Release: v0.8.0
Track latest CLI parameters and add a server-wide approval/sandbox knob.
Highlights
- New env
AGENT_PERMISSION—read-only/safe-edit(default) /yolo. Validated at startup. Threaded through to each backend CLI as the appropriate permission flag. - CLI flag updates — codex now runs with
--skip-git-repo-check; gemini now runs with--skip-trust(required for headless runs in untrusted folders). - Permission flag mapping (default
safe-editshown):- codex:
-s workspace-write -c approval_policy=never - claude:
--permission-mode acceptEdits - gemini:
--approval-mode auto_edit - cursor-agent:
--trust
- codex:
Breaking changes
- Node ≥ 22.22.2 required (was
>=22). Aligns withlint-staged@17and the 22.x security-release line. - Sub-agents now receive permission flags by default. Behavior is unchanged for users who relied on each CLI's interactive default, except prompts that previously surfaced are now auto-approved within the workspace under
safe-edit. UseAGENT_PERMISSION=read-onlyfor review-style runs oryoloto bypass approvals entirely (use with care; sandbox depth varies per CLI — see README).
Full changelog: v0.7.1...v0.8.0