This release includes breaking changes for platform teams planning a safe upgrade.
✓ No known CVEs patched in this version
Affected surfaces
Summary
AI summaryFixed incorrect credential storage when running gh auth login with sudo on WSL/Linux.
Full changelog
What's New in v3.9.17
Fixed
gh auth login must not be run with sudo
On WSL and Linux, if the user ran sudo gh auth login, credentials were stored in /root/.config/gh/ — invisible to the current (non-root) user. When the installer then ran gh auth status as the normal user, it found nothing and showed a generic error, leaving the user confused.
Two improvements:
-
After auto-installing
gh: ifghwas just installed and is not yet authenticated, the installer now exits cleanly with a clear message:┌─────────────────────────────────────────────────────────┐ │ ACTION REQUIRED — GitHub CLI authentication │ └─────────────────────────────────────────────────────────┘ GitHub CLI was just installed. You need to authenticate once: gh auth login ⚠️ Do NOT use sudo — credentials are stored in your home directory and must belong to your user, not root. -
Pre-flight auth check: if
ghwas already installed but auth was done withsudo, the error now explicitly explains the problem and how to fix it.
Upgrade
curl -sSL https://raw.githubusercontent.com/dl4rce/flaiwheel/main/scripts/install.sh | bash
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About dl4rce/flaiwheel
Self-hosted memory and governance layer for AI coding agents. 28 MCP tools with structured knowledge capture, hybrid search (semantic + BM25 + cross-encoder reranking), behavioral documentation nudges, cold-start codebase analyzer, and git-native storage. Single Docker container, zero cloud dependencies.
Related context
Beta — feedback welcome: [email protected]