Skip to content

Version Packages#40

Merged
tuyakhov merged 1 commit into
mainfrom
changeset-release/main
Jun 11, 2026
Merged

Version Packages#40
tuyakhov merged 1 commit into
mainfrom
changeset-release/main

Conversation

@github-actions

@github-actions github-actions Bot commented Jun 11, 2026

Copy link
Copy Markdown
Contributor

This PR was opened by the Changesets release GitHub action. When you're ready to do a release, you can merge this and the packages will be published to npm automatically. If you're not ready to do a release yet, that's fine, whenever you add more changesets to main, this PR will be updated.

Releases

@senderkit/sdk@0.8.0

Minor Changes

  • 8766161: Surface 403 insufficient_scope as a distinct, scope-aware error.

    senderkit-app now enforces least-privilege API-key / MCP scopes (read,
    send, cancel) and returns 403 with code: "insufficient_scope" when a
    scoped credential is used outside its grant. Keys minted without explicit
    scopes stay unscoped and full-access, so existing integrations are unaffected.

    • SDK: new SenderKitPermissionError (extends SenderKitApiError) is now
      thrown for 403; 401 continues to map to SenderKitAuthenticationError.
      Previously 403 was mapped to SenderKitAuthenticationError, which wrongly
      implied a bad key. Exported the ApiScope type ("read" | "send" | "cancel")
      and documented the scope model.
    • CLI: a 403 now reports "Permission denied … lacks the required scope"
      (JSON type: "permission") instead of the misleading "Authentication failed.
      Check your API key" message.

@senderkit/cli@0.6.1

Patch Changes

  • 8766161: Surface 403 insufficient_scope as a distinct, scope-aware error.

    senderkit-app now enforces least-privilege API-key / MCP scopes (read,
    send, cancel) and returns 403 with code: "insufficient_scope" when a
    scoped credential is used outside its grant. Keys minted without explicit
    scopes stay unscoped and full-access, so existing integrations are unaffected.

    • SDK: new SenderKitPermissionError (extends SenderKitApiError) is now
      thrown for 403; 401 continues to map to SenderKitAuthenticationError.
      Previously 403 was mapped to SenderKitAuthenticationError, which wrongly
      implied a bad key. Exported the ApiScope type ("read" | "send" | "cancel")
      and documented the scope model.
    • CLI: a 403 now reports "Permission denied … lacks the required scope"
      (JSON type: "permission") instead of the misleading "Authentication failed.
      Check your API key" message.

  • Updated dependencies [8766161]

    • @senderkit/sdk@0.8.0

@senderkit-examples/nextjs-basic@0.0.9

Patch Changes

  • Updated dependencies [8766161]
    • @senderkit/sdk@0.8.0

@senderkit-examples/node-basic@0.0.9

Patch Changes

  • Updated dependencies [8766161]
    • @senderkit/sdk@0.8.0

@github-actions github-actions Bot requested a review from tuyakhov as a code owner June 11, 2026 22:04
@github-actions github-actions Bot force-pushed the changeset-release/main branch from 98d1e33 to 9b91635 Compare June 11, 2026 22:09
@github-actions github-actions Bot force-pushed the changeset-release/main branch from 9b91635 to 1e15486 Compare June 11, 2026 22:10
@tuyakhov tuyakhov merged commit 83a25b9 into main Jun 11, 2026
1 check passed
@tuyakhov tuyakhov deleted the changeset-release/main branch June 11, 2026 22:13
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tuyakhov tuyakhov tuyakhov approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@tuyakhov