Skip to content

Release: v0.8.0

Choose a tag to compare

@shinpr shinpr released this 07 May 08:24
6e22c2f

Track latest CLI parameters and add a server-wide approval/sandbox knob.

Highlights

  • New env AGENT_PERMISSIONread-only / safe-edit (default) / yolo. Validated at startup. Threaded through to each backend CLI as the appropriate permission flag.
  • CLI flag updates — codex now runs with --skip-git-repo-check; gemini now runs with --skip-trust (required for headless runs in untrusted folders).
  • Permission flag mapping (default safe-edit shown):
    • codex: -s workspace-write -c approval_policy=never
    • claude: --permission-mode acceptEdits
    • gemini: --approval-mode auto_edit
    • cursor-agent: --trust

Breaking changes

  • Node ≥ 22.22.2 required (was >=22). Aligns with lint-staged@17 and the 22.x security-release line.
  • Sub-agents now receive permission flags by default. Behavior is unchanged for users who relied on each CLI's interactive default, except prompts that previously surfaced are now auto-approved within the workspace under safe-edit. Use AGENT_PERMISSION=read-only for review-style runs or yolo to bypass approvals entirely (use with care; sandbox depth varies per CLI — see README).

Full changelog: v0.7.1...v0.8.0