@openacp/cli 2026.41.3 → 2026.41.5

package/dist/cli.js

@@ -1443,17 +1443,17 @@ function createSecurityPlugin() {
       });
       ctx.registerService("security", guard);
       ctx.registerCommand({
-        name: "dangerous",
-        description: "Toggle dangerous mode (auto-approve all permissions)",
+        name: "bypass",
+        description: "Toggle bypass permissions (auto-approve all permissions)",
         usage: "on|off",
         category: "plugin",
         handler: async (args2) => {
           const mode = args2.raw.trim().toLowerCase();
-          if (mode === "on") return { type: "text", text: "Dangerous mode enabled \u2014 all permissions will be auto-approved." };
-          if (mode === "off") return { type: "text", text: "Dangerous mode disabled \u2014 permissions require manual approval." };
-          return { type: "menu", title: "Dangerous Mode", options: [
-            { label: "Enable", command: "/dangerous on" },
-            { label: "Disable", command: "/dangerous off" }
+          if (mode === "on") return { type: "text", text: "Bypass permissions enabled \u2014 all permissions will be auto-approved." };
+          if (mode === "off") return { type: "text", text: "Bypass permissions disabled \u2014 permissions require manual approval." };
+          return { type: "menu", title: "Bypass Permissions", options: [
+            { label: "Enable", command: "/bypass on" },
+            { label: "Disable", command: "/bypass off" }
           ] };
         }
       });
@@ -7090,9 +7090,6 @@ async function sessionRoutes(app, deps) {
         return allowOption.id;
       };
     }
-    session.warmup().catch(
-      (err) => log10.warn({ err, sessionId: session.id }, "API session warmup failed")
-    );
     return {
       sessionId: session.id,
       agent: session.agentName,
@@ -10074,11 +10071,11 @@ function setupDangerousModeCallbacks(bot, core) {
       session.clientOverrides.bypassPermissions = newDangerousMode2;
       log14.info(
         { sessionId, dangerousMode: newDangerousMode2 },
-        "Dangerous mode toggled via button"
+        "Bypass permissions toggled via button"
       );
       core.sessionManager.patchRecord(sessionId, { clientOverrides: session.clientOverrides }).catch(() => {
       });
-      const toastText2 = newDangerousMode2 ? "\u2620\uFE0F Dangerous mode enabled \u2014 permissions auto-approved" : "\u{1F510} Dangerous mode disabled \u2014 permissions shown normally";
+      const toastText2 = newDangerousMode2 ? "\u2620\uFE0F Bypass enabled \u2014 permissions auto-approved" : "\u{1F510} Bypass disabled \u2014 approvals required";
       try {
         await ctx.answerCallbackQuery({ text: toastText2 });
       } catch {
@@ -10110,9 +10107,9 @@ function setupDangerousModeCallbacks(bot, core) {
     });
     log14.info(
       { sessionId, dangerousMode: newDangerousMode },
-      "Dangerous mode toggled via button (store-only, session not in memory)"
+      "Bypass permissions toggled via button (store-only, session not in memory)"
     );
-    const toastText = newDangerousMode ? "\u2620\uFE0F Dangerous mode enabled \u2014 permissions auto-approved" : "\u{1F510} Dangerous mode disabled \u2014 permissions shown normally";
+    const toastText = newDangerousMode ? "\u2620\uFE0F Bypass enabled \u2014 permissions auto-approved" : "\u{1F510} Bypass disabled \u2014 approvals required";
     try {
       await ctx.answerCallbackQuery({ text: toastText });
     } catch {
@@ -10143,7 +10140,7 @@ async function handleEnableDangerous(ctx, core) {
   );
   if (session) {
     if (session.clientOverrides.bypassPermissions) {
-      await ctx.reply("\u2620\uFE0F Dangerous mode is already enabled.", {
+      await ctx.reply("\u2620\uFE0F Bypass is already enabled.", {
         parse_mode: "HTML"
       });
       return;
@@ -10163,7 +10160,7 @@ async function handleEnableDangerous(ctx, core) {
       return;
     }
     if (record.clientOverrides?.bypassPermissions ?? record.dangerousMode) {
-      await ctx.reply("\u2620\uFE0F Dangerous mode is already enabled.", {
+      await ctx.reply("\u2620\uFE0F Bypass is already enabled.", {
         parse_mode: "HTML"
       });
       return;
@@ -10172,11 +10169,11 @@ async function handleEnableDangerous(ctx, core) {
     });
   }
   await ctx.reply(
-    `\u26A0\uFE0F <b>Dangerous mode enabled</b>
+    `\u2620\uFE0F <b>Bypass enabled</b>
 
-All permission requests will be auto-approved. Claude can run arbitrary commands without asking.
+All permission requests will be auto-approved \u2014 the agent can run any action without asking.
 
-Use /disable_dangerous to restore normal behaviour.`,
+Use /disable_bypass to turn this off.`,
     { parse_mode: "HTML" }
   );
 }
@@ -10194,7 +10191,7 @@ async function handleDisableDangerous(ctx, core) {
   );
   if (session) {
     if (!session.clientOverrides.bypassPermissions) {
-      await ctx.reply("\u{1F510} Dangerous mode is already disabled.", {
+      await ctx.reply("\u{1F510} Bypass is already disabled.", {
         parse_mode: "HTML"
       });
       return;
@@ -10214,7 +10211,7 @@ async function handleDisableDangerous(ctx, core) {
       return;
     }
     if (!(record.clientOverrides?.bypassPermissions ?? record.dangerousMode)) {
-      await ctx.reply("\u{1F510} Dangerous mode is already disabled.", {
+      await ctx.reply("\u{1F510} Bypass is already disabled.", {
         parse_mode: "HTML"
       });
       return;
@@ -10223,13 +10220,13 @@ async function handleDisableDangerous(ctx, core) {
     });
   }
   await ctx.reply(
-    "\u{1F510} <b>Dangerous mode disabled</b>\n\nPermission requests will be shown normally.",
+    "\u{1F510} <b>Bypass disabled</b>\n\nYou will be asked to approve risky actions.",
     { parse_mode: "HTML" }
   );
 }
 function buildSessionControlKeyboard(sessionId, dangerousMode, voiceMode) {
   return new InlineKeyboard().text(
-    dangerousMode ? "\u{1F510} Disable Dangerous Mode" : "\u2620\uFE0F Enable Dangerous Mode",
+    dangerousMode ? "\u{1F510} Disable Bypass" : "\u2620\uFE0F Enable Bypass",
     `d:${sessionId}`
   ).row().text(
     voiceMode ? "\u{1F50A} Text to Speech" : "\u{1F507} Text to Speech",
@@ -10618,7 +10615,6 @@ This is your coding session \u2014 chat here to work with the agent.`,
         reply_markup: buildSessionControlKeyboard(session.id, false, false)
       }
     );
-    session.warmup().catch((err) => log15.error({ err }, "Warm-up error"));
     return threadId ?? null;
   } catch (err) {
     log15.error({ err }, "Session creation failed");
@@ -10699,7 +10695,6 @@ async function handleNewChat(ctx, core, chatId) {
         reply_markup: buildSessionControlKeyboard(session.id, false, false)
       }
     );
-    session.warmup().catch((err) => log15.error({ err }, "Warm-up error"));
   } catch (err) {
     if (newThreadId) {
       try {
@@ -10730,7 +10725,6 @@ async function executeNewSession(bot, core, chatId, agentName, workspace) {
     } });
     const finalName = `\u{1F504} ${session.agentName} \u2014 New Session`;
     await renameSessionTopic(bot, chatId, threadId, finalName);
-    session.warmup().catch((err) => log15.error({ err }, "Warm-up error"));
     return { session, threadId, firstMsgId };
   } catch (err) {
     try {
@@ -11279,8 +11273,8 @@ Each session gets its own topic \u2014 chat there to work with the agent.
 /menu \u2014 Show action menu
 
 \u{1F512} <b>Session Options</b>
-/enable_dangerous \u2014 Auto-approve permissions
-/disable_dangerous \u2014 Restore permission prompts
+/enable_bypass \u2014 Auto-approve permissions
+/disable_bypass \u2014 Restore permission prompts
 /handoff \u2014 Continue session in terminal
 /archive \u2014 Archive session topic
 /clear \u2014 Clear assistant history
@@ -12264,7 +12258,6 @@ Context is ready \u2014 chat here to continue working with the agent.`,
         reply_markup: buildSessionControlKeyboard(session.id, false, false)
       }
     );
-    session.warmup().catch((err) => log17.error({ err }, "Warm-up error"));
   } catch (err) {
     log17.error({ err }, "Resume session creation failed");
     if (threadId) {
@@ -13735,8 +13728,8 @@ function setupCommands(bot, core, chatId, assistant) {
   bot.command("install", (ctx) => handleInstall(ctx, core));
   bot.command("help", (ctx) => handleHelp(ctx));
   bot.command("menu", (ctx) => handleMenu(ctx));
-  bot.command("enable_dangerous", (ctx) => handleEnableDangerous(ctx, core));
-  bot.command("disable_dangerous", (ctx) => handleDisableDangerous(ctx, core));
+  bot.command("enable_bypass", (ctx) => handleEnableDangerous(ctx, core));
+  bot.command("disable_bypass", (ctx) => handleDisableDangerous(ctx, core));
   bot.command("restart", (ctx) => handleRestart(ctx, core));
   bot.command("update", (ctx) => handleUpdate(ctx, core));
   bot.command("integrate", (ctx) => handleIntegrate(ctx, core));
@@ -13845,11 +13838,11 @@ var init_commands3 = __esm({
       { command: "help", description: "Help" },
       { command: "menu", description: "Show menu" },
       {
-        command: "enable_dangerous",
+        command: "enable_bypass",
         description: "Auto-approve all permission requests (session only)"
       },
       {
-        command: "disable_dangerous",
+        command: "disable_bypass",
         description: "Restore normal permission prompts (session only)"
       },
       { command: "integrate", description: "Manage agent integrations" },
@@ -14067,10 +14060,10 @@ When the agent wants to run a command, it asks for permission.
 You see buttons: \u2705 Allow, \u274C Reject (and sometimes "Always Allow").
 A notification also appears in the Notifications topic with a link to the request.
 
-### Dangerous mode
+### Bypass permissions
 Auto-approves ALL permission requests \u2014 the agent runs any command without asking.
-- Enable: \`/enable_dangerous\` or tap the \u2620\uFE0F button in the session
-- Disable: \`/disable_dangerous\` or tap the \u{1F510} button
+- Enable: \`/enable_bypass\` or tap the \u2620\uFE0F button in the session
+- Disable: \`/disable_bypass\` or tap the \u{1F510} button
 - \u26A0\uFE0F Use with caution \u2014 the agent can execute anything
 
 ### Session timeout
@@ -14146,8 +14139,8 @@ Just chat naturally: "How do I create a session?", "What's the status?", "Someth
 | \`/sessions\` | Anywhere | List all sessions |
 | \`/agents\` | Anywhere | Browse & install agents from ACP Registry |
 | \`/install <name>\` | Anywhere | Install an agent |
-| \`/enable_dangerous\` | Session topic | Auto-approve all permissions |
-| \`/disable_dangerous\` | Session topic | Restore permission prompts |
+| \`/enable_bypass\` | Session topic | Auto-approve all permissions |
+| \`/disable_bypass\` | Session topic | Restore permission prompts |
 | \`/handoff\` | Session topic | Transfer session to terminal |
 | \`/clear\` | Assistant topic | Clear assistant history |
 | \`/menu\` | Anywhere | Show action menu |
@@ -14219,7 +14212,7 @@ Just chat naturally: "How do I create a session?", "What's the status?", "Someth
 | \`new <agent> <path>\` | Create session |
 | \`send <id> "text"\` | Send prompt |
 | \`cancel <id>\` | Cancel session |
-| \`dangerous <id> on/off\` | Toggle dangerous mode |
+| \`bypass <id> on/off\` | Toggle bypass permissions |
 | \`topics [--status x,y]\` | List topics |
 | \`delete-topic <id> [--force]\` | Delete topic |
 | \`cleanup [--status x,y]\` | Cleanup old topics |
@@ -14341,7 +14334,7 @@ Override config with env vars:
 
 ### Permission request not showing
 - Check Notifications topic for the alert
-- Try \`/enable_dangerous\` to auto-approve (if you trust the agent)
+- Try \`/enable_bypass\` to auto-approve (if you trust the agent)
 
 ### Session disappeared after restart
 - Sessions persist across restarts
@@ -14518,9 +14511,9 @@ function buildAssistantSystemPrompt(ctx) {
 - Always ask for confirmation \u2014 these are disruptive actions
 - Guide user: "Tap \u{1F504} Restart button or type /restart"
 
-### Toggle Dangerous Mode
-- Run \`openacp api dangerous <id> on|off\`
-- Explain: dangerous mode auto-approves all permission requests \u2014 the agent can run any command without asking
+### Toggle Bypass Permissions
+- Run \`openacp api bypass <id> on|off\`
+- Explain: bypass permissions auto-approves all permission requests \u2014 the agent can run any command without asking
 
 ## CLI Commands Reference
 \`\`\`bash
@@ -14530,7 +14523,7 @@ openacp api session <id>                 # Session detail
 openacp api new <agent> <workspace> --channel telegram  # Create new session
 openacp api send <id> "prompt text"      # Send prompt to session
 openacp api cancel <id>                  # Cancel session
-openacp api dangerous <id> on|off        # Toggle dangerous mode
+openacp api bypass <id> on|off            # Toggle bypass permissions
 
 # Topic management
 openacp api topics                       # List all topics
@@ -19579,10 +19572,6 @@ Additionally, include a [TTS]...[/TTS] block with a spoken-friendly summary of y
         await this.queue.enqueue(text6, attachments);
       }
       async processPrompt(text6, attachments) {
-        if (text6 === "\0__warmup__") {
-          await this.runWarmup();
-          return;
-        }
         if (this._status === "finished") return;
         this.promptCount++;
         this.emit("prompt_count_changed", this.promptCount);
@@ -19758,27 +19747,6 @@ ${result.text}` : result.text;
           this.resume();
         }
       }
-      /** Fire-and-forget warm-up: primes model cache while user types their first message */
-      async warmup() {
-        await this.queue.enqueue("\0__warmup__");
-      }
-      async runWarmup() {
-        this.pause((_event, args2) => {
-          const agentEvent = args2[0];
-          return agentEvent?.type === "commands_update";
-        });
-        try {
-          const start = Date.now();
-          await this.agentInstance.prompt('Reply with only "ready".');
-          this.activate();
-          this.log.info({ durationMs: Date.now() - start }, "Warm-up complete");
-        } catch (err) {
-          this.log.error({ err }, "Warm-up failed");
-        } finally {
-          this.clearBuffer();
-          this.resume();
-        }
-      }
       // --- ACP Mode / Config / Model State ---
       setInitialConfigOptions(options) {
         this.configOptions = options ?? [];
@@ -23738,30 +23706,41 @@ function flattenChoices(options) {
   }
   return result;
 }
-function registerCategoryCommand(registry, core, category, commandName, notSupportedMsg) {
+function getLabels(category, commandName) {
+  return CATEGORY_LABELS[category] ?? {
+    menuTitle: (cur) => `Choose ${commandName} (current: ${cur})`,
+    successMsg: (label) => `${commandName} set to **${label}**.`,
+    notSupported: `This agent does not support ${commandName}.`,
+    description: `Change ${commandName} for this session`
+  };
+}
+function registerCategoryCommand(registry, core, category, commandName) {
+  const labels = getLabels(category, commandName);
   registry.register({
     name: commandName,
-    description: `Set ${commandName} for this session`,
+    description: labels.description,
     usage: `[value]`,
     category: "system",
     handler: async (args2) => {
       if (!args2.sessionId) {
-        return { type: "error", message: "\u26A0\uFE0F No active session." };
+        return { type: "error", message: "No active session. Start a session first." };
       }
       const session = core.sessionManager.getSession(args2.sessionId);
       if (!session) {
-        return { type: "error", message: "\u26A0\uFE0F Session not found." };
+        return { type: "error", message: "Session not found." };
       }
       const configOption = session.getConfigByCategory(category);
       if (!configOption || configOption.type !== "select") {
-        return { type: "error", message: `\u26A0\uFE0F ${notSupportedMsg}` };
+        return { type: "error", message: labels.notSupported };
       }
       const choices = flattenChoices(configOption.options);
       const raw = args2.raw.trim();
       if (!raw) {
+        const currentChoice = choices.find((c3) => c3.value === configOption.currentValue);
+        const currentLabel = currentChoice?.name ?? String(configOption.currentValue);
         return {
           type: "menu",
-          title: configOption.name,
+          title: labels.menuTitle(currentLabel),
           options: choices.map((c3) => ({
             label: c3.value === configOption.currentValue ? `\u2705 ${c3.name}` : c3.name,
             command: `/${commandName} ${c3.value}`,
@@ -23771,8 +23750,11 @@ function registerCategoryCommand(registry, core, category, commandName, notSuppo
       }
       const match = choices.find((c3) => c3.value === raw);
       if (!match) {
-        const valid = choices.map((c3) => c3.value).join(", ");
-        return { type: "error", message: `\u26A0\uFE0F Invalid value "${raw}". Valid: ${valid}` };
+        const valid = choices.map((c3) => `**${c3.value}** (${c3.name})`).join(", ");
+        return { type: "error", message: `Unknown option "${raw}". Available: ${valid}` };
+      }
+      if (configOption.currentValue === raw) {
+        return { type: "text", text: `Already using **${match.name}**.` };
       }
       if (session.middlewareChain) {
         const result = await session.middlewareChain.execute("config:beforeChange", {
@@ -23781,7 +23763,7 @@ function registerCategoryCommand(registry, core, category, commandName, notSuppo
           oldValue: configOption.currentValue,
           newValue: raw
         }, async (p2) => p2);
-        if (!result) return { type: "error", message: `Config change blocked by middleware.` };
+        if (!result) return { type: "error", message: `This change was blocked by a plugin.` };
       }
       try {
         const response = await session.agentInstance.setConfigOption(
@@ -23791,27 +23773,27 @@ function registerCategoryCommand(registry, core, category, commandName, notSuppo
         if (response.configOptions) {
           session.configOptions = response.configOptions;
         }
-        return { type: "text", text: `${configOption.name} set to ${match.name}.` };
+        return { type: "text", text: labels.successMsg(match.name, configOption.name) };
       } catch (err) {
         const msg = err instanceof Error ? err.message : String(err);
-        return { type: "error", message: `\u26A0\uFE0F Failed to set ${commandName}: ${msg}` };
+        return { type: "error", message: `Could not change ${commandName}: ${msg}` };
       }
     }
   });
 }
 function registerDangerousCommand(registry, core) {
   registry.register({
-    name: "dangerous",
-    description: "Toggle dangerous mode (bypass permissions)",
+    name: "bypass",
+    description: "Auto-approve all permission requests (skip confirmation prompts)",
     usage: "[on|off]",
     category: "system",
     handler: async (args2) => {
       if (!args2.sessionId) {
-        return { type: "error", message: "\u26A0\uFE0F No active session." };
+        return { type: "error", message: "No active session. Start a session first." };
       }
       const session = core.sessionManager.getSession(args2.sessionId);
       if (!session) {
-        return { type: "error", message: "\u26A0\uFE0F Session not found." };
+        return { type: "error", message: "Session not found." };
       }
       const raw = args2.raw.trim().toLowerCase();
       const modeConfig = session.getConfigByCategory("mode");
@@ -23822,21 +23804,31 @@ function registerDangerousCommand(registry, core) {
         bypassValue = choices.find((c3) => isPermissionBypass(c3.value))?.value;
         nonBypassDefault = choices.find((c3) => !isPermissionBypass(c3.value))?.value;
       }
-      const isCurrentlyDangerous = bypassValue ? modeConfig.type === "select" && isPermissionBypass(modeConfig.currentValue) : !!session.clientOverrides.bypassPermissions;
+      const isCurrentlyBypassing = bypassValue ? modeConfig.type === "select" && isPermissionBypass(modeConfig.currentValue) : !!session.clientOverrides.bypassPermissions;
       if (!raw) {
-        const status = isCurrentlyDangerous ? "on" : "off";
-        const toggleCmd = isCurrentlyDangerous ? "/dangerous off" : "/dangerous on";
-        const toggleLabel = isCurrentlyDangerous ? "Turn off" : "Turn on";
+        if (isCurrentlyBypassing) {
+          return {
+            type: "menu",
+            title: "\u2620\uFE0F Bypass is ON \u2014 all permissions are auto-approved",
+            options: [{ label: "\u{1F510} Turn off bypass", command: "/bypass off" }]
+          };
+        }
         return {
           type: "menu",
-          title: `Dangerous mode: ${status}`,
-          options: [{ label: toggleLabel, command: toggleCmd }]
+          title: "\u{1F510} Bypass is OFF \u2014 you will be asked before risky actions",
+          options: [{ label: "\u2620\uFE0F Turn on bypass", command: "/bypass on" }]
         };
       }
       if (raw !== "on" && raw !== "off") {
-        return { type: "error", message: "\u26A0\uFE0F Usage: /dangerous [on|off]" };
+        return { type: "error", message: "Use **/bypass on** or **/bypass off**." };
       }
       const wantOn = raw === "on";
+      if (wantOn === isCurrentlyBypassing) {
+        return {
+          type: "text",
+          text: wantOn ? "\u2620\uFE0F Bypass is already enabled." : "\u{1F510} Bypass is already disabled."
+        };
+      }
       if (bypassValue && modeConfig) {
         try {
           const targetValue = wantOn ? bypassValue : nonBypassDefault;
@@ -23849,11 +23841,11 @@ function registerDangerousCommand(registry, core) {
           }
           return {
             type: "text",
-            text: `Dangerous mode ${wantOn ? "enabled" : "disabled"}.`
+            text: wantOn ? "\u2620\uFE0F **Bypass enabled** \u2014 all permission requests will be auto-approved. The agent can run any action without asking." : "\u{1F510} **Bypass disabled** \u2014 you will be asked to approve risky actions."
           };
         } catch (err) {
           const msg = err instanceof Error ? err.message : String(err);
-          return { type: "error", message: `\u26A0\uFE0F Failed: ${msg}` };
+          return { type: "error", message: `Could not toggle bypass: ${msg}` };
         }
       }
       session.clientOverrides.bypassPermissions = wantOn;
@@ -23862,23 +23854,44 @@ function registerDangerousCommand(registry, core) {
       });
       return {
         type: "text",
-        text: `Dangerous mode ${wantOn ? "enabled" : "disabled"} (client-side bypass).`
+        text: wantOn ? "\u2620\uFE0F **Bypass enabled** (client-side) \u2014 all permission requests will be auto-approved.\n\n_Note: This agent doesn't natively support bypass mode, so OpenACP will auto-approve on your behalf._" : "\u{1F510} **Bypass disabled** \u2014 you will be asked to approve risky actions."
       };
     }
   });
 }
 function registerConfigCommands(registry, _core) {
   const core = _core;
-  registerCategoryCommand(registry, core, "mode", "mode", "Agent does not support mode selection.");
-  registerCategoryCommand(registry, core, "model", "model", "Agent does not support model selection.");
-  registerCategoryCommand(registry, core, "thought_level", "thought", "Agent does not support thought level.");
+  registerCategoryCommand(registry, core, "mode", "mode");
+  registerCategoryCommand(registry, core, "model", "model");
+  registerCategoryCommand(registry, core, "thought_level", "thought");
   registerDangerousCommand(registry, core);
 }
+var CATEGORY_LABELS;
 var init_config5 = __esm({
   "src/core/commands/config.ts"() {
     "use strict";
     init_bypass_detection();
     init_bypass_detection();
+    CATEGORY_LABELS = {
+      mode: {
+        menuTitle: (cur) => `Choose session mode (current: ${cur})`,
+        successMsg: (label) => `Mode switched to **${label}**.`,
+        notSupported: "This agent does not support switching modes.",
+        description: "Switch the session mode (e.g. code, architect, ask)"
+      },
+      model: {
+        menuTitle: (cur) => `Choose a model (current: ${cur})`,
+        successMsg: (label) => `Model switched to **${label}**.`,
+        notSupported: "This agent does not support switching models.",
+        description: "Switch the AI model for this session"
+      },
+      thought_level: {
+        menuTitle: (cur) => `Choose thinking level (current: ${cur})`,
+        successMsg: (label) => `Thinking level set to **${label}**.`,
+        notSupported: "This agent does not support changing the thinking level.",
+        description: "Adjust how much the agent thinks before responding"
+      }
+    };
   }
 });
 
@@ -27059,7 +27072,7 @@ Connect messaging platforms (Telegram, Discord) to 28+ AI coding agents via ACP
   openacp api new [agent] [workspace]  Create session
   openacp api send <id> <prompt>       Send prompt
   openacp api cancel <id>              Cancel session
-  openacp api dangerous <id> on|off    Toggle dangerous mode
+  openacp api bypass <id> on|off       Toggle bypass permissions
   openacp api topics [--status ...]    List topics
   openacp api cleanup [--status ...]   Cleanup old topics
   openacp api health                   System health check
@@ -27519,7 +27532,7 @@ function printApiHelp() {
                                            [--channel <id>]
   openacp api send <id> <prompt>           Send prompt to session
   openacp api cancel <id>                  Cancel a session
-  openacp api dangerous <id> on|off        Toggle dangerous mode
+  openacp api bypass <id> on|off           Toggle bypass permissions
 
 \x1B[1mSession Config Commands:\x1B[0m
   openacp api session-config <id>                    List all config options
@@ -27573,7 +27586,7 @@ Lists all active sessions with their ID, agent, status, and name.
   <id>            Session ID
 
 Shows detailed info: agent, status, name, workspace, creation time,
-dangerous mode, queue depth, and channel/thread IDs.
+bypass permissions, queue depth, and channel/thread IDs.
 `,
       "new": `
 \x1B[1mopenacp api new\x1B[0m \u2014 Create a new session
@@ -27617,17 +27630,17 @@ dangerous mode, queue depth, and channel/thread IDs.
 \x1B[1mArguments:\x1B[0m
   <id>            Session ID to cancel
 `,
-      "dangerous": `
-\x1B[1mopenacp api dangerous\x1B[0m \u2014 Toggle dangerous mode for a session
+      "bypass": `
+\x1B[1mopenacp api bypass\x1B[0m \u2014 Toggle bypass permissions for a session
 
 \x1B[1mUsage:\x1B[0m
-  openacp api dangerous <id> on|off
+  openacp api bypass <id> on|off
 
 \x1B[1mArguments:\x1B[0m
   <id>            Session ID
-  on|off          Enable or disable dangerous mode
+  on|off          Enable or disable bypass permissions
 
-Dangerous mode allows the agent to run destructive commands
+Bypass permissions allows the agent to run destructive commands
 without confirmation prompts.
 `,
       "topics": `
@@ -27940,15 +27953,15 @@ Shows the version of the currently running daemon process.
       console.log(`  Prompt active  : ${s.promptRunning}`);
       console.log(`  Channel        : ${s.channelId ?? "(none)"}`);
       console.log(`  Thread         : ${s.threadId ?? "(none)"}`);
-    } else if (subCmd === "dangerous") {
+    } else if (subCmd === "dangerous" || subCmd === "bypass") {
       const sessionId = args2[2];
       if (!sessionId) {
-        console.error("Usage: openacp api dangerous <session-id> [on|off]");
+        console.error("Usage: openacp api bypass <session-id> [on|off]");
         process.exit(1);
       }
       const toggle = args2[3];
       if (!toggle || toggle !== "on" && toggle !== "off") {
-        console.error("Usage: openacp api dangerous <session-id> [on|off]");
+        console.error("Usage: openacp api bypass <session-id> [on|off]");
         process.exit(1);
       }
       const res = await call(`/api/sessions/${encodeURIComponent(sessionId)}/dangerous`, {
@@ -27962,7 +27975,7 @@ Shows the version of the currently running daemon process.
         process.exit(1);
       }
       const state = toggle === "on" ? "enabled" : "disabled";
-      console.log(`Dangerous mode ${state} for session ${sessionId}`);
+      console.log(`Bypass permissions ${state} for session ${sessionId}`);
     } else if (subCmd === "health") {
       const res = await call("/api/health");
       const data = await res.json();
@@ -28219,6 +28232,7 @@ Client overrides: ${JSON.stringify(clientOverrides)}`);
         "cleanup",
         "send",
         "session",
+        "bypass",
         "dangerous",
         "health",
         "restart",