Skip to content

Commit 4847d28

Browse files
chore(release): v1.2.0 — V1 paid Pro tier wire-up + X-Axonflow-Client header [skip-runtime-e2e] (#51)
Companion plugin release to platform v7.7.0. Promotes [Unreleased] to [1.2.0] - 2026-05-06 covering: - V1 paid Pro tier wire-up — X-License-Token forwarding via recover.sh + AXONFLOW_LICENSE_TOKEN (#40) - Status surface for tenant_id + tier + upgrade URL (#42) - Tier line shows Pro license expiry (#50) - License-token redaction in status output (#41) - X-Axonflow-Client: codex/<version> via .mcp.json http_headers (#45) - install-mcp-with-headers.sh + http_headers blocks (#49) after revert of #43 (Codex MCP doesn't support the headersHelper field) Bumps: - .codex-plugin/plugin.json 1.1.0 → 1.2.0 - .codex-plugin/marketplace.json plugin.version + metadata.version → 1.2.0 [skip-runtime-e2e] — version + CHANGELOG bump only; the underlying behavior shipped + was runtime-tested when each feature PR landed. Signed-off-by: Saurabh Jain <saurabhjain1592@gmail.com>
1 parent bfcb619 commit 4847d28

3 files changed

Lines changed: 21 additions & 3 deletions

File tree

.codex-plugin/marketplace.json

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -7,14 +7,14 @@
77
},
88
"metadata": {
99
"description": "Runtime governance for OpenAI Codex. Policy enforcement on terminal commands, advisory governance via skills, PII detection, audit trails, and compliance-grade decision records.",
10-
"version": "1.1.0"
10+
"version": "1.2.0"
1111
},
1212
"plugins": [
1313
{
1414
"name": "axonflow",
1515
"source": "./",
1616
"description": "Policy enforcement, PII detection, and audit trails for OpenAI Codex. Hybrid governance — enforces policies on terminal commands (exec_command) via hooks, provides advisory governance for other tools via implicit-activation skills, and records compliance-grade audit trails. Self-hosted via Docker — all data stays on your infrastructure.",
17-
"version": "1.1.0",
17+
"version": "1.2.0",
1818
"author": {
1919
"name": "AxonFlow",
2020
"email": "hello@getaxonflow.com",

.codex-plugin/plugin.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -2,7 +2,7 @@
22
"name": "axonflow",
33
"displayName": "AxonFlow Governance",
44
"description": "Policy enforcement, PII detection, and audit trails for OpenAI Codex. Hybrid governance — enforces policies on terminal commands (exec_command) via hooks, provides advisory governance for other tools via implicit-activation skills, and records compliance-grade audit trails. Self-hosted via Docker — all data stays on your infrastructure.",
5-
"version": "1.1.0",
5+
"version": "1.2.0",
66
"author": {
77
"name": "AxonFlow",
88
"email": "hello@getaxonflow.com",

CHANGELOG.md

Lines changed: 18 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -2,6 +2,24 @@
22

33
## [Unreleased]
44

5+
## [1.2.0] - 2026-05-06 — V1 paid Pro tier wire-up + X-Axonflow-Client header
6+
7+
Companion plugin release to platform v7.7.0. Surfaces the V1 SaaS Plugin
8+
Pro tier — license token paste activates Pro features immediately, plus
9+
the agent-side scope-validation header on every governed request via
10+
`.mcp.json`'s `http_headers` block.
11+
12+
### Added
13+
14+
- **`X-Axonflow-Client: codex/<version>` header** on every governed
15+
agent request. Declared via `.mcp.json`'s `http_headers` block (set up
16+
by `scripts/install-mcp-with-headers.sh` at install time) and exported
17+
as `${AXONFLOW_CLIENT_HEADER}` by `pre-tool-check.sh` on every
18+
hook-invoke. Agents at v7.7.0+ derive request scope from this header
19+
and reject cross-quadrant token misuse (e.g. a SaaS Plugin Pro token
20+
paired with an SDK request) at the validator boundary. Older agents
21+
(pre-v7.7.0) ignore the header and continue to work unchanged.
22+
523
### Changed
624

725
- **`scripts/recover.sh status` tier line now surfaces Pro license expiry date.** The status output's `tier` line parses the JWT `exp` claim from the configured Pro license token and renders one of three shapes: `Pro tier active (expires YYYY-MM-DD, N days remaining)` when active, `Free tier (Pro expired YYYY-MM-DD — visit https://getaxonflow.com/pro to renew)` when the token is on disk but its `exp` has passed (plugin will not forward an expired token), or `Free tier (no AXON- license token configured)` when no token is loaded. Lets users see their renewal date without hitting the agent and catches the lapsed-token state before their next governed call. Display only — JWT signature validation remains the platform's job. Pre-existing `Pro tier active` and `Free tier` substring assertions still hold.

0 commit comments

Comments
 (0)