@bitkyc08/opencodex 2.1.8 → 2.1.9

package/gui/dist/assets/index-xJdeQjzZ.css

@@ -0,0 +1 @@
+:root{--lightningcss-light:initial;--lightningcss-dark: ;color-scheme:light dark;--bg:var(--lightningcss-light,#f6f7f9)var(--lightningcss-dark,#0c0d11);--rail:var(--lightningcss-light,#fff)var(--lightningcss-dark,#101218);--surface:var(--lightningcss-light,#fff)var(--lightningcss-dark,#15171d);--raised:var(--lightningcss-light,#f1f2f5)var(--lightningcss-dark,#1c1f27);--raised-hover:var(--lightningcss-light,#e8eaee)var(--lightningcss-dark,#242833);--border:var(--lightningcss-light,#e2e4e9)var(--lightningcss-dark,#2a2e39);--border-soft:var(--lightningcss-light,#ededf1)var(--lightningcss-dark,#20242d);--hover:var(--lightningcss-light,#11131c09)var(--lightningcss-dark,#ffffff06);--text:var(--lightningcss-light,#16181d)var(--lightningcss-dark,#edeef2);--muted:var(--lightningcss-light,#5b6270)var(--lightningcss-dark,#a3a9b5);--faint:var(--lightningcss-light,#868d9b)var(--lightningcss-dark,#6b7280);--accent:var(--lightningcss-light,#4f46e5)var(--lightningcss-dark,#6366f1);--accent-hover:var(--lightningcss-light,#4338ca)var(--lightningcss-dark,#818cf8);--accent-ink:#fff;--accent-soft:var(--lightningcss-light,#4f46e51a)var(--lightningcss-dark,#6366f129);--accent-ring:var(--lightningcss-light,#4f46e566)var(--lightningcss-dark,#6366f180);--green:var(--lightningcss-light,#047857)var(--lightningcss-dark,#34d399);--green-soft:var(--lightningcss-light,#0596691a)var(--lightningcss-dark,#34d39921);--red:var(--lightningcss-light,#b91c1c)var(--lightningcss-dark,#f87171);--red-soft:var(--lightningcss-light,#b91c1c17)var(--lightningcss-dark,#f8717121);--amber:var(--lightningcss-light,#b45309)var(--lightningcss-dark,#fbbf24);--amber-soft:var(--lightningcss-light,#b453091a)var(--lightningcss-dark,#fbbf2421);--radius:8px;--radius-sm:5px;--radius-xs:4px;--font:-apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, system-ui, "Helvetica Neue", sans-serif;--mono:ui-monospace, "SF Mono", "JetBrains Mono", "Cascadia Code", Menlo, Consolas, monospace;--shadow:0 1px 2px var(--lightningcss-light,#1018280f)var(--lightningcss-dark,#00000080), 0 10px 28px var(--lightningcss-light,#10182812)var(--lightningcss-dark,#0000004d);--shadow-sm:0 1px 2px var(--lightningcss-light,#1018280f)var(--lightningcss-dark,#0006)}@media (prefers-color-scheme:dark){:root{--lightningcss-light: ;--lightningcss-dark:initial}}:root[data-theme=light]{--lightningcss-light:initial;--lightningcss-dark: ;color-scheme:light}:root[data-theme=dark]{--lightningcss-light: ;--lightningcss-dark:initial;color-scheme:dark}*{box-sizing:border-box}html,body,#root{height:100%}body{background:var(--bg);color:var(--text);font-family:var(--font);-webkit-font-smoothing:antialiased;text-rendering:optimizelegibility;margin:0;font-size:14px;line-height:1.5}a{color:var(--accent-hover);text-decoration:none}a:hover{text-decoration:underline}code,.mono{font-family:var(--mono);font-size:.92em}h1,h2,h3,h4{letter-spacing:-.01em;margin:0;font-weight:650}::selection{background:var(--accent-soft)}input[type=checkbox],input[type=radio]{accent-color:var(--accent)}::-webkit-scrollbar{width:10px;height:10px}::-webkit-scrollbar-thumb{background:var(--border);border:2px solid var(--bg);border-radius:99px}::-webkit-scrollbar-thumb:hover{background:var(--faint)}:focus-visible{outline:2px solid var(--accent-ring);outline-offset:2px;border-radius:4px}.app{grid-template-columns:232px 1fr;min-height:100dvh;display:grid}.sidebar{border-right:1px solid var(--border);background:var(--rail);flex-direction:column;align-self:start;gap:4px;height:100dvh;padding:18px 14px;display:flex;position:sticky;top:0}.brand{align-items:center;gap:10px;padding:6px 8px 14px;display:flex}.brand-logo{background:var(--text);flex-shrink:0;width:26px;height:26px;-webkit-mask:url(/logo.png) 50%/contain no-repeat;mask:url(/logo.png) 50%/contain no-repeat}.brand .name{letter-spacing:-.02em;font-size:15px;font-weight:700;line-height:26px}.brand .ver{font-family:var(--mono);color:var(--muted);background:var(--raised);border:1px solid var(--border);border-radius:99px;align-self:center;padding:2px 6px;font-size:10px;line-height:1}.nav-item{border-radius:var(--radius-sm);text-align:left;cursor:pointer;width:100%;color:var(--muted);font:inherit;background:0 0;border:none;align-items:center;gap:10px;padding:8px 10px;font-size:13.5px;font-weight:500;transition:background .12s,color .12s;display:flex}.nav-item:hover{background:var(--raised);color:var(--text)}.nav-item.active{background:var(--accent-soft);color:var(--text)}.nav-item svg{width:17px;height:17px;color:var(--faint);flex-shrink:0}.nav-item.active svg{color:var(--accent)}.sidebar-foot{flex-direction:column;gap:2px;margin-top:auto;padding-top:12px;display:flex}.sidebar-link{color:var(--muted);border-radius:var(--radius-sm);align-items:center;gap:9px;padding:8px 10px;font-size:13px;display:flex}.sidebar-link:hover{background:var(--raised);color:var(--text);text-decoration:none}.sidebar-link svg{width:16px;height:16px}.theme-toggle{text-align:left;cursor:pointer;width:100%;color:var(--muted);font:inherit;border-radius:var(--radius-sm);background:0 0;border:none;align-items:center;gap:9px;padding:8px 10px;font-size:13px;transition:background .12s,color .12s;display:flex}.theme-toggle:hover{background:var(--raised);color:var(--text)}.theme-toggle svg{flex-shrink:0;width:16px;height:16px}.theme-toggle .mode{text-transform:capitalize}.stop-toggle{color:var(--red)}.stop-toggle:hover{background:var(--red-soft);color:var(--red)}.stop-toggle:disabled{opacity:.5;cursor:default}.main{min-width:0}.main-inner{max-width:980px;margin:0 auto;padding:32px 36px 64px}.page-head{justify-content:space-between;align-items:center;gap:16px;margin-bottom:6px;display:flex}.page-head h2{font-size:19px}.page-sub{color:var(--muted);max-width:70ch;margin:4px 0 22px;font-size:13.5px}.page-sub b{color:var(--text);font-weight:600}.btn{border-radius:var(--radius-sm);font:inherit;cursor:pointer;white-space:nowrap;border:1px solid #0000;justify-content:center;align-items:center;gap:7px;padding:7px 14px;font-size:13px;font-weight:550;transition:background .12s,border-color .12s,opacity .12s;display:inline-flex}.btn svg{width:15px;height:15px}.btn:disabled{opacity:.55;cursor:default}.btn-primary{background:var(--accent);color:var(--accent-ink)}.btn-primary:hover:not(:disabled){background:var(--accent-hover)}.btn-ghost{background:var(--raised);color:var(--text);border-color:var(--border)}.btn-ghost:hover:not(:disabled){background:var(--raised-hover)}.btn-danger{color:var(--red);background:0 0;border-color:#f871714d}.btn-danger:hover:not(:disabled){background:var(--red-soft)}.btn-sm{border-radius:var(--radius-xs);padding:4px 9px;font-size:12px}.btn-icon{color:var(--muted);border-radius:var(--radius-xs);padding:5px;transition:background .12s,color .12s}.btn-icon:hover{background:var(--raised-hover);color:var(--text)}.card{background:var(--surface);border:1px solid var(--border);border-radius:var(--radius);min-width:0}.panel{background:var(--surface);border:1px solid var(--border);border-radius:var(--radius);padding:18px}.panel-accent{background:linear-gradient(180deg, var(--accent-soft), transparent 120%), var(--surface);border-color:#7c5cff47}.stat-row{grid-template-columns:repeat(4,1fr);gap:12px;margin-bottom:28px;display:grid}.stat{background:var(--surface);border:1px solid var(--border);border-radius:var(--radius);padding:14px 16px;transition:border-color .12s}.stat:hover{border-color:var(--accent-ring)}.stat .label{color:var(--muted);text-transform:uppercase;letter-spacing:.05em;align-items:center;gap:6px;margin-bottom:9px;font-size:11px;font-weight:600;display:flex}.stat .label svg{width:14px;height:14px}.stat .value{letter-spacing:-.02em;font-size:24px;font-weight:700;line-height:1.1}.stat .value.mono{font-family:var(--mono);font-size:19px}.model-group-head{color:var(--muted);text-transform:uppercase;letter-spacing:.04em;align-items:baseline;gap:8px;margin:0 0 8px;font-size:12px;font-weight:600;display:flex}.model-group-head .count{font-family:var(--mono);text-transform:none;letter-spacing:0;color:var(--faint);font-weight:500}.model-grid{grid-template-columns:repeat(auto-fill,minmax(220px,1fr));gap:8px;display:grid}.model-card{background:var(--surface);border:1px solid var(--border);border-radius:var(--radius-sm);padding:10px 12px;transition:border-color .12s,background .12s}.model-card:hover{border-color:var(--accent-ring);background:var(--hover)}.model-card .id{font-family:var(--mono);letter-spacing:-.01em;color:var(--text);font-size:13px;font-weight:600}.badge{font-size:11px;font-weight:600;font-family:var(--mono);letter-spacing:.01em;border-radius:99px;align-items:center;gap:5px;padding:2px 8px;display:inline-flex}.badge-accent{background:var(--accent-soft);color:var(--accent-hover)}.badge-green{background:var(--green-soft);color:var(--green)}.badge-amber{background:var(--amber-soft);color:var(--amber)}.badge-muted{background:var(--raised);color:var(--muted);border:1px solid var(--border)}.dot{border-radius:50%;flex-shrink:0;width:7px;height:7px}.dot-green{background:var(--green);box-shadow:0 0 0 3px var(--green-soft)}.dot-red{background:var(--red);box-shadow:0 0 0 3px var(--red-soft)}.tbl{border-collapse:collapse;width:100%;font-size:13px}.tbl thead th{text-align:left;color:var(--muted);text-transform:uppercase;letter-spacing:.04em;border-bottom:1px solid var(--border);padding:9px 12px;font-size:11.5px;font-weight:600}.tbl tbody td{border-bottom:1px solid var(--border-soft);padding:10px 12px}.tbl tbody tr:last-child td{border-bottom:none}.tbl tbody tr:hover td{background:var(--hover)}.tbl .num{text-align:right;font-family:var(--mono)}.tbl-wrap{border:1px solid var(--border);border-radius:var(--radius);overflow-x:auto}.input,textarea.input{border-radius:var(--radius-sm);background:var(--raised);border:1px solid var(--border);width:100%;color:var(--text);font:inherit;padding:8px 11px;font-size:13px;transition:border-color .12s}.input::placeholder{color:var(--faint)}.input:focus{border-color:var(--accent);outline:none}textarea.input{resize:vertical;font-family:var(--mono);line-height:1.55}.field-label{color:var(--muted);margin-bottom:5px;font-size:12px;font-weight:500;display:block}select.input{appearance:none}.select-sm{border-radius:var(--radius-sm);background:var(--raised);border:1px solid var(--border);color:var(--text);font:inherit;cursor:pointer;padding:5px 8px;font-size:13px;transition:border-color .12s}.select-sm:focus{border-color:var(--accent);outline:none}.select-sm:disabled{opacity:.5;cursor:default}.switch{cursor:pointer;background:var(--lightningcss-light,#c5c9d2)var(--lightningcss-dark,#3a3f4b);border:none;border-radius:99px;flex-shrink:0;width:34px;height:19px;padding:0;transition:background .15s;position:relative}.switch.on{background:var(--accent)}.switch:disabled{opacity:.6;cursor:default}.switch .knob{background:#fff;border-radius:50%;width:15px;height:15px;transition:left .15s;position:absolute;top:2px;left:2px;box-shadow:0 1px 2px #1018284d}.switch.on .knob{left:17px}.muted{color:var(--muted)}.faint{color:var(--faint)}.row{align-items:center;gap:10px;display:flex}.spread{justify-content:space-between;align-items:center;gap:12px;display:flex}.stack{flex-direction:column;display:flex}.chip{font-family:var(--mono);background:var(--raised);border:1px solid var(--border);border-radius:var(--radius-xs);color:var(--text);padding:1px 7px;font-size:12px}.empty{text-align:center;border:1px dashed var(--border);border-radius:var(--radius);color:var(--muted);padding:56px 20px}.empty svg{width:30px;height:30px;color:var(--faint);margin-bottom:12px}.empty .title{color:var(--text);margin-bottom:6px;font-weight:600}.notice{border-radius:var(--radius-sm);align-items:center;gap:8px;margin-bottom:14px;padding:9px 12px;font-size:13px;display:flex}.notice svg{flex-shrink:0;width:15px;height:15px}.notice-ok{background:var(--green-soft);color:var(--green)}.notice-err{background:var(--red-soft);color:var(--red)}.h-section{color:var(--text);align-items:center;gap:8px;margin:30px 0 12px;font-size:13px;font-weight:600;display:flex}.h-section .count{color:var(--muted);font-weight:500;font-family:var(--mono);font-size:12px}.spin{border:2px solid var(--border);border-top-color:var(--accent);border-radius:50%;width:14px;height:14px;animation:.7s linear infinite spin;display:inline-block}@keyframes spin{to{transform:rotate(360deg)}}@media (prefers-reduced-motion:reduce){*{transition:none!important;animation:none!important}}.modal-overlay{-webkit-backdrop-filter:blur(2px);backdrop-filter:blur(2px);z-index:50;background:var(--lightningcss-light,#11131c73)var(--lightningcss-dark,#0009);justify-content:center;align-items:flex-start;padding:8vh 16px;display:flex;position:fixed;inset:0}.modal-card{background:var(--surface);border:1px solid var(--border);border-radius:var(--radius);width:100%;max-width:520px;box-shadow:var(--shadow);max-height:84vh;padding:20px;overflow-y:auto}.modal-head{justify-content:space-between;align-items:center;margin-bottom:16px;display:flex}.modal-head h3{font-size:16px}.card-head{flex-wrap:wrap;align-items:center;gap:8px;min-width:0;padding:14px 16px 6px;display:flex}.card-head strong{overflow-wrap:anywhere;min-width:0}.card-sub{color:var(--muted);overflow-wrap:anywhere;min-width:0;padding:0 16px 10px;font-size:12px}.card-active{border-color:var(--accent-ring)}.card-right{color:var(--faint);align-items:center;gap:4px;margin-left:auto;font-size:11px;display:flex}.btn-icon-danger.card-right{appearance:none;color:var(--red);cursor:pointer;background:0 0;border:1px solid #0000;justify-content:center}.btn-icon-danger.card-right:hover{background:var(--red-soft);border-color:var(--red-soft);color:var(--red)}.card-row{justify-content:space-between;align-items:center;padding:14px 16px;display:flex}.badge-primary{background:var(--accent-soft);color:var(--accent-hover)}.dot-blue{background:var(--accent);box-shadow:0 0 0 3px var(--accent-soft)}.dot-muted{background:var(--muted)}.dot-amber{background:var(--amber);box-shadow:0 0 0 3px var(--amber-soft)}.section-sep{align-items:center;gap:10px;margin:20px 0 12px;display:flex}.section-label{color:var(--muted);text-transform:uppercase;letter-spacing:.04em;white-space:nowrap;font-size:12px;font-weight:600}.sep-line{background:var(--border);flex:1;height:1px}.quota-compact{gap:4px;padding:2px 16px 12px;display:grid}.quota-row{grid-template-columns:minmax(34px,max-content) 34px minmax(34px,44px) minmax(38px,42px) minmax(58px,1fr) minmax(30px,max-content);align-items:center;gap:8px;min-width:0;display:grid}.quota-label{color:var(--muted);font-size:11px;font-weight:600}.quota-val{font-size:11px;font-family:var(--mono);color:var(--text);text-align:right}.quota-reset-label{text-overflow:ellipsis;white-space:nowrap;color:var(--faint);font-size:11px;overflow:hidden}.quota-reset-day,.quota-reset-time{color:var(--muted);white-space:nowrap;font-size:11px}.quota-reset-time{font-family:var(--mono)}.bar{background:var(--raised);border-radius:3px;min-width:0;height:5px;overflow:hidden}.bar-fill{border-radius:3px;height:100%;transition:width .3s}.bar-green{background:var(--green)}.bar-amber{background:linear-gradient(90deg, var(--green), var(--amber))}.toggle{background:var(--raised);border:1px solid var(--border);cursor:pointer;border-radius:10px;flex-shrink:0;width:36px;height:20px;transition:background .15s;position:relative}.toggle.on{background:var(--accent);border-color:var(--accent)}.toggle-knob{background:#fff;border-radius:50%;width:16px;height:16px;transition:left .15s;position:absolute;top:1px;left:1px}.toggle.on .toggle-knob{left:17px}.notice-warn{border-radius:var(--radius-sm);background:var(--amber-soft);color:var(--amber);align-items:center;gap:6px;margin-bottom:12px;padding:8px 10px;font-size:12px;display:flex}.notice-warn svg{flex-shrink:0;width:14px;height:14px}.modal-desc{color:var(--muted);margin-bottom:14px;font-size:13px}.modal-actions{gap:8px;margin-top:16px;display:flex}.modal-actions .btn{flex:1}.setup-guide{border:1px solid var(--border);border-radius:var(--radius-sm);margin-bottom:4px;padding:8px 12px;font-size:13px}.setup-guide summary{cursor:pointer;color:var(--accent-hover);font-weight:500}.setup-guide summary:hover{text-decoration:underline}.setup-guide a{color:var(--accent-hover)}.list-row{text-align:left;border-radius:var(--radius-sm);border:1px solid var(--border);background:var(--raised);cursor:pointer;width:100%;color:var(--text);font:inherit;justify-content:space-between;align-items:center;gap:10px;padding:11px 13px;transition:background .12s,border-color .12s;display:flex}.list-row:hover{background:var(--raised-hover);border-color:var(--accent-ring)}.list-row .title{font-size:14px;font-weight:600}.list-row .sub{color:var(--muted);margin-top:2px;font-size:12px}.prov-card{justify-content:space-between;align-items:flex-start;gap:12px;padding:15px 16px;display:flex}.link-btn{color:var(--accent-hover);font:inherit;cursor:pointer;background:0 0;border:none;padding:6px 2px;font-size:13px;text-decoration:underline}@media (width<=760px){.app{grid-template-columns:1fr}.sidebar{z-index:20;border-right:none;border-bottom:1px solid var(--border);background:var(--rail);flex-flow:wrap;align-items:center;gap:0;min-width:0;height:auto;padding:0 10px;position:sticky;top:0}.brand{flex:auto;order:1;width:auto;padding:10px 4px}.sidebar-foot{flex-direction:row;flex:none;order:2;gap:4px;margin:0;padding:0}.sidebar-foot .sidebar-link{display:none}.theme-toggle{justify-content:center;min-width:44px;min-height:44px;padding:8px}.theme-toggle .mode{display:none}.sidebar nav{overscroll-behavior-x:contain;border-top:1px solid var(--border-soft);scrollbar-width:none;flex-direction:row;flex:100%;order:3;gap:2px;min-width:0;margin:0;padding:4px 0 8px;display:flex;overflow-x:auto}.sidebar nav::-webkit-scrollbar{display:none}.nav-item{white-space:nowrap;width:auto;min-height:44px;padding:9px 14px;font-size:14px}.main-inner{padding:22px 18px 48px}.stat-row{grid-template-columns:repeat(2,minmax(0,1fr))}.tbl{min-width:460px}}

package/gui/dist/index.html

@@ -16,8 +16,8 @@
         } catch (e) {}
       })();
     </script>
-    <script type="module" crossorigin src="/assets/index-DalshCSi.js"></script>
-    <link rel="stylesheet" crossorigin href="/assets/index-dCS-lwCM.css">
+    <script type="module" crossorigin src="/assets/index-DVvcVBD_.js"></script>
+    <link rel="stylesheet" crossorigin href="/assets/index-xJdeQjzZ.css">
   </head>
   <body>
     <div id="root"></div>

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@bitkyc08/opencodex",
-  "version": "2.1.8",
+  "version": "2.1.9",
   "description": "Universal provider proxy for OpenAI Codex — use any LLM with Codex CLI/App/SDK",
   "type": "module",
   "main": "src/index.ts",
@@ -22,6 +22,7 @@
     "start": "bun run src/cli.ts start",
     "test": "bun test tests",
     "typecheck": "bun x tsc --noEmit",
+    "privacy:scan": "bun scripts/privacy-scan.ts",
     "generate:jawcode-metadata": "bun scripts/generate-jawcode-metadata.ts",
     "build:gui": "cd gui && bun install && bun run build",
     "prepublishOnly": "bun run typecheck && bun run build:gui",

package/src/adapters/anthropic.ts

@@ -63,6 +63,19 @@ function usageFromAnthropic(usage: Record<string, number> | undefined): OcxUsage
   };
 }
 
+function mergeAnthropicUsage(
+  base: Record<string, number> | undefined,
+  next: Record<string, number> | undefined,
+): Record<string, number> | undefined {
+  if (!next) return base;
+  if (!base) return { ...next };
+  const merged = { ...base };
+  for (const [k, v] of Object.entries(next)) {
+    merged[k] = (merged[k] ?? 0) + v;
+  }
+  return merged;
+}
+
 function buildToolNameTransforms(provider: OcxProviderConfig): { toWire: (name: string) => string; fromWire: (name: string) => string } {
   if (provider.authMode === "oauth") {
     return { toWire: applyClaudeToolPrefix, fromWire: stripClaudeToolPrefix };
@@ -269,6 +282,14 @@ export function createAnthropicAdapter(provider: OcxProviderConfig): ProviderAda
       let currentBlockType = "";
       let currentToolCallId = "";
       let currentToolCallName = "";
+      let pendingUsage: Record<string, number> | undefined;
+      let emittedDone = false;
+
+      const emitDone = function* (): Generator<AdapterEvent> {
+        if (emittedDone) return;
+        emittedDone = true;
+        yield { type: "done", usage: usageFromAnthropic(pendingUsage) };
+      };
 
       try {
         while (true) {
@@ -298,6 +319,11 @@ export function createAnthropicAdapter(provider: OcxProviderConfig): ProviderAda
             }
 
             switch (currentEventType || data.type) {
+              case "message_start": {
+                const message = data.message as { usage?: Record<string, number> } | undefined;
+                pendingUsage = mergeAnthropicUsage(pendingUsage, message?.usage);
+                break;
+              }
               case "content_block_start": {
                 const block = data.content_block as { type: string; id?: string; name?: string } | undefined;
                 if (!block) break;
@@ -331,15 +357,11 @@ export function createAnthropicAdapter(provider: OcxProviderConfig): ProviderAda
               }
               case "message_delta": {
                 const usage = data.usage as Record<string, number> | undefined;
-                if (usage) {
-                  yield {
-                    type: "done",
-                    usage: usageFromAnthropic(usage),
-                  };
-                }
+                pendingUsage = mergeAnthropicUsage(pendingUsage, usage);
                 break;
               }
               case "message_stop": {
+                yield* emitDone();
                 break;
               }
               case "error": {
@@ -351,6 +373,7 @@ export function createAnthropicAdapter(provider: OcxProviderConfig): ProviderAda
             currentEventType = "";
           }
         }
+        if (pendingUsage && !emittedDone) yield* emitDone();
       } finally {
         reader.releaseLock();
       }

package/src/adapters/openai-responses.ts

@@ -55,10 +55,22 @@ export function createResponsesPassthroughAdapter(provider: OcxProviderConfig):
         // OAuth passthrough: ChatGPT backend path is `${baseUrl}/responses` (no /v1).
         url = `${provider.baseUrl}/responses`;
         if (provider.headers) Object.assign(headers, provider.headers); // static headers first…
+        const runtimeProvider = provider as {
+          _codexAccountOverride?: { accessToken: string; chatgptAccountId: string };
+          _codexAccountRequired?: boolean;
+        };
+        if (runtimeProvider._codexAccountRequired && !runtimeProvider._codexAccountOverride) {
+          throw new Error("Codex pool account auth is required but unavailable");
+        }
         for (const h of FORWARD_HEADERS) {
           const v = incoming?.headers.get(h);
           if (v) headers[h] = v;                                        // …so forwarded auth always wins.
         }
+        const override = runtimeProvider._codexAccountOverride;
+        if (override) {
+          headers["authorization"] = `Bearer ${override.accessToken}`;
+          headers["chatgpt-account-id"] = override.chatgptAccountId;
+        }
       } else {
         const base = provider.baseUrl.replace(/\/v1\/?$/, "");
         url = `${base}/v1/responses`;

package/src/bridge.ts

@@ -35,6 +35,8 @@ interface OutputItem {
   [key: string]: unknown;
 }
 
+export type ResponsesTerminalStatus = "completed" | "failed" | "incomplete";
+
 export function bridgeToResponsesSSE(
   events: AsyncIterable<AdapterEvent>,
   modelId: string,
@@ -43,7 +45,12 @@ export function bridgeToResponsesSSE(
   toolSearchToolNames?: Set<string>,
   onCancel?: () => void,
   heartbeatMs = 2_000,
-  options?: { responseId?: string; stallTimeoutSec?: number; hideThinkingSummary?: boolean },
+  options?: {
+    responseId?: string;
+    stallTimeoutSec?: number;
+    hideThinkingSummary?: boolean;
+    onTerminal?: (status: ResponsesTerminalStatus) => void;
+  },
 ): ReadableStream<Uint8Array> {
   // Freeform/custom tools (apply_patch) carry their body in `input`; the model is given a
   // function with `{input:string}`, so unwrap it here when relaying back as a custom_tool_call.
@@ -62,6 +69,13 @@ export function bridgeToResponsesSSE(
   // never enqueue again and never throw a second time inside start() — the RC2 double-throw that
   // otherwise surfaced as proxy-side stream noise on every client disconnect.
   let closed = false;
+  let clientCancelled = false;
+  let terminalReported = false;
+  const reportTerminal = (status: ResponsesTerminalStatus) => {
+    if (terminalReported || clientCancelled || closed) return;
+    terminalReported = true;
+    options?.onTerminal?.(status);
+  };
   // RC3 keep-alive: Codex's idle timer is timeout(idle_timeout, stream.next()) over an
   // eventsource_stream; ANY received event re-arms it, while an unknown type is ignored
   // (responses.rs `_ => Ok(None)`). We emit a real, parser-ignored `response.heartbeat` only during
@@ -120,6 +134,7 @@ export function bridgeToResponsesSSE(
               incomplete_details: { reason: "upstream_stall_timeout" },
             },
           });
+          reportTerminal("incomplete");
           terminated = true;
           closed = true;
           clearInterval(beat!);
@@ -341,6 +356,7 @@ export function bridgeToResponsesSSE(
               emit("response.completed", {
                 response: { ...responseSnapshot("completed", finishedItems), usage: responsesUsage(event.usage) },
               });
+              reportTerminal("completed");
               terminated = true;
               break;
             }
@@ -356,6 +372,7 @@ export function bridgeToResponsesSSE(
                   last_error: responseError(502, "upstream_error", event.message),
                 },
               });
+              reportTerminal("failed");
               terminated = true;
               break;
             }
@@ -369,6 +386,7 @@ export function bridgeToResponsesSSE(
             last_error: responseError(500, "proxy_error", err instanceof Error ? err.message : String(err)),
           },
         });
+        reportTerminal("failed");
         terminated = true;
       }
 
@@ -388,6 +406,7 @@ export function bridgeToResponsesSSE(
             incomplete_details: { reason: "adapter_eof" },
           },
         });
+        reportTerminal("incomplete");
       }
 
       emitDone();
@@ -400,6 +419,7 @@ export function bridgeToResponsesSSE(
     cancel() {
       // Client (Codex) disconnected. Stop emitting and let the caller abort the upstream fetch so a
       // cancelled turn does not leak the upstream stream or keep draining tokens (RC2).
+      clientCancelled = true;
       closed = true;
       if (beat) clearInterval(beat);
       onCancel?.();

package/src/codex-account-label.ts

@@ -0,0 +1,34 @@
+import { createHash, randomBytes } from "node:crypto";
+import type { CodexAccount } from "./types";
+
+export const CODEX_ACCOUNT_LOG_LABEL_RE = /^p[a-f0-9]{6}$/;
+
+export function createCodexAccountLogLabel(existingLabels: Iterable<string | undefined | null> = []): string {
+  const used = new Set([...existingLabels].filter((value): value is string => !!value));
+  for (let i = 0; i < 16; i++) {
+    const label = `p${randomBytes(3).toString("hex")}`;
+    if (!used.has(label)) return label;
+  }
+  return `p${randomBytes(6).toString("hex").slice(0, 6)}`;
+}
+
+export function fallbackCodexAccountLogLabel(accountId: string): string {
+  return `p${createHash("sha256").update(accountId).digest("hex").slice(0, 6)}`;
+}
+
+export function codexAccountLogLabel(account: CodexAccount): string {
+  return CODEX_ACCOUNT_LOG_LABEL_RE.test(account.logLabel ?? "")
+    ? account.logLabel!
+    : fallbackCodexAccountLogLabel(account.id);
+}
+
+export function withCodexAccountLogLabel(
+  account: Omit<CodexAccount, "logLabel"> & Partial<Pick<CodexAccount, "logLabel">>,
+  existingAccounts: readonly CodexAccount[],
+): CodexAccount {
+  if (account.logLabel && CODEX_ACCOUNT_LOG_LABEL_RE.test(account.logLabel)) return account as CodexAccount;
+  return {
+    ...account,
+    logLabel: createCodexAccountLogLabel(existingAccounts.map(existing => existing.logLabel)),
+  };
+}

package/src/codex-account-lifecycle.ts

@@ -0,0 +1,21 @@
+import { removeCodexAccountCredential } from "./codex-account-store";
+import { clearAccountNeedsReauth } from "./codex-account-runtime-state";
+import { clearAccountQuota } from "./codex-quota";
+import { clearCodexUpstreamHealthForAccount, clearThreadAccountMapForAccount } from "./codex-routing";
+import { invalidateCodexWebSocketsForAccount } from "./codex-websocket-registry";
+import type { OcxConfig } from "./types";
+
+export function purgeCodexAccountRuntimeState(accountId: string): void {
+  clearAccountNeedsReauth(accountId);
+  clearAccountQuota(accountId);
+  clearThreadAccountMapForAccount(accountId);
+  clearCodexUpstreamHealthForAccount(accountId);
+}
+
+export function deleteCodexAccount(runtimeConfig: OcxConfig, accountId: string): void {
+  removeCodexAccountCredential(accountId);
+  runtimeConfig.codexAccounts = (runtimeConfig.codexAccounts ?? []).filter(account => account.id !== accountId);
+  if (runtimeConfig.activeCodexAccountId === accountId) runtimeConfig.activeCodexAccountId = undefined;
+  purgeCodexAccountRuntimeState(accountId);
+  invalidateCodexWebSocketsForAccount(accountId);
+}

package/src/codex-account-runtime-state.ts

@@ -0,0 +1,13 @@
+const reauthAccounts = new Set<string>();
+
+export function markAccountNeedsReauth(id: string): void {
+  reauthAccounts.add(id);
+}
+
+export function isAccountNeedsReauth(id: string): boolean {
+  return reauthAccounts.has(id);
+}
+
+export function clearAccountNeedsReauth(id: string): void {
+  reauthAccounts.delete(id);
+}

package/src/codex-account-store.ts

@@ -0,0 +1,355 @@
+import { createHash } from "node:crypto";
+import { closeSync, existsSync, readFileSync, mkdirSync, openSync, unlinkSync, writeFileSync } from "node:fs";
+import { join } from "node:path";
+import { getConfigDir, atomicWriteFile, hardenConfigDir, hardenExistingSecret } from "./config";
+import type { CodexAccountCredentialRecord, CodexAccountCredentials } from "./types";
+
+type LegacyCodexAccountStore = Record<string, CodexAccountCredentials>;
+type CodexAccountStore = Record<string, CodexAccountCredentialRecord>;
+type RawCodexAccountStore = Record<string, CodexAccountCredentials | CodexAccountCredentialRecord>;
+
+const REFRESH_SKEW_MS = 60_000;
+const REFRESH_LOCK_STALE_MS = 60_000;
+const REFRESH_LOCK_WAIT_MS = REFRESH_LOCK_STALE_MS + 5_000;
+const REFRESH_LOCK_POLL_MS = 50;
+
+function codexAccountsPath(): string {
+  return join(getConfigDir(), "codex-accounts.json");
+}
+
+export function loadCodexAccountStore(): LegacyCodexAccountStore {
+  const records = loadCodexAccountRecordStore();
+  const credentials: LegacyCodexAccountStore = {};
+  for (const [id, record] of Object.entries(records)) {
+    if (record.deletedAt == null && record.credential) credentials[id] = record.credential;
+  }
+  return credentials;
+}
+
+function isObject(value: unknown): value is Record<string, unknown> {
+  return !!value && typeof value === "object" && !Array.isArray(value);
+}
+
+function isCredential(value: unknown): value is CodexAccountCredentials {
+  return isObject(value)
+    && typeof value.accessToken === "string"
+    && typeof value.refreshToken === "string"
+    && typeof value.expiresAt === "number"
+    && typeof value.chatgptAccountId === "string";
+}
+
+function isCredentialRecord(value: unknown): value is CodexAccountCredentialRecord {
+  return isObject(value)
+    && typeof value.generation === "number"
+    && (value.credential === undefined || isCredential(value.credential))
+    && (value.refreshGrantFingerprint === undefined || typeof value.refreshGrantFingerprint === "string")
+    && (value.deletedAt === undefined || typeof value.deletedAt === "number")
+    && (value.replacedAt === undefined || typeof value.replacedAt === "number");
+}
+
+export function refreshGrantFingerprintForToken(refreshToken: string): string {
+  return createHash("sha256").update(`codex-refresh-grant:${refreshToken}`).digest("hex");
+}
+
+function recordGrantFingerprint(record: CodexAccountCredentialRecord): string | undefined {
+  return record.refreshGrantFingerprint ?? (
+    record.credential ? refreshGrantFingerprintForToken(record.credential.refreshToken) : undefined
+  );
+}
+
+function normalizeRecord(value: CodexAccountCredentials | CodexAccountCredentialRecord | undefined): CodexAccountCredentialRecord | undefined {
+  if (!value) return undefined;
+  if (isCredentialRecord(value)) {
+    const refreshGrantFingerprint = recordGrantFingerprint(value);
+    return refreshGrantFingerprint ? { ...value, refreshGrantFingerprint } : value;
+  }
+  if (isCredential(value)) {
+    return {
+      credential: value,
+      generation: 0,
+      refreshGrantFingerprint: refreshGrantFingerprintForToken(value.refreshToken),
+    };
+  }
+  return undefined;
+}
+
+function loadCodexAccountRecordStore(): CodexAccountStore {
+  const path = codexAccountsPath();
+  hardenConfigDir();
+  hardenExistingSecret(path);
+  if (!existsSync(path)) return {};
+  try {
+    const raw = JSON.parse(readFileSync(path, "utf-8")) as RawCodexAccountStore;
+    const normalized: CodexAccountStore = {};
+    for (const [id, value] of Object.entries(raw)) {
+      const record = normalizeRecord(value);
+      if (record) normalized[id] = record;
+    }
+    return normalized;
+  } catch {
+    return {};
+  }
+}
+
+function persist(store: CodexAccountStore): void {
+  const dir = getConfigDir();
+  if (!existsSync(dir)) mkdirSync(dir, { recursive: true, mode: 0o700 });
+  atomicWriteFile(codexAccountsPath(), JSON.stringify(store, null, 2) + "\n");
+}
+
+export function getCodexAccountCredential(id: string): CodexAccountCredentials | null {
+  const record = readCodexAccountRecord(id);
+  if (!record || record.deletedAt != null) return null;
+  return record.credential ?? null;
+}
+
+export function saveCodexAccountCredential(id: string, cred: CodexAccountCredentials): void {
+  const store = loadCodexAccountRecordStore();
+  const current = store[id];
+  const refreshGrantFingerprint = current?.credential?.refreshToken === cred.refreshToken
+    ? current.refreshGrantFingerprint ?? refreshGrantFingerprintForToken(cred.refreshToken)
+    : refreshGrantFingerprintForToken(cred.refreshToken);
+  store[id] = {
+    credential: cred,
+    generation: (current?.generation ?? 0) + 1,
+    refreshGrantFingerprint,
+    replacedAt: current ? Date.now() : undefined,
+  };
+  persist(store);
+}
+
+export function removeCodexAccountCredential(id: string): void {
+  tombstoneCodexAccount(id);
+}
+
+export function listCodexAccountIds(): string[] {
+  return Object.keys(loadCodexAccountStore());
+}
+
+export function readCodexAccountRecord(id: string): CodexAccountCredentialRecord | null {
+  return loadCodexAccountRecordStore()[id] ?? null;
+}
+
+export function isCodexAccountGenerationLive(id: string, generation: number): boolean {
+  const record = readCodexAccountRecord(id);
+  return !!record?.credential && record.deletedAt == null && record.generation === generation;
+}
+
+export function saveCodexAccountCredentialIfGeneration(
+  id: string,
+  generation: number,
+  cred: CodexAccountCredentials,
+): boolean {
+  const store = loadCodexAccountRecordStore();
+  const current = store[id];
+  if (!current || current.generation !== generation || current.deletedAt != null || !current.credential) {
+    return false;
+  }
+  store[id] = {
+    credential: cred,
+    generation: generation + 1,
+    refreshGrantFingerprint: current.refreshGrantFingerprint ?? refreshGrantFingerprintForToken(current.credential.refreshToken),
+    replacedAt: current.replacedAt,
+  };
+  persist(store);
+  return true;
+}
+
+export function tombstoneCodexAccount(id: string): number {
+  const store = loadCodexAccountRecordStore();
+  const current = store[id];
+  const generation = (current?.generation ?? 0) + 1;
+  store[id] = { generation, deletedAt: Date.now() };
+  persist(store);
+  return generation;
+}
+
+const CHATGPT_TOKEN_URL = "https://auth.openai.com/oauth/token";
+const CHATGPT_CLIENT_ID = "app_EMoamEEZ73f0CkXaXp7hrann";
+
+export class TokenRefreshError extends Error {
+  reason: "expired" | "revoked" | "unknown";
+  constructor(reason: "expired" | "revoked" | "unknown", message: string) {
+    super(message);
+    this.name = "TokenRefreshError";
+    this.reason = reason;
+  }
+}
+
+export class CodexCredentialGenerationConflictError extends Error {
+  constructor(message = "Codex account changed during refresh") {
+    super(message);
+    this.name = "CodexCredentialGenerationConflictError";
+  }
+}
+
+export class CodexCredentialRefreshLockTimeoutError extends Error {
+  constructor(message = "Timed out waiting for Codex account refresh lock") {
+    super(message);
+    this.name = "CodexCredentialRefreshLockTimeoutError";
+  }
+}
+
+type CodexTokenResult = { accessToken: string; chatgptAccountId: string; generation: number };
+const refreshLocks = new Map<string, Promise<CodexTokenResult>>();
+
+function codexRefreshLockPath(lockKey: string): string {
+  const digest = createHash("sha256").update(lockKey).digest("hex").slice(0, 32);
+  return join(getConfigDir(), `codex-refresh-${digest}.lock`);
+}
+
+function sleep(ms: number): Promise<void> {
+  return new Promise(resolve => setTimeout(resolve, ms));
+}
+
+function errCode(err: unknown): string | undefined {
+  return err && typeof err === "object" && "code" in err ? String((err as { code?: unknown }).code) : undefined;
+}
+
+function isRefreshLockStale(path: string): boolean {
+  try {
+    hardenExistingSecret(path);
+    const parsed = JSON.parse(readFileSync(path, "utf-8")) as { acquiredAt?: unknown };
+    return typeof parsed.acquiredAt !== "number" || Date.now() - parsed.acquiredAt > REFRESH_LOCK_STALE_MS;
+  } catch {
+    return true;
+  }
+}
+
+async function withCodexRefreshFileLock<T>(lockKey: string, fn: () => Promise<T>): Promise<T> {
+  hardenConfigDir();
+  const dir = getConfigDir();
+  if (!existsSync(dir)) mkdirSync(dir, { recursive: true, mode: 0o700 });
+
+  const path = codexRefreshLockPath(lockKey);
+  const deadline = Date.now() + REFRESH_LOCK_WAIT_MS;
+  let fd: number | null = null;
+  while (fd == null) {
+    try {
+      fd = openSync(path, "wx", 0o600);
+      writeFileSync(fd, JSON.stringify({ acquiredAt: Date.now(), pid: process.pid }) + "\n");
+      break;
+    } catch (err) {
+      if (errCode(err) !== "EEXIST") throw err;
+      if (isRefreshLockStale(path)) {
+        try {
+          unlinkSync(path);
+        } catch (unlinkErr) {
+          if (errCode(unlinkErr) !== "ENOENT") throw unlinkErr;
+        }
+        continue;
+      }
+      if (Date.now() >= deadline) throw new CodexCredentialRefreshLockTimeoutError();
+      await sleep(REFRESH_LOCK_POLL_MS);
+    }
+  }
+
+  try {
+    return await fn();
+  } finally {
+    if (fd != null) closeSync(fd);
+    try {
+      unlinkSync(path);
+    } catch (err) {
+      if (errCode(err) !== "ENOENT") throw err;
+    }
+  }
+}
+
+function findFreshCredentialForGrant(
+  refreshGrantFingerprint: string,
+  excludeId: string,
+): CodexAccountCredentials | null {
+  const now = Date.now();
+  const records = loadCodexAccountRecordStore();
+  for (const [candidateId, candidate] of Object.entries(records)) {
+    if (candidateId === excludeId || candidate.deletedAt != null || !candidate.credential) continue;
+    if (recordGrantFingerprint(candidate) !== refreshGrantFingerprint) continue;
+    if (candidate.credential.expiresAt > now + REFRESH_SKEW_MS) return candidate.credential;
+  }
+  return null;
+}
+
+export async function getValidCodexToken(id: string): Promise<CodexTokenResult> {
+  const record = readCodexAccountRecord(id);
+  const cred = record?.deletedAt == null ? record?.credential : undefined;
+  if (!record || !cred) throw new Error("Codex account credential is unavailable; reauthenticate the account.");
+  const refreshGrantFingerprint = recordGrantFingerprint(record);
+  if (!refreshGrantFingerprint) throw new Error("Codex account credential is unavailable; reauthenticate the account.");
+
+  if (cred.expiresAt > Date.now() + REFRESH_SKEW_MS) {
+    return { accessToken: cred.accessToken, chatgptAccountId: cred.chatgptAccountId, generation: record.generation };
+  }
+
+  const existing = refreshLocks.get(refreshGrantFingerprint);
+  if (existing) {
+    await existing;
+    return getValidCodexToken(id);
+  }
+
+  const refreshPromise = withCodexRefreshFileLock(refreshGrantFingerprint, async (): Promise<CodexTokenResult> => {
+    const lockedRecord = readCodexAccountRecord(id);
+    const lockedCred = lockedRecord?.deletedAt == null ? lockedRecord?.credential : undefined;
+    if (!lockedRecord || !lockedCred) throw new CodexCredentialGenerationConflictError();
+    const startGeneration = lockedRecord.generation;
+    const lockedRefreshGrantFingerprint = recordGrantFingerprint(lockedRecord);
+    if (lockedRefreshGrantFingerprint !== refreshGrantFingerprint) throw new CodexCredentialGenerationConflictError();
+    if (lockedCred.expiresAt > Date.now() + REFRESH_SKEW_MS) {
+      return {
+        accessToken: lockedCred.accessToken,
+        chatgptAccountId: lockedCred.chatgptAccountId,
+        generation: startGeneration,
+      };
+    }
+    const sameGrantFreshCredential = findFreshCredentialForGrant(refreshGrantFingerprint, id);
+    if (sameGrantFreshCredential) {
+      if (!saveCodexAccountCredentialIfGeneration(id, startGeneration, sameGrantFreshCredential)) {
+        throw new CodexCredentialGenerationConflictError();
+      }
+      return {
+        accessToken: sameGrantFreshCredential.accessToken,
+        chatgptAccountId: sameGrantFreshCredential.chatgptAccountId,
+        generation: startGeneration + 1,
+      };
+    }
+    const res = await fetch(CHATGPT_TOKEN_URL, {
+      method: "POST",
+      headers: { "Content-Type": "application/x-www-form-urlencoded" },
+      body: new URLSearchParams({
+        grant_type: "refresh_token",
+        client_id: CHATGPT_CLIENT_ID,
+        refresh_token: lockedCred.refreshToken,
+      }).toString(),
+      signal: AbortSignal.timeout(30_000),
+    });
+    if (!res.ok) {
+      const errText = await res.text().catch(() => "");
+      let errDesc: string;
+      try {
+        const parsed = JSON.parse(errText) as { error?: string; error_description?: string };
+        errDesc = [parsed.error, parsed.error_description].filter(Boolean).join(": ") || `HTTP ${res.status}`;
+      } catch { errDesc = `HTTP ${res.status}`; }
+      const reason = errDesc.includes("invalidated") || errDesc.includes("revoked") ? "revoked" as const
+        : errDesc.includes("expired") ? "expired" as const
+        : "unknown" as const;
+      throw new TokenRefreshError(reason, `Codex token refresh failed (${reason}); reauthenticate the account.`);
+    }
+    const data = (await res.json()) as { access_token: string; refresh_token?: string; expires_in: number };
+
+    const updated: CodexAccountCredentials = {
+      accessToken: data.access_token,
+      refreshToken: data.refresh_token ?? lockedCred.refreshToken,
+      expiresAt: Date.now() + data.expires_in * 1000,
+      chatgptAccountId: lockedCred.chatgptAccountId,
+    };
+    if (!saveCodexAccountCredentialIfGeneration(id, startGeneration, updated)) {
+      throw new CodexCredentialGenerationConflictError();
+    }
+    return { accessToken: updated.accessToken, chatgptAccountId: updated.chatgptAccountId, generation: startGeneration + 1 };
+  }).finally(() => {
+    refreshLocks.delete(refreshGrantFingerprint);
+  });
+
+  refreshLocks.set(refreshGrantFingerprint, refreshPromise);
+  return refreshPromise;
+}