-actions.md #​9873
• chore: bump github/codeql-action from 3 to 4 #​9879
• chore: bump actions/setup-go from 5 to 6 #​9865
• chore: bump ossf/scorecard-action from 2.4.2 to 2.4.3 #​9874
• chore: upgrade a lot of dependencies #​9884
• test: fix the Cloud Run Worker Pool integration test #​9885
• chore: upgrade golang to 1.25.3 #​9882
• chore: upgrade golangcli-lint #​9881
• chore: pin the Windows unit tests to Windows 2022. #​9880
• chore: upgrade to Go 1.25.0 #​9859
• chore: bump github.com/go-viper/mapstructure/v2 from 2.3.0 to 2.4.0 #​9854
• chore: bump actions/checkout from 4 to 5 #​9851
• chore: bump actions/setup-java from 4 to 5 #​9858
• chore: bump github.com/go-viper/mapstructure/v2 from 2.2.1 to 2.3.0 #​9836
• [bug]: Support helm depBuild flags for helm deploys #​9808
• Fix a small typo in helm documentation #​9847
• chore: fix the proto generation #​9844
• chore: fix the scorecard-action #​9842
• chore: bump golang.org/x/oauth2 from 0.7.0 to 0.27.0 in /integration/examples/grpc-e2e-tests/cloud-spanner-bootstrap #​9840
• chore: updates to the GitHub Actions workflows #​9822
• chore: bump rack from 2.2.13 to 2.2.14 in /integration/examples/ruby/backend #​9818
• chore: reduce dependabot PRs #​9819
• chore: bump rack from 2.2.13 to 2.2.14 in /examples/ruby/backend #​9817
• doc: state default parameter for manifests::rawYaml #​9816
• cicd: migrate internal build config to internal config repository. #​9810
• docs: add a KEYS file for verifying our releases #​9813

Huge thanks goes out to all of our contributors for this release:

• Andreas Sommer
• Darien Lin
• dependabot[bot]
• Halvard Skogsrud
• Kaarel Raspel
• Katie Zhang
• Marcin Skalski
• Matt Santa
• menahyouyeah
• Michael Plump
• MochikoNyan
• Nelson Chen
• Paridhi Shah
• Sławek Zborowski
• Steve Foster
• Suleiman Dibirov
• timtlchen
• Vihang Mehta

antonmedv/fx (antonmedv/fx)

v39.2.0

Compare Source

Fx is terminal JSON viewer & processor.

In this release:

• Improved filtering for streaming mode
  Now it is possible to use ?.value >= 42 filter in streaming mode.
• Improved map func to work in streaming mode as well.

aquaproj/aqua-registry (aquaproj/aqua-registry)

v4.435.0

Compare Source

Issues | Pull Requests | aquaproj/aqua-registry@v4.434.0...v4.435.0

🎉 New Packages

#​43910 cirruslabs/cirrus-cli - CLI for executing Cirrus tasks locally and in any CI @​djgoku

Fixes

#​44106 Re-scaffold phiresky/ripgrep-all

Security

#​43857 topgrade-rs/topgrade: GitHub artifact attestations config @​scop
#​44024 axodotdev/cargo-dist: GitHub artifact attestations config @​scop

v4.434.0

Compare Source

Issues | Pull Requests | aquaproj/aqua-registry@v4.433.0...v4.434.0

🎉 New Packages

#​44060 CrociDB/bulletty: bulletty is a pretty feed reader for the terminal that stores the articles as Markdown
#​44058 Gaurav-Gosain/tuios: Terminal UI OS (Terminal Multiplexer)
#​44059 ck-zhang/reddix: Reddix – Reddit, refined for the terminal
#​43836 hokaccha/spannerdef: Idempotent Google Cloud Spanner schema management by SQL, inspired by sqldef @​yukukotani
#​44061 lasantosr/intelli-shell: Like IntelliSense, but for shells

Improvement

#​43941 flutter/flutter: Enable to change Flutter channel @​yumafuu

e.g.

packages:
  - name: flutter/flutter
    version: 3.38.0-0.2.pre
    vars:
      channel: beta

Fixes

#​44057 Re-scaffold cue-lang/cue
#​43790 Rename the package microsandbox/microsandbox to zerocore-ai/microsandbox

awslabs/amazon-ecr-credential-helper (awslabs/amazon-ecr-credential-helper)

v0.11.0: Amazon ECR Credential Helper - Release v0.11.0

Compare Source

• Add support for AWS EUSC partition (#​1034).
• Upgrade dependencies.

Assets

• release.tar.gz (SHA256)
• release-novendor.tar.gz (SHA256)
• linux-amd64/docker-credential-ecr-login (SHA256)
• linux-arm64/docker-credential-ecr-login (SHA256)
• darwin-amd64/docker-credential-ecr-login (SHA256)
• darwin-arm64/docker-credential-ecr-login (SHA256)
• windows-amd64/docker-credential-ecr-login.exe (SHA256)
• windows-arm64/docker-credential-ecr-login.exe (SHA256)

casey/just (casey/just)

v1.43.1

Compare Source

Fixed

• Only initialize signal handler once (#​2953 by casey)
• Preserve module docs when formatting (#​2931 by casey)
• Preserve module groups when formatting (#​2930 by casey)
• Don't suggest private recipes and aliases (#​2916 by casey)

Misc

• Update softprops/action-gh-release to 2.4.2 (#​2948 by app/dependabot)
• Fix env() usage in readme (#​2936 by laniakea64)
• Use a case statement to install target dependencies (#​2929 by casey)
• Build loongarch64 release binaries (#​2886 by SkyBird233)
• Bump softprops/action-gh-release to 2.4.1 (#​2919 by app/dependabot)
• Update softprops/action-gh-release to 2.3.4 (#​2910 by app/dependabot)

charmbracelet/crush (charmbracelet/crush)

v0.18.1

Compare Source

OMG! GPT-5.1!

This update adds support for gpt-5.1, gpt-5.1-codex, gpt-5.1-codex-mini. Get it now!

Docs

• 882914d: docs(readme): add initialize_as (#​1438) (@​Amolith)

Other Stuff

• 7af916b: chore: update fantasy & add support for gpt-5.1 (#​1439) (@​kujtimiihoxha)

---

Verifying the artifacts

First, download the checksums.txt file, for example, with wget:

wget 'https://github.com/charmbracelet/crush/releases/download/v0.18.1/checksums.txt'

Then, verify it using cosign:

cosign verify-blob \
  --certificate-identity 'https://github.com/charmbracelet/meta/.github/workflows/goreleaser.yml@refs/heads/main' \
  --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' \
  --cert 'https://github.com/charmbracelet/crush/releases/download/v0.18.1/checksums.txt.pem' \
  --signature 'https://github.com/charmbracelet/crush/releases/download/v0.18.1/checksums.txt.sig' \
  ./checksums.txt

If the output is Verified OK, you can safely use it to verify the checksums of other artifacts you downloaded from the release using sha256sum:

sha256sum --ignore-missing -c checksums.txt

Done! You artifacts are now verified!

Thoughts? Questions? We love hearing from you. Feel free to reach out on X, Discord, Slack, The Fediverse, Bluesky.

v0.18.0

Compare Source

Alright, alright: AGENTS.md

Crush will now default to creating an AGENTS.md by default on new projects, instead of the CRUSH.md you know and love. This all in effort of standards and is another step to more closely following that convention. If your project still has a CRUSH.md file, don't worry. We'll still read that if available.

Like things the old way? Want to use a different filename altogether? Cool: you can customize the behavior.

This is, of course, another feature from our hot contributor friend, @​Amolith.

Thanks, and see you in the next release! 💘

Changelog

New!

• 4e40b47: feat(config): default to AGENTS.md w/ new setting (#​1403) (@​Amolith)

Fixed

• c094eaf: fix(test): set a fixed attribution to avoid system prompt mismatch (@​andreynering)

---

Verifying the artifacts

First, download the checksums.txt file, for example, with wget:

wget 'https://github.com/charmbracelet/crush/releases/download/v0.18.0/checksums.txt'

Then, verify it using cosign:

cosign verify-blob \
  --certificate-identity 'https://github.com/charmbracelet/meta/.github/workflows/goreleaser.yml@refs/heads/main' \
  --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' \
  --cert 'https://github.com/charmbracelet/crush/releases/download/v0.18.0/checksums.txt.pem' \
  --signature 'https://github.com/charmbracelet/crush/releases/download/v0.18.0/checksums.txt.sig' \
  ./checksums.txt

If the output is Verified OK, you can safely use it to verify the checksums of other artifacts you downloaded from the release using sha256sum:

sha256sum --ignore-missing -c checksums.txt

Done! You artifacts are now verified!

Thoughts? Questions? We love hearing from you. Feel free to reach out on X, Discord, Slack, The Fediverse, Bluesky.

v0.17.0

Compare Source

It’s all about @​Amolith

Star contributor @​Amolith rolled in hot this release with a series of fixes and improvements. Let's get into it!

This Year’s Model

There are a lot of models available in Crush. If you’re like @​Amolith you usually switch between a few of your faves—and now that's a lot easier to do as your recently chosen models are now automatically collected at the top of the model chooser. It's quite handy!

Assisted-by is the New Co-Authored-by

The Fedora Council recently put together some guidelines for disclosing AI assistance in open source. We think the guidelines are really cool, and so does @​Amolith—and he took it upon himself to make this vision a reality in Crush.

Assisted-by: Claude Sonnet 4.5 via Crush

This is currently opt-in, and the behavior is customizable.

Other Stuff

@​danielmerja, @​caarlos0, and @​kujtimiihoxha rolled in hot with a bunch fixes and, of course, no release would be complete without the fine detail work of @​andreynering. Cheers everyone, and thanks for the contributions.

Let us know what you think and enjoy the release! 💘

Changelog

New!

• 7b47c6c: feat(config): add trailer_style option (@​Amolith)
• 27093ea: feat(config): migrate deprecated co_authored_by (@​Amolith)
• fa28347: feat: recent models section in picker (#​1374) (@​Amolith)

Fixed

• 425d873: fix(bash): use model name instead of ID (@​Amolith)
• 5a7c715: fix(mcp): client being killed (#​1419) (@​caarlos0)
• 665ee06: fix: append ImageURLContent part in unmarshallParts (#​1387) (@​danielmerja)
• e9b30f7: fix: recent models test (@​kujtimiihoxha)

Docs

• 025d604: docs(readme): move "local models" section to be under "custom providers" (#​1402) (@​andreynering)

Other stuff

• c9ca0b7: chore(task): fetch tags before installing (@​meowgorithm)
• 02329dc: chore(taskfile): add task to record all cassettes (@​andreynering)
• b095afd: chore: record all cassettes after fantasy update (@​andreynering)
• 4e244de: chore: update fantasy to v0.2.1 (@​andreynering)
• ef1990a: refactor(bash): make whitespace conform to spec (@​Amolith)

---

Verifying the artifacts

First, download the checksums.txt file, for example, with wget:

wget 'https://github.com/charmbracelet/crush/releases/download/v0.17.0/checksums.txt'

Then, verify it using cosign:

cosign verify-blob \
  --certificate-identity 'https://github.com/charmbracelet/meta/.github/workflows/goreleaser.yml@refs/heads/main' \
  --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' \
  --cert 'https://github.com/charmbracelet/crush/releases/download/v0.17.0/checksums.txt.pem' \
  --signature 'https://github.com/charmbracelet/crush/releases/download/v0.17.0/checksums.txt.sig' \
  ./checksums.txt

If the output is Verified OK, you can safely use it to verify the checksums of other artifacts you downloaded from the release using sha256sum:

sha256sum --ignore-missing -c checksums.txt

Done! You artifacts are now verified!

Thoughts? Questions? We love hearing from you. Feel free to reach out on X, Discord, Slack, The Fediverse, Bluesky.

v0.16.1

Compare Source

Small Quality of Life ™️ improvements

Some highlights of this release, mostly focused on QoL:

• When an API call to the provider fails, we're now presenting more useful error messages. (We want to improve this even further with time!)
• In the same area, a bug was fixed for some OpenAI compatible providers where errors were basically blank. We're now showing a meaningful error message so you can better understand what gone wrong.
• Retries were happening more times than we intended. This is now fixes and the relevant errors (too many requests, etc) will be retried up to 2 extra times only.
• Some rendering fixes were made on the TUI.

Have a great weekend!

Changelog

Fixed

• 07a4738: fix: improve ux for presenting errors from providers (#​1388) (@​andreynering)

Other stuff

• 87df66d: chore: upgrade dependencies and fix related code (#​1404) (@​aymanbagabas)

---

Verifying the artifacts

First, download the checksums.txt file, for example, with wget:

wget 'https://github.com/charmbracelet/crush/releases/download/v0.16.1/checksums.txt'

Then, verify it using cosign:

cosign verify-blob \
  --certificate-identity 'https://github.com/charmbracelet/meta/.github/workflows/goreleaser.yml@refs/heads/main' \
  --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' \
  --cert 'https://github.com/charmbracelet/crush/releases/download/v0.16.1/checksums.txt.pem' \
  --signature 'https://github.com/charmbracelet/crush/releases/download/v0.16.1/checksums.txt.sig' \
  ./checksums.txt

If the output is Verified OK, you can safely use it to verify the checksums of other artifacts you downloaded from the release using sha256sum:

sha256sum --ignore-missing -c checksums.txt

Done! You artifacts are now verified!

Thoughts? Questions? We love hearing from you. Feel free to reach out on X, Discord, Slack, The Fediverse, Bluesky.

v0.16.0

Compare Source

Jobs!

The big, new feature today is background jobs! Crush can spawn and manage background jobs. Spin up servers, run parallel builds, and go crazy. The asynchronous world is now at your (LLM’s) fingertips.

Let us know what you think! 💘

Changelog

New!

• 4401d5b37f037b712d5b493bb94ba04f5bb6be3c: feat: background jobs & remove persistent shell (#​1328) (@​kujtimiihoxha)

Other stuff

• a8f90ff06ce66abb19b7e9a847cf20d8e60ef67c: chore: remove flaky tests (@​kujtimiihoxha)

---

Verifying the artifacts

First, download the checksums.txt file, for example, with wget:

wget 'https://github.com/charmbracelet/crush/releases/download/v0.16.0/checksums.txt'

Then, verify it using cosign:

cosign verify-blob \
  --certificate-identity 'https://github.com/charmbracelet/meta/.github/workflows/goreleaser.yml@refs/heads/main' \
  --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' \
  --cert 'https://github.com/charmbracelet/crush/releases/download/v0.16.0/checksums.txt.pem' \
  --signature 'https://github.com/charmbracelet/crush/releases/download/v0.16.0/checksums.txt.sig' \
  ./checksums.txt

If the output is Verified OK, you can safely use it to verify the checksums of other artifacts you downloaded from the release using sha256sum:

sha256sum --ignore-missing -c checksums.txt

Done! You artifacts are now verified!

Thoughts? Questions? We love hearing from you. Feel free to reach out on X, Discord, Slack, The Fediverse, Bluesky.

cli/cli (cli/cli)

v2.83.1: GitHub CLI 2.83.1

Compare Source

What's Changed

🐛 Fixes

• gh pr edit: Ensure empty arrays for reviewers in PR API calls by @​BagToad in #​12122

📚 Docs & Chores

• Integrate license checks back into lint workflow by @​BagToad in #​12112
• Update third-party licenses and dependencies by @​BagToad in #​12123

Dependencies

• chore(deps): bump golangci/golangci-lint-action from 8.0.0 to 9.0.0 by @​dependabot[bot] in #​12134

Full Changelog: cli/cli@v2.83.0...v2.83.1

fastfetch-cli/fastfetch (fastfetch-cli/fastfetch)

v2.55.0

Compare Source

Changes:

• Commands are now executed in parallel by default to improve performance (#​2045, Command)
  • This behavior can be disabled in the config file with "parallel": false if it causes problems with certain scripts
• Folder/filesystem hiding is moved to the detection stage; hidden entries are no longer probed, improving performance (#​2043, Disk)

Features:

• Adds command.parallel and command.useStdErr config options (Command)
  • parallel: set to false to disable parallel execution (see Changes above)
  • useStdErr: set to true to use stderr output instead of stdout
• Adds the command-line flag --dynamic-interval <interval-in-ms> to enable dynamic output auto-refresh (#​2041)
  • Due to internal limitations, some modules do not support dynamic updates (notably Display and Media)
• Adds support for using the current playing media's cover art as a logo source (Media / Logo)
  • Usage: "logo": { "type": "<image-protocol>", "source": "media-cover" } in JSON config; or --<image-protocol> media-cover in command line
  • Supports local sources only
• Adds native GPU detection support on OpenBSD and NetBSD (instead of depending on libpciaccess) (GPU)
  • No functional changes
  • Root privileges are required to access PCI config space on OpenBSD (as always)
• Adds GPU detection support on GNU/Hurd (GPU)
  • Requires building with libpciaccess
• Shows Debian point release on Raspberry Pi OS (#​2032, OS, Linux)
• Adds Brush shell version detection (Shell)
• Improves Mac family detection via prefix matching (Host)

Bugfixes:

• Ignores run-parts during terminal/shell detection (#​2048, Terminal / Shell, Linux)
• Fixes fish version detection when LC_ALL is set (#​2014, Shell, Linux)
• Hides the module when no desktop icons are found (#​2023, Icons, Windows)
• Skips auxiliary display controllers to prevent the module from reporting duplicate entries (#​2034, GPU, Linux)
• Refines Apple rpath handling; fixes building for the Homebrew version on macOS (#​1998, CMake)

Logos:

• Adds Vincent OS and MacaroniOS

golangci/golangci-lint (golangci/golangci-lint)

v2.6.2

Compare Source

1. Bug fixes
   • fmt command with symlinks
   • use file depending on build configuration to invalidate cache
2. Linters bug fixes
   • testableexamples: from 1.0.0 to 1.0.1
   • testpackage: from 1.1.1 to 1.1.2

kubernetes-sigs/kustomize (kubernetes-sigs/kustomize)

v5.8.0

Compare Source

Highlights

implements to replacements value in the structured data

Now, We can edit yaml/json in yaml manifests with replacements transformer.
See #​5679

For example

## source
apiVersion: v1
kind: ConfigMap
metadata:
  name: source-configmap
data:
  HOSTNAME: www.example.com
---
apiVersion: v1
kind: ConfigMap
metadata:
  name: target-configmap
data:
  config.json: |-
    {"config": {
      "id": "42",
      "hostname": "REPLACE_TARGET_HOSTNAME"
    }}

## replacement
replacements:
- source:
    kind: ConfigMap
    name: source-configmap
    fieldPath: data.HOSTNAME
  targets:
  - select:
      kind: ConfigMap
      name: target-configmap
    fieldPaths:
    - data.config\.json.config.hostname

fix: Propagate Namespace correctly to Helm

The long-standing bug where kustomize's namespace transformer did not pass namespaces to helmCharts has been fixed.
See #​5940

For example

## define namespace
namespace: any-namespace

helmCharts:
- name: minecraft
  repo: https://kubernetes-charts.storage.googleapis.com
  version: v1.2.0
  # namespace: any-namespace   ## propagates without additional namespace specific
  valuesFile: values.yaml

Feature

#​5679: implements to replacements value in the structured data
#​5863: Add regex support for Replacement selectors
#​5930: feat: add PatchArgs API type to populate patch options

fix

#​5940: fix: Propagate Namespace correctly to Helm
#​5971: fix: performance recession when propagating namespace to helm
#​5942: fix fnplugin storagemounts validation
#​5958: fix: make AbsorbAll conflict error more verbose
#​5961: refactor: nested format string
#​5967: Fix infinite loop in HTTP client by validating URLs before requests
#​5985: fix(kyaml/yaml): minor nil safety fix for RNode.Content etc
#​5991: Fix duplicate key error when adding multiple labels with --without-selector

Dependencies

#​5962: chore: update dependencies from security alert
#​5959: update go 1.24.6

chore

#​6007: Update kyaml to v0.21.0
#​6008: Update cmd/config to v0.21.0
#​6009: Update api to v0.21.0

openai/codex (openai/codex)

v0.58.0: 0.58.0

Compare Source

Highlights

• Support for gpt5.1 models family. Read more
• App server enhancements: new JSON schema generator command, item started/completed events, macro cleanup, reduced boilerplate, and tightened duplicate-code hygiene (#​6406 #​6517 #​6470 #​6488).
• Quality of life fixes: doc updates (web_search, SDK, config), TUI shortcuts inline, seatbelt/Wayland/brew/compaction/cloud-tasks bugfixes, clearer warnings, auth-aware status output, and OTEL test stabilization (#​5889 #​6424 #​6425 #​6376 #​6421 #​4824 #​6238 #​5856 #​6446 #​6529 #​6541).

PRs Merged

• #​6381 — Improve world-writable scan (917f39ec1)
• #​5889 — feat(tui): Display keyboard shortcuts inline for approval options (5beb6167c)
• #​6389 — more world-writable warning improvements (a47181e47)
• #​6425 — Fix SDK documentation: replace “file diffs” with “file change notifications” (8b80a0a26)
• #​6421 — fix(seatbelt): Allow reading hw.physicalcpu (c07461e6f)
• #​5856 — fix(cloud-tasks): respect cli_auth_credentials_store config (5f1fab0e7)
• #​6387 — For npm upgrade on Windows, go through cmd.exe to get path traversal working (625f2208c)
• #​6437 — chore(deps): bump codespell-project/actions-codespell from 2.1 to 2.2 (7c7c7567d)
• #​6438 — chore(deps): bump taiki-e/install-action from 2.60.0 to 2.62.49 (082d2fa19)
• #​6443 — chore(deps): bump askama from 0.12.1 to 0.14.0 in /codex-rs (78b2aeea5)
• #​6444 — chore(deps): bump zeroize from 1.8.1 to 1.8.2 in /codex-rs (e2598f509)
• #​6446 — Fix warning message phrasing (131c38436)
• #​6424 — Fix config documentation: correct TOML parsing description (557ac6309)
• #​6454 — Move compact (50a77dc13)
• #​6376 — Updated docs to reflect recent changes in web_search configuration (65cb1a1b7)
• #​6407 — fix: use generate_ts from app_server_protocol (42683dadf)
• #​6419 — Support exiting from the login menu (b46012e48)
• #​6422 — Don’t lock PRs that have been closed without merging (591615315)
• #​6406 — [app-server] feat: add command to generate json schema (fbdedd9a0)
• #​6238 — fix: update brew auto update version check (788badd22)
• #​6433 — Add opt-out for rate limit model nudge (e743d251a)
• #​6246 — Add user command event types (980886498)
• #​6466 — feat: add workdir to unified_exec (f01f2ec9e)
• #​6468 — [app-server] chore: move initialize out of deprecated API section (2ac49fea5)
• #​4824 — Fix wayland image paste error (52e97b9b6)
• #​4098 — add codex debug seatbelt --log-denials (0271c20d8)
• #​6477 — refactor(tui): job-control for Ctrl-Z handling (60deb6773)
• #​6470 — [app-server] update macro to make renaming methods less boilerplate-y (3838d6739)
• #​6478 — upload Windows .exe file artifacts for CLI releases (9aff64e01)
• #​6482 — flip rate limit status bar (930f81a17)
• #​6480 — Use codex-linux-sandbox in unified exec (6c36318bd)
• #​6489 — Colocate more of bash parsing (bb7b0213a)
• #​6488 — [hygiene][app-server] have a helper function for duplicate code in turn APIs (695187277)
• #​6041 — Enable ghost_commit feature by default (052b05283)
• #​6503 — nit: logs to trace (ad279eacd)
• #​6492 — Add unified exec escalation handling and tests (807e2c27f)
• #​6517 — [app-server] add item started/completed events for turn items (e357fc723)
• #​6523 — Update full-auto description with on-request (eb1c651c0)
• #​6528 — Re-add prettier log-level=warn to generate-ts (424bfecd0)
• #​6507 — feat: warning switch model on resume (530db0ad7)
• #​6510 — feat: shell_command tool (29364f3a9)
• #​6516 — chore: verify boolean values can be parsed as config overrides (c3a710ee1)
• #​6541 — Fix otel tests (7d9ad3eff)
• #​6534 — feat: only wait for mutating tools for ghost commit (e00eb50db)
• #​6529 — Fixed status output to use auth information from AuthManager (ad09c138b)
• #​6551 — Add gpt-5.1 model definitions (ec69a4a81)
• #​6558 — Do not double encode request bodies in logging (2f58e6999)
• #​6483 — [app-server] feat: thread/resume supports history, path, and overrides (964220ac9)
• #​6561 — NUX for gpt5.1 (e63ab0dd6)
• #​6568 — Set verbosity to low for 5.1 (f97874093)
• #​6567 — Update subtitle of model picker as part of the nux (966d71c02)
• #​6569 — Change model picker to include gpt5.1 (ad7eaa80f)
• #​6575 — Avoid hang when tool’s process spawns grandchild that shares stderr/stdout (73ed30d7e)
• #​6580 — remove porcupine model slug (b1979b70a)
• #​6583 — feat: show gpt mini (e3aaee00c)
• #​6585 — copy for model migration nudge (305fe73d8)
• #​6586 — Reasoning level update (e3dd362c9)
• #​6593 — Default to explicit medium reasoning for 5.1 (34621166d)
• #​6588 — chore(core) Update prompt for gpt-5.1 (8dcbd29ed)
• #​6597 — feat: proxy context left after compaction (2a417c47a)
• #​6589 — fix model picker wrapping (ba74cee6f)

v0.57.0: 0.57.0

Compare Source

Highlights

• TUI quality-of-life: ctrl-n/p navigation for slash command lists and backtracking skips the /status noise.
• Improve timeout on long running commasnds

PRs Merged

• #​6233 – Freeform unified exec output formatting
• #​6342 – Make generate_ts prettier output warn-only
• #​6335 – TUI: fix backtracking past /status
• #​1994 – Enable CTRL-n/CTRL-p for navigating slash commands, files, history
• #​6340 – Skip retries on insufficient_quota errors
• #​6345 – Remove shell tool when unified exec is enabled
• #​6347 – Refresh AI labeler rules to match issue tracker labels
• #​6346 – Prefer wait_for_event over wait_for_event_with_timeout (initial update)
• #​5486 – Fix apply_patch rename/move path resolution
• #​6349 – Prefer wait_for_event over `wait_

---

Configuration

📅 Schedule: Branch creation - "after 4pm on thursday" in timezone America/Los_Angeles, Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.