npm - cdx-manager - Versions diffs - 0.9.1 → 0.9.3 - Mend

cdx-manager 0.9.1 → 0.9.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (13) hide show

package/README.md +5 -4
package/changelogs/CHANGELOGS_0_9_2.md +33 -0
package/changelogs/CHANGELOGS_0_9_3.md +35 -0
package/checksums/release-archives.json +8 -0
package/package.json +1 -1
package/pyproject.toml +1 -1
package/src/cli.py +5 -5
package/src/cli_commands.py +15 -12
package/src/health.py +40 -1
package/src/provider_runtime.py +77 -2
package/src/run_command.py +1 -1
package/src/run_usage.py +1 -0
package/src/session_service.py +53 -23

package/README.md CHANGED Viewed

@@ -301,7 +301,7 @@ cdx power all default
 cdx model provider:ollama default
 ```
-`--model` maps to Codex `--model`, Claude `--model`, and Ollama `ollama run <model>`. `--power` maps to Codex `model_reasoning_effort` and Claude `--effort`. `--permission` maps to provider-native permission flags. `--fast on` clears the stored power setting and uses low effort; setting `--power` again disables fast mode. `--priority` is a 0..100 selector preference used as a tie-breaker after readiness and availability. `--rtk on` injects a launch instruction that encourages assistants to use RTK (`rtk <command>`) for noisy terminal commands when RTK is available, while keeping raw commands for exact output. Logics guidance is auto-enabled when `logics-manager` is available; use `--logics off` to disable that guidance for a session, or `--logics on` to pin it explicitly.
+`--model` maps to Codex `--model`, Claude `--model`, and Ollama `ollama run <model>`. `--power` maps to Codex `model_reasoning_effort` and Claude `--effort`; supported values are `minimal`, `low`, `medium`, `high`, and `xhigh`. `--permission` maps to provider-native permission flags. Codex Fast mode is separate from reasoning effort: `--fast on` opts a Codex session into the Codex Fast service tier, while new sessions, `--fast off`, and default launches force the non-Fast `flex` tier. Use `--power low` when you want low reasoning effort without enabling Codex Fast credits. Existing legacy sessions that stored `fast=on` before this split continue to behave as low effort unless the user explicitly sets `--fast on` again. `--priority` is a 0..100 selector preference used as a tie-breaker after readiness and availability. `--rtk on` injects a launch instruction that encourages assistants to use RTK (`rtk <command>`) for noisy terminal commands when RTK is available, while keeping raw commands for exact output. Logics guidance is auto-enabled when `logics-manager` is available; use `--logics off` to disable that guidance for a session, or `--logics on` to pin it explicitly.
 ### Launch History
@@ -339,7 +339,7 @@ cdx history --summary --from 2026-05-01 --to 2026-05-28
 | `cdx config <name> [--json]` | Show persistent launch settings for a session |
 | `cdx configs [--json]` | Show persistent launch settings for all sessions in one table |
 | `cdx power\|perm\|fast\|model <name\|all\|provider:PROVIDER\|a,b> <value\|default> [--json]` | Shortcut commands for setting or clearing one launch setting |
-| `cdx set <name>\|--sessions all\|a,b\|--provider PROVIDER [--power low\|medium\|high\|xhigh\|max] [--permission review\|default\|auto\|full] [--fast on\|off] [--rtk on\|off] [--logics on\|off] [--model MODEL] [--priority 0..100] [--json]` | Persist launch settings for one or more sessions |
+| `cdx set <name>\|--sessions all\|a,b\|--provider PROVIDER [--power minimal\|low\|medium\|high\|xhigh] [--permission review\|default\|auto\|full] [--fast on\|off] [--rtk on\|off] [--logics on\|off] [--model MODEL] [--priority 0..100] [--json]` | Persist launch settings for one or more sessions |
 | `cdx unset <name>\|--sessions all\|a,b\|--provider PROVIDER (--power\|--permission\|--fast\|--rtk\|--logics\|--model\|--priority\|--all) [--json]` | Remove persisted launch settings and fall back to provider defaults |
 | `cdx history [name] [--limit N] [--summary] [--since 7d\|today\|DATE] [--from DATE] [--to DATE] [--json]` | Show recent launch history or aggregate total launch time per assistant, optionally filtered by period |
 | `cdx last [--json]` | Launch the most recent existing session from launch history |
@@ -358,8 +358,8 @@ cdx history --summary --from 2026-05-01 --to 2026-05-28
 | `cdx notify <name> --at-reset [--poll seconds] [--once] [--schedule] [--refresh] [--json]` | Wait for a session reset time or schedule an OS wake-up notification when due |
 | `cdx notify --next-ready [--poll seconds] [--once] [--schedule] [--refresh] [--json]` | Wait until the recommended session is usable, or schedule the next known reset notification |
 | `cdx next [--json] [--refresh]` | Select the best next assistant using the same priority logic as `cdx status` |
-| `cdx select --provider PROVIDER [--min-reasoning-effort low\|medium\|high] [--min-power low\|medium\|high] [--require-ready] [--refresh] --json` | Select a suitable session for headless automation |
-| `cdx run [session] --cwd PATH (--prompt-file PATH\|--prompt TEXT) [--provider PROVIDER] [--model MODEL] [--reasoning-effort low\|medium\|high] [--power low\|medium\|high] [--permission MODE] [--timeout-seconds N] --json` | Run one headless task and return a stable JSON result |
+| `cdx select --provider PROVIDER [--min-reasoning-effort minimal\|low\|medium\|high\|xhigh] [--min-power minimal\|low\|medium\|high\|xhigh] [--require-ready] [--refresh] --json` | Select a suitable session for headless automation |
+| `cdx run [session] --cwd PATH (--prompt-file PATH\|--prompt TEXT) [--provider PROVIDER] [--model MODEL] [--reasoning-effort minimal\|low\|medium\|high\|xhigh] [--power minimal\|low\|medium\|high\|xhigh] [--permission MODE] [--timeout-seconds N] --json` | Run one headless task and return a stable JSON result |
 | `cdx stats [name] [--since 7d\|today\|DATE] [--from DATE] [--to DATE] [--json]` | Aggregate launch counts, duration, and known headless token usage by session |
 | `cdx status [--json] [--refresh]` | Show token usage table for all sessions; JSON returns a versioned payload with structured warnings |
 | `cdx status --small [--refresh]` / `cdx status -s [--refresh]` | Show compact token usage table without provider, blocking quota, credits, and updated columns |
@@ -597,6 +597,7 @@ Session names are URL-encoded when used as directory or file names. CLI command
 ## Troubleshooting
 - **`cdx <name>` fails with "not authenticated"** — run `cdx login <name>` first.
+- **One of two Codex accounts keeps asking for login** — run `cdx doctor --json` and inspect each Codex session's `codex_auth_file` and `codex_live_auth` checks. Codex sessions use isolated `CODEX_HOME` directories, but newly created sessions seed from the current global `~/.codex/auth.json` when one exists. For two separate Codex accounts, create or repair each session by running `cdx login <name>` for that session; `cdx login` does not log out first, so use `cdx logout <name>` explicitly only when you want to clear that isolated profile.
 - **`cdx` says no compatible Python 3 interpreter was found** — install Python 3 and make `py -3`, `python`, or `python3` available on PATH.
 - **`cdx add` succeeds but the session does not appear** — check that `CDX_HOME` is consistent between calls; a mismatch creates two separate registries.
 - **Status shows `n/a` for all fields** — the Codex app-server rate-limit probe may be unavailable, the session may not be authenticated, and no legacy transcript/history status has been captured yet.

package/changelogs/CHANGELOGS_0_9_2.md ADDED Viewed

@@ -0,0 +1,33 @@
+# CDX Manager 0.9.2
+## Highlights
+- `cdx import` gains a `--merge` flag to fill in missing data without overwriting what already exists locally.
+- npm and PyPI publication workflows now verify that the release tag's commit has a successful `CI` run before any registry upload step.
+## Changes
+### cdx import: `--merge` mode
+`cdx import` previously offered two stances on existing sessions: reject the conflict (default) or erase and replace (`--force`). A third mode is now available:
+```
+cdx import backup.cdx --merge
+```
+With `--merge`, for each session that already exists locally:
+- **Session fields** — existing values are kept; fields absent locally are pulled in from the bundle.
+- **Session state** — same merge rule: local data wins, bundle fills the gaps.
+- **Profile files** (auth.json, credentials, etc.) — files that already exist on disk are left untouched; files missing locally are restored from the bundle.
+- **New sessions** in the bundle that have no local counterpart are imported normally.
+`--force` and `--merge` are mutually exclusive and raise a clear error if combined.
+## Validation
+- `npm run prepublishOnly`
+- `npm pack --dry-run`
+- `python -m unittest discover -s test -p 'test_release_ci_py.py'`
+- `logics-manager lint --require-status`
+- `logics-manager audit --legacy-cutoff-version 1.1.0 --group-by-doc`

package/changelogs/CHANGELOGS_0_9_3.md ADDED Viewed

@@ -0,0 +1,35 @@
+# CDX Manager 0.9.3
+## Highlights
+- Codex Fast now stays opt-in and no longer silently lowers normal Codex session reasoning effort.
+- Codex authentication diagnostics now detect when local credentials belong to a different account than the live CLI session.
+- `cdx run` usage parsing now covers the Codex 0.141 JSONL `turn.completed` usage shape, including `reasoning_output_tokens`.
+## Changes
+### Codex Fast launch behavior
+`cdx set <session> --fast on` now marks Fast as a service-tier choice instead of treating it as a reason to lower power to `low`. Normal Codex sessions continue to launch with their configured reasoning effort and an explicit flex service tier when Fast is off.
+### Codex auth isolation diagnostics
+`cdx doctor` now reads the email from local Codex tokens and compares it with the live `codex login status` account when both are available. If a managed session has local tokens for one account but the CLI is authenticated as another, the report surfaces a repairable `codex_auth_mismatch` issue instead of reporting a vague live-auth failure.
+The auth probe also avoids trusting local credentials alone for launch and run readiness, which keeps multi-account sessions from accidentally using the wrong global Codex login after a CLI update or account switch.
+### Codex 0.141 run usage parsing
+Codex CLI 0.141 emits headless usage in JSONL `turn.completed` events. `cdx run` now maps the current `reasoning_output_tokens` field into the stable `reasoning_tokens` output and keeps computing total tokens from input plus output when the provider omits `total_tokens`.
+## Validation
+- `cdx doctor --json`
+- `cdx status --json --refresh`
+- `cdx run --provider codex --cwd /Users/alexandreagostini/Documents/cdx-manager --prompt 'Reply exactly: CDX_CODEX_OK' --timeout-seconds 90 --json`
+- `cdx run --provider claude --cwd /Users/alexandreagostini/Documents/cdx-manager --prompt 'Reply exactly: CDX_CLAUDE_OK' --timeout-seconds 90 --json`
+- `npm run lint`
+- `npm test`
+- `logics-manager lint --require-status`
+- `logics-manager health`
+- `git diff --check`

package/checksums/release-archives.json CHANGED Viewed

@@ -68,6 +68,14 @@
     "v0.9.0": {
       "github_tarball_sha256": "809af5746e1287f4c5dc7a2fb7583e67e212aa250c45be905c32374e5dee26d6",
       "github_zip_sha256": "9118f81645c00a4a660923a1ae290f48bd458af7ebfcf9f6580a3b91023b7c76"
+    },
+    "v0.9.1": {
+      "github_tarball_sha256": "8cbab620c823aeaf56e72c1a4d20e251a1c7142bfeeb3d516321d59c2c0a621d",
+      "github_zip_sha256": "253909ede6dca61937835bd4ee29145ddacaa08fbdfba1b39810da73ae2ccc84"
+    },
+    "v0.9.2": {
+      "github_tarball_sha256": "3e3ae4e4efc63a97dc6623ae8ddff36f04f4b7a0b531878a28c041298223d0b8",
+      "github_zip_sha256": "09acd2866770f4dc7f9aaba6aff8308766bb211dabddd7f28bdfde9ace427e78"
     }
   }
 }

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "cdx-manager",
-  "version": "0.9.1",
+  "version": "0.9.3",
   "description": "Terminal session manager for Codex and Claude accounts.",
   "license": "MIT",
   "author": "Alexandre Agostini",

package/pyproject.toml CHANGED Viewed

@@ -4,7 +4,7 @@ build-backend = "setuptools.build_meta"
 [project]
 name = "cdx-manager"
-version = "0.9.1"
+version = "0.9.3"
 description = "Terminal session manager for Codex and Claude accounts."
 readme = "README.md"
 requires-python = ">=3.9"

package/src/cli.py CHANGED Viewed

@@ -64,7 +64,7 @@ from .status_view import (
 )
 from .update_check import check_for_update, check_logics_manager_for_update
-VERSION = "0.9.1"
+VERSION = "0.9.3"
 # ---------------------------------------------------------------------------
@@ -82,8 +82,8 @@ def _print_help(use_color=False):
         f"  {_style('cdx status --small|-s [--refresh]', '36', use_color)}",
         f"  {_style('cdx status <name> [--json] [--refresh]', '36', use_color)}",
         f"  {_style('cdx next [--json] [--refresh]', '36', use_color)}",
-        f"  {_style('cdx select --provider PROVIDER [--min-reasoning-effort low|medium|high] [--min-power low|medium|high] [--require-ready] [--refresh] --json', '36', use_color)}",
-        f"  {_style('cdx run [session] --cwd PATH (--prompt-file PATH|--prompt TEXT) [--provider PROVIDER] [--model MODEL] [--reasoning-effort low|medium|high] [--power low|medium|high] [--permission review|default|auto|full|workspace-write|read-only|danger-full-access] [--timeout-seconds N] --json', '36', use_color)}",
+        f"  {_style('cdx select --provider PROVIDER [--min-reasoning-effort minimal|low|medium|high|xhigh] [--min-power minimal|low|medium|high|xhigh] [--require-ready] [--refresh] --json', '36', use_color)}",
+        f"  {_style('cdx run [session] --cwd PATH (--prompt-file PATH|--prompt TEXT) [--provider PROVIDER] [--model MODEL] [--reasoning-effort minimal|low|medium|high|xhigh] [--power minimal|low|medium|high|xhigh] [--permission review|default|auto|full|workspace-write|read-only|danger-full-access] [--timeout-seconds N] --json', '36', use_color)}",
         f"  {_style('cdx runs [--limit N] --json', '36', use_color)}",
         f"  {_style('cdx run-status <run_id> --json', '36', use_color)}",
         f"  {_style('cdx run-report <run_id> --json', '36', use_color)}",
@@ -91,7 +91,7 @@ def _print_help(use_color=False):
         f"  {_style('cdx config <name> [--json]', '36', use_color)}",
         f"  {_style('cdx configs [--json]', '36', use_color)}",
         f"  {_style('cdx power|perm|fast|model <name|all|provider:PROVIDER|a,b> <value|default> [--json]', '36', use_color)}",
-        f"  {_style('cdx set <name>|--sessions all|a,b|--provider PROVIDER [--power low|medium|high|xhigh|max] [--permission review|default|auto|full] [--fast on|off] [--rtk on|off] [--logics on|off] [--model MODEL] [--priority 0..100] [--json]', '36', use_color)}",
+        f"  {_style('cdx set <name>|--sessions all|a,b|--provider PROVIDER [--power minimal|low|medium|high|xhigh] [--permission review|default|auto|full] [--fast on|off] [--rtk on|off] [--logics on|off] [--model MODEL] [--priority 0..100] [--json]', '36', use_color)}",
         f"  {_style('cdx unset <name>|--sessions all|a,b|--provider PROVIDER (--power|--permission|--fast|--rtk|--logics|--model|--priority|--all) [--json]', '36', use_color)}",
         f"  {_style('cdx history [name] [--limit N] [--summary] [--since 7d|today|DATE] [--from DATE] [--to DATE] [--json]', '36', use_color)}",
         f"  {_style('cdx stats [name] [--since 7d|today|DATE] [--from DATE] [--to DATE] [--json]', '36', use_color)}",
@@ -108,7 +108,7 @@ def _print_help(use_color=False):
         f"  {_style('cdx rmv <name> [--force] [--json]', '36', use_color)}",
         f"  {_style('cdx clean [name] [--json]', '36', use_color)}",
         f"  {_style('cdx export <file> [--include-auth] [--sessions a,b] [--passphrase-env VAR] [--force] [--json]', '36', use_color)}",
-        f"  {_style('cdx import <file> [--sessions a,b] [--passphrase-env VAR] [--force] [--json]', '36', use_color)}",
+        f"  {_style('cdx import <file> [--sessions a,b] [--passphrase-env VAR] [--force|--merge] [--json]', '36', use_color)}",
         f"  {_style('cdx doctor [--json]', '36', use_color)}",
         f"  {_style('cdx repair [--dry-run] [--force] [--json]', '36', use_color)}",
         f"  {_style('cdx view [--json]', '36', use_color)}",

package/src/cli_commands.py CHANGED Viewed

@@ -55,10 +55,10 @@ DOCTOR_USAGE = "Usage: cdx doctor [--json]"
 REPAIR_USAGE = "Usage: cdx repair [--dry-run] [--force] [--json]"
 UPDATE_USAGE = "Usage: cdx update [--check] [--yes] [--json] [--version TAG]"
 EXPORT_USAGE = "Usage: cdx export <file> [--include-auth] [--force] [--json] [--sessions name1,name2] [--passphrase-env VAR]"
-IMPORT_USAGE = "Usage: cdx import <file> [--force] [--json] [--sessions name1,name2] [--passphrase-env VAR]"
+IMPORT_USAGE = "Usage: cdx import <file> [--force|--merge] [--json] [--sessions name1,name2] [--passphrase-env VAR]"
 CONTEXT_USAGE = "Usage: cdx context show|path|init|edit|clear|set [text...] [--json]"
 HANDOFF_USAGE = "Usage: cdx handoff <name> [--json] | cdx handoff <source> <target> [--json]"
-SET_USAGE = "Usage: cdx set <name>|--sessions all|a,b|--provider PROVIDER [--power low|medium|high|xhigh|max] [--permission review|default|auto|full] [--fast on|off] [--rtk on|off] [--logics on|off] [--model MODEL] [--priority 0..100] [--json]"
+SET_USAGE = "Usage: cdx set <name>|--sessions all|a,b|--provider PROVIDER [--power minimal|low|medium|high|xhigh] [--permission review|default|auto|full] [--fast on|off] [--rtk on|off] [--logics on|off] [--model MODEL] [--priority 0..100] [--json]"
 UNSET_USAGE = "Usage: cdx unset <name>|--sessions all|a,b|--provider PROVIDER (--power|--permission|--fast|--rtk|--logics|--model|--priority|--all) [--json]"
 SETTING_ALIAS_USAGE = "Usage: cdx power|perm|fast|model <name|all|provider:PROVIDER|a,b> <value|default> [--json]"
 CONFIG_USAGE = "Usage: cdx config <name> [--json]"
@@ -66,9 +66,9 @@ CONFIGS_USAGE = "Usage: cdx configs [--json]"
 HISTORY_USAGE = "Usage: cdx history [name] [--limit N] [--summary] [--since 7d|today|DATE] [--from DATE] [--to DATE] [--json]"
 STATS_USAGE = "Usage: cdx stats [name] [--since 7d|today|DATE] [--from DATE] [--to DATE] [--json]"
 LAST_USAGE = "Usage: cdx last [--json]"
-SELECT_USAGE = "Usage: cdx select --provider PROVIDER [--min-reasoning-effort low|medium|high] [--min-power low|medium|high] [--require-ready] [--refresh] --json"
+SELECT_USAGE = "Usage: cdx select --provider PROVIDER [--min-reasoning-effort minimal|low|medium|high|xhigh] [--min-power minimal|low|medium|high|xhigh] [--require-ready] [--refresh] --json"
 NEXT_USAGE = "Usage: cdx next [--json] [--refresh]"
-RUN_USAGE = "Usage: cdx run [session] --cwd PATH (--prompt-file PATH|--prompt TEXT) [--provider PROVIDER] [--model MODEL] [--kind assistant|code-review] [--reasoning-effort low|medium|high] [--power low|medium|high] [--permission review|default|auto|full|workspace-write|read-only|danger-full-access] [--timeout-seconds N] --json"
+RUN_USAGE = "Usage: cdx run [session] --cwd PATH (--prompt-file PATH|--prompt TEXT) [--provider PROVIDER] [--model MODEL] [--kind assistant|code-review] [--reasoning-effort minimal|low|medium|high|xhigh] [--power minimal|low|medium|high|xhigh] [--permission review|default|auto|full|workspace-write|read-only|danger-full-access] [--timeout-seconds N] --json"
 RUNS_USAGE = "Usage: cdx runs [--limit N] --json"
 RUN_STATUS_USAGE = "Usage: cdx run-status <run_id> --json"
 RUN_REPORT_USAGE = "Usage: cdx run-report <run_id> --json"
@@ -1000,6 +1000,7 @@ def _parse_export_args(args):
 def _parse_import_args(args):
     parsed = _parse_flag_args(args, {
         "--force": {"key": "force", "type": "bool", "default": False},
+        "--merge": {"key": "merge", "type": "bool", "default": False},
         "--json": {"key": "json", "type": "bool", "default": False},
         "--sessions": {
             "key": "session_names",
@@ -1012,6 +1013,8 @@ def _parse_import_args(args):
     parsed["file_path"] = parsed.pop("positionals")[0] if parsed["positionals"] else None
     if not parsed["file_path"]:
         raise CdxError(IMPORT_USAGE)
+    if parsed["force"] and parsed["merge"]:
+        raise CdxError("--force and --merge are mutually exclusive.")
     return parsed
@@ -1680,8 +1683,8 @@ def _resolve_bulk_launch_targets(parsed, service):
 def _reasoning_rank(value):
-    order = {"low": 0, "medium": 1, "high": 2, "xhigh": 2, "max": 2}
-    return order.get(str(value or "low").lower(), 0)
+    order = {"minimal": 0, "low": 1, "medium": 2, "high": 3, "xhigh": 4}
+    return order.get(str(value or "low").lower(), -1)
 def _session_reasoning_effort(session):
@@ -1690,7 +1693,7 @@ def _session_reasoning_effort(session):
         launch.get("reasoning_effort")
         or launch.get("reasoningEffort")
         or launch.get("power")
-        or ("low" if launch.get("fast") is True else None)
+        or ("low" if launch.get("fast") is True and launch.get("fastMode") != "service_tier" else None)
         or "low"
     )
@@ -2287,6 +2290,7 @@ def handle_doctor(rest, ctx):
         ctx["service"],
         ctx["service"]["base_dir"],
         env=ctx.get("env"),
+        spawn_sync=ctx.get("spawn_sync"),
     )
     if json_flag:
         _write_json(ctx, _json_success("doctor", "Collected health report", report=report))
@@ -2643,6 +2647,7 @@ def handle_import(rest, ctx):
         passphrase=passphrase,
         session_names=parsed["session_names"],
         force=parsed["force"],
+        merge=parsed["merge"],
     )
     session_count = len(result["session_names"])
     auth_suffix = " with auth" if result["include_auth"] else ""
@@ -2668,11 +2673,6 @@ def handle_login(rest, ctx):
     session = ctx["service"]["get_session"](args[0])
     if not session:
         raise CdxError(f"Unknown session: {args[0]}")
-    if session["provider"] == PROVIDER_CODEX:
-        _run_interactive_provider_command(
-            session, "logout", spawn=ctx.get("spawn"), env_override=ctx.get("env"),
-            signal_emitter=ctx.get("signal_emitter")
-        )
     _run_interactive_provider_command(
         session, "login", spawn=ctx.get("spawn"), env_override=ctx.get("env"),
         signal_emitter=ctx.get("signal_emitter")
@@ -2683,6 +2683,7 @@ def handle_login(rest, ctx):
         spawn_sync=ctx.get("spawn_sync"),
         env_override=ctx.get("env"),
         behavior="probe-only",
+        trust_local_credentials=False,
     )
     if not auth_probe.get("authenticated") and session["provider"] == PROVIDER_CLAUDE:
         _bootstrap_claude_setup_token(session, ctx)
@@ -2692,6 +2693,7 @@ def handle_login(rest, ctx):
             spawn_sync=ctx.get("spawn_sync"),
             env_override=ctx.get("env"),
             behavior="probe-only",
+            trust_local_credentials=False,
         )
     if not auth_probe.get("authenticated"):
         raise CdxError(
@@ -2855,6 +2857,7 @@ def handle_launch(command, ctx, initial_prompt=None):
         stdin_is_tty=ctx["stdin_is_tty"],
         behavior="launch",
         signal_emitter=ctx.get("signal_emitter"),
+        trust_local_credentials=False,
     )
     message = f"Launching {session['provider']} session {session['name']}"
     if not json_flag:

package/src/health.py CHANGED Viewed

@@ -6,6 +6,8 @@ import tempfile
 from urllib.parse import quote, unquote
 from .cli_render import _pad_table, _style
+from .config import PROVIDER_CODEX
+from .provider_runtime import codex_auth_diagnostic
 def _encode(name):
@@ -30,7 +32,7 @@ def _issue(status, code, message, detail=None, repairable=False):
     }
-def collect_health_report(service, base_dir, env=None):
+def collect_health_report(service, base_dir, env=None, spawn_sync=None):
     env = env or os.environ
     issues = []
@@ -79,11 +81,48 @@ def collect_health_report(service, base_dir, env=None):
         state_path = _state_file_path(base_dir, name)
         if not os.path.isfile(state_path):
             issues.append(_issue("FAIL", "missing_state", f"session {name} state file is missing", state_path, True))
+        if session.get("provider") == PROVIDER_CODEX:
+            issues.extend(_codex_auth_issues(session, spawn_sync=spawn_sync, env=env))
     issues.extend(_collect_profile_issues(base_dir, session_names))
     return {"base_dir": base_dir, "issues": issues, "summary": summarize_health(issues)}
+def _codex_auth_issues(session, spawn_sync=None, env=None):
+    name = session["name"]
+    diag = codex_auth_diagnostic(session, spawn_sync=spawn_sync, env_override=env)
+    identity = diag.get("account_email") or "unknown account"
+    issues = [
+        _issue(
+            "OK" if diag.get("auth_json_exists") else "WARN",
+            "codex_auth_file",
+            f"session {name} Codex auth file {'found' if diag.get('auth_json_exists') else 'missing'} ({identity})",
+            {
+                "session": name,
+                "auth_home": diag.get("auth_home"),
+                "auth_json_exists": diag.get("auth_json_exists"),
+                "local_tokens_present": diag.get("local_tokens_present"),
+                "account_email": diag.get("account_email"),
+            },
+        )
+    ]
+    live_status = diag.get("live_status")
+    live_ok = live_status == "authenticated"
+    live_warn = live_status in ("logged_out", "error")
+    issues.append(_issue(
+        "OK" if live_ok else "WARN" if live_warn else "WARN",
+        "codex_live_auth",
+        f"session {name} live Codex auth status: {live_status}",
+        {
+            "session": name,
+            "auth_home": diag.get("auth_home"),
+            "live_status": live_status,
+            "live_error": diag.get("live_error"),
+        },
+    ))
+    return issues
 def _check_cdx_home(base_dir):
     try:
         os.makedirs(base_dir, exist_ok=True)

package/src/provider_runtime.py CHANGED Viewed

@@ -7,6 +7,7 @@ import shutil
 import subprocess
 import sys
 import uuid
+import base64
 from datetime import datetime, timezone
 from .config import PROVIDER_ANTIGRAVITY, PROVIDER_CLAUDE, PROVIDER_CODEX, PROVIDER_OLLAMA
@@ -14,7 +15,7 @@ from .errors import CdxError
 LOG_ROTATE_BYTES = 10 * 1024 * 1024  # 10 MB
-REASONING_EFFORT_VALUES = {"low", "medium", "high"}
+REASONING_EFFORT_VALUES = {"minimal", "low", "medium", "high", "xhigh"}
 RTK_PROMPT = (
     "When running noisy shell commands, prefer RTK wrappers (`rtk <command>`) if `rtk` is available. "
     "Use raw commands when exact, unfiltered output is required."
@@ -148,6 +149,64 @@ def _has_local_codex_auth(auth_home):
     )
+def _decode_jwt_claims(token):
+    if not token or "." not in str(token):
+        return {}
+    parts = str(token).split(".")
+    if len(parts) < 2:
+        return {}
+    padding = "=" * (-len(parts[1]) % 4)
+    try:
+        decoded = base64.urlsafe_b64decode(parts[1] + padding)
+        return json.loads(decoded.decode("utf-8"))
+    except (ValueError, json.JSONDecodeError, UnicodeDecodeError):
+        return {}
+def _read_codex_account_email(auth_home):
+    try:
+        with open(os.path.join(auth_home, "auth.json"), "r", encoding="utf-8") as handle:
+            auth = json.load(handle)
+    except (FileNotFoundError, OSError, json.JSONDecodeError):
+        return None
+    tokens = auth.get("tokens") if isinstance(auth, dict) else {}
+    if not isinstance(tokens, dict):
+        return None
+    for token_name in ("id_token", "access_token"):
+        claims = _decode_jwt_claims(tokens.get(token_name))
+        email = claims.get("email")
+        if not email and token_name == "access_token":
+            profile = claims.get("https://api.openai.com/profile") or {}
+            email = profile.get("email") if isinstance(profile, dict) else None
+        if email:
+            return str(email).strip().lower()
+    return None
+def codex_auth_diagnostic(session, spawn_sync=None, env_override=None):
+    auth_home = _get_auth_home(session)
+    auth_path = os.path.join(auth_home, "auth.json")
+    result = {
+        "auth_home": auth_home,
+        "auth_json_exists": os.path.isfile(auth_path),
+        "local_tokens_present": _has_local_codex_auth(auth_home),
+        "account_email": _read_codex_account_email(auth_home),
+        "live_status": "unknown",
+        "live_error": None,
+    }
+    try:
+        result["live_status"] = "authenticated" if _probe_provider_auth(
+            session,
+            spawn_sync=spawn_sync,
+            env_override=env_override,
+            trust_local_credentials=False,
+        ) else "logged_out"
+    except CdxError as error:
+        result["live_status"] = "error"
+        result["live_error"] = str(error)
+    return result
 def _read_claude_account_email(auth_home):
     config_path = os.path.join(auth_home, ".claude.json")
     try:
@@ -196,11 +255,25 @@ def _launch_power(session):
     power = launch.get("reasoning_effort") or launch.get("reasoningEffort") or launch.get("power")
     if power:
         return power
-    if launch.get("fast") is True:
+    if _legacy_fast_low_effort(launch):
         return "low"
     return None
+def _legacy_fast_low_effort(launch):
+    return launch.get("fast") is True and launch.get("fastMode") != "service_tier"
+def _codex_fast_enabled(launch):
+    return launch.get("fast") is True and launch.get("fastMode") == "service_tier"
+def _codex_fast_config_args(launch):
+    if _codex_fast_enabled(launch):
+        return ["-c", 'service_tier="fast"', "-c", "features.fast_mode=true"]
+    return ["-c", 'service_tier="flex"', "-c", "features.fast_mode=false"]
 def _normalize_reasoning_effort(reasoning_effort=None, power=None, usage="Unsupported reasoning effort."):
     effort = str(reasoning_effort).strip().lower() if reasoning_effort is not None else None
     alias = str(power).strip().lower() if power is not None else None
@@ -269,6 +342,7 @@ def _launch_config_args(session):
         return args
     if power:
         args += ["-c", f'model_reasoning_effort="{power}"']
+    args += _codex_fast_config_args(launch)
     if permission:
         args += LAUNCH_PERMISSION_ARGS[PROVIDER_CODEX].get(permission, [])
     return args
@@ -482,6 +556,7 @@ def _build_headless_launch_spec(session, cwd=None, env_override=None, initial_pr
             args += ["--model", model]
         if power:
             args += ["-c", f'model_reasoning_effort="{power}"']
+        args += _codex_fast_config_args(launch)
         if permission:
             args += HEADLESS_CODEX_PERMISSION_ARGS.get(permission, [])
         if initial_prompt:

package/src/run_command.py CHANGED Viewed

@@ -43,7 +43,7 @@ def run_payload_reasoning_effort(parsed, session):
         or launch.get("reasoning_effort")
         or launch.get("reasoningEffort")
         or launch.get("power")
-        or ("low" if launch.get("fast") is True else None)
+        or ("low" if launch.get("fast") is True and launch.get("fastMode") != "service_tier" else None)
     )

package/src/run_usage.py CHANGED Viewed

@@ -91,6 +91,7 @@ def _usage_from_dict(value):
     output_tokens = _int_value(usage.get("output_tokens"), usage.get("completion_tokens"))
     reasoning_tokens = _int_value(
         usage.get("reasoning_tokens"),
+        usage.get("reasoning_output_tokens"),
         _nested_int(usage, "output_tokens_details", "reasoning_tokens"),
         _nested_int(usage, "completion_tokens_details", "reasoning_tokens"),
     )

package/src/session_service.py CHANGED Viewed

@@ -66,8 +66,8 @@ RESERVED_SESSION_NAMES = {
 STATUS_CACHE_TTL_SECONDS = 60
 CLAUDE_STATUS_CACHE_TTL_SECONDS = 10 * 60
 MAX_STATUS_WORKERS = 8
-LAUNCH_POWER_VALUES = {"low", "medium", "high", "xhigh", "max"}
-LAUNCH_REASONING_EFFORT_VALUES = {"low", "medium", "high"}
+LAUNCH_POWER_VALUES = {"minimal", "low", "medium", "high", "xhigh"}
+LAUNCH_REASONING_EFFORT_VALUES = {"minimal", "low", "medium", "high", "xhigh"}
 LAUNCH_PERMISSION_VALUES = {"review", "default", "auto", "full"}
 MAX_LAUNCH_MODEL_LENGTH = 128
 MIN_LAUNCH_PRIORITY = 0
@@ -107,7 +107,7 @@ def _seed_codex_auth_from_global(auth_home, env=None):
     return True
-def _normalize_launch_settings(settings):
+def _normalize_launch_settings(settings, mark_fast_service_tier=True):
     normalized = {}
     if not settings:
         return normalized
@@ -138,6 +138,12 @@ def _normalize_launch_settings(settings):
                 normalized["fast"] = False
             else:
                 raise CdxError(f"Unsupported fast value: {settings['fast']}")
+        if normalized["fast"] is True and mark_fast_service_tier:
+            normalized["fastMode"] = "service_tier"
+        else:
+            normalized.pop("fastMode", None)
+        if settings.get("fastMode") == "service_tier" and normalized["fast"] is True:
+            normalized["fastMode"] = "service_tier"
     if "rtk" in settings and settings["rtk"] is not None:
         value = settings["rtk"]
         if isinstance(value, bool):
@@ -827,17 +833,15 @@ def create_session_service(options=None):
         updates = _normalize_launch_settings(settings)
         if not updates:
             raise CdxError("At least one launch setting is required.")
-        current = _normalize_launch_settings(session.get("launch") or {})
+        current = _normalize_launch_settings(session.get("launch") or {}, mark_fast_service_tier=False)
         launch = {**current, **updates}
         explicit_power = "power" in updates or "reasoning_effort" in updates
-        if explicit_power and "fast" not in updates:
+        if explicit_power and "fast" not in updates and launch.get("fastMode") != "service_tier":
             launch["fast"] = False
-        if "fast" in updates and not explicit_power:
-            if updates["fast"] is True:
-                launch.pop("power", None)
-                launch.pop("reasoning_effort", None)
-                launch.pop("reasoningEffort", None)
-            elif not any(key in launch for key in ("power", "reasoning_effort", "reasoningEffort")):
+            launch.pop("fastMode", None)
+        if updates.get("fast") is False:
+            launch.pop("fastMode", None)
+            if not any(key in launch for key in ("power", "reasoning_effort", "reasoningEffort")):
                 launch["power"] = DEFAULT_LAUNCH_SETTINGS["power"]
         now = _local_now_iso()
         return store["update_session"](name, lambda s: {
@@ -1173,7 +1177,7 @@ def create_session_service(options=None):
             "bundle_size_bytes": len(bundle_bytes),
         }
-    def import_bundle(file_path, passphrase=None, session_names=None, force=False):
+    def import_bundle(file_path, passphrase=None, session_names=None, force=False, merge=False):
         if not file_path or not os.path.isfile(file_path):
             raise CdxError(f"Bundle file not found: {file_path}")
         with open(file_path, "rb") as handle:
@@ -1193,15 +1197,18 @@ def create_session_service(options=None):
         existing = {session["name"] for session in list_sessions()}
         conflicts = [name for name in names if name in existing]
-        if conflicts and not force:
+        if conflicts and not force and not merge:
             raise CdxError(f"Import would overwrite existing sessions: {', '.join(conflicts)}")
         for session_payload in imported_sessions:
             name = session_payload["name"]
             _validate_new_session_name(name)
             provider = _normalize_provider(session_payload["provider"])
-            if name in existing:
+            is_existing = name in existing
+            if is_existing and force:
                 remove_session(name)
+                is_existing = False
             session_root = _get_session_root(name)
             auth_home = _get_session_auth_home(name, provider)
@@ -1210,18 +1217,38 @@ def create_session_service(options=None):
             _ensure_private_dir(session_root)
             _ensure_private_dir(auth_home)
-            session_record = {
-                **session_payload,
-                "provider": provider,
-                "enabled": session_payload.get("enabled", True) is not False,
-                "sessionRoot": session_root,
-                "authHome": auth_home,
-            }
-            store["replace_session"](name, session_record)
+            if is_existing and merge:
+                existing_record = store["get_session"](name) or {}
+                bundle_record = {
+                    **session_payload,
+                    "provider": provider,
+                    "enabled": session_payload.get("enabled", True) is not False,
+                    "sessionRoot": session_root,
+                    "authHome": auth_home,
+                }
+                # Existing values take precedence; bundle fills in missing keys only.
+                merged_record = {**bundle_record, **{k: v for k, v in existing_record.items() if v is not None}}
+                merged_record["sessionRoot"] = session_root
+                merged_record["authHome"] = auth_home
+                store["replace_session"](name, merged_record)
+            else:
+                session_record = {
+                    **session_payload,
+                    "provider": provider,
+                    "enabled": session_payload.get("enabled", True) is not False,
+                    "sessionRoot": session_root,
+                    "authHome": auth_home,
+                }
+                store["replace_session"](name, session_record)
             state = (payload.get("states") or {}).get(name)
             if state is not None:
-                store["write_session_state"](name, state)
+                if is_existing and merge:
+                    existing_state = store["read_session_state"](name) or {}
+                    merged_state = {**state, **{k: v for k, v in existing_state.items() if v is not None}}
+                    store["write_session_state"](name, merged_state)
+                else:
+                    store["write_session_state"](name, state)
             for item in (payload.get("profiles") or {}).get(name, []):
                 rel_path = _safe_relpath(item.get("path"))
@@ -1230,6 +1257,9 @@ def create_session_service(options=None):
                 except (AttributeError, ValueError, UnicodeEncodeError) as error:
                     raise CdxError(f"Bundle contains invalid file data for session {name}: {rel_path}") from error
                 dest_path = os.path.join(session_root, rel_path)
+                # In merge mode, skip files that already exist locally.
+                if is_existing and merge and os.path.exists(dest_path):
+                    continue
                 _ensure_private_dir(os.path.dirname(dest_path))
                 with open(dest_path, "wb") as handle:
                     handle.write(content)