Change8

v0.36.0-nightly.20260318.e2658ccda

Gemini CLI
View on GitHubDocumentation
12 features18 fixes11 improvementscliextensionsmcpthemestools

Summary

This release introduces major new capabilities, including the full enablement of subagents and the default activation of JIT context loading. Security and reliability have been enhanced with cryptographic integrity verification for extensions and sandboxing for process-spawning tools. Numerous bug fixes address issues related to configuration saving, terminal input handling, and JIT context operations.

New Features

  • Enabled subagents functionality.
  • Introduced Topic-Action-Summary model for reducing verbosity in prompts.
  • Added cryptographic integrity verification for extension updates.
  • Enabled JIT context loading by default.
  • Added tracker policy support.
  • Added the ability to return TodoList display for tracker tools.
  • Added allowed domain restrictions for the browser agent.
  • Integrated SandboxManager to sandbox all process-spawning tools.
  • Added the `disableAlwaysAllow` setting to disable auto-approvals for security.
  • Increased sub-agent turn and time limits.
  • Instrumented file system tools for JIT context discovery.
  • Implemented Stage 2 security and consistency improvements for `web_fetch`.

Bug Fixes

  • Fixed crash/issue where configuration was undefined.
  • Fixed manual deletion of subagent histories.
  • Fixed issue where j/k navigation keys were intercepting input in the edit buffer.
  • Fixed descriptive error messages when saving settings failed.
  • Fixed AskUser evals related to planning.
  • Fixed false positive evals trigger on merge commits.
  • Fixed command conflict handling for skills in the CLI.
  • Fixed issue where tool call filtering incorrectly handled Confirming and Canceled tool calls.
  • Fixed CJK input and full Unicode scalar values support in terminal protocols.
  • Fixed race condition during MCP config merge and skipping discovery for incomplete configs.
  • Fixed three JIT context bugs affecting `read_file`, `read_many_files`, and `memoryDiscovery`.
  • Fixed handling of equivalent root resource URLs in OAuth validation.
  • Fixed deduplication of project memory when JIT context is enabled.
  • Fixed use of session-specific temp directory for the task tracker.
  • Fixed merging of user settings with extension-provided MCP servers.
  • Fixed stale PR closer permissions and maintainer detection in automation.
  • Fixed evaluation of staleness before checking protected labels in automation.
  • Fixed discoveryMaxDirs not being passed to global config during initialization.

Improvements

  • Improved async-pr-review workflow and logging.
  • Replaced the runtime npx for the browser agent chrome devtool mcp with a pre-built bundle.
  • Optimized TrackerService dependency checks.
  • Polished UI sorting and formatting for the tracker.
  • Increased thought signature retry resilience.
  • Replaced positional execute parameters with an ExecuteOptions bag.
  • Explicitly passed messageBus to the policy engine for MCP tool saves.
  • Showed descriptive error messages when saving settings fails.
  • Moved keychain fallback logic to the keychain service.
  • Disallowed Object.create() and reflect.
  • Guarded pro model usage.

Related Documentation

Gemini CLI Documentation

mcptoolsgetting started