• Tech Dev NotesTech Dev Notes
Apps
  • Lookup
  • Compare
Market movement
  • Charts
  • Rankings
Visual proof
  • Screens
  • Store listings
  • Icons
Stacks and releases
  • Tech stacks
  • Tool releases
  • Developers
More
  • X feature flags
  • Grokipedia
  • Blog
  • Follow on X
Skip to content

© 2026 Tech Dev Notes

RSSAboutAPIPrivacyTermsSitemap@techdevnotes
Grok Build

xAI · CLI

Grok Build 0.2.101

0.2.100→0.2.101·July 14, 2026 at 12:35 AM UTC

Patch release focused on permissions: optional per-project remembered tool approvals, a clearer authorization model (including how ask rules interact with read-only tools), and a full rewrite of the permissions docs.

Changelog

  • [new] Optional per-command remembered approvals: set [ui] remember_tool_approvals = true to show “Always allow” / never-allow rows on permission prompts. Grants are stored per project (not in the repo), can satisfy later ask rules, and do not apply to commands on the dangerous list.
  • [changed] Authorization order is documented and tightened: PreToolUse hooks → permission rules (deny > ask > allow) → remembered grants → built-in read-only auto-approvals → prompt policy. Always-approve (bypassPermissions / --yolo / --always-approve) still honors deny rules, hooks, and shell ask segment matches.
  • [changed] Matching ask rules now prompt even for file reads, searches, and shell commands that would otherwise auto-approve (previously those fast paths could skip the prompt).
  • [changed] [permission] rules from all config scopes merge into one set with deny > ask > allow. Priority override still applies only to [mcp_servers] and [plugins].
  • [changed] Rule matching is spelled out more precisely: path rules use * / ** as path globs; Bash rules treat * as matching any characters (including spaces); Bash(cmd:*) remains prefix-style matching.
  • [changed] Permissions and safety guide rewritten (decision flow, scopes, interactive grants, mode wiring via defaultMode, always-approve lock in requirements.toml, headless/--yolo notes). Configuration, theming, and headless guides updated to match.
  • [removed] Theme option invert under [scrollback.blocks.prompt] (no longer documented or supported).

Under the hood

  • Agent and CLI binaries updated for the permission and approval-prompt behavior above.
  • Bundled content metadata bumped to 0.2.101; marketplace plugin catalog unchanged.

Upgrade notes

  • To get per-command “Always allow” on prompts, add to ~/.grok/config.toml:

    [ui]
    remember_tool_approvals = true
    

    Default remains false. For shared, reviewable allowlists, prefer declarative [permission] rules in project config instead of interactive grants.

  • If you relied on ask rules never firing for read/search/safe-shell tools, re-check those policies—they can prompt now.

  • Remove any invert key under [scrollback.blocks.prompt] from theme or config files.

  • Always-approve can still be locked off via [ui] disable_bypass_permissions_mode = true in requirements.toml (system-wide under /etc/grok/ for non-overridable policy).

Older release← 0.2.100Newer release→ 0.2.102
All Grok Build releases →