@c4t4/heyamigo 0.8.14 → 0.8.15

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (3) hide show
  1. package/dist/ai/codex.js +11 -10
  2. package/dist/config.js +5 -5
  3. package/package.json +1 -1
package/dist/ai/codex.js CHANGED
@@ -12,11 +12,11 @@
12
12
  //
13
13
  // Configurable via config.codex:
14
14
  // - model: optional `-m <model>` override. Default = Codex's default.
15
- // - yolo (default true): emits --dangerously-bypass-approvals-and-sandbox
16
- // (the documented canonical flag; --yolo is an alias in newer builds).
17
- // Bundles no-approvals + full sandbox + skip-trust-check. Right
18
- // default for a headless owner-bot; set false to honor runTask's
19
- // mode-driven sandbox.
15
+ // - yolo (default true): emits --yolo, which bundles no-approvals +
16
+ // full sandbox + skip-trust-check. The narrower verbose flag
17
+ // (--dangerously-bypass-approvals-and-sandbox) does NOT skip the
18
+ // trust check on all versions and can hang the process — use --yolo.
19
+ // Set false to honor runTask's mode-driven sandbox.
20
20
  // - skipGitRepoCheck (default true): adds --skip-git-repo-check when
21
21
  // yolo is off. Codex refuses to run in untrusted cwds without it.
22
22
  // - extraArgs: appended verbatim. Escape hatch for version drift.
@@ -75,11 +75,12 @@ function buildExecArgs(params) {
75
75
  args.push('-m', cfg.model);
76
76
  }
77
77
  if (cfg.yolo) {
78
- // Canonical "no approvals + full sandbox + no trust check" switch.
79
- // Some newer Codex builds expose --yolo as an alias for the same
80
- // behavior; we use the documented name to stay portable. mode is
81
- // ignored on this path.
82
- args.push('--dangerously-bypass-approvals-and-sandbox');
78
+ // --yolo bundles all three bypasses: no approvals, full sandbox,
79
+ // and skip-trust-check. Empirically the right switch the more
80
+ // narrowly-scoped --dangerously-bypass-approvals-and-sandbox does
81
+ // NOT subsume the trust-directory gate on some Codex versions and
82
+ // causes the process to hang waiting for stdin.
83
+ args.push('--yolo');
83
84
  }
84
85
  else {
85
86
  if (cfg.skipGitRepoCheck)
package/dist/config.js CHANGED
@@ -41,11 +41,11 @@ const ConfigSchema = z.object({
41
41
  // Optional model override. If unset, Codex uses its default. Passed
42
42
  // as `-m <model>` to `codex exec`.
43
43
  model: z.string().optional(),
44
- // Field name kept catchy, but the actual flag emitted is the
45
- // documented one: --dangerously-bypass-approvals-and-sandbox. Some
46
- // newer Codex builds also accept --yolo as an alias; we use the
47
- // canonical name for portability. Right default for a headless
48
- // owner-bot. Set to false to honor runTask's mode-driven sandbox.
44
+ // Emits --yolo, which bundles no-approvals + full sandbox + skip-
45
+ // trust-check. The narrower verbose flag does not subsume the trust
46
+ // gate on all versions and hangs the process, so --yolo is the safe
47
+ // default. Right setting for a headless owner-bot. Set to false to
48
+ // honor runTask's mode-driven sandbox.
49
49
  yolo: z.boolean().default(true),
50
50
  // When yolo=false, still bypass the trust-directory prompt. Codex
51
51
  // refuses to run in an "untrusted" cwd otherwise.
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@c4t4/heyamigo",
3
- "version": "0.8.14",
3
+ "version": "0.8.15",
4
4
  "description": "WhatsApp AI bot powered by Claude with long-term memory, browser control, and role-based access",
5
5
  "type": "module",
6
6
  "main": "dist/index.js",