steipete · validatedev · Jan 27, 2026 · Jan 28, 2026 · Jan 28, 2026 · Jan 28, 2026
diff --git a/.gitguardian.yml b/.gitguardian.yml
@@ -0,0 +1,14 @@
+version: 2
+
+# GitGuardian configuration
+# See: https://docs.gitguardian.com/ggshield-docs/configuration
+
+secret:
+  ignored_matches:
+    # Antigravity Google OAuth public client credentials
+    # These are public OAuth client IDs meant to be embedded in the app
+    # They are distributed with the client and visible in OAuth flows
+    - match: 1071006060591-tmhssin2h21lcre235vtolojh4g403ep.apps.googleusercontent.com
+      name: Antigravity OAuth Client ID
+    - match: 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
+      name: Antigravity OAuth Client Secret
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -57,6 +57,9 @@ jobs:
           uname -a
           uname -m
 
+      - name: Install SQLite3
+        run: sudo apt-get update && sudo apt-get install -y libsqlite3-dev
+
       - name: Setup Swift 6.2.1
         uses: swift-actions/setup-swift@v3
         with:

diff --git a/.swiftformat b/.swiftformat
@@ -47,4 +47,4 @@
 --allman false
 
 # Exclusions
---exclude .build,.swiftpm,DerivedData,node_modules,dist,coverage,xcuserdata,Core/PeekabooCore/Sources/PeekabooCore/Extensions/NSArray+Extensions.swift
+--exclude .build,.swiftpm,DerivedData,node_modules,dist,coverage,xcuserdata,Core/PeekabooCore/Sources/PeekabooCore/Extensions/NSArray+Extensions.swift,Sources/CodexBarCore/Providers/Antigravity/AntigravityOAuth/antigravity_state.pb.swift
diff --git a/.swiftlint.yml b/.swiftlint.yml
@@ -24,6 +24,8 @@ excluded:
   - "*.playground"
   # Exclude specific files that should not be linted/formatted
   - "Core/PeekabooCore/Sources/PeekabooCore/Extensions/NSArray+Extensions.swift"
+  # Protobuf generated file
+  - "Sources/CodexBarCore/Providers/Antigravity/AntigravityOAuth/antigravity_state.pb.swift"
 
 # Analyzer rules (require compilation)
 analyzer_rules:

diff --git a/Package.resolved b/Package.resolved
diff --git a/Package.swift b/Package.swift
@@ -22,6 +22,7 @@ let package = Package(
         .package(url: "https://github.com/apple/swift-log", from: "1.9.1"),
         .package(url: "https://github.com/apple/swift-syntax", from: "600.0.1"),
         .package(url: "https://github.com/sindresorhus/KeyboardShortcuts", from: "2.4.0"),
+        .package(url: "https://github.com/apple/swift-protobuf.git", from: "1.21.0"),
         sweetCookieKitDependency,
     ],
     targets: {
@@ -32,7 +33,9 @@ let package = Package(
                     "CodexBarMacroSupport",
                     .product(name: "Logging", package: "swift-log"),
                     .product(name: "SweetCookieKit", package: "SweetCookieKit"),
+                    .product(name: "SwiftProtobuf", package: "swift-protobuf"),
                 ],
+                exclude: ["Providers/Antigravity/AntigravityOAuth/antigravity_state.proto"],
                 swiftSettings: [
                     .enableUpcomingFeature("StrictConcurrency"),
                 ]),

diff --git a/Sources/CodexBar/PreferencesDebugPane.swift b/Sources/CodexBar/PreferencesDebugPane.swift
@@ -100,16 +100,21 @@ struct DebugPane: View {
                     title: "Probe logs",
                     caption: "Fetch the latest probe output for debugging; Copy keeps the full text.")
                 {
-                    Picker("Provider", selection: self.$currentLogProvider) {
-                        Text("Codex").tag(UsageProvider.codex)
-                        Text("Claude").tag(UsageProvider.claude)
-                        Text("Cursor").tag(UsageProvider.cursor)
-                        Text("Augment").tag(UsageProvider.augment)
-                        Text("Amp").tag(UsageProvider.amp)
-                        Text("Ollama").tag(UsageProvider.ollama)
+                    ScrollView(.horizontal, showsIndicators: false) {
+                        Picker("Provider", selection: self.$currentLogProvider) {
+                            Text("Codex").tag(UsageProvider.codex)
+                            Text("Claude").tag(UsageProvider.claude)
+                            Text("Cursor").tag(UsageProvider.cursor)
+                            Text("Augment").tag(UsageProvider.augment)
+                            Text("Amp").tag(UsageProvider.amp)
+                            Text("Antigravity").tag(UsageProvider.antigravity)
+                            Text("Ollama").tag(UsageProvider.ollama)
+                        }
+                        .pickerStyle(.segmented)
+                        .controlSize(.small)
+                        .fixedSize()
                     }
-                    .pickerStyle(.segmented)
-                    .frame(width: 460)
+                    .frame(maxWidth: .infinity, alignment: .leading)
 
                     HStack(spacing: 12) {
                         Button { self.loadLog(self.currentLogProvider) } label: {

diff --git a/Sources/CodexBar/PreferencesProviderSettingsRows.swift b/Sources/CodexBar/PreferencesProviderSettingsRows.swift
@@ -205,6 +205,7 @@ struct ProviderSettingsTokenAccountsRowView: View {
     let descriptor: ProviderSettingsTokenAccountsDescriptor
     @State private var newLabel: String = ""
     @State private var newToken: String = ""
+    @State private var newToken2: String = ""
 
     var body: some View {
         VStack(alignment: .leading, spacing: 8) {
@@ -245,39 +246,86 @@ struct ProviderSettingsTokenAccountsRowView: View {
                 .controlSize(.small)
             }
 
-            HStack(spacing: 8) {
-                TextField("Label", text: self.$newLabel)
-                    .textFieldStyle(.roundedBorder)
-                    .font(.footnote)
-                SecureField(self.descriptor.placeholder, text: self.$newToken)
-                    .textFieldStyle(.roundedBorder)
-                    .font(.footnote)
-                Button("Add") {
-                    let label = self.newLabel.trimmingCharacters(in: .whitespacesAndNewlines)
-                    let token = self.newToken.trimmingCharacters(in: .whitespacesAndNewlines)
-                    guard !label.isEmpty, !token.isEmpty else { return }
-                    self.descriptor.addAccount(label, token)
-                    self.newLabel = ""
-                    self.newToken = ""
+            if self.descriptor.supportsManualEntry {
+                let trimmedLabel = self.newLabel.trimmingCharacters(in: .whitespacesAndNewlines)
+                let trimmedToken = self.newToken.trimmingCharacters(in: .whitespacesAndNewlines)
+                let trimmedToken2 = self.newToken2.trimmingCharacters(in: .whitespacesAndNewlines)
+                let addDisabled = trimmedLabel.isEmpty || trimmedToken.isEmpty
+
+                if self.descriptor.supportsTwoFieldEntry {
+                    VStack(alignment: .leading, spacing: 8) {
+                        HStack(spacing: 8) {
+                            TextField("Label", text: self.$newLabel)
+                                .textFieldStyle(.roundedBorder)
+                                .font(.footnote)
+                                .frame(maxWidth: .infinity)
+                        }
+                        HStack(spacing: 8) {
+                            SecureField("Access Token (ya29...)", text: self.$newToken)
+                                .textFieldStyle(.roundedBorder)
+                                .font(.footnote)
+                            SecureField("Refresh Token - optional (1//...)", text: self.$newToken2)
+                                .textFieldStyle(.roundedBorder)
+                                .font(.footnote)
+                        }
+                        Button("Add") {
+                            guard !addDisabled else { return }
+                            self.descriptor.addAccount(trimmedLabel, trimmedToken, trimmedToken2)
+                            self.newLabel = ""
+                            self.newToken = ""
+                            self.newToken2 = ""
+                        }
+                        .buttonStyle(.bordered)
+                        .controlSize(.small)
+                        .disabled(addDisabled)
+                    }
+                } else {
+                    HStack(spacing: 8) {
+                        TextField("Label", text: self.$newLabel)
+                            .textFieldStyle(.roundedBorder)
+                            .font(.footnote)
+                        SecureField(self.descriptor.placeholder, text: self.$newToken)
+                            .textFieldStyle(.roundedBorder)
+                            .font(.footnote)
+                        Button("Add") {
+                            guard !addDisabled else { return }
+                            self.descriptor.addAccount(trimmedLabel, trimmedToken, "")
+                            self.newLabel = ""
+                            self.newToken = ""
+                            self.newToken2 = ""
+                        }
+                        .buttonStyle(.bordered)
+                        .controlSize(.small)
+                        .disabled(addDisabled)
+                    }
                 }
-                .buttonStyle(.bordered)
-                .controlSize(.small)
-                .disabled(self.newLabel.trimmingCharacters(in: .whitespacesAndNewlines).isEmpty ||
-                    self.newToken.trimmingCharacters(in: .whitespacesAndNewlines).isEmpty)
             }
 
-            HStack(spacing: 10) {
-                Button("Open token file") {
-                    self.descriptor.openConfigFile()
+            if let addAction = self.descriptor.addAction {
+                Button(self.descriptor.addActionTitle ?? "Add account") {
+                    Task { @MainActor in
+                        await addAction()
+                    }
                 }
-                .buttonStyle(.link)
+                .buttonStyle(.bordered)
                 .controlSize(.small)
-                Button("Reload") {
-                    self.descriptor.reloadFromDisk()
+            }
+
+            if let importAction = self.descriptor.importAction {
+                Button(importAction.title) {
+                    Task { @MainActor in
+                        await importAction.action()
+                    }
                 }
-                .buttonStyle(.link)
+                .buttonStyle(.bordered)
                 .controlSize(.small)
             }
+
+            Button("Open config file") {
+                self.descriptor.openConfigFile()
+            }
+            .buttonStyle(.link)
+            .controlSize(.small)
         }
     }
 }

diff --git a/Sources/CodexBar/PreferencesProvidersPane+Testing.swift b/Sources/CodexBar/PreferencesProvidersPane+Testing.swift
@@ -166,12 +166,17 @@ enum ProvidersPaneTestHarness {
             title: "Accounts",
             subtitle: "Accounts subtitle",
             placeholder: "Token",
+            supportsManualEntry: true,
+            supportsTwoFieldEntry: false,
+            addActionTitle: nil,
+            addAction: nil,
+            importAction: nil,
             provider: .codex,
             isVisible: { true },
             accounts: { [] },
             activeIndex: { 0 },
             setActiveIndex: { _ in },
-            addAccount: { _, _ in },
+            addAccount: { _, _, _ in },
             removeAccount: { _ in },
             openConfigFile: {},
             reloadFromDisk: {})