This release fixes issues for SREs watching stability and regressions.
✓ No known CVEs patched in this version
Topics
+14 more
Summary
AI summaryFixed hanging installs caused by tree‑sitter grammar postinstall scripts.
Full changelog
Fix: npx claude-mem@latest install no longer hangs on tree-sitter-swift
What broke in 12.6.1
PR #2300 moved 21 tree-sitter grammar packages from root devDependencies → root dependencies. As a result, npx [email protected] install started fetching all 21 grammars at npx time. tree-sitter-swift's postinstall pulled a nested tree-sitter-cli that downloads a Rust binary from GitHub and SIGINT'd the install:
npm error path .../node_modules/claude-mem/node_modules/tree-sitter-swift/node_modules/tree-sitter-cli
npm error command failed
npm error signal SIGINT
npm error Downloading https://github.com/tree-sitter/tree-sitter/releases/download/v0.23.2/tree-sitter-macos-arm64.gz
npm doesn't honor the bun-only trustedDependencies allowlist, so postinstalls always run on a bare npx fetch.
Fix (PR #2305)
Move the 21 grammar packages back to root devDependencies. The marketplace plugin install path is untouched — plugin/package.json keeps them as runtime deps and bun install (in installPluginDependencies) honors trustedDependencies: ["tree-sitter-cli"] to skip the harmful postinstalls on every other grammar. Smart-search/smart-outline/smart-unfold continue to work end-to-end.
PR #2300's --legacy-peer-deps and --omit=dev install.ts changes are kept — they fix a separate, valid marketplace ERESOLVE.
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About claude-mem
A Claude Code plugin that automatically captures everything Claude does during your coding sessions, compresses it with AI (using Claude's agent-sdk), and injects relevant context back into future sessions.
Related context
Beta — feedback welcome: [email protected]