> ## Documentation Index
> Fetch the complete documentation index at: https://docs.phala.com/llms.txt
> Use this file to discover all available pages before exploring further.

# What's New

> Changelogs, new updates and improvements to Phala Cloud

<Update label="April 27 - May 1, 2026" tags={["Workspace", "Billing", "KMS", "Admin", "Gateways"]} rss={{ title: "Workspace Abandonment & On-Chain KMS Clusters", description: "Abandoned workspace lockdown, on-chain KMS cluster relations, admin gateway surface, and global ApiErrorDialog" }}>
  ## Workspace Suspension & Abandonment

  * **Day-30 Abandonment**: Lock all mutating operations on workspaces that have been suspended for 30+ days; redirect/logout users on access and notify ops via Telegram.
  * **Mutation Gating**: Every CVM mutating endpoint is now gated on workspace `billing_status` — suspended workspaces cannot start, restart, replicate, or update CVMs.
  * **Settlement-Failure Suspension**: Post-paid teams are auto-suspended on settlement failure; state-change billing is skipped while suspended to avoid spurious charges.

  ## On-Chain KMS

  * **KMS Cluster Relations**: New cluster data relations with a `PHALA` sentinel for the platform's reserved cluster, plus an admin data-health view to surface drift.
  * **Schema Cleanup**: Drop FK constraints and removed unused KMS admin endpoints in preparation for cluster-scoped management.

  ## Admin: Gateways

  * **Gateway Nodes Admin**: New admin surface to manage gateway clusters, certificates, DNS, ZeroTier membership, and routing policy from the dashboard.
  * **Gateway Hosts View**: Support gateway v0.5.4 hosts view; allow duplicate gateway app mappings during cluster transitions.

  ## Error Handling

  * **Global ApiErrorDialog**: All CVM mutations now route errors through a stacked, deduplicated, opt-out-able dialog — including remaining CVM dialogs, network config, and the compose editor save path.
</Update>

<Update label="April 20-26, 2026" tags={["UI", "Billing", "GPU Rental", "Onboarding", "Admin"]} rss={{ title: "v3 Sidebar, Billing v2 Onboarding & GPU Rental Webhooks", description: "Stacked v3 navigation, command palette, billing v2 workspace+card-bind onboarding, GPU rental order webhooks" }}>
  ## UI Redesign

  * **v3 Stacked Sidebar**: New stacked sidebar navigation with global command palette and a refreshed design system across the dashboard.
  * **Account Settings**: Settings split into profile / security / SSH keys subpages, inlined into the global sidebar.
  * **CVM Networking Pages**: New networking pages with sidebar polish; toggle CVM ingress URLs between app-id and instance-id.

  ## Billing v2 Onboarding

  * **Payment-Gated Onboarding**: New users go through a payment-gated workspace + card-bind onboarding flow before they can deploy.
  * **Welcome Promo**: First top-up of \$1+ now grants a welcome promo credit.
  * **Crypto UI Removed**: Coinbase, Square, and the mock payment provider have been retired; crypto top-up UI removed.
  * **Legacy Cleanup**: 212 legacy suspended workspaces have been marked as abandoned for billing v2.

  ## GPU Rental

  * **Order Webhooks**: `gpu_rental.order` webhook events fire on activation and completion, with workspace UI surfacing and validation.
  * **Slim Order API**: Order creation now uses a Redis-cached provision token for faster lookups.

  ## Admin

  * **Stripe Webhook Logs Viewer**: New per-workspace Stripe webhook logs page; LIKE substring search for customer matching.
  * **Card Fingerprints**: Card-fingerprints section on user detail with toggle.
  * **Deleted Accounts**: Deleted-accounts page with a Clear blocks button for testing flows.
  * **Account Purge UI**: Pending removals section with grouped-list redesign.
  * **Soft Delete**: Team soft delete + purge now anonymizes name/slug.
</Update>

<Update label="April 13-19, 2026" tags={["CVM", "Networking", "Apps", "Workspace Suspension", "Redpill"]} rss={{ title: "CVM Networking Backend, App Instances API & Workspace Suspension Phase 2", description: "source_cidrs ACLs, POST /apps/{id}/instances, workspace suspension lifecycle, and Redpill usage exports" }}>
  ## CVM Networking

  * **source\_cidrs ACL**: Backend support for source-CIDR allowlists, `public_host`, and app-gateway metadata on CVMs.
  * **App-Compose Endpoint**: New `app-compose.json` endpoint for retrieving the live compose document.
  * **Public Host**: `public_host` exposed on the physical-nodes admin API.

  ## Apps & Instances

  * **POST /apps/\{app\_id}/instances**: Create app instances directly via the apps API (also exposed in JS SDK and CLI).
  * **Confirm-Instance Page**: New page for the two-phase app instance flow.
  * **Pending Updates**: Pending compose updates now show the originating instance name and a preview drawer.
  * **`cvm.replica.pending_approval` Webhook**: Emitted for replica approval flows; CLI profile slug fix included.

  ## Workspace Suspension Phase 2

  * **Disk Billing**: Suspended workspaces continue to accrue disk billing; retention task runs hourly during the test window.
  * **Dashboard Cards**: New admin dashboard cards expose suspension lifecycle state and visibility.
  * **`suspended_at`**: `teams.suspended_at` column added for data-retention tracking.

  ## Redpill

  * **Year/Month Filter & Exports**: New monthly filter; CSV and Excel export for usage data.
  * **All-Time Filter**: Fixed All-time button regression in usage filters.

  ## Infrastructure

  * **Node TCB Evaluation**: Periodic task evaluates node TCB and records results; admin UI gets detail, edit form, and sync.
  * **Request ID Tracing**: Request IDs now propagate across nginx and the backend for cross-service log correlation.
</Update>

<Update label="April 6-12, 2026" tags={["KMS", "CVM", "GPU Rental", "Attestations"]} rss={{ title: "On-Chain KMS Compose Updates, Live TCB Evaluation & GPU Rental Decouple", description: "Compose updates for on-chain KMS apps, live early TCB evaluation, and admin GPU rental decouple action" }}>
  ## On-Chain KMS

  * **Compose Updates**: On-chain KMS CVMs now support compose updates with a pending-updates flow.
  * **On-Chain KMS Sidebar**: App overview sidebar consolidates on-chain KMS state and pending updates via a unified `kms-info` API.
  * **Pending-Updates Endpoint**: New endpoint exposes pending updates for on-chain KMS apps.
  * **Per-Toggle TX**: Device allowlist toggles now send one transaction per change instead of using Multicall3 batching.

  ## Apps & Projects

  * **App Contract Metadata**: Migrated from CVMs to projects; frontend UX adapts based on contract owner type.
  * **Voided Order Status**: New `voided` order status that is excluded from all flows.

  ## GPU Rental Admin

  * **Decouple Action**: Admin can now decouple a GPU rental order from its CVM; financial summary, runway column, and structured errors added.
  * **Distinguish In-Use vs Unavailable**: `ERR-02-016` distinguishes "device in use" from "no resources" so users see the right message.

  ## Live TCB Evaluation

  * **App Attestations**: Live early TCB evaluation runs on app attestations and surfaces TCB identity fields for early-update diagnostics.

  ## Other

  * **Log Stream URLs**: `CVMInfo` now includes log stream URLs for direct linking from the API.
  * **Teehouse RPC**: UI RPC calls now route through the cloud-api gateway for auth and `/api` prefix correctness.
  * **dcap-qvl Python Module**: Replaced the dcap-qvl binary with a Python module for attestation verification.
</Update>

<Update label="March 30 - April 5, 2026" tags={["Billing", "CVM", "Networking", "Security"]} rss={{ title: "Billing v2 Modes, CVM Port Forwarding & XSS Hardening", description: "Prepaid/auto-topup/post-paid billing modes, CVM port forwarding auto-allocation, and platform-wide XSS hardening" }}>
  ## Billing Modes v2

  * **Three Modes**: Workspaces now choose between **prepaid**, **auto-topup**, or **post-paid** billing.
  * **Proactive Auto-Topup**: Auto-topup fires when balance crosses the threshold, not on the next charge attempt.
  * **Race Hardening**: Order-first pattern eliminates duplicate orders/credits from auto-topup webhook races; settlement refunds correctly restore debt.
  * **Auto-Topup Task**: Now runs as an independent hourly task instead of being chained off payment completion.

  ## CVM Port Forwarding

  * **Auto-Allocation**: Port forwarding now auto-allocates and manages the firewall lifecycle alongside the CVM.
  * **Port Mapping API**: `cvm_port_mappings` table + repository, route renames, workspace slug support, and stale-cache fixes.

  ## CVM Operations

  * **`in_progress` State**: Operations show `in_progress` with optimistic UI updates; auto-recovery for stale locks; user-initiated cancel.
  * **Recent Operations**: Tables now show the operation's target state.
  * **Empty Container Names**: Handle containers with empty names in `get_containers()`.

  ## Security

  * **XSS Hardening**: Platform-wide input validation and output sanitization across user-facing fields, including username in emails and registration.
  * **Rate Limits**: Increased API rate limits and added an admin tier.
  * **Admin Search**: Smoothed search typing across workspace / user / CVM admin pages.

  ## Frontend

  * **Next.js v16.2.1**: Frontend upgraded.
</Update>

<Update label="March 22-29, 2026" tags={["Webhooks", "CVM", "Networking", "Billing", "SDK"]} rss={{ title: "Two-Phase CVM Deploy with Webhooks & Batch is-allowed API", description: "Multisig-friendly two-phase deploy, webhook system, batch is-allowed API, and CVM port-mapping APIs" }}>
  ## Two-Phase CVM Deploy

  * **Multisig Support**: New two-phase deploy flow that lets multisig owners pre-stage compose hashes and approve on-chain before commit.
  * **Webhook System**: Lifecycle events, hashed IDs, confirm-update UI, 429 handling, metadata edit, and `0x`-prefix / `compose_hash` auto-fill all delivered across five hardening rounds.
  * **Production Hardening**: Webhook secret 2FA, SSRF protection, and SDK signature verification.

  ## is-allowed API

  * **Batch Endpoint**: New batch `is-allowed` endpoint with SDK support across JS, Python, and Go.
  * **CVM URL Token**: Commit token can now be passed via URL query param.

  ## CVM & Networking

  * **Port Mapping API**: New `cvm_port_mappings` table, repository, and CRUD API.
  * **Network Config**: Workspace-level network config toggle with restart and port-mapping fixes.
  * **VMM v0.5.7**: Passthrough of `GuestEvent[]` and `shutdown_progress` from VMM v0.5.7; `UpdateVm` support with backward compat.
  * **CvmHandle**: New methods for KMS / gateway URLs, ports, and events.

  ## Billing & Admin

  * **All Stripe Methods**: Top-up now accepts all Stripe payment methods.
  * **N+1 Eliminated**: Eliminated N+1 queries in `enforce_billing_policy`.
  * **Admin Filters**: Enhanced admin API filters; triggered\_by, system stop times, and dispute timeline added.
  * **PPID**: Quotes table now stores PPID; external proof-of-cloud PPIDs are supported.
</Update>

<Update label="March 15-21, 2026" tags={["CVM", "API", "KMS", "State Machine"]} rss={{ title: "Idempotent CVM Creation & Unified PATCH Endpoint", description: "Retry-safe CVM creation, unified PATCH /cvms/{id} endpoint, and KMS shim-based challenge-response auth" }}>
  ## CVM API

  * **Unified PATCH `/cvms/&lcub;cvm_id&rcub;`**: Single endpoint replaces several per-field PATCH endpoints.
  * **Idempotent Creation**: CVM creation is now idempotent for retry safety ([#1041](https://github.com/Phala-Network/phala-cloud/issues/1041)).
  * **v2 State Machine Only**: V1 Celery tasks removed — all CVM operations run through the v2 state machine with timeouts and a cancel endpoint.

  ## On-Chain KMS

  * **Shim-Based Auth**: Centralized KMS now uses a shim-based challenge-response auth flow.
  * **DB-Backed PPID**: `proofOfCloud` unified to a DB-backed PPID lookup.
  * **`is-allowed` API**: New endpoint for on-chain CVM deployment checks.

  ## Anti-Fraud & Auth

  * **Disposable Email Block**: `sharebot.net` added to disposable email blocklist; postmortems archive added.
  * **OAuth Fixes**: Static OAuth routes restored after rewrite-priority regression caused a 405.
</Update>

<Update label="March 8-14, 2026" tags={["Billing", "KMS", "Monitoring", "AI"]} rss={{ title: "Phase 4 Billing Auto-Shutdown & KMS Inspect API", description: "Low-balance auto-shutdown, KMS inspect/whitelist APIs, public OS images, and teepod/node uptime monitoring" }}>
  ## Billing Phase 4 Enforcement

  * **Auto-Shutdown**: Low-balance warning and auto-shutdown when credit reaches threshold.
  * **`has_paid` Deprecation**: Phase 1-3 deprecation of the legacy `has_paid` field; all queries now use type-based hybrid properties.
  * **Auto-Settle Invoice Items**: Admin auto-settle for invoice items; null instance\_id handling.

  ## KMS

  * **KMS Inspect API**: Real-time instance inspection for KMS-managed apps.
  * **On-Chain Whitelist**: Multicall3-based on-chain whitelist queries; whitelist status surfaced on the contract detail page.
  * **Public OS Images & KMS On-Chain API**: New endpoints; CLI pagination for OS images and legacy v0.3 hidden by default.

  ## Monitoring

  * **Outage Incidents**: New outage incident tracking for teepod and node uptime, with admin UI and minute-level granularity grouping.
  * **Teepod Uptime**: New monitoring endpoints and admin UI for teepod uptime.

  ## Auth & Captcha

  * **Site Key + Turnstile**: Email/password flows enforce site key + Turnstile captcha.
  * **Captcha Reuse**: Login captcha token reused across auth actions.
</Update>

<Update label="March 1-7, 2026" tags={["UI", "CVM", "Workspace", "Redpill", "Admin"]} rss={{ title: "CVM Scale & Machines Page, Workspace Homepage Redesign", description: "Replica scaling UI, redesigned workspace homepage, Redpill workspace-keyed connections, and admin email APIs" }}>
  ## UI

  * **CVM Scale & Machines**: New page for replica scaling and per-machine management.
  * **Workspace Homepage**: Redesigned around `CvmCard` layout.
  * **Account Layout**: Account routes migrated from `_auth` into a dedicated layout.
  * **Confidential AI Page**: Migrated to workspace route; `connectRedpill` schema aligned with backend.

  ## Redpill

  * **Workspace-Keyed Connections**: Redpill connections are now scoped to workspace with snowflake `external_id`.
  * **Post-Paid Mode**: Post-paid flag on connections; post-paid connections skip recharge entirely.
  * **Usage Pages**: New workspace and admin usage pages, plus an admin Redpill dashboard.

  ## Admin

  * **Workspace UI Alignment**: Admin pages aligned with the workspace UI.
  * **Email Sending APIs**: New APIs for sending email through Resend and Customer.io with attachment support.
  * **Invoice Review Queue**: Admin invoice review queue + batch finalize; switched to draft → finalize flow.
  * **GPU Rental Tab**: GPU rental orders tab on workspace admin detail.
  * **Teehouse KMS**: Configurable RPC and visible TX errors in KMS on-chain flows.

  ## Billing

  * **Compute Usage Labels**: Invoice draft items now show explicit compute usage labels.
  * **Period Credit**: Period credit consumed is subtracted from invoice amount.
</Update>

<Update label="February 22-28, 2026" tags={["SSH", "Anti-Fraud", "CVM", "Admin"]} rss={{ title: "SSH Key Inspect, GitHub Import & Suspicious Compose Detection", description: "SSH key inspect/import flows, suspicious compose anti-fraud, and instance-id backfill APIs" }}>
  ## SSH Key Management

  * **SSH Key Inspect**: New inspect endpoint with detailed key info.
  * **GitHub Import**: Import public keys from a GitHub profile or sync from a linked GitHub account.

  ## Anti-Fraud

  * **Suspicious Compose Detection**: Detects suspicious compose patterns and alerts via Telegram.
  * **Session & Input Validation**: Comprehensive session and input validation fixes across the anti-fraud module.

  ## CVM

  * **Instance-ID Backfill**: New API to backfill `instance_id` after running-state operations; auto-backfill on startup.
  * **Explicit GHCR Provider**: CVM create form now supports an explicit GHCR registry provider.
  * **Pre-Launch GHCR**: Manifest probe handles OCI index and per-registry docker login (v0.0.14).
</Update>

<Update label="February 15-21, 2026" tags={["KMS", "Component Hashes", "Redpill", "Admin"]} rss={{ title: "Component-Level Hashes & Redpill Recharge Observability", description: "Per-component hashes for compose+pre-launch and admin endpoints for Redpill recharge observability" }}>
  ## KMS & Hashing

  * **Component Hashes**: Add component-level hashes for `docker_compose` and `pre_launch_script`; KMS contract write paths use the new component hashes.

  ## Redpill

  * **Recharge Observability**: Admin endpoints for Redpill connection observability; recharge observability fields added to connections.
  * **Reliability**: Redpill recharge task now registered with Celery workers; reduced log noise for transient API failures.
</Update>

<Update label="February 8-14, 2026" tags={["Attestations", "Auth", "Pre-Launch", "Customer.io"]} rss={{ title: "dcap-qvl Migration & Pre-Launch Image Verification", description: "Replace asn1+evidence-api with dcap-qvl, pre-launch image pre-pull verification, and Stripe partial refunds" }}>
  ## Attestations

  * **dcap-qvl**: Replaced the legacy `asn1` + `evidence-api` path with `dcap-qvl` for attestation verification.

  ## Pre-Launch

  * **Image Pre-Pull**: New pre-launch pre-pull verification step with GHCR access checks; correct compose path used for image discovery.

  ## Auth

  * **Site Key + Turnstile**: Enforced on email/password flows.

  ## Billing

  * **Stripe Partial Refunds**: Stripe-hosted invoice partial refunds are now handled correctly; surplus balance recovery added; invoice double-counting prevented.

  ## Admin

  * **Customer.io Audit & Repair**: New admin Customer.io audit and repair system with CIO lifecycle sync.
</Update>

<Update label="February 1-7, 2026" tags={["Workspace", "Billing", "CVM", "Apps"]} rss={{ title: "Workspace Billing Settings, App Revision Redeploy & Replica Rewrite", description: "Workspace billing settings page, app revision redeploy + replica rewrite, and credit balance check on CVM start" }}>
  ## Workspace Billing

  * **Billing Settings & Invoices Pages**: New workspace-level billing settings and invoices pages.
  * **Workspace-Scoped Billing**: All billing operations scoped to workspace credit; user-level credit/billing deferred to workspace.
  * **Credit Balance Check**: Credit balance now checked before CVM start and restart.

  ## App Revision

  * **Redeploy & Replica Rewrite**: App revisions can be redeployed; replica rewrite path delivered.
  * **App Deployment Detail Drawer**: New drawer surfacing per-deployment details.

  ## CVM Configuration

  * **Configurable `public_tcbinfo`**: Now configurable; visibility settings wired through the create flow.
  * **Hugepages / NUMA Pin**: `extra_specs` now stores hugepages / `pin_numa` as strings, read from instance type in preflight, and threaded through admin UI.

  ## Admin

  * **Unified CVM List**: Admin CVM list migrated to the `CVMInfo` schema with `compose_search`.
  * **Pre-commit Hooks**: Added `prek` pre-commit hooks and CI integration.
</Update>

<Update label="January 24-31, 2026" tags={["Workspace", "Auth", "Billing", "Security"]} rss={{ title: "Workspace-Level Setup Billing & TanStack Router", description: "Workspace setup billing migration, default workspace, versioned auth endpoints, and security hardening" }}>
  ## Workspace

  * **Default Workspace**: New users get a default workspace on signup.
  * **Workspace Nodes & Quotas API**: New endpoints expose nodes and quota state per workspace.
  * **Setup Billing → Workspace**: Setup billing migrated to workspace-level card verification; team tier auto-upgrades/downgrades on setup.

  ## Auth

  * **Versioned Endpoints**: New versioned auth endpoints return workspace info on login.
  * **Password Reset Hardening**: Password reset tokens are invalidated when the email changes.
  * **Open Redirect Hardening**: `returnUrl` handling hardened to prevent open-redirect chains.

  ## Frontend

  * **TanStack Router**: Migration completed with full route definitions.

  ## Billing

  * **Order Services**: Order services migrated to the actions pattern; setup-billing flow extracted into actions + repositories.
  * **Auto-Charge Fixes**: Only `invoice_settings.default_payment_method` is checked for auto-charge; `$1` verification charge is auto-refunded on save-intent failure.
  * **CVM Tasks**: v2 polling tasks gain INFO-level phase logging for observability.

  ## Nodes

  * **PPID & Device ID**: `nodes` now expose `ppid` and `device_id`; schema version dispatch fixed.
</Update>

<Update label="January 17-23, 2026" tags={["API", "CVM", "Apps", "GPU Rental"]} rss={{ title: "Apps API Versioning & v2 Polling Tasks", description: "Apps API restructure with versioning, v2 polling for all CVM operations, and KMS info in provision response" }}>
  ## API

  * **Apps API Versioning**: Apps API restructured around versioning; legacy fields cleaned up.
  * **API Token Refresh**: Tokens now track API version and support refresh.
  * **KMS Info in Provision**: `kms_info` returned in provision response; compose hash stability improvements.

  ## CVM Operations

  * **v2 Polling Tasks**: All CVM operations now use v2 polling tasks (provision, start, stop, restart, delete, replicate).
  * **GPU Resource Release**: GPU resources are released when the CVM stops or deletes from `exited` or `CVMNotExists` state.
  * **Duplicate Name Reject**: `rename_cvm` now rejects duplicate names instead of warning.

  ## OS Images

  * **Teepod Sync**: `teepod os-images` sync API now returns a detailed response.
</Update>

<Update label="January 10-16, 2026" tags={["GPU Rental", "API", "Domain", "Stats", "Docs"]} rss={{ title: "Device-Level GPU Allocation & docs.phala.com Migration", description: "GPU rental device-level allocation safeguards, domain CAA verification, stats endpoints, and docs link migration" }}>
  ## GPU Rental

  * **Device-Level Safeguards**: GPU rental workflow improvements with device-level allocation safeguards.

  ## Domain Diagnosis

  * **CAA Records**: Custom domain verification now checks CAA records.

  ## Stats API

  * **`/stats/dstack_app`**: New endpoint for running apps data.
  * **`/stats/entity_profile`**: New endpoint for entity profiles data.

  ## API & Backend

  * **Build Machine Info**: `build_machine_info` extracted as a module-level function.
  * **Service Headers**: Centralized service-header injection across integrations.

  ## Docs

  * **`docs.phala.com`**: Migrated all in-product docs links to `docs.phala.com` with corrected paths.
  * **SSH Copy**: Updated SSH-related links and copy throughout the dashboard.

  ## Infrastructure

  * **CI Image Tags**: Lowercase repository name for GHCR image tags; deps-only Docker image build workflow added.
</Update>

<Update label="January 5-9, 2026" tags={["AI Models", "Billing", "Invoicing", "Admin"]} rss={{ title: "New AI Models & Invoice Reconciliation", description: "New confidential AI models, credit balance application, and admin billing tools" }}>
  ## New Confidential AI Models

  New models available through the Redpill API with TEE attestation:

  * **MiniMax M2.1** (Chutes) - 196K context, $0.30/$1.20 per 1M tokens
  * **Kimi K2 Thinking** (Tinfoil) - 262K context, $2.00/$2.00 per 1M tokens - reasoning model with thinking modes

  ## Billing & Invoicing

  * **Credit Balance Application**: Support credit balance application in invoice creation
  * **Transaction Merge**: Add transaction merge by VM for invoice creation
  * **Reconciliation Deduction**: Add reconciliation deduction for ledger corrections
  * **External Payments**: Add external payment and debt write-off admin tools
  * **Credit Adjustments**: Credit adjustment uses amount=0 to preserve ledger integrity

  ## Admin Tools

  * **Billing Summary**: Add usage and invoice columns to billing summary table
  * **Workspace Reconciliation**: Add billing summary for workspace reconciliation
  * **Monthly Usage Summary**: Add summary row to monthly usage table
  * **Ledger Balance Health**: Rename transactions\_sum to ledger\_balance and add health status

  ## Database & Performance

  * **Covering Indexes**: Add covering indexes for workspace billing queries
  * **Auth Indexes Migration**: Add auth/workspace indexes migration
  * **Micro-Tolerance**: Apply micro-tolerance to eliminate \$0.000001 precision artifacts
  * **Numeric Precision**: Change CreditTransaction.amount to Numeric for precision

  ## Bug Fixes

  * Fixed billing period enum case for database compatibility
  * Fixed suggested action logic in credit health check
  * Consolidated transaction blocks in get\_request\_context
</Update>

<Update label="December 29, 2025 - January 4, 2026" tags={["Billing", "Invoicing", "Admin"]} rss={{ title: "Invoice System & Billing Operations", description: "Complete invoice management, credit health checks, and admin billing operations" }}>
  ## Invoice System

  * **Draft Invoice Flow**: Add draft invoice flow and batch item update endpoint
  * **Invoice Items**: Add invoice item import and sync from Stripe
  * **Local Invoices**: Support for local invoice creation and management
  * **Invoice Payment**: Direct invoice payment flow with credits
  * **Auto-Refresh**: Auto-refresh invoice status on tab focus
  * **Refund Handling**: Handle invoice refund by creating debt.refund record

  ## Credit & Billing Operations

  * **Credit Repository**: New CreditRepository with pay\_invoice\_with\_credits action
  * **Credit Adjustment**: Add credit adjustment for reconciliation
  * **Settle with Credits**: Add settle-with-credits and improve reconciliation tools
  * **Manual Settlement**: Add admin operations for manual settlement and sponsor credit
  * **Manual Debt Creation**: Add admin manual debt creation for reconciliation

  ## Append-Only Ledger

  * **Ledger Model**: Use Append-Only ledger model for net debt calculation
  * **Type-Based Queries**: Migrate has\_paid queries to type-based hybrid properties
  * **Debit Records**: Add missing debit record in auto\_settle\_debts

  ## Admin Enhancements

  * **Workspace Detail**: Enhanced workspace detail page with billing overview, Stripe IDs, and monthly usage
  * **Resource Analytics**: Add resource & usage analytics to workspace detail page
  * **Billing Operations UI**: Display admin billing operations and audit info in workspace pages
  * **Workspace Filters**: Enhanced workspaces list filters and transactions sum

  ## Bug Fixes & Improvements

  * Fixed Coinbase order expiration logic and webhook handling
  * Improved credit health check to distinguish debt from data issues
  * Fixed invoice payment idempotency and status recovery
  * Added ddns-ip.net to email domain blacklist
</Update>

<Update label="December 22-28, 2025" tags={["GPU", "OS Image", "Invoicing"]} rss={{ title: "GPU Mode Switch & OS Image Slug", description: "GPU confidential computing mode toggle, OS image slug decoupling, and invoice improvements" }}>
  ## GPU Management

  * **GPU Mode Switch**: APIs and UI for switching GPU between CC (Confidential Computing) and non-CC modes
  * **Mode Switch UI**: Improve GPU mode switch UX with toggle and better feedback in admin GPU page
  * **PCI Slot Utilities**: Extract PCI slot normalization to shared utility module
  * **GPU Allocation Status**: Add GPU device info and allocation status query action

  ## OS Image Management

  * **Slug Decoupling**: Decouple OS image name from slug for more flexible image management
  * **Slug Field**: Add slug field to OSImage model and admin API
  * **Admin Forms**: Add slug field to OS Image create and edit forms
  * **Display Name**: Add display\_image\_name property and get\_dstack\_slug method

  ## Invoice System

  * **Invoice Items Model**: Add InvoiceItem model and make Stripe fields optional
  * **Invoice Repository**: Enhanced repository with status update and void support
  * **Unpaid Notifications**: Add UnpaidInvoiceNotificationTemplate for local invoices
  * **Draft Invoice Flow**: Add draft invoice flow and batch item update

  ## API Improvements

  * **QEMU Version**: Add qemu\_version to attestation endpoint with cached TEEScope lookup
  * **Guest Agent Cache**: Add cached guest agent info with configurable KMS endpoints
  * **Proxy Support**: Add proxy support for dstack base client

  ## Bug Fixes

  * Fixed resize for GPU instances (disk-only resize, gpu-rental detection)
  * Fixed stale cache validation errors in guest agent info lookup
  * Removed deprecated base\_image field writes
</Update>

<Update label="December 15-19, 2025" tags={["AI Models", "GPU", "Billing", "ClickHouse"]} rss={{ title: "New AI Models & GPU Lifecycle Improvements", description: "New flagship AI models, GPU allocation lifecycle, and billing refinements" }}>
  ## New Confidential AI Models

  Major new models available through the Redpill API:

  * **OpenAI GPT-5.2** - 400K context, $1.75/$14.00 per 1M tokens
  * **xAI Grok 4** - 256K context, $3.00/$15.00 per 1M tokens
  * **xAI Grok 4.1 Fast** - 2M context, $0.20/$0.50 per 1M tokens
  * **xAI Grok Code Fast 1** - 256K context, $0.20/$1.50 per 1M tokens - coding-optimized
  * **Google Gemini 3 Pro Preview** - 1M context, $4.00/$18.00 per 1M tokens

  ## GPU Lifecycle Management

  * **GPU Allocation on Start**: Ensure GPU allocation before CVM start operations
  * **GPU Config Updates**: New CvmHandle.update\_gpu\_config for dynamic GPU configuration
  * **CvmGpuContext Refactor**: Moved select\_gpus logic to dedicated context class

  ## ClickHouse & Data Infrastructure

  * **Snowflake IDs**: Added snowflake\_id column to all tables for global unique identification
  * **ClickHouse Migrations**: New migration system for ClickHouse schema management
  * **Session Configuration**: Optimized ClickHouse session settings
  * **Query Fixes**: Fixed hashid conversion for ClickHouse query statements

  ## Billing Improvements

  * **Direct Metered Usage Queries**: Query metered\_usages directly instead of intermediate views
  * **Billing Rate Fixes**: Correct memory conversion (MB to GB) when creating BillingRate
  * **Compute Unit Calculation**: Fixed CU value calculation for billing\_compute\_unit
  * **Period Duration**: Calculate cost based on actual billing period duration
  * **Minutes Rounding**: Round billing minutes to 2 decimals, require >= 1 min for charging

  ## TEEScope Integration

  * **TEEScope API**: New TEEScope integration for attestation verification
  * **Node API Endpoint**: Added api\_endpoint field to nodes

  ## Documentation

  * **Instance Types Page**: New instance types documentation page
  * **Pricing/Billing Docs**: Updated pricing and billing documentation
  * **Compliance Documentation**: Added comprehensive [Compliance & Certifications](/phala-cloud/security-and-privacy/compliance) page
</Update>

<Update label="December 1-14, 2025" tags={["AI Models", "Usage", "Workspace", "Security"]} rss={{ title: "New AI Models & Usage Export", description: "DeepSeek V3.2 model, usage data export, workspace slug validation, and security improvements" }}>
  ## New Confidential AI Models

  * **DeepSeek V3.2** (Phala) - 163K context, $0.28/$1.14 per 1M tokens - latest DeepSeek iteration with improved performance

  ## Usage Export

  * **Export Endpoints**: New CSV, Excel, and PDF export endpoints for usage data
  * **Export UI**: Added export dropdown in HistoricalUsageDisplay component
  * **Time Range Fixes**: Unified time range parsing and UTC date calculations

  ## Workspace Management

  * **Slug Validation**: Workspace slug validation with reserved words checking
  * **Required Slugs**: Slug now required in workspace create form
  * **Slug Check API**: New authenticated slug availability check endpoint
  * **Reserved Slugs Script**: Script to fetch and merge reserved slugs from multiple sources

  ## Security & Anti-Spam

  * **Spam Prevention**: Enhanced spam detection and blocking measures
  * **Block List Updates**: Updated block list for known malicious patterns

  ## UI/UX Improvements

  * **Mava Support**: Open Mava support popup for logged-in users instead of /contact page
  * **Resource Form**: Correct auto-selection logic for CVM resource form
  * **Error Dialogs**: Improved error dialog for structured errors
  * **Email Templates**: Updated email copy and templates

  ## Infrastructure

  * **Next.js Update**: Updated to Next.js 15.4.8 for security and performance
  * **Routing Context**: Added routing context atom for CVM navigation links
  * **Code Cleanup**: Removed unused instance\_types/config.py
</Update>

<Update label="November 14-28, 2025" tags={["GPU TEE Models", "CVM Naming", "Security"]} rss={{ title: "GPU TEE AI Models & CVM Name Identifiers", description: "New GPU TEE AI models from multiple providers, CVM name-based identification, and supply chain security improvements" }}>
  ## GPU TEE AI Models

  New confidential AI models available through the Redpill API, running in GPU TEEs with hardware attestation:

  ### Phala Provider

  * **DeepSeek V3 0324** (685B MoE) - 163K context, $0.28/$1.14 per 1M tokens
  * **Qwen2.5 VL 72B Instruct** - Vision-language model, 65K context
  * **Google Gemma 3 27B** - Multimodal with vision, 53K context
  * **OpenAI GPT OSS 120B/20B** - 131K context, open-source GPT variants
  * **Qwen2.5 7B Instruct** - 32K context, improved coding/math
  * **Sentence Transformers all-MiniLM-L6-v2** - 384-dim embeddings

  ### NearAI Provider

  * **DeepSeek V3.1** - Hybrid reasoning with thinking modes, 163K context
  * **Qwen3 30B A3B Instruct** - Ultra-long 262K context, 3.3B active params
  * **Z.AI GLM 4.6** - Agentic-focused model, 202K context

  ### Tinfoil Provider

  * **DeepSeek R1 0528** - OpenAI o1 performance with open reasoning
  * **Qwen3 Coder 480B A35B** - Coding-optimized, 262K context
  * **Qwen3 VL 30B A3B** - Video understanding, 262K context
  * **Meta Llama 3.3 70B Instruct** - Multilingual dialogue, 131K context

  ## CVM Name Identifiers

  * **Name-Based Identification**: CVMs can now be identified by name instead of UUID
  * **Flexible Routing**: API endpoints accept both CVM name and UUID as identifiers
  * **Hostname Generation**: Automatic hostname generation from CVM names
  * **Name Validation**: Comprehensive CVM name validation with format rules

  ## CLI & Authentication

  * **CLI Login Improvements**: Enhanced CLI login flow with better device authentication
  * **Device Auth API Fixes**: Fixed device authentication API issues
  * **App Auth Rename**: Refactored app authentication module for clarity

  ## Workspace & Usage

  * **Usage API**: New unified usage API for tracking workspace resource consumption
  * **Workspace Limits**: Enhanced workspace limit checking with tier-based controls
  * **Usage Repository**: New repository for tracking and querying usage data

  ## Event Logging

  * **Event Logs Phase 1**: Initial implementation of structured event logging
  * **Split Patch APIs**: Separated patch APIs for better granularity

  ## Security & Infrastructure

  * **Supply Chain Security**: Added lifecycle scripts baseline and verification to prevent supply chain attacks
  * **CI Improvements**: Configurable GitHub Actions runners for PR checks
  * **On-Chain KMS Fixes**: Fixed on-chain KMS integration issues
  * **TProxy Fixes**: Resolved transparent proxy configuration issues

  ## Bug Fixes & Improvements

  * Fixed GPU rental and payment processing issues
  * Improved GPU compose configuration updates
  * Enhanced VPC app ID and hostname settings
  * Cleaned up deprecated code and refactored modules
  * Fixed CVM operation clearing and status sync issues
</Update>

<Update label="November 3-13, 2025" tags={["GPU Rental", "SSH Keys", "Infrastructure"]} rss={{ title: "GPU Rental System & SSH Key Management", description: "Complete GPU rental marketplace, SSH key management, and advanced resource allocation" }}>
  ## GPU Rental Marketplace

  * **GPU Rental System**: Full GPU rental workflow with SKU management, pricing tiers, and order processing
  * **GPU Rental UI**: Complete user interface for browsing GPU catalog and placing rental orders
  * **Rental Orders Admin**: Comprehensive admin interface for managing GPU rental orders and allocations
  * **Automated Billing**: Hourly billing periods with automated order completion and notifications
  * **Email Notifications**: Order confirmation, provisioning, and completion email templates

  ## SSH & Security

  * **SSH Key Management**: Store and manage SSH public keys for secure CVM access
  * **SSH Key Injection**: Automatically inject SSH keys into CVMs at creation time
  * **GitHub SSH Sync**: Import SSH keys directly from GitHub accounts
  * **Key Validation**: Comprehensive SSH key format validation and fingerprint tracking

  ## Resource Management

  * **Auto Resource Allocation**: Intelligent automatic resource matching for CVM deployment
  * **GPU Reallocation v2**: Enhanced GPU reallocation on CVM start with better availability checks
  * **Inventory Refactor**: Refactored inventory SQL queries for improved performance
  * **Sortable Instance Types**: Reorderable instance types with display\_order field

  ## User Profiles & Workspaces

  * **Custom Profiles**: Entity profile system for users, workspaces, and apps with avatar uploads
  * **Profile Management**: Profile editing UI for workspace and app customization
  * **Workspace Admin**: Enhanced workspace administration interface

  ## Infrastructure & Developer Experience

  * **Update Environment API**: New API for updating CVM environment variables without full redeployment
  * **Update OS Image**: Support for upgrading CVM OS images in-place
  * **Immutable Compose**: Immutable docker-compose hash generation for consistency
  * **Trust Center**: Trust report existence detection for attestation verification
  * **Structured Errors**: Comprehensive structured error handling system
  * **Claude Skills**: Added Python backend and TypeScript frontend skills for development

  ## Billing & Invoices

  * **Invoice Refactor**: Refactored invoice service with better Stripe integration
  * **Invoice Admin**: Enhanced invoice administration with filtering and status management
  * **Billing Handler**: Automated billing handlers for charge failures and CVM shutdown
  * **Payment Methods**: Customer payment method validation and tracking

  ## Bug Fixes & Improvements

  * Fixed KMS nonce race conditions with obtain\_app\_id improvements
  * Improved CVM admin UI with better filtering and compose file drawers
  * Enhanced error messages across the platform
  * Fixed workspace setup and repository configuration issues
  * Updated Next.js to 15.4.7 for security and performance
  * UI theme updates with new color system
</Update>

<Update label="October 27 - November 2, 2025" tags={["Workspaces", "CLI", "API"]} rss={{ title: "Workspace Invitations & CLI Auth", description: "Team member invitations, CLI device authentication, and API versioning" }}>
  ## Workspace Collaboration

  * **Member Invitations**: Full workspace invitation system with email-based invites and role management
  * **Invitation UI**: New invitation management interface for workspace administrators
  * **Member Management**: Comprehensive member list and permissions interface

  ## CLI & Authentication

  * **CLI Device Auth**: New device authentication flow for CLI users with secure token management
  * **CLI Login**: Streamlined CLI login experience with browser-based OAuth flow
  * **CLI Monitoring**: Node monitoring capabilities for cron-based infrastructure tasks

  ## Infrastructure

  * **API Versioning**: Implemented comprehensive API versioning system for backward compatibility
  * **GPU Rental**: New GPU rental workflow and allocation improvements
  * **Error Handling**: Enhanced error handling and logging across the platform
  * **Trust Center**: Added proof-of-cloud verification for trust center integration
</Update>

<Update label="October 20-26, 2025" tags={["Workspaces", "GPU", "CVM"]} rss={{ title: "Workspace Context & Reserved GPUs", description: "Workspace-based API context, reserved GPU allocations, and improved CVM operations" }}>
  ## Workspace Architecture

  * **Workspace Context**: Complete workspace context system for scoped API operations
  * **Scoped APIs**: All CVM and resource APIs now workspace-aware with proper isolation
  * **Team Launch Pages**: New team-based launch and deploy pages with workspace context
  * **dStack Apps**: Enhanced dStack app management with per-workspace app lists and detailed views

  ## GPU Management

  * **Reserved GPUs**: Teams can now reserve specific GPUs for dedicated access
  * **GPU Team Allocation**: Allowed teams configuration for GPU access control
  * **GPU Admin Polish**: Enhanced GPU administration interface with better allocation visibility

  ## CVM Operations

  * **Improved Status Management**: Comprehensive CVM status tracking with batch operations
  * **Operation Refactor**: Refactored CVM operations (start/stop/restart/resize) for better reliability
  * **State Transactions**: Enhanced state transaction control for atomic CVM operations
  * **Queue Monitoring**: Improved task queue monitoring and worker management

  ## Bug Fixes

  * Fixed OAuth login issues with GitHub and Google providers
  * Resolved CVM visibility state synchronization
  * Fixed domain configuration for dStack apps
  * Improved compose file consistency and validation
</Update>

<Update label="October 13-19, 2025" tags={["Features", "Infrastructure"]} rss={{ title: "Custom Domain Support", description: "Custom domain configuration with CNAME management and diagnostic tools" }}>
  ## Cloud Platform

  * **Custom Domain Support**: Full support for custom domains with CNAME configuration, backfill scripts, and domain target management
  * **Domain Diagnostics**: New diagnostic tools to troubleshoot domain configuration issues
  * **API Key Management**: Enhanced API key creation dialog with security warnings
</Update>

<Update label="October 6-12, 2025" tags={["Admin", "Infrastructure"]} rss={{ title: "Workspace Admin & System Improvements", description: "Comprehensive workspace management and platform stability enhancements" }}>
  ## Workspace Administration

  * **Complete Workspace Admin**: New comprehensive workspace management interface with team transfer capabilities
  * **Telegram Integration**: Added Telegram bot integration with debug admin UI for better monitoring
  * **Bulk Communication**: Implemented bulk email system with comprehensive reporting

  ## Infrastructure & Performance

  * **API Rate Limiting**: Implemented comprehensive rate limiting system for platform stability
  * **Session Management**: Enhanced session pattern validation with new checks
  * **Database Optimization**: Updated PostgreSQL connection pool settings and session management patterns
  * **Navigation**: New single-search-selector component and improved admin navigation

  ## Bug Fixes

  * Fixed multiple session-related issues and API key creation errors
  * Resolved authentication service context problems
  * Improved error handling for asyncio operations
</Update>

<Update label="September 29 - October 5, 2025" tags={["UI", "Performance"]} rss={{ title: "Resource Management Redesign", description: "Enhanced resource selection and team administration tools" }}>
  ## UI/UX Improvements

  * **Resource Section Redesign**: Split resource section into multi-piece components for better organization
  * **Storage Management**: New storage filesystem selector component
  * **Team Admin Prototype**: Initial implementation of team administration interface
  * **Filter Enhancements**: Server-side filter options with remote search capability

  ## Infrastructure

  * **SDK Integration**: Switched to using SDKs to reduce maintenance overhead
  * **Timeout Support**: Added timeout configuration to BaseClient for better reliability
  * **Field Tracking**: Improved tracking system for consistent compose hash generation

  ## Bug Fixes

  * Prevented potential row deadlocks with improved transaction commits
  * Fixed multiple Sentry-reported production issues
  * Resolved storage initialization and node filtering problems
</Update>

<Update label="September 22-28, 2025" tags={["GPU", "Task Queue"]} rss={{ title: "GPU Allocation & Task Queue System", description: "Major backend infrastructure improvements for GPU management" }}>
  ## GPU Management

  * **GPU Allocation System**: New CvmGpuAllocation model with dynamic allocation and release mechanisms
  * **Resource Separation**: Split CPU and GPU in resource section for clearer management
  * **Reallocation Support**: Added GPU reallocation for CVM start operations

  ## Task Queue System

  * **Celery Integration**: Implemented Celery-based task queue for async operations
  * **Queue Monitoring**: Added task queue state monitoring in admin dashboard
  * **Worker Management**: Split queue workers by workload type with control commands
  * **Task Cancellation**: Ability to cancel in-progress tasks for stop/remove operations

  ## Security

  * Added signature support for public TCB info and secure time
  * CustomerIO integration for user tracking and analytics
</Update>

<Update label="September 15-21, 2025" tags={["KMS", "Infrastructure"]} rss={{ title: "KMS System & Inventory Management", description: "Enhanced KMS integration and new inventory-based allocation" }}>
  ## KMS Integration

  * **KMS Contracts**: New kms\_contracts table and kms\_type support
  * **KMS Admin**: Enhanced admin interface for KMS and contract management
  * **Version Compatibility**: Added v03x\_only flag for API compatibility checks
  * **Upgrade Callbacks**: KMS upgrade callback URL detection for version management

  ## Infrastructure

  * **Inventory System**: Proof of concept for new inventory-based allocation
  * **Node Management**: Added deleted\_at to nodes with soft deletion support
  * **Infrastructure Actions**: New VMM connection capabilities
  * **Announcement Scoping**: Scoped announcements with CTA button support
</Update>

<Update label="September 8-14, 2025" tags={["Workspace", "GPU"]} rss={{ title: "Workspace Launch & Instance Management", description: "New workspace features and instance type management" }}>
  ## Workspace & Teams

  * **Workspace Introduction**: New workspace system with improved team management
  * **GPU Admin**: Comprehensive GPU administration interface
  * **Instance Types**: Database-driven instance type management replacing hardcoded rates
  * **Model Workload**: Support for creating and deploying model workloads

  ## Infrastructure

  * **Build Improvements**: Migration from Black to Ruff for code formatting
  * **Python 3.13**: Upgraded to Python 3.13 with better type safety
  * **GPU Allocation**: Improved GPU allocation and reallocation mechanisms
  * **Resource Computation**: Node-based available resource computation
</Update>

<Update label="September 1-7, 2025" tags={["Billing", "Infrastructure"]} rss={{ title: "Billing System Refactor", description: "Major billing system improvements and inventory tables" }}>
  ## Billing System

  * **Metered Usage**: Renamed billing\_records to metered\_usages for clarity
  * **Idle Disk Usage**: Enabled aggregate idle disk usage tracking
  * **Instance Types Admin**: New admin interface for instance type management

  ## Infrastructure

  * **Inventory Tables**: Created nodes table and associated inventory structures
  * **Node Migration**: Added node\_id to associate tables for better resource tracking
  * **Authorization**: New AuthGuard implementation with announcement banner

  ## Bug Fixes

  * Fixed KMS authentication API for upgrade scenarios
  * Resolved audit logging and update environment variable issues
  * Improved compatibility checks across the platform
</Update>

<Update label="August 25-31, 2025" tags={["UI", "Billing"]} rss={{ title: "Trust Center & Billing Separation", description: "Public GPU TEE page and improved billing granularity" }}>
  ## Features

  * **Trust Center Integration**: Added app attestation API for trust center functionality
  * **Separate Billing**: Computing resource and storage now billed separately
  * **Public GPU TEE Page**: New public-facing page showcasing GPU TEE capabilities
  * **API Proxy**: Enhanced HTTP header handling in API proxy routes

  ## Performance

  * **Backoff Configuration**: Configurable timeout for exponential backoff
  * **Network Management**: Improved network service resource management and error handling
</Update>

<Update label="August 18-24, 2025" tags={["KMS", "Security"]} rss={{ title: "Multi-KMS Support", description: "Enhanced KMS integration and project identification" }}>
  ## KMS Integration

  * **Project Slugs**: Added unique project slugs within teams
  * **Gateway Slugs**: New gateway slug system for better identification
  * **Multi-KMS Support**: Fixed environment encryption for multi-KMS nodes
  * **KMS Display**: Show KMS name in CVM cards for better visibility

  ## Features

  * **API Token Teams**: Added team\_id to api\_tokens for team-based access
  * **Mava Widget**: Integrated Mava widget for user support
</Update>

<Update label="August 11-17, 2025" tags={["Security", "2FA"]} rss={{ title: "Two-Factor Authentication", description: "Enhanced security with 2FA and session management" }}>
  ## Security Features

  * **Two-Factor Authentication**: Complete 2FA implementation with backup codes
  * **Session Management**: Session versioning and password history tracking
  * **OAuth Tracking**: Track OAuth login device and IP information
  * **Security Headers**: Added CSP and X-Frame-Options headers

  ## KMS Updates

  * **Quote Collateral V3**: Added PKC CRL and root CA CRL support
  * **Health Checks**: Decoupled KMS and gateway health checks from VMM

  ## UI/UX

  * **Password Management**: New password update form with show/hide functionality
  * **Admin Session Tools**: Session management interface for administrators
</Update>

<Update label="August 4-10, 2025" tags={["KMS", "Multi-KMS"]} rss={{ title: "Multi-KMS Architecture", description: "Users can now choose which KMS to use for their deployments" }}>
  ## KMS Flexibility

  * **User KMS Selection**: Users can now decide which KMS to use for their CVMs
  * **Gateway Integration**: Added gateway\_url and gateway\_admin\_rpc\_url to KMS
  * **KMS Relationships**: Created relationship table between teepods and KMS with soft deletion
  * **App ID Management**: New obtain\_app\_id functionality

  ## Infrastructure

  * **API Token Versioning**: Added default\_version for ApiToken
  * **Build System**: Fixed Node.js polyfills and build configurations
  * **Wallet Security**: Separated encryption keys for wallet management
</Update>

<Update label="July 28 - August 3, 2025" tags={["Teams", "Billing"]} rss={{ title: "Reserved Nodes & Billing Audit", description: "Team-based reserved nodes and comprehensive billing audit" }}>
  ## Workspace & Teams

  * **Reserved Nodes**: Teams can now have reserved nodes for dedicated resources
  * **Team Migrations**: Comprehensive migration system for team members and node associations
  * **Billing Audit**: New billing audit system for transaction tracking

  ## Features

  * **Password Setup**: Users can set up passwords and update usernames
  * **Startup Program**: New startup program page for eligible teams
  * **CalForm Integration**: Integrated calendar form for scheduling
</Update>

<Update label="July 21-27, 2025" tags={["OAuth", "KMS"]} rss={{ title: "OAuth Integration", description: "Social login with GitHub and Google" }}>
  ## Authentication

  * **OAuth Support**: Added OAuth integration with GitHub and Google
  * **Account Linking**: Users can link and unlink OAuth accounts
  * **Near Protocol**: Added Near protocol registration and login API

  ## KMS Features

  * **KMS Pagination**: Pagination info in KMS list API with detail endpoints
  * **Maintenance Mode**: UI support for maintenance mode
  * **Unit Input Component**: New unit input component for better UX

  ## Bug Fixes

  * Fixed Gateway Admin RPC incompatibility
  * Resolved node maintenance restrictions for resize operations
  * Improved soft ban handling for CVMs
</Update>

<Update label="July 14-20, 2025" tags={["API", "Limits"]} rss={{ title: "Boot Auth & Tier Limits", description: "New boot authentication API and updated tier limits" }}>
  ## API Development

  * **Boot Auth API**: New boot authentication API for secure VM initialization
  * **KMS List API**: List available KMS with slug support
  * **Available Resources**: API now returns remaining available resources and tier thresholds

  ## Features

  * **Node Maintenance**: Maintenance mode switch for node management
  * **Tier Limits**: Updated resource limits for each tier (free, pro, enterprise)
  * **KMS Slugs**: Support for using KMS slugs in API calls and admin CRUD
  * **Docker Compose Checker**: Script to validate docker-compose patterns

  ## UI/UX

  * **CalCom Integration**: Added CalCom meeting form for support scheduling
  * **KMS Slug Display**: Show KMS slugs in APIs and UI pages
</Update>

<Update label="July 7-13, 2025" tags={["GPU", "Workloads"]} rss={{ title: "GPU Instance Validation", description: "Model validation and workload filtering" }}>
  ## GPU Management

  * **Model Validation**: Added model\_id validation for GPU instance creation
  * **Workload Filtering**: Filter workloads by various criteria
  * **Proxy Log URL**: Support for proxy log URL via environment variable

  ## UI/UX

  * **Chat & Verify**: Added chat and verify buttons in CVM detail pages
  * **URL Checker**: New useUrlChecker hook for validation
  * **Delete Callbacks**: Custom navigation callbacks for delete dialogs
</Update>

<Update label="June 30 - July 6, 2025" tags={["Billing", "Admin"]} rss={{ title: "Team-Based Billing Migration", description: "Transition from user-based to team-based billing" }}>
  ## Billing System Evolution

  * **Team Billing Fields**: Prepared fields for moving from user-based to team-based billing
  * **Stripe Integration**: Added stripe\_customer\_id and payment method tracking to credits
  * **Team Tiers**: Added more TeamTier values for flexible pricing

  ## Admin Tools

  * **Search Query Builder**: New component for building complex search queries
  * **Enhanced Admin Panels**: Search-query-builder integration for CVMs, users, and instance events
  * **Invoice Admin**: AI-generated order administration interface

  ## UI/UX

  * **Logs & Containers**: Merged logs and containers view for better UX
  * **Compose File Editing**: Edit and reset functionality in CVM create form
</Update>

<Update label="June 23-29, 2025" tags={["CVM", "Monitoring"]} rss={{ title: "Scheduled Deletion & Monitoring", description: "CVM lifecycle management and enhanced monitoring" }}>
  ## CVM Operations

  * **Scheduled Deletion**: Added scheduled delete time functionality for automatic CVM cleanup
  * **Patch API**: New patch-style API alongside legacy CVM upgrade API
  * **Context Logging**: Task context logging with contextvars for better debugging

  ## Monitoring

  * **Sentry Alerts**: Enhanced Sentry alert integration
  * **CustomerIO Sync**: Sync all users to CustomerIO for analytics

  ## UI/UX

  * **Eliza Auto-fill**: Auto-fill RedPill API keys in Eliza builder
  * **GPU Feature Flag**: Admin-controlled GPU CVM creation feature flag
</Update>

<Update label="June 16-22, 2025" tags={["CVM", "Replica"]} rss={{ title: "CVM Replica", description: "Clone and replicate confidential VMs" }}>
  ## Major Features

  * **CVM Replica**: New replica functionality to clone CVMs with same configuration
  * **H200 Shared Instances**: Special handling for h200.shared instances preventing stop/restart
  * **Region Identifiers**: Show region identifier in node select list and APIs
  * **Instance Type Billing**: Added instance\_type with updated billing rate calculations

  ## API Enhancements

  * **Replica API**: New API endpoints for CVM replication
  * **Latest Status**: Support for latest Teepod status API
  * **CVM Lists**: API for listing CVMs under an app and their replicas

  ## Admin Tools

  * **Gateway Admin Client**: New GatewayAdminClient with transitional solution
</Update>

<Update label="June 9-15, 2025" tags={["GPU", "Events"]} rss={{ title: "GPU CVM Creation", description: "Create GPU-powered confidential VMs" }}>
  ## GPU Features

  * **GPU CVM API**: New API to create GPU-powered CVMs
  * **GPU Stats**: Added GpuSpecs type and GPU system info support
  * **Region Editing**: Edit region identifiers for nodes

  ## Event Tracking

  * **CustomerIO Integration**: Track major events with CustomerIO
  * **Event Emission**: Both create and start operations emit cvm\_running event

  ## Features

  * **Project Encryption**: Set app\_id\_salt, encrypted\_env\_pubkey, and kms\_id to projects
  * **Dev Image Support**: Support for setting passwords in dev images and expose DSTACK\_APP\_ID
  * **Hashid Support**: Added hashid support for senseless identifiers

  ## Admin Tools

  * **Node Management**: Comprehensive node management APIs and admin interface
</Update>

<Update label="June 2-8, 2025" tags={["GPU", "Templates"]} rss={{ title: "GPU Deployment UI", description: "User interface for GPU instance deployment" }}>
  ## GPU Infrastructure

  * **GPU Project Provisioning**: Server-side GPU project provisioning support
  * **GPU CVM Card**: Enhanced GPU CVM card and stats display
  * **GPU Deployment UI**: Complete UI components for GPU deployment
  * **GpuBasicStats**: New GPU statistics tracking

  ## Features

  * **Template Section**: Added template section for quick deployments
  * **Ollama Hub Service**: Integration with Ollama Hub
  * **ClickHouse**: Database initialization script for analytics
  * **Env Keys Tracking**: Metadata tracking for environment keys in deployment APIs

  ## Infrastructure

  * **PDM**: Switched to PDM for dependency management
  * **CustomerIO SDK**: Added CustomerIO SDK for marketing integration
</Update>

<Update label="May 26 - June 1, 2025" tags={["KMS", "Security"]} rss={{ title: "Onchain KMS Integration", description: "KMS integration for CVM launches and updates" }}>
  ## KMS Features

  * **KMS on Launch**: Onchain KMS integration when launching CVMs
  * **KMS Compose Updates**: KMS integration for compose file updates
  * **KMS App Config**: New KMS app configuration drawer
  * **KMS List**: Returns KMS list in available nodes query
  * **Proxied API**: Proxied get\_app\_env\_encrypt\_pubkey API through KMS

  ## Refactoring

  * **KMS Hooks**: Refactored KMS hooks with type safety utilities
  * **Network Hooks**: Simplified to use chainId instead of networkConfig
  * **Blockchain Operations**: Renamed useBlockchainOperations to useTx

  ## Bug Fixes

  * Fixed salt synchronization issues
  * Resolved dstack-gateway settings in AppCompose migration
  * Fixed OS image duplication checks
</Update>

<Update label="May 19-25, 2025" tags={["API", "Validation"]} rss={{ title: "Compose Validation & New APIs", description: "Docker-compose validation and structured error handling" }}>
  ## API Development

  * **Compose Validation**: Docker-compose validation on compose endpoints
  * **New Provision API**: Raw dstack vmconfiguration provision API
  * **App-Compose Update**: New API for CVM app-compose updates
  * **Collateral API**: Enhanced collateral API with compatibility helpers

  ## Features

  * **OS Image Tracking**: Save os\_image\_id when creating CVMs
  * **KMS Configuration**: Added kms\_urls and gateway\_urls to VmConfiguration
  * **Post-Paid Flag**: Added is\_post\_paid flag to credits
  * **Image Hash**: Renamed mr\_image to os\_image\_hash for clarity

  ## Infrastructure

  * **Test Coverage**: Added test-coverage report in pull requests
  * **Modular CVMs API**: Cut CVMs API into manageable chunks
</Update>

<Update label="May 12-18, 2025" tags={["Admin", "KMS"]} rss={{ title: "KMS & OS Image Admin", description: "CRUD interfaces for KMS and OS image management" }}>
  ## Admin Tools

  * **KMS CRUD**: Complete CRUD API and admin view for KMS management
  * **OS Image CRUD**: Complete CRUD API and admin view for OS images
  * **Order Processing**: Manual order status handling in admin

  ## Database

  * **KMS Table**: New table for KMS with fmspc and device\_id
  * **OS Image Table**: New OSImage and NodeOsImage tables
  * **Scheduled Tasks**: sync\_stripe\_order\_status and auto\_fix\_cvm\_status

  ## Infrastructure

  * **Python 3.13**: Updated required Python version to 3.13+
  * **Preflight Refactor**: Moved CVM launch and resize checks to preflight
</Update>

<Update label="May 5-11, 2025" tags={["Security", "Eliza"]} rss={{ title: "Email Verification & Eliza Updates", description: "Mandatory email verification and Eliza version support" }}>
  ## Security Features

  * **Email Verification**: New users must verify email before continuing
  * **Turnstile CAPTCHA**: Cloudflare Turnstile integration for registration
  * **Registration Limits**: API registration restrictions with frontend-only flow
  * **IP Audit Logs**: Save IP and user agent upon successful registration

  ## Eliza Integration

  * **Version Support**: Added Eliza v0.1.9-patch.2 and v0.25.9
  * **Mira Provider**: Added Mira as model provider in Eliza builder

  ## Fraud Prevention

  * **Telegram Bot**: Alert system for possible fraud order detection
  * **Email Reachability**: Track email reachability in registration logs
</Update>

<Update label="April 28 - May 4, 2025" tags={["Billing", "Attestation"]} rss={{ title: "Stripe Webhooks & DCAP", description: "Enhanced payment processing and attestation support" }}>
  ## Billing System

  * **Stripe Webhooks**: Save Stripe webhook logs to ClickHouse for audit
  * **Order Sync**: Added sync\_purchased\_orders functionality
  * **Stripe Service**: Handle charge refunds through StripeService
  * **Rate Limiting**: Registration rate limit of 2 accounts per hour

  ## Security

  * **DCAP Attestation**: Added DCAP attestation upload and verify API
  * **Proof API**: Compatible API for proof.t16z.com integration

  ## Infrastructure

  * **Redis Management**: Improved Redis connection management with aclose
  * **Type Annotations**: Enhanced type notations for SQLAlchemy models
</Update>

<Update label="April 21-27, 2025" tags={["Billing", "MCP"]} rss={{ title: "Coinbase Commerce", description: "Cryptocurrency payment support via Coinbase" }}>
  ## Billing Features

  * **Coinbase Commerce**: Setup billing flow for Coinbase callback
  * **Email Templates**: Jinja2 mailing template solution with staging tests
  * **Payment Dialog**: Dialog for Coinbase billing facts

  ## UI/UX

  * **MCP Hosting**: Sub-pages and TypeForm integration for MCP hosting
  * **Command Copy**: Copy button for CommandLine component in LaunchTab

  ## Technical

  * **Quote Parser**: SGX extension parser for quote validation
  * **Viber Coding**: KMS controller and app controller viber implementation
  * **Compose Hash**: Fixed compose hash algorithm for Rust compatibility
</Update>

<Update label="April 14-20, 2025" tags={["UI", "Billing"]} rss={{ title: "Launch Page Redesign", description: "Improved launch experience with step-by-step guide" }}>
  ## UI/UX

  * **GPU TEE Dashboard**: Updated GPU TEE dashboard page with new navigation
  * **Step Guide**: Step-by-step guide in launch page
  * **Deposit Button**: Added deposit button in launch view with amount selection
  * **Auto-fill Username**: Automatically fill username after registration

  ## Features

  * **Coinbase Terms**: Accept terms before deposit with Coinbase
  * **Version Check**: Check selected base image version before launch
  * **MCP Server Schema**: Added logo and provider to MCPServer schema

  ## Bug Fixes

  * Added disk size validation checks
  * Updated documentation and privacy policy links
  * Improved GPU TEE dashboard layout spacing
</Update>

<Update label="April 7-13, 2025" tags={["Admin", "History"]} rss={{ title: "Transaction History", description: "Complete transaction history and admin enhancements" }}>
  ## Features

  * **Transaction History**: View complete transaction history for account
  * **SEO**: Setup sitemap and robots.txt
  * **LLMs.txt**: Added markdown as llms.txt for AI crawlers
  * **Eliza Patched**: Use patched Eliza version, removed original 1.x images

  ## Admin Tools

  * **User Transactions**: Admin panel for user transaction list
  * **Instance Events**: Added instance events to admin interface
  * **Credit Indexing**: Added indexing for credit\_transactions for performance

  ## UI/UX

  * **MCP Landing**: New MCP-hosting landing page
  * **Navigation**: Added "About" to main navigation
</Update>

<Update label="March 31 - April 6, 2025" tags={["Admin", "Limits"]} rss={{ title: "Account Limits & Admin", description: "Usage limits and comprehensive admin panels" }}>
  ## Admin Tools

  * **CVM Admin**: Complete admin CVM list with pagination
  * **User Info**: Enhanced UserInfo component for admin view
  * **Verified Filter**: Added verified status filter for admin user list
  * **Billing Summary**: Billing summary in user overview

  ## Features

  * **Usage Limits**: Account-level usage limits for free tier
  * **Privacy & Terms**: Added privacy policy and terms of service
  * **CalCom Integration**: Contact form with CalCom scheduling

  ## Infrastructure

  * **Sentry**: Added Sentry for error capture
  * **SQLAlchemy Utils**: Added sqlalchemy-utils dependency
</Update>

<Update label="March 24-30, 2025" tags={["Teams", "Billing"]} rss={{ title: "Team-Based Architecture", description: "Shift to team-based billing and dedicated nodes" }}>
  ## Architecture Changes

  * **Team Billing**: Shifted from tier-based to CVM billing\_period based charges
  * **Dedicated Nodes**: Added dedicated\_for\_team\_id to teepods for team reservations
  * **Team Slugs**: Generate slug when creating teams
  * **Billing Rates**: Set billing price and compute unit at launch and resize

  ## API Changes

  * **Tier Compatibility**: Removed tier from business logic, kept API compatible
  * **Stripe Setup**: API for account verification with Stripe Setup Intent

  ## Infrastructure

  * **Python Slugify**: Added python-slugify dependency
  * **Money Type**: Direct comparison with int/float for Money type
</Update>

<Update label="March 17-23, 2025" tags={["UI", "Billing"]} rss={{ title: "Debt Settlement & MDX", description: "Debt settlement flow and policy pages" }}>
  ## UI/UX

  * **Log Viewer**: New log viewer component
  * **Debt Settlement**: Complete debt-settlement page and API
  * **Verification Form**: New VerificationForm component
  * **MDX Plugin**: Setup MDX plugin with policy and terms pages
  * **Submenu**: New submenu structure for usage and AI pages

  ## Features

  * **Free Quota**: Logic for free instance quota management
  * **RedPill Atom**: Added isRedpillEnabledAtom for feature control
  * **Pricing Calculator**: Compute resource pricing calculator

  ## Bug Fixes

  * Fixed attestation explorer functionality
  * Resolved scroll transition issues after build
  * Fixed sidebar default state
</Update>

<Update label="March 10-16, 2025" tags={["Notifications", "Orders"]} rss={{ title: "Notification System", description: "Comprehensive notification and order system" }}>
  ## Features

  * **Notifications**: New notification system with overdue alerts
  * **Payment History**: Complete payment order history
  * **Feature Flags**: Feature flags atom for client integration
  * **Money Type**: Using Money type in charging logic with granted\_balance handling

  ## API Development

  * **Feature Flags API**: Server-side feature flags API
  * **Granted Credits**: Returns granted-credits in /me API

  ## UI/UX

  * **Launch Page**: Use launch page by default
  * **Attestation Guide**: Improved RTMR3 reproduce documentation
</Update>

<Update label="March 3-9, 2025" tags={["Billing", "Payment"]} rss={{ title: "Payment Gateway Integration", description: "Multiple payment gateway support" }}>
  ## Payment Integration

  * **Coinbase Commerce**: Complete Coinbase charge and top-up API workflow
  * **Square API**: Square API integration (testing phase)
  * **Orders Table**: Added orders table, removed billing\_items
  * **HashedId**: New HashedId type for secure identifiers

  ## Infrastructure

  * **Money Type**: Added Money type for financial calculations
  * **CI Feedback**: Added feedback to PR if CI fails
  * **Staging Environment**: Added staging environment configuration
</Update>

<Update label="February 24 - March 2, 2025" tags={["Billing", "UI"]} rss={{ title: "Credits & Billing", description: "Credit-based billing system implementation" }}>
  ## Billing System

  * **Credit Billing**: Complete billing from credits system
  * **Overdue Handling**: Create overdue transactions and shutdown CVMs when due
  * **Team Transactions**: Added team\_id and has\_paid to CreditTransaction
  * **Billing Navigation**: New billing navigation structure

  ## UI/UX

  * **Billing Page**: New billing page with transaction history
  * **Container Query**: Using container-query for responsive design
  * **Registry Form**: Private container registry form
  * **Pre-launch Script**: Built-in pre-launch script attached by default
</Update>

<Update label="February 17-23, 2025" tags={["Tiers", "Events"]} rss={{ title: "Team Tiers & Event Logs", description: "Tiered team system with usage tracking" }}>
  ## Team Features

  * **Team Tiers**: Added team tier (free, pro, enterprise) with trial periods
  * **Capacity Limits**: Enable capacity limits for free tier users
  * **Usage Logs**: Enable usage and instance event logs for all users

  ## Admin Tools

  * **Tier Update**: Team tier update form and API
  * **User Filters**: Support filters in admin user list
  * **Event Tracking**: Events display in admin CVM view

  ## UI/UX

  * **Billing Details**: Details item table for billing records
  * **Resource API**: Use new resource API in compute panel
  * **Eliza Input**: CommaSeparatedInput for Twitter config
</Update>

<Update label="February 10-16, 2025" tags={["Eliza", "Billing"]} rss={{ title: "Eliza Builder & Rate Limiting", description: "Enhanced Eliza configuration and anti-abuse measures" }}>
  ## Eliza Features

  * **Eliza Versions**: Support for setting and updating Eliza versions
  * **Local Storage**: Save Eliza environment variables in local storage
  * **Config Form**: Eliza configuration edit form with all settings
  * **Project API**: New API for project list and details

  ## Security

  * **Rate Limiting**: IP + UA + language header based registration rate limiting
  * **Gmail Protection**: Prevent multiple registrations with same Gmail using + trick

  ## UI/UX

  * **Landing Page**: LLM-generated landing page
  * **Pricing Page**: LLM-generated pricing page with copy
  * **Billing UI**: Complete billing page components and layout
</Update>

<Update label="February 3-9, 2025" tags={["Stability"]} rss={{ title: "Stability Improvements", description: "Bug fixes and reliability enhancements" }}>
  ## Bug Fixes

  * Fixed docker-compose generation issues
  * Updated Eliza characters repository location
  * Resolved dev image detection problems
  * Fixed docker-compose depends\_on dictionary format

  ## Improvements

  * Allow HTTP endpoints in Teepod connect form
  * Check image existence before CVM creation
  * Added ensure\_cvm\_stopped utility function
  * Set Twitter 2FA secret as required field
</Update>

<Update label="January 27 - February 2, 2025" tags={["Eliza", "Teams"]} rss={{ title: "Eliza Provisioning & Teams", description: "Eliza hosting infrastructure and team system" }}>
  ## Eliza Hosting

  * **Character Loader**: Remote characterfile loader
  * **Provision API**: API to provision CVM for Eliza
  * **Eliza Apps Table**: hosted\_eliza\_apps table for tracking
  * **Web UI**: Complete web UI integration for Eliza provisioning

  ## Team System

  * **Teams Table**: New teams table with relationships
  * **Revisions**: Create revision tracking on CVM create and update
  * **Auto Team**: Automatically create team when creating user

  ## Security

  * **E2E Encryption**: Secrets E2E encrypted, not stored in characterfile
  * **Same-Site Only**: Only allow return to same-site on login/register
</Update>

<Update label="January 20-26, 2025" tags={["Eliza", "Auth"]} rss={{ title: "Eliza Builder UI", description: "Multi-step Eliza configuration interface" }}>
  ## Eliza Builder

  * **Multi-Step Form**: Complete multi-step form for Eliza characterfile editing
  * **Client Config**: Configuration input for all known Eliza clients
  * **Environment Input**: Enhanced environment variable input components
  * **Model Config**: Model provider configuration options

  ## Features

  * **Usage Check**: User usage and role checks for available Teepod allocation
  * **Image Parsing**: Parse list\_images response from Teepod RPC
  * **Stats API**: Standalone authorization token for stats API
</Update>

<Update label="January 13-19, 2025" tags={["Ownership", "Lifecycle"]} rss={{ title: "CVM Ownership & Lifecycle", description: "Transfer ownership and improved shutdown" }}>
  ## CVM Management

  * **Ownership Transfer**: Transfer CVM ownership between users
  * **Public State**: Change public state from CVM settings
  * **Graceful Shutdown**: Implemented graceful shutdown before upgrades
  * **Graceful Restart**: Restart CVM with graceful shutdown

  ## Bug Fixes

  * Fixed validation rules for Docker Compose restart field
  * Resolved credits calculation and CVM counts
  * Fixed compose manifest panel display issues
</Update>

<Update label="January 6-12, 2025" tags={["Promo", "Admin"]} rss={{ title: "Promotion Codes", description: "Invite and promotion code system" }}>
  ## Features

  * **Promotion Codes**: Use promotion codes as invite codes
  * **MailerLite**: Save mailerlite\_user\_id for marketing
  * **User Management**: Added disabled flag and email field to users table

  ## Bug Fixes

  * Fixed API key authentication issues
  * Resolved CVM attestation retrieval problems
  * Fixed Teepod admin list filters
  * Improved status and progress detection

  ## Improvements

  * Auto-refetch CVM info on mount
  * Hide port 443 in public endpoints for cleaner URLs
  * Unified cookie management
</Update>

<Update label="December 30 - January 5, 2025" tags={["Docker"]} rss={{ title: "Docker Compose Fixes", description: "Docker configuration improvements" }}>
  ## Bug Fixes

  * Fixed docker\_config schema validation
  * Resolved docker-compose.yml user existence checks
</Update>

<Update label="December 23-29, 2024" tags={["Monitoring"]} rss={{ title: "Teepod Monitoring", description: "Enhanced Teepod status tracking" }}>
  ## Features

  * **Status Checking**: Scheduled task to check Teepod status
  * **App-Compose V2**: Adjusted for app-compose v2 schema
  * **Metadata Sync**: sync\_teepod\_metadata and ping API

  ## UI/UX

  * **Reversed Order**: Show CVMs in reversed order (most recent first)
  * **Creating Status**: More accurate creating status display
  * **Search**: Enhanced search functionality
</Update>

<Update label="December 16-22, 2024" tags={["Billing", "Events"]} rss={{ title: "Event Emission", description: "Instance and resize event tracking" }}>
  ## Features

  * **Event Emission**: Emit instance and resize events for tracking
  * **Encrypted Environment**: Update encrypted environment variables

  ## Bug Fixes

  * Fixed billing for CVMs not charged for full hour
  * Resolved foreign key issues
  * Fixed asyncio and async SQLAlchemy compatibility
</Update>

<Update label="December 9-15, 2024" tags={["Upgrades"]} rss={{ title: "CVM Upgrades", description: "Upgrade infrastructure and registry" }}>
  ## Features

  * **CVM Upgrade**: Minimal implementation for CVM upgrades
  * **Upgrade Registry**: Simple upgrade registry system
  * **Redis Job Store**: Setup Redis as job store for scheduling
  * **URL Arguments**: Support URL argument identifiers

  ## UI/UX

  * **Compose Editor**: Improved compose edit form
  * **Health Check**: Enhanced CVM health checking
  * **Error Handling**: Better error handling for ofetch and QueryClient
</Update>

<Update label="December 2-8, 2024" tags={["Infrastructure"]} rss={{ title: "Infrastructure Work", description: "Backend infrastructure improvements" }}>
  ## Infrastructure

  * Various backend optimizations and improvements
  * Code refactoring and cleanup
  * Performance enhancements
</Update>

<Update label="November 25 - December 1, 2024" tags={["Foundation"]} rss={{ title: "Platform Foundation", description: "Core platform features and admin tools" }}>
  ## Features

  * **VM Status**: Added "starting" status for better state tracking
  * **Pod Lifecycle**: Wait for pod alive after creation
  * **API Tokens**: Token list, generate, and revoke functionality

  ## Admin Tools

  * **Admin Panel**: Comprehensive admin for users, credits, and promotion codes

  ## UI/UX

  * **Consistent Flow**: Built consistent request flow for different CVM create workflows
  * **VM List UI**: New UI for VM list presentation

  ## API Development

  * **K8s-like API**: Kubernetes-like spec-based pod create API
</Update>
