Skip to content

Bump Whisper.net.Runtime from 1.9.0 to 1.9.1#623

Merged
steipete merged 1 commit into
masterfrom
dependabot/nuget/src/OpenClaw.Shared/Whisper.net.Runtime-1.9.1
Jun 5, 2026
Merged

Bump Whisper.net.Runtime from 1.9.0 to 1.9.1#623
steipete merged 1 commit into
masterfrom
dependabot/nuget/src/OpenClaw.Shared/Whisper.net.Runtime-1.9.1

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Jun 1, 2026

Updated Whisper.net.Runtime from 1.9.0 to 1.9.1.

Release notes

Sourced from Whisper.net.Runtime's releases.

1.9.1

Highlights

  • Added Voice Activity Detection (VAD) support, including WhisperVadFactory, WhisperVadProcessor, builder/options APIs, VAD segment data, functional/unit tests, and a new examples/Vad sample.
  • Added Silero VAD model support to WhisperGgmlDownloader, including a dedicated SileroVadType enum and downloader test coverage.
  • Added the Whisper.net.Runtime.Cuda12 runtime packages for Windows and Linux, with runtime-loader support and dependency-checker updates.
  • Improved language detection by exposing whisper_lang_id() and adding candidate-based DetectLanguageWithProbability support.
  • Bumped whisper.cpp through 1.8.5 and refreshed native build/test workflows.
  • Simplified sampling strategy configuration by removing IWhisperSamplingStrategyBuilder.
  • Improved WhisperProcessor cancellation/instance handling and native failure/error-level propagation.

Compatibility & tooling

  • Enabled XML documentation output for build/package artifacts.
  • Included symbols in NuGet packages.
  • Updated GitHub Actions and runner versions across managed, native, MAUI, NoAVX, CodeQL, package, and push workflows.
  • Added repository Copilot instructions and reusable validation skills for managed API, native runtime, runtime-loading, package/release, MAUI, NoAVX, and test-model workflows.
  • Updated Blazor reconnection handling and refreshed example package versions.

Dependency updates

  • Updated Microsoft.Extensions.AI.Abstractions through 10.2.0.
  • Updated Microsoft.Bcl.AsyncInterfaces through 10.0.7.
  • Updated Microsoft.AspNetCore.Components.WebAssembly and Server through 10.0.5.
  • Updated Microsoft.Extensions.Logging.Debug to 10.0.7.
  • Updated NAudio to 2.3.0.
  • Updated Microsoft.DotNet.XHarness.TestRunners.Xunit prerelease and coverlet.collector 10.0.0.

What's Changed

1.9.1-preview2

What's Changed

New Contributors

Full Changelog: sandrohanea/whisper.net@1.9.1-preview1...v1.9.1-preview2

Commits viewable in compare view.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump Whisper.net.Runtime from 1.9.0 to 1.9.1
ef230cd 
---
updated-dependencies:
- dependency-name: Whisper.net.Runtime
  dependency-version: 1.9.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added .NET Pull requests that update .NET code dependencies Pull requests that update a dependency file labels Jun 1, 2026
@clawsweeper
Copy link
Copy Markdown

clawsweeper Bot commented Jun 1, 2026
edited
Loading

Codex review: needs maintainer review before merge. Reviewed June 1, 2026, 4:41 PM ET / 20:41 UTC.

Summary
Updates Whisper.net.Runtime in src/OpenClaw.Shared/OpenClaw.Shared.csproj from 1.9.0 to 1.9.1 while leaving Whisper.net at 1.9.0.

Reproducibility: not applicable. this is a dependency update PR, not a reported bug. Source inspection identifies the affected STT load/transcribe path, but runtime validation was not run in this read-only review.

Review metrics: 1 noteworthy metric.

  • Production Dependency Change: 1 direct PackageReference changed, 1.9.0 -> 1.9.1. This is the entire diff, and the package supplies native Whisper runtime assets used by local speech-to-text.

Merge readiness
Overall: 🐚 platinum hermit
Proof: 🌊 off-meta tidepool
Patch quality: 🐚 platinum hermit
Result: ready for maintainer review.

Overall follows the weaker of proof and patch quality, so missing proof can cap an otherwise strong patch.

Rank-up moves:

  • [P2] Run the repo-required build/tests and a Windows Whisper load/transcribe smoke before merge.

Risk before merge

  • [P1] The changed package ships native runtime binaries for the local Whisper STT path; compile-focused checks may not prove that a Windows app can still load a GGML model and transcribe audio after restore.
  • [P1] Only Whisper.net.Runtime is bumped while the managed Whisper.net package remains 1.9.0; no source-level incompatibility is evident, but the managed/runtime pairing should be covered by a smoke test before merge.

Maintainer options:

  1. Validate Native STT Before Merge (recommended)
    Run the required build/tests and a Windows smoke that loads a Whisper model and transcribes a short sample with the restored 1.9.1 runtime.
  2. Accept Patch-Level Runtime Risk
    Maintainers may merge based on the semver patch scope and upstream metadata, accepting that real STT runtime coverage is deferred to post-merge testing.

Next step before merge

  • [P2] No repair PR is needed; maintainers should decide whether CI plus a native Whisper smoke is sufficient before merging this runtime dependency update.

Security
Cleared: The diff only advances an existing MIT NuGet runtime package from the same upstream package family and does not add package sources, scripts, workflows, or permissions.

Review details

Best possible solution:

Merge only after the required repo build/tests pass and a supported Windows Whisper load/transcribe smoke confirms the 1.9.1 runtime works with the current managed wrapper.

Do we have a high-confidence way to reproduce the issue?

Not applicable; this is a dependency update PR, not a reported bug. Source inspection identifies the affected STT load/transcribe path, but runtime validation was not run in this read-only review.

Is this the best way to solve the issue?

Yes, conditionally: a direct PackageReference bump is the narrow maintainable shape for this update. The merge path should include build/test validation and a Windows STT smoke because the package is a native runtime dependency.

AGENTS.md: found and applied where relevant.

Codex review notes: model gpt-5.5, reasoning high; reviewed against 1d58d59673c9.

Label changes

Label changes:

  • add P3: This is a patch-level dependency maintenance PR with a limited speech-to-text blast radius.
  • add merge-risk: 🚨 availability: Changing the native Whisper runtime could make local STT model loading or transcription fail even when source compilation succeeds.
  • add rating: 🐚 platinum hermit: Overall readiness is 🐚 platinum hermit; proof is 🌊 off-meta tidepool and patch quality is 🐚 platinum hermit.
  • add status: 👀 ready for maintainer look: ClawSweeper has no concrete contributor-facing blocker left for this PR. Not applicable: This is a Dependabot bot PR, so the external contributor real-behavior-proof gate is not applicable; maintainer validation should cover the native runtime path.

Label justifications:

  • P3: This is a patch-level dependency maintenance PR with a limited speech-to-text blast radius.
  • merge-risk: 🚨 availability: Changing the native Whisper runtime could make local STT model loading or transcription fail even when source compilation succeeds.
  • rating: 🐚 platinum hermit: Overall readiness is 🐚 platinum hermit; proof is 🌊 off-meta tidepool and patch quality is 🐚 platinum hermit.
  • status: 👀 ready for maintainer look: ClawSweeper has no concrete contributor-facing blocker left for this PR. Not applicable: This is a Dependabot bot PR, so the external contributor real-behavior-proof gate is not applicable; maintainer validation should cover the native runtime path.
Evidence reviewed

What I checked:

  • Current package reference: Current master at 1d58d59 still pins both Whisper.net and Whisper.net.Runtime to 1.9.0 in the shared project. (src/OpenClaw.Shared/OpenClaw.Shared.csproj:20, 1d58d59673c9)
  • PR diff scope: The provided PR diff changes only one direct production PackageReference: Whisper.net.Runtime 1.9.0 to 1.9.1. (src/OpenClaw.Shared/OpenClaw.Shared.csproj:21, ef230cd08fff)
  • Runtime usage path: SpeechToTextService loads Whisper through WhisperFactory.FromPath and processes audio via processor.ProcessAsync, so the runtime package affects real STT load/transcription behavior. (src/OpenClaw.Shared/Audio/SpeechToTextService.cs:37, 1d58d59673c9)
  • Upstream package metadata: NuGet metadata for Whisper.net.Runtime 1.9.1 keeps the same MIT upstream package identity and updates its native runtime dependency to Whisper.net.Runtime.Metal 1.9.1.
  • Feature history: Git blame and log show the Whisper package references and current STT implementation were introduced with the speech-to-text setup work in commit aaf50b7. (src/OpenClaw.Shared/OpenClaw.Shared.csproj:18, aaf50b758504)
  • Maintainer notes check: No .agents/maintainer-notes/ directory exists in this checkout, so there were no matching maintainer notes to apply for this package-only PR.

Likely related people:

  • Scott Hanselman: Git blame/log show this person introduced the Whisper.net package references, SpeechToTextService, WhisperModelManager, and the current tray VoiceService STT path in the same speech-to-text setup commit. (role: introduced behavior; confidence: high; commits: aaf50b758504, 15e26493a8b9; files: src/OpenClaw.Shared/OpenClaw.Shared.csproj, src/OpenClaw.Shared/Audio/SpeechToTextService.cs, src/OpenClaw.Shared/Audio/WhisperModelManager.cs)
What the crustacean ranks mean
  • 🦀 challenger crab: rare, exceptional readiness with strong proof, clean implementation, and convincing validation.
  • 🦞 diamond lobster: very strong readiness with only minor maintainer review expected.
  • 🐚 platinum hermit: good normal PR, likely mergeable with ordinary maintainer review.
  • 🦐 gold shrimp: useful signal, but proof or patch confidence is still limited.
  • 🦪 silver shellfish: thin signal; proof, validation, or implementation needs work.
  • 🧂 unranked krab: not merge-ready because proof is missing/unusable or there are serious correctness or safety concerns.
  • 🌊 off-meta tidepool: rating does not apply to this item.

Shiny media proof means a screenshot, video, or linked artifact directly shows the changed behavior. Runtime, network, CSP, and security claims still need visible diagnostics.

How this review workflow works
  • ClawSweeper keeps one durable marker-backed review comment per issue or PR.
  • Re-runs edit this comment so the latest verdict, findings, and automation markers stay together instead of adding duplicate bot comments.
  • A fresh review can be triggered by eligible @clawsweeper re-review comments, exact-item GitHub events, scheduled/background review runs, or manual workflow dispatch.
  • PR/issue authors and users with repository write access can comment @clawsweeper re-review or @clawsweeper re-run on an open PR or issue to request a fresh review only.
  • Maintainers can also comment @clawsweeper review to request a fresh review only.
  • Fresh-review commands do not start repair, autofix, rebase, CI repair, or automerge.
  • Maintainer-only repair and merge flows require explicit commands such as @clawsweeper autofix, @clawsweeper automerge, @clawsweeper fix ci, or @clawsweeper address review.
  • Maintainers can comment @clawsweeper explain to ask for more context, or @clawsweeper stop to stop active automation.

@clawsweeper clawsweeper Bot added rating: 🐚 platinum hermit Good normal PR readiness with ordinary maintainer review expected. status: 👀 ready for maintainer look ClawSweeper has no concrete contributor-facing blocker left for this PR. P3 Low-risk cleanup, docs, polish, ergonomics, or speculative feature. merge-risk: 🚨 availability 🚨 Merging this PR could cause crashes, hangs, restart loops, stalls, or process outages. labels Jun 1, 2026
This was referenced Jun 4, 2026
Open
Closed
@steipete steipete merged commit ff50b4a into master Jun 5, 2026
21 checks passed
@steipete steipete deleted the dependabot/nuget/src/OpenClaw.Shared/Whisper.net.Runtime-1.9.1 branch June 5, 2026 20:10
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file merge-risk: 🚨 availability 🚨 Merging this PR could cause crashes, hangs, restart loops, stalls, or process outages. .NET Pull requests that update .NET code P3 Low-risk cleanup, docs, polish, ergonomics, or speculative feature. rating: 🐚 platinum hermit Good normal PR readiness with ordinary maintainer review expected. status: 👀 ready for maintainer look ClawSweeper has no concrete contributor-facing blocker left for this PR.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@steipete