github yvgude/lean-ctx v2.21.10

latest releases: v3.9.6, v3.9.5, v3.9.4...
3 months ago

Fix: Auth/Device Code Flow Output Preserved

Fixed — OAuth device code output no longer compressed (#71)

  • Auth flow detection — New contains_auth_flow() function detects OAuth device code flow output using a two-tier approach:
    • Strong signals (match alone): devicelogin, deviceauth, device_code, device code, device-code, verification_uri, user_code, one-time code
    • Weak signals (require URL in same output): enter the code, use a web browser to open, verification code, waiting for authentication, authorize this device, and 10 more patterns
  • Shell hook passthrough — 21 auth commands added to BUILTIN_PASSTHROUGH: az login, gh auth, gcloud auth, aws sso, firebase login, vercel login, heroku login, flyctl auth, vault login, kubelogin, --use-device-code, and more. These bypass compression entirely.
  • MCP tool passthroughctx_shell::handle() now checks output for auth flows before compression. If detected, full output is preserved with a [lean-ctx: auth/device-code flow detected] note.
  • Shell hook buffered pathcompress_if_beneficial() also checks for auth flows before any compression, covering the exec_buffered path when stdout is not a TTY.

Impact

Previously, when Codex or Claude Code ran an auth command (e.g. az login --use-device-code), the device code was hidden from the user because lean-ctx compressed the output. Now the full output including auth codes is preserved.

Workaround for older versions: Add excluded_commands = ["az login"] to ~/.lean-ctx/config.toml, or prefix commands with LEAN_CTX_DISABLED=1.

Upgrade

cargo install lean-ctx          # or
npm update -g lean-ctx-bin      # or
brew upgrade lean-ctx

Full Changelog: v2.21.10...v2.21.10

Don't miss a new lean-ctx release

NewReleases is sending notifications on new releases.