Changelog

Product updates, security fixes, and new features.

v1.4.0

April 2026Latest
  • New `medusa-agent doctor` command — 9 diagnostic checks verify config, API key, policy sync, telemetry, DLP model, MCP discovery, daemon health, event store, and network connectivity
  • Post-install verification — automatic health checks run after `medusa-agent install` to confirm the agent works and communicates with the dashboard
  • Smoke test flag — `medusa-agent install --smoke-test` runs full diagnostics after install, exits non-zero on failure (CI/automation ready)
  • Configurable Supabase URL — override via `--supabase-url` flag or `MEDUSA_SUPABASE_URL` environment variable (enables multi-environment deployments)
  • JSON output for doctor — `medusa-agent doctor --json` for machine-readable diagnostics
  • Simplified deploy wizard — merged download + configure into a single 'Install Agent' step with platform-specific commands for macOS, Linux, and Windows
  • macOS quick install script — one-liner `curl | bash` downloads, installs .pkg, configures agent, and runs diagnostics automatically
  • Linux env-file auto-configure — set `MEDUSA_API_KEY` in `/etc/default/medusa-agent` to auto-register on package install
  • Connection poller now suggests `medusa-agent doctor` in troubleshooting tips when agent detection times out
  • Fleet health badges — DLP model status and policy sync freshness shown per-agent in Endpoint Inventory table
  • Install diagnostics — agent sends install step results to dashboard on registration, displayed in deploy wizard connected card
  • Install rollback — failed installations automatically undo completed steps (gateway uninstall, config cleanup, store removal)
  • 12 new Windows platform tests — full coverage for service install, start, stop, uninstall, is_running, and failure handling
  • 11 new installer tests — registration success/failure, daemon lifecycle, keep-data uninstall, gateway error tracking
  • 6 new integration tests — end-to-end install/uninstall cycle, diagnostics collection, rollback verification, idempotent reinstall
  • 33 new unit tests for all 9 diagnostic checks with success and failure paths

v1.3.6

April 2026
  • Code cleanup — removed 36+ duplicate inline imports across gateway modules (dlp.py, proxy.py, http_proxy.py)
  • Fixed redundant exception handler in DLP scanner ((ValueError, Exception) simplified to Exception)
  • Added missing type hints for _evaluate_policy in HTTP proxy
  • Resolved stale TODO comments in policy sync module
  • Comprehensive README rewrite — architecture diagram, feature sections, DLP detection table, supported clients matrix

v1.3.5

April 2026
  • Cross-request DLP evasion prevention — WriteAccumulator tracks accumulated file content across multiple tool calls and re-scans for PII
  • Detects split-write attacks where LLM agents chunk sensitive data across create_file, append_file, and edit_file calls to bypass single-request DLP
  • Per-file content buffer with 1MB cap and LRU eviction (100 files max) — no persistence needed, lives in proxy session memory
  • Evasion alerts logged to telemetry with chunk count, tool call sequence, and time span metadata
  • File rename tracking — content buffer follows renamed/moved files
  • Improved DLP coaching messages — agents are firmly instructed to stop all PII transmission attempts including splitting and encoding
  • Fix: gateway-proxy orphan process cleanup — monitors parent process exit and kills entire process group to prevent zombie MCP server accumulation

v1.3.4

April 2026
  • Built-in regex PII detectors — deterministic safety net for SSN, email, phone, credit card, street addresses, DOB, passport, driver's license, and IP addresses
  • Hybrid DLP pipeline — ML model + regex patterns run in parallel; regex fires at confidence 1.0 even when ML model scores below threshold
  • File path false-positive filter now covers all categories (not just secrets), preventing spurious blocks on filesystem paths

v1.3.3

April 2026
  • Fix: DLP policies now enforced — policy signing secret auto-configured during install so dashboard policies are applied
  • Fix: PyInstaller frozen binary detection — daemon no longer crashes with -m flag on native installs
  • Fix: Plugin MCP configs with mcpServers wrapper (e.g. VoiceMode) now correctly proxied
  • System-wide MCP server discovery — scans config directories for any MCP config file, not just known clients
  • TOML config parsing — Codex and other TOML-based MCP clients now discovered and proxied on install
  • Status command shows 'Servers configured' (gateway-wrapped) and 'Proxies running' (active processes)
  • Uninstall clears log files for clean reinstalls
  • Versioned installer filenames — artifacts include release tag (e.g. medusa-agent-1.3.3-darwin-arm64.pkg)
  • Medusa logo branding on macOS .pkg installer, Windows .exe, and installer wizard

v1.3.0

April 2026
  • Binary installer distribution — download .pkg (macOS), .deb (Linux), .msi (Windows) directly from the dashboard
  • 4-step guided deploy wizard — generate API key, download installer, configure agent, verify connection
  • OTA auto-update pipeline — push updates from dashboard, agents download, install, and restart automatically
  • Platform-specific update installer with 3-tier fallback (native installer → sudo → direct binary swap)
  • Pre-shutdown binary installation for safe in-place updates across all platforms
  • Update status tracking on dashboard — downloading, installing, completed, failed states with error details
  • SHA-256 checksum auto-generation in CI release pipeline
  • GitHub Releases as distribution channel with per-platform installer artifacts
  • DLP incident query cleanup — removed dead filter patterns for accurate event matching
  • Full ruff lint and format compliance across entire codebase
  • CI pipeline fully green — tests, type checks, lint, and format all passing

v0.3.0

April 2026
  • ONNX DLP model with 10 detection categories (secrets, PII, financial, health, injection, code, legal, HR, insurance, business)
  • File content extraction — scan PDFs, XLSX, DOCX, and images (OCR) for sensitive data inside binary files
  • Policy engine with dashboard-configurable rules — DLP toggles, tool blocking, argument inspection, rate limiting
  • Fleet management dashboard with MCP server inventory and agent health monitoring
  • HMAC-SHA256 policy signing between dashboard and agents
  • SHA-256 model integrity verification on every load
  • 10-second inference timeout and 10MB message size limit
  • ReDoS protection for custom regex patterns
  • Atomic config writes for MCP client configurations
  • File permission hardening (0700 directory, 0600 config/DB)
  • Agent ID validation in edge functions
  • Security headers (X-Frame-Options, CSP, Referrer-Policy)
  • Rate limiting on all API routes
  • Stitch dark theme UI redesign across all dashboard pages
  • Pricing page with 3-tier model (Free, Pro, Enterprise)
  • Password reset flow (forgot password, reset password)
  • Custom 404 and 500 error pages
  • Comprehensive documentation page
  • Profile page with account info and danger zone

v0.2.0

March 2026
  • Gateway proxy for stdio MCP servers — transparent JSON-RPC interception
  • HTTP proxy for Streamable HTTP MCP servers
  • Config rewriter with auto-discovery for Claude Desktop, Cursor, Codex, and 9 more MCP clients
  • Backup and restore for MCP client configurations
  • Telemetry upload to Supabase dashboard (batch events every 60s)
  • Policy sync from dashboard (5-minute interval with ETag caching)
  • Basic DLP scanning with regex patterns
  • Agent daemon with launchd (macOS), systemd (Linux), Windows Service support
  • Auto-update mechanism with SHA-256 binary verification

v0.1.0

February 2026
  • Initial Medusa agent with CLI (install, uninstall, start, stop, status, version)
  • SQLite event store with WAL mode for concurrent proxy/daemon access
  • Agent registration with Supabase dashboard
  • API key authentication system
  • Platform-specific daemon management (launchd, systemd, Windows Service)
  • Basic MCP client discovery