release: v0.41.0 — context window overhaul, slash commands, context ring#158
Merged
Conversation
- README: add Highlights rows for context management and footer Context Ring - release/notes_v0410.md: bilingual release notes - package-lock.json: refreshed by npm install
ghost
reviewed
May 25, 2026
| "version": "0.40.11", | ||
| "dependencies": { | ||
| "@anthropic-ai/sdk": "^0.98.0", | ||
| "js-tiktoken": "^1.0.21", |
There was a problem hiding this comment.
版本号从 0.41.0 降级到 0.40.11,需确认此变更的原因及影响。降级可能导致已修复的安全漏洞重新出现,建议检查 0.41.0 的变更日志,确保没有引入新的安全风险。此外,确保所有依赖项的兼容性,避免因版本不匹配导致的潜在 bug。
| - Webview CSP unchanged | ||
| - No new runtime dependencies (still just `@anthropic-ai/sdk` / `openai` / `js-tiktoken`) | ||
| - Rolling summary uses the existing API channel — no new network entrypoints | ||
| - All token accounting happens locally; nothing extra is transmitted |
There was a problem hiding this comment.
在新功能的实现中,特别是上下文窗口管理和大文件读取提示部分,建议详细检查是否存在潜在的命令注入风险。尤其是在处理用户输入的命令时,需确保对输入进行严格的验证和清理,以防止恶意输入导致的安全漏洞。此外,关于大文件读取的提示,需确保在读取文件时不暴露敏感信息,建议增加对文件路径的验证,防止路径穿越攻击。
There was a problem hiding this comment.
Pull request overview
This PR prepares the v0.41.0 release documentation by adding bilingual release notes and updating the README highlights to reflect the new context-window management features and footer context ring, alongside a refreshed package-lock.json.
Changes:
- Add bilingual release notes for v0.41.0 (
release/notes_v0410.md). - Update README highlights with the new Context window management and Footer context ring entries.
- Refresh
package-lock.json(but its rootversionfields currently appear inconsistent with the v0.41.0 release).
Reviewed changes
Copilot reviewed 2 out of 3 changed files in this pull request and generated no comments.
| File | Description |
|---|---|
| release/notes_v0410.md | Adds bilingual v0.41.0 release notes covering the context-window overhaul, new slash commands, footer context ring, and session-switch replay fix. |
| README.md | Adds two new highlight rows describing the v0.41.0 context-window management and footer context ring features. |
| package-lock.json | Lockfile refresh; currently shows the root package version as 0.40.11, which conflicts with the v0.41.0 release/version. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Release v0.41.0 — Context Window 优化套件 · 三个新斜杠命令 · 底部 Context Ring · 会话切换闪屏修复
主要改动 · Highlights
/compact [focus],/context,/fork [name]..dot, ramps green → yellow → orange → red across 60 / 85 / 100% thresholds, click opens the/contextbreakdown.replayStart/replayEndenvelopes + webview_replayingguard.errors.js,file-read.js,session-store.js.详细中英双语说明见
release/notes_v0410.md。Files touched in this PR
README.md— Highlights 表新增 Context window management / Footer Context Ring 两行release/notes_v0410.md— 0.41.0 中英双语 release notespackage-lock.json— refreshed bynpm installBuild artefact
release/deep-copilot-0.41.0.vsix(87 files, 6.32 MB) — will be attached to the GitHub Release.Verification
npm run build✅npm run package→release/deep-copilot-0.41.0.vsix✅