Release v0.9.1

v0.9.1 — Fix-only patch release

Six commits since v0.9.0, focused on two user-visible bug fixes plus minor maintenance.

Bug Fixes

• Saving a modern OpenAI model (o1, o3, gpt-5.x) in Settings → AI no longer fails with a 400 Unsupported parameter: 'max_tokens'. The test-completion call now sends max_completion_tokens, which all current OpenAI Chat Completions models accept (#241).
• MCP system tools now emit items on array-typed parameters, so Gemini's schema validator accepts them. Previously, registering a system tool that exposed an array param would fail at Gemini's tool-registration step (#225 by @mlspivey).

Developer Experience

• Untracked client/tsconfig*.tsbuildinfo build caches — these were churning the working tree on every TS rebuild (#232).
• Docs-capture tooling now supports nav_via and goto_spa for SPA-routed pages, letting the screenshot pipeline navigate via UI clicks instead of direct URL loads where needed (#224).
• Release skill now flags net-new feature surface before invoking the docs skill, so versioned releases don't silently ship new features without docs pages (#223).

Security & Supply-Chain Hardening

• Bumped sigstore/cosign-installer to 4.1.2 and github/codeql-action to 4.35.4 (#236).

Contributors

• @mlspivey — fixed a Gemini-compatibility regression in MCP system tools that prevented array-typed tool params from being accepted (#225).

Fixed CVEs

None in this release.

Breaking Changes

None in this release.

Docker Images

docker pull ghcr.io/jackmusick/bifrost-api:0.9.1
docker pull ghcr.io/jackmusick/bifrost-client:0.9.1

Also tagged: 0.9, 0, latest.

Signed Artifacts

Images are signed with Sigstore Cosign (keyless, GitHub OIDC). Verify with:

cosign verify ghcr.io/jackmusick/bifrost-api:0.9.1 \
  --certificate-identity-regexp 'https://github.com/jackmusick/bifrost/.github/workflows/' \
  --certificate-oidc-issuer https://token.actions.githubusercontent.com

Type Stubs

pip install bifrost-stubs==0.9.1