v2.1.0.md

Release v2.1.0

Release line: stable

This minor release adds local usage governance and an optional loopback bridge without turning codex-multi-auth into a hosted gateway.

Scope

• Package version prepared for publish: 2.1.0
• Previous stable release: v2.0.2
• Semver rationale: additive local CLI, storage, runtime policy, and bridge surfaces.

What Changed

Local Governance

• added a local JSONL usage ledger and codex auth usage
• added account policy metadata for tags, weights, pause, drain, and notes
• added project-aware routing profiles, budget guards, and runtime policy evaluation before account selection
• added model/account capability matrix views based on existing model profiles, capability policy, quota cache, and entitlement state
• added codex auth monitor for combined runtime, usage, policy, profile, model, quota, and project context

Runtime Integration

• runtime proxy and plugin-host paths evaluate local policy before account selection
• runtime outcomes append at most one local usage row after success, failure, or policy block
• local governance records avoid prompts, auth headers, raw emails, and raw sensitive account ids

Local Bridge

• added optional loopback-only /health, /v1/models, and /v1/responses bridge core
• added hashed local client token storage; plaintext tokens are shown only on create or rotate
• added codex auth bridge token create|list|rotate|revoke
• added deterministic OpenCode, OpenClaw, Python, curl, and env snippets through codex auth integrations

Validation

• npm run lint
• npm run typecheck
• npm test -- test/documentation.test.ts
• npm test
• npm run build
• npm run clean:repo:check

Release Notes

• Review PR: #451
• Replacement review PRs for reverted merged slices: #452, #453, #454, #455
• Previous release notes: docs/releases/v2.0.2.md