v1.0.16 (#4813)

pyproject.toml

@@ -1,6 +1,6 @@
 [project]
 name = "skyvern"
-version = "1.0.15"
+version = "1.0.16"
 description = ""
 authors = [{ name = "Skyvern AI", email = "info@skyvern.com" }]
 requires-python = ">=3.11,<3.14"

skyvern-ts/client/package-lock.json

@@ -1,12 +1,12 @@
 {
     "name": "@skyvern/client",
-    "version": "1.0.15",
+    "version": "1.0.16",
     "lockfileVersion": 3,
     "requires": true,
     "packages": {
         "": {
             "name": "@skyvern/client",
-            "version": "1.0.15",
+            "version": "1.0.16",
             "dependencies": {
                 "playwright": "^1.48.0"
             },
@@ -1521,9 +1521,9 @@
             "license": "Apache-2.0"
         },
         "node_modules/acorn": {
-            "version": "8.15.0",
+            "version": "8.16.0",
-            "resolved": "https://registry.npmjs.org/acorn/-/acorn-8.15.0.tgz",
+            "resolved": "https://registry.npmjs.org/acorn/-/acorn-8.16.0.tgz",
-            "integrity": "sha512-NZyJarBfL7nWwIq+FDL6Zp/yHEhePMNnnJ0y3qfieCrmNvYct8uvtiV41UvlSe6apAfk0fY1FbWx+NwfmpvtTg==",
+            "integrity": "sha512-UVJyE9MttOsBQIDKw1skb9nAwQuR5wuGD3+82K6JgJlm/Y+KI92oNsMNGZCYdDsVtRHSak0pcV5Dno5+4jh9sw==",
             "dev": true,
             "license": "MIT",
             "bin": {
@@ -1631,13 +1631,16 @@
             }
         },
         "node_modules/baseline-browser-mapping": {
-            "version": "2.9.19",
+            "version": "2.10.0",
-            "resolved": "https://registry.npmjs.org/baseline-browser-mapping/-/baseline-browser-mapping-2.9.19.tgz",
+            "resolved": "https://registry.npmjs.org/baseline-browser-mapping/-/baseline-browser-mapping-2.10.0.tgz",
-            "integrity": "sha512-ipDqC8FrAl/76p2SSWKSI+H9tFwm7vYqXQrItCuiVPt26Km0jS+NzSsBWAaBusvSbQcfJG+JitdMm+wZAgTYqg==",
+            "integrity": "sha512-lIyg0szRfYbiy67j9KN8IyeD7q7hcmqnJ1ddWmNt19ItGpNN64mnllmxUNFIOdOm6by97jlL6wfpTTJrmnjWAA==",
             "dev": true,
             "license": "Apache-2.0",
             "bin": {
-                "baseline-browser-mapping": "dist/cli.js"
+                "baseline-browser-mapping": "dist/cli.cjs"
+            },
+            "engines": {
+                "node": ">=6.0.0"
             }
         },
         "node_modules/braces": {
@@ -3121,15 +3124,15 @@
             }
         },
         "node_modules/vite-node/node_modules/@types/node": {
-            "version": "25.2.3",
+            "version": "25.3.0",
-            "resolved": "https://registry.npmjs.org/@types/node/-/node-25.2.3.tgz",
+            "resolved": "https://registry.npmjs.org/@types/node/-/node-25.3.0.tgz",
-            "integrity": "sha512-m0jEgYlYz+mDJZ2+F4v8D1AyQb+QzsNqRuI7xg1VQX/KlKS0qT9r1Mo16yo5F/MtifXFgaofIFsdFMox2SxIbQ==",
+            "integrity": "sha512-4K3bqJpXpqfg2XKGK9bpDTc6xO/xoUP/RBWS7AtRMug6zZFaRekiLzjVtAoZMquxoAbzBvy5nxQ7veS5eYzf8A==",
             "dev": true,
             "license": "MIT",
             "optional": true,
             "peer": true,
             "dependencies": {
-                "undici-types": "~7.16.0"
+                "undici-types": "~7.18.0"
             }
         },
         "node_modules/vite-node/node_modules/fdir": {
@@ -3179,9 +3182,9 @@
             }
         },
         "node_modules/vite-node/node_modules/undici-types": {
-            "version": "7.16.0",
+            "version": "7.18.2",
-            "resolved": "https://registry.npmjs.org/undici-types/-/undici-types-7.16.0.tgz",
+            "resolved": "https://registry.npmjs.org/undici-types/-/undici-types-7.18.2.tgz",
-            "integrity": "sha512-Zz+aZWSj8LE6zoxD+xrjh4VfkIG8Ya6LvYkZqtUQGJPZjYl53ypCaUwWqo7eI0x66KBGeRo+mlBEkMSeSZ38Nw==",
+            "integrity": "sha512-AsuCzffGHJybSaRrmr5eHr81mwJU3kjw6M+uprWvCXiNeN9SOGwQ3Jn8jb8m3Z6izVgknn1R0FTCEAP2QrLY/w==",
             "dev": true,
             "license": "MIT",
             "optional": true,

skyvern-ts/client/package.json

@@ -1,6 +1,6 @@
 {
     "name": "@skyvern/client",
-    "version": "1.0.15",
+    "version": "1.0.16",
     "private": false,
     "repository": {
         "type": "git",

skyvern-ts/client/src/Client.ts

@@ -26,8 +26,8 @@ export class SkyvernClient {
                     "x-api-key": _options?.apiKey,
                     "X-Fern-Language": "JavaScript",
                     "X-Fern-SDK-Name": "@skyvern/client",
-                    "X-Fern-SDK-Version": "1.0.15",
+                    "X-Fern-SDK-Version": "1.0.16",
-                    "User-Agent": "@skyvern/client/1.0.15",
+                    "User-Agent": "@skyvern/client/1.0.16",
                     "X-Fern-Runtime": core.RUNTIME.type,
                     "X-Fern-Runtime-Version": core.RUNTIME.version,
                 },

skyvern-ts/client/src/api/types/CreditCardCredentialResponse.ts

@@ -1,7 +1,9 @@
 // This file was auto-generated by Fern from our API Definition.
 
 /**
- * Response model for credit card credentials, containing only the last four digits and brand.
+ * Response model for credit card credentials — non-sensitive fields only.
+ *
+ * SECURITY: Must NEVER include full card number, CVV, expiration date, or card holder name.
  */
 export interface CreditCardCredentialResponse {
     /** Last four digits of the credit card number */

skyvern-ts/client/src/api/types/PasswordCredentialResponse.ts

@@ -3,7 +3,9 @@
 import type * as Skyvern from "../index.js";
 
 /**
- * Response model for password credentials, containing only the username.
+ * Response model for password credentials — non-sensitive fields only.
+ *
+ * SECURITY: Must NEVER include password, TOTP secret, or TOTP identifier.
  */
 export interface PasswordCredentialResponse {
     /** The username associated with the credential */

skyvern-ts/client/src/api/types/SecretCredentialResponse.ts

@@ -1,7 +1,9 @@
 // This file was auto-generated by Fern from our API Definition.
 
 /**
- * Response model for secret credentials.
+ * Response model for secret credentials — non-sensitive fields only.
+ *
+ * SECURITY: Must NEVER include the secret_value.
  */
 export interface SecretCredentialResponse {
     /** Optional label for the stored secret */

skyvern-ts/client/src/version.ts

@@ -1 +1 @@
-export const SDK_VERSION = "1.0.15";
+export const SDK_VERSION = "1.0.16";

skyvern/client/core/client_wrapper.py

@@ -22,10 +22,10 @@ class BaseClientWrapper:
 
     def get_headers(self) -> typing.Dict[str, str]:
         headers: typing.Dict[str, str] = {
-            "User-Agent": "skyvern/1.0.15",
+            "User-Agent": "skyvern/1.0.16",
             "X-Fern-Language": "Python",
             "X-Fern-SDK-Name": "skyvern",
-            "X-Fern-SDK-Version": "1.0.15",
+            "X-Fern-SDK-Version": "1.0.16",
             **(self.get_custom_headers() or {}),
         }
         if self._api_key is not None:

skyvern/client/types/credit_card_credential_response.py

@@ -8,7 +8,9 @@ from ..core.pydantic_utilities import IS_PYDANTIC_V2, UniversalBaseModel
 
 class CreditCardCredentialResponse(UniversalBaseModel):
     """
-    Response model for credit card credentials, containing only the last four digits and brand.
+    Response model for credit card credentials — non-sensitive fields only.
+
+    SECURITY: Must NEVER include full card number, CVV, expiration date, or card holder name.
     """
 
     last_four: str = pydantic.Field()

skyvern/client/types/password_credential_response.py

@@ -9,7 +9,9 @@ from .totp_type import TotpType
 
 class PasswordCredentialResponse(UniversalBaseModel):
     """
-    Response model for password credentials, containing only the username.
+    Response model for password credentials — non-sensitive fields only.
+
+    SECURITY: Must NEVER include password, TOTP secret, or TOTP identifier.
     """
 
     username: str = pydantic.Field()

skyvern/client/types/secret_credential_response.py

@@ -8,7 +8,9 @@ from ..core.pydantic_utilities import IS_PYDANTIC_V2, UniversalBaseModel
 
 class SecretCredentialResponse(UniversalBaseModel):
     """
-    Response model for secret credentials.
+    Response model for secret credentials — non-sensitive fields only.
+
+    SECURITY: Must NEVER include the secret_value.
     """
 
     secret_label: typing.Optional[str] = pydantic.Field(default=None)

uv.lock

@@ -3479,9 +3479,9 @@ dependencies = [
     { name = "opentelemetry-instrumentation" },
     { name = "opentelemetry-sdk" },
 ]
-sdist = { url = "https://files.pythonhosted.org/packages/15/77/f0b1f2bcf451ec5bc443d53bc7437577c3fc8444b3eb0d416ac5f7558b7b/opentelemetry_distro-0.60b1.tar.gz", hash = "sha256:8b7326b83a55ff7b17bb92225a86e2736a004f6af7aff00cb5d87b2d8e5bc283", size = 2584, upload-time = "2025-12-11T13:36:39.522Z" }
+sdist = { url = "https://files.pythonhosted.org/packages/15/77/f0b1f2bcf451ec5bc443d53bc7437577c3fc8444b3eb0d416ac5f7558b7b/opentelemetry_distro-0.60b1.tar.gz", hash = "sha256:8b7326b83a55ff7b17bb92225a86e2736a004f6af7aff00cb5d87b2d8e5bc283", size = 2584 }
 wheels = [
-    { url = "https://files.pythonhosted.org/packages/24/70/78a86531495040fcad9569d7daa630eca06d27d37c825a8aad448b7c1c5b/opentelemetry_distro-0.60b1-py3-none-any.whl", hash = "sha256:581104a786f5df252f4dfe725e0ae16337a26da902acb92d8b3e7aee29f0c76e", size = 3343, upload-time = "2025-12-11T13:35:28.462Z" },
+    { url = "https://files.pythonhosted.org/packages/24/70/78a86531495040fcad9569d7daa630eca06d27d37c825a8aad448b7c1c5b/opentelemetry_distro-0.60b1-py3-none-any.whl", hash = "sha256:581104a786f5df252f4dfe725e0ae16337a26da902acb92d8b3e7aee29f0c76e", size = 3343 },
 ]
 
 [[package]]
@@ -5581,7 +5581,7 @@ wheels = [
 
 [[package]]
 name = "skyvern"
-version = "1.0.15"
+version = "1.0.16"
 source = { editable = "." }
 dependencies = [
     { name = "aioboto3" },