Skip to content

chore(main): release 0.2.0#326

Open
github-actions[bot] wants to merge 1 commit into
mainfrom
release-please--branches--main--components--agentex
Open

chore(main): release 0.2.0#326
github-actions[bot] wants to merge 1 commit into
mainfrom
release-please--branches--main--components--agentex

Conversation

@github-actions

@github-actions github-actions Bot commented Jun 19, 2026

Copy link
Copy Markdown

🤖 I have created a release beep boop

0.2.0 (2026-07-13)

Features

  • agent_api_keys: one-call webhook-trigger setup endpoint (#329) (9cc71fb)
  • agentex-ui: account picker via same-origin BFF proxy (#350) (0f07dc7)
  • agentex-ui: grow chat input vertically for multi-line prompts (#332) (8c060f1)
  • agentex-ui: OIDC login with server-side access token (#351) (824286c)
  • retention: strict bool env parsing + stale-RUNNING cleanup override (#306) (5ad81e8)
  • schedules: add exact skip and unskip actions (#357) (ac88134)
  • schedules: agent run schedules (v1) (#335) (6a66ad3)
  • task-messages: add optional is_error to ToolResponseContent (#331) (5020e96)
  • update task configs in agentex db on turn (#309) (13eea7a)

Bug Fixes

  • agentex-ui: merge URL updates against the live URL to fix account-switch races (#355) (f87e363)
  • agentex-ui: stop clipping agent badge hover scale and shadow (#352) (b49fab6)
  • agentex: bump aiohttp 3.13.4 -> 3.14.1 (clears 11 CVEs, agentex server image) (#359) (3001351)
  • authz: grant legacy agent register principal (#325) (cae5f94)
  • deps: cap fastapi <0.137.0 to stop OPTIONS preflight 500s (#334) (acbe9e3)
  • deps: clear golden-image Trivy CRITICAL/HIGH (litellm, starlette, pyjwt, python-multipart) (#320) (bfa6652)
  • page ready agents during health-check startup (#345) (2ffde24)
  • schedules: backfill agent_run_schedules deleted_at/version on early-deployed envs (#341) (fc1ba55)
  • schedules: grant legacy auth for run schedules (#344) (648e81c)
  • schedules: use stable handles for run schedules (#349) (3b722f6)
  • streams: cut SSE error-log volume and add Redis pool headroom (#340) (352eaaa)
  • streams: snapshot SSE cursor before "connected" to stop first-token drops (#330) (7c2ccfd)
  • tasks: preserve task_metadata in combined update and forward merge_params by name (#336) (8c25c64)
  • ui: load all agents so the picker and deep-links work past the first page (#347) (92b9da3)

Documentation

  • document Redis as a required dependency (#343) (4c1740b)
  • guides: tracing, framework-agent, and local-sandbox guides (#339) (b43e8c3)
  • streaming: document the unified harness surface (#337) (31fd697)

This PR was generated with Release Please. See documentation.

Greptile Summary

This is a release-please-generated PR that cuts the 0.2.0 release, bundling ~20 merged features and fixes (schedules, OIDC login, account picker, SSE improvements, aiohttp CVE patch, and more) into version and changelog artifacts.

  • Version is bumped to 0.2.0 in _version.py, both pyproject.toml files, openapi.yaml, and .release-please-manifest.json.
  • The root pyproject.toml raises the aiohttp override floor to >=3.14.1 to clear 11 CVEs, but agentex/pyproject.toml's direct constraint remains >=3.10.9,<4, leaving standalone installs of agentex-backend exposed to those same CVEs.
  • uv.lock still records both workspace packages as 0.1.0 and would need regeneration for a fully consistent release artifact.

Confidence Score: 4/5

Safe to merge for workspace/Docker deployments; one incomplete security fix in the member package direct dependency is worth addressing before wider distribution.

The aiohttp CVE fix is only enforced through the workspace override in the root pyproject.toml. The agentex/pyproject.toml direct constraint still allows versions back to 3.10.9, so any out-of-workspace install of agentex-backend can resolve a vulnerable version. All other changes are clean version bumps and generated artifacts.

agentex/pyproject.toml — the aiohttp floor needs to be raised from >=3.10.9 to >=3.14.1 to match the workspace override and keep the CVE fix effective for all install paths.

Important Files Changed

Filename Overview
.release-please-manifest.json Version manifest updated from 0.1.0 to 0.2.0; straightforward release-please bookkeeping.
CHANGELOG.md New CHANGELOG.md created by release-please, listing all features, fixes, and docs for 0.2.0.
agentex/src/_version.py Version string bumped to 0.2.0; single-line change.
pyproject.toml Root workspace version bumped to 0.2.0; aiohttp override floor raised to >=3.14.1 to clear CVEs.
agentex/pyproject.toml Version bumped to 0.2.0, fastapi cap kept at <0.137.0. aiohttp direct dep still at >=3.10.9 while the security-patched minimum is 3.14.1 — standalone installs of this package could resolve a vulnerable version.
agentex/openapi.yaml OpenAPI spec version bumped to 0.2.0 with new schedule skip/unskip endpoints, webhook trigger endpoint, and task-message schema additions that match the listed features.

Reviews (25): Last reviewed commit: "chore(main): release 0.2.0" | Re-trigger Greptile

@github-actions github-actions Bot requested a review from a team as a code owner June 19, 2026 02:22
@github-actions github-actions Bot force-pushed the release-please--branches--main--components--agentex branch from 63c1abc to 34c3cdd Compare June 22, 2026 17:01
Comment thread pyproject.toml Outdated
[project]
name = "agentex"
version = "0.1.0"
version = "0.1.1"

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

P1 Regenerate the lockfile

The package versions were bumped here and in agentex/pyproject.toml, but uv.lock still records both workspace packages as 0.1.0 (agentex and agentex-backend). The Docker build copies that lockfile and runs uv sync --frozen --no-dev --package agentex-backend and uv export --frozen, so the release image path can fail the frozen-lock freshness check or install/export package metadata from the previous version. Regenerate and commit uv.lock with the 0.1.1 package versions.

Artifacts

Repro: lock metadata check script

  • Contains supporting evidence from the run (text/x-python; charset=utf-8).

Repro: lock metadata check output showing stale package versions

  • Keeps the command output available without making the summary code-heavy.

Repro: attempted frozen uv sync command output

  • Keeps the command output available without making the summary code-heavy.

Repro: attempted frozen uv export command output

  • Keeps the command output available without making the summary code-heavy.

View artifacts

T-Rex Ran code and verified through T-Rex

Prompt To Fix With AI
This is a comment left during a code review.
Path: pyproject.toml
Line: 3

Comment:
**Regenerate the lockfile**

The package versions were bumped here and in `agentex/pyproject.toml`, but `uv.lock` still records both workspace packages as `0.1.0` (`agentex` and `agentex-backend`). The Docker build copies that lockfile and runs `uv sync --frozen --no-dev --package agentex-backend` and `uv export --frozen`, so the release image path can fail the frozen-lock freshness check or install/export package metadata from the previous version. Regenerate and commit `uv.lock` with the `0.1.1` package versions.

How can I resolve this? If you propose a fix, please make it concise.

Fix in Cursor Fix in Claude Code Fix in Codex

Comment thread agentex/src/_version.py Outdated
@github-actions github-actions Bot changed the title chore(main): release 0.1.1 chore(main): release 0.2.0 Jun 22, 2026
@github-actions github-actions Bot force-pushed the release-please--branches--main--components--agentex branch 5 times, most recently from e158b69 to d1cae87 Compare June 23, 2026 21:06
@github-actions

github-actions Bot commented Jun 24, 2026

Copy link
Copy Markdown
Author

✱ Stainless preview builds

This PR will update the agentex-sdk SDKs with the following commit messages.

openapi

chore(main): release 0.2.0

python

chore(main): release 0.2.0

typescript

chore(internal): regenerate SDK with no functional changes

Edit this comment to update them. They will appear in their respective SDK's changelogs.

agentex-sdk-openapi studio · code · diff

Your SDK build had at least one "note" diagnostic, but this did not represent a regression.
generate ✅

agentex-sdk-typescript studio · code · diff

Your SDK build had at least one "warning" diagnostic, but this did not represent a regression.
generate ⚠️build ⏭️ (prev: build ✅) → lint ⏭️ (prev: lint ✅) → test ✅

agentex-sdk-python studio · conflict

Your SDK build resulted in a merge conflict between your custom code and the newly generated changes, which is a regression from the base state.
You don't need to resolve this conflict right now, but you will need to resolve it for your changes to be released to your users. Read more about why this happened here.


This comment is auto-generated by GitHub Actions and is automatically kept up to date as you push.
If you push custom code to the preview branch, re-run this workflow to update the comment.
Last updated: 2026-06-25 18:06:43 UTC

@github-actions github-actions Bot force-pushed the release-please--branches--main--components--agentex branch from d1cae87 to 8a96c9c Compare June 24, 2026 20:35
@github-actions github-actions Bot force-pushed the release-please--branches--main--components--agentex branch 3 times, most recently from c652fd6 to 056936e Compare June 25, 2026 15:52
Comment thread pyproject.toml
[project]
name = "agentex"
version = "0.1.0"
version = "0.2.0"

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

P1 Regenerate frozen lockfile

This release bumps the workspace package to 0.2.0, but uv.lock still records both agentex and agentex-backend as 0.1.0. The Docker image copies that lockfile and runs frozen uv export / uv sync for agentex-backend, so the release build can fail the frozen-lock check or install/export package metadata for the previous version instead of this release.

Artifacts

Repro: generated frozen uv check script

  • Contains supporting evidence from the run (text/x-shellscript; charset=utf-8).

Repro: frozen uv command output showing stale lockfile validation failure

  • Keeps the command output available without making the summary code-heavy.

Repro: uv 0.7.3 installation output used to run the frozen checks

  • Keeps the command output available without making the summary code-heavy.

View artifacts

T-Rex Ran code and verified through T-Rex

Prompt To Fix With AI
This is a comment left during a code review.
Path: pyproject.toml
Line: 3

Comment:
**Regenerate frozen lockfile**

This release bumps the workspace package to `0.2.0`, but `uv.lock` still records both `agentex` and `agentex-backend` as `0.1.0`. The Docker image copies that lockfile and runs frozen `uv export` / `uv sync` for `agentex-backend`, so the release build can fail the frozen-lock check or install/export package metadata for the previous version instead of this release.

How can I resolve this? If you propose a fix, please make it concise.

Fix in Cursor Fix in Claude Code Fix in Codex

Comment thread agentex/src/_version.py
"""Single source of the agentex contract version (bumped by release-please)."""

__version__ = "0.1.0" # x-release-please-version
__version__ = "0.2.0" # x-release-please-version

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

P1 Update telemetry version defaults

The API version now comes from __version__ and is 0.2.0, but src/utils/otel_metrics.py still falls back to SERVICE_VERSION 0.1.0 and get_meter(..., version="0.1.0"). Internal callers use get_meter without passing a version, so deployments that do not set SERVICE_VERSION emit 0.2.0 service metrics under the old 0.1.0 version, which can make rollout dashboards and version comparisons incorrect.

Artifacts

Repro: Python harness that exercises telemetry version defaults with SERVICE_VERSION unset

  • Contains supporting evidence from the run (text/x-python; charset=utf-8).

Repro: harness output showing package version 0.2.0 but telemetry resource and meter version 0.1.0

  • Keeps the command output available without making the summary code-heavy.

View artifacts

T-Rex Ran code and verified through T-Rex

Prompt To Fix With AI
This is a comment left during a code review.
Path: agentex/src/_version.py
Line: 3

Comment:
**Update telemetry version defaults**

The API version now comes from `__version__` and is `0.2.0`, but `src/utils/otel_metrics.py` still falls back to `SERVICE_VERSION` `0.1.0` and `get_meter(..., version="0.1.0")`. Internal callers use `get_meter` without passing a version, so deployments that do not set `SERVICE_VERSION` emit 0.2.0 service metrics under the old 0.1.0 version, which can make rollout dashboards and version comparisons incorrect.

How can I resolve this? If you propose a fix, please make it concise.

Fix in Cursor Fix in Claude Code Fix in Codex

@github-actions github-actions Bot force-pushed the release-please--branches--main--components--agentex branch 4 times, most recently from 34b20d7 to c033407 Compare July 1, 2026 20:12
@github-actions github-actions Bot force-pushed the release-please--branches--main--components--agentex branch 9 times, most recently from 991a96a to 851a14d Compare July 10, 2026 16:54
@github-actions github-actions Bot force-pushed the release-please--branches--main--components--agentex branch from 851a14d to 7ab092d Compare July 13, 2026 22:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant