release: 0.39.0

[stainless-app]

Automated Release PR

0.39.0 (2026-05-08)

Full Changelog: v0.38.0...v0.39.0

Features

• api: api update (8958b49)
• api: api update (10386a3)
• api: api update (e1f12f8)
• api: api update (700d0af)
• api: api update (d4b2496)
• support setting headers via env (0e3b514)

Chores

• avoid formatting file that gets changed during releases (cf52108)
• format: run eslint and prettier separately (43ec88d)
• internal: codegen related update (f6cdc59)
• internal: more robust bootstrap script (dd48b06)
• internal: update docs ordering (9ac7b35)
• redact api-key headers in debug logs (9ccb5ff)
• restructure docs search code (8a752b4)
• update SDK settings (5f5049a)

Documentation

• update http mcp docs (6f8f5a6)

---

This pull request is managed by Stainless's GitHub App.

The semver version number is based on included commit messages. Alternatively, you can manually set the version number in the title of this pull request.

For a better experience, it is recommended to use either rebase-merge or squash-merge when merging this pull request.

🔗 Stainless website
📚 Read the docs
🙋 Reach out for help or questions

[stainless-app]

🧪 Testing

To try out this version of the SDK:

npm install 'https://pkg.stainless.com/s/hyperspell-typescript/8958b49b8d8a5868432f1b932b1aec3b61c5d8c8/dist.tar.gz'

Expires at: Sun, 07 Jun 2026 18:32:34 GMT
Updated at: Fri, 08 May 2026 18:32:34 GMT

[canaries-inc]

🐤 Canary Summary

This is an automated release PR with no UI/UX changes:

• Version bumped from 0.38.0 to 0.38.1 across all package files
• Updated npm publishing workflow authentication from OIDC to token-based
• Modified release scripts to use NPM_TOKEN environment variable
• Updated changelog and configuration metadata
• No user-facing UI components, styling, or application logic affected

---

---

View PR tests on Canary

[canaries-inc]

🐤 Canary Proposed Tests

No testable user journeys found for this PR.

[entelligence-ai-pr-reviews]

---

Confidence Score: 5/5 - Safe to Merge

Safe to merge — this appears to be a standard release bump to version 0.38.1 with no identified logic, security, or correctness issues surfaced during review. The automated analysis found zero critical, significant, or medium-severity issues across the reviewed files. While only 4 of 13 changed files received coverage, the absence of any flagged concerns and the nature of a patch release (typically containing minor fixes or version metadata updates) supports a clean merge.

Key Findings:

• No new review comments were generated, indicating no obvious logic bugs, security vulnerabilities, or correctness issues were detected in the analyzed code.
• The PR is a patch release (0.38.1), which typically involves version string updates, changelog entries, and minor bug fixes rather than high-risk architectural changes.
• Zero unresolved pre-existing comments were carried into this review, meaning there is no backlog of known issues being deferred.
• 4 of 13 changed files were reviewed by the heuristic analysis — the unreviewed files represent a minor blind spot, but for a release PR this risk is generally low.

[entelligence-ai-pr-reviews]

EntelligenceAI PR Summary

Release v0.39.0 adds three new integration providers (Granola, Fathom, Linear), refactors tooling (npm auth, linting/formatting pipeline), and delivers several API schema enhancements.

• Added 'granola', 'fathom', 'linear' literals to union types in actions.ts, auth.ts, connections.ts, integrations.ts, web-crawler.ts, memories.ts, and shared.ts
• Refactored memories.search effort parameter from number to 'minimal' | 'low' | 'medium' | 'high' string enum; added recency_half_life_days option
• Added optional selected_count to ConnectionListResponse, requires_channel_selection to IntegrationListResponse, and folder_ancestors to Resource
• Added HYPERSPELL_CUSTOM_HEADERS environment variable support in src/client.ts for injecting custom HTTP headers
• Extended sensitive header redaction in src/internal/utils/log.ts to cover api-key and x-api-key
• Switched npm publish workflow from OIDC to token-based auth (NPM_TOKEN/HYPERSPELL_NPM_TOKEN) across CI workflows and publish scripts
• Decoupled Prettier from ESLint: removed eslint-plugin-prettier, added standalone prettier --check in lint pipeline
• Added @ts-ignore comment fix post-processing for TypeScript declaration files in postprocess-files.cjs
• Fixed unbound variable risk in scripts/bootstrap using ${SKIP_BREW:-} expansion

---

Confidence Score: 3/5 - Review Recommended

Likely safe but review recommended — This PR successfully adds three new integration providers (Granola, Fathom, Linear) across the schema type files and refactors the memories.search effort parameter to a proper string enum, which are clean additive changes. However, two substantive issues remain unresolved: a bug in scripts/fast-format where $FILE_LIST guards the path variable rather than file contents causing prettier to potentially hang on empty changesets, and a pre-existing unresolved concern in src/client.ts where a line starting with a colon (colon index 0) produces an empty-string header key silently written into the headers map. The pre-existing client.ts issue was not introduced by this PR but remains open and unaddressed.

Key Findings:

• In scripts/fast-format, the guard if [ -z "$FILE_LIST" ] tests whether the path variable itself is empty — which it never is after the line 22 validation — rather than whether the file at that path contains any entries. This means when zero files have changed, cat "$FILE_LIST" | xargs prettier is called with no arguments, potentially causing prettier to hang waiting on stdin or error unexpectedly.
• A pre-existing unresolved issue in src/client.ts (L228-L245) allows empty-string header keys when a response line begins with a colon (e.g., : value), since line.substring(0, 0).trim() evaluates to ''. This is a correctness/robustness bug that silently corrupts the parsed headers map, though it predates this PR.
• The schema additions across actions.ts, auth.ts, connections.ts, integrations.ts, web-crawler.ts, memories.ts, and shared.ts appear to be straightforward union type extensions and are low-risk, consistent with the existing pattern for provider additions.
• The effort parameter refactor in memories.search from number to 'minimal' | 'low' | 'medium' | 'high' is a breaking API change for any consumer passing numeric values; while likely intentional for a minor version bump, downstream consumers need to be aware.

Files requiring special attention

• scripts/fast-format
• src/client.ts
• src/memories.ts

[entelligence-ai-pr-reviews]

⚠️ Major: Empty header name allowed when line starts with colon — When colon === 0 (e.g. a line like : value), line.substring(0, 0).trim() is "", so an empty-string key is written into parsed and forwarded as a header. The guard should be colon > 0 to skip lines with no header name.

🤖 AI Agent Prompt for Cursor/Windsurf

📋 Copy this prompt to your AI coding assistant (Cursor, Windsurf, etc.) to get help fixing this issue

In src/client.ts at line 236, change `if (colon >= 0)` to `if (colon > 0)`. The current condition allows `colon === 0`, which means a line starting with `:` produces an empty-string header name (`line.substring(0, 0).trim() === ""`). This is an invalid HTTP header name. Changing to `colon > 0` skips such lines.

[entelligence-ai-pr-reviews]

⚠️ Major: Guard checks variable name, not file content — prettier hangs on empty file list — $FILE_LIST holds a file path (e.g. /tmp/changed.txt), which is always a non-empty string after the validation at line 22, so this guard is always true. When FILE_LIST contains zero lines, cat "$FILE_LIST" | xargs prettier invokes prettier with no file arguments; GNU xargs runs the command once on empty stdin (without -r), causing prettier to block waiting on stdin. The eslint section correctly guards on the filtered content ($ESLINT_FILES), not the path variable.

🤖 AI Agent Prompt for Cursor/Windsurf

📋 Copy this prompt to your AI coding assistant (Cursor, Windsurf, etc.) to get help fixing this issue

In `scripts/fast-format`, line 34, the guard `if ! [ -z "$FILE_LIST" ]` incorrectly checks whether the variable holding the file path is non-empty (always true) instead of whether the file has any content. Change line 34 from:

  if ! [ -z "$FILE_LIST" ]; then

to:

  if [ -s "$FILE_LIST" ]; then

This mirrors how the eslint section avoids running the tool when there are no files to process, and prevents prettier from being invoked with no file arguments (which causes it to hang reading from stdin).