This release fixes issues for SREs watching stability and regressions.
✓ No known CVEs patched in this version
Affected surfaces
Summary
AI summaryFixed silent fast‑path bypass when checking for updates due to stale LATEST_VERSION fetch.
Full changelog
Bug fix
LATEST_VERSION was fetched from the pinned installer tag (v${_FW_VERSION}) rather than main. This caused a silent fast-path bypass:
- User runs
curl ... | bash→ getsmainwith_FW_VERSION=3.9.1→ re-pins tov3.9.1→ builds container at3.9.1 3.9.2and3.9.3are released- User runs
curl ... | bashagain → getsmainwith_FW_VERSION=3.9.3→ re-pins tov3.9.3→ butLATEST_VERSIONis fetched fromv3.9.3tag =3.9.3, while container reports3.9.1→ update triggered ✓
However if the user had a cached temp file from step 1 still on disk (edge case), _FW_VERSION would still be 3.9.1, LATEST_VERSION would fetch 3.9.1 from the old tag, match the running container, and silently fast-path.
Fix: always fetch LATEST_VERSION from main — the single source of truth for the latest release.
Upgrade
curl -sSL https://raw.githubusercontent.com/dl4rce/flaiwheel/main/scripts/install.sh | bash
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About dl4rce/flaiwheel
Self-hosted memory and governance layer for AI coding agents. 28 MCP tools with structured knowledge capture, hybrid search (semantic + BM25 + cross-encoder reranking), behavioral documentation nudges, cold-start codebase analyzer, and git-native storage. Single Docker container, zero cloud dependencies.
Related context
Beta — feedback welcome: [email protected]