fix(github): resolve "latest" version correctly via GitHub API

[jdx]

Summary

• Fix GitHub API URL for "latest" releases: use /releases/latest instead of /releases/tags/latest (which looks for a tag literally named "latest")
• Fully revert the prefer-offline guard on latest_version_with_opts from fix(env): skip remote version fetching for "latest" in prefer-offline mode #8500 — the npm hang it aimed to fix was properly addressed in bdaf470 by making subprocess calls async with kill_on_drop, making the guard redundant
• Add e2e test for github: backend with @latest version

Context

Regression in v2026.3.5 where github: backend tools configured with @latest fail with a 404 error during install/exec. Two issues combined:

1. get_release_() in github.rs always constructed /releases/tags/{tag}, but "latest" isn't a tag — GitHub's API uses /releases/latest for the latest release endpoint
2. The prefer-offline guard in fix(env): skip remote version fetching for "latest" in prefer-offline mode #8500 prevented "latest" from being resolved to a concrete version number during exec/env/hook-env, causing the literal string "latest" to propagate into the install path. This guard was added to prevent npm hangs with private registries, but that issue was already properly fixed in bdaf470 by using async subprocess calls with kill_on_drop

Fixes #8530

Test plan

• New e2e test test_github_latest verifies install and exec with @latest
• Existing e2e tests pass

🤖 Generated with Claude Code

---

Note

Medium Risk
Touches version-resolution logic and GitHub API calling behavior, which can affect installs/execs across environments; changes are small and covered by a targeted e2e regression test.

Overview
Fixes github: tool installs/execs using version = "latest" by routing GitHub release lookups to /releases/latest (instead of treating latest as a tag via /releases/tags/latest).

Adjusts ToolVersion::resolve_version so latest continues to resolve to a concrete remote version even under prefer-offline flows (while still respecting true offline mode), and adds an e2e regression test (test_github_latest) that asserts mise ls reports a real semver rather than the literal latest.

Updates the pipx extras e2e test to use a newer harlequin version and tweaks the python selection comment for consistency.

^{Written by Cursor Bugbot for commit ded8093. This will update automatically on new commits. Configure here.}

[gemini-code-assist]

Summary of Changes

Hello, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request addresses a regression where github: backend tools configured with @latest failed to install or execute due to incorrect GitHub API calls and an overly aggressive prefer-offline guard. The changes ensure that the "latest" version is correctly resolved via the GitHub API and always performs a remote lookup when necessary, preventing literal "latest" strings from propagating into install paths. A new e2e test has been added to validate this fix.

Highlights

• GitHub API "latest" release URL: Corrected the GitHub API endpoint for "latest" releases from "/releases/tags/latest" to "/releases/latest" to resolve 404 errors.
• prefer-offline guard: Reverted the prefer-offline guard on latest_version_with_opts to ensure that "latest" versions are always resolved via a remote lookup when no installed version is found.
• End-to-end testing: Added a new end-to-end test to verify the correct installation and execution of tools using the github: backend with the @latest version specifier.

Changelog

• e2e/backend/test_github_latest
  • Added a new end-to-end test for GitHub backend's 'latest' version resolution.
• src/github.rs
  • Modified the get_release_ function to use the correct GitHub API endpoint for 'latest' releases.
  • Implemented conditional logic to differentiate between 'latest' and specific tag lookups.
• src/toolset/tool_version.rs
  • Removed the prefer_offline condition from the ToolVersion's latest_version_with_opts call, ensuring remote lookup for 'latest' versions.

Activity

• Identified and fixed an issue where the GitHub API URL for "latest" releases was incorrect, leading to 404 errors.
• Reverted a prefer-offline guard that was preventing "latest" versions from being resolved remotely.
• Added a new end-to-end test (test_github_latest) to validate the fix for GitHub backend @latest version resolution.
• Confirmed that existing end-to-end tests continue to pass after these changes.
• Addressed a regression introduced in v2026.3.5, as detailed in the linked GitHub discussion.

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[greptile-apps]

Greptile Summary

Fixes a regression where github: backend tools configured with @latest fail with 404 errors during install/exec.

Key changes:

• src/github.rs: Routes get_release_() to /repos/{repo}/releases/latest when tag is "latest" (instead of the incorrect /repos/{repo}/releases/tags/latest which treats "latest" as a literal tag name)
• src/toolset/tool_version.rs: Removes the prefer_offline guard from the "latest" version resolution path, allowing "latest" to resolve to a concrete semver even in prefer-offline mode (while respecting true offline mode). The installed-version fast-path is preserved to avoid unnecessary network calls.
• e2e/backend/test_github_latest: New regression test that verifies @latest resolves to a concrete semver (not the literal "latest" string) and executes correctly
• e2e/backend/test_pipx_extras: Updates harlequin from 1.24.0 to 2.5.1

Both code fixes are minimal, well-scoped, and directly address the reported regression. The e2e test provides solid coverage of the primary scenario with explicit assertions for both negative (reject literal "latest") and positive (require semver pattern) cases.

Confidence Score: 4/5

• Low risk — targeted fixes to a specific regression with comprehensive e2e test coverage.
• Changes are minimal and well-justified. The GitHub API URL fix is unambiguously correct (route "latest" to the correct endpoint). The prefer-offline guard removal is safe because: (1) it only applies when not in true offline mode, (2) the installed-version fast-path prevents unnecessary calls, and (3) it restores proper behavior that was broken in the prior regression. The e2e test now includes both strong negative assertions (verify "latest" string doesn't appear) and positive semver pattern matching, providing solid verification of the fix.
• No files require special attention.

Important Files Changed

Filename	Overview
src/github.rs	Core bug fix: Routes get_release_() to /releases/latest when tag == "latest" instead of the incorrect /releases/tags/latest. Change is minimal and correct — GitHub's API uses the /releases/latest endpoint specifically for retrieving the latest release.
src/toolset/tool_version.rs	Removes the prefer_offline guard from the "latest" version resolution path. Uninstalled tools with version = "latest" will now make a remote call even in prefer-offline mode, which is a deliberate improvement: it ensures "latest" resolves to a concrete semver instead of propagating the literal "latest" string as an install path. True offline mode is still respected.
e2e/backend/test_github_latest	Regression test verifying @latest resolves correctly. Uses two complementary assertions: (1) negative check ensures the literal string "latest" does not appear in the version column, (2) positive check ensures a semver-like pattern (e.g., "1.0.0") is present. Test covers both install and exec paths.
e2e/backend/test_pipx_extras	Updates harlequin from 1.24.0 to 2.5.1 and softens the python3.12 selection comment for consistency. No logic changes.

_{Last reviewed commit: ded8093}

[gemini-code-assist]

Code Review

This pull request correctly fixes an issue with resolving the latest version for GitHub-backend tools by using the correct API endpoint and addresses a regression that prevented latest from being resolved in prefer-offline mode. However, a high-severity credential leakage vulnerability was identified in src/github.rs. The get_release_ function uses an untrusted api_url (from mise.toml) to construct requests, and the get_headers function incorrectly attaches the user's GITHUB_TOKEN to these requests even for non-GitHub hosts. This allows a malicious project to steal a user's GitHub credentials, and this PR increases exposure to this vulnerability by making remote lookups for latest more frequent. Additionally, while a new end-to-end test has been added, there is a suggestion to improve its long-term maintainability.

[gemini-code-assist]

The get_release_ function constructs a URL using the api_url parameter, which can be provided by an untrusted mise.toml configuration file. This URL is then passed to get_headers, which incorrectly attaches the user's GITHUB_TOKEN (or MISE_GITHUB_ENTERPRISE_TOKEN) to the request even if the host is not api.github.com.

A malicious project can specify a custom api_url in its mise.toml (e.g., api_url = "https://attacker.com") to steal the user's GitHub credentials when mise attempts to resolve tool versions.

This vulnerability is exacerbated by the changes in src/toolset/tool_version.rs which remove the prefer_offline guard, causing mise to perform remote lookups for latest versions more frequently, even in modes where it previously avoided network requests.

[gemini-code-assist]

The test configuration hardcodes the version "1.0.0" in asset_pattern, bin_path, and postinstall. This makes the test brittle and dependent on the jdx/mise-test-fixtures repository's "latest" release always pointing to version 1.0.0.

If the test fixture is updated with a new release, this test will likely fail, which could cause confusion during unrelated development.

For better long-term maintainability, consider one of these approaches:

• Modify the test fixture to provide version-agnostic asset names (e.g., hello-world.tar.gz).
• Create a new test fixture that uses {{version}} templating in its asset names, and update this test to use it.

While the current implementation correctly tests the regression, improving its robustness will benefit the project in the long run.

[github-actions]

Hyperfine Performance

mise x -- echo

Command	Mean [ms]	Min [ms]	Max [ms]	Relative
mise-2026.3.5 x -- echo	23.0 ± 0.3	22.4	27.7	1.00
mise x -- echo	23.3 ± 0.4	22.6	26.4	1.01 ± 0.02

mise env

Command	Mean [ms]	Min [ms]	Max [ms]	Relative
mise-2026.3.5 env	22.8 ± 0.7	22.0	27.8	1.00
mise env	22.9 ± 0.4	22.4	25.1	1.00 ± 0.04

mise hook-env

Command	Mean [ms]	Min [ms]	Max [ms]	Relative
mise-2026.3.5 hook-env	23.2 ± 0.3	22.4	24.9	1.00
mise hook-env	23.5 ± 0.3	22.9	24.9	1.01 ± 0.02

mise ls

Command	Mean [ms]	Min [ms]	Max [ms]	Relative
mise-2026.3.5 ls	22.6 ± 0.5	22.0	29.5	1.00
mise ls	22.9 ± 0.3	22.3	26.5	1.01 ± 0.03

xtasks/test/perf

Command	mise-2026.3.5	mise	Variance
install (cached)	150ms	151ms	+0%
ls (cached)	82ms	82ms	+0%
bin-paths (cached)	84ms	84ms	+0%
task-ls (cached)	839ms	⚠️ 2747ms	-69%

⚠️ Warning: task-ls cached performance variance is -69%