~/chadacus.dev/ecosystem-update/2026-06-16

Ecosystem Update — 2026-06-16

June 16, 2026 · curated by Chad Simon · 20 items reviewed

Highlights

  • Auto-implemented the safe Quick Win: upgraded Codex CLI from 0.133.0 to 0.140.0, which picks up the June 15 CLI release line including /usage, /import, permanent deletion commands with confirmations, MCP reliability fixes, and large-session responsiveness work
  • Today's strongest external pattern is not more orchestration; it is evidence-linked evaluation: reusable traps/rubrics, semantic skill-risk judging, phantom-reference audits, and trace-level behavior analysis
  • The upgraded built-in doctor is useful but now exposes local state debt: rollout files and the state DB disagree, and TERM=dumb causes a terminal check failure in non-interactive runs

Quick Wins (implemented today)

  • Codex CLI 0.140.0 upgrade and smoke Codex-md
    Auto-implemented with codex update; backed up config, hooks, and agents first, then verified version/config/hooks/doctors

New Tools, Skills & Patterns

  • Rollout DB parity repair/reindex hook/Codex-md
    official doctor now reports rollout files and state DB thread inventory differ, with the active file scan capped at 10,000 files and 8,305 missing active DB rows. Build a non-destructive audit/reindex command before attempting any cleanup
  • Forge-harness-style phantom-reference audit skill
    Adapt the concept, not the plugin: run source-grounding checks over AGENTS.md, SKILL.md, and custom agent TOMLs so claims cite local files/lines instead of becoming stale runtime lore
  • SkillVetBench-style semantic skill-risk vetting skill
    Extend codex-skill-audit --strict with instruction-layer checks for prompt injection, memory poisoning, and cross-agent risk before trusting external skills
  • Human-on-the-Bridge eval intelligence pack agent-pattern
    Planning-gate already has verifier structure; add reusable trap/rubric packs and fallback policies for recurring autonomous-runtime evals
  • Agent genome trace analyzer research/agent-pattern
    Consider a small offline analyzer that classifies traces into Explore/Plan/Execute/Verify sequences and flags closure without verification
  • CoAgent-style concurrency-control intake research/agent-pattern
    Relevant to local multi-agent dispatch, but should start as a design note against existing task envelopes and file-scope constraints

Research Worth Reading

  • Human-on-the-Bridge: Scalable Evaluation for AI Agents
    Strong fit for reusable evaluation intelligence: red-team traps, juror personas, scoring guidelines, audit rules, and fallback policies
  • TokenPilot: Cache-Efficient Context Management for LLM Agents
    Useful for future compaction/runtime work because it frames prompt-cache preservation as a first-class constraint
  • SkillVetBench: LLM-as-Judge for Multi-Dimensional Security Risk Evaluation in Open-Source LLM Agent Skills
    Directly applicable to the existing external-skill trust gate
  • Your Agent Has a Genome: Sequence-Level Behavioral Analysis and Runtime Governance of LLM-Powered Autonomous Agents
    Useful framing for lightweight trace analysis over Codex task loops
  • CoAgent: Concurrency Control for Multi-Agent Systems
    Worth tracking for file-claim and conflict-avoidance design, but not a quick win
  • Minimal Oversight: Uncertainty-Aware Governance for Delegated AI Systems
    Relevant to keeping review pressure high only where uncertainty warrants it

Considered, Not Adopting

Items reviewed and explicitly declined this cycle, with the reason. Curation discipline matters more than coverage.

  • Claude Classroom live file-claim boardRequires repo-local hook installation, a CLI launcher, and shared .git state. Useful idea, but not safe as an automatic global harness change
  • EstreGenesis / Constellation live A2A boardRequires new plugin installs and a local WebSocket server. This crosses the anti-overengineering gate for today's harness update
  • Wholesale import from community skill catalogsagent-skills, awesome-agent-skills, and awesome-codex-cli are discovery surfaces, not trust roots. Continue using codex-skill-audit --strict before adoption
  • Enable plugin hooks globallyStill rejected because plugin_hooks = false is an intentional trust boundary
  • Edit AGENTS.md as a Quick WinProhibited by the ecosystem-update hard limits and by the runtime ownership contract
  • Run codex delete or cleanup session state automaticallyNew 0.140.0 deletion support is useful, but deleting local rollout/session data is destructive and must be a separate explicit task
  • Adopt features.memories = true

Sources Reviewed

// archive

← back to all digests