potiuk opened a new pull request, #590:
URL: https://github.com/apache/magpie/pull/590
## What
Bump the pinned `claude-code` in `tools/agent-isolation/pinned-versions.toml`
from **2.1.172 → 2.1.193**, and the matching `@2.1.172` install pins in
`docs/setup/secure-agent-setup.md`. `pinned_at` advanced to 2026-06-27.
`bubblewrap` (0.11.2) and `socat` (1.8.1.1) are unchanged — already current.
After the bump, `tools/agent-isolation/check-tool-updates.sh` reports all
three pinned tools ✓ up to date.
## Why
2.1.193 (released 2026-06-25) has aged past `claude-code`'s 1-day cooldown.
Reviewed the 2.1.173..2.1.193 changelog for behavioural changes affecting the
secure setup's permission/sandbox posture — no regressions. Notable
additions,
flagged here as **separate follow-ups** (kept out of this version-bump PR per
the manifest's "own PR" guidance):
- `sandbox.credentials` (2.1.187) — blocks credential-file / secret-env reads
from sandboxed commands; directly aligned with the framework's `denyRead`
credential-isolation posture and worth adopting in the dogfooded
`.claude/settings.json`.
- `Tool(param:value)` permission-rule matcher (2.1.178).
- Auto-mode destructive-command guards (2.1.183).
Docs + pin manifest only; no skill/tool/mode behaviour change (spec-sync
pre-check exempt).
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
