v1.3.0 — REST API, CLI & Agent Learnings
This release introduces the V1 REST API with API key authentication and RBAC, a full CLI for managing issues and integrations from the terminal, operational learnings extraction from agent tool traces, and critical reliability fixes for SQS retry handling.
V1 REST API
Corelayer now exposes a full REST API (api/v1) for programmatic access to issues, groups, integrations, events, anomaly configs, deep research, and settings. The API uses API key authentication with role-based access control (RBAC) and includes per-key rate limiting with configurable tiers.
Corelayer CLI
A new CLI package (@corelayer-ai/cli) lets you manage issues, view groups, configure integrations, and authenticate — all from your terminal. Built with production hardening including request timeouts, file permission validation, and secure credential storage.
Agent Learnings
The investigation agent now extracts operational learnings from tool execution traces after each analysis. Learnings are deduplicated, merged with existing knowledge, and stored with full provenance tracking so the agent builds institutional memory over time.
Reliability Improvements
Fixed a critical bug where interrupted analyses would never complete on SQS retry. Added completeness guards, orphaned event cleanup, and corrected the retry path event routing to prevent duplicate issue creation.
Other Changes
Removed legacy internal HMAC authentication in favor of API key auth. Fixed rate limit Postgres upsert typing. Added bulk action validation to prevent silent issue reopening. Improved fingerprint-based issue grouping.