This release fixes issues for SREs watching stability and regressions.
✓ No known CVEs patched in this version
Topics
+14 more
ReleasePort's take
Light signalOutlook Mac `.olk15*` artifacts are now handled as inventory‑only evidence without fake text extraction.
Why it matters: Update to v7.20.9 immediately if your environment processes Outlook Mac artifact files; the fix prevents erroneous text extraction and ensures accurate secret detection.
Summary
AI summaryFixed Outlook Mac artifact handling so they are treated as inventory‑only evidence without fake text extraction.
Changes in this release
| Type | Severity | Summary | CVE |
|---|---|---|---|
| Feature | Medium |
Local Context automatic roots upgrade beyond shallow depth 2 for nested projects, Mail.app stores, NEXO email DBs, external disks. Local Context automatic roots upgrade beyond shallow depth 2 for nested projects, Mail.app stores, NEXO email DBs, external disks. Source: llm_adapter@2026-05-21 Confidence: high |
— |
| Feature | Medium |
Windows WSL bridge passes `LOCALAPPDATA` and `APPDATA` as `/mnt/c/...` for Outlook and Windows Mail roots resolution. Windows WSL bridge passes `LOCALAPPDATA` and `APPDATA` as `/mnt/c/...` for Outlook and Windows Mail roots resolution. Source: llm_adapter@2026-05-21 Confidence: high |
— |
| Feature | Medium |
Secret detection catches Google API keys before HTML cleaning, keeping secret-bearing files inventory-only. Secret detection catches Google API keys before HTML cleaning, keeping secret-bearing files inventory-only. Source: llm_adapter@2026-05-21 Confidence: low |
— |
| Feature | Medium |
Outlook Mac `.olk15*` proprietary artifacts allowed as inventory-only evidence without fake text extraction. Outlook Mac `.olk15*` proprietary artifacts allowed as inventory-only evidence without fake text extraction. Source: llm_adapter@2026-05-21 Confidence: low |
— |
| Bugfix | Medium |
Linux/WSL cron activation detects `systemctl --user` failures and installs a managed crontab fallback for interval jobs. Linux/WSL cron activation detects `systemctl --user` failures and installs a managed crontab fallback for interval jobs. Source: llm_adapter@2026-05-21 Confidence: high |
— |
Full changelog
Fixed
- Local Context automatic roots now upgrade beyond shallow depth 2 so nested projects, Mail.app stores, NEXO email DBs and external disks can be scanned at operational depth.
- Linux/WSL cron activation now detects
systemctl --userfailures and installs a managed crontab fallback for interval jobs such as local-index. - Windows WSL bridge now passes
LOCALAPPDATAandAPPDATAas/mnt/c/..., so Outlook and Windows Mail roots resolve to the real Windows profile. - Secret detection catches Google API keys before HTML cleaning, keeping secret-bearing files inventory-only with no chunks or embeddings.
- Outlook Mac
.olk15*proprietary artifacts are allowed as inventory-only evidence without fake text extraction.
Validation
pytest -q tests/test_local_context.py tests/test_cron_sync.py tests/test_windows_wsl_bridge_contract.py-> 63 passed.scripts/pre-release-verify.sh --release v7.20.9-> full pytest 2576 passed, 2 skipped, 1 xfailed, 4 xpassed; initial public-surface drift fixed.scripts/pre-release-verify.sh --release v7.20.9 --skip pytest-> 4 passed, 0 failed, 1 skipped.npm pack --dry-runverified[email protected]package contents.
Full Changelog: https://github.com/wazionapps/nexo/compare/v7.20.8...v7.20.9
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About wazionapps/nexo
Cognitive memory for AI agents with Atkinson-Shiffrin memory model (STM/LTM/sensory register), semantic RAG, Ebbinghaus decay, trust scoring, and 76+ MCP tools.
Related context
Beta — feedback welcome: [email protected]