Skip to content

Mistle

v0.24.0 Feature

This release adds 3 notable features for engineering teams evaluating rollout.

Published 8d AI Agents & Assistants
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Affected surfaces

auth rbac

Summary

AI summary

Updates Chores, Bug Fixes, and deps across a mixed release.

Changes in this release

Feature Low

Add port access links table

Add port access links table

Source: llm_adapter@2026-05-26

Confidence: high
Feature Low

Expose short port access links

Expose short port access links

Source: llm_adapter@2026-05-26

Confidence: high
Feature Low

Refine sandbox operation timeline

Refine sandbox operation timeline

Source: llm_adapter@2026-05-26

Confidence: high
Feature Low

Add managed egress credential diagnostics

Add managed egress credential diagnostics

Source: granite4.1:30b@2026-05-26-audit

Confidence: high
Feature Low

Route port access authorization across gateways

Route port access authorization across gateways

Source: granite4.1:30b@2026-05-26-audit

Confidence: high
Dependency Low

Bump @tanstack/react-query from 5.100.9 to 5.100.10

Bump @tanstack/react-query from 5.100.9 to 5.100.10

Source: llm_adapter@2026-05-26

Confidence: high
Dependency Low

Bump vite from 8.0.12 to 8.0.13 in /tests/system/fixtures/vite-dev-server

Bump vite from 8.0.12 to 8.0.13 in /tests/system/fixtures/vite-dev-server

Source: llm_adapter@2026-05-26

Confidence: high
Dependency Low

Bump stripe from 20.4.1 to 22.1.1

Bump stripe from 20.4.1 to 22.1.1

Source: llm_adapter@2026-05-26

Confidence: high
Dependency Low

Bump @aws-sdk/client-sts from 3.1033.0 to 3.1047.0

Bump @aws-sdk/client-sts from 3.1033.0 to 3.1047.0

Source: llm_adapter@2026-05-26

Confidence: high
Bugfix Medium

Bound data-plane gateway shutdown drain

Bound data-plane gateway shutdown drain

Source: llm_adapter@2026-05-26

Confidence: high
Bugfix Medium

Force close gateway HTTP server shutdown

Force close gateway HTTP server shutdown

Source: llm_adapter@2026-05-26

Confidence: high
Bugfix Medium

Retry transient sandbox workspace clones

Retry transient sandbox workspace clones

Source: llm_adapter@2026-05-26

Confidence: high
Bugfix Low

Scope MCP port access to sandbox instance

Scope MCP port access to sandbox instance

Source: granite4.1:30b@2026-05-26-audit

Confidence: high
Bugfix Low

Propagate port access isolation header

Propagate port access isolation header

Source: granite4.1:30b@2026-05-26-audit

Confidence: high
Bugfix Low

Validate port access link redemption

Validate port access link redemption

Source: granite4.1:30b@2026-05-26-audit

Confidence: high
Bugfix Low

Reuse port access links per creator

Reuse port access links per creator

Source: granite4.1:30b@2026-05-26-audit

Confidence: high
Bugfix Low

Clean up local ports menu

Clean up local ports menu

Source: granite4.1:30b@2026-05-26-audit

Confidence: high
Bugfix Low

Handle port access redemption edge cases

Handle port access redemption edge cases

Source: granite4.1:30b@2026-05-26-audit

Confidence: high
Other Low

Cover pi proxy port filtering

Cover pi proxy port filtering

Source: granite4.1:30b@2026-05-26-audit

Confidence: high
Full changelog

[0.24.0] - 2026-05-26

Features

  • Add port access links table (#2470)
  • Expose short port access links (#2473)
  • Refine sandbox operation timeline (#2480)

Bug Fixes

  • Bound data-plane gateway shutdown drain (#2471)
  • Force close gateway HTTP server shutdown (#2472)
  • Update Vite system fixture lockfile (#2476)
  • Scope MCP port access to sandbox instance (#2478)
  • Propagate port access isolation header (#2481)
  • Validate port access link redemption (#2477)
  • Reuse port access links per creator (#2479)
  • Clean up local ports menu (#2475)
  • Handle port access redemption edge cases (#2482)
  • Add managed egress credential diagnostics (#2483)
  • Route port access authorization across gateways (#2485)
  • Retry transient sandbox workspace clones (#2486)

Tests

  • Cover pi proxy port filtering (#2484)

Chores

  • Instrument service teardown timing (#2468)
  • (deps) Bump @tanstack/react-query from 5.100.9 to 5.100.10 (#2264)
  • (deps) Bump crate-ci/typos from 1.46.1 to 1.46.2 (#2464)
  • (deps) Bump ssh-key from 0.7.0-rc.9 to 0.7.0-rc.10 in /packages/commit-sign (#2258)
  • (deps) Bump vite from 8.0.12 to 8.0.13 (via audit fix) in /tests/system/fixtures/vite-dev-server (#2404)
  • (deps) Bump github/codeql-action from 4.35.4 to 4.35.5 (#2405)
  • (deps) Bump pnpm/action-setup from 6.0.7 to 6.0.8 (#2262)
  • Update codex to 0.133.0 (#2474)
  • (deps) Bump @vitejs/plugin-react from 6.0.1 to 6.0.2 (#2402)
  • (deps) Bump sha2 from 0.10.9 to 0.11.0 in /packages/sandboxd (#2259)
  • (deps) Bump fff-search from 0.7.2 to 0.8.1 in /packages/sandboxd (#2463)
  • (deps) Bump better-auth from 1.5.6 to 1.6.11 (#2263)
  • (deps) Bump stripe from 20.4.1 to 22.1.1 (#2403)
  • (deps) Bump @aws-sdk/client-sts from 3.1033.0 to 3.1047.0 (#2406)
  • Instrument distributed port access authorization (#2487)
  • (release) V0.24.0 (#2488)
View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track Mistle

Get notified when new releases ship.

Sign up free

About Mistle

All releases →

Related context

Beta — feedback welcome: [email protected]