Skip to content
DeepintShield DeepintShield

v1.3.8

DeepIntShield Enterprise v1.3.8

This release upgrades the base OSS version from v1.4.10 to v1.4.11, bringing Anthropic cache control for tool calls, Helm graceful shutdown improvements, Codex compatibility fixes, and numerous streaming/serialization bug fixes. On the enterprise side, Gray Swan guardrails now support custom base URLs.

This build also upgrades to go 1.26.1 - that fixes CVE-2026-25679, CVE-2026-27137, CVE-2026-27138, CVE-2026-27139, CVE-2026-27142.

✨ Features

Section titled β€œβœ¨ Features”
  • Gray Swan Custom Base URL β€” Added support for custom base URLs in Gray Swan guardrails configuration
  • Anthropic Cache Control for Tool Calls β€” Added cache-control support for Anthropic tool calls
  • Helm Graceful Shutdown β€” Added graceful shutdown and HPA stabilization for streaming connections
  • Logstore Sonic Serialization β€” Replaced encoding/json with sonic for logstore serialization, improving performance
  • Maxim Attachments β€” Added attachment support to Maxim plugin

🚨 Breaking changes

Section titled β€œπŸš¨ Breaking changes”

Based on our recent pentesting, we have updated configuration for open endpoints.

  1. /metrics endpoint is now protected behind auth. You can create an API key - and add Metrics scope to it. You have to configure scraper with Header authorization bearer api_key

🐞 Fixed

Section titled β€œπŸž Fixed”
  • Codex Compatibility β€” Fixed fallback handling and request decompression for Codex compatibility
  • Anthropic SSE Streaming β€” Use NewSSEScanner for Responses API streaming
  • Audio Filename Preservation β€” Preserve original audio filename in transcription requests
  • Proxy Override β€” Fixed proxy override handling
  • Raw Request Serialization β€” Fixed raw request serialization in SSE events
  • Key List Models β€” Fixed key list models serialization
  • Async Job Recovery β€” Fixed async jobs stuck in β€œprocessing” on marshal failure, now correctly transition to β€œfailed”
  • Valkey/Redis Vector Store β€” Improved Valkey Search compatibility and correctness in Redis vector store
  • Semanticcache Nil Check β€” Added nil check on message Content before accessing fields
  • Dashboard Overflow β€” Resolved dashboard and provider config overflow regressions
  • Config Schema Alignment β€” Fixed config schema and added test to verify Go model alignment
  • Key Selection Panic β€” Prevent panic in key selection when all keys have zero weight
  • Security Patches β€” Applied security patches including default Anthropic error type fix

πŸ“€ Base OSS version

Section titled β€œπŸ“€ Base OSS version”
transports/v1.4.12-0.20260306144022-5ac7c2732345

πŸ”Œ If you are compiling plugin against this release - use following deps

Section titled β€œπŸ”Œ If you are compiling plugin against this release - use following deps”
github.com/maximhq/deepintshield/core v1.4.8-0.20260306144022-5ac7c2732345
github.com/maximhq/deepintshield/framework v1.2.26
github.com/maximhq/deepintshield/plugins/governance v1.4.27
github.com/maximhq/deepintshield/plugins/logging v1.4.27
github.com/maximhq/deepintshield/transports v1.4.12-0.20260306144022-5ac7c2732345