v1.2.1

Summary

• Switch cc to Codex native plugin_hooks with bundled hooks/hooks.json from the active plugin cache.
• Remove the supported local checkout/stable-root install flow; installer now uses marketplace/add + plugin/install and cleans legacy global hooks.
• Make native hook feature gates and trust this plugin's current native hook hashes via hooks/list + config/batchWrite.
• Update README, skills, tests, and changelog for the marketplace/cache-only 1.2.1 flow.

Verification

• npm run lint
• npm run typecheck
• npm run check:version-sync
• npm run check:changelog
• npm run test
• tests/integration/claude-companion.test.mjs
• npm run test:e2e
• npm pack --dry-run
• real sendbird-local-121 cache install setup --json returned ready with hookTrust.ready=true

v1.2.0

• Default the Claude model for review, adversarial-review, and rescue/task to opus (resolved to the 1M-context variant claude-opus-4-7[1m]) with xhigh effort. The sonnet alias resolves to claude-sonnet-4-6[1m] and defaults to high effort; haiku stays on claude-haiku-4-5 with effort unset. --model and --effort remain user-overridable; xhigh is now a first-class effort level and max is reserved for users who explicitly opt in.
• Isolate review and adversarial-review from the user repo with a three-layer design instead of the previous Bash-pattern allowlist (which the Claude CLI does not strictly enforce — once Bash is in the allowlist with any sub-pattern, the entire Bash tool opens up). Reviews now run inside an ephemeral git worktree checked out at the branch tip (or the original repo for working-tree scope, so staged/unstaged/untracked changes remain visible), use a bundled read-only git MCP server (mcp-git subcommand) exposing diff/log/show/blame/status/grep/ls_files as structured tools with strict ref/path validation, and tighten the allowlist to Read, Glob, Grep, WebSearch, WebFetch, and mcp__gitReview__* only (no Bash entry).
• Leave network unrestricted in the read-only sandbox preset so WebFetch/WebSearch and the Claude CLI's own API path keep working; safety comes from removing Bash from the allowlist rather than from blocking network. File writes outside the OS temp dir stay blocked.
• Expose --effort on review and adversarial-review and document the new defaults in SKILL.md, README.md, and the internal cli-runtime reference.
• Sweep stranded review-worktrees/, sandbox/, and mcp/ runtime files older than six hours at the start of every review to reclaim resources after kill -9 or crashed runs.

v1.1.0

v1.1.0

• Restructure internal Claude runtime and prompt-shaping guidance from pseudo-hidden SKILL.md files into plain internal reference documents.
• Keep public review, adversarial-review, and rescue skills self-sufficient on proven invocation-regression guards.
• Require built-in background forwarding children to run the companion command as one blocking foreground shell-tool call instead of opening a background terminal/session.
• Remove workstation-specific absolute internal-doc link targets so source trees, installed copies, and marketplace snapshots keep valid internal references.

v1.0.9

v1.0.9

• add marketplace-aware install foundation for Codex 0.121+
• support versioned marketplace cache roots and auto-enable codex_hooks during hook install
• add marketplace snapshot update workflow for sendbird/codex-marketplace
• align unread reminder semantics so finished-job status JSON counts as a viewed result

v1.0.8

• Clarify the routing boundary between $cc:review, $cc:adversarial-review, and $cc:rescue, including the rule that ordinary code-review requests default to review, stronger scrutiny plus custom focus text belongs to adversarial-review, and rescue is only for Claude-owned follow-through work.
• Add E2E coverage that injects both review skills together and verifies the focus-text distinction is surfaced to the parent turn while the adversarial focus path still reaches Claude end to end.
• Refresh the macOS integration concurrency test so aggressive concurrent polling no longer flakes when some jobs finish slightly later than the initial polling window.
• Update development dependencies with the merged Dependabot patch bumps for @types/node and globals.

v1.0.7

• Add GitHub CI coverage across Windows, macOS, and Linux, with a portable cross-platform test suite plus Linux-only full integration/E2E coverage.
• Harden background routing by validating parentThreadId, combining reserved-job and session-routing metadata into one helper, and making background review/rescue explicitly use built-in forwarding subagents rather than direct detached companion processes.
• Stop exposing managed job log paths through user/model-facing status and result surfaces while keeping on-disk logs for debugging.
• Make installed skill-path materialization consistent for both staged installs and direct local-checkout installs, and centralize installer path helpers for reuse.
• Switch sandbox temp-dir settings from a hardcoded /tmp path to the OS temp directory so the runtime configuration stays valid off Linux.

v1.0.6

v1.0.6

• Restore parent-session ownership for built-in background rescue/review runs so resume candidates, plain $cc:status, and no-argument $cc:result stay aligned after nested child sessions.
• Distinguish the owning Codex session from the actual Claude Code session in job rendering so claude --resume ... points at the real Claude session instead of the parent owner marker.
• Tighten the background review and adversarial-review forwarding contracts around send_input notification behavior and add E2E coverage for built-in notification steering in both flows.

v1.0.5

v1.0.5

• Keep built-in background review jobs attached to the parent Codex session so plain $cc:status and $cc:result stay intuitive after nested rescue/review flows.
• Make $cc:status --all show the full job history for the current repository workspace instead of staying session-scoped.
• Harden large-diff review and hook fingerprinting so oversized git diff output degrades cleanly instead of failing with ENOBUFS.
• Clarify README guidance around review visibility, large diffs, and the difference between session-scoped status and repository-wide status.

v1.0.4

What's Changed

• Clarify README positioning for Codex + Claude by @sf-jin-ku in #22
• Prepare v1.0.4 release by @sf-jin-ku in #23

Full Changelog: v1.0.3...v1.0.4

v1.0.3

What's Changed

• Release v1.0.3 by @sf-jin-ku in #21

Full Changelog: v1.0.2...v1.0.3