v1.1.18: Provider Icons and Security Enhancement
Release Date: January 13, 2026
One-Line Summary
This update adds provider icons to the desktop app, improving visual experience, and enhances GitHub Actions security.
New Feature: Provider Icons
What's Updated?
Model selection interface in desktop app now displays each AI provider's icon, more intuitively distinguishing different service providers.
What Are the Benefits?
Before:
- Model list had only text, not easy to distinguish
- Needed to remember each model's provider
Now:
- See at a glance which provider each model belongs to
- Better visual experience, more convenient operation
How to Use?
No action needed, icons display automatically:
- Open desktop app
- Click model selection button
- Now you can see each model's provider icon
Bug Fix: GitHub Actions Security
Previous Issue
OpenCode generated GitHub Actions workflow templates might leak your GitHub credentials (if using actions/checkout).
Current Behavior
All workflow templates now add persist-credentials: false parameter, preventing credential leakage.
Example:
yaml
- uses: actions/checkout@v4
with:
persist-credentials: false # ← AddedWhat's the Impact?
If you use OpenCode to generate GitHub Actions workflows, it's now more secure, no need to worry about credentials being accidentally saved or leaked.
Should You Upgrade?
| Situation | Recommendation |
|---|---|
| Using desktop app | ✅ Upgrade (better visual experience) |
| Using GitHub Actions | ✅ Upgrade (security enhancement) |
| Only using TUI, not desktop | Can wait for next time |
Upgrade Command:
bash
opencode upgradeTechnical Details (Skippable)
Click to expand full changelog
TUI
- Add
persist-credentials: falseto workflow templates to prevent credential leakage - Add fullscreen view for permission prompts
Desktop
- Add provider icons to desktop app
- Fix desktop health check endpoint URL to /global/health
Community Contributors
- @dbpolito: Add provider icon feature
- @usvimal: Fix health check endpoint
- @Brendonovich: Reduce desktop download cache TTL
- @LeonMueller-OneAndOnly: Enhance GitHub Actions security