agent-zero

Release Notes

• Security: fixed XSS in chat markdown rendering — Chat message markdown is now sanitized to prevent cross-site scripting attacks in the web UI.

• Dedicated Markdown Editor surface — A new built-in _editor plugin provides a full-featured Markdown editing experience separate from the Desktop/Office surface. Includes ACE-powered source editing, safe rendered preview mode, browser-style tabs, toolbar and file actions, preview search, inline editing from preview, clickable task-list checkboxes, and rich rendering for code blocks, tables, math, images, local links, and footnotes. Open Markdown files stay synchronized with the active context and saved tool edits via live refresh.

• Office surface cleanup — Obsolete Markdown editor UI and handoff code has been removed from the Office/Desktop surface now that Markdown documents route exclusively through the new Editor. The Office shell is slimmer and focused on LibreOffice formats.

• Remote execution reset forwarding — The code_execution_remote plugin now forwards reset=true to the connected CLI when issuing replacement commands, allowing the CLI to tear down stuck host sessions before running the next command.

• Connector message queue protocol — The Agent Zero connector backend advertises message queue support and exposes WebSocket handlers for queue add, remove, and send operations. Queue snapshots are included in context subscriptions and updates are emitted as state changes, keeping the CLI in sync.

• Browser surface polish — Address-bar Enter navigation in the Browser surface is now explicit rather than implicit.

• CI: freed runner disk for Docker publish — The multi-platform Docker publish job now removes unused toolchains and stale Docker data before building, preventing out-of-disk-space failures on hosted runners.