chore: bump sidecar version to 1.0.12 [skip ci]

Remove all signing env vars and setup steps. The local act runner's
keychain interferes with Tauri's auto-detection. Will re-add signing
once Apple Developer verification is complete.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

.gitea/workflows/build-app-macos.yml

@@ -39,27 +39,7 @@ jobs:
       - name: Install npm dependencies
         run: npm ci
 
-      - name: Setup code signing
-        env:
-          APPLE_API_KEY: ${{ secrets.APPLE_API_KEY }}
-          APPLE_API_KEY_CONTENT: ${{ secrets.APPLE_API_KEY_CONTENT }}
-        run: |
-          if [ -n "${APPLE_API_KEY_CONTENT}" ]; then
-            echo "Setting up notarization API key..."
-            mkdir -p ~/private_keys
-            echo "${APPLE_API_KEY_CONTENT}" > ~/private_keys/AuthKey_${APPLE_API_KEY}.p8
-          else
-            echo "No signing secrets configured, skipping code signing setup"
-          fi
-
       - name: Build Tauri app
-        env:
-          APPLE_CERTIFICATE: ${{ secrets.APPLE_CERTIFICATE }}
-          APPLE_CERTIFICATE_PASSWORD: ${{ secrets.APPLE_CERTIFICATE_PASSWORD }}
-          APPLE_SIGNING_IDENTITY: ${{ secrets.APPLE_SIGNING_IDENTITY }}
-          APPLE_API_KEY: ${{ secrets.APPLE_API_KEY }}
-          APPLE_API_ISSUER: ${{ secrets.APPLE_API_ISSUER }}
-          APPLE_API_KEY_PATH: ~/private_keys/AuthKey_${{ secrets.APPLE_API_KEY }}.p8
         run: npm run tauri build
 
       - name: Upload to release
@@ -111,6 +91,3 @@ jobs:
               "${REPO_API}/releases/${RELEASE_ID}/assets?name=${encoded_name}")
             echo "Upload response: HTTP ${HTTP_CODE}"
           done
-
-      - name: Cleanup signing artifacts
-        run: rm -rf ~/private_keys

backend/api_server.py

@@ -212,7 +212,11 @@ class APIServer:
 
         @app.put("/api/config")
         async def update_config(update: ConfigUpdate):
-            engine_reloaded, message = ctrl.apply_settings(update.settings)
+            import asyncio
+            loop = asyncio.get_event_loop()
+            engine_reloaded, message = await loop.run_in_executor(
+                None, ctrl.apply_settings, update.settings
+            )
             return {
                 "status": "ok",
                 "message": message,

backend/app_controller.py

@@ -608,8 +608,17 @@ class AppController:
         Returns (engine_reload_needed, message).
         """
         if new_config:
-            for key, value in new_config.items():
-                self.config.set(key, value)
+            # Flatten nested dicts into dot-notation keys so we merge
+            # individual values instead of replacing entire sections
+            # (e.g. remote.mode instead of overwriting all of remote)
+            def _flatten(d, prefix=""):
+                for k, v in d.items():
+                    full_key = f"{prefix}{k}" if not prefix else f"{prefix}.{k}"
+                    if isinstance(v, dict):
+                        _flatten(v, full_key)
+                    else:
+                        self.config.set(full_key, v)
+            _flatten(new_config)
 
         # Update web server display settings
         if self.web_server:

pyproject.toml

@@ -1,6 +1,6 @@
 [project]
 name = "local-transcription"
-version = "1.0.11"
+version = "1.0.12"
 description = "A standalone desktop application for real-time speech-to-text transcription using Whisper models"
 readme = "README.md"
 requires-python = ">=3.9"

src/lib/components/Settings.svelte

@@ -47,6 +47,9 @@
   let autoCheckUpdates = $state(true);
 
   let isCloudMode = $derived(remoteMode === "managed" || remoteMode === "byok");
+  let isCloudOnly = $derived(
+    computeDevices.length > 0 && computeDevices.every(d => d.id === "cloud")
+  );
 
   // Room creation / join state
   let shareCode = $state("");
@@ -453,7 +456,7 @@
             />
             Managed Service
           </label>
-          {#if !backendStore.isCloudOnly}
+          {#if !isCloudOnly}
           <label>
             <input
               type="radio"