Integrates Python as a selectable component alongside existing Node.js and Erlang options
Updates component descriptions to reflect mise's expanded language support
Includes pip upgrade during Python installation for package management
Fixes Tidewave CLI download URL and architecture detection for improved reliability
- OpenCode: Open-source AI coding assistant (npm install -g opencode-ai)
Supports multiple LLM providers including OpenAI, Anthropic, Gemini
- Tidewave: Elixir/Phoenix MCP server for AI-powered development
Downloads binary from GitHub releases with ELF validation
Enables runtime introspection, SQL queries, and code evaluation
Both tools are optional components in the interactive installer.
Tidewave is automatically skipped if Erlang is not selected.
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Ensures early failure with clear error messages if credential
decoding fails during VM provisioning.
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Rustup: Download script to temp file with shebang/size validation
before execution, matching mise/ollama pattern (line 1119)
- SKIP_EXPORTS: Refactor from embedded shell commands to base64-encoded
list decoded safely in VM, eliminating injection risk (line 478)
- Playwright symlink: Validate path is executable and within expected
cache directory before creating system symlinks (line 1053)
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Switches all tools to use latest versions by default instead of pinning specific versions, reducing maintenance overhead while still allowing customization for Erlang and Elixir.
Enhances security measures by documenting input validation patterns, safe config loading practices, and credential handling procedures. Updates PostgreSQL authentication to use scram-sha-256 for all TCP connections.
Clarifies that VNC passwords are never stored and must be entered each time, improving the security posture of credential management.
Simplifies tool installation by removing version pinning constraints and using native package managers where appropriate.
Prevents shell injection through input validation and safe parameter passing
Replaces direct sourcing with manual config parsing to avoid code execution
Downloads and validates install scripts before execution instead of piping
Uses base64 encoding for secure VM parameter transmission
Adds checksum verification for binary downloads
Creates secure temporary directories and files with proper permissions
Addresses multiple security vulnerabilities in environment setup process
Replaces sequential installation with parallel step execution
Introduces real-time progress dashboard with spinner and status
Removes color variables to improve terminal compatibility
Restructures logging with per-step files for better debugging
Significantly reduces total setup time by running independent steps concurrently
Implements orchestration on macOS and provisioning on Linux for isolated Claude Code environments
Adds interactive component selection with visual menu interface
Enables secure VM creation with disabled host filesystem access
Provides comprehensive toolchain including PostgreSQL, Erlang/Elixir, and browser automation
Configures VNC desktop access for OAuth workflows and browser-based tasks
Creates comprehensive environment configuration for Elixir/Erlang development with browser automation capabilities
Installs and configures mise version manager, Node.js LTS, Erlang 28.3.1, and Elixir 1.19.5-otp-28
Sets up PostgreSQL 16 with trust authentication and remote access
Integrates Claude Code with multiple plugin marketplaces and MCP servers
Includes Chromium browser and Playwright for automation tasks
Enables seamless development workflow between macOS host and Ubuntu VM with detailed connection instructions
