Release Notes

New Features

• You can now add GitHub organizations directly from the organization switcher using the + icon, with a streamlined dialog interface that also appears on the profile organizations page.
• Free plan limits are now enforced across organizations, ensuring proper resource allocation and plan compliance.
• CargoWall network isolation is now available for cargo-operator deployments, providing enhanced security through application network policies.

Improvements

• The onboarding and sync flow now features a consistent layout with CodeCargo branding, bordered cards, and a "Logged in as" profile bar with logout functionality.
• The "Install GitHub App" page now matches the marketing site design for a cohesive user experience.
• Navigation has been standardized with "Return to CodeCargo" buttons throughout the interface, replacing inconsistent button labels.
• LiteLLM configuration now separates admin and inference URLs for better security, with virtual keys restricted to inference-only access.
• URL handling has been improved to remove unnecessary query parameters when search params are empty.
• The recent organization cookie is now validated before redirecting, preventing loops when accessing deleted organizations.

Bug Fixes

• Fixed an issue where the sudo lockdown setting toggle was not working properly due to variable shadowing.
• Fixed CargoWall display issues for free plan users where project workflows were incorrectly shown.
• Fixed various small CargoWall interface issues for improved usability.

New Features

• You can now access public CargoWall run pages for repositories where the CodeCargo app isn't installed, enabling visibility into workflow network activity for public repositories.
• Added LiteLLM integration for AI features, providing per-plan credential isolation, per-user virtual keys, and centralized spend tracking for enhanced security and cost management.
• CargoWall now automatically activates repositories when workflow jobs are ingested, streamlining the onboarding process.
• Added free plan support with entitlements for RBAC, AI features, projects, and building blocks.

Improvements

• The CargoWall interface is now split into separate repositories and workflows views for better organization and navigation.
• Actions Insights workflow links in dependency graphs now include hover popovers with additional context and improved navigation.
• Workspace modal UX improvements include action tooltips, merged/closed PR indicators, sync completion status, and a Done button after successful syncs.
• Repository validation now includes proper access checks for changesets with more helpful error messages.
• Enhanced table components with fixed bottom border styling across the application.
• Improved loading performance by reducing long black screen times during page transitions.
• Updated event tracking to properly capture audit-to-enforce transitions in CargoWall policies.

Bug Fixes

• Fixed landing page navigation from GitHub app installations to properly redirect users through the org sync flow.
• Fixed CargoWall edit port dialog layout issues where options would extend beyond the visible area.
• Fixed public CargoWall run pages to avoid endless redirect loops for users not in the organization.
• Fixed AutoAllowed field mapping issues that were causing incorrect policy enforcement states.
• Fixed critical security vulnerabilities in Go dependencies.
• Fixed plan model configuration issues that were preventing proper plan creation timestamps.
• Fixed organization re-linking to properly trigger initial repository sync.

New Features

• You can now explore CargoWall baseline policies that automatically calculate required network egress for jobs, workflows, and repositories.
• Added a guided tour for CargoWall to help new users understand policy management and workflow visualization.
• Organization admins can now enable support access in advanced settings, allowing CodeCargo support staff to assist with troubleshooting when needed.

Improvements

• The Actions Reference Explorer now supports expand/collapse functionality for version nodes, making it easier to navigate large numbers of repository references with searchable aggregation views.
• Service catalog author filtering now shows all co-owners when filtering by a specific owner, providing complete ownership visibility.
• AI tool calls now include enhanced file editing with progressive fuzzy replacement, automatic parent directory creation, and improved output formatting with unified diffs.
• The code editor now handles binary files more gracefully with proper detection and fallback to directory listings when appropriate.
• Service catalog deep linking now properly handles URL parameters and maintains filter states across page reloads.
• Improved dashboard loading experience by eliminating content flicker during server-side rendering.

Bug Fixes

• Fixed expired S3 URLs that were causing broken organization icons and user avatars throughout the application.
• Fixed AI chat task overlay persisting after all tasks were completed.
• Fixed organization selector showing a persistent border after changing organizations.
• Fixed token counting issues in AI summarization that were causing premature summarization triggers.
• Fixed various UI issues including icon spacing, hydration mismatches, and layout inconsistencies.
• Fixed build failures related to NuGet lock files and .NET SDK compatibility.
• Fixed workflow visualization issues with reusable workflows and conditional rendering.

New Features

• You can now access the GitHub CLI directly from the code editor, enabling repository operations and GitHub API interactions without leaving the workspace.
• Added an Architect role for organizations, allowing users to create and manage building blocks and projects without full admin permissions.
• You can now select specific repositories when syncing workspaces, with unchecked repositories showing "Skip" in the action column.
• Added individual service dependencies pages accessible by clicking on service catalog nodes and table titles.
• The code editor visualizer now includes a "Jump to Code" button that navigates directly to the selected code location in Monaco.

Improvements

• Actions Insights charts no longer show decimal values on the axis when displaying small usage counts.
• The Actions Explorer now integrates workflow reference data into dependency graphs, showing which actions each workflow uses with version and job details.
• Workflow dependency graphs now display same-repository reusable workflows as dependents on the left side of the graph.
• Actions Insights workflow explorer now properly displays workflows from building block source repositories on the default branch.
• Service catalog now filters to only active repositories, preventing errors when clicking into deactivated repository content.
• Enhanced service catalog empty states with suggestion cards when filters result in no data.
• Back button navigation now uses session storage to maintain proper return URLs across experience flows.
• Building block sources now include proper permission checks, hiding management options for users without appropriate access.
• Team org-level roles are now enforced for project access, ensuring consistent permissions across the platform.

Bug Fixes

• Fixed Actions Explorer rows disappearing after clicking a table row in split view while search filters are active.
• Fixed workflow links in Actions Insights to navigate to the dependencies page instead of the default workflow page, with untracked workflows showing question mark indicators.
• Fixed an issue where SSW run history links wouldn't properly navigate back to the previous page.
• Fixed settings page display issues after role permission changes.
• Fixed stale lock file removal to prevent caching errors during repository synchronization.
• Updated MailKit to resolve a security vulnerability that was causing production builds to fail.

New Features

• You can now view CargoWall statistics and enforcement metrics through a new overview dashboard showing blocked connections, policy violations, and workflow run summaries.
• Added Service Catalog operations to the Dev Tools dialog, allowing you to scan repositories for services, rescan existing services, and manage service detection directly from the interface.
• You can now view pull request history for workspaces, showing all previous PRs created from a workspace with their status and repository information.
• Added network destination icons throughout CargoWall views, making it easier to identify external services and platforms at a glance.

Improvements

• Actions Insights overview now deep-links to the internal Actions Explorer instead of opening GitHub in a new tab when clicking on action names.
• The Actions Explorer table view now properly truncates long action and workflow names with ellipsis tooltips.
• Fullscreen graph mode now uses the entire viewport across all graph views, with improved positioning and background consistency.
• CargoWall workflow visualization now properly handles matrix jobs and strategy-based workflows.
• Enhanced CargoWall policy management with consistent "Allow/Deny" terminology and improved policy inheritance rules.
• Background user repository syncing now prevents UI blocking during onboarding and includes retry functionality for failed syncs.
• Added building block tooltips to repository nodes in the Actions Explorer dependency graph.
• Improved responsive design and color consistency across CargoWall components.

Bug Fixes

• Fixed caching errors in the operator that could cause repository synchronization failures.
• Fixed workspace sync modal behavior by removing the confusing "Cancel" button after sync completion.
• Fixed DNS event cleanup in CargoWall to reduce noise and properly handle DNS query accumulation.
• Fixed Service Catalog loading states when selecting components in the graph view.
• Fixed race conditions in organization user sync completion that could leave users stuck on sync screens.
• Fixed pull request opening failures after workspace merges by using distinct branch names and proper rebasing.
• Fixed markdown table rendering in building block documentation.
• Fixed left navigation highlighting for repository and project subpaths.
• Fixed editor UI issues including ghost button cursor behavior and toast message terminology.

Actions Insights Documentation

New Actions Insights page covering the overview dashboard, actions and workflows explorers, dependency graph visualization, and version pinning practices.

CargoWall Documentation

Added a dedicated CargoWall documentation page covering the overview dashboard, policies, assignments, runs, and workflow visualization.

Expanded Documentation

• New Access Control page covering organization roles, teams, project permissions, and personal access tokens
• New Operators & Settings page covering self-hosted cargo operators, organization settings, and agent configuration
• Expanded Self-Service Workflows with run execution details, status states, run history, and filtering
• Expanded Workspaces with sync flow, multi-repo PR creation, and workspace management

New Features

• You can now configure Self-Service Workflows to run as the GitHub App instead of requiring individual user permissions, enabling broader access across your organization.
• Added Actions Insights with a new overview dashboard showing version distribution, top-used actions, and version sprawl metrics across your repositories.
• You can now view dependency graphs and detailed usage information for both actions and workflows through the new Actions Explorer and Workflows Explorer.
• Added CargoWall policy management UI for configuring network policies on workflow jobs.
• Self-Service Workflows now include organization-wide views showing all workflows and runs across projects.

Improvements

• You can now continue editing workspaces after opening pull requests, with automatic rebasing to keep your changes in sync.
• The dashboard title now shows "My Dashboard" for a more personal experience.
• Added quick "Remediate" action to compliance findings for faster issue resolution.
• Self-Service Workflows now support filtering by steps and show user-specific runs.
• Workspace usability improvements including PR indicators in the file tree, better sync modal behavior, and expanded workspace management options.
• Added tour journeys and welcome cards to help new users get started.
• Upgraded to Claude Sonnet 4.6 for improved AI-powered code suggestions and analysis.

Bug Fixes

• Fixed line number display issues in the code editor that would reappear after reopening.
• Fixed right workspace panel visibility on wider screens.
• Fixed breadcrumb navigation not updating when accessing organization self-service pages.
• Fixed authentication issues with CargoWall reporting.
• Fixed table event bubbling issues in the UI.
• Fixed workspace step visibility when the workspace panel is open.
• Fixed binary file handling when switching branches to match rebase behavior.
• Fixed errors in opening pull requests now show proper failure messages during changeset sync.