UrbanWafflezz/GilbertCodex

Gilbert Codex v0.8.2 is the connected-platform hardening build. It keeps the v0.8.0 platform foundation and v0.8.1 MCP/Discord/9Router
hotfixes, then pushes the app closer to a real daily desktop workspace: deeper Apps and MCP setup, reusable non-model credentials, more honest connected-tool execution, provider cache accounting, and better native behavior across Windows, macOS, and Linux.

Release Status

• Version: 0.8.2
• Tag: v0.8.2
• Previous public release: v0.8.1
• Release target: https://github.com/UrbanWafflezz/GilbertCodex/releases/tag/v0.8.2
• Packaged targets: Windows x64, macOS Apple Silicon, macOS Intel, Linux x64
• Windows artifact family: Gilbert-Codex-0.8.2-x64-setup.exe
• macOS artifact families: Gilbert-Codex-0.8.2-macos-aarch64.dmg, Gilbert-Codex-0.8.2-macos-x64.dmg, and matching updater archives
• Linux artifact families: Gilbert-Codex-0.8.2-linux-x64.deb and Gilbert-Codex-0.8.2-linux-x64.AppImage
• Update feed asset: latest.json
• Checksum assets: .sha256 files
• Updater signature assets: .sig files

What Changed

• Expanded Apps into the main home for plugins, Skills, MCP servers, native app connectors, marketplace entries, and setup-driven install paths.
• Added broader OpenAI/Codex plugin marketplace mapping so more marketplace entries can route to real Gilbert capabilities through native app connectors, MCP presets, registry discovery, or bundled skill import.
• Added many more MCP preset routes, including cloud, hosting, database, browser/search, repo, observability, and local-context servers such as AWS, Azure, GitLab, GitHub MCP, Netlify, Heroku, Pulumi, Neon, Browserbase, Brave Search, Exa, Firecrawl, Tavily, Playwright, Puppeteer, Postgres, Redis, MongoDB, Slack, Filesystem, Memory, Sequential Thinking, JetBrains, and more.
• Added MCP HTTP secret query params and custom secret headers alongside bearer tokens, with validation, saved-secret preservation, secret-state UI, secure-storage protection, request injection, and cleanup when servers are removed.
• Added Settings > Keys as a non-model API key vault for app, MCP, service, and skill credentials. Saved keys can be reused during MCP setup without echoing the secret values back into React state or chat.
• Added setup requirement awareness for featured MCP presets so the UI can show which credentials are required, optional, already saved, or still missing before Test or Save.
• Improved MCP stdio and registry guidance so package-backed servers use the same save, test, secure-storage, cached-schema, and chat-call path as custom servers.
• Added a shared native command resolver for packaged macOS/Linux launches. It recovers Homebrew, MacPorts, Docker Desktop, Volta/asdf/nvm/user-bin, Flatpak/Snap, sbin, system paths, and ~-expanded executable paths before spawning desktop helper commands.
• Improved Discord ngrok startup on macOS and Linux by searching common desktop install locations, respecting executable permissions, expanding home-relative configured paths, and applying the recovered native PATH when launching ngrok.
• Improved Subscriptions/9Router source install and startup by requiring Node.js 20+, resolving Git/Node/npm/Docker/kill/lsof/fuser/ss through native paths, using a native PATH for launch env, and adding fallback listener detection on Linux/macOS.
• Improved terminal behavior on macOS by starting zsh/bash interactive sessions as login shells so packaged app terminals inherit expected user tooling paths.
• Improved open-in-terminal/editor/browser helper launches by resolving native executables on macOS/Linux and escaping AppleScript terminal commands more carefully.
• Improved Linux secure storage by resolving secret-tool through native desktop paths before using Secret Service.
• Improved GitHub OAuth fallback requests by resolving curl through the native desktop path on macOS/Linux.
• Added cross-platform updater config files so macOS and Linux release artifacts keep their app/DMG and deb/AppImage bundle settings while still creating updater signatures.
• Added host-aware npm run app:release dispatch that mirrors the existing host-aware npm run app:build behavior instead of assuming the Windows release path.
• Expanded CI with macOS and Linux Rust host jobs, native desktop path tests, Linux desktop dependencies, and Node 24 setup.
• Expanded the GitHub Release workflow with macOS/Linux native path checks, Linux helper packages, platform-specific updater configs, Apple Developer certificate import, and a required signing/notarization secret check before trusted macOS artifacts are published.
• Added macOS and Linux verification scripts that check Node/npm/Git/ngrok, run frontend/Rust checks, run native path tests, build native bundles, optionally build updater artifacts when a Tauri signing key is present, and print the platform-specific manual QA list.
• Added stricter runtime recovery for connected app, connector, MCP, and deployment requests so the assistant cannot claim an external action happened unless a current tool result supports it.
• Added deployment evidence recovery prompts for hosting/deploy requests, with MCP discovery and terminal deploy commands preferred over telling the user to run actions manually when tools are attached.
• Added provider prompt-cache metadata for supported OpenAI-style requests, Anthropic cacheable system prompt blocks, xAI conversation cache headers, and usage normalization for cached input and cache-write tokens.
• Added cache-aware usage records, cost breakdowns, and estimated cache savings so usage history can distinguish uncached input, cached input, cache writes, output, reasoning, request cost, and subscription/free routes.
• Added appearance controls for UI font scaling, chat response width, user message width, composer width, and corresponding CSS variables across app surfaces.
• Removed the separate Plugins page and folded plugin discovery/install/create behavior into Apps so users have one capability hub instead of split navigation.
• Bumped all release-facing version fields to 0.8.2.

Platform Notes

Windows remains the verified alpha platform for local maintainer testing and the NSIS installer path.

macOS Apple Silicon/Intel and Linux x64 now have stronger release workflow coverage and native command-path coverage, but both platforms still need packaged-app launch smoke tests before the project should call them fully verified. Testers should launch the generated artifacts outside the dev environment and verify auth, local storage, file picker permissions, terminal, browser preview, GitHub/local Git, MCP stdio servers, Discord/ngrok, Subscriptions/9Router, notifications, updater checks, and uninstall behavior.

The GitHub Release workflow requires Apple Developer signing and notarization secrets before publishing trusted macOS artifacts. Local macOS bundles still use ad-hoc signing for inspection when those credentials are not available.

Release Notes For Testers

• On Windows, install the NSIS setup executable and verify first launch, provider setup, chat, workspace tools, Apps hub, MCP stdio/HTTP tools, Settings > Keys, Discord ngrok-backed bridge setup, 9Router local/LAN routing, updater check, and uninstall.
• On macOS Apple Silicon and Intel, mount the DMG, move the app into Applications, launch it, and verify Keychain-backed secrets, native command discovery, terminal shell startup, browser preview, file picker permissions, notifications, provider setup, GitHub/local Git, Discord/ngrok, Subscriptions/9Router install-start-sign-in-routing, MCP stdio servers, Skills, plugin imports, and update checks.
• On Linux, test both deb and AppImage artifacts on a WebKitGTK 4.1-capable desktop and verify Secret Service-backed secrets, native command discovery, file picker behavior, terminal shell startup, browser preview, notifications, provider setup, GitHub/local Git, Discord/ngrok, Subscriptions/9Router install-start-sign-in-routing, MCP stdio servers, Skills, plugin imports, and update checks.
• Confirm latest.json contains entries for Windows, macOS Apple Silicon, macOS Intel, Linux deb, and Linux AppImage.
• Confirm every downloadable package has a matching .sha256 file and every updater package has a matching .sig file.

Validation Commands

npm.cmd run build
npm.cmd run rust:fmt:check
npm.cmd run rust:check
npm.cmd test
cargo test --manifest-path src-tauri\Cargo.toml terminal -- --nocapture
cargo test --manifest-path src-tauri\Cargo.toml ngrok -- --nocapture
cargo test --manifest-path src-tauri\Cargo.toml nine_router -- --nocapture
cargo test --manifest-path src-tauri\Cargo.toml native_path -- --nocapture
cargo test --manifest-path src-tauri\Cargo.toml mcp -- --nocapture
git diff --check

The GitHub Release workflow performs the signed updater release build when v0.8.2 is pushed or the workflow is dispatched with this version input. Manual workflow dispatches create a draft release for review; tag pushes publish the release.

Known Limits

macOS and Linux package artifacts are built by GitHub-hosted native runners, but they still need real-device launch smoke tests before the project should call those platforms fully verified.

Release builds require the private release overlay repository and Tauri updater signing key secrets. If those secrets are missing, the workflow should fail before shipping an incomplete desktop package.

The plugin marketplace foundation is real, but deeper installation/update flows beyond native app routes, MCP setup, registry search, and skill import are still being polished.

ChatGPT GPT-5.3 Spark remains a known read-only route for workspace work. Other Codex/ChatGPT, OpenRouter, and local routes remain the recommended paths for file changes until that provider route is fixed.

Provider keys, OAuth secrets, GitHub tokens, Discord settings, local accounts, logs, local databases, workspace files, scan artifacts, release signing credentials, updater private keys, MCP bearer tokens, MCP HTTP header/query secrets, MCP stdio env values, non-model API keys, and private overlay credentials stay out of public Git and are not bundled into installers.