Oh My Codex

v0.18.0 Feature

This release adds 3 notable features for engineering teams evaluating rollout.

Published 16d Developer Productivity

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Affected surfaces

auth

Summary

AI summary

Updates Validation, Highlights, and Fixes / compatibility across a mixed release.

Changes in this release

Type	Severity	Summary	CVE
Security	Medium	Real-private API mode remains experimental and explicitly opt-in; accidental unauthenticated startup is prevented by default token generation. Real-private API mode remains experimental and explicitly opt-in; accidental unauthenticated startup is prevented by default token generation. Source: granite4.1:8b-q6_K@2026-05-19 Confidence: high	—
Feature
Feature	Medium	Local generation has an OMX-owned API path via omx api command. Local generation has an OMX-owned API path via omx api command. Source: granite4.1:8b-q6_K@2026-05-19 Confidence: high	—
Feature	Medium	SparkShell is safer and more observable with diagnostic summaries. SparkShell is safer and more observable with diagnostic summaries. Source: granite4.1:8b-q6_K@2026-05-19 Confidence: low	—
Feature	Medium	SparkShell provides safer diagnostics with summaries while preserving passthrough contracts and hiding secrets. SparkShell provides safer diagnostics with summaries while preserving passthrough contracts and hiding secrets. Source: granite4.1:30b@2026-05-19-audit Confidence: low	—
Dependency	Medium	Release smoke tests now cover omx api --help and omx sparkshell --help commands. Release smoke tests now cover omx api --help and omx sparkshell --help commands. Source: granite4.1:8b-q6_K@2026-05-19 Confidence: low	—
Performance	Medium	Runtime loops are less sticky, preventing erroneous state triggers. Runtime loops are less sticky, preventing erroneous state triggers. Source: granite4.1:8b-q6_K@2026-05-19 Confidence: low	—
Performance	Medium	Runtime loops are less sticky, avoiding erroneous triggers from stale states like Ralph, ralplan, autoresearch-goal, MCP transport, and tmux diagnostics. Runtime loops are less sticky, avoiding erroneous triggers from stale states like Ralph, ralplan, autoresearch-goal, MCP transport, and tmux diagnostics. Source: granite4.1:30b@2026-05-19-audit Confidence: low	—
Bugfix	Medium	Process-storm regressions fixed including recursive notify wrappers and worker tmux rc fan-out. Process-storm regressions fixed including recursive notify wrappers and worker tmux rc fan-out. Source: granite4.1:8b-q6_K@2026-05-19 Confidence: high	—
Bugfix	Medium	Team/HUD/Windows reliability improved with wrapped tmux drafts, HUD resize hooks, provider env vars, and Windows MCP collisions avoidance. Team/HUD/Windows reliability improved with wrapped tmux drafts, HUD resize hooks, provider env vars, and Windows MCP collisions avoidance. Source: granite4.1:8b-q6_K@2026-05-19 Confidence: high	—
Refactor	Medium	Lifecycle notification grouping tracked separately in issue #2353. Lifecycle notification grouping tracked separately in issue #2353. Source: granite4.1:8b-q6_K@2026-05-19 Confidence: low	—

Full changelog

oh-my-codex v0.18.0

0.18.0 ships the OMX API gateway and a safer SparkShell/operator-runtime baseline after 0.17.3. The release also closes the notify, Stop-hook, tmux, HUD, Windows MCP, and release-smoke blockers found while preparing the train.

Highlights

Local generation has an OMX-owned API path — omx api exposes the local gateway used by OMX generation flows, with explicit real-private backend guidance and safer default auth behavior.
SparkShell is safer and more observable — summaries can diagnose team panes and cache observations while preserving passthrough contracts and keeping raw secrets out of summary prompts.
Runtime loops are less sticky — stale Ralph, ralplan, autoresearch-goal, MCP transport, and tmux diagnostic states no longer trigger erroneous loops after Stop/completion.
Process-storm regressions are blocked — recursive notify wrappers, previousNotify self-reference, fallback watcher respawns, and worker tmux rc fan-out are fixed.
Team/HUD/Windows reliability improved — wrapped tmux drafts are not treated as sent input, HUD resize hooks survive reflow, provider env vars reach direct tmux launches, and Windows MCP siblings avoid duplicate watchdog collisions.

Fixes / compatibility

omx api --help and omx sparkshell --help are now covered by release smoke tests.
Real-private API mode remains experimental and explicitly opt-in; unauthenticated accidental startup is prevented by default token generation.
Team readiness semantics are preserved; the release removes false draft trust and runaway launch/fan-out behavior rather than weakening failure detection.
Lifecycle notification grouping remains tracked separately in #2353.

Merged PR inventory

#2295, #2332, #2334, #2335, #2338, #2339, #2341, #2342, #2344, #2345, #2347, #2349, #2351, #2357, #2359, #2360, #2361, #2365, #2367, #2372, #2374, #2375, #2376.

Validation

npm run build
npm run lint
npm run check:no-unused
Targeted compiled Node tests for version sync and the omx api CLI bridge
npm run verify:native-agents
npm run verify:plugin-bundle
npm run build:full
npm run smoke:packed-install
cargo fmt --all --check
cargo clippy --workspace --all-targets -- -D warnings
cargo test -p omx-api -p omx-sparkshell -p omx-explore-harness
git diff --check

Contributors

Thanks to bellman, @grndlvl, @gwlee-dev, @HaD0Yun, @weathour, and @Yeachan-Heo for contributing to this release.

Full Changelog: v0.17.3...v0.18.0

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track Oh My Codex

Get notified when new releases ship.

About Oh My Codex

All releases →

Related context

Related tools

Earlier breaking changes

v0.18.5 Ultragoal completion now requires independent reviewer and architect evidence before marking complete.