Skip to content

fix: bump CLI versions — gemini 0.40.0, copilot 1.0.39 (others held)#636

Merged
thepagent merged 1 commit intoopenabdev:mainfrom
chaodu-agent:bump-cli-versions-2026-04-29
Apr 29, 2026
Merged

fix: bump CLI versions — gemini 0.40.0, copilot 1.0.39 (others held)#636
thepagent merged 1 commit intoopenabdev:mainfrom
chaodu-agent:bump-cli-versions-2026-04-29

Conversation

@chaodu-agent
Copy link
Copy Markdown
Collaborator

@chaodu-agent chaodu-agent commented Apr 29, 2026

Summary

Bump safe-to-upgrade CLI versions in Dockerfiles. 5 of 7 CLIs intentionally held due to active regressions affecting Linux/container/headless workloads.

Discord Discussion URL: N/A

Changes

Dockerfile CLI Old New Notes
Dockerfile.gemini @google/gemini-cli 0.39.1 0.40.0 Zero regression/bug-labelled issues; minor headless nits only
Dockerfile.copilot @github/copilot 1.0.36 1.0.39 No public issue tracker; 3 patch versions, low risk

NOT updated (intentionally)

Dockerfile CLI Pinned Latest Why
Dockerfile kiro-cli 2.1.1 2.2.0 Changelog not published yet (404). Cannot assess risk. Hold until release notes are public.
Dockerfile.codex @openai/codex 0.125.0 0.125.0 Already current — no bump needed
Dockerfile.claude @anthropic-ai/claude-code 2.1.116 2.1.123 🔴 BLOCKER: #54632 — v2.1.123 crashes on startup on Linux x86-64 (Module not found, Bun bundling issue). Also #54083 — Bedrock auth broken since 2.1.119. 2.1.116 remains the safe ceiling.
Dockerfile.cursor Cursor Agent CLI 2026.04.17-787b533 2026.04.29-c83a488 🔴 Released today (Apr 29) with zero community validation. Unresolved CPU 100% regression from 04.13 build. Headless sandbox init bug still open.
Dockerfile.opencode opencode-ai 1.14.25 1.14.29 🔴 #24977 — Bedrock auth regression in 1.14.29 (ignores AWS credential chain). #24846 — ACP newSession/authenticate methods broken. Both directly affect openab.
Dockerfile.codex codex-acp 0.11.1 No new release needed
Dockerfile.claude claude-agent-acp 0.29.2 Still current

Per-CLI Risk Assessment

claude-code — 🔴 HOLD at 2.1.116

  • #54632 (regression, platform:linux): v2.1.123 crashes on startup on Linux x86-64 baseline. Module not found error from Bun v1.3.14 bundling. Hard blocker — CLI is completely unusable.
  • #54083 (regression, platform:linux, api:bedrock): Bedrock auth fails with 403 + infinite retry since v2.1.119.
  • #54018: Async subagent loops silently dropped (affects orchestration reliability).
  • #53948: Plugin install no longer copies symlinked skills since v2.1.117.
  • Safe ceiling: 2.1.116 (current pin). Do not upgrade until #54632 is fixed.

opencode-ai — 🔴 HOLD at 1.14.25

  • #24977 (regression): Bedrock provider requires API key in 1.14.29, ignoring AWS credential chain (SSO/IAM roles). Blocker if using Bedrock.
  • #24846 (acp): ACP newSession and authenticate methods return errors in 1.14.29. Directly affects openab headless mode.
  • #24927: JSON error injected into SSE stream on Ubuntu.
  • #24985: MCP client fails to init servers missing optional methods.
  • 1.14.28 might be safer (Bedrock still works), but ACP issues may persist. Stay on 1.14.25.

cursor — 🔴 HOLD at 2026.04.17-787b533

  • CPU 100% / agent hang regression reported against 04.13 build, no confirmed fix.
  • Headless sandbox init bug ignores sandbox.json on Linux (confirmed by Cursor staff, unresolved).
  • 2026.04.29 released today — zero community validation in Docker/Linux.
  • If 04.17 is stable, no reason to risk upgrading.

kiro-cli — 🟡 HOLD at 2.1.1

  • 2.2.0 is on the stable manifest but changelog returns 404. Cannot assess breaking changes.
  • No known Linux/headless regressions on 2.1.1.
  • Revisit once release notes are published.

gemini-cli — 🟢 SAFE to bump to 0.40.0

  • Zero issues with regression or bug labels.
  • Minor nits: #26193 (ripgrep fallback message in non-interactive), #26168 (subagent discovery prompt).
  • Neither is a blocker for headless Docker workloads.

copilot — 🟢 SAFE to bump to 1.0.39

  • No public issue tracker. 3 patch versions since 1.0.36.
  • Low risk based on patch-only increment.

codex — ✅ Already current at 0.125.0

  • No version-specific regressions reported.
  • Notable existing issues: #16451 (Linux sandbox denies /dev/null), #19309 (exec mode exits early). Neither is new.

How to verify

# npm packages
npm view @google/gemini-cli version   # expect 0.40.0
npm view @github/copilot version      # expect 1.0.39

# Held versions (confirm still pinned)
curl -fsSL https://prod.download.cli.kiro.dev/stable/latest/manifest.json | grep version  # 2.2.0 available but held
npm view @anthropic-ai/claude-code version  # 2.1.123 available but held
npm view opencode-ai version                # 1.14.29 available but held

Ref: #573

@chaodu-agent
fix: bump CLI versions — gemini 0.40.0, copilot 1.0.39
183e2ff 
Only safe-to-upgrade CLIs bumped. Others held due to regressions:
- kiro-cli 2.2.0: no published changelog yet
- claude-code 2.1.123: Linux x86-64 startup crash (#54632)
- cursor 2026.04.29: released today, unresolved CPU 100% regression
- opencode-ai 1.14.29: Bedrock auth regression (#24977), ACP breakage (#24846)
- codex 0.125.0: already current
@chaodu-agent chaodu-agent requested a review from thepagent as a code owner April 29, 2026 23:31
@github-actions github-actions Bot added the pending-screening PR awaiting automated screening label Apr 29, 2026
@github-actions
Copy link
Copy Markdown

github-actions Bot commented Apr 29, 2026

⚠️ This PR is missing a Discord Discussion URL in the body.

All PRs must reference a prior Discord discussion to ensure community alignment before implementation.

Please edit the PR description to include a link like:

Discord Discussion URL: https://discord.com/channels/...

This PR will be automatically closed in 3 days if the link is not added.

@github-actions github-actions Bot added the closing-soon PR missing Discord Discussion URL — will auto-close in 3 days label Apr 29, 2026
@thepagent thepagent merged commit 1e06e5c into openabdev:main Apr 29, 2026
11 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@thepagent thepagent thepagent approved these changes

Assignees

No one assigned

Labels

closing-soon PR missing Discord Discussion URL — will auto-close in 3 days pending-screening PR awaiting automated screening

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@chaodu-agent @thepagent