This release includes 1 security fix for security teams reviewing exposed deployments.
Topics
+2 more
Affected surfaces
ReleasePort's take
Moderate signalv0.176.0 adds AT-SPI accessibility APIs, enables private Amazon ECR registries via cross-account IAM roles, redacts sandbox authToken in cache logs, and fixes SDK browser compatibility with Buffer resolution and busboy error suppression.
Why it matters: Accessibility APIs expand platform support. ECR registry support enables enterprise deployments with existing infrastructure. AuthToken redaction hardens sandbox security in logs. SDK browser fixes resolve compatibility issues. Test in dev before deploying to production.
Summary
AI summaryAdded AT‑SPI accessibility API, snapshot size in dashboard, GPU snapshots docs, external storage mounting docs, private Amazon ECR registry support, and restored file upload progress tracking.
Changes in this release
| Type | Severity | Summary | CVE |
|---|---|---|---|
| Security | Medium |
redact sandbox authToken in cache invalidation logs. redact sandbox authToken in cache invalidation logs. Source: llm_adapter@2026-05-21 Confidence: low |
— |
| Feature | Medium |
add AT-SPI accessibility API to daemon, computer-use, docs, and SDK. add AT-SPI accessibility API to daemon, computer-use, docs, and SDK. Source: llm_adapter@2026-05-21 Confidence: high |
— |
| Feature | Medium |
support private Amazon ECR registries via cross-account IAM roles for runner, API, and docs. support private Amazon ECR registries via cross-account IAM roles for runner, API, and docs. Source: llm_adapter@2026-05-21 Confidence: high |
— |
| Feature | Medium |
add GPU snapshots documentation. add GPU snapshots documentation. Source: llm_adapter@2026-05-21 Confidence: low |
— |
| Feature | Medium |
resize sandboxes general availability documented in docs. resize sandboxes general availability documented in docs. Source: llm_adapter@2026-05-21 Confidence: low |
— |
| Feature | Medium |
add snapshot size to dashboard. add snapshot size to dashboard. Source: llm_adapter@2026-05-21 Confidence: low |
— |
| Feature | Medium |
define stateless and stateful code execution in docs. define stateless and stateful code execution in docs. Source: llm_adapter@2026-05-21 Confidence: low |
— |
| Feature | Medium |
skip SVIX message creation when organization has no endpoints in webhook. skip SVIX message creation when organization has no endpoints in webhook. Source: llm_adapter@2026-05-21 Confidence: low |
— |
| Feature | Low |
Document GPU snapshots in docs. Document GPU snapshots in docs. Source: granite4.1:30b@2026-05-22-audit Confidence: low |
— |
| Feature | Low |
Make sandbox resizing generally available (documented). Make sandbox resizing generally available (documented). Source: granite4.1:30b@2026-05-22-audit Confidence: low |
— |
| Bugfix | Medium |
restore upload_files.go pre-regression behavior with progress tracking in daemon. restore upload_files.go pre-regression behavior with progress tracking in daemon. Source: llm_adapter@2026-05-21 Confidence: high |
— |
| Bugfix | Medium |
resolve Buffer in browser without require() in SDK TypeScript. resolve Buffer in browser without require() in SDK TypeScript. Source: llm_adapter@2026-05-21 Confidence: high |
— |
| Bugfix | Medium |
suppress busboy late teardown errors in downloadFileStream of SDK TypeScript. suppress busboy late teardown errors in downloadFileStream of SDK TypeScript. Source: llm_adapter@2026-05-21 Confidence: high |
— |
| Bugfix | Medium |
use SDK dist for dev in dashboard. use SDK dist for dev in dashboard. Source: llm_adapter@2026-05-21 Confidence: low |
— |
| Bugfix | Medium |
add tooltips to sandbox table actions in dashboard. add tooltips to sandbox table actions in dashboard. Source: llm_adapter@2026-05-21 Confidence: low |
— |
| Bugfix | Low |
Use SDK distribution for development in dashboard. Use SDK distribution for development in dashboard. Source: granite4.1:30b@2026-05-22-audit Confidence: low |
— |
| Refactor | Medium |
migrate OTEL decorators to modern API in SDK TypeScript. migrate OTEL decorators to modern API in SDK TypeScript. Source: llm_adapter@2026-05-21 Confidence: low |
— |
Full changelog
0.176.0 (2026-05-14)
🚀 Features
- daemon,computer-use,docs,sdk: add AT-SPI accessibility API (#4485)
- dashboard: add snapshot size (#4656)
- docs: add gpu snapshots (#4679)
- docs: Mount External Storage (#4673)
- docs: define stateless and stateful code execution (#4707)
- docs: resize sandboxes general availability (#4725)
- runner,api,docs: support private amazon ecr registries via cross-account iam roles (#4581)
- webhook: skip svix message create when org has no endpoints (#4686)
🩹 Fixes
- daemon: restore upload_files.go pre-regression behavior with progress tracking (#4705)
- dashboard: add tooltips to sandbox table actions (#4333)
- dashboard: use sdk dist for dev (#4726)
- sdk-typescript: resolve Buffer in browser without require() (#4716)
- sdk-typescript: suppress busboy late teardown errors in downloadFileStream (#4711)
Refactor
- sdk-typescript: migrate otel decorators to modern API (#4702)
Chores
- sync go.sum for v0.175.0 (#4699)
- include .nxignore in all app Docker build contexts (#4708)
- prevent concurrent npm version git conflicts during publish (#4709)
- dashboard: clean up unused FFs (#4689)
- dashboard: cleanup spending FF (#4706)
- docs: remove text decoration from code snippets (#4718)
- sdk-go: bump to v0.176.0 (#4727)
- security: redact sandbox authToken in cache invalidation logs (#4713)
❤️ Thank You
- Ante Projić @aprojic
- Bruno Grbavac @brunogrbavac
- James Murdza
- Juraj Štefanić @stefanicjuraj
- Mirko Džaja @MDzaja
- Mislav Ivanda @mislavivanda
- Muhammad Hashmi @mu-hashmi
- Robert Pavlinic @rpavlini
- suyua9
Security Fixes
- Redacted sandbox authToken in cache invalidation logs
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About daytona
Daytona is a Secure and Elastic Infrastructure for Running AI-Generated Code
Beta — feedback welcome: [email protected]