From 17782351ec073d16ad8f899214b087bc35ceda91 Mon Sep 17 00:00:00 2001
From: eclairen <236733058+eclairen@users.noreply.github.com>
Date: Thu, 23 Apr 2026 18:46:12 +0000
Subject: [PATCH 1/3] Add April 24 changelog entry

---
 changelog.mdx | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)

diff --git a/changelog.mdx b/changelog.mdx
index 80510de..43cfe46 100644
--- a/changelog.mdx
+++ b/changelog.mdx
@@ -9,6 +9,25 @@ import { YouTubeVideo } from '/snippets/youtube-video.mdx';
 For API library updates, see the [Node SDK](https://github.com/onkernel/kernel-node-sdk/blob/main/CHANGELOG.md), [Python SDK](https://github.com/onkernel/kernel-python-sdk/blob/next/CHANGELOG.md), and [Go SDK](https://github.com/onkernel/kernel-go-sdk/blob/main/CHANGELOG.md) changelogs.
 </Note>
 
+<Update label="April 24" tags={["Product", "Docs"]}>
+## Product updates
+
+- Kernel is now a [Cloudflare Web Bot Auth partner](https://www.kernel.sh/blog/cloudflare) — Kernel browsers can [cryptographically identify themselves](/browsers/bot-detection/web-bot-auth) to Cloudflare-protected sites, so site owners can explicitly allow Kernel traffic instead of blocking it as generic bot traffic.
+- Anti-detection protections are now on by default for all Kernel browsers. [Stealth mode](/browsers/bot-detection/stealth) now specifically adds the managed residential proxy and CAPTCHA solver (both opt-out), and non-stealth browsers fully support [custom proxies](/proxies/custom).
+- Revamped the [managed auth hosted login page](/auth/hosted-ui): all available sign-in options (password fields, SSO providers, MFA, alternate sign-in methods) now render together on a single page, so end users can pick the path they want instead of being funneled through one at a time.
+- [Managed auth connections](/auth/overview) now automatically re-authenticate expired sessions during health checks when credentials are available, reducing the need for manual reauth.
+- Managed auth input fields now display contextual helper text when the site surfaces hints like "Enter the phone ending in ***-**92", reducing user confusion on multi-step logins.
+- The "Save credentials after login" option is now automatically disabled when [1Password](/integrations/1password) is selected as the [credential source](/auth/credentials), since those credentials are already managed externally.
+- Kernel now supports WebSocket connections through its API, enabling `process attach` and other long-lived streaming workflows.
+- Exceeding invocation concurrency limits now returns a 429 response immediately, giving clients faster and more actionable feedback.
+- Fixed [browser extension](/browsers/extensions) uploads via the [SDK](https://github.com/kernel/kernel-node-sdk) and [CLI](https://github.com/kernel/cli).
+
+## Documentation updates
+
+- Rewrote the [stealth mode](/browsers/bot-detection/stealth) and [bot detection overview](/browsers/bot-detection/overview) pages to clarify the new anti-detection defaults, and added a "Bring your own proxy" section to the [proxies overview](/proxies/overview).
+- Added a Stagehand + Gemini quick start to the [Val Town](/integrations/valtown) integration guide.
+</Update>
+
 <Update label="April 17" tags={["Product", "Docs"]}>
 ## Product updates
 

From 91222beaba7705499c980f2c6284967a3b2314b5 Mon Sep 17 00:00:00 2001
From: eclairen <erin@onkernel.com>
Date: Thu, 23 Apr 2026 12:01:07 -0700
Subject: [PATCH 2/3] Refactor product updates in changelog

Removed duplicate entries and improved clarity in product updates section.
---
 changelog.mdx | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/changelog.mdx b/changelog.mdx
index 43cfe46..c622fa2 100644
--- a/changelog.mdx
+++ b/changelog.mdx
@@ -12,14 +12,14 @@ For API library updates, see the [Node SDK](https://github.com/onkernel/kernel-n
 <Update label="April 24" tags={["Product", "Docs"]}>
 ## Product updates
 
-- Kernel is now a [Cloudflare Web Bot Auth partner](https://www.kernel.sh/blog/cloudflare) — Kernel browsers can [cryptographically identify themselves](/browsers/bot-detection/web-bot-auth) to Cloudflare-protected sites, so site owners can explicitly allow Kernel traffic instead of blocking it as generic bot traffic.
-- Anti-detection protections are now on by default for all Kernel browsers. [Stealth mode](/browsers/bot-detection/stealth) now specifically adds the managed residential proxy and CAPTCHA solver (both opt-out), and non-stealth browsers fully support [custom proxies](/proxies/custom).
-- Revamped the [managed auth hosted login page](/auth/hosted-ui): all available sign-in options (password fields, SSO providers, MFA, alternate sign-in methods) now render together on a single page, so end users can pick the path they want instead of being funneled through one at a time.
+- Kernel is now a [Cloudflare Web Bot Auth partner](https://www.kernel.sh/blog/cloudflare). Kernel browsers can [cryptographically identify themselves](/browsers/bot-detection/web-bot-auth) to Cloudflare-protected sites, so Kernel traffic isn't blocked.
+- Anti-detection features are now on by default for all Kernel browsers. [Stealth mode](/browsers/bot-detection/stealth) now specifically adds the managed residential proxy and CAPTCHA solver (both opt-out), and non-stealth browsers fully support [custom proxies](/proxies/custom).
+- Revamped the [managed auth hosted login page](/auth/hosted-ui): all available sign-in options (password fields, SSO providers, MFA, alternate sign-in methods) now render together on a single page, so end users can pick the path they want, instead of being funneled through one at a time.
 - [Managed auth connections](/auth/overview) now automatically re-authenticate expired sessions during health checks when credentials are available, reducing the need for manual reauth.
-- Managed auth input fields now display contextual helper text when the site surfaces hints like "Enter the phone ending in ***-**92", reducing user confusion on multi-step logins.
+- Managed auth input fields now display contextual helper text when the site surfaces hints, reducing user confusion on multi-step logins.
 - The "Save credentials after login" option is now automatically disabled when [1Password](/integrations/1password) is selected as the [credential source](/auth/credentials), since those credentials are already managed externally.
 - Kernel now supports WebSocket connections through its API, enabling `process attach` and other long-lived streaming workflows.
-- Exceeding invocation concurrency limits now returns a 429 response immediately, giving clients faster and more actionable feedback.
+- Exceeding invocation concurrency limits now returns a 429 response immediately, for faster and more actionable feedback.
 - Fixed [browser extension](/browsers/extensions) uploads via the [SDK](https://github.com/kernel/kernel-node-sdk) and [CLI](https://github.com/kernel/cli).
 
 ## Documentation updates

From 151f7228f5f71b3966fe758046e554e781906f02 Mon Sep 17 00:00:00 2001
From: eclairen <erin@onkernel.com>
Date: Thu, 23 Apr 2026 13:17:47 -0700
Subject: [PATCH 3/3] Revise changelog for April 17 updates

Updated changelog with recent product and documentation changes.
---
 changelog.mdx | 2 --
 1 file changed, 2 deletions(-)

diff --git a/changelog.mdx b/changelog.mdx
index c622fa2..76ee6c5 100644
--- a/changelog.mdx
+++ b/changelog.mdx
@@ -20,12 +20,10 @@ For API library updates, see the [Node SDK](https://github.com/onkernel/kernel-n
 - The "Save credentials after login" option is now automatically disabled when [1Password](/integrations/1password) is selected as the [credential source](/auth/credentials), since those credentials are already managed externally.
 - Kernel now supports WebSocket connections through its API, enabling `process attach` and other long-lived streaming workflows.
 - Exceeding invocation concurrency limits now returns a 429 response immediately, for faster and more actionable feedback.
-- Fixed [browser extension](/browsers/extensions) uploads via the [SDK](https://github.com/kernel/kernel-node-sdk) and [CLI](https://github.com/kernel/cli).
 
 ## Documentation updates
 
 - Rewrote the [stealth mode](/browsers/bot-detection/stealth) and [bot detection overview](/browsers/bot-detection/overview) pages to clarify the new anti-detection defaults, and added a "Bring your own proxy" section to the [proxies overview](/proxies/overview).
-- Added a Stagehand + Gemini quick start to the [Val Town](/integrations/valtown) integration guide.
 </Update>
 
 <Update label="April 17" tags={["Product", "Docs"]}>