codex-overleaf-link 1.3.9 → 1.4.0

package/README.md

@@ -3,7 +3,7 @@
   <h1>Codex Overleaf Link</h1>
   <p><strong>Empower Overleaf with Codex.</strong></p>
   <p>
-    <img src="https://img.shields.io/badge/version-1.3.9-blue" alt="version">
+    <img src="https://img.shields.io/badge/version-1.4.0-blue" alt="version">
     <img src="https://img.shields.io/badge/platform-macOS%20%2F%20Windows%20%2F%20Linux-lightgrey" alt="platform">
     <img src="https://img.shields.io/badge/chrome-MV3-green" alt="chrome manifest v3">
     <img src="https://img.shields.io/badge/node-%3E%3D20-brightgreen" alt="node version">
@@ -38,14 +38,14 @@ One command installs the native host **and** sets up the extension: the script r
 macOS / Linux:
 
 ```bash
-CODEX_OVERLEAF_REF=v1.3.9 bash -c "$(curl -fsSL https://raw.githubusercontent.com/Ghqqqq/codex-overleaf-link/v1.3.9/install.sh)"
+CODEX_OVERLEAF_REF=v1.4.0 bash -c "$(curl -fsSL https://raw.githubusercontent.com/Ghqqqq/codex-overleaf-link/v1.4.0/install.sh)"
 ```
 
 Windows PowerShell:
 
 ```powershell
-iwr https://raw.githubusercontent.com/Ghqqqq/codex-overleaf-link/v1.3.9/install.ps1 -OutFile install.ps1
-$env:CODEX_OVERLEAF_REF='v1.3.9'
+iwr https://raw.githubusercontent.com/Ghqqqq/codex-overleaf-link/v1.4.0/install.ps1 -OutFile install.ps1
+$env:CODEX_OVERLEAF_REF='v1.4.0'
 powershell -ExecutionPolicy Bypass -File install.ps1
 ```
 
@@ -56,10 +56,10 @@ Then, in the `chrome://extensions` tab the script opened: enable **Developer mod
 `npm exec` installs and updates the **native host only** — it does not include the Chrome extension. Use it if you prefer a pinned npm package to a source checkout.
 
 ```bash
-npm exec --yes codex-overleaf-link@1.3.9 -- install-native
+npm exec --yes codex-overleaf-link@1.4.0 -- install-native
 ```
 
-Then add the extension yourself: download `codex-overleaf-link-extension-v1.3.9.zip` from the [v1.3.9 GitHub Release](https://github.com/Ghqqqq/codex-overleaf-link/releases/tag/v1.3.9), unzip it to a stable folder, and in `chrome://extensions` enable **Developer mode**, click **Load unpacked**, and select that folder.
+Then add the extension yourself: download `codex-overleaf-link-extension-v1.4.0.zip` from the [v1.4.0 GitHub Release](https://github.com/Ghqqqq/codex-overleaf-link/releases/tag/v1.4.0), unzip it to a stable folder, and in `chrome://extensions` enable **Developer mode**, click **Load unpacked**, and select that folder.
 
 ### Open Overleaf
 
@@ -86,9 +86,9 @@ npm installs, updates, uninstalls, and diagnoses the native host only. npm does
 
 | Action | Command |
 |--------|---------|
-| Install / update | `npm exec --yes codex-overleaf-link@1.3.9 -- install-native` |
-| Diagnose | `npm exec --yes codex-overleaf-link@1.3.9 -- doctor` |
-| Uninstall | `npm exec --yes codex-overleaf-link@1.3.9 -- uninstall-native` |
+| Install / update | `npm exec --yes codex-overleaf-link@1.4.0 -- install-native` |
+| Diagnose | `npm exec --yes codex-overleaf-link@1.4.0 -- doctor` |
+| Uninstall | `npm exec --yes codex-overleaf-link@1.4.0 -- uninstall-native` |
 
 Use `--extension-id <chrome-extension-id>` only for a custom/dev unpacked extension id that differs from the official bundled id.
 
@@ -98,13 +98,13 @@ To update, re-run any of the [native host installers](#install) — they install
 
 ## GitHub Release Artifacts
 
-The v1.3.9 GitHub Release contains:
+The v1.4.0 GitHub Release contains:
 
-- `codex-overleaf-link-extension-v1.3.9.zip`: loadable Chrome extension package for manual unpacked installation.
-- `codex-overleaf-native-host-v1.3.9.tar.gz`: native host runtime files used by the installer and release verification.
-- `codex-overleaf-link-1.3.9.tgz`: npm native host CLI package for pinned install, doctor, and uninstall flows.
-- `install.sh`: release-pinned macOS / Linux installer that defaults to `v1.3.9` when run directly from the release artifact.
-- `install.ps1`: release-pinned Windows PowerShell installer that defaults to `v1.3.9` when run directly from the release artifact.
+- `codex-overleaf-link-extension-v1.4.0.zip`: loadable Chrome extension package for manual unpacked installation.
+- `codex-overleaf-native-host-v1.4.0.tar.gz`: native host runtime files used by the installer and release verification.
+- `codex-overleaf-link-1.4.0.tgz`: npm native host CLI package for pinned install, doctor, and uninstall flows.
+- `install.sh`: release-pinned macOS / Linux installer that defaults to `v1.4.0` when run directly from the release artifact.
+- `install.ps1`: release-pinned Windows PowerShell installer that defaults to `v1.4.0` when run directly from the release artifact.
 - `uninstall-native-host.mjs`: native host uninstaller that removes the Chrome Native Messaging manifest, bridge executable, and runtime copy.
 - `nativeHostPlatform.js`, `manifest.js`, `runtimeInstaller.js`: helper files required by the loose uninstaller asset.
 - `SHA256SUMS` and `release-manifest.json`: checksum and artifact metadata for release verification.
@@ -115,7 +115,7 @@ The v1.3.9 GitHub Release contains:
 Remove the native host (use `--browser chromium` on Linux Chromium):
 
 ```bash
-npm exec --yes codex-overleaf-link@1.3.9 -- uninstall-native
+npm exec --yes codex-overleaf-link@1.4.0 -- uninstall-native
 ```
 
 The same command works on Windows PowerShell. If you installed from a manual checkout or source installer, you can also run `npm run uninstall:native` inside the repo, use `node ~/.codex-overleaf/source/scripts/uninstall-native-host.mjs` on macOS / Linux, or use `node $env:LOCALAPPDATA\CodexOverleaf\source\scripts\uninstall-native-host.mjs` on Windows PowerShell.
@@ -150,13 +150,13 @@ Then remove the extension from `chrome://extensions`. To delete local data: on m
 Linux Chromium install or update:
 
 ```bash
-CODEX_OVERLEAF_REF=v1.3.9 bash -c "$(curl -fsSL https://raw.githubusercontent.com/Ghqqqq/codex-overleaf-link/v1.3.9/install.sh)" -- --browser chromium
+CODEX_OVERLEAF_REF=v1.4.0 bash -c "$(curl -fsSL https://raw.githubusercontent.com/Ghqqqq/codex-overleaf-link/v1.4.0/install.sh)" -- --browser chromium
 ```
 
 Linux Chromium uninstall:
 
 ```bash
-npm exec --yes codex-overleaf-link@1.3.9 -- uninstall-native --browser chromium
+npm exec --yes codex-overleaf-link@1.4.0 -- uninstall-native --browser chromium
 ```
 
 ## Features
@@ -289,7 +289,7 @@ Composer attachments are turn-scoped Codex context. Limits are 8 attachments per
 Re-run any [native host installer](#install), reload the extension in `chrome://extensions`, then refresh the Overleaf tab. This also fixes extension/native version mismatch and native protocol mismatch.
 
 ```bash
-npm exec --yes codex-overleaf-link@1.3.9 -- install-native
+npm exec --yes codex-overleaf-link@1.4.0 -- install-native
 ```
 
 **The Windows popup or panel shows a Bash recovery command**
@@ -338,8 +338,8 @@ Use this matrix for release-candidate signoff and compatibility reports. Record
 | Browser/channel/version | Google Chrome channel and version. | Google Chrome channel and version. | Google Chrome channel and version. | Chromium channel/package and version. |
 | Install mode | Manual unpacked extension from GitHub Release zip or checkout. | Manual unpacked extension from GitHub Release zip or checkout. | Manual unpacked extension from GitHub Release zip or checkout. | Manual unpacked extension from GitHub Release zip or checkout; native host installed with `--browser chromium`. |
 | Extension id | Bundled id `illdpneeeopfffmiepaejglgmhpmdhdc`, or actual custom id passed with `--extension-id`. | Bundled id `illdpneeeopfffmiepaejglgmhpmdhdc`, or actual custom id passed with `--extension-id`. | Bundled id `illdpneeeopfffmiepaejglgmhpmdhdc`, or actual custom id passed with `--extension-id`. | Bundled id `illdpneeeopfffmiepaejglgmhpmdhdc`, or actual custom id passed with `--extension-id`. |
-| Installer/update command | `npm exec --yes codex-overleaf-link@1.3.9 -- install-native` | `npm exec --yes codex-overleaf-link@1.3.9 -- install-native` | `npm exec --yes codex-overleaf-link@1.3.9 -- install-native` | `npm exec --yes codex-overleaf-link@1.3.9 -- install-native --browser chromium` |
-| Uninstall command | `npm exec --yes codex-overleaf-link@1.3.9 -- uninstall-native` | `npm exec --yes codex-overleaf-link@1.3.9 -- uninstall-native` | `npm exec --yes codex-overleaf-link@1.3.9 -- uninstall-native` | `npm exec --yes codex-overleaf-link@1.3.9 -- uninstall-native --browser chromium` |
+| Installer/update command | `npm exec --yes codex-overleaf-link@1.4.0 -- install-native` | `npm exec --yes codex-overleaf-link@1.4.0 -- install-native` | `npm exec --yes codex-overleaf-link@1.4.0 -- install-native` | `npm exec --yes codex-overleaf-link@1.4.0 -- install-native --browser chromium` |
+| Uninstall command | `npm exec --yes codex-overleaf-link@1.4.0 -- uninstall-native` | `npm exec --yes codex-overleaf-link@1.4.0 -- uninstall-native` | `npm exec --yes codex-overleaf-link@1.4.0 -- uninstall-native` | `npm exec --yes codex-overleaf-link@1.4.0 -- uninstall-native --browser chromium` |
 | Manifest/registry path | `~/Library/Application Support/Google/Chrome/NativeMessagingHosts/com.codex.overleaf.json` | `HKCU\Software\Google\Chrome\NativeMessagingHosts\com.codex.overleaf` -> `%LOCALAPPDATA%\CodexOverleaf\native-host-runtime\com.codex.overleaf.json` | `~/.config/google-chrome/NativeMessagingHosts/com.codex.overleaf.json` | `~/.config/chromium/NativeMessagingHosts/com.codex.overleaf.json` |
 | Bridge/runtime/source path | Bridge `~/.codex-overleaf/codex-overleaf-bridge`; runtime `~/.codex-overleaf/native-host-runtime`; source `~/.codex-overleaf/source`. | Bridge `%LOCALAPPDATA%\CodexOverleaf\codex-overleaf-bridge.cmd`; runtime `%LOCALAPPDATA%\CodexOverleaf\native-host-runtime`; source `%LOCALAPPDATA%\CodexOverleaf\source`. | Bridge `~/.codex-overleaf/codex-overleaf-bridge`; runtime `~/.codex-overleaf/native-host-runtime`; source `~/.codex-overleaf/source`. | Bridge `~/.codex-overleaf/codex-overleaf-bridge`; runtime `~/.codex-overleaf/native-host-runtime`; source `~/.codex-overleaf/source`. |
 | Node/Git/Codex/TeX | Node.js >= 20; Git; Codex CLI installed and logged in; TeX optional. | Node.js >= 20; Git; Codex CLI installed and logged in; TeX optional. | Node.js >= 20; Git; Codex CLI installed and logged in; TeX optional. | Node.js >= 20; Git; Codex CLI installed and logged in; TeX optional. |

package/extension/src/shared/compatibility.js

@@ -12,7 +12,7 @@
   const MIN_NATIVE_VERSION = '1.0.0';
   const MIN_COMPATIBLE_NATIVE_VERSION = '1.0.0';
   const MIN_COMPATIBLE_EXTENSION_VERSION = '1.0.0';
-  const BUILD_TARGET_VERSION = '1.3.9';
+  const BUILD_TARGET_VERSION = '1.4.0';
   const DEFAULT_CHROME_EXTENSION_ID = 'illdpneeeopfffmiepaejglgmhpmdhdc';
   const REQUIRED_CAPABILITIES = Object.freeze([
     'bridgePing',

package/extension/src/shared/i18n.js

@@ -188,9 +188,13 @@
       settingsScopeGlobalSubtitle: 'Skill loading settings that apply across all Overleaf projects.',
       governanceRulesTitle: 'Governance Rules',
       governanceReadonlyPatterns: 'Read-only patterns',
+      governanceReadonlyHelp: 'Files Codex must never modify — one glob per line.',
       governanceWritablePatterns: 'Writable patterns',
+      governanceWritableHelp: 'Files Codex may edit — one glob per line.',
       sensitiveCheckEnabled: 'Check for sensitive content before Codex runs',
+      sensitiveCheckHelp: 'Scan project files for secrets and personal data before each run.',
       sensitiveConfirmAllowed: 'Allow explicit confirmation when sensitive findings exist',
+      sensitiveConfirmHelp: 'Lets you review and proceed when the scan flags something.',
       sensitiveConfirmTitle: 'Sensitive Content Found',
       sensitiveConfirmMessage: 'Codex found possible sensitive content. Raw detected secrets are not shown here. Continue only if this project context may be sent to Codex.',
       sensitiveConfirmRun: 'Run anyway',
@@ -198,6 +202,7 @@
       codexOverleafSkillsEmpty: 'No Codex Overleaf skills installed.',
       codexOverleafSkillsDisabled: 'Codex Overleaf skills are disabled for runs.',
       loadCodexLocalSkills: 'Load local Codex skills',
+      loadCodexLocalSkillsHelp: 'Pull skills from your local Codex installation.',
       loadCodexOverleafSkills: 'Load Codex Overleaf skills',
       localSkillRemove: 'Remove',
       localSkillRemoveConfirm: 'Confirm',
@@ -221,6 +226,7 @@
       binaryAssetConfirm: 'Write assets',
       binaryAssetCancel: 'Skip assets',
       personalizationConfig: 'Personalization',
+      personalizationHelp: 'Style, terminology, and LaTeX conventions Codex should follow in this project.',
       settingsSaved: 'Saved',
       settingsSaving: 'Saving…',
       technicalDetails: 'Technical Details',
@@ -552,9 +558,13 @@
       settingsScopeGlobalSubtitle: '适用于所有 Overleaf 项目的技能加载设置。',
       governanceRulesTitle: '治理规则',
       governanceReadonlyPatterns: '只读路径规则',
+      governanceReadonlyHelp: 'Codex 绝不可修改的文件，每行一个 glob 规则。',
       governanceWritablePatterns: '可写路径规则',
+      governanceWritableHelp: 'Codex 允许编辑的文件，每行一个 glob 规则。',
       sensitiveCheckEnabled: 'Codex 运行前检查敏感内容',
+      sensitiveCheckHelp: '每次运行前扫描项目文件中的密钥和个人信息。',
       sensitiveConfirmAllowed: '发现敏感内容时允许显式确认后继续',
+      sensitiveConfirmHelp: '当扫描发现可疑内容时，允许你审阅后再继续。',
       sensitiveConfirmTitle: '发现敏感内容',
       sensitiveConfirmMessage: 'Codex 发现了可能的敏感内容。这里不会显示原始密钥或秘密值。只有在确认可以把这些项目上下文发送给 Codex 时才继续。',
       sensitiveConfirmRun: '仍然运行',
@@ -562,6 +572,7 @@
       codexOverleafSkillsEmpty: '没有安装 Codex Overleaf 专属技能。',
       codexOverleafSkillsDisabled: '运行时已禁用 Codex Overleaf 专属技能。',
       loadCodexLocalSkills: '加载 Codex 本地技能',
+      loadCodexLocalSkillsHelp: '从本地 Codex 安装中拉取技能。',
       loadCodexOverleafSkills: '加载 Codex Overleaf 专属技能',
       localSkillRemove: '删除',
       localSkillRemoveConfirm: '确认',
@@ -585,6 +596,7 @@
       binaryAssetConfirm: '写入资源',
       binaryAssetCancel: '跳过资源',
       personalizationConfig: '个性化配置',
+      personalizationHelp: 'Codex 在本项目中应遵循的风格、术语和 LaTeX 约定。',
       settingsSaved: '已保存',
       settingsSaving: '保存中…',
       technicalDetails: '技术细节',

package/extension/src/shared/sensitiveScan.js

@@ -12,6 +12,12 @@
     { id: 'private-key', pattern: /-----BEGIN [A-Z ]*PRIVATE KEY-----/gi },
     { id: 'bearer-token', pattern: /\bBearer\s+[A-Za-z0-9._~+/=-]{12,}\b/gi },
     { id: 'api-token', pattern: /\b(?:(?:ghp|github_pat|xox[baprs])_[A-Za-z0-9_=-]{16,}|sk-[A-Za-z0-9_-]{16,})\b/gi },
+    { id: 'aws-access-key', pattern: /\bAKIA[0-9A-Z]{16}\b/g },
+    { id: 'google-api-key', pattern: /\bAIza[0-9A-Za-z_-]{35}\b/g },
+    { id: 'huggingface-token', pattern: /\bhf_[A-Za-z0-9]{20,}\b/g },
+    { id: 'gitlab-token', pattern: /\bglpat-[A-Za-z0-9_-]{20,}\b/g },
+    { id: 'stripe-live-secret', pattern: /\bsk_live_[A-Za-z0-9]{16,}\b/g },
+    { id: 'jwt-token', pattern: /\beyJ[A-Za-z0-9_-]{10,}\.[A-Za-z0-9_-]{10,}\.[A-Za-z0-9_-]{10,}\b/g },
     {
       id: 'secret-assignment',
       pattern: /\b(?:api[_-]?key|token|secret|password|passwd)\b\s*[:=]\s*["']?[^"'\s,;]{4,}/gi

package/extension/src/shared/sessionState.js

@@ -635,16 +635,29 @@
   function normalizeRunEvents(events) {
     return (Array.isArray(events) ? events : [])
       .filter(event => event && typeof event.title === 'string')
-      .map(event => ({
-        title: sanitizeAssistantVisibleText(event.title) || 'Event',
-        status: typeof event.status === 'string' ? event.status : 'info',
-        detail: sanitizeAssistantVisibleValue(event.detail),
-        timestamp: typeof event.timestamp === 'string' ? event.timestamp : '',
-        kind: typeof event.kind === 'string' ? event.kind : 'activity',
-        technicalDetail: sanitizeAssistantVisibleValue(event.technicalDetail),
-        streamKey: sanitizeAssistantVisibleText(event.streamKey),
-        streamRole: sanitizeAssistantVisibleText(event.streamRole)
-      }))
+      .map(event => {
+        const normalized = {
+          title: sanitizeAssistantVisibleText(event.title) || 'Event',
+          status: typeof event.status === 'string' ? event.status : 'info',
+          detail: sanitizeAssistantVisibleValue(event.detail),
+          timestamp: typeof event.timestamp === 'string' ? event.timestamp : '',
+          kind: typeof event.kind === 'string' ? event.kind : 'activity',
+          technicalDetail: sanitizeAssistantVisibleValue(event.technicalDetail),
+          streamKey: sanitizeAssistantVisibleText(event.streamKey),
+          streamRole: sanitizeAssistantVisibleText(event.streamRole)
+        };
+        // Preserve the structured completion-report payload and the structured
+        // failure across reload. Without these the report re-renders via the
+        // flat legacy path (Write result / Undo / Next NOT demoted into the
+        // muted meta block) and the recovery action button disappears.
+        if (event.detailStructured) {
+          normalized.detailStructured = sanitizeAssistantVisibleValue(event.detailStructured);
+        }
+        if (event.failure) {
+          normalized.failure = sanitizeAssistantVisibleValue(event.failure);
+        }
+        return normalized;
+      })
       .slice(-MAX_RUN_EVENTS);
   }
 
@@ -1010,6 +1023,14 @@
         if (detail !== undefined) {
           compact.detail = detail;
         }
+        // Keep the structured report payload + structured failure so the
+        // demoted meta block and the recovery action survive a reload.
+        if (event.detailStructured) {
+          compact.detailStructured = sanitizeAssistantVisibleValue(event.detailStructured);
+        }
+        if (event.failure) {
+          compact.failure = sanitizeAssistantVisibleValue(event.failure);
+        }
         return compact;
       });
   }

package/extension/src/shared/storageDb.js

@@ -680,10 +680,50 @@
         if (detail !== undefined) {
           compact.detail = detail;
         }
+        // Preserve the structured completion-report payload + structured
+        // failure with their object shape intact (the generic detail
+        // compactor would redact unknown objects to a {redacted,hash}
+        // summary). Without this the report re-renders flat on reload —
+        // Write result / Undo / Next no longer demote into the muted meta
+        // block — and the recovery action button disappears.
+        if (event.detailStructured) {
+          compact.detailStructured = compactStructuredEventValueForStorage(event.detailStructured, 0);
+        }
+        if (event.failure) {
+          compact.failure = compactStructuredEventValueForStorage(event.failure, 0);
+        }
         return compact;
       });
   }
 
+  // Deep-copies a known-safe structured event value (the completion-report
+  // {conclusion, body, meta[]} payload, or a FailureReason object) preserving
+  // its shape while redacting + truncating every string field. Bounded depth +
+  // breadth so a pathological value can't blow up the stored record.
+  function compactStructuredEventValueForStorage(value, depth) {
+    var d = depth || 0;
+    if (typeof value === 'string') {
+      return normalizeDisplayTextForStorage(value, SESSION_STORAGE_LIMITS.reportDetailChars);
+    }
+    if (value === null || typeof value === 'number' || typeof value === 'boolean') {
+      return value;
+    }
+    if (d > 6 || typeof value !== 'object') {
+      return null;
+    }
+    if (Array.isArray(value)) {
+      return value.slice(0, 32).map(function (item) {
+        return compactStructuredEventValueForStorage(item, d + 1);
+      });
+    }
+    var out = {};
+    var keys = Object.keys(value).slice(0, 32);
+    for (var i = 0; i < keys.length; i++) {
+      out[keys[i]] = compactStructuredEventValueForStorage(value[keys[i]], d + 1);
+    }
+    return out;
+  }
+
   function getEventDetailLimit(event) {
     return event && event.kind === 'report'
       ? SESSION_STORAGE_LIMITS.reportDetailChars

package/native-host/src/codexPromptAssembly.js

@@ -279,13 +279,13 @@ function formatFocusFiles(files) {
 }
 
 function formatCompileLogContext(context = {}) {
-  const log = String(context.compileLog || '').trim();
+  const log = redactCompileLogText(String(context.compileLog || '').trim());
   if (!log) {
     return '- none provided.';
   }
 
-  const errors = normalizeCompileMessages(context.compileErrors);
-  const warnings = normalizeCompileMessages(context.compileWarnings);
+  const errors = normalizeCompileMessages(context.compileErrors).map(redactCompileLogText);
+  const warnings = normalizeCompileMessages(context.compileWarnings).map(redactCompileLogText);
   const fresh = context.compileLogFresh === false
     ? 'possibly stale'
     : 'fresh';
@@ -305,6 +305,33 @@ function formatCompileLogContext(context = {}) {
   ].filter(Boolean).join('\n');
 }
 
+function redactCompileLogText(value) {
+  let text = String(value || '');
+  const replacements = [
+    [/\bBearer\s+[A-Za-z0-9._~+/=-]{12,}\b/g, 'Bearer [REDACTED]'],
+    [/\b(?:ghp|github_pat|xox[baprs]|glpat)-?[_A-Za-z0-9=-]{16,}\b/g, '[REDACTED_TOKEN]'],
+    [/\b(?:sk|rk)_(?:live|test)_[A-Za-z0-9]{16,}\b/g, '[REDACTED_TOKEN]'],
+    [/\bsk-[A-Za-z0-9_-]{16,}\b/g, '[REDACTED_TOKEN]'],
+    [/\bAKIA[0-9A-Z]{16}\b/g, '[REDACTED_AWS_KEY]'],
+    [/\bAIza[0-9A-Za-z_-]{35}\b/g, '[REDACTED_GOOGLE_KEY]'],
+    [/\bhf_[A-Za-z0-9]{20,}\b/g, '[REDACTED_HF_TOKEN]'],
+    [/\beyJ[A-Za-z0-9_-]{10,}\.[A-Za-z0-9_-]{10,}\.[A-Za-z0-9_-]{10,}\b/g, '[REDACTED_JWT]'],
+    [/file:\/\/\/[^\s'"<>]+/g, '<local-path>'],
+    [/(^|[\s({["'=])\/Users\/[^:\s'"<>)]*/g, '$1<local-path>'],
+    [/(^|[\s({["'=])\/private\/var\/[^:\s'"<>)]*/g, '$1<local-path>'],
+    [/(^|[\s({["'=])\/var\/folders\/[^:\s'"<>)]*/g, '$1<local-path>'],
+    [/(^|[\s({["'=])\/tmp\/[^:\s'"<>)]*/g, '$1<local-path>'],
+    [/(^|[\s({["'=])\/Library\/TeX\/[^:\s'"<>)]*/g, '$1<TEXLIVE_PATH>'],
+    [/(^|[\s({["'=])\/usr\/local\/texlive\/[^:\s'"<>)]*/g, '$1<TEXLIVE_PATH>'],
+    [/[A-Za-z]:\\Users\\[^:\s'"<>)]*/g, '<local-path>'],
+    [/[A-Za-z]:\\(?:Program Files|texlive)\\[^:\s'"<>)]*/gi, '<local-path>']
+  ];
+  for (const [pattern, replacement] of replacements) {
+    text = text.replace(pattern, replacement);
+  }
+  return text;
+}
+
 function formatCustomInstructionsContext(customInstructions = '') {
   const instructions = truncateText(
     String(customInstructions || '').trim(),

package/native-host/src/index.js

@@ -84,11 +84,77 @@ process.on('unhandledRejection', reason => {
 });
 
 function writeResponse(response) {
-  const frame = encodeMessage(response);
+  let frame;
+  try {
+    frame = encodeMessage(response);
+  } catch (error) {
+    const fallback = buildOversizeResponseFallback(response, error);
+    try {
+      frame = encodeMessage(fallback);
+    } catch (fallbackError) {
+      frame = encodeMessage({
+        id: response?.id,
+        ok: false,
+        error: {
+          code: 'native_response_too_large',
+          message: truncateForNativeFrame(fallbackError.message || error.message || 'Native response exceeded the browser frame limit.', 800)
+        }
+      });
+    }
+  }
   logDebug('stdout.write', { bytes: frame.length, ok: response?.ok, code: response?.error?.code });
   process.stdout.write(frame);
 }
 
+function buildOversizeResponseFallback(response, error) {
+  if (response?.event) {
+    const event = response.event || {};
+    return {
+      id: response.id,
+      ok: true,
+      event: {
+        type: event.type || 'native.event.truncated',
+        title: truncateForNativeFrame(event.title || 'Native event was truncated', 500),
+        status: event.status || 'warning',
+        detail: {
+          code: 'native_event_truncated',
+          reason: truncateForNativeFrame(error?.message || 'Native event exceeded the browser frame limit.', 800),
+          originalType: truncateForNativeFrame(event.type || '', 160),
+          originalTitle: truncateForNativeFrame(event.title || '', 500),
+          originalDetailBytes: stringByteLength(safeJsonStringify(event.detail))
+        },
+        timestamp: event.timestamp || new Date().toISOString()
+      }
+    };
+  }
+
+  return {
+    id: response?.id,
+    ok: false,
+    error: {
+      code: 'native_response_too_large',
+      message: truncateForNativeFrame(error?.message || 'Native response exceeded the browser frame limit.', 800),
+      originalOk: response?.ok === true
+    }
+  };
+}
+
+function truncateForNativeFrame(value, limit) {
+  const text = String(value || '');
+  if (text.length <= limit) {
+    return text;
+  }
+  return `${text.slice(0, Math.max(0, limit - 24))}... [truncated]`;
+}
+
+function safeJsonStringify(value) {
+  try {
+    return JSON.stringify(value);
+  } catch (_error) {
+    return '';
+  }
+}
+
 function summarizeRequest(message) {
   const params = message?.params || {};
   return {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "codex-overleaf-link",
-  "version": "1.3.9",
+  "version": "1.4.0",
   "description": "Cross-platform Chrome bridge that connects Codex to the active Overleaf project.",
   "license": "MIT",
   "type": "commonjs",