Changelog

Explore code, SDKs, blogs, and use cases for developing multi-agent systems. Learn how AGNTCY enables open, interoperable AI infrastructure at scale.

release · dir · v1.5.0 · 2026-06-17

v1.5.0

# 🚀 AGNTCY Dir v1.5.0 Release

This release focuses on implementing **AI Catalog** and **Agentic Resource Discovery** protocols

on top of Agent Directory. It also includes significant improvements to the documentation site,

importer workflows for Agent Skills, and ships with a dedicated dashboard built on top of these

protocols.

🌟 Key Features

- **AI Catalog + ARD**: Directory now also serves the data for discovery and

retrieval through the AI Catalog and Agentic Resource Discovery protocols

via `GET /.well-known/ai-catalog.json` and `GET /v1/agents` endpoints.

- **Web Dashboard**: A dedicated dashboard is now available for visualisation of

all registered records, their contents, and details around identity and security.

- **Native DIR Record**: Each Directory node now comes preequiped with a native

record that provides agentic applications a way to interact and use APIs and tools.

- **Docs Revamp**: The documentation site has been migrated into the `dir` repository,

with improved homepage, versioning, and onboarding experience for developers,

operators, and organizations.

- **Public Deployment**: The Directory Testbed is now available for public access via

dedicated web dashboard and ARD-compliant API, with a growing collection of

MCP servers, A2A cards, and Agent Skills.

Available at: [**https://ai-catalog.outshift.io**](https://ai-catalog.outshift.io).

Check out the [ARD over Agent Directory](https://blogs.agntcy.org/technical/2026/06/17/ai-catalog-over-directory.html) blogpost for an in-depth overview of how DIR

works with the ARD and AI Catalog protocols.

Full Changelog: https://github.com/agntcy/dir/compare/v1.4.0...v1.5.0

🤝 Community & Support

- [Repository](https://github.com/agntcy/dir)

- [Discussions](https://github.com/agntcy/dir/discussions)

- [Documentation](https://dir.agntcy.org/)

- [Quick Start](https://dir.agntcy.org/latest/dir/dir-quickstart/)

🙏 Acknowledgments

Thank you to all contributors who made this release possible! Special thanks to the community for

feedback, bug reports, and feature requests that helped shape this release.

What's Changed

</summary>

• docs(dir): update release document by @tkircsi in #1552•

• fix(cli): completion context skip by @tkircsi in #1566•

• fix(dir): fix brew formula v1.4 by @csirmazbendeguz in #1567•

• chore(dirctl): update brew formula to v1.4.0 by @build-agntcy in #1568•

• chore(dir): revert fix brew formula v1.4 (#1567) by @csirmazbendeguz in #1569•

• chore(deps): update github actions by @agntcy-automation[bot] in #1565•

• chore(deps): update module github.com/spiffe/spire to v1.15.1 by @agntcy-automation[bot] in #1563•

• chore(deps): update go patches by @agntcy-automation[bot] in #1562•

• chore(deps): update busybox docker tag to v1.38.0 by @agntcy-automation[bot] in #1564•

• chore(cli/importer): bump dir-importer and adapt CLI to the new enricher config API by @paralta in #1570•

• chore(deps): update module github.com/agntcy/dir-mcp to v1.3.1 by @agntcy-automation[bot] in #1561•

• chore(deps): update postgresql by @agntcy-automation[bot] in #1560•

• feat(proto/catalog): add AI Catalog models and AIFinderService proto by @paralta in #1579•

• feat(dir/helm): follow up prod changes by @tkircsi in #1580•

• chore(deps): update module github.com/quic-go/quic-go to v0.59.1 [security] by @agntcy-automation[bot] in #1583•

• feat(docs): migrating docs site to dir repo by @lgecse in #1585•

• feat(dir/server): expose an AI Finder HTTP API over a grpc-gateway sidecar by @paralta in #1582•

• chore(docs): updating documentation content by @keraron in #1589•

• feat(api): add aicatalog wellknown endpoint by @ramizpolic in #1590•

• fix(api): resolve config unittests by @ramizpolic in #1592•

• feat(docs): migrate docs site to dir repo by @lgecse in #1591•

• feat(docs): add main page, community page and re-organize the site by @lgecse in #1594•

• feat(dir/server): add AI Finder UI by @akijakya in #1595•

• feat(dir/api, dir/cli): add AI Finder agent export by @akijakya in #1610•

• chore(deps): update go patches by @agntcy-automation[bot] in #1602•

• fix(gateway): enable authenticated client usage in gateway by @ramizpolic in #1614•

• feat(docs): add dev(main) and latest(vX.Y.Z) to docs deployment by @lgecse in #1611•

• feat(dir/cli, ci): add Agent Skill import workflow by @akijakya in #1617•

• chore(docs): updating reused docs and links by @keraron in #1615•

• feat(api): add full record to ai catalog mappings by @ramizpolic in #1609•

• feat(gateway/ui): align AI Catalog UI to Figma Phoenix design by @vaesposito in #1622•

• chore(catalog): resolve well-known identifiers and identity by @ramizpolic in #1623•

• fix(helm): drop unused federatesWith spire config for services by @ramizpolic in #1625•

• chore(docs): major refactor of the main page by @lgecse in #1619•

• chore(deps): update module github.com/sigstore/sigstore-go to v1.2.1 by @agntcy-automation[bot] in #1636•

• chore(deps): update module github.com/mikefarah/yq/v4 to v4.53.3 by @agntcy-automation[bot] in #1634•

• chore(deps): update helm release zot to v0.1.117 by @agntcy-automation[bot] in #1632•

• chore(deps): update module buf.build/gen/go/agntcy/oasf-sdk/protocolbuffers/go to v1.36.11-20260610090943-03acfe1f6b7e.1 by @agntcy-automation[bot] in #1633•

• chore(deps): update github actions by @agntcy-automation[bot] in #1631•

• perf(ui): faster AI Catalog first load with paginated initial fetch by @akijakya in #1638•

• fix(dirctl): latest brew formulae missing env by @arpad-csepi in #1608•

• chore(docs): verifying docs by @keraron in #1639•

• chore(deps): update postgresql by @agntcy-automation[bot] in #1630•

• chore(docs): ai catalog links by @keraron in #1645•

• feat(dir): add SKILL.md file by @adamtagscherer in #1640•

• chore(docs): website main page graph update by @lgecse in #1647•

• chore(docs): further diagram updates by @keraron in #1650•

• feat(ci): docs CI update by @lgecse in #1649•

• chore(docs): adding ARD spec by @keraron in #1652•

• fix(dir): ai catalog name by @keraron in #1654•

• docs(docs): remove duplicate validation page and consolidate CLI install instructions by @paralta in #1646•

• fix(docs): adds back header shadow by @lgecse in #1655•

• fix(ci): harden import-records workflow for nightly catalog sync by @akijakya in #1651•

• docs(docs/get-started): trim and reorder the Get Started pages for easier onboarding by @paralta in #1656•

• perf(ui): add static asset cache headers, gzip, and self-hosted fonts by @akijakya in #1653•

• docs(dir): prune outdated docs by @paralta in #1657•

• chore(docs): updating intro paragraph by @keraron in #1659•

• feat(ui): add About page, header link, and favicon by @akijakya in #1658•

• release(dir): prepare api release v1.5.0 by @csirmazbendeguz in #1660•

• chore(docs): updating intro paragraph by @keraron in #1661•

• chore(deps): update ghcr.io/project-zot/zot docker tag to v2.1.17 by @agntcy-automation[bot] in #1664•

• chore(deps): update docker.io/bitnami/postgresql:latest docker digest to f60aa24 by @agntcy-automation[bot] in #1662•

• chore(dir/deps): update ghcr.io/grpc-ecosystem/grpc-health-probe docker tag to v0.4.52 by @agntcy-automation[bot] in #1663•

• release(dir): prepare server release v1.5.0 by @csirmazbendeguz in #1665•

• chore(dir): update go to v1.26.4 by @csirmazbendeguz in #1668•

• chore(dir): update dependencies by @csirmazbendeguz in #1669•

</details>

---

#dir #release #v1.5.0 #ai-catalog #ard-spec #dashboard #testbed

Version: v1.5.0

Date: 2026-06-17

Status: Released

Breaking: Yes

Components: Core

Authors: @tkircsi, @csirmazbendeguz, @build, @agntcy, @paralta, @lgecse, @keraron, @ramizpolic, @akijakya, @vaesposito, @arpad, @adamtagscherer

PRs:b18b5a2

Compare: Previous version

Docs

Release PR

Compare

release · slim · slim-service-v0.10.0 · 2026-06-17

slim-service-v0.10.0

# Added

- add edge connections ([#1741](https://github.com/agntcy/slim/pull/1741))

- *(websocket)* Enable the compilation of data-plane for wasm32 ([#1695](https://github.com/agntcy/slim/pull/1695))

- *(peer-sync)* subscription synchronization ([#1705](https://github.com/agntcy/slim/pull/1705))

- e2e header integrity validation ([#1677](https://github.com/agntcy/slim/pull/1677))

- *(datapath)* add peer discovery module with static backend ([#1696](https://github.com/agntcy/slim/pull/1696))

# Other

- remove link recovery mechanism ([#1737](https://github.com/agntcy/slim/pull/1737))

Version: slim-service-v0.10.0

Date: 2026-06-17

Status: Released

Breaking: Yes

Components: Core

Authors:

PRs:694668b

Docs

Release PR

release · slim · slim-signal-v0.1.10 · 2026-06-17

slim-signal-v0.1.10

# Added

- *(websocket)* Enable the compilation of data-plane for wasm32 ([#1695](https://github.com/agntcy/slim/pull/1695))

Version: slim-signal-v0.1.10

Date: 2026-06-17

Status: Released

Breaking: Yes

Components: Core

Authors:

PRs:694668b

Docs

Release PR

release · slim · slim-session-v0.3.0 · 2026-06-17

slim-session-v0.3.0

# Added

- *(websocket)* Enable the compilation of data-plane for wasm32 ([#1695](https://github.com/agntcy/slim/pull/1695))

- e2e header integrity validation ([#1677](https://github.com/agntcy/slim/pull/1677))

# Other

- *(session)* remove SessionTransmitter, return SessionOutput from layers ([#1702](https://github.com/agntcy/slim/pull/1702))

Version: slim-session-v0.3.0

Date: 2026-06-17

Status: Released

Breaking: Yes

Components: Core

Authors:

PRs:694668b

Docs

Release PR

release · slim · slim-mls-v0.2.0 · 2026-06-17

slim-mls-v0.2.0

# Added

- *(websocket)* Enable the compilation of data-plane for wasm32 ([#1695](https://github.com/agntcy/slim/pull/1695))

- e2e header integrity validation ([#1677](https://github.com/agntcy/slim/pull/1677))

Version: slim-mls-v0.2.0

Date: 2026-06-17

Status: Released

Breaking: Yes

Components: Core

Authors:

PRs:694668b

Docs

Release PR

release · slim · slim-tracing-v0.4.0 · 2026-06-17

slim-tracing-v0.4.0

# Added

- *(websocket)* Enable the compilation of data-plane for wasm32 ([#1695](https://github.com/agntcy/slim/pull/1695))

Version: slim-tracing-v0.4.0

Date: 2026-06-17

Status: Released

Breaking: Yes

Components: Core

Authors:

PRs:694668b

Docs

Release PR

release · coffeeAgntcy · 0.1.1 · 2026-05-29

0.1.1

0.1.1 (2026-05-28)

Patch release: **authenticated Agentic Workflows API**, **Helm/KinD fixes** for workflows and SLIM, **Colombia farm weather-aware inventory**, and **Docker/supply-chain hardening**.

# Summary

• *Breaking / migration (read first)**

<summary>WORKFLOW_API_KEY required for Agentic Workflows API and UI</summary>

- Workflow instance **POST**, **GET**, **DELETE**, and internal **POST …/events/** now require a shared secret header.

- **`lungo/.env`**: set `WORKFLOW_API_KEY` (and `WORKFLOW_API_URL` for agents emitting events).

- **`frontend/.env`**: set `VITE_AGENTIC_WORKFLOWS_API_KEY` to the **same** value as the backend key.

- Docker Compose and Helm templates fail fast if the key is unset.

- Introduced in [#571](https://github.com/agntcy/coffeeAgntcy/pull/571); UI chart wiring in [#601](https://github.com/agntcy/coffeeAgntcy/pull/601).

</details>

<summary>Workflow instance cleanup — authenticated DELETE endpoint</summary>

- Leaving a workflow view in the UI triggers **DELETE** on the workflow instance so in-memory state is released.

- DELETE uses the same API key as other workflow-instance operations ([#571](https://github.com/agntcy/coffeeAgntcy/pull/571)).

</details>

<summary>KinD / Helm — agentic-workflows NodePort 30083 → 30084</summary>

- Avoids a port clash with the Lungo UI service (UI stays on **30083**; API moves to **30084**).

- `lungo-local-cluster` default `agenticWorkflowsApiUrl` is `http://localhost:30084`.

- Part of [#597](https://github.com/agntcy/coffeeAgntcy/pull/597); refresh KinD port-forwards after upgrade.

</details>

<summary>Helm chart bumps — ui 0.1.1, local-cluster 0.4.0, service subcharts 0.1.1</summary>

- **`lungo-ui@0.1.1`** — workflow API key passed into the UI build via ConfigMap.

- Lungo agent/MCP/supervisor subcharts **0.1.0 → 0.1.1**; umbrella **`lungo-local-cluster@0.4.0`**.

- **`agentic-workflows-api`** dependency **0.0.2 → 0.1.0**; **`payment-mcp-server@0.1.1`** added to the umbrella chart.

- Run `helm dependency update` under `deployment/helm/local-cluster` before upgrading ([#597](https://github.com/agntcy/coffeeAgntcy/pull/597), [#601](https://github.com/agntcy/coffeeAgntcy/pull/601)).

</details>

<summary>Dependency age policy — 28-day minimum for uv and npm</summary>

- **`exclude-newer = "28 days"`** in `[tool.uv]` (Lungo, Corto, Recruiter).

- **`min-release-age=28`** in Lungo/Corto frontend `.npmrc`.

- Brand-new PyPI/npm releases are rejected until they age in ([#559](https://github.com/agntcy/coffeeAgntcy/pull/559)).

</details>

• *Migration steps**

1. Set matching workflow API credentials in backend and frontend:

# lungo/.env

WORKFLOW_API_KEY=TheAnswerIs42

WORKFLOW_API_URL=http://agentic-workflows-api:9105

# frontend/.env

VITE_AGENTIC_WORKFLOWS_API_KEY=TheAnswerIs42

2. Refresh env templates on upgrade:

cp coffeeAGNTCY/coffee_agents/lungo/.env.example coffeeAGNTCY/coffee_agents/lungo/.env

cp coffeeAGNTCY/coffee_agents/lungo/frontend/.env.example coffeeAGNTCY/coffee_agents/lungo/frontend/.env

3. **Helm / KinD:** upgrade to **`lungo-local-cluster@0.4.1`**, run `helm dependency update`, use NodePort **30084** for the API (or port-forward):

kubectl port-forward svc/lungo-local-cluster-agentic-workflows-api 9105:9105

4. **Docker:** rebuild after pull — root `.dockerignore`, `uv` base images, and BuildKit cache paths changed ([#600](https://github.com/agntcy/coffeeAgntcy/pull/600), [#581](https://github.com/agntcy/coffeeAgntcy/pull/581), [#596](https://github.com/agntcy/coffeeAgntcy/pull/596)):

docker compose --profile frontend up --build

• *Highlights**

<summary>Authenticated workflow API — shared key and instance lifecycle</summary>

- End-to-end protection for workflow-instance APIs and UI calls.

- Prevents unauthenticated instance creation and event posts; enables safe cleanup via DELETE ([#571](https://github.com/agntcy/coffeeAgntcy/pull/571)).

</details>

<summary>Dedicated agentic-workflows ingress on KinD</summary>

- Agentic Workflows API can be exposed on its own Ingress instead of sharing the UI ingress workaround ([#597](https://github.com/agntcy/coffeeAgntcy/pull/597)).

</details>

<summary>Colombia farm — weather MCP drives inventory yield</summary>

- Weather service MCP results are passed into the inventory prompt for weather-aware yield estimates ([#369](https://github.com/agntcy/coffeeAgntcy/pull/369)).

</details>

<summary>CI stability — transport socket teardown in tests</summary>

- Test fixtures close transport sockets on teardown to avoid GC warnings that fail CI ([#564](https://github.com/agntcy/coffeeAgntcy/pull/564)).

</details>

<summary>Supply chain & Docker — age limits, slimmer context, faster agent builds</summary>

- 28-day minimum package age for `uv` and npm ([#559](https://github.com/agntcy/coffeeAgntcy/pull/559)).

- Root `.dockerignore` ([#600](https://github.com/agntcy/coffeeAgntcy/pull/600)), official `uv` base images ([#581](https://github.com/agntcy/coffeeAgntcy/pull/581)), per-project BuildKit caches ([#596](https://github.com/agntcy/coffeeAgntcy/pull/596)).

- Helm: SLIM shared-secret precedence fix ([#599](https://github.com/agntcy/coffeeAgntcy/pull/599)).

</details>

# Dependencies

| Component | 0.1.0 | 0.1.1 |

| --- | --- | --- |

| `uv` policy (`exclude-newer`, Lungo/Corto/Recruiter) | — | **28 days** |

| npm policy (`min-release-age`, Lungo/Corto frontends) | — | **28 days** |

| `@open-ui-kit/core` (Lungo `package-lock.json`) | 1.4.0 | **1.4.2** |

| `styled-components` (Lungo) | 6.3.11 | **6.4.0** |

| `lodash` (Lungo) | 4.17.23 | **4.18.1** |

| `postcss` (Lungo) | 8.5.6 | **8.5.10** |

| `dompurify` (Lungo) | 3.3.2 | **3.4.0** |

| `follow-redirects` (Lungo) | 1.15.11 | **1.16.0** |

| `lungo-local-cluster` Helm chart | 0.2.0 | **0.4.1** |

| `lungo-ui` Helm chart | 0.1.0 | **0.1.1** |

| Lungo service subcharts (farms, MCP, supervisors, etc.) | 0.1.0 | **0.1.1** |

| `agentic-workflows-api` Helm subchart | 0.0.2 | **0.1.0** |

Resolved **Python** pins in `lungo/uv.lock` are unchanged from 0.1.0 (`agntcy-app-sdk` 0.5.5, `a2a-sdk` 0.3.20, `ioa-observe-sdk` 1.0.41, `mcp` 1.26.0, `langgraph` 1.0.7). The lockfile records the new **28-day** `exclude-newer-span` metadata from [#559](https://github.com/agntcy/coffeeAgntcy/pull/559).

# Built With

(Versions from `coffeeAGNTCY/coffee_agents/lungo/uv.lock` and `lungo/frontend/package-lock.json`.)

- [AGNTCY App SDK](https://github.com/agntcy/app-sdk) = v0.5.5

- [SLIM](https://github.com/agntcy/slim) = v1.0.0

- [NATS](https://github.com/nats-io/nats-server) = latest

- [A2A](https://github.com/a2aproject/a2a-python) = v0.3.20

- [MCP](https://github.com/modelcontextprotocol/python-sdk) = v1.26.0

- [LangGraph](https://github.com/langchain-ai/langgraph) = v1.0.7

- [Observe SDK](https://github.com/agntcy/observe) = 1.0.41

- [AGNTCY Identity Service SDK](https://github.com/agntcy/identity-service) = 0.0.7

- [AGNTCY Directory](https://github.com/agntcy/dir) = v1.0.0

# Changeset

<summary><a href="https://github.com/agntcy/coffeeAgntcy/pull/576">#576</a> — @pregnor — docs(README,CHANGELOG): update to 0.1.0 release</summary>

- Published the **0.1.0 — Heartbeat** changelog entry and aligned root **README** “Built With” pins with Lungo lockfiles.

</details>

<summary><a href="https://github.com/agntcy/coffeeAgntcy/pull/564">#564</a> — @delthazor — Fix test flakiness by cleaning up leftover transport sockets</summary>

- Closes transport sockets on test teardown (including error paths) so GC does not emit warnings that fail CI.

</details>

<summary><a href="https://github.com/agntcy/coffeeAgntcy/pull/571">#571</a> — @delthazor — Fix backend leak by adding DELETE workflow endpoint</summary>

- Adds authenticated **DELETE** for workflow instances; UI calls it when leaving a view.

- Introduces **`WORKFLOW_API_KEY`** / **`VITE_AGENTIC_WORKFLOWS_API_KEY`** wiring across Compose, Helm, and tests.

</details>

<summary><a href="https://github.com/agntcy/coffeeAgntcy/pull/369">#369</a> — @JulianLegler — feat(colombia-farm): use weather service mcp results in inventory prompt</summary>

- Feeds weather MCP output into the Colombia farm inventory prompt for weather-aware yield estimates.

</details>

<summary><a href="https://github.com/agntcy/coffeeAgntcy/pull/581">#581</a> — @arpad-csepi — refactor: use uv docker base image for agents</summary>

- Agent Dockerfiles use the official **`uv`** image; reported ~30s faster local Compose builds for agent services.

</details>

<summary><a href="https://github.com/agntcy/coffeeAgntcy/pull/559">#559</a> — @mihaialexandrescu — feat(lungo, corto): limit release age for pulled uv and npm dependencies</summary>

- **`exclude-newer = "28 days"`** (`uv`) and **`min-release-age=28`** (npm) on Lungo and Corto frontends.

</details>

<summary><a href="https://github.com/agntcy/coffeeAgntcy/pull/596">#596</a> — @mihaialexandrescu — feat: Dockerfiles - pin uv and npm cache location and use per-project id field in Buildkit cache</summary>

- Pins **`UV_CACHE_DIR`** / npm cache paths; per-project BuildKit cache IDs (`lungo`, `corto`, `recruiter`).

</details>

<summary><a href="https://github.com/agntcy/coffeeAgntcy/pull/597">#597</a> — @pregnor — feat(lungo,age-wf): add ingress, fix port & local-cluster</summary>

- Dedicated **Ingress** for Agentic Workflows API; NodePort **30083 → 30084**; **`lungo-local-cluster@0.4.0`** with subchart **0.1.1** dependencies and **`payment-mcp-server`**.

</details>

<summary><a href="https://github.com/agntcy/coffeeAgntcy/pull/599">#599</a> — @pregnor — fix(lungo,helm): fix SLIM shared secret propagation</summary>

- Chart values can override incomplete ExternalSecrets for **`SLIM_SHARED_SECRET`**.

</details>

<summary><a href="https://github.com/agntcy/coffeeAgntcy/pull/600">#600</a> — @mihaialexandrescu — feat: add .dockerignore at repo root level</summary>

- Root **`.dockerignore`** excludes `.git`, `.venv`, pytest caches, and other build-context noise (Compose uses repo root as context).

</details>

<summary><a href="https://github.com/agntcy/coffeeAgntcy/pull/601">#601</a> — @pregnor — release(lungo,helm,ui): bump chart ->0.1.1</summary>

- **`lungo-ui@0.1.1`** and Lungo service subcharts **0.1.1** for workflow API key propagation from #571.

</details>

<summary><a href="https://github.com/agntcy/coffeeAgntcy/pull/604">#604</a> — @pregnor — release: 0.1.1</summary>

- Bumped **lungo-ui** chart in lungo-local-cluster to **0.1.1** chart version and also lungo-local-cluster to **0.4.1**.

</details>

# Contributors

• *First-time contributors** — thank you for your first merged contribution to coffeeAgntcy:

- [@JulianLegler](https://github.com/JulianLegler)

- [@arpad-csepi](https://github.com/arpad-csepi)

---

Version: 0.1.1

Date: 2026-05-29

Status: Released

Breaking: Yes

Components: Core

Authors: @0, @open, @pregnor, @delthazor, @JulianLegler, @arpad, @mihaialexandrescu

PRs:f765a48

Docs

Release PR

release · dir · v1.4.0 · 2026-05-28

v1.4.0

# 🚀 AGNTCY Dir v1.4.0 Release

This release adds annotation-based search, batch routing publish/unpublish in dirctl, reusable client configuration, and network diagnostics via dirctl doctor. It improves CLI auth behavior for local workflows, adds OpenShift Helm guidance, expands server integration testing, and continues API cleanup, reconciler credential handling, and dependency and security maintenance across the stack.

# 🌟 What's New

# Search and Server

• Add annotation-based search support (#1442)

• Add integration tests for the server module (#1093)

• Remove deprecated validator globals from core/v1 (#1495)

# CLI, Client, and Auth

• Add batch dirctl routing publish and batch unpublish (#1526, #1530)

• Introduce dirctl doctor network diagnose for network troubleshooting (#1515)

• Add reusable client configuration shared by CLI and Go client (#1496)

• Refresh expired OIDC tokens from dirctl auth status (#1516)

• Add --output-dir to the import command (#1498)

• Skip auth for local-only commands and fix local registry default port (#1471, #1473)

# Helm, Packaging, and Deployment

• Add OpenShift install support and documentation (#1423)

• Clarify auto-resolve behavior in Helm chart values comments (#1477)

• Update the Homebrew formula version (#1463)

# Reconciler and Runtime

• Enhance reconciler credential negotiation with a client config builder from context (#1499)

• Improve daemon/runtime e2e tests with better context usage and timeouts (#1513)

# Testing, CI, and Maintenance

• Handle mTLS healthchecks in e2e tests (#1550)

• Log errors in the test suite initializer (#1523)

• Fix naming test and align post–v1.3.0 cleanup (#1491, #1495)

• Fix Renovate runner (#1467)

• Bump Go toolchain to 1.26.3 (#1504, #1506)

• Continue dependency, Helm, image, Kubernetes, and GitHub Actions updates (#1455, #1456, #1479–#1549)

• Apply security updates for golang.org/x/crypto, golang.org/x/net, golang.org/x/sys, containerd, go-git, and modelcontextprotocol/registry (#1492, #1521, #1522, #1534–#1539)

What's Changed

• chore(dirctl): update brew formula to v1.3.0 by @build-agntcy in #1463•

• chore(deps): update helm release zot to v0.1.112 by @agntcy-automation[bot] in #1456•

• chore(deps): update github/codeql-action action to v4.35.3 by @agntcy-automation[bot] in #1455•

• chore(api): remove validator globals by @akijakya in #1458•

• feat(helm): add OpenShift install support by @MichaelClifford in #1423•

• fix(dir): fix renovate runner by @tkircsi in #1467•

• feat(dir): add annotation-based search support by @vivekkrishna in #1442•

• fix(cli): skip auth for local commands by @tkircsi in #1471•

• fix(cli): local registry default port fix by @tkircsi in #1473•

• feat(dir): add integration tests for server by @csirmazbendeguz in #1093•

• chore(deps): update module github.com/libp2p/go-libp2p-kad-dht to v0.39.2 by @agntcy-automation[bot] in #1481•

• chore(deps): update github actions by @agntcy-automation[bot] in #1480•

• chore(deps): update postgresql by @agntcy-automation[bot] in #1479•

• chore(deps): update helm release postgresql to v18.6.4 by @agntcy-automation[bot] in #1493•

• chore(deps): update module github.com/go-git/go-git/v5 to v5.19.0 [security] by @agntcy-automation[bot] in #1492•

• chore(deps): update helm release zot to v0.1.113 by @agntcy-automation[bot] in #1494•

• test(dir): fix naming test by @adamtagscherer in #1491•

• refactor(dir): cleanup and v1.3.0 release alignment by @paralta in #1495•

• feat(client/cli): reusable client configuration by @tkircsi in #1496•

• docs(helm): clarify auto-resolve behavior in chart values comments by @z-krunal in #1477•

• feat(dir/cli): add output dir option to import command by @paralta in #1498•

• refactor(dir/reconciler): enhance credential negotiation by introducing client config builder from context by @paralta in #1499•

• chore(deps): update module golang.org/x/crypto to v0.51.0 by @agntcy-automation[bot] in #1509•

• test(tests/e2e/daemon): attempt to make runtime discovery test reliable by pre-pushing record by @paralta in #1513•

• chore(deps): update postgresql by @agntcy-automation[bot] in #1503•

• chore(deps): update module golang.org/x/mod to v0.36.0 by @agntcy-automation[bot] in #1510•

• chore(deps): update actions/create-github-app-token action to v3.2.0 by @agntcy-automation[bot] in #1508•

• chore(deps): update module k8s.io/apimachinery to v0.36.1 by @agntcy-automation[bot] in #1507•

• chore(deps): update go patches by @agntcy-automation[bot] in #1505•

• chore(deps): update golang docker tag to v1.26.3 by @agntcy-automation[bot] in #1506•

• chore(deps): update gcr.io/distroless/static:nonroot docker digest to 963fa6c by @agntcy-automation[bot] in #1502•

• chore(deps): update dependency go to v1.26.3 by @agntcy-automation[bot] in #1504•

• feat(cli): auth status refresh expired tokens by @tkircsi in #1516•

• chore(deps): update module github.com/modelcontextprotocol/registry to v1.7.9 [security] by @agntcy-automation[bot] in #1522•

• chore(deps): update module github.com/go-git/go-git/v5 to v5.19.1 [security] by @agntcy-automation[bot] in #1521•

• fix(tests): log errors in test suite initializer by @csirmazbendeguz in #1523•

• feat(cli): support batch publish via dirctl routing publish by @tkircsi in #1526•

• feat(cli): support batch unpublish by @tkircsi in #1530•

• chore(deps): update module github.com/containerd/containerd/v2 to v2.3.1 [security] by @agntcy-automation[bot] in #1535•

• chore(deps): update module golang.org/x/crypto to v0.52.0 [security] by @agntcy-automation[bot] in #1536•

• chore(deps): update module github.com/containerd/containerd to v1.7.32 [security] by @agntcy-automation[bot] in #1534•

• chore(deps): update module golang.org/x/net to v0.55.0 [security] by @agntcy-automation[bot] in #1538•

• chore(deps): update zot by @agntcy-automation[bot] in #1546•

• chore(deps): update module golang.org/x/sys to v0.44.0 [security] by @agntcy-automation[bot] in #1539•

• chore(deps): update module github.com/spiffe/spire to v1.15.0 by @agntcy-automation[bot] in #1549•

• chore(deps): update go patches by @agntcy-automation[bot] in #1544•

• chore(deps): update module github.com/libp2p/go-libp2p-kad-dht to v0.40.0 by @agntcy-automation[bot] in #1548•

• chore(deps): update helm release postgresql to v18.6.7 by @agntcy-automation[bot] in #1545•

• chore(deps): update github actions by @agntcy-automation[bot] in #1547•

• feat(cli): introduce the dirctl doctor network diagnose command by @tkircsi in #1515•

• fix(dir): handle mTLS healthchecks in e2e tests by @csirmazbendeguz in #1550•

• release(dir): prepare api release v1.4.0 by @csirmazbendeguz in #1551•

• release(dir): prepare server release v1.4.0 by @csirmazbendeguz in #1554•

New Contributors

• @MichaelClifford made their first contribution in #1423•

• @vivekkrishna made their first contribution in #1442•

• @z-krunal made their first contribution in #1477•

Full Changelog: https://github.com/agntcy/dir/compare/v1.3.0...v1.4.0

Version: v1.4.0

Date: 2026-05-28

Status: Released

Breaking: Yes

Components: Core

Authors: @build, @agntcy, @akijakya, @MichaelClifford, @tkircsi, @vivekkrishna, @csirmazbendeguz, @adamtagscherer, @paralta, @z

PRs:1317ce1

Compare: Previous version

Docs

Release PR

Compare

release · observe · sdk-v1.0.42 · 2026-05-28

sdk-v1.0.42

What's Changed

• chore(deps): Bump step-security/harden-runner from 2.14.1 to 2.14.2 by @dependabot[bot] in #103•

• Support parallel agent and tools invocation within the SDK by @91pavan in #104•

• feat: update MCP instrumentation by @91pavan in #110•

• feat: update old reference in the code by @91pavan in #112•

• fix: send_message_streaming coroutine bug by @91pavan in #115•

• fix: slim instrumentation destination param by @webus in #123•

New Contributors

• @webus made their first contribution in #123•

Full Changelog: https://github.com/agntcy/observe/compare/sdk-v1.0.35...sdk-v1.0.42

Version: sdk-v1.0.42

Date: 2026-05-28

Status: Released

Breaking: Yes

Components: Core

Authors: @dependabot, @91pavan, @webus

PRs:bf5958e

Compare: Previous version

Docs

Release PR

Compare

release · coffeeAgntcy · 0.1.0 · 2026-05-19

0.1.0

0.1.0 — Heartbeat (2026-05-19)

Milestone release: **live workflow-instance events** on the backend and **dynamic graph animations** in the Lungo UI, plus agentic-workflows APIs, SSE streaming, SLIM-first transport, and A2A card-driven transport selection.

# Summary

• *Breaking / migration (read first)**

- **Lungo transport defaults to SLIM** — `DEFAULT_MESSAGE_TRANSPORT` is now `SLIM` (was NATS). Configure **`SLIM_SERVER`**, **`NATS_SERVER`**, and **`SLIM_SHARED_SECRET`** (required; use a random 32+ character value). `TRANSPORT_SERVER_ENDPOINT` remains supported in Compose/Helm for compatibility; prefer the new variables in `.env` (see `.env.example`).

- **Split frontend configuration** — all `VITE_*` variables belong in **`lungo/frontend/.env`** only (copy from `frontend/.env.example`). Do not duplicate them in `lungo/.env`.

- **Docker Compose profiles** — `COMPOSE_PROFILES` includes `frontend` by default. For local Vite dev (`npm run dev`), **omit** `frontend` from `COMPOSE_PROFILES` and run Compose + Vite as described in the [Lungo README](coffeeAGNTCY/coffee_agents/lungo/README.md).

- **CORS** — optional `CORS_ALLOWED_ORIGINS` (comma-separated browser origins). When unset, defaults are `http://localhost:3000` and `http://127.0.0.1:3000`.

- **AGNTCY Directory v1.0.0** — Lungo dev deps pin `agntcy-dir==1.0.0`; refresh local Directory/OASF tooling if you push or query records.

- **Helm chart versions** — Lungo agent/MCP subcharts bump to **0.1.0**; umbrellas **`lungo-local-cluster`** and **`corto-local-cluster`** to **0.2.0**; new **`agentic-workflows-api@0.0.2`**; **`corto-exchange@0.0.8`**. Run `helm dependency update` on umbrella charts before upgrade.

- **Pinned LLM stack (Corto/Recruiter)** — `litellm` and `langchain-litellm` are exact-pinned (see Dependencies).

• *Migration steps**

1. From `coffeeAGNTCY/coffee_agents/lungo/`:

```sh

cp .env.example .env

cp frontend/.env.example frontend/.env

```

2. In `lungo/.env`, set transport (minimal SLIM setup):

```env

DEFAULT_MESSAGE_TRANSPORT=SLIM

SLIM_SERVER="slim:46357"

NATS_SERVER="nats:4222"

SLIM_SHARED_SECRET="<random-32plus-chars>"

```

For NATS instead: `DEFAULT_MESSAGE_TRANSPORT=NATS` and ensure NATS is running.

3. In `lungo/frontend/.env`, point the UI at the new API (example):

```env

VITE_AGENTIC_WORKFLOWS_API_URL=http://127.0.0.1:9105

```

4. Reconcile `COMPOSE_PROFILES` with how you run the UI (Compose `frontend` profile vs `npm run dev`).

5. Reinstall Python deps: `uv sync` in `lungo/`, `corto/`, and `recruiter/` as needed.

6. If the UI is not on port 3000, set `CORS_ALLOWED_ORIGINS` to your browser origin. Example: `http://localhost:1234`.

7. **Helm / KinD:** upgrade `lungo-local-cluster` to **0.2.0**, run `helm dependency update`, and set per-subchart `config.slimServer`, `config.natsServer`, and `SLIM_SHARED_SECRET` (via `externalSecrets` or `config.slimSharedSecret`). See `lungo/deployment/helm/local-cluster/README.md`.

• *Highlights**

- **Workflow instance events** — versioned JSON Schema, in-memory state store, middleware + REST/SSE endpoints, and UI consumption for live progress.

- **Dynamic Lungo graph** — React Flow animations driven by live workflow-instance events.

- **Agentic workflows API** — catalog/sub-API, LHS menu wired to workflows, workflow-context propagation across supervisors.

- **A2A card-driven transport** — multi-transport agent cards; supervisors use `A2AClientFactory` and async iterator messaging.

- **SLIM transport in Compose/Helm** — SLIM-first defaults, shared-secret wiring, and chart bumps for local-cluster installs.

- **Recruiter** — Claude Code plugin for Directory discovery and A2A messaging.

- **Separate UI Docker profile** — optional `frontend` Compose profile and documented local UI workflow.

# Dependencies

| Component | 0.0.77 | 0.1.0 |

| --- | --- | --- |

| [AGNTCY App SDK](https://github.com/agntcy/app-sdk) (Lungo) | 0.4.7 | **0.5.5** |

| [A2A Python SDK](https://github.com/a2aproject/a2a-python) (Lungo) | 0.3.2 | **0.3.20** |

| [AGNTCY Directory](https://github.com/agntcy/dir) (`agntcy-dir`, Lungo dev) | ≥ 0.6.0 | **1.0.0** |

| [Observe SDK](https://github.com/agntcy/observe) (Lungo) | 1.0.34 | **1.0.41** |

| `slim-bindings` / `slima2a` (Lungo) | — | **1.1.0** / **0.3.0** |

| `langchain-litellm` (Lungo, Corto, Recruiter) | ≥ 0.3.0 | **== 0.3.5** |

| `litellm` (Corto, Recruiter) | ≥ 1.82.0 | **== 1.82.1** |

| `axios` (Corto/Lungo frontends) | ^1.13.0 | **1.13.5** |

# Changeset

| ID | Author | Title |

| --- | --- | --- |

| [#492](https://github.com/agntcy/coffeeAgntcy/pull/492) | codyhartsook | hotfix(litellm): pin litellm version in corto and recruter to 1.82.1 |

| [#494](https://github.com/agntcy/coffeeAgntcy/pull/494) | delthazor | (fix) Update incorrect OASF records |

| [#493](https://github.com/agntcy/coffeeAgntcy/pull/493) | codyhartsook | chore: pin langchain-litellm to 0.5.3 |

| [#491](https://github.com/agntcy/coffeeAgntcy/pull/491) | mihaialexandrescu | chore: use tests folder name also under Recruiter |

| [#489](https://github.com/agntcy/coffeeAgntcy/pull/489) | mihaialexandrescu | feat: update pytest integration tests command |

| [#490](https://github.com/agntcy/coffeeAgntcy/pull/490) | delthazor | Update OASF push script |

| [#501](https://github.com/agntcy/coffeeAgntcy/pull/501) | misi-bp | [Docker]: Separate UI profile & add UI local running |

| [#503](https://github.com/agntcy/coffeeAgntcy/pull/503) | pregnor | chore(dep,lungo,recruiter): upgrade dir to v1.0.0 |

| [#504](https://github.com/agntcy/coffeeAgntcy/pull/504) | pregnor | chore(lungo,frontend): sync frontend deps |

| [#502](https://github.com/agntcy/coffeeAgntcy/pull/502) | pregnor | test(recruiter,cache): fix flaky cache hit time |

| [#468](https://github.com/agntcy/coffeeAgntcy/pull/468) | delthazor | Initial approach for state message schema |

| [#498](https://github.com/agntcy/coffeeAgntcy/pull/498) | codyhartsook | Add Claude Code plugin for agent discovery and A2A messaging |

| [#507](https://github.com/agntcy/coffeeAgntcy/pull/507) | pregnor | chore(corto,lungo): pin axios to 1.13.5 |

| [#506](https://github.com/agntcy/coffeeAgntcy/pull/506) | pregnor | chore(recruiter,claude,plugin): fix abs tmp path |

| [#508](https://github.com/agntcy/coffeeAgntcy/pull/508) | pregnor | feat(lungo,schema): gen event schema types |

| [#511](https://github.com/agntcy/coffeeAgntcy/pull/511) | pregnor | feat(lungo,api,workflow): add skeleton |

| [#515](https://github.com/agntcy/coffeeAgntcy/pull/515) | pregnor | fix(api,cors): add cors origins |

| [#521](https://github.com/agntcy/coffeeAgntcy/pull/521) | pregnor | release(helm,APIs): bump CORS helm charts |

| [#517](https://github.com/agntcy/coffeeAgntcy/pull/517) | mihaialexandrescu | feat: add catalog agentic workflows subAPI endpoints |

| [#527](https://github.com/agntcy/coffeeAgntcy/pull/527) | pregnor | fix(lungo,agentic-wf): fix path instance ID |

| [#514](https://github.com/agntcy/coffeeAgntcy/pull/514) | codyhartsook | feat: enable A2A card-driven transport negotiation |

| [#513](https://github.com/agntcy/coffeeAgntcy/pull/513) | delthazor | Initial version for in-memory state storage |

| [#505](https://github.com/agntcy/coffeeAgntcy/pull/505) | delthazor | (fix) Auction test flakiness fix for timeout errors |

| [#526](https://github.com/agntcy/coffeeAgntcy/pull/526) | pregnor | release(lungo,SLIM): update compose,charts with new SLIM transport |

| [#534](https://github.com/agntcy/coffeeAgntcy/pull/534) | pregnor | test(lungo): fix plugin teardown issue |

| [#533](https://github.com/agntcy/coffeeAgntcy/pull/533) | delthazor | Remove workflow minimum requirement |

| [#535](https://github.com/agntcy/coffeeAgntcy/pull/535) | delthazor | Implement SSE endpoints |

| [#538](https://github.com/agntcy/coffeeAgntcy/pull/538) | misi-bp | feat(lungo icons): Replace icons and unify icon usage |

| [#536](https://github.com/agntcy/coffeeAgntcy/pull/536) | mihaialexandrescu | feat(lungo): add Skill for jsonschema to pydanticv2 types |

| [#547](https://github.com/agntcy/coffeeAgntcy/pull/547) | delthazor | Add test env to UI |

| [#539](https://github.com/agntcy/coffeeAgntcy/pull/539) | delthazor | Implement sub-API middleware endpoints for workflow instance states |

| [#548](https://github.com/agntcy/coffeeAgntcy/pull/548) | codyhartsook | feat(lungo): propagate workflow context across supervisors (#453) |

| [#550](https://github.com/agntcy/coffeeAgntcy/pull/550) | pregnor | chore(lungo,env): updated SLIM and NATS serveraddr |

| [#549](https://github.com/agntcy/coffeeAgntcy/pull/549) | mihaialexandrescu | feat(lungo): update left hand side menu to use agentic-workflows api |

| [#528](https://github.com/agntcy/coffeeAgntcy/pull/528) | codyhartsook | feat(lungo): emit workflow-instance state progress via A2A middleware (#453) |

| [#554](https://github.com/agntcy/coffeeAgntcy/pull/554) | mihaialexandrescu | fix(lungo): add scenario field to event stream metadata |

| [#560](https://github.com/agntcy/coffeeAgntcy/pull/560) | pregnor | docs(README): add milestones as planned |

| [#551](https://github.com/agntcy/coffeeAgntcy/pull/551) | delthazor | Implement UI workflow instance event endpoints |

| [#566](https://github.com/agntcy/coffeeAgntcy/pull/566) | misi-bp | fix(heartbreak-release): Icons reset |

| [#570](https://github.com/agntcy/coffeeAgntcy/pull/570) | pregnor | refactor(wf,lhs): patterns, docs, lhs menu (John) |

| [#572](https://github.com/agntcy/coffeeAgntcy/pull/572) | codyhartsook | feat(fe,graph): dynamic animations from live workflow events |

| [#573](https://github.com/agntcy/coffeeAgntcy/pull/573) | isaacc2 | docs(README): corrected grammar |

# Contributors

• *First-time contributors** — thank you for your first merged contribution to coffeeAgntcy:

- [@isaacc2](https://github.com/isaacc2)

---

Version: 0.1.0

Date: 2026-05-19

Status: Released

Breaking: Yes

Components: Core

Authors: @0, @isaacc2

PRs:9c952e2

Docs

Release PR

release · dir · v1.3.0 · 2026-05-06

v1.3.0

# 🚀 AGNTCY Dir v1.3.0 Release

This release completes the split of several Directory components into dedicated repositories, introduces a staged API/server release flow, adds runtime discovery and workload APIs, improves `dirctl` daemon and export workflows, and continues Helm, reconciler, CI, dependency, and security maintenance across the stack.

# 🌟 What's New

# Repository Split and Release Flow

• Move the runtime module out to the dedicated `agntcy/dir-runtime` repository (#1416)

• Remove the in-repo importer module now that `dir-importer` is released independently (#1401)

• Remove the in-repo MCP package now that `dir-mcp` is released independently (#1406)

• Migrate GUI and SDK ownership out of the `dir` repository (#1403, #1323)

• Split API and server module release preparation so API modules can be released without root artifacts, while server releases produce images, binaries, and Helm artifacts (#1446, #1447, #1450, #1451, #1461)

• Add Renovate grouping for independently released AGNTCY split repository dependencies (#1443)

# APIs and Validation

• Add runtime `DiscoveryService` and `Workload` APIs to the Directory API surface (#1444)

• Inject the OASF validator and deprecate global validator initialization (#1421)

• Keep API/client/utils at `v1.3.0` for downstream split repositories (#1451)

# CLI, Daemon, and Export

• Add `dirctl export` support (#1319)

• Add export formats for A2A, agent skill, and MCP GitHub Copilot output (#1327, #1330)

• Add batch export from search results (#1338)

• Cache OIDC tokens per issuer and auto-refresh cached credentials (#1400, #1328)

• Improve stale and expired auth command help/error messages (#1324, #1325)

• Embed Zot and enable Regsync in the `dirctl daemon` flow (#1422, #1429)

• Add insecure defaults to daemon configuration for local development scenarios (#1432)

# Helm, Packaging, and Deployment

• Replace the local Envoy authz dependency with the `oidc-gateway` OCI chart and decouple OIDC gateway wiring (#1373, #1378, #1384)

• Add dedicated Envoy timeout handling for `EventService/Listen` (#1334)

• Set the testbed bootstrap address as the default in Helm (#1387)

• Refresh Zot, PostgreSQL, OIDC gateway, Dockerfile, and base image versions (#1368, #1370, #1374, #1391, #1412, #1440, #1441)

• Update the Homebrew formula and fix the `dirctl` path in CI (#1434, #1435)

# Reconciler, Server, and Importer

• Enable reconciler sync from public OCI registries without credential negotiation (#1375)

• Use `fork` to execute Regsync in the reconciler (#1428)

• Use BusyBox for coverage images and reconciler containers (#1315, #1367)

• Improve importer deduplication across all supported types before the importer split (#1331)

• Remove the third-party `mcphost` dependency from importer code before the importer split (#1332)

• Increase the enricher rate limit (#1426)

# Testing, CI, and Maintenance

• Expose the testing framework as a package (#1437)

• Move flaky export tests and improve e2e stability (#1311, #1395)

• Remove SDK-specific steps from the Renovate sync workflow after SDK migration (#1329)

• Remove server build steps from the reusable release workflow (#1322)

• Add server-only root artifact release behavior (#1446)

• Fix Renovate errors and continue dependency, action, Helm, image, Kubernetes, and Go patch updates (#1337 and dependency PRs)

• Apply security updates for `go-git`, `azure/go-ntlmssp`, and `distribution/distribution` (#1430, #1431, #1454)

# What's Changed

• release(dir): prepare release/server/v1.3.0 (#1461)

• feat(tests): expose testing framework as a package (#1437)

• chore(dir): bump deps (#1460)

• fix(dir): linter issues (#1459)

• chore(deps): update module github.com/distribution/distribution/v3 to v3.1.1 [security] (#1454)

• release(dir/pi): prepare release/api/v1.3.0 (#1451)

• fix(ci): remove multimod verify (#1450)

• chore(ci): separate api and server release (#1447)

• chore(dir): tag only server modules and releae artefacts (#1446)

• chore(dir): add agntcy split repos to renovate (#1443)

• refactor(api): add runtime DiscoveryService and Workload API (#1444)

• chore(deps): update helm release postgresql to v18.6.2 (#1440)

• chore(deps): update go patches (#1439)

• chore(deps): update helm release zot to v0.1.109 (#1441)

• chore: update brew formula version (#1435)

• fix(ci): brew dirctl path (#1434)

• refactor(api): inject Validator, deprecate global init (#1421)

• fix(dirctl): add insecure to daemon default config (#1432)

• chore(deps): update module github.com/go-git/go-git/v5 to v5.18.0 [security] (#1431)

• chore(deps): update module github.com/azure/go-ntlmssp to v0.1.1 [security] (#1430)

• feat(dirctl): enable regsync in daemon (#1429)

• feat(dirctl): embed zot into daemon subcommand (#1422)

• refactor(reconciler): use fork to execute regsync (#1428)

• refactor(dir): remove outdated docs and unused variables (#1427)

• chore: increate enricher ratelimit (#1426)

• chore(deps): update module github.com/spiffe/spire to v1.14.6 (#1425)

• feat(client/cli): cache OIDC tokens per issuer (#1400)

• refactor(dir): remove stale docs, tasks, and references (#1417)

• refactor(dir/runtime): move runtime module to `agntcy/dir-runtime` repo (#1416)

• chore(deps): update golang:1.26.2-bookworm docker digest to 47ce563 (#1411)

• chore(deps): update kubernetes to v0.36.0 (#1413)

• chore(deps): update module buf.build/go/protovalidate to v1.2.0 (#1414)

• chore(deps): update module github.com/libp2p/go-libp2p-pubsub to v0.16.0 (#1415)

• chore(deps): update postgresql (#1412)

• chore: remove mcp package (#1406)

• refactor(importer): remove (#1401)

• chore(dir): migrate GUI (#1403)

• feat(dir/helm): set testbed bootstrap address as default (#1387)

• chore(deps): update postgresql (#1391)

• chore(deps): update quay.io/coreos/etcd docker tag to v3.6.10 (#1392)

• chore(deps): update module github.com/mark3labs/mcp-go to v0.49.0 (#1394)

• chore(deps): update actions/setup-node action to v6.4.0 (#1393)

• fix(e2e/export): move export batch test (#1395)

• feat(reconciler/sync): enable sync from public OCI registries without credential negotiation (#1375)

• feat(dir/helm): decouple oidc-gateway (#1384)

• fix(importer): config file (#1380)

• chore(dir/helm): remove oidc auth wiring (#1378)

• chore(helm): bump oidc-gateway chart version (#1374)

• feat(helm): replace envoy-authz local dep with oidc-gateway OCI chart (#1373)

• feat(cli/export): add batch export from search results (#1338)

• refactor(importer): remove mcphost 3rd party lib (#1332)

• fix(e2e): flaky tests (#1311)

• chore(deps): update helm release zot to v0.1.106 (#1370)

• chore(dir): bump zot image version (#1368)

• chore(deps): update postgresql (#1343)

• refactor(server): use busybox for coverage docker base image (#1367)

• feat(importer): dedup checker to work with all supported types (#1331)

• chore(deps): update docker/dockerfile:1 docker digest to 2780b5c (#1341)

• chore(deps): update module github.com/modelcontextprotocol/registry to v1.6.0 (#1348)

• chore(deps): update go patches (#1345)

• chore(deps): update github actions (#1344)

• chore(deps): update module github.com/regclient/regclient to v0.11.3 (#1347)

• chore(deps): update google.golang.org/genproto/googleapis/rpc digest to afd174a (#1342)

• chore(deps): update kubernetes to v0.35.4 (#1346)

• fix(dir): fix renovate errors (#1337)

• fix(workflow): update import command to use mcp-registry type (#1335)

• feat(dir/helm): add dedicated Envoy timeout handling for EventService/Listen (#1334)

• feat(cli/export): add mcp-ghcopilot format support (#1330)

• chore(dir): remove SDK-specific steps of Renovate Sync workflow (#1329)

• feat(cli/export): add a2a and agent skill export formats (#1327)

• feat(client): auto-refresh cached OIDC credentials (#1328)

• chore(dir): migrate SDKs (#1323)

• fix(cli): expired OIDC token related error message (#1325)

• fix(cli): update stale auth command help text (#1324)

• fix(ci): update to v1.2.0 and unify dirctl path across actions and wfs (#1192)

• feat(dir/cli): add export command (#1319)

• refactor(ci): remove server build steps from reusable release workflow (#1322)

• fix(reconciler): use busybox instead of alpine (#1315)

## Full Changelog: [v1.2.0...v1.3.0](https://github.com/agntcy/dir/compare/v1.2.0...v1.3.0)

# Contributors

• @agntcy-automation

• @tkircsi

• @paralta

• @arpad-csepi

• @csirmazbendeguz

• @adamtagscherer

• @akijakya

• @agntcy-build

• @ramizpolic

Version: v1.3.0

Date: 2026-05-06

Status: Released

Breaking: Yes

Components: Core

Authors: @agntcy, @tkircsi, @paralta, @arpad, @csirmazbendeguz, @adamtagscherer, @akijakya, @ramizpolic

PRs:9fcbd5c

Docs

Release PR

release · dir · v1.2.0 · 2026-04-15

v1.2.0

# 🚀 AGNTCY Dir v1.2.0 Release

This release introduces standard OIDC authentication, alongside daemon and runtime improvements, SDK auth support, Helm and packaging enhancements, importer improvements, and continued dependency and security updates.

# 🌟 What's New

# Authentication

• Introduce OIDC-based external authorization and Dex as the shipped OIDC provider (#1034, #1216)

• Simplify the OIDC client and add device flow support (#1220)

• Add OIDC auth support for the TypeScript SDK (#1219)

• Add OIDC auth support for the Python SDK (#1201)

• Support constrained wildcard matching for GitHub workflow principals (#1167)

# CLI, Runtime, and Developer Experience

• Add the `dirctl daemon` command (#1200)

• Add daemon configuration file support (#1218)

• Wire in the runtime discovery component (#1277)

• Add runtime client methods and daemon tests (#1283)

• Add pre-commit hooks (#1209)

• Publish `dir-apiserver` binaries for multiple platforms (#1179)

# APIs, Storage, and Helm

• Add `DeleteReferrer` support (#993)

• Add SQLite support and configuration (#1195)

• Add the latest Helm releases support (#1290)

• Render routing service annotations in Helm (#1309)

• Add OASF SDK 1.0.5 support (#1298)

# Importer and Automation

• Revamp the importer module (#1092)

• Add importer file fetcher support (#1217)

• Import agent skill definitions from file (#1276)

• Follow the new OIDC pattern in the import-records workflow (#1177)

# Security and Maintenance

• Replace Docker with Moby for security hardening (#1299)

• Fix security alerts by package upgrade (#1291)

• Extend the security scanner to support more tags (#1055)

• Continue dependency, action, and image refreshes across the stack

# What's Changed

• fix(ci): enable hidden paths (#1314)

• release(dir): prepare release v1.2.0 (#1313)

• chore(deps): update postgresql (#1301)

• chore(deps): update docker/dockerfile:1 docker digest to 2780b5c (#1300)

• feat(dir/helm) render routing service annotations (#1309)

• chore(deps): update dependency astral-sh/uv to v0.11.6 (#1302)

• feat(importer): import agent skill from file (#1276)

• chore(deps): update helm release zot to v0.1.104 (#1304)

• chore(deps): update javascript (#1305)

• chore(deps): update module golang.org/x/crypto to v0.50.0 (#1307)

• chore(deps): update go patches (#1303)

• chore(deps): update github actions (#1306)

• chore(deps): replace docker with moby [security] (#1299)

• feat(deps): oasf-sdk 1.0.5 support (#1298)

• chore(dir): fix security alerts by package upgrade (#1291)

• fix(dir): fix Helm version (#1294)

• feat(dir): add latest Helm releases (#1290)

• chore(deps): update module go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp to v1.43.0 [security] (#1288)

• chore(deps): update module go.opentelemetry.io/otel/sdk to v1.43.0 [security] (#1289)

• feat(sdk/js): add OIDC auth support for TypeScript SDK (#1219)

• feat(sdk/python): add OIDC auth support for Python SDK (#1201)

• fix(dirctl): use utc timestamps for cached tokens with milliseconds (#1284)

• chore(runtime): add runtime client methods and daemon tests (#1283)

• feat(daemon): wire in runtime discovery component (#1277)

• chore(deps): update module github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream to v1.7.8 [security] (#1279)

• feat(cli/daemon): peer-ready defaults for routing (#1268)

• refactor(tests): remove e2e-production tests and update README (#1241)

• chore(deps/renovate): group postgresql bumps (#1261)

• test(dir/daemon): add cross platform tests (#1264)

• docs(dir): add dirctl daemon to README deployment section (#1263)

• chore(deps): update google.golang.org/genproto/googleapis/rpc digest to 9d38bb4 (#1262)

• chore(deps): update dependency astral-sh/uv to v0.11.3 (#1253)

• chore(deps): update module github.com/zitadel/oidc/v3 to v3.46.0 (#1258)

• chore(deps): update docker.io/bitnami/postgresql:latest docker digest to c30c796 (#1251)

• chore(deps): update helm release postgresql to v18.5.15 (#1255)

• chore(deps): update python docker tag to v3.14 (#1260)

• chore(deps): update javascript (#1257)

• chore(deps): update github actions (#1256)

• chore(deps): update go patches (#1254)

• chore(deps): update module google.golang.org/grpc to v1.80.0 (#1259)

• chore(deps): update module github.com/go-jose/go-jose/v4 to v4.1.4 [security] (#1246)

• fix(importer): revert import command type in workflow (#1238)

• fix(importer): flags (#1230)

• refactor(brew): add versioned formula for dirctl brew (#1232)

• fix(test): enhance config validation to check file accessibility (#1228)

• fix(dir): remove parallel lint runs (#1227)

• fix(importer): workflow (#1226)

• feat(cli/daemon): daemon configuration file support (#1218)

• feat: importer file fetcher (#1217)

• refactor(cli/client): simplify OIDC client and add device flow support (#1220)

• refactor(dir): replace Zitadel with Dex as OIDC provider (#1216)

• refactor(workflow/renovate): improve scheduling to fast-track vulnerability fixes (#1213)

• fix(dir): skip installing pre-commit if hooksPath is set (#1215)

• fix(dir): test file instead of directory (#1214)

• feat(cli): add daemon command (#1200)

• feat(dir): add pre-commit hooks (#1209)

• ci(dir): bump codecov reusable action (#1206)

• refactor(workflow): pin demo and import workflows to dirctl version (#1207)

• chore(deps): update github actions (#1205)

• chore(deps): update javascript (#1204)

• chore(deps): update go patches (#1203)

• chore(deps): update dependency astral-sh/uv to v0.11.2 (#1202)

• fix(ci): switch to native kind networking for e2e tests (#1199)

• feat(server/database): add SQLite support and configuration (#1195)

• refactor(install/chart): remove chart tarballs (#1190)

• chore(workflows): add envoy version for container image scan configuration (#1185)

• fix(ci): audience of ghwf token (#1189)

• feat(dir): add DeleteReferrer (#993)

• feat(dir/ci): follow the new OIDC pattern in import records wf (#1177)

• fix(tests): flaky e2e network tests due to shared test data and insufficient sync timeout (#1182)

• refactor(dir): refactor PullReferrer (#1067)

• ci(dir): reduce e2e test artifact scope (#1091)

• chore(deps): update dependency astral-sh/uv to v0.11.1 (#1171)

• chore(cron): fix nightly security posture checks (#1183)

• refactor(importer): revamp importer module (#1092)

• feat(release): publish dir-apiserver binary for multiple platforms (#1179)

• chore(renovate): update discovery config (#1169)

• refactor(dir/ci): add reusable build-dirctl and GitHub OIDC token actions (#1168)

• feat(authz): support constrained wildcard matching for GitHub workflow principals (#1167)

• chore(deps): update taskfile (#1144)

• chore(deps): update google.golang.org/genproto/googleapis/rpc digest to d00831a (#1131)

• fix(cron): artifact names and permission for security scanning (#1152)

• chore(deps): update alpine docker tag to v3.23 (#1136)

• chore(deps): update go patches (#1143)

• chore(deps): update module github.com/libp2p/go-libp2p-kad-dht to v0.39.0 (#1146)

• chore(deps): update helm release postgresql to v18.5.14 (#1134)

• chore(deps): update module github.com/libp2p/go-libp2p to v0.48.0 (#1139)

• chore(deps): update dependency astral-sh/uv to v0.11.0 (#1137)

• chore(deps): update envoyproxy/envoy docker tag to v1.37 (#1138)

• chore(deps): update quay.io/coreos/etcd docker tag to v3.6.9 (#1148)

• chore(deps): update alpine:3.21 docker digest to c3f8e73 (#1125)

• chore(deps): update gcr.io/distroless/static:nonroot docker digest to e3f9456 (#1129)

• chore(deps): update golang:1.26.1-bookworm docker digest to 8e8aa80 (#1130)

• chore(deps): update ghcr.io/grpc-ecosystem/grpc-health-probe docker tag to v0.4.47 (#1132)

• chore(deps): update github actions (#1133)

• chore(deps): update javascript (#1145)

• chore(deps): update tonistiigi/xx docker tag to v1.9.0 (#1149)

• chore(deps): update github actions (major) (#1150)

• chore(deps): update docker.io/bitnami/postgresql docker digest to 6213591 (#1126)

• fix(renovate): remove api-gen from deps handling (#1147)

• chore(deps): update module github.com/buger/jsonparser to v1.1.2 [security] (#1124)

• chore(deps): update docker/dockerfile:1 docker digest to 4a43a54 (#1127)

• chore(deps): update gcr.io/distroless/static:latest docker digest to 47b2d72 (#1128)

• fix(cron): update cron.yaml to include permissions (#1140)

• fix(ci): include package-lock.json in docker builds to fix sdk e2e tests (#1142)

• chore(renovate): add explicit workflow configs (#1121)

• fix(renovate): resolve buf dependencies (#1109)

• chore(renovate): update discovery and cache config (#1096)

• ci(dir): extend security scanner to support more tag (#1055)

• feat(dir): multiprovider OIDC-based external authorization module (#1034)

• ci(dir): add renovate bot workflow (#1095)

• fix(importer): update command paths in import-records.yaml to use .bin directory (#1090)

• feat(dir): amend release commit automatically (#1084)

• chore(dir): move deps tasks to repo root (#1083)

• fix(dir): update image version in readme (#1085)

• chore: update brew formula version (#1082)

## Full Changelog: [v1.1.0...v1.2.0](https://github.com/agntcy/dir/compare/v1.1.0...v1.2.0)

# Contributors

• @adamtagscherer

• @agntcy-automation

• @akijakya

• @arpad-csepi

• @csirmazbendeguz

• @muscariello

• @paralta

• @ramizpolic

• @tkircsi

Version: v1.2.0

Date: 2026-04-15

Status: Released

Breaking: Yes

Components: Core

Authors: @adamtagscherer, @agntcy, @akijakya, @arpad, @csirmazbendeguz, @muscariello, @paralta, @ramizpolic, @tkircsi

PRs:83eeed7