Changelog Masthead Background
BackΒ toΒ changelog
v2.35.1

Guided Template Building and Coder Agents Enhancements in 2.35.1

What's New in 2.35.1 πŸ§‘β€πŸš€

2.35.1 is the first release in the 2.35.x series. This release makes it easier to stand up new templates and gives Coder Agents a more consistent view of your workspace to work from.

Guided Template Builder

Introducing a guided workflow for creating templates without writing Terraform from scratch. Pick a base infrastructure (Docker, Kubernetes, EC2), select modules (IDEs, AI agents, source control), configure variables, and Coder generates and validates the template, which admins can further refine.

Available to both open source and licensed users.

Coder Agents enhancements and bug fixes

  • Terraform Resources for AI Gateway: Configure AI providers and Coder Agents models declaratively with the experimental coderd Terraform provider.
  • App and Port Tabs: Preview workspace apps and forwarded ports directly alongside your chat and terminal sessions. Tabs are persistent and automatically sync with your workspace state, so you can iterate on code and see results without switching contexts.
  • Workspace Context Pinning: Agent chats now pin to a stable snapshot of workspace configuration, including instruction files, skills, and MCP servers, so agents work from a consistent, known context throughout the conversation.

Continued fixes, extended provider support, and chat resiliency across the Coder Agents experience. See the full changelog for details.

Preview workspace apps and forwarded ports alongside your chat and terminal sessions

Breaking Changes

  • Rename chat stream silence timeout error (#25973): startup_timeout is now stream_silence_timeout, since the timeout applies to any gap between provider stream parts. Update code matching on the old name.
  • Reject non-boolean or absent email_verified on OIDC login (#25713): OIDC login now fails closed on email_verified, rejecting absent or non-truthy values instead of treating them as verified. Migration is automatic for most deployments.
  • Restrict OIDC/GitHub email fallback to first-time linking (#25712): Email-based fallback now only applies to first-time linking, closing an account-takeover risk. Affected users may see a 403; use coder exp oidc-link-repair to re-link.
  • Validate HostnameSuffix and SSHConfigOptions at startup (#26154): CODER_CONFIGSSH_HOSTNAME_SUFFIX and CODER_SSH_CONFIG_OPTIONS are now validated at startup; invalid values cause coderd to exit. Review these before upgrading.
  • Trust X-Forwarded-Host only from configured proxies (#26204): The header is no longer honored unconditionally, closing an app-routing spoofing risk. Deployments behind reverse proxies must configure CODER_PROXY_TRUSTED_ORIGINS.
  • Prevent AI provider name collision with settings routes (#26688): AI provider routes moved to /ai/settings/providers/:providerId (and /add). No redirects were added; update any bookmarked links.
  • Require org membership for user ACLs (#26852): Per-user ACL grants now require organization membership, matching group-ACL behavior. Users removed from an org lose access unless re-added.
  • Remove interceptions API and request logs view (#26213): The interceptions endpoint, CLI command, and Request Logs page are removed. Switch integrations to /api/v2/aibridge/sessions.
  • Remove agents insights page (#26457): /agents/settings/insights and its backend support are removed. Use the AI Gateway sessions page instead.

View the full changelog on GitHub. If you have questions or feedback, join the conversation on Discord or email us directly!