Merged
Conversation
fix(rpm): Align Fedora 44 dependencies
… cargo binary from $HOME directory
… Rust toolchain detection
…geting Add Hyprland window targeting backend
…ired-launcher-startup fix(linux): bypass upstream app sunset gate
…dency-detection fix(install): Detect Linux dependency profiles from os-release
troubles when `/tmp` mounted with `noexec`
Fix/0.7.1 missing cargo path
Refresh the packaged desktop app to the current upstream DMG and update the fixed-output hashes and package versions accordingly. This also carries the ASAR patch drift needed for the newer bundle shape and removes the unused runtime share tree from the final package.
Make the Linux tray startup patch robust when the settings helper is not defined yet in the current upstream bundle. The tray remains enabled by default, while settings-aware builds still honor the helper when it exists.
Patch the bundled Browser Use node_repl executable with the NixOS dynamic linker and runtime library path. Without this, the in-app browser automation runtime can be present in the app bundle but fail to execute on NixOS.
Sync the bundled Browser Use marketplace metadata into CODEX_HOME so app-server plugin discovery can see the openai-bundled marketplace on Linux. The launcher now refreshes the metadata cache safely, including replacing read-only stale files from earlier package runs.
Patch the Electron VS Code bridge to provide a narrow fallback operation source for git-origins requests that arrive without source metadata. Other git operations still keep the upstream missing-source guard, so this only improves the observed git-origins local task startup failure.
Upstream binary changed — refreshed SRI hash to sha256-KvrWUJgRYbuG/YFSIc/pdkRhGRK3fDqfKj10O7rjFck=. [skip ci]
…cy-filter Fix Fedora RPM bundled binary dependency scanning
…lable-gate [codex] Handle current upstream patch drift
…ackend Add KWin window targeting backend
Read ydotool stdout and stderr concurrently with process execution so noisy failures cannot fill pipe buffers and get reported as false timeouts. Co-authored-by: Codex <noreply@openai.com>
![coderabbitai[bot]](https://avatars.githubusercontent.com/in/347564?s=60&v=4){kind=small}
Validate COSMIC helper overrides as executable files, serialize feature tests that mutate process environment, align Fedora dnf5 guidance, and make the updater system-CLI skip variable explicitly test-only. Co-authored-by: Codex <noreply@openai.com>
Update the unsupported-package-manager fallback to show the Fedora 41+ dnf5 command without distro Node.js packages, matching the managed Node.js runtime guidance. Co-authored-by: Codex <noreply@openai.com>
![greptile-apps[bot]](https://avatars.githubusercontent.com/in/867647?s=60&v=4){kind=small}
Fail fast when validate-patch-report receives an unsupported profile so CI cannot silently skip required patch checks after a typo. Co-authored-by: Codex <noreply@openai.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Merges upstream
mainthrough5c3cf8b7b026ff02a61a155f709bcab115832e5ewhile preserving this fork's Linux package and updater contracts.Sync Ledger
originandupstream; upstream advanced from446843757d54d41b53e6244d49ddd9375acb3fc2to5c3cf8b7b026ff02a61a155f709bcab115832e5e.docs/maintainers/fork-divergences.md,.agents/fork-sync-policy.toml, anddocs/maintainers/fork-sync-policy.md.codex-app,codex-app-updater,/opt/codex-app,/usr/lib/codex-app, XDGcodex-app-updater, and DMG-derived package versions.docs/maintainers/fork-divergences.md.0.7.1work into the fork names.codex-desktop/codex-update-managerreferences only where they are package transition metadata, old-service cleanup, upstream issue references, or maintainer-doc policy context.Verification
bash -n install.shbash -n scripts/install-deps.shbash -n scripts/build-deb.shbash -n scripts/build-rpm.shbash -n scripts/build-pacman.shbash -n tests/fixtures/create-packaged-app-fixture.shbash -n tests/scripts_smoke.shbash -n launcher/start.sh.templatebash -n scripts/ci/update-nix-hashes.shbash -n packaging/linux/codex-app-updater-user-service.shnode --check scripts/patch-linux-window-ui.jsnode --check scripts/patch-linux-window-ui.test.jsnode --check scripts/patches/launch-actions.jsnode --check scripts/patches/computer-use.jsnode --check scripts/patches/main-process.jsnode --check scripts/ci/validate-patch-report.jsnode scripts/patch-linux-window-ui.test.js(82 passed)bash tests/scripts_smoke.sh(passed; host prints inheritedmodule/mlshell-function import warnings)cargo fmt --checkcargo check --workspace --all-targetscargo clippy --workspace --all-targets -- -D warningscargo test -p codex-app-updater codex_cli::tests::preflight_uses_cached_latest_for_fresh_explicit_cli_path -- --exact(passed after one full-suite transientText file busyfailure)cargo test --workspace --all-targets(passed on rerun: updater 119, Chrome host 11, COSMIC helper 4, Computer Use backend 86)make build-appdownloaded freshCodex.dmgat2026-05-10 17:42:12 -0400, then failed under sandbox because npm cache writes to/home/nisavid/.npmhitEROFSmake build-app(passed against the freshly downloadedCodex.dmg)make pacman(builtdist/codex-app-26.506.31421-1-x86_64.pkg.tar.zst)pacman -Qip dist/codex-app-26.506.31421-1-x86_64.pkg.tar.zstpacman -Qlp dist/codex-app-26.506.31421-1-x86_64.pkg.tar.zstsha256sum Codex.dmg dist/codex-app-26.506.31421-1-x86_64.pkg.tar.zstCodex.dmg:e05ae853e5035c949b07915f8c68621b25eb43f47e5185ee6983e847ba176f2723274190906d853764032c3c30f29523c39b3dbb308f619d434077eaff1d1ba3git diff --cached --checkNotes
Package metadata inspected as
codex-app 26.506.31421-1, with/opt/codex-app,/usr/lib/codex-app,/usr/share/applications/codex-app.desktop,/usr/lib/systemd/user/codex-app-updater.service, and the update builder payload present in the package listing.Summary by CodeRabbit