v1.2.6

Minor Compatibility and Stability Release

This release carries compatibility-facing behavior changes and operational hardening. Read the summary below before upgrading or publishing.

• fixed wrapped non-auth Codex commands so successful forwarded request traffic increments persisted runtime observability counters
• added a wrapper fallback path that records forwarded request metrics only when the child Codex process leaves the runtime snapshot unchanged, avoiding double-counting when plugin-side metrics are present
• preserved the existing codex auth observability behavior while making real codex exec smoke runs visible in codex auth status and codex auth report --json
• added regression coverage for both missing-child-update and already-updated snapshot cases in the wrapper test suite

Commit Summary

• a76b67c docs: clarify v1.2.5 observability wording
• e99d641 release: ship v1.2.6 forwarded observability fix

v1.2.5

Minor Compatibility and Stability Release

This release carries compatibility-facing behavior changes and operational hardening. Read the summary below before upgrading or publishing.

• added runtime counters, cooldown state, selection reason, and storage-health observability to codex auth status and codex auth report --json, with visible tracking for multi-auth probes and refresh activity
• added safer live report controls with --max-accounts, --max-probes, and --cached-only so operators can inspect state without probing the full pool
• disabled default whole-pool replay when every account is rate-limited and capped outbound request attempts per prompt to prevent runaway cross-account retries
• tightened retry and failover behavior for 429s, upstream 5xx bursts, empty responses, and stream replay so partial output is not re-emitted and aggressive rotation cools down sooner

Commit Summary

• 353de84 refactor: remove dead runtime metrics helper module
• 6e42f28 refactor: share forecast and report command helpers
• a17a58c refactor: remove unsafe overload casts in parallel probe
• 7a713ad fix: make account clear reset atomic
• 2ab9dd9 fix: persist report refreshes before mutating state
• 89bafc4 fix: prevent stale prompt cache session overwrites
• 2a4324a fix: serialize concurrent runtime cache writes
• 37d260b fix: recreate live account sync on config changes
• f71fd30 fix: check remapped errorResponse status for 404->429 usage_limit rotation
• c1223f4 test: add 4 broader scenarios for 404->429 rotation path
• 7026dfe fix: narrow 404 usage-limit remapping
• dd05d20 fix: stop quota scheduler cooldown drift

v1.2.4

Minor Compatibility and Stability Release

This release carries compatibility-facing behavior changes and operational hardening. Read the summary below before upgrading or publishing.

• added deterministic regressions for flagged-account backup and legacy read retries so transient Windows EBUSY locks stay covered
• pinned the persistRecoveredBackup -> false path so failed backup persistence does not report a false successful recovery
• tightened test cleanup so fs.readFile spies are restored from finally and cannot leak across later Vitest cases
• removed the dead inline return from the Codex wrapper mutator script used by the delayed-write retry regression

Commit Summary

• 080d046 fix-report-live-token-freshness-handling
• bafd2c8 fix-runtime-recovery-token-restore-safety
• cef0db1 "fix-storage-path-context-for-deferred-saves"
• 7dbf9b0 fix(wrapper): make windows shell guards opt-in
• acb932b docs(releases): align stable docs with 1.2.2
• 5c9efed ci: mirror release harness checks on push
• 72a115e test(accounts): deflake tracker stability assertion
• 3f3c0c6 Scope pool lastUsed preservation
• b9d7c2f Fix storage path state save race
• 115d8e8 Fix Windows profile guard opt-in
• 60597f8 Add runtime persistence failure coverage
• d3178f2 Wire runtime verify-flagged atomic persistence

v1.2.2

Minor Compatibility and Stability Release

This release carries compatibility-facing behavior changes and operational hardening. Read the summary below before upgrading or publishing.

• Hardened fast-expiry refresh persistence so refreshed token and account state survive account-pool writes.
• Realigned account-pool health handling across success healing, guardian penalties, circuit-breaker penalties, and reason-scoped rate limiting.
• Tightened stable identity reconciliation for guardian refresh outcomes and runtime tracker state.
• Persisted refreshed auth from forecast and report live probes and improved expired CLI cache hydration.

Commit Summary

• 53488ef Add Codex plugin manifest and setup skill
• 9cbc72a fix: harden fast-expiry token refresh persistence
• adbf49a fix: heal stale pool penalties after success
• 27a0d1e fix: reconcile guardian refresh outcomes by stable identity
• 66d2d63 fix: prefer fresh access tokens during account selection
• 45a7ee6 fix: hydrate newer refresh tokens from expired cli cache
• bfb6a33 fix: graduate refresh guardian failure penalties
• 7f512c3 fix: heal stale cooldown metadata on success
• 9b6b824 test: cover fresh family selection happy path
• 7cb4d4f fix: guard cli refresh token hydration by freshness
• 6e6781a fix: clear guardian auth streaks on non-auth outcomes
• c97350c fix: harden guardian identity reconciliation

v1.2.1

Minor Compatibility and Stability Release

This release carries compatibility-facing behavior changes and operational hardening. Read the summary below before upgrading or publishing.

• Added codex auth forecast --explain support and related regression coverage.
• Aligned GPT-5 model routing with current OpenAI defaults.
• Added package subpath exports and tightened shipped config/public API coverage.
• Added maintainer runbooks and refreshed onboarding and command guidance.

Commit Summary

• 7065009 test: cover runtime benchmark script
• 26cdb9e Use retry-safe cleanup in wrapper smoke test
• 7d44c75 Use retry-safe benchmark cleanup
• 75a6a6b Exercise target loader retry wiring
• c328fc7 Exercise sync target retry wiring
• 3e44d11 Preserve experimental settings entry types
• 3be4df4 Tighten named backups entry coverage
• 6de0144 Fail fast on benchmark test hangs
• 9e13a24 align gpt-5 model routing with current OpenAI defaults
• 173d64f add responses continuation request contract support
• 9968ba8 enhance responses parser for semantic SSE events
• 71d44c7 add response compaction fallback for fast sessions

v1.2.0

Minor Compatibility and Stability Release

This release carries compatibility-facing behavior changes and operational hardening. Read the summary below before upgrading or publishing.

• Added headless-friendly auth login with manual callback support for environments where browser launch or the local callback listener is unavailable.
• Preserved selected workspace routing across retries and fallback paths instead of collapsing back to mutable token-derived identity.
• Added proxy-compatible upstream transport, workspace-disabled auto-rotation, onboarding restore from the latest saved backup, and restored experimental settings hotkeys.

Commit Summary

• 57fd770 feat(cli): add 'codex auth best' command for automatic best account switching
• f82a748 add-manual-login-mode-for-headless-auth-flows
• f539e9e fix(runtime):preserve-selected-workspace-in-request-routing
• 7b40b05 feat(runtime): add proxy-compatible upstream transport
• b526074 chore(lockfile): normalize undici dependency entry
• 3953d5d fix(auth): skip callback wait in manual login mode
• 8f91ee3 fix(auth): skip callback wait in manual login mode
• 5972554 fix(auth): honor explicit no-browser env toggles
• 91ec5a9 fix(runtime): preserve fallback account source on snapshot updates
• aa88882 fix(proxy): drain shared dispatchers on shutdown
• 73e0811 fix(auth): honor explicit no-browser env toggles
• bbbf67a fix(runtime): preserve fallback account source on snapshot updates

v1.1.11

Minor Compatibility and Stability Release

This release carries compatibility-facing behavior changes and operational hardening. Read the summary below before upgrading or publishing.

• Fixed quota-cache key collisions for multi-workspace accounts that share the same email.
• Rebuilt live quota fallback state after auth check and auth fix refreshes change shared-workspace identity fields.
• Hardened live quota cache persistence so failed saves do not mutate the loaded cache object during forecast, check, or fix flows.

Commit Summary

• b918aac fix(quota): keep multi-workspace fallbacks distinct (#122)

v1.1.10

Minor Compatibility and Stability Release

This release carries compatibility-facing behavior changes and operational hardening. Read the summary below before upgrading or publishing.

• Added codex auth best for forecast-driven active-account switching from the CLI.
• Hardened live probe refresh handling so rotated access, refresh, and ID tokens stay aligned through the already-best and switch paths.
• Tightened auth best CLI validation and JSON output coverage for help, malformed flags, null storage, concurrency, and sync-state edge cases.

Commit Summary

• a823684 fix installation step causing EEXIST
• f3c06f8 Merge pull request #97 from zamadye/fix/readme-install-collision
• b329cf4 Initial plan
• db5758e Preserve workspace bindings across refresh flows
• 223bdc1 Fix storage typecheck regressions
• 4973a20 Fix remaining workspace binding review issues
• 9ab3669 Fix account support for mutable workspace after login (#117)
• 04c0151 feat(cli): add codex auth best account switching (#120)
• 1d404f9 chore(release): bump version to 1.1.10 and publish notes

v0.1.9

Minor Compatibility and Stability Release

This release carries compatibility-facing behavior changes and operational hardening. Read the summary below before upgrading or publishing.

• Preserved distinct business accounts that share a workspace accountId so no-email login, refresh, and restore paths stop overwriting sibling seats.
• Aligned guarded identity matching across runtime login, CLI recovery, storage normalization, import preview/apply, and entitlement tracking.
• Hardened rollback and regression coverage for concurrent persistence, flagged-account recovery, malformed-token rows, and shared-workspace edge cases.

Commit Summary

• 6dc2521 chore(release): sync npm version to v0.1.8
• f262b7e fix(accounts): preserve business accounts sharing workspace ids
• 56fbac1 Fix ambiguous shared account identity matching
• 98423af Use transactional CLI persistence and ignore malformed duplicate ids
• 54f2145 Handle safe unique accountId fallback in remaining paths
• 71fbc5d Fix remaining business account identity regressions
• eeda014 Tighten flagged recovery transaction tests
• 62ae69e fix: roll back flagged recovery partial writes
• 002d708 test: align shared account identity expectation
• 2aa84ce fix: harden business account identity regressions
• 40303a1 Fix shared-account runtime cache identity
• 2c60f92 fix: cover rollback double-failure path

v0.1.8

Minor Compatibility and Stability Release

This release carries compatibility-facing behavior changes and operational hardening. Read the summary below before upgrading or publishing.

• Folded the remaining stacked settings and sync work into the stable release, including experimental settings flows, backend primitive extraction, and wrapper non-TTY behavior docs.
• Hardened account and flagged-account reset recovery so intentional clears suppress stale revival paths even when primary files survive an initial delete failure.
• Kept Codex CLI sync mirror-only while adding preview-first oc-chatgpt sync, named backup export, and richer target detection on top of the same canonical storage model.

Commit Summary

• 9a9ff97 test(settings): expand regression harness coverage
• 5cea2f1 test(settings): make cleanup retry-safe on Windows
• 7b27630 feat(sync): add oc target detection
• bdb883d feat(sync): add oc import adapter
• f53c48b feat(sync): add named backup storage wrappers
• 97482a1 fix(sync): harden backend path and selection handling
• b92fec6 feat(sync): add oc sync orchestration
• 80907f9 feat(settings): add experimental settings flows
• 573c6dc test(settings): cover experimental settings flows
• 7dfb367 docs(settings): document experimental settings
• 797b4e1 fix(settings): harden experimental target loading
• d89b462 docs(cli): document wrapper non-tty behavior