From f91f7935e867b2c944d8f261a213e84cbc8ff810 Mon Sep 17 00:00:00 2001
From: eclairen <236733058+eclairen@users.noreply.github.com>
Date: Thu, 21 May 2026 20:56:23 +0000
Subject: [PATCH 1/5] Add May 21 changelog entry

---
 changelog.mdx | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)

diff --git a/changelog.mdx b/changelog.mdx
index abce5b2..a6a3dfd 100644
--- a/changelog.mdx
+++ b/changelog.mdx
@@ -9,6 +9,25 @@ import { YouTubeVideo } from '/snippets/youtube-video.mdx';
 For API library updates, see the [Node SDK](https://github.com/onkernel/kernel-node-sdk/blob/main/CHANGELOG.md), [Python SDK](https://github.com/onkernel/kernel-python-sdk/blob/next/CHANGELOG.md), and [Go SDK](https://github.com/onkernel/kernel-go-sdk/blob/main/CHANGELOG.md) changelogs.
 </Note>
 
+<Update label="May 21" tags={["Product", "Docs"]}>
+## Product updates
+
+- Added auto standby to browser pool instances — pools can now automatically suspend when idle and resume on the next incoming request, reducing costs without manual intervention.
+- New browser configuration options on `browsers.create()` and browser pool definitions: [`chrome_policy`](/browsers/pools/policy-json) (previously pool-only, also fixes a bug where the policy was silently dropped before reaching the VM) and `start_url` for opening directly to a specified URL on launch. The corresponding `--start-url` flag is available in the [CLI](https://github.com/kernel/cli).
+- Exposed full [Projects](/info/projects) CRUD in the public API, so projects can be created, updated, and deleted programmatically alongside the existing list endpoint.
+- **Managed auth improvements.** Added health-check and automatic re-authentication controls to the [managed auth API](/auth/overview), letting you configure check intervals and reauth triggers per connection (health checks are skipped until the first successful login so brand-new connections don't churn). Sessions are now automatically recorded — when a connection enters `NEEDS_AUTH` on the dashboard, a "View last login attempt" link routes directly to the session replay, and /auth rows now show a re-auth capability chip. Also: broader SSO and OAuth provider coverage, support for Google's two-step mobile prompt flow, per-connection post-login wait configuration (`post_login.wait_ms`), automatic SSO provider brand icons in auth dialogs, MFA alternatives displayed on the external action waiting screen, more reliable surfacing of `awaiting_external_action` when fallback actions exist, captcha auto-solver waits on the CUA path, and a post-login browser refresh before the profile snapshot is captured for cleaner saved sessions.
+- Extended `proxy.check()` with an optional `url` parameter for testing reachability against a specific target domain before assigning the proxy — useful for catching proxies that pass generic health checks but are blocked on your actual target site.
+- Persistent browsers have reached end of life and have been fully removed. Use [`timeout_seconds`](/browsers/termination) with [Profiles](/auth/profiles) as a replacement.
+
+## Documentation updates
+
+- Added a new [hCaptcha](/browsers/captcha/hcaptcha) page documenting beta support for hCaptcha solving.
+- Refreshed [managed auth](/auth/overview) documentation for May 2026: new dedicated [health checks and re-authentication](/auth/health-checks) page, a shared [connection configuration](/auth/connections) reference, documented `success_url` / `error_url` query parameters for the [hosted UI](/auth/hosted-ui), [`start_url`](/browsers/create-a-browser) references across browser and pool docs, a reorganized sidebar, and new FAQ entries for short-session reauth and multi-step login forms.
+- Clarified that managed residential proxy IPs are stable within a session but are not guaranteed to persist across sessions.
+- Clarified that profile updates do not propagate to idle browser pool instances — pools must be recycled for profile changes to take effect.
+- Updated the [Yutori integration guide](/integrations/computer-use/yutori) to Navigator n1.5.
+</Update>
+
 <Update label="May 8" tags={["Product", "Docs"]}>
 ## Product updates
 

From 720df20591449026cdbc4524ba79fcfbfa2f3437 Mon Sep 17 00:00:00 2001
From: eclairen <erin@onkernel.com>
Date: Thu, 21 May 2026 14:00:44 -0700
Subject: [PATCH 2/5] Update changelog with new features and improvements

Updated changelog with new features and improvements, including managed auth enhancements, proxy testing options, and removal of persistent browsers.
---
 changelog.mdx | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/changelog.mdx b/changelog.mdx
index a6a3dfd..9047762 100644
--- a/changelog.mdx
+++ b/changelog.mdx
@@ -15,9 +15,9 @@ For API library updates, see the [Node SDK](https://github.com/onkernel/kernel-n
 - Added auto standby to browser pool instances — pools can now automatically suspend when idle and resume on the next incoming request, reducing costs without manual intervention.
 - New browser configuration options on `browsers.create()` and browser pool definitions: [`chrome_policy`](/browsers/pools/policy-json) (previously pool-only, also fixes a bug where the policy was silently dropped before reaching the VM) and `start_url` for opening directly to a specified URL on launch. The corresponding `--start-url` flag is available in the [CLI](https://github.com/kernel/cli).
 - Exposed full [Projects](/info/projects) CRUD in the public API, so projects can be created, updated, and deleted programmatically alongside the existing list endpoint.
-- **Managed auth improvements.** Added health-check and automatic re-authentication controls to the [managed auth API](/auth/overview), letting you configure check intervals and reauth triggers per connection (health checks are skipped until the first successful login so brand-new connections don't churn). Sessions are now automatically recorded — when a connection enters `NEEDS_AUTH` on the dashboard, a "View last login attempt" link routes directly to the session replay, and /auth rows now show a re-auth capability chip. Also: broader SSO and OAuth provider coverage, support for Google's two-step mobile prompt flow, per-connection post-login wait configuration (`post_login.wait_ms`), automatic SSO provider brand icons in auth dialogs, MFA alternatives displayed on the external action waiting screen, more reliable surfacing of `awaiting_external_action` when fallback actions exist, captcha auto-solver waits on the CUA path, and a post-login browser refresh before the profile snapshot is captured for cleaner saved sessions.
-- Extended `proxy.check()` with an optional `url` parameter for testing reachability against a specific target domain before assigning the proxy — useful for catching proxies that pass generic health checks but are blocked on your actual target site.
-- Persistent browsers have reached end of life and have been fully removed. Use [`timeout_seconds`](/browsers/termination) with [Profiles](/auth/profiles) as a replacement.
+- Managed auth improvements: Added health check and automatic re-authentication controls to the [managed auth API](/auth/overview), letting you configure check intervals and reauth triggers per connection. Sessions are now automatically recorded — when a connection enters `NEEDS_AUTH` on the dashboard, a "View last login attempt" link routes directly to the session replay, and /auth rows now show a re-auth capability chip. Also, broader SSO and OAuth provider coverage, support for Google's two-step mobile prompt flow, per-connection post-login wait configuration (`post_login.wait_ms`), automatic SSO provider brand icons in auth dialogs, MFA alternatives displayed on the external action waiting screen, and a post-login browser refresh before the profile snapshot is captured for cleaner saved sessions.
+- Extended `proxy.check()` with an optional `url` parameter for testing reachability against a specific target domain before assigning the proxy. This is useful for catching proxies that pass generic health checks but are blocked on your target site.
+- End of life'd persistent browsers. If you were using persistence, we suggest [`timeout_seconds`](/browsers/termination) with [Profiles](/auth/profiles).
 
 ## Documentation updates
 

From 53041967f0ec63b3e81e89963c4e08e9943f5f1b Mon Sep 17 00:00:00 2001
From: eclairen <erin@onkernel.com>
Date: Thu, 21 May 2026 14:23:30 -0700
Subject: [PATCH 3/5] Update changelog.mdx

---
 changelog.mdx | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/changelog.mdx b/changelog.mdx
index 9047762..1912231 100644
--- a/changelog.mdx
+++ b/changelog.mdx
@@ -13,7 +13,7 @@ For API library updates, see the [Node SDK](https://github.com/onkernel/kernel-n
 ## Product updates
 
 - Added auto standby to browser pool instances — pools can now automatically suspend when idle and resume on the next incoming request, reducing costs without manual intervention.
-- New browser configuration options on `browsers.create()` and browser pool definitions: [`chrome_policy`](/browsers/pools/policy-json) (previously pool-only, also fixes a bug where the policy was silently dropped before reaching the VM) and `start_url` for opening directly to a specified URL on launch. The corresponding `--start-url` flag is available in the [CLI](https://github.com/kernel/cli).
+- New browser configuration options on `browsers.create()` and browser pool definitions: [`chrome_policy`](/browsers/pools/policy-json) and `start_url` for opening directly to a specified URL on launch. The corresponding `--start-url` flag is available in the [CLI](https://github.com/kernel/cli).
 - Exposed full [Projects](/info/projects) CRUD in the public API, so projects can be created, updated, and deleted programmatically alongside the existing list endpoint.
 - Managed auth improvements: Added health check and automatic re-authentication controls to the [managed auth API](/auth/overview), letting you configure check intervals and reauth triggers per connection. Sessions are now automatically recorded — when a connection enters `NEEDS_AUTH` on the dashboard, a "View last login attempt" link routes directly to the session replay, and /auth rows now show a re-auth capability chip. Also, broader SSO and OAuth provider coverage, support for Google's two-step mobile prompt flow, per-connection post-login wait configuration (`post_login.wait_ms`), automatic SSO provider brand icons in auth dialogs, MFA alternatives displayed on the external action waiting screen, and a post-login browser refresh before the profile snapshot is captured for cleaner saved sessions.
 - Extended `proxy.check()` with an optional `url` parameter for testing reachability against a specific target domain before assigning the proxy. This is useful for catching proxies that pass generic health checks but are blocked on your target site.

From 6c2f4373c0bb3e7c962e1e301693b1bb94d2261a Mon Sep 17 00:00:00 2001
From: eclairen <236733058+eclairen@users.noreply.github.com>
Date: Thu, 21 May 2026 21:14:00 +0000
Subject: [PATCH 4/5] Fix broken doc links in May 21 changelog

---
 changelog.mdx | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/changelog.mdx b/changelog.mdx
index 1912231..588e1d6 100644
--- a/changelog.mdx
+++ b/changelog.mdx
@@ -21,8 +21,8 @@ For API library updates, see the [Node SDK](https://github.com/onkernel/kernel-n
 
 ## Documentation updates
 
-- Added a new [hCaptcha](/browsers/captcha/hcaptcha) page documenting beta support for hCaptcha solving.
-- Refreshed [managed auth](/auth/overview) documentation for May 2026: new dedicated [health checks and re-authentication](/auth/health-checks) page, a shared [connection configuration](/auth/connections) reference, documented `success_url` / `error_url` query parameters for the [hosted UI](/auth/hosted-ui), [`start_url`](/browsers/create-a-browser) references across browser and pool docs, a reorganized sidebar, and new FAQ entries for short-session reauth and multi-step login forms.
+- Added a new [hCaptcha](/browsers/bot-detection/hcaptcha) page documenting beta support for hCaptcha solving.
+- Refreshed [managed auth](/auth/overview) documentation for May 2026: new dedicated [connection lifecycle](/auth/connection-lifecycle) page covering health checks and re-authentication, a shared [connection configuration](/auth/configuration) reference, documented `success_url` / `error_url` query parameters for the [hosted UI](/auth/hosted-ui), [`start_url`](/browsers/create-a-browser) references across browser and pool docs, a reorganized sidebar, and new FAQ entries for short-session reauth and multi-step login forms.
 - Clarified that managed residential proxy IPs are stable within a session but are not guaranteed to persist across sessions.
 - Clarified that profile updates do not propagate to idle browser pool instances — pools must be recycled for profile changes to take effect.
 - Updated the [Yutori integration guide](/integrations/computer-use/yutori) to Navigator n1.5.

From 9ce6754df56fcbac0ec0f8790c4ef6a31b7442bf Mon Sep 17 00:00:00 2001
From: eclairen <erin@onkernel.com>
Date: Thu, 21 May 2026 14:41:53 -0700
Subject: [PATCH 5/5] Update changelog.mdx

---
 changelog.mdx | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/changelog.mdx b/changelog.mdx
index 588e1d6..68c8152 100644
--- a/changelog.mdx
+++ b/changelog.mdx
@@ -13,7 +13,7 @@ For API library updates, see the [Node SDK](https://github.com/onkernel/kernel-n
 ## Product updates
 
 - Added auto standby to browser pool instances — pools can now automatically suspend when idle and resume on the next incoming request, reducing costs without manual intervention.
-- New browser configuration options on `browsers.create()` and browser pool definitions: [`chrome_policy`](/browsers/pools/policy-json) and `start_url` for opening directly to a specified URL on launch. The corresponding `--start-url` flag is available in the [CLI](https://github.com/kernel/cli).
+- Launched new browser configuration options on `browsers.create()` and browser pool definitions: [`chrome_policy`](/browsers/pools/policy-json) and `start_url` for opening directly to a specified URL on launch. The corresponding `--start-url` flag is available in the [CLI](https://github.com/kernel/cli).
 - Exposed full [Projects](/info/projects) CRUD in the public API, so projects can be created, updated, and deleted programmatically alongside the existing list endpoint.
 - Managed auth improvements: Added health check and automatic re-authentication controls to the [managed auth API](/auth/overview), letting you configure check intervals and reauth triggers per connection. Sessions are now automatically recorded — when a connection enters `NEEDS_AUTH` on the dashboard, a "View last login attempt" link routes directly to the session replay, and /auth rows now show a re-auth capability chip. Also, broader SSO and OAuth provider coverage, support for Google's two-step mobile prompt flow, per-connection post-login wait configuration (`post_login.wait_ms`), automatic SSO provider brand icons in auth dialogs, MFA alternatives displayed on the external action waiting screen, and a post-login browser refresh before the profile snapshot is captured for cleaner saved sessions.
 - Extended `proxy.check()` with an optional `url` parameter for testing reachability against a specific target domain before assigning the proxy. This is useful for catching proxies that pass generic health checks but are blocked on your target site.
@@ -24,8 +24,8 @@ For API library updates, see the [Node SDK](https://github.com/onkernel/kernel-n
 - Added a new [hCaptcha](/browsers/bot-detection/hcaptcha) page documenting beta support for hCaptcha solving.
 - Refreshed [managed auth](/auth/overview) documentation for May 2026: new dedicated [connection lifecycle](/auth/connection-lifecycle) page covering health checks and re-authentication, a shared [connection configuration](/auth/configuration) reference, documented `success_url` / `error_url` query parameters for the [hosted UI](/auth/hosted-ui), [`start_url`](/browsers/create-a-browser) references across browser and pool docs, a reorganized sidebar, and new FAQ entries for short-session reauth and multi-step login forms.
 - Clarified that managed residential proxy IPs are stable within a session but are not guaranteed to persist across sessions.
-- Clarified that profile updates do not propagate to idle browser pool instances — pools must be recycled for profile changes to take effect.
 - Updated the [Yutori integration guide](/integrations/computer-use/yutori) to Navigator n1.5.
+- Clarified that profile updates do not propagate to idle browser pool instances — pools must be recycled for profile changes to take effect.
 </Update>
 
 <Update label="May 8" tags={["Product", "Docs"]}>