What's Changed
Security Fixes
- Restored allowlist enforcement in MCP agent role validation (#519) — dual validation (regex + discovered-role membership) in both codex-core and gemini-core, preventing unknown roles from being accepted
- Elevated scan-failure logging to CRITICAL level for fail-closed observability
Bug Fixes
- Hardened current-session migration with timestamp reconciliation (#518) — when both local and global state exist, compares timestamps before deciding which to keep instead of unconditionally deleting local
- Aligned standalone CLI with plugin infrastructure (#518) — dynamic version resolution, session catalog, auto-update plugin detection guard
- Dynamic MCP agent role discovery (#519) — replaced hardcoded allowlist with runtime scan of
agents/*.mdfiles - Made installer VERSION test dynamic instead of hardcoded
- Fixed installer version test to read from package.json at runtime
Documentation
- CLAUDE.md alignment (#517) — v4.1.7→4.1.8: team pipeline docs, facade clarifications, hook runtime guarantees, session-scoped state paths, skill coverage sync
Internal
- Comprehensive codebase remediation from 10-perspective Codex review (#512)
- 3665 tests passing, 0 failures
- Codex architect verification: PASS_WITH_NOTES on both security and migration changes
Full Changelog: v4.1.7...v4.1.8