Zumik

Changelog

Notable changes to the Zumik platform, newest first.

This log covers the public API surfaces, the console, and platform behavior. It is intentionally high-level; per-endpoint detail lives in the API reference.

2026-06-12

Login plane and billing controls

Console accounts and billing

  • Real login plane: email and password (Argon2id), plus Google and GitHub sign-in. Sessions are httpOnly cookies; password reset revokes all other sessions.
  • Email verification gates API-key creation. An unverified account can sign in but cannot mint keys.
  • Stripe-backed billing: the $5/month base plan, prepaid pay-as-you-go credits, and the Stripe customer portal.
  • Budget controls: hard monthly caps, 50/80/100% alert thresholds, per-key budgets, and explicit overage opt-in recorded in the audit log.

2026-06-09

BYOK, governance, and data rights

Bring your own keys and enterprise governance

  • BYOK provider credentials and subscription credentials (Claude Code, ChatGPT Codex). Raw tokens are fingerprinted and discarded; only the fingerprint, provider, and plan label are retained.
  • Provider keys at rest are sealed with AES-256-GCM and opened only at execution time.
  • GDPR and CCPA tooling: machine-readable data export, an erasure flow with signed receipts, a published sub-processor list, and per-project Do-Not-Sell preferences.
  • Per-project regional policy and retention profiles.

2026-06-01

Native state and reproducibility

/v2 stateful API

2026-05-15

Provider-first diagnostic platform

Initial launch

  • Exact OpenAI-compatible /v1: responses, chat completions, embeddings, and models.
  • Managed-provider execution across OpenAI, Anthropic, xAI, Google Gemini, and Fireworks AI through the Bifrost gateway.
  • Trace capture, the Workload Reuse Score, and the opportunity-versus-realized-reuse diagnostic.
  • Project auth, API keys, quotas, and usage telemetry.

On this page