@ottocode/sdk 0.1.192 → 0.1.194

package/package.json

@@ -1,6 +1,6 @@
 {
 	"name": "@ottocode/sdk",
-	"version": "0.1.192",
+	"version": "0.1.194",
 	"description": "AI agent SDK for building intelligent assistants - tree-shakable and comprehensive",
 	"author": "nitishxyz",
 	"license": "MIT",

package/src/auth/src/openai-oauth.ts

@@ -79,6 +79,7 @@ export async function authorizeOpenAI(): Promise<OpenAIOAuthResult> {
 		id_token_add_organizations: 'true',
 		codex_cli_simplified_flow: 'true',
 		state: state,
+		originator: 'codex_cli_rs',
 	});
 
 	const authUrl = `${OPENAI_ISSUER}/oauth/authorize?${params.toString()}`;
@@ -253,14 +254,13 @@ export async function refreshOpenAIToken(refreshToken: string) {
 	const response = await fetch(`${OPENAI_ISSUER}/oauth/token`, {
 		method: 'POST',
 		headers: {
-			'Content-Type': 'application/json',
+			'Content-Type': 'application/x-www-form-urlencoded',
 		},
-		body: JSON.stringify({
-			client_id: OPENAI_CLIENT_ID,
+		body: new URLSearchParams({
 			grant_type: 'refresh_token',
 			refresh_token: refreshToken,
-			scope: 'openid profile email',
-		}),
+			client_id: OPENAI_CLIENT_ID,
+		}).toString(),
 	});
 
 	if (!response.ok) {
@@ -336,6 +336,7 @@ export function authorizeOpenAIWeb(redirectUri: string): {
 		id_token_add_organizations: 'true',
 		codex_cli_simplified_flow: 'true',
 		state: state,
+		originator: 'codex_cli_rs',
 	});
 
 	return {

package/src/core/src/tools/builtin/bash.ts

@@ -30,6 +30,16 @@ function resolveSafePath(projectRoot: string, p: string) {
 	return abs;
 }
 
+function killProcessTree(pid: number) {
+	try {
+		process.kill(-pid, 'SIGTERM');
+	} catch {
+		try {
+			process.kill(pid, 'SIGTERM');
+		} catch {}
+	}
+}
+
 export function buildBashTool(projectRoot: string): {
 	name: string;
 	tool: Tool;
@@ -55,23 +65,34 @@ export function buildBashTool(projectRoot: string): {
 					.describe('Timeout in milliseconds (default: 300000 = 5 minutes)'),
 			})
 			.strict(),
-		async execute({
-			cmd,
-			cwd,
-			allowNonZeroExit,
-			timeout = 300000,
-		}: {
-			cmd: string;
-			cwd?: string;
-			allowNonZeroExit?: boolean;
-			timeout?: number;
-		}): Promise<
+		async execute(
+			{
+				cmd,
+				cwd,
+				allowNonZeroExit,
+				timeout = 300000,
+			}: {
+				cmd: string;
+				cwd?: string;
+				allowNonZeroExit?: boolean;
+				timeout?: number;
+			},
+			options?: { abortSignal?: AbortSignal },
+		): Promise<
 			ToolResponse<{
 				exitCode: number;
 				stdout: string;
 				stderr: string;
 			}>
 		> {
+			const abortSignal = options?.abortSignal;
+
+			if (abortSignal?.aborted) {
+				return createToolError('Command aborted before execution', 'abort', {
+					cmd,
+				});
+			}
+
 			const absCwd = resolveSafePath(projectRoot, cwd || '.');
 
 			return new Promise((resolve) => {
@@ -80,17 +101,48 @@ export function buildBashTool(projectRoot: string): {
 					shell: true,
 					stdio: ['ignore', 'pipe', 'pipe'],
 					env: { ...process.env, PATH: getAugmentedPath() },
+					detached: true,
 				});
 
 				let stdout = '';
 				let stderr = '';
 				let didTimeout = false;
+				let didAbort = false;
+				let settled = false;
 				let timeoutId: ReturnType<typeof setTimeout> | null = null;
 
+				const settle = (
+					result: ToolResponse<{
+						exitCode: number;
+						stdout: string;
+						stderr: string;
+					}>,
+				) => {
+					if (settled) return;
+					settled = true;
+					if (timeoutId) clearTimeout(timeoutId);
+					if (abortSignal) {
+						abortSignal.removeEventListener('abort', onAbort);
+					}
+					resolve(result);
+				};
+
+				const onAbort = () => {
+					if (settled) return;
+					didAbort = true;
+					if (proc.pid) killProcessTree(proc.pid);
+					else proc.kill('SIGTERM');
+				};
+
+				if (abortSignal) {
+					abortSignal.addEventListener('abort', onAbort, { once: true });
+				}
+
 				if (timeout > 0) {
 					timeoutId = setTimeout(() => {
 						didTimeout = true;
-						proc.kill();
+						if (proc.pid) killProcessTree(proc.pid);
+						else proc.kill();
 					}, timeout);
 				}
 
@@ -103,10 +155,16 @@ export function buildBashTool(projectRoot: string): {
 				});
 
 				proc.on('close', (exitCode) => {
-					if (timeoutId) clearTimeout(timeoutId);
-
-					if (didTimeout) {
-						resolve(
+					if (didAbort) {
+						settle(
+							createToolError(`Command aborted by user: ${cmd}`, 'abort', {
+								cmd,
+								stdout,
+								stderr,
+							}),
+						);
+					} else if (didTimeout) {
+						settle(
 							createToolError(
 								`Command timed out after ${timeout}ms: ${cmd}`,
 								'timeout',
@@ -120,7 +178,7 @@ export function buildBashTool(projectRoot: string): {
 					} else if (exitCode !== 0 && !allowNonZeroExit) {
 						const errorDetail = stderr.trim() || stdout.trim() || '';
 						const errorMsg = `Command failed with exit code ${exitCode}${errorDetail ? `\n\n${errorDetail}` : ''}`;
-						resolve(
+						settle(
 							createToolError(errorMsg, 'execution', {
 								exitCode,
 								stdout,
@@ -131,7 +189,7 @@ export function buildBashTool(projectRoot: string): {
 							}),
 						);
 					} else {
-						resolve({
+						settle({
 							ok: true,
 							exitCode: exitCode ?? 0,
 							stdout,
@@ -141,8 +199,7 @@ export function buildBashTool(projectRoot: string): {
 				});
 
 				proc.on('error', (err) => {
-					if (timeoutId) clearTimeout(timeoutId);
-					resolve(
+					settle(
 						createToolError(
 							`Command execution failed: ${err.message}`,
 							'execution',

package/src/core/src/tools/error.ts

@@ -4,7 +4,8 @@ export type ToolErrorType =
 	| 'permission'
 	| 'execution'
 	| 'timeout'
-	| 'unsupported';
+	| 'unsupported'
+	| 'abort';
 
 export type ToolErrorResponse = {
 	ok: false;

package/src/prompts/src/providers/openai.txt

@@ -422,3 +422,14 @@ To create a new plan, call `update_todos` with a short list of 1‑sentence step
 When steps have been completed, use `update_todos` to mark each finished step as `completed` and the next step you are working on as `in_progress`. There should always be exactly one `in_progress` step until everything is done. You can mark multiple items as complete in a single `update_todos` call.
 
 If all steps are complete, ensure you call `update_todos` to mark all steps as `completed`.
+
+## `finish` — MANDATORY
+
+A tool named `finish` is available to you. You MUST call it as your very last action when you are completely done with the user's request. No exceptions.
+
+The workflow is:
+1. Do all work (tool calls, edits, searches, etc.)
+2. Stream your final summary/response text to the user
+3. Call `finish` tool with `{}` — this is REQUIRED
+
+**If you do not call `finish`, the system cannot detect that you are done and will force a continuation turn.** Always call `finish` as your absolute last action.

package/src/providers/src/catalog-manual.ts

@@ -11,6 +11,7 @@ const SETU_ID: ProviderId = 'setu';
 
 const isAllowedOpenAIModel = (id: string): boolean => {
 	if (id === 'codex-mini-latest') return true;
+	if (id === 'gpt-5.3' || id.startsWith('gpt-5.3-')) return false;
 	if (id.startsWith('gpt-5')) return true;
 	if (id.includes('codex')) return true;
 	return false;

package/src/providers/src/catalog.ts

@@ -1496,7 +1496,7 @@ export const catalog: Partial<Record<ProviderId, ProviderCatalogEntry>> = {
 					cacheWrite: 6.25,
 				},
 				limit: {
-					context: 1000000,
+					context: 200000,
 					output: 128000,
 				},
 			},
@@ -2446,6 +2446,32 @@ export const catalog: Partial<Record<ProviderId, ProviderCatalogEntry>> = {
 					output: 32000,
 				},
 			},
+			{
+				id: 'anthropic/claude-opus-4.6',
+				label: 'Claude Opus 4.6',
+				modalities: {
+					input: ['text', 'image', 'pdf'],
+					output: ['text'],
+				},
+				toolCall: true,
+				reasoningText: true,
+				attachment: true,
+				temperature: true,
+				knowledge: '2025-05-30',
+				releaseDate: '2026-02-05',
+				lastUpdated: '2026-02-05',
+				openWeights: false,
+				cost: {
+					input: 5,
+					output: 25,
+					cacheRead: 0.5,
+					cacheWrite: 6.25,
+				},
+				limit: {
+					context: 1000000,
+					output: 128000,
+				},
+			},
 			{
 				id: 'anthropic/claude-sonnet-4',
 				label: 'Claude Sonnet 4',
@@ -5203,6 +5229,29 @@ export const catalog: Partial<Record<ProviderId, ProviderCatalogEntry>> = {
 					output: 100000,
 				},
 			},
+			{
+				id: 'openrouter/pony-alpha',
+				label: 'Pony Alpha',
+				modalities: {
+					input: ['text'],
+					output: ['text'],
+				},
+				toolCall: true,
+				reasoningText: true,
+				attachment: false,
+				temperature: true,
+				releaseDate: '2026-02-06',
+				lastUpdated: '2026-02-06',
+				openWeights: false,
+				cost: {
+					input: 0,
+					output: 0,
+				},
+				limit: {
+					context: 200000,
+					output: 131000,
+				},
+			},
 			{
 				id: 'openrouter/sherlock-dash-alpha',
 				label: 'Sherlock Dash Alpha',
@@ -6273,6 +6322,31 @@ export const catalog: Partial<Record<ProviderId, ProviderCatalogEntry>> = {
 					output: 10000,
 				},
 			},
+			{
+				id: 'xiaomi/mimo-v2-flash',
+				label: 'MiMo-V2-Flash',
+				modalities: {
+					input: ['text'],
+					output: ['text'],
+				},
+				toolCall: true,
+				reasoningText: true,
+				attachment: false,
+				temperature: true,
+				knowledge: '2024-12',
+				releaseDate: '2025-12-14',
+				lastUpdated: '2025-12-14',
+				openWeights: true,
+				cost: {
+					input: 0.1,
+					output: 0.3,
+					cacheRead: 0.01,
+				},
+				limit: {
+					context: 262144,
+					output: 65536,
+				},
+			},
 			{
 				id: 'z-ai/glm-4.5',
 				label: 'GLM 4.5',

package/src/providers/src/openai-oauth-client.ts

@@ -2,8 +2,10 @@ import { createOpenAI } from '@ai-sdk/openai';
 import type { OAuth } from '../../types/src/index.ts';
 import { refreshOpenAIToken } from '../../auth/src/openai-oauth.ts';
 import { setAuth, getAuth } from '../../auth/src/index.ts';
+import os from 'node:os';
 
 const CODEX_BASE_URL = 'https://chatgpt.com/backend-api/codex';
+const CODEX_RESPONSES_URL = 'https://chatgpt.com/backend-api/codex/responses';
 
 export type OpenAIOAuthConfig = {
 	oauth: OAuth;
@@ -56,7 +58,7 @@ function rewriteUrl(url: string): string {
 		parsed.pathname.includes('/v1/responses') ||
 		parsed.pathname.includes('/chat/completions')
 	) {
-		return `${CODEX_BASE_URL}${parsed.pathname.replace(/^.*\/v1/, '/v1')}`;
+		return CODEX_RESPONSES_URL;
 	}
 	return url;
 }
@@ -70,7 +72,14 @@ function buildHeaders(
 	headers.delete('Authorization');
 	headers.delete('authorization');
 	headers.set('authorization', `Bearer ${accessToken}`);
-	headers.set('originator', 'otto');
+	headers.set('originator', 'codex_cli_rs');
+	headers.set('version', '0.98.0');
+	headers.set('x-oai-web-search-eligible', 'true');
+	headers.set('accept', 'text/event-stream');
+	headers.set(
+		'User-Agent',
+		`codex_cli_rs/0.98.0 (${os.platform()} ${os.release()}; ${os.arch()})`,
+	);
 	if (accountId) {
 		headers.set('ChatGPT-Account-Id', accountId);
 	}
@@ -96,6 +105,7 @@ export function createOpenAIOAuthFetch(config: OpenAIOAuthConfig) {
 		const targetUrl = rewriteUrl(originalUrl);
 
 		const headers = buildHeaders(init, validated.access, validated.accountId);
+		headers.set('accept-encoding', 'identity');
 
 		const response = await fetch(targetUrl, {
 			...init,
@@ -103,6 +113,7 @@ export function createOpenAIOAuthFetch(config: OpenAIOAuthConfig) {
 			// biome-ignore lint/suspicious/noTsIgnore: Bun-specific fetch option
 			// @ts-ignore
 			timeout: false,
+			decompress: false,
 		});
 
 		if (response.status === 401) {
@@ -125,6 +136,7 @@ export function createOpenAIOAuthFetch(config: OpenAIOAuthConfig) {
 					currentOAuth.access,
 					currentOAuth.accountId,
 				);
+				retryHeaders.set('accept-encoding', 'identity');
 
 				return fetch(targetUrl, {
 					...init,
@@ -132,6 +144,7 @@ export function createOpenAIOAuthFetch(config: OpenAIOAuthConfig) {
 					// biome-ignore lint/suspicious/noTsIgnore: Bun-specific fetch option
 					// @ts-ignore
 					timeout: false,
+					decompress: false,
 				});
 			} catch {
 				console.error(

package/src/providers/src/utils.ts

@@ -30,7 +30,7 @@ const PREFERRED_FAST_MODELS: Partial<Record<ProviderId, string[]>> = {
 	google: ['gemini-2.0-flash-lite'],
 	openrouter: ['anthropic/claude-3.5-haiku'],
 	opencode: ['claude-3-5-haiku'],
-	setu: ['kimi-k2'],
+	setu: ['kimi-k2-turbo-preview'],
 	zai: ['glm-4.5-flash'],
 	copilot: ['gpt-4.1-mini'],
 };