STIR/SHAKEN egress signing is default-on.
Outbound calls now carry an attestation PASSporT in every SIP INVITE. Unsigned egress is no longer permitted on the platform.
Changelog
Versions you
can read.
Every release goes here. Features, fixes, policy changes, and security bumps — all dated, versioned, and explained. Major bumps come with migration notes.
Webhook signing accepts a second secret for rotation.
`Dials-Signature` may carry two `v1` values for up to 24 hours during a rotation window. SDKs verify against either.
MCP server reaches General Availability.
Every read-and-dial path is exposed as an MCP tool. Per-tool scopes, hashed audit, and tenant-aware audience.
Idempotency window extended to 24 hours.
Previously 1 hour. SDKs auto-generate keys for any unsafe call. No client change required.
Outbound calls denied without an E911 binding.
A seat without a validated dispatchable address can no longer place any outbound call, not just 911. Compliance fix.
Messaging: 10DLC brand and campaign registration in-platform.
Brand and campaign objects now first-class. Vetting, status, and TCR pass-through audited and event-driven.
Per-tenant region pinning for recordings.
Tenants on US, CA, EU regions. Customer-managed keys available on Enterprise.
Webhook DLQ inspector API.
Read entries in your dead-letter queue, replay them, and export as JSON. Per-subscription scope required.
Errors switched to RFC 9457 problem+json.
All 4xx and 5xx responses now `application/problem+json`. SDKs unchanged. Direct HTTP consumers should update parsing.
v1 General Availability.
Versioned API contract. Twelve-month deprecation policy. Six-month minimum compatibility for every minor.
Subscribe to releases.
Webhook subscriptions can include the `platform.release` topic — every release published lands at your endpoint signed.