chore(deps): bump @earendil-works/pi-coding-agent from 0.74.0 to 0.74.2

[dependabot]

Bumps @earendil-works/pi-coding-agent from 0.74.0 to 0.74.2.

Release notes

Sourced from @​earendil-works/pi-coding-agent's releases.

v0.74.2

Fixed

• Fixed pi update on Node 20 to explain that newer Pi releases require Node >= 22.19.0 instead of reporting a successful no-op update (#4876).
• Changed self-update package-manager commands to pass --ignore-scripts.

v0.74.1

New Features

• Image generation support - Added image generation APIs, generated image model metadata, and built-in OpenRouter image generation support inherited from @earendil-works/pi-ai.
• Together AI provider - Added Together AI as a built-in provider with /login API-key auth, default model resolution, and setup docs. See README.md#providers--models and docs/providers.md.
• Windows ARM64 standalone binaries - Added standalone release artifacts for Windows ARM64.
• Improved terminal and markdown rendering - Added markdown list indentation, task-list checkbox rendering, large markdown robustness, and inline image placement fixes inherited from @earendil-works/pi-tui.

Added

• Added image generation support from @earendil-works/pi-ai, including image generation APIs, image model metadata, and built-in OpenRouter image generation support (#3887 by @​cristinaponcela).
• Added Together AI to built-in provider setup, /login API-key auth, and default model resolution (#3624 by @​Nutlope).
• Added Windows ARM64 standalone binary release artifacts (#4458 by @​brianmichel).

Fixed

• Fixed Node 26 OpenAI-compatible streams timing out after five idle minutes by routing global fetch through pi's undici dispatcher (#4519).
• Fixed pnpm global package installs by resolving the global package root from pnpm's layout.
• Fixed macOS clipboard access errors under sandboxed pasteboard denial so they do not abort the process (#4492).
• Fixed the scoped model startup hint to show the configured model-cycle keybinding (#4508).
• Fixed resource path display to disambiguate package/resource names that collide across package locations.
• Fixed fd auto-download on macOS x86_64 by pinning the last release that ships an Intel macOS binary (#4559).
• Fixed skill diagnostics to stop warning when a skill name differs from its parent directory (#4534).
• Fixed prompt template argument parsing to split unquoted multiline input on newlines (#4553).
• Fixed --resume session listing to cap in-flight session metadata loads and avoid OOM on large session histories (#4583).
• Fixed interactive error messages to render with trailing spacing so reload errors do not run into resource listings (#4510).
• Fixed .agents package provenance metadata to survive package-manager scans.
• Fixed nested code fences in the Termux setup documentation so the example AGENTS.md renders correctly (#4503).
• Fixed tool output expansion while extension confirmation dialogs are focused (#4429).
• Fixed auto-retry for Anthropic streams that end before message_stop (#4433).
• Fixed compaction summary calls to clamp requested output tokens to model limits.
• Fixed uncaught interactive-mode exceptions to restore the terminal before exiting (#4426 by @​ofa1).
• Fixed ANSI stripping to match strip-ansi behavior after dependency removal.
• Fixed UUIDv7 sequence generation shared by session IDs after dependency removal.
• Fixed OpenRouter cached-token usage accounting, Fireworks caching compatibility, and OpenAI Codex WebSocket proxy handling inherited from @earendil-works/pi-ai.
• Fixed markdown list wrapping, task-list checkboxes, large markdown rendering, WezTerm Kitty keyboard escape handling, and short-viewport inline image placement inherited from @earendil-works/pi-tui.
• Fixed theme sharing across package scopes so extensions do not crash with Theme not initialized (#4333).
• Fixed keybinding hints to show Option instead of Alt on macOS (#4289).
• Fixed the interactive update notification to render the changelog as an OSC 8 hyperlink when the terminal supports hyperlinks (#4280).

Changelog

Sourced from @​earendil-works/pi-coding-agent's changelog.

Changelog

[Unreleased]

Added

• Added inherited configurable chat-template thinking support for OpenAI-compatible providers that use chat_template_kwargs, such as DeepSeek models behind vLLM (#5673).

Fixed

• Fixed fuzzy edit matches to preserve untouched line blocks instead of rewriting the whole file through normalized content (#5899).
• Fixed bash commands through legacy WSL bash.exe to pass scripts over stdin so shell variables expand in the target bash (#5893).
• Fixed /model to hide GitHub Copilot models that are unavailable to the authenticated account (#5897).
• Fixed /model selector search to rank exact provider-prefixed matches before proxy-provider model ID matches (#5892).

[0.79.8] - 2026-06-19

New Features

• Selective provider base entry points - SDK users can pair @earendil-works/pi-ai/base and @earendil-works/pi-agent-core/base with explicit provider registration to keep bundled applications from including unused provider transports. See pi-ai Base Entry Point and pi-agent-core Base Entry Point.
• Mistral prompt caching - Mistral sessions now use provider-side prompt caching with session affinity and cached-token usage/cost accounting. See API Keys and Environment Variables.
• Post-compaction token estimates - Compact results and compaction events now include estimated post-compaction token counts so clients can show the approximate context reduction. See RPC compact and compaction events.
• OpenRouter Fusion alias - openrouter/fusion is available as a built-in OpenRouter model alias. See API Keys.

Added

• Added inherited @earendil-works/pi-ai/base and @earendil-works/pi-agent-core/base entry points for selective provider registration in bundled applications (#5348 by @​FredKSchott).
• Added inherited Mistral prompt caching using the pi session ID as prompt_cache_key, including cached-token usage and cost accounting (#5854).
• Added estimated post-compaction token counts to compact results and compaction events (#5877).
• Added the inherited OpenRouter Fusion alias as openrouter/fusion (#5866 by @​dannote).

Fixed

• Updated vulnerable runtime dependencies, including undici and the packaged protobufjs transitive dependency.
• Fixed compaction to refuse sessions with no eligible messages instead of producing empty summaries (#4811).
• Fixed successful overflow-triggered auto-compaction to avoid retrying completed assistant responses (#5720).

[0.79.7] - 2026-06-18

New Features

• Automatic theme mode - /settings can choose separate light and dark themes and follow terminal color-scheme changes. See Selecting a Theme.
• Self-only updates by default - pi update now updates pi only, with pi update --all for updating pi and packages together. See Install and Manage.
• Extension API helpers - extensions can use CONFIG_DIR_NAME for project config paths and import edit diff helpers for edit-style diffs. See ctx.cwd and SDK Exports.
• Warp inline images - Warp terminals now get inline image rendering through Kitty graphics detection. See Image.

Added

• Added automatic theme mode so /settings can use separate light and dark themes and follow terminal color-scheme changes (#5874).
• Added inherited Warp terminal image capability detection so inline images render through Warp's Kitty graphics support (#5841 by @​dodiego).

... (truncated)

Commits

• 8b57630 Release v0.74.2
• 2c70849 Release v0.74.1
• 72104d8 docs: audit unreleased changelogs
• e26fbb3 fix(coding-agent): route global fetch through undici dispatcher closes #4519
• bfd6535 fix(coding-agent): update clipboard native package
• 27a1930 fix(coding-agent): resolve pnpm global packages
• 43d3cdd fix(coding-agent): use configured model scope cycle hint closes #4508
• 7afd80d fix(coding-agent): pin fd for macos x64
• 5d31e70 fix(coding-agent): allow skill names to differ from directories
• d0fe857 fix(coding-agent): parse multiline prompt template args
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[github-actions]

✅MegaLinter analysis: Success

Descriptor	Linter	Files	Fixed	Errors	Warnings	Elapsed time
✅ JSON	jsonlint	1		0	0	0.56s
✅ JSON	prettier	1		0	0	0.53s
✅ REPOSITORY	gitleaks	yes		no	no	1.2s
✅ REPOSITORY	git_diff	yes		no	no	0.43s

See detailed reports in MegaLinter artifacts
Set VALIDATE_ALL_CODEBASE: true in mega-linter.yml to validate all sources, not only the diff

MegaLinter is graciously provided by OX Security