Skip to main content
December 2024
APIAISecurity
v1.2.0
Changelog

Test update

API Token Scopes

Added granular permission control for API tokens with three new scopes:
  • read:tokens - Read-only access to tokens
  • write:tokens - Create and modify tokens
  • export:tokens - Export tokens in various formats
Existing tokens automatically receive all scopes for backward compatibility. Configure scopes when creating new API tokens in settings.

AI Assistant Improvements

Custom OpenAI API Keys: Users can now provide their own OpenAI API keys instead of relying on platform credits. Keys are securely stored using AES-256-GCM encryption.Smarter Tokenset Creation: The AI assistant now automatically detects and uses the Default mode when creating new tokensets, eliminating manual mode ID lookups.Enhanced Chat Interface:
  • Markdown rendering with syntax highlighting
  • Copy button for code blocks
  • Improved message formatting

User Experience

  • New changelog sidebar notification in main navigation
  • Consistent header design across all pages
  • Better visual feedback for interactive elements

Security & Performance

  • AES-256-GCM encryption for sensitive data storage
  • Optimized AI response generation
  • Better error handling for API key validation

Bug Fixes

  • Fixed migration timestamp conflicts
  • Resolved file read errors in edit operations
  • Corrected encryption key environment variable handling
March 2026
APIOrganizationsPermissions
API access & environments

API permission model clarified

API v1 docs now describe the current write authorization model:
  • token scopes are required (write:tokens, export:tokens)
  • TEAM-owned workspaces allow API writes for owner/admin/editor
  • TEAM viewer write attempts are rejected with 403
  • non-TEAM workspaces remain owner-only for write

Workspace collaboration flow simplified

Workspace member addition now uses direct add behavior in session API documentation:
  • no pending invitation email flow
  • role update is idempotent on existing membership
  • legacy invitation-link endpoints are documented as deprecated (410 Gone)

Organization environments docs refreshed

Updated documentation for:
  • environment create/list/delete
  • publish options
  • release history and publish
  • merge to Production
  • environment export
A new reference page also documents key dashboard session endpoints, including downgrade status.
November 2024
Launch
v1.1.0

Initial Public Release

Core Features:
  • Workspace management for organizing design tokens
  • Token sets with multi-mode support (Light/Dark themes)
  • RESTful API for token management
  • Figma plugin integration for design-to-code workflow
Performance & UX:
  • Optimized database queries for faster load times
  • Intuitive UI for token creation and editing
  • Real-time token preview
Want to suggest a feature or report a bug? Visit our GitHub repository or contact us at support@tokencraft.dev