Changelog | Guardrails

🚀Launch Week 12: March 16th - 20th, 2026🚀

Changelog

Subscribe to Guardrails changelog via RSS or join #changelog on our Slack community to stay updated on everything we ship.

Guardrails changelog

Resource Types

Azure > Monitor > Data Collection Endpoint

Control Types

Azure > Monitor > Action Group > Allowed
Azure > Monitor > Action Group > Allowed > Custom
Azure > Monitor > Alerts > Allowed
Azure > Monitor > Alerts > Allowed > Custom
Azure > Monitor > Data Collection Endpoint > Active
Azure > Monitor > Data Collection Endpoint > Allowed
Azure > Monitor > Data Collection Endpoint > Allowed > Custom
Azure > Monitor > Data Collection Endpoint > Allowed > Region
Azure > Monitor > Data Collection Endpoint > CMDB
Azure > Monitor > Data Collection Endpoint > Discovery
Azure > Monitor > Data Collection Endpoint > Tags
Azure > Monitor > Log Profile > Allowed
Azure > Monitor > Log Profile > Allowed > Custom
Azure > Monitor > Metric Alert > Allowed
Azure > Monitor > Metric Alert > Allowed > Custom

Policy Types

Azure > Monitor > Action Group > Allowed
Azure > Monitor > Action Group > Allowed > Custom
Azure > Monitor > Action Group > Allowed > Custom > Rules
Azure > Monitor > Alerts > Allowed
Azure > Monitor > Alerts > Allowed > Custom
Azure > Monitor > Alerts > Allowed > Custom > Rules
Azure > Monitor > Allowed Regions [Default]
Azure > Monitor > Approved Regions [Default]
Azure > Monitor > Data Collection Endpoint > Active
Azure > Monitor > Data Collection Endpoint > Active > Age
Azure > Monitor > Data Collection Endpoint > Active > Last Modified
Azure > Monitor > Data Collection Endpoint > Allowed
Azure > Monitor > Data Collection Endpoint > Allowed > Custom
Azure > Monitor > Data Collection Endpoint > Allowed > Custom > Rules
Azure > Monitor > Data Collection Endpoint > Allowed > Region
Azure > Monitor > Data Collection Endpoint > Allowed > Region > Regions
Azure > Monitor > Data Collection Endpoint > CMDB
Azure > Monitor > Data Collection Endpoint > Regions
Azure > Monitor > Data Collection Endpoint > Tags
Azure > Monitor > Data Collection Endpoint > Tags > Template
Azure > Monitor > Log Profile > Allowed
Azure > Monitor > Log Profile > Allowed > Custom
Azure > Monitor > Log Profile > Allowed > Custom > Rules
Azure > Monitor > Metric Alert > Allowed
Azure > Monitor > Metric Alert > Allowed > Custom
Azure > Monitor > Metric Alert > Allowed > Custom > Rules
Azure > Monitor > Regions

Action Types

Azure > Monitor > Data Collection Endpoint > Delete
Azure > Monitor > Data Collection Endpoint > Router
Azure > Monitor > Data Collection Endpoint > Set Tags

Resource Types

Azure > App Service > Connection

Control Types

Azure > App Service > App Service Plan > Allowed
Azure > App Service > App Service Plan > Allowed > Custom
Azure > App Service > App Service Plan > Allowed > Region
Azure > App Service > Connection > Active
Azure > App Service > Connection > Allowed
Azure > App Service > Connection > Allowed > Custom
Azure > App Service > Connection > Allowed > Region
Azure > App Service > Connection > CMDB
Azure > App Service > Connection > Discovery
Azure > App Service > Connection > Tags
Azure > App Service > Function App > Allowed
Azure > App Service > Function App > Allowed > Custom
Azure > App Service > Function App > Allowed > Region
Azure > App Service > Web App > Allowed
Azure > App Service > Web App > Allowed > Custom
Azure > App Service > Web App > Allowed > Region

Policy Types

Azure > App Service > Allowed Regions [Default]
Azure > App Service > App Service Plan > Allowed
Azure > App Service > App Service Plan > Allowed > Custom
Azure > App Service > App Service Plan > Allowed > Custom > Rules
Azure > App Service > App Service Plan > Allowed > Region
Azure > App Service > App Service Plan > Allowed > Region > Regions
Azure > App Service > Connection > Active
Azure > App Service > Connection > Active > Age
Azure > App Service > Connection > Active > Last Modified
Azure > App Service > Connection > Allowed
Azure > App Service > Connection > Allowed > Custom
Azure > App Service > Connection > Allowed > Custom > Rules
Azure > App Service > Connection > Allowed > Region
Azure > App Service > Connection > Allowed > Region > Regions
Azure > App Service > Connection > CMDB
Azure > App Service > Connection > Regions
Azure > App Service > Connection > Tags
Azure > App Service > Connection > Tags > Template
Azure > App Service > Function App > Allowed
Azure > App Service > Function App > Allowed > Custom
Azure > App Service > Function App > Allowed > Custom > Rules
Azure > App Service > Function App > Allowed > Region
Azure > App Service > Function App > Allowed > Region > Regions
Azure > App Service > Web App > Allowed
Azure > App Service > Web App > Allowed > Custom
Azure > App Service > Web App > Allowed > Custom > Rules
Azure > App Service > Web App > Allowed > Region
Azure > App Service > Web App > Allowed > Region > Regions

Action Types

Azure > App Service > Connection > Delete
Azure > App Service > Connection > Router
Azure > App Service > Connection > Set Tags

Resource Types

Azure > Alerts Management
Azure > Alerts Management > Smart Detector Alert Rule

Control Types

Azure > Alerts Management > Smart Detector Alert Rule > Active
Azure > Alerts Management > Smart Detector Alert Rule > Allowed
Azure > Alerts Management > Smart Detector Alert Rule > Allowed > Custom
Azure > Alerts Management > Smart Detector Alert Rule > CMDB
Azure > Alerts Management > Smart Detector Alert Rule > Discovery
Azure > Alerts Management > Smart Detector Alert Rule > Tags

Policy Types

Azure > Alerts Management > Allowed Regions [Default]
Azure > Alerts Management > Approved Regions [Default]
Azure > Alerts Management > Enabled
Azure > Alerts Management > Permissions
Azure > Alerts Management > Permissions > Levels
Azure > Alerts Management > Permissions > Levels > Modifiers
Azure > Alerts Management > Regions
Azure > Alerts Management > Smart Detector Alert Rule > Active
Azure > Alerts Management > Smart Detector Alert Rule > Active > Age
Azure > Alerts Management > Smart Detector Alert Rule > Active > Last Modified
Azure > Alerts Management > Smart Detector Alert Rule > Active > Status
Azure > Alerts Management > Smart Detector Alert Rule > Allowed
Azure > Alerts Management > Smart Detector Alert Rule > Allowed > Custom
Azure > Alerts Management > Smart Detector Alert Rule > Allowed > Custom > Rules
Azure > Alerts Management > Smart Detector Alert Rule > CMDB
Azure > Alerts Management > Smart Detector Alert Rule > Regions
Azure > Alerts Management > Smart Detector Alert Rule > Tags
Azure > Alerts Management > Smart Detector Alert Rule > Tags > Template
Azure > Alerts Management > Tags Template [Default]
Azure > Turbot > Permissions > Compiled > Levels > @turbot/azure-alertsmanagement
Azure > Turbot > Permissions > Compiled > Service Permissions > @turbot/azure-alertsmanagement

Action Types

Azure > Alerts Management > Smart Detector Alert Rule > Delete
Azure > Alerts Management > Smart Detector Alert Rule > Router
Azure > Alerts Management > Smart Detector Alert Rule > Set Tags

Resource Types

OCI > Networking
OCI > Networking > DRG
OCI > Networking > Internet Gateway
OCI > Networking > Load Balancer
OCI > Networking > NAT Gateway
OCI > Networking > Network Security Group
OCI > Networking > Route Table
OCI > Networking > Security List
OCI > Networking > Service Gateway
OCI > Networking > Subnet
OCI > Networking > VCN

Control Types

OCI > Networking > DRG > Allowed
OCI > Networking > DRG > Allowed > Custom
OCI > Networking > DRG > Allowed > Region
OCI > Networking > DRG > CMDB
OCI > Networking > DRG > Defined Tags
OCI > Networking > DRG > Discovery
OCI > Networking > DRG > Freeform Tags
OCI > Networking > Internet Gateway > Allowed
OCI > Networking > Internet Gateway > Allowed > Custom
OCI > Networking > Internet Gateway > Allowed > Region
OCI > Networking > Internet Gateway > CMDB
OCI > Networking > Internet Gateway > Defined Tags
OCI > Networking > Internet Gateway > Discovery
OCI > Networking > Internet Gateway > Freeform Tags
OCI > Networking > Load Balancer > Allowed
OCI > Networking > Load Balancer > Allowed > Custom
OCI > Networking > Load Balancer > Allowed > Region
OCI > Networking > Load Balancer > CMDB
OCI > Networking > Load Balancer > Defined Tags
OCI > Networking > Load Balancer > Discovery
OCI > Networking > Load Balancer > Freeform Tags
OCI > Networking > NAT Gateway > Allowed
OCI > Networking > NAT Gateway > Allowed > Custom
OCI > Networking > NAT Gateway > Allowed > Region
OCI > Networking > NAT Gateway > CMDB
OCI > Networking > NAT Gateway > Defined Tags
OCI > Networking > NAT Gateway > Discovery
OCI > Networking > NAT Gateway > Freeform Tags
OCI > Networking > Network Security Group > Allowed
OCI > Networking > Network Security Group > Allowed > Custom
OCI > Networking > Network Security Group > Allowed > Region
OCI > Networking > Network Security Group > CMDB
OCI > Networking > Network Security Group > Defined Tags
OCI > Networking > Network Security Group > Discovery
OCI > Networking > Network Security Group > Freeform Tags
OCI > Networking > Route Table > Allowed
OCI > Networking > Route Table > Allowed > Custom
OCI > Networking > Route Table > Allowed > Region
OCI > Networking > Route Table > CMDB
OCI > Networking > Route Table > Defined Tags
OCI > Networking > Route Table > Discovery
OCI > Networking > Route Table > Freeform Tags
OCI > Networking > Security List > Allowed
OCI > Networking > Security List > Allowed > Custom
OCI > Networking > Security List > Allowed > Region
OCI > Networking > Security List > CMDB
OCI > Networking > Security List > Defined Tags
OCI > Networking > Security List > Discovery
OCI > Networking > Security List > Freeform Tags
OCI > Networking > Service Gateway > Allowed
OCI > Networking > Service Gateway > Allowed > Custom
OCI > Networking > Service Gateway > Allowed > Region
OCI > Networking > Service Gateway > CMDB
OCI > Networking > Service Gateway > Defined Tags
OCI > Networking > Service Gateway > Discovery
OCI > Networking > Service Gateway > Freeform Tags
OCI > Networking > Subnet > Allowed
OCI > Networking > Subnet > Allowed > Custom
OCI > Networking > Subnet > Allowed > Region
OCI > Networking > Subnet > CMDB
OCI > Networking > Subnet > Defined Tags
OCI > Networking > Subnet > Discovery
OCI > Networking > Subnet > Freeform Tags
OCI > Networking > VCN > Allowed
OCI > Networking > VCN > Allowed > Custom
OCI > Networking > VCN > Allowed > Region
OCI > Networking > VCN > CMDB
OCI > Networking > VCN > Defined Tags
OCI > Networking > VCN > Discovery
OCI > Networking > VCN > Freeform Tags

Policy Types

OCI > Networking > Allowed Regions [Default]
OCI > Networking > DRG > Allowed
OCI > Networking > DRG > Allowed > Custom
OCI > Networking > DRG > Allowed > Custom > Rules
OCI > Networking > DRG > Allowed > Region
OCI > Networking > DRG > Allowed > Region > Regions
OCI > Networking > DRG > CMDB
OCI > Networking > DRG > Defined Tags
OCI > Networking > DRG > Defined Tags > Template
OCI > Networking > DRG > Freeform Tags
OCI > Networking > DRG > Freeform Tags > Template
OCI > Networking > Internet Gateway > Allowed
OCI > Networking > Internet Gateway > Allowed > Custom
OCI > Networking > Internet Gateway > Allowed > Custom > Rules
OCI > Networking > Internet Gateway > Allowed > Region
OCI > Networking > Internet Gateway > Allowed > Region > Regions
OCI > Networking > Internet Gateway > CMDB
OCI > Networking > Internet Gateway > Defined Tags
OCI > Networking > Internet Gateway > Defined Tags > Template
OCI > Networking > Internet Gateway > Freeform Tags
OCI > Networking > Internet Gateway > Freeform Tags > Template
OCI > Networking > Load Balancer > Allowed
OCI > Networking > Load Balancer > Allowed > Custom
OCI > Networking > Load Balancer > Allowed > Custom > Rules
OCI > Networking > Load Balancer > Allowed > Region
OCI > Networking > Load Balancer > Allowed > Region > Regions
OCI > Networking > Load Balancer > CMDB
OCI > Networking > Load Balancer > Defined Tags
OCI > Networking > Load Balancer > Defined Tags > Template
OCI > Networking > Load Balancer > Freeform Tags
OCI > Networking > Load Balancer > Freeform Tags > Template
OCI > Networking > NAT Gateway > Allowed
OCI > Networking > NAT Gateway > Allowed > Custom
OCI > Networking > NAT Gateway > Allowed > Custom > Rules
OCI > Networking > NAT Gateway > Allowed > Region
OCI > Networking > NAT Gateway > Allowed > Region > Regions
OCI > Networking > NAT Gateway > CMDB
OCI > Networking > NAT Gateway > Defined Tags
OCI > Networking > NAT Gateway > Defined Tags > Template
OCI > Networking > NAT Gateway > Freeform Tags
OCI > Networking > NAT Gateway > Freeform Tags > Template
OCI > Networking > Network Security Group > Allowed
OCI > Networking > Network Security Group > Allowed > Custom
OCI > Networking > Network Security Group > Allowed > Custom > Rules
OCI > Networking > Network Security Group > Allowed > Region
OCI > Networking > Network Security Group > Allowed > Region > Regions
OCI > Networking > Network Security Group > CMDB
OCI > Networking > Network Security Group > Defined Tags
OCI > Networking > Network Security Group > Defined Tags > Template
OCI > Networking > Network Security Group > Freeform Tags
OCI > Networking > Network Security Group > Freeform Tags > Template
OCI > Networking > Regions
OCI > Networking > Route Table > Allowed
OCI > Networking > Route Table > Allowed > Custom
OCI > Networking > Route Table > Allowed > Custom > Rules
OCI > Networking > Route Table > Allowed > Region
OCI > Networking > Route Table > Allowed > Region > Regions
OCI > Networking > Route Table > CMDB
OCI > Networking > Route Table > Defined Tags
OCI > Networking > Route Table > Defined Tags > Template
OCI > Networking > Route Table > Freeform Tags
OCI > Networking > Route Table > Freeform Tags > Template
OCI > Networking > Security List > Allowed
OCI > Networking > Security List > Allowed > Custom
OCI > Networking > Security List > Allowed > Custom > Rules
OCI > Networking > Security List > Allowed > Region
OCI > Networking > Security List > Allowed > Region > Regions
OCI > Networking > Security List > CMDB
OCI > Networking > Security List > Defined Tags
OCI > Networking > Security List > Defined Tags > Template
OCI > Networking > Security List > Freeform Tags
OCI > Networking > Security List > Freeform Tags > Template
OCI > Networking > Service Gateway > Allowed
OCI > Networking > Service Gateway > Allowed > Custom
OCI > Networking > Service Gateway > Allowed > Custom > Rules
OCI > Networking > Service Gateway > Allowed > Region
OCI > Networking > Service Gateway > Allowed > Region > Regions
OCI > Networking > Service Gateway > CMDB
OCI > Networking > Service Gateway > Defined Tags
OCI > Networking > Service Gateway > Defined Tags > Template
OCI > Networking > Service Gateway > Freeform Tags
OCI > Networking > Service Gateway > Freeform Tags > Template
OCI > Networking > Subnet > Allowed
OCI > Networking > Subnet > Allowed > Custom
OCI > Networking > Subnet > Allowed > Custom > Rules
OCI > Networking > Subnet > Allowed > Region
OCI > Networking > Subnet > Allowed > Region > Regions
OCI > Networking > Subnet > CMDB
OCI > Networking > Subnet > Defined Tags
OCI > Networking > Subnet > Defined Tags > Template
OCI > Networking > Subnet > Freeform Tags
OCI > Networking > Subnet > Freeform Tags > Template
OCI > Networking > VCN > Allowed
OCI > Networking > VCN > Allowed > Custom
OCI > Networking > VCN > Allowed > Custom > Rules
OCI > Networking > VCN > Allowed > Region
OCI > Networking > VCN > Allowed > Region > Regions
OCI > Networking > VCN > CMDB
OCI > Networking > VCN > Defined Tags
OCI > Networking > VCN > Defined Tags > Template
OCI > Networking > VCN > Freeform Tags
OCI > Networking > VCN > Freeform Tags > Template

Action Types

OCI > Networking > DRG > Router
OCI > Networking > DRG > Update Defined Tags
OCI > Networking > DRG > Update Freeform Tags
OCI > Networking > Internet Gateway > Router
OCI > Networking > Internet Gateway > Update Defined Tags
OCI > Networking > Internet Gateway > Update Freeform Tags
OCI > Networking > Load Balancer > Router
OCI > Networking > Load Balancer > Update Defined Tags
OCI > Networking > Load Balancer > Update Freeform Tags
OCI > Networking > NAT Gateway > Router
OCI > Networking > NAT Gateway > Update Defined Tags
OCI > Networking > NAT Gateway > Update Freeform Tags
OCI > Networking > Network Security Group > Router
OCI > Networking > Network Security Group > Update Defined Tags
OCI > Networking > Network Security Group > Update Freeform Tags
OCI > Networking > Route Table > Router
OCI > Networking > Route Table > Update Defined Tags
OCI > Networking > Route Table > Update Freeform Tags
OCI > Networking > Security List > Router
OCI > Networking > Security List > Update Defined Tags
OCI > Networking > Security List > Update Freeform Tags
OCI > Networking > Service Gateway > Router
OCI > Networking > Service Gateway > Update Defined Tags
OCI > Networking > Service Gateway > Update Freeform Tags
OCI > Networking > Subnet > Router
OCI > Networking > Subnet > Update Defined Tags
OCI > Networking > Subnet > Update Freeform Tags
OCI > Networking > VCN > Router
OCI > Networking > VCN > Update Defined Tags
OCI > Networking > VCN > Update Freeform Tags

Bug fixes

Guardrails previously upserted SageMaker Apps into the CMDB using inconsistent AKA formats between Discovery and CMDB controls. This occasionally caused the AWS > SageMaker > App > CMDB control to enter an error state due to duplicate AKAs. We have improved AKA generation to ensure Apps are now upserted more reliably and correctly.

Control Types

AWS > SageMaker > Code Repository > Allowed
AWS > SageMaker > Code Repository > Allowed > Custom
AWS > SageMaker > Code Repository > Allowed > Region
AWS > SageMaker > Domain > Allowed
AWS > SageMaker > Domain > Allowed > Custom
AWS > SageMaker > Domain > Allowed > Region
AWS > SageMaker > Endpoint > Allowed
AWS > SageMaker > Endpoint > Allowed > Custom
AWS > SageMaker > Endpoint > Allowed > Region
AWS > SageMaker > Endpoint Configuration > Allowed
AWS > SageMaker > Endpoint Configuration > Allowed > Custom
AWS > SageMaker > Endpoint Configuration > Allowed > Region
AWS > SageMaker > Lifecycle Configuration > Allowed
AWS > SageMaker > Lifecycle Configuration > Allowed > Custom
AWS > SageMaker > Lifecycle Configuration > Allowed > Region
AWS > SageMaker > Model > Allowed
AWS > SageMaker > Model > Allowed > Custom
AWS > SageMaker > Model > Allowed > Region
AWS > SageMaker > Notebook Instance > Allowed
AWS > SageMaker > Notebook Instance > Allowed > Custom
AWS > SageMaker > Notebook Instance > Allowed > Region
AWS > SageMaker > Training Job > Allowed
AWS > SageMaker > Training Job > Allowed > Custom
AWS > SageMaker > Training Job > Allowed > Region

Policy Types

AWS > SageMaker > Code Repository > Allowed
AWS > SageMaker > Code Repository > Allowed > Custom
AWS > SageMaker > Code Repository > Allowed > Custom > Rules
AWS > SageMaker > Code Repository > Allowed > Region
AWS > SageMaker > Code Repository > Allowed > Region > Regions
AWS > SageMaker > Domain > Allowed
AWS > SageMaker > Domain > Allowed > Custom
AWS > SageMaker > Domain > Allowed > Custom > Rules
AWS > SageMaker > Domain > Allowed > Region
AWS > SageMaker > Domain > Allowed > Region > Regions
AWS > SageMaker > Endpoint > Allowed
AWS > SageMaker > Endpoint > Allowed > Custom
AWS > SageMaker > Endpoint > Allowed > Custom > Rules
AWS > SageMaker > Endpoint > Allowed > Region
AWS > SageMaker > Endpoint > Allowed > Region > Regions
AWS > SageMaker > Endpoint Configuration > Allowed
AWS > SageMaker > Endpoint Configuration > Allowed > Custom
AWS > SageMaker > Endpoint Configuration > Allowed > Custom > Rules
AWS > SageMaker > Endpoint Configuration > Allowed > Region
AWS > SageMaker > Endpoint Configuration > Allowed > Region > Regions
AWS > SageMaker > Lifecycle Configuration > Allowed
AWS > SageMaker > Lifecycle Configuration > Allowed > Custom
AWS > SageMaker > Lifecycle Configuration > Allowed > Custom > Rules
AWS > SageMaker > Lifecycle Configuration > Allowed > Region
AWS > SageMaker > Lifecycle Configuration > Allowed > Region > Regions
AWS > SageMaker > Model > Allowed
AWS > SageMaker > Model > Allowed > Custom
AWS > SageMaker > Model > Allowed > Custom > Rules
AWS > SageMaker > Model > Allowed > Region
AWS > SageMaker > Model > Allowed > Region > Regions
AWS > SageMaker > Notebook Instance > Allowed
AWS > SageMaker > Notebook Instance > Allowed > Custom
AWS > SageMaker > Notebook Instance > Allowed > Custom > Rules
AWS > SageMaker > Notebook Instance > Allowed > Region
AWS > SageMaker > Notebook Instance > Allowed > Region > Regions
AWS > SageMaker > Training Job > Allowed
AWS > SageMaker > Training Job > Allowed > Custom
AWS > SageMaker > Training Job > Allowed > Custom > Rules
AWS > SageMaker > Training Job > Allowed > Region
AWS > SageMaker > Training Job > Allowed > Region > Regions