π QonQrete v1.2.0 Released
March 17, 2026 | Major Release β Hassle-Free Bootstrap
This release is all about making QonQrete secure by default and dead simple to configure. API keys are now stored in your OS keychain, not in config files. Provider selection happens through your IDE. And weβve added OpenRouter and Qwen support.
π Secure API Key Management
No more API keys in settings.json. No more keys in terminal history. No more keys on disk.
VS Code: OS Keychain via SecretStorage
// Keys stored in OS keychain, not settings.json
await context.secrets.store('qonqrete.OPENAI_API_KEY', key);
// At runtime: injected into terminal environment
const env = await buildSecureEnvMap(); // Only stored secrets, not env vars
terminal.sendText(command, { env });
IntelliJ: PasswordSafe (Encrypted)
// Keys stored in IntelliJ's credential store
PasswordSafe.instance.set(attrs, Credentials(envKey, value))
// Terminal injection via export prefix
val exports = buildApiKeyExports() // Only stored, not env
Priority Chain
- Real environment variable (process.env) β Always wins
- Stored secret (keychain) β Used if no env var
- Error β Prompt to set key
π New AI Providers
OpenRouter
Access 200+ models through a single API key:
anthropic/claude-sonnet-4openai/gpt-4.1google/gemini-2.5-prodeepseek/deepseek-chat-v3- And many moreβ¦
Qwen (Re-implemented)
Now using DashScopeβs OpenAI-compatible endpoint with streaming:
qwen-plusqwen-turboqwen-max
Full Provider Matrix
| Provider | Env Key | Status |
|---|---|---|
| OpenAI | OPENAI_API_KEY | β |
| Anthropic | ANTHROPIC_API_KEY | β |
| Google/Gemini | GOOGLE_API_KEY | β |
| DeepSeek | DEEPSEEK_API_KEY | β |
| Qwen | QWEN_API_KEY | β |
| OpenRouter | OPENROUTER_API_KEY | β |
βοΈ IDE AI Configuration
New Set AI Configuration command in both IDEs:
- Select agent β TasqLeveler, InstruQtor, ConstruQtor, InspeQtor
- Choose provider β OpenAI, Anthropic, Gemini, DeepSeek, Qwen, OpenRouter
- Pick or enter model β Suggestions auto-populated, custom supported
- Set API keys β Stored securely with visual status indicator
ββββββββββββββββββββββββββββββββββββββββββββ
β QonQrete: AI Configuration β
ββββββββββββββββββββββββββββββββββββββββββββ€
β $(beaker) tasqleveler OpenAI / gpt-4o β
β $(beaker) instruqtor OpenAI / gpt-4o β
β $(beaker) construqtor Anthropic/sonnet β
β $(beaker) inspeqtor Gemini / 2.5-pro β
ββββββββββββββββββββββββββββββββββββββββββββ€
β $(key) OpenAI β Set β
β $(key) Anthropic β Set β
β $(key) Google β Not set β
β $(key) OpenRouter β Set β
ββββββββββββββββββββββββββββββββββββββββββββ€
β $(check) Done β
ββββββββββββββββββββββββββββββββββββββββββββ
π¦ Deploy to Workspace (Refined)
- One-click install into
.qonqrete/ - Auto-adds to
.gitignore - Version-tagged container images
- Smart prompts for missing runtime/tasq
π CI/CD Automation
GitHub Actions workflows for:
- VS Code Extension β Build and publish VSIX
- IntelliJ Plugin β Build and publish ZIP
- Runtime β Package core distribution
Each release produces three artifacts that IDEs fetch on bootstrap.
π Security Model
ββββββββββββββββ ββββββββββββββββ ββββββββββββββββ
β VS Code β β IntelliJ β β Terminal β
β β β β β β
β Secrets API β β PasswordSafe β β ENV VARS β
ββββββββ¬ββββββββ ββββββββ¬ββββββββ ββββββββ¬ββββββββ
β β β
ββββββββββββββββββββββ΄βββββββββββββββββββββ
β
ββββββββββΌβββββββββ
β Terminal Env β
β (per-session) β
ββββββββββ¬βββββββββ
β
ββββββββββΌβββββββββ
β Container β
β (inherits env) β
βββββββββββββββββββ
β Keys in OS keychain (encrypted at rest)
β Injected per-session (not persisted)
β Never in settings.json, never logged
β Env vars always take priority
πΎ Backward Compatible
- Old settings.json keys auto-migrated to secure storage
- Legacy paths still detected
- Existing workflows unchanged
Three clicks. Secure by default. Build with AI.
#QonQrete #v1.2.0 #SecureByDefault #OpenRouter #Qwen #LocalFirst