From 8f51492b88855c6abb6bf81171a661cbcd698cee Mon Sep 17 00:00:00 2001
From: "mintlify[bot]" <109931778+mintlify[bot]@users.noreply.github.com>
Date: Mon, 8 Jun 2026 09:10:48 +0000
Subject: [PATCH] =?UTF-8?q?docs:=20add=20changelog=20entries=20for=20CLI?=
=?UTF-8?q?=20v2.24.0=E2=80=93v2.24.2=20and=20Platform=20updates?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
---
changelog/index.mdx | 66 +++++++++++++++++++++++++++++++++++++++++++++
1 file changed, 66 insertions(+)
diff --git a/changelog/index.mdx b/changelog/index.mdx
index 4fac8c2..8505a36 100644
--- a/changelog/index.mdx
+++ b/changelog/index.mdx
@@ -4,6 +4,72 @@ description: "Release notes for Kosli products."
rss: true
---
+
+
+## New features
+
+- **Edit a control** — update an existing control via `PUT /api/v2/controls/{org}/{identifier}` or from the UI.
+- **View a single decision** — fetch decision detail through the API and inspect it in a dedicated UI tray.
+
+## Updates
+
+- **Consistent "organization" wording** — standardized spelling across user-facing strings in the app.
+- **Simpler invite acceptance** — accepting an invite now requires OTP verification only when the logged-in user's email doesn't match the invitation; matching emails are accepted directly regardless of auth provider.
+
+## Bug fixes
+
+- **Security: service account API keys on public orgs** — fixed a path that could return an arbitrary membership document for unauthenticated callers on public orgs, potentially exposing service account API keys. `is_admin(None)` now always returns `False`.
+- **Flows page** — guarded against a null `space_id` element that could break the flows listing.
+- **Redirects** — all query parameters are now preserved through redirects.
+
+
+
+
+
+## New features
+
+- **`for_control` policy compliance** — snapshot compliance now evaluates `for_control` policy requirements. When a policy requires a passing decision attestation for a specific control, the snapshot is checked against a matching decision for that control.
+
+## Updates
+
+- **Assert artifact response includes `for_control`** — the assert artifact API now returns the control identifier in the resolution context for `for_control` rule failures, so clients can show which specific control is unsatisfied.
+
+
+
+
+
+## New features
+
+- **`linux/s390x` builds** — the CLI is now published for `linux/s390x` so it can be installed natively on IBM Z hosts.
+
+## Bug fixes
+
+- Bumped Go to 1.26.4 to address standard-library CVEs.
+
+[View on GitHub](https://github.com/kosli-dev/cli/releases/tag/v2.24.2)
+
+
+
+
+
+## Updates
+
+- **`kosli assert artifact`** — when a `for_control` policy rule fails, the failure output now names the specific control identifier that is unsatisfied, making it easier to act on policy failures in CI.
+
+[View on GitHub](https://github.com/kosli-dev/cli/releases/tag/v2.24.1)
+
+
+
+
+
+## Updates
+
+- **SonarQube authentication** — `kosli attest sonar` now falls back to HTTP Basic auth (token as username) on self-hosted SonarQube Server versions earlier than 10.0, which reject `Authorization: Bearer`. The fallback is transparent for self-hosted servers and never applied to SonarCloud. Authentication errors now distinguish 401/403 token or permission problems from 5xx server-availability issues instead of the previous generic "please check your API token" message.
+
+[View on GitHub](https://github.com/kosli-dev/cli/releases/tag/v2.24.0)
+
+
+
## New features