Changelog

The changelog highlights notable updates to customer-facing APIs and portals.

2026-04-08 (v1.13.0)

New

Quick Start – Updated onboarding guide with product type selection guidance, sandbox reference table, and links to the Appetite Checker
- New "Choose Your Product Type" section explains Broker Bill vs. Direct Bill and sandbox binding behavior
- New "Check Eligibility" section links to the Appetite Checker for NAICS/revenue lookups
- New "Sandbox Reference" table consolidates sandbox-specific notes in one place
- Added webhook setup tip in the "Develop Your Integration" section

Improved

Changelog – Standardized release notes format across all entries
- Consistent category headers: New, Improved, Fixed, Breaking Changes
- Examples and migration guidance now displayed in distinct callout blocks

2026-04-02 (v1.12.1)

New

FirstCyber Quote API – message field added to quote response
- POST /quote/firstcyber/submit response now includes an optional message field in the data object.

Context

Provides additional customer-facing information for successful quotes, if needed. For instance, if a submission includes a retention lower than the minimum, the response will indicate the adjusted value.

Example

If a submission has a $500 retention but the minimum is $5,000, the message field will return:

"Please note that the minimum retention is $5,000 based on the information provided."

2026-02-18 (v1.11.0)

New

FirstCyber Quote API – reputational_harm_limit field added to coverage details
- POST /quote/firstcyber/submit and GET /quote/firstcyber/status/:id responses now include optional reputational_harm_limit in the coverage_details object
- String value (e.g. "$25,000") representing the reputational harm coverage limit
- Updated OpenAPI spec and documentation

2026-02-11 (v1.10.0)

New

FirstCyber Quote API – policy_fee field added to quote response
- POST /quote/firstcyber/submit and GET /quote/firstcyber/status/:id responses now include policy_fee in the policy_term object
- String value (e.g. "$300.00") representing the policy fee amount
- Updated OpenAPI spec and documentation

2026-01-29 (v1.9.0)

New

FirstCyber Quote API – New GET /quote/firstcyber/document/policy/stream/:id endpoint
- Get a policy document after a quote is issued.
- Updated documentation and postman document with new endpoint.

2026-01-20 (v1.8.0)

Breaking Changes

FirstCyber Quote API – GET /quote/firstcyber/status/:id — The quote_status field has new values
- Status replacements:
  - published → replaced by ready_to_bind and approved_rate
  - pendingBindAndIssue → replaced by bound
- New status flow: pending → ready_to_bind → bound → issued
- Additional new statuses: declined, underwriter_review
- Retained statuses: pending, issued, failed

Migration Guidance

For minimum changes to maintain the same functionality:

Replace published with ready_to_bind in your code
Replace pendingBindAndIssue with bound in your code

FirstCyber Quote API – PUT /quote/firstcyber/bind/:id — Response structure has been simplified
- Now returns a 202 and "accepted" status
- An event will be emitted with the policy ID once bind completes

Example Response

json

{
  "status": "accepted",
  "data": {
      "id": "afe35e49-f801-4d4a-963d-0a17a3e4833d"
  }
}

New

API Downloads Section – Downloadable OpenAPI specs and Postman collections added to documentation
- FirstCyber Quote Service: OpenAPI spec (YAML) and Postman collection with pre-configured requests
- PersonalCyber Quote Service: OpenAPI spec (YAML)
- Download links added to each service documentation page
- Partner Portal "Getting Help" section updated with direct download links
- Postman collection includes example requests, auto-token saving, and collection variables

2025-12-12 (v1.7.0)

New

PostHog Analytics – Production-ready PostHog analytics tracking
- Client-side analytics initialization with SSR-safe implementation
- Automatic pageview tracking on initial load and VitePress route navigation
- Session recording with privacy-first configuration (all text and inputs masked)
- Autocapture enabled for automatic event tracking
- Analytics disabled in development by default (can be enabled via VITE_POSTHOG_KEY)
- Graceful degradation when PostHog key is not configured
- Environment variables: VITE_POSTHOG_KEY and VITE_POSTHOG_HOST (optional, set at build time)

2025-12-11 (v1.6.0)

Breaking Changes

Webhook Portal – Corrected webhook header names and signature verification
- Event-ID (not X-K2-Event-Id)
- Timestamp (not X-K2-Delivery-Timestamp)
- X-Platform-Signature (not X-K2-Signature)
- Signature is computed over ${Event-ID}.${Timestamp}.${RequestBody}, not just the body

Fixed

Webhook Portal – Corrected timeout and retry logic
- Corrected timeout: 8 seconds (not 30 seconds)
- Corrected retry logic: Exponential backoff (1s, 2s, 4s... up to 60s), max 10 attempts
- Added circuit breaker documentation: Endpoints disabled after 5 failures in 5 minutes

Improved

Partner Portal Documentation – Comprehensive rewrite based on current implementation
- Clarified credential management workflow (Integration Keys, M2M Clients, Webhook Keys)
- Important clarification: Webhook Keys are registration tokens for Webhook Portal access only—they are NOT signing secrets
- Updated authentication flow examples with correct endpoints
- Added detailed explanations for each credential type and its purpose
- Improved troubleshooting section with common issues
Webhook Portal Documentation – Major update to reflect actual implementation
- Documented two access methods: Partner Admin Login (recommended) and Webhook Key Registration
- Important clarification: Signing secrets for webhook verification are generated per-endpoint, not from Partner Portal webhook keys
- Updated event types to accurately reflect the 3 currently available events
- Added complete code examples for Node.js and Python signature verification
- Added idempotency implementation example
Quick Start Guide – Added Partner Portal URLs to environment table

2025-12-11

Breaking Changes

FirstCyber Quote API – An Integration key in the x-integration-key header is now REQUIRED when using endpoints within the quote service
- Sandbox and Production Integration keys (as well as m2m clients to get OAuth2.0 Bearer Tokens) can be generated @ https://partners-sandbox.k2cyber.co and https://partners.k2cyber.co respectively.

Improved

Updated quick start and partner portal documentation to reflect current implementation around credential management and usage.

2025-12-08

New

Sandbox Environment – The sandbox environment is now live for integration development and testing
- API Sandbox: https://api-sandbox.k2cyber.co
- Partner Portal Sandbox: https://partners-sandbox.k2cyber.co
- Webhook Portal Sandbox: https://webhook-portal-sandbox.k2cyber.co
- Isolated synthetic data for safe testing
- Updated documentation across Quick Start, FirstCyber Quote Service, Personal Cyber Quote Service, Partner Portal, and Webhook Portal
- OpenAPI specs now default to sandbox URLs for "Try it out" functionality

2025-11-17

New

FirstCyber Quote API – GET /document/quote-preview/:id endpoint added to firstcyber-quote.yaml and corresponding documentation

2025-11-06

New

Partner Portal – M2M (Machine-to-Machine) Client documentation
- New authentication method using Stytch for API access
- Includes setup instructions, usage examples, and comparison with Integration Keys
- M2M clients automatically provisioned with quote scope
- Support for activate/deactivate operations

2025-10-23

Improved

PersonalCyber Quote Service – Temporarily disabled from navigation (content preserved for future re-enablement)

2025-10-22

Fixed

Partner Portal – Corrected Partner Portal URL

2025-10-21

Improved

PersonalCyber Quote Service – Updated documentation to match FirstCyber format
Removed test environment URL (api-test.k2cyber.co) in favor of "Sandbox Environment - Coming Soon" message
Consistent messaging across all quote service documentation

2025-10-17

Improved

FirstCyber Quote API – POST /quote/firstcyber/submit: taxid is no longer required to create a quote.

2025-02-15

New

FirstCyber Quote API – Admin quote endpoint documentation and sample payloads

Improved

Webhook Portal – Improved insight panels with retry counts

2025-01-12

New

Partner Portal – Integration key rotation workflow and deployment-ready Dockerfile

2024-12-03

New

Initial publication of the customer documentation portal.

Changelog ​

2026-04-08 (v1.13.0) ​

New ​

Improved ​

2026-04-02 (v1.12.1) ​

New ​

2026-02-18 (v1.11.0) ​

New ​

2026-02-11 (v1.10.0) ​

New ​

2026-01-29 (v1.9.0) ​

New ​

2026-01-20 (v1.8.0) ​

Breaking Changes ​

New ​

2025-12-12 (v1.7.0) ​

New ​

2025-12-11 (v1.6.0) ​

Breaking Changes ​

Fixed ​

Improved ​

2025-12-11 ​

Breaking Changes ​

Improved ​

2025-12-08 ​

New ​

2025-11-17 ​

New ​

2025-11-06 ​

New ​

2025-10-23 ​

Improved ​

2025-10-22 ​

Fixed ​

2025-10-21 ​

Improved ​

2025-10-17 ​

Improved ​

2025-02-15 ​

New ​

Improved ​

2025-01-12 ​

New ​

2024-12-03 ​

New ​

Changelog

2026-04-08 (v1.13.0)

New

Improved

2026-04-02 (v1.12.1)

New

2026-02-18 (v1.11.0)

New

2026-02-11 (v1.10.0)

New

2026-01-29 (v1.9.0)

New

2026-01-20 (v1.8.0)

Breaking Changes

New

2025-12-12 (v1.7.0)

New

2025-12-11 (v1.6.0)

Breaking Changes

Fixed

Improved

2025-12-11

Breaking Changes

Improved

2025-12-08

New

2025-11-17

New

2025-11-06

New

2025-10-23

Improved

2025-10-22

Fixed

2025-10-21

Improved

2025-10-17

Improved

2025-02-15

New

Improved

2025-01-12

New

2024-12-03

New