This release adds 4 notable features for engineering teams evaluating rollout.
✓ No known CVEs patched in this version
Affected surfaces
Summary
AI summaryLoud signals for COOKIE_SECURE misconfiguration on plain‑HTTP deployments are now emitted.
Changes in this release
| Type | Severity | Summary | CVE |
|---|---|---|---|
| Feature | Medium |
vendor-agnostic data-flow disclosures for BYOAI added to API and Web vendor-agnostic data-flow disclosures for BYOAI added to API and Web Source: granite4.1:8b-q6_K@2026-05-19 Confidence: high |
— |
| Feature | Medium |
hero card closed-loop surfaces implemented in Web hero card closed-loop surfaces implemented in Web Source: granite4.1:8b-q6_K@2026-05-19 Confidence: high |
— |
| Feature | Medium |
forecast read endpoint and picker preference added to API forecast read endpoint and picker preference added to API Source: granite4.1:8b-q6_K@2026-05-19 Confidence: high |
— |
| Feature | Medium |
forecast translator extension added to API forecast translator extension added to API Source: granite4.1:8b-q6_K@2026-05-19 Confidence: high |
— |
| Feature | Medium |
Dexcom and Tandem region support expanded, Tandem cloud upload fixed Dexcom and Tandem region support expanded, Tandem cloud upload fixed Source: granite4.1:8b-q6_K@2026-05-19 Confidence: high |
— |
| Performance | Medium |
CI now supports fork PRs in labeler, attribution check, and security scan CI now supports fork PRs in labeler, attribution check, and security scan Source: granite4.1:8b-q6_K@2026-05-19 Confidence: low |
— |
| Deprecation | Medium |
requests-oidc floor pinned to >=0.6.0 to block silent downgrade requests-oidc floor pinned to >=0.6.0 to block silent downgrade Source: granite4.1:8b-q6_K@2026-05-19 Confidence: low |
— |
| Bugfix | Medium |
loud signals for COOKIE_SECURE plain-HTTP deploy misconfig fixed loud signals for COOKIE_SECURE plain-HTTP deploy misconfig fixed Source: granite4.1:8b-q6_K@2026-05-19 Confidence: high |
— |
| Bugfix | Medium |
dashboard mobile responsiveness improved dashboard mobile responsiveness improved Source: granite4.1:8b-q6_K@2026-05-19 Confidence: high |
— |
| Other | Medium |
Supported by section added and sponsor/credential docs scope-downed Supported by section added and sponsor/credential docs scope-downed Source: granite4.1:8b-q6_K@2026-05-19 Confidence: low |
— |
Full changelog
v0.8.0
📱 Mobile
📝 Other Changes
- chore: sync release 0.7.2 from main to develop @glycemicgpt-merge (#632)
🌐 Web
✨ New Features
- feat(api, web): vendor-agnostic data-flow disclosures for BYOAI @jlengelbrecht (#634)
- feat(api, web): hero card closed-loop surfaces (43.12 PR 6) @jlengelbrecht (#633)
🐛 Bug Fixes
- fix: loud signals for COOKIE_SECURE plain-HTTP deploy misconfig @jlengelbrecht (#637)
📝 Other Changes
- fix(web): improve dashboard mobile responsiveness @SleightOS (#638)
📡 API
✨ New Features
- feat(api): forecast read endpoint + picker preference (43.12 PR 3) @jlengelbrecht (#635)
- feat(api): forecast translator extension (43.12 PR 2) @jlengelbrecht (#615)
🏗️ Infrastructure
📝 Other Changes
- chore: sync changelog update from main to develop @glycemicgpt-merge (#631)
❓ Uncategorized
- chore(security): suppress ZAP 10111 + document GitHub-native scanners @jlengelbrecht (#646)
- Pin requests-oidc floor to >=0.6.0 to block silent downgrade @jlengelbrecht (#643)
- Expand Dexcom + Tandem region support and fix Tandem cloud upload @jlengelbrecht (#642)
- docs: add Supported by section and scope-down sponsor/credential docs @jlengelbrecht (#641)
- ci: support fork PRs in labeler, attribution check, and security scan @jlengelbrecht (#639)
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About GlycemicGPT
All releases →Related context
Related tools
Earlier breaking changes
- v0.7.0 Changes CI release-body extraction to single-shot without historical bleed
Beta — feedback welcome: [email protected]