Skip to content

Releases: Reedtrullz/codex-antigravity-auth

v1.7.0 — Production consolidation

Choose a tag to compare

@Reedtrullz Reedtrullz released this 12 Jul 22:26
f01174c

Highlights

  • Consolidates native Responses protocol handling and Google/OpenAI-compatible transports behind shared terminal and event contracts.
  • Enforces route-specific capabilities before credentials or network access.
  • Makes AccountState the production account lifecycle owner with persisted cooldowns, typed outcomes, balanced leases, and redundant-write suppression.
  • Hardens encrypted storage, read-only diagnostics, clean-HOME startup, native Responses streaming, and bundled Anti tooling.
  • Gates PyPI publication on artifact verification plus Ubuntu Python 3.10/3.11/3.12/3.14 and Windows Python 3.12.

Verification

Credentialed Google/BYOK generation, service mutation, and real Codex config mutation were not part of release verification.

v1.6.4

Choose a tag to compare

@Reedtrullz Reedtrullz released this 09 Jul 01:54

Highlights

  • Adds the xai-oauth provider lane for SuperGrok/X Premium OAuth while keeping the existing API-key xai lane separate.
  • Routes xai-oauth:* models through xAI Responses API with encrypted token storage, refresh, status, logout, browser login, and device/no-browser login flows.
  • Improves $anti Claude/Grok collaboration with panel --collab claude-grok and workflow claude-grok.
  • Hardens broad $anti Opus/Sonnet review and planning calls with conservative chunking, clearer retry diagnostics, and bounded backend timeout metadata.
  • Keeps Codex config activation safe: provider-block setup remains separate from changing the active model/provider unless explicitly requested.

Verification

  • Local python3 -m pytest -q: 443 passed, 143 subtests passed.
  • Local compileall, git diff --check, installed Anti skill verification, temp-dir build, and Twine checks passed.
  • PR #15 CI passed on Ubuntu Python 3.10/3.11/3.12, Windows Python 3.12, and package jobs.
  • Main CI run 28988481859 passed.
  • Tag CI run 28988523852 passed.
  • Publish workflow run 28988523818 published codex-antigravity-auth==1.6.4 to PyPI through Trusted Publishing.

Non-claims

  • No real ~/.codex/config.toml mutation was performed during release.
  • Live backend availability still depends on the user's configured Google/xAI/BYOK credentials and provider-side entitlements.

v1.6.3

Choose a tag to compare

@Reedtrullz Reedtrullz released this 07 Jul 01:56
55e0e79

Summary

  • Hotfix: setup --write, setup-google, and configure-codex --write now install only the Codex provider block by default.
  • Added explicit --activate for changing top-level model / model_provider.
  • Restored the safer default install posture so Codex's existing GPT default is not overwritten unexpectedly.

Verification

  • Local: python3 -m pytest -q -> 403 passed, 138 subtests.
  • Local: python3 -m compileall -q codex_antigravity_auth tests.
  • Local: git diff --check.
  • Local: python3 -m twine check dist/*.
  • Local packaged wheel smoke proved provider-only --write preserves an existing scratch default, while --activate opts into switching.
  • GitHub CI green on PR #13, main, and tag v1.6.3, including Windows.
  • PyPI Trusted Publishing run 28835943138 succeeded.
  • Strict clean PyPI install smoke for codex-antigravity-auth==1.6.3 passed and repeated the scratch config activation checks.

v1.6.2

Choose a tag to compare

@Reedtrullz Reedtrullz released this 06 Jul 22:09
331d4e3

Summary

  • Make codex-antigravity service install wait briefly for the durable-service gateway to become reachable before printing gateway status.
  • Keeps the v1.6.1 service-status reachability fix, so both install and status now report the user-facing gateway state clearly.

Verification

  • PR #12 CI passed for push run 28826574969 and pull_request run 28826584757.
  • Local python3 -m pytest -q: 399 passed, 138 subtests.
  • python3 -m compileall -q codex_antigravity_auth tests.
  • git diff --check.
  • python3 -m build and python3 -m twine check dist/*.
  • Clean wheel install smoke from codex_antigravity_auth-1.6.2-py3-none-any.whl.
  • Live source service install --port 51122 --host 127.0.0.1 ended with reachable 7-model gateway.

Remaining caveat

Remote BYOK live generation still needs fresh provider API-key material; the local 1Password OpenRouter/DeepSeek login items inspected in this session did not contain usable API keys.

v1.6.1

Choose a tag to compare

@Reedtrullz Reedtrullz released this 06 Jul 22:03
beef4f0

Summary

  • Fix codex-antigravity service status so durable-service gateways report as reachable when the service is active and the gateway responds, even without a pid-file managed background process.
  • Refresh package/status metadata for the v1.6.1 hotfix.

Verification

  • PR #11 CI passed for push run 28826294657 and pull_request run 28826305920.
  • Local python3 -m pytest -q: 398 passed, 138 subtests.
  • python3 -m compileall -q codex_antigravity_auth tests.
  • git diff --check.
  • python3 -m build and python3 -m twine check dist/*.
  • Clean wheel install smoke from codex_antigravity_auth-1.6.1-py3-none-any.whl.
  • Live source service status --port 51122 reported reachable 7-model gateway.
  • Live doctor --codex-ready --live --live-model claude-3.5-sonnet passed with durable service installed and preview ready.

Remaining caveat

Remote BYOK live generation still needs fresh provider API-key material; the local 1Password OpenRouter/DeepSeek login items inspected in this session did not contain usable API keys.

v1.6.0

Choose a tag to compare

@Reedtrullz Reedtrullz released this 06 Jul 21:54
b7a1464

Summary

  • Adds helper-level verifiable Anti MoA/Fusion panel workflows with usage/latency metadata, structured findings, security-review and debug-consensus presets, BYOK repo-context disclosure, and large-review summarization.
  • Adds request-log run_id correlation for Anti calls.
  • Hardens gateway lifecycle diagnostics: background start refuses already reachable gateways, status/doctor report unmanaged reachable gateways, and source checkouts prefer pyproject version metadata.

Verification

  • PR #10 CI green on Ubuntu Python 3.10/3.11/3.12, Windows Python 3.12, and package job.
  • Main CI run 28825777098 succeeded.
  • Tag CI run 28825801550 succeeded.
  • Publish run 28825801600 succeeded and uploaded codex-antigravity-auth 1.6.0 to PyPI.
  • Live Google Sonnet and Opus sentinel /v1/responses smokes passed before release.

Caveat

  • Fresh BYOK live provider smoke still requires a usable provider API key; inspected 1Password OpenRouter/DeepSeek login items did not contain provider API-key-shaped values.

v1.5.0

Choose a tag to compare

@Reedtrullz Reedtrullz released this 06 Jul 06:52
8df3f18

Highlights

  • Adds opt-in live Google Antigravity generation smoke checks for doctor and setup --check, including non-empty output validation and Google-only guardrails.
  • Adds guided OAuth client credential onboarding in primary setup with private atomic credential writes and automation-safe --no-input.
  • Hardens 1Password-backed gateway/service startup, concurrent Google account acquisition/release, account rotation accounting, and once-daily PyPI version drift diagnostics.
  • Adds daily-use account and log operations: accounts remove, accounts reset, and logs summary.
  • Adds Windows Python 3.12 CI coverage and Windows lifecycle regression coverage.
  • Updates quickstart install docs to uv tool install codex-antigravity-auth.

Verification

  • Local full suite: 381 passed, 138 subtests.
  • Local release checks: compileall, git diff --check, python3 -m build, twine check, disposable wheel install smoke, and scratch-config live doctor --codex-ready --live --live-model claude-3.5-sonnet smoke passed.
  • PR #9 CI, main CI, tag CI, and PyPI Trusted Publishing all passed.
  • PyPI install smoke for codex-antigravity-auth==1.5.0 passed.

Notes

The final live Codex-readiness smoke used a scratch Codex config so the release did not mutate the user's real ~/.codex/config.toml.

v1.4.0

Choose a tag to compare

@Reedtrullz Reedtrullz released this 06 Jul 05:06

Summary

Ships 1Password-backed BYOK gateway runtime support. BYOK providers can now keep API keys in 1Password while the gateway process receives the needed env vars at runtime.

Highlights

  • Added --op-env-file and --op-environment to codex-antigravity start --background.
  • Added the same 1Password wrapper support to codex-antigravity service install for durable per-user startup.
  • Added setup --start propagation so the generated reboot-persistence follow-up preserves the selected 1Password mode.
  • Updated macOS LaunchAgent, Linux systemd user unit, and Windows Scheduled Task rendering to support wrapped gateway commands.
  • Documented the stable op run --env-file secret-reference workflow and the 1Password Environments beta --op-environment path.
  • Live-proved OpenRouter BYOK routing through the gateway with exact marker anti-openrouter-byok-ok using a temporary key.

Installation

uv tool install codex-antigravity-auth==1.4.0
# or
pipx install codex-antigravity-auth==1.4.0

1Password BYOK Example

OPENROUTER_API_KEY=op://Private/OpenRouter/sk
codex-antigravity provider set openrouter --api-key-env OPENROUTER_API_KEY --model openrouter/free
codex-antigravity start --background --op-env-file ~/.codex/antigravity.env
codex-antigravity service install --port 51122 --host 127.0.0.1 --op-env-file ~/.codex/antigravity.env

Verification

  • PR #8 merged cleanly: #8
  • Main CI run 28769014362 passed package, test (3.10), test (3.11), and test (3.12).
  • Publish workflow run 28769040561 passed build and PyPI Trusted Publishing.
  • Local release checks passed:
    • python3 -m pytest -q -> 350 passed, 134 subtests passed
    • python3 -m compileall -q codex_antigravity_auth tests
    • git diff --check
    • python3 -m build
    • python3 -m twine check dist/*
    • clean wheel install smoke
  • PyPI install smoke passed for codex-antigravity-auth==1.4.0.

PyPI Artifacts

  • codex_antigravity_auth-1.4.0-py3-none-any.whl
    • SHA256: 520c385fa2c707d3672b4a3e177dd64f2ba7226aff0467cb35e0c820378d138a
  • codex_antigravity_auth-1.4.0.tar.gz
    • SHA256: 8b4a65487a27282b4cff4e1b37518cb9c2edaa53c38038d4328fde6ba877f91c

Caveats

  • --op-env-file is live-proven with the stable local 1Password CLI.
  • --op-environment is implemented for users with the 1Password Environments beta CLI; local op 2.34.0 did not expose that beta command during verification.
  • No provider API keys are persisted or logged by this release.

v1.3.0

Choose a tag to compare

@Reedtrullz Reedtrullz released this 06 Jul 03:43
bc33fdd

v1.3.0 - Fable follow-up hardening

This release makes Codex Antigravity Auth easier to install, more durable after reboot, safer under concurrent Codex traffic, and more diagnosable when Google/Claude or BYOK providers degrade.

Highlights

  • Adds PyPI Trusted Publishing automation for v* tags.
  • Adds cross-platform per-user gateway service lifecycle: macOS LaunchAgent, Linux systemd user service, and Windows Scheduled Task.
  • Adds sanitized request JSONL logs, codex-antigravity logs, and loopback-only /health diagnostics.
  • Adds local model catalog overlays via ~/.codex/antigravity-models.toml with strict CLI validation and runtime fail-soft fallback.
  • Improves setup/readiness UX with setup --repair, richer service/status/doctor surfaces, and clearer release docs.
  • Moves Google account selection and account outcome writes through the threadpool path and makes refresh-ahead fire-and-forget.
  • Persists per-account family usage/failure/rate-limit counters without logging account identifiers in generic diagnostics.

Review hardening included

  • Windows process status checks no longer call os.kill(pid, 0).
  • Malformed overlay files no longer brick /v1/models or built-in Claude/Gemini routing.
  • Overlay aliases, ids, and backend ids cannot accidentally shadow built-ins without explicit --force.
  • BYOK streaming requests now write terminal request-log records.
  • status is read-only again; test-only production guards were removed.
  • macOS service KeepAlive no longer fights intentional foreground stops.
  • Publish workflow verifies the tag matches the package version.

Verification

  • Local: 347 passed, 134 subtests, compileall, git diff --check, build, twine check, and clean wheel install smoke.
  • CI: PR #6, merged main, and tag CI passed package plus Python 3.10, 3.11, and 3.12.
  • Release artifacts: sdist and wheel are attached to this GitHub release.

PyPI status

Published to PyPI with Trusted Publishing after configuring the pending publisher for Reedtrullz/codex-antigravity-auth, workflow .github/workflows/publish.yml, environment pypi. Publish workflow 28766294306 reran successfully: build job 85293268541, publish job 85293299843. PyPI readback verified codex-antigravity-auth==1.3.0 at https://pypi.org/project/codex-antigravity-auth/ with both wheel and sdist files, and a clean virtualenv install smoke could run python -m codex_antigravity_auth.cli --help.

PyPI file digests from live PyPI readback:

  • codex_antigravity_auth-1.3.0-py3-none-any.whl: sha256:d4a6dc82f0ccef48a8e2949d19e17b43983c13e975123872c714bfdaf8a16a84
  • codex_antigravity_auth-1.3.0.tar.gz: sha256:cea5c6084d42dbc10be396b7fb84fc8bed9b9e9903765400f5831414c9c3a5f3

Post-release smoke

A current-checkout gateway was started temporarily on 127.0.0.1:51123; /health and /v1/models responded, claude-3.5-sonnet returned exact marker antigravity-sonnet-ok, and claude-opus-4-6 returned exact marker antigravity-opus-ok. The temporary gateway was stopped afterward.

Non-claims

Provider behavior can still drift server-side. Remote BYOK generation was not live-smoked because no provider key environment variables were available; the only configured BYOK lane was local Ollama and it had no usable local configured model/server for the smoke.

v1.2.0

Choose a tag to compare

@Reedtrullz Reedtrullz released this 06 Jul 00:57
b14bea9

V3 native Claude-in-Codex polish

This release focuses the project back on the core promise: make Antigravity Claude Opus/Sonnet easy, reliable, and native-feeling inside Codex.

Highlights

  • Adds the primary codex-antigravity setup flow for first-run configuration and readiness checks.
  • Adds Claude-first aliases such as sonnet, opus, claude-sonnet, and claude-opus.
  • Centralizes native model metadata used by setup, docs, diagnostics, and /v1/models.
  • Adds doctor --codex-ready for Codex model-picker/provider readiness diagnostics.
  • Adds background gateway lifecycle commands: start --background, status, and stop.
  • Improves Claude-family request diagnostics and retry/cooldown reporting.
  • Keeps $anti as an optional review/planning helper after native Claude is working.
  • Includes final setup hardening from PR review: gateway readiness wait, port/base-url mismatch protection, clean invalid-model reporting, safer cooldown epoch normalization, and BYOK setup preflight before config writes.

Verification

  • PR #5 merged into main at b14bea97eb0d76778fda91a7cd05ac097b28041c.
  • Main CI run 28761062790 passed package plus Python 3.10, 3.11, and 3.12.
  • Local python3 -m pytest -q passed: 324 passed, 128 subtests passed.
  • python3 -m compileall -q codex_antigravity_auth tests passed.
  • git diff --check passed.
  • python3 -m build and python3 -m twine check dist/* passed.
  • Clean wheel install smoke passed for codex-antigravity-auth==1.2.0, scratch setup --check, and scratch install-skill --verify.

Checksums

  • Wheel: f22abec4d8cf7973d3c011fcfe3ef19ab8c9f81dda683bd171218b53916871bc
  • Source distribution: 701212b26a5c7a3d395278d488fb06b80f88dd4ee1dc971d12e08966520b33a5

Non-claims

  • No PyPI publish was performed.
  • No production deploy outside GitHub release/tag was performed.
  • No real user ~/.codex/config.toml was mutated during release verification.
  • No fresh credentialed live Google/BYOK generation smoke was run as part of this release pass.