AIWG 2026.6.2 — Cockpit live-proof hardening
AIWG 2026.6.2 — Cockpit live-proof hardening
Released 2026-06-18
This patch release tightens the AIWG Cockpit live UAT gate so it proves a real
agentic framework can start inside an agentic-sandbox session and use AIWG
discovery from there.
Install or upgrade:
npm install -g aiwg
aiwg refreshWhat Changed
- Cockpit live matrix workloads now require both `AIWG_COCKPIT_LIVE_OK` and an
expected AIWG discovery result (`issue-audit` by default), instead of accepting
a shell-only marker.
- The default provider workload asks the running agent to use AIWG discovery to
choose the capability for auditing open issue state and release blockers.
- The Codex live workload command now uses the supported `codex exec -s
read-only` syntax.
- Cockpit docs describe the host/container/VM matrix gate and the
`AIWG_COCKPIT_LIVE_DISCOVERY_EXPECT` override.
Verified Host Proof
On 2026-06-18, a patched agentic-sandbox host runtime provisioned a host agent,
registered it over mTLS, opened a managed `tmux` session, and launched Codex
inside that session. Codex used AIWG discovery and selected `issue-audit`,
returning the required `AIWG_COCKPIT_LIVE_OK` marker.
Claude also launched in the same session, but did not inherit usable auth state
and reported that login was required. That remains a provider auth-state
injection follow-up, not a Cockpit discovery-gate pass.
Upgrade Notes
- No migration is required.
- Operators using `uat:cockpit-live:matrix` should point
`AIWG_COCKPIT_EXECUTOR_URL` at a real executor and leave mock-only success out
of release evidence.
Links
- Changelog: CHANGELOG.md
- Previous release: 2026.6.1