kernel · stainless-app · Jun 26, 2026 · Jun 24, 2026 · Jun 25, 2026 · Jun 26, 2026
diff --git a/.release-please-manifest.json b/.release-please-manifest.json
@@ -1,3 +1,3 @@
 {
-  ".": "0.70.0"
+  ".": "0.71.0"
 }
diff --git a/.stats.yml b/.stats.yml
@@ -1,4 +1,4 @@
-configured_endpoints: 122
-openapi_spec_url: https://storage.googleapis.com/stainless-sdk-openapi-specs/kernel/kernel-d9b82fc5346c9be1bf9c2b18792fdcdec6a80a86153ca765c9e93e597b46fa24.yml
-openapi_spec_hash: 9cbaab975acfa421b795d11aa635c57e
-config_hash: 99b2b2a25e8067ad9c9214e38e01d64c
+configured_endpoints: 124
+openapi_spec_url: https://storage.googleapis.com/stainless-sdk-openapi-specs/kernel/kernel-4fb45d71a99648425c84bdc8e5780920105cede4ee2d4eac67276d0609ac1e94.yml
+openapi_spec_hash: 1f04cb5b36e92db81dfa264c2a59c32a
+config_hash: fb167e754ebb3a14649463725891c9d0
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,5 +1,14 @@
 # Changelog
 
+## 0.71.0 (2026-06-26)
+
+Full Changelog: [v0.70.0...v0.71.0](https://github.com/kernel/kernel-node-sdk/compare/v0.70.0...v0.71.0)
+
+### Features
+
+* Add auth connection event timeline endpoint ([460845e](https://github.com/kernel/kernel-node-sdk/commit/460845e5171937bc16bbcb03b93bf95f659b8e64))
+* Expose audit logs in public SDK ([e08b560](https://github.com/kernel/kernel-node-sdk/commit/e08b560f83fd5532f2e45940dd2b92bdbbe27951))
+
 ## 0.70.0 (2026-06-24)
 
 Full Changelog: [v0.69.0...v0.70.0](https://github.com/kernel/kernel-node-sdk/compare/v0.69.0...v0.70.0)

diff --git a/api.md b/api.md
@@ -265,6 +265,7 @@ Types:
 - <code><a href="./src/resources/auth/connections.ts">LoginResponse</a></code>
 - <code><a href="./src/resources/auth/connections.ts">ManagedAuth</a></code>
 - <code><a href="./src/resources/auth/connections.ts">ManagedAuthCreateRequest</a></code>
+- <code><a href="./src/resources/auth/connections.ts">ManagedAuthTimelineEvent</a></code>
 - <code><a href="./src/resources/auth/connections.ts">ManagedAuthUpdateRequest</a></code>
 - <code><a href="./src/resources/auth/connections.ts">SubmitFieldsRequest</a></code>
 - <code><a href="./src/resources/auth/connections.ts">SubmitFieldsResponse</a></code>
@@ -280,6 +281,7 @@ Methods:
 - <code title="get /auth/connections/{id}/events">client.auth.connections.<a href="./src/resources/auth/connections.ts">follow</a>(id) -> ConnectionFollowResponse</code>
 - <code title="post /auth/connections/{id}/login">client.auth.connections.<a href="./src/resources/auth/connections.ts">login</a>(id, { ...params }) -> LoginResponse</code>
 - <code title="post /auth/connections/{id}/submit">client.auth.connections.<a href="./src/resources/auth/connections.ts">submit</a>(id, { ...params }) -> SubmitFieldsResponse</code>
+- <code title="get /auth/connections/{id}/timeline">client.auth.connections.<a href="./src/resources/auth/connections.ts">timeline</a>(id, { ...params }) -> ManagedAuthTimelineEventsOffsetPagination</code>
 
 # Proxies
 
@@ -393,6 +395,16 @@ Methods:
 - <code title="get /org/limits">client.organization.limits.<a href="./src/resources/organization/limits.ts">retrieve</a>() -> OrgLimits</code>
 - <code title="patch /org/limits">client.organization.limits.<a href="./src/resources/organization/limits.ts">update</a>({ ...params }) -> OrgLimits</code>
 
+# AuditLogs
+
+Types:
+
+- <code><a href="./src/resources/audit-logs.ts">AuditLogEntry</a></code>
+
+Methods:
+
+- <code title="get /audit-logs">client.auditLogs.<a href="./src/resources/audit-logs.ts">list</a>({ ...params }) -> AuditLogEntriesPageTokenPagination</code>
+
 # APIKeys
 
 Types:

diff --git a/package.json b/package.json
@@ -1,6 +1,6 @@
 {
   "name": "@onkernel/sdk",
-  "version": "0.70.0",
+  "version": "0.71.0",
   "description": "The official TypeScript library for the Kernel API",
   "author": "Kernel <>",
   "types": "dist/index.d.ts",

diff --git a/src/client.ts b/src/client.ts
@@ -15,7 +15,13 @@ import { stringifyQuery } from './internal/utils/query';
 import { VERSION } from './version';
 import * as Errors from './core/error';
 import * as Pagination from './core/pagination';
-import { AbstractPage, type OffsetPaginationParams, OffsetPaginationResponse } from './core/pagination';
+import {
+  AbstractPage,
+  type OffsetPaginationParams,
+  OffsetPaginationResponse,
+  type PageTokenPaginationParams,
+  PageTokenPaginationResponse,
+} from './core/pagination';
 import * as Uploads from './core/uploads';
 import * as API from './resources/index';
 import { APIPromise } from './core/api-promise';
@@ -36,6 +42,12 @@ import {
   browserRoutingSubresourcesFromEnv,
   createRoutingFetch,
 } from './lib/browser-routing';
+import {
+  AuditLogEntriesPageTokenPagination,
+  AuditLogEntry,
+  AuditLogListParams,
+  AuditLogs,
+} from './resources/audit-logs';
 import {
   BrowserPool,
   BrowserPoolAcquireParams,
@@ -1005,6 +1017,10 @@ export class Kernel {
    */
   projects: API.Projects = new API.Projects(this);
   organization: API.Organization = new API.Organization(this);
+  /**
+   * Read audit log records for the authenticated organization.
+   */
+  auditLogs: API.AuditLogs = new API.AuditLogs(this);
   /**
    * Create and manage API keys for organization and project-scoped access.
    */
@@ -1027,12 +1043,19 @@ Kernel.BrowserPools = BrowserPools;
 Kernel.Credentials = Credentials;
 Kernel.Projects = Projects;
 Kernel.Organization = Organization;
+Kernel.AuditLogs = AuditLogs;
 Kernel.APIKeys = APIKeys;
 Kernel.CredentialProviders = CredentialProviders;
 
 export declare namespace Kernel {
   export type RequestOptions = Opts.RequestOptions;
 
+  export import PageTokenPagination = Pagination.PageTokenPagination;
+  export {
+    type PageTokenPaginationParams as PageTokenPaginationParams,
+    type PageTokenPaginationResponse as PageTokenPaginationResponse,
+  };
+
   export import OffsetPagination = Pagination.OffsetPagination;
   export {
     type OffsetPaginationParams as OffsetPaginationParams,
@@ -1164,6 +1187,13 @@ export declare namespace Kernel {
 
   export { Organization as Organization };
 
+  export {
+    AuditLogs as AuditLogs,
+    type AuditLogEntry as AuditLogEntry,
+    type AuditLogEntriesPageTokenPagination as AuditLogEntriesPageTokenPagination,
+    type AuditLogListParams as AuditLogListParams,
+  };
+
   export {
     APIKeys as APIKeys,
     type APIKey as APIKey,

diff --git a/src/core/pagination.ts b/src/core/pagination.ts
@@ -107,6 +107,62 @@ export class PagePromise<
   }
 }
 
+export type PageTokenPaginationResponse<Item> = Item[];
+
+export interface PageTokenPaginationParams {
+  page_token?: string;
+
+  limit?: number;
+}
+
+export class PageTokenPagination<Item> extends AbstractPage<Item> {
+  items: Array<Item>;
+
+  next_page_token: string | null;
+
+  has_more: boolean | null;
+
+  constructor(
+    client: Kernel,
+    response: Response,
+    body: PageTokenPaginationResponse<Item>,
+    options: FinalRequestOptions,
+  ) {
+    super(client, response, body, options);
+
+    this.items = body || [];
+    this.next_page_token = this.response.headers.get('x-next-page-token') ?? null;
+    this.has_more = maybeCoerceBoolean(this.response.headers.get('x-has-more')) ?? null;
+  }
+
+  getPaginatedItems(): Item[] {
+    return this.items ?? [];
+  }
+
+  override hasNextPage(): boolean {
+    if (this.has_more === false) {
+      return false;
+    }
+
+    return super.hasNextPage();
+  }
+
+  nextPageRequestOptions(): PageRequestOptions | null {
+    const cursor = this.next_page_token;
+    if (!cursor) {
+      return null;
+    }
+
+    return {
+      ...this.options,
+      query: {
+        ...maybeObj(this.options.query),
+        page_token: cursor,
+      },
+    };
+  }
+}
+
 export type OffsetPaginationResponse<Item> = Item[];
 
 export interface OffsetPaginationParams {

diff --git a/src/resources/audit-logs.ts b/src/resources/audit-logs.ts
@@ -0,0 +1,135 @@
+// File generated from our OpenAPI spec by Stainless. See CONTRIBUTING.md for details.
+
+import { APIResource } from '../core/resource';
+import { PagePromise, PageTokenPagination, type PageTokenPaginationParams } from '../core/pagination';
+import { RequestOptions } from '../internal/request-options';
+
+/**
+ * Read audit log records for the authenticated organization.
+ */
+export class AuditLogs extends APIResource {
+  /**
+   * API for searching audit logs. Limited to at most 30 day search, returns up to
+   * 100 records per page. Not recommended for bulk export.
+   */
+  list(
+    query: AuditLogListParams,
+    options?: RequestOptions,
+  ): PagePromise<AuditLogEntriesPageTokenPagination, AuditLogEntry> {
+    return this._client.getAPIList('/audit-logs', PageTokenPagination<AuditLogEntry>, { query, ...options });
+  }
+}
+
+export type AuditLogEntriesPageTokenPagination = PageTokenPagination<AuditLogEntry>;
+
+export interface AuditLogEntry {
+  /**
+   * Authentication strategy used for the request.
+   */
+  auth_strategy: string;
+
+  /**
+   * Client IP address.
+   */
+  client_ip: string;
+
+  /**
+   * Request host.
+   */
+  domain: string;
+
+  /**
+   * Request duration in milliseconds.
+   */
+  duration_ms: number;
+
+  /**
+   * Email of the authenticated user at request time, if any.
+   */
+  email: string;
+
+  /**
+   * HTTP method.
+   */
+  method: string;
+
+  /**
+   * Request path.
+   */
+  path: string;
+
+  /**
+   * Matched API route pattern, if available.
+   */
+  route: string;
+
+  /**
+   * HTTP response status code.
+   */
+  status: number;
+
+  /**
+   * UTC time when the request was received.
+   */
+  timestamp: string;
+
+  /**
+   * User agent header.
+   */
+  user_agent: string;
+
+  /**
+   * ID of the authenticated user, if any.
+   */
+  user_id: string;
+}
+
+export interface AuditLogListParams extends PageTokenPaginationParams {
+  /**
+   * Upper bound (exclusive) for the audit record timestamp.
+   */
+  end: string;
+
+  /**
+   * Lower bound (inclusive) for the audit record timestamp.
+   */
+  start: string;
+
+  /**
+   * Filter by authentication strategy.
+   */
+  auth_strategy?: string;
+
+  /**
+   * Filter out results by HTTP method.
+   */
+  exclude_method?: string;
+
+  /**
+   * Filter by HTTP method.
+   */
+  method?: string;
+
+  /**
+   * Free-text search over path, user ID, email, client IP, and status.
+   */
+  search?: string;
+
+  /**
+   * Additional user IDs to OR into free-text search.
+   */
+  search_user_id?: Array<string>;
+
+  /**
+   * Filter by service name.
+   */
+  service?: string;
+}
+
+export declare namespace AuditLogs {
+  export {
+    type AuditLogEntry as AuditLogEntry,
+    type AuditLogEntriesPageTokenPagination as AuditLogEntriesPageTokenPagination,
+    type AuditLogListParams as AuditLogListParams,
+  };
+}
diff --git a/src/resources/auth/auth.ts b/src/resources/auth/auth.ts
@@ -8,11 +8,14 @@ import {
   ConnectionListParams,
   ConnectionLoginParams,
   ConnectionSubmitParams,
+  ConnectionTimelineParams,
   ConnectionUpdateParams,
   Connections,
   LoginResponse,
   ManagedAuth,
   ManagedAuthCreateRequest,
+  ManagedAuthTimelineEvent,
+  ManagedAuthTimelineEventsOffsetPagination,
   ManagedAuthUpdateRequest,
   ManagedAuthsOffsetPagination,
   SubmitFieldsRequest,
@@ -31,15 +34,18 @@ export declare namespace Auth {
     type LoginResponse as LoginResponse,
     type ManagedAuth as ManagedAuth,
     type ManagedAuthCreateRequest as ManagedAuthCreateRequest,
+    type ManagedAuthTimelineEvent as ManagedAuthTimelineEvent,
     type ManagedAuthUpdateRequest as ManagedAuthUpdateRequest,
     type SubmitFieldsRequest as SubmitFieldsRequest,
     type SubmitFieldsResponse as SubmitFieldsResponse,
     type ConnectionFollowResponse as ConnectionFollowResponse,
     type ManagedAuthsOffsetPagination as ManagedAuthsOffsetPagination,
+    type ManagedAuthTimelineEventsOffsetPagination as ManagedAuthTimelineEventsOffsetPagination,
     type ConnectionCreateParams as ConnectionCreateParams,
     type ConnectionUpdateParams as ConnectionUpdateParams,
     type ConnectionListParams as ConnectionListParams,
     type ConnectionLoginParams as ConnectionLoginParams,
     type ConnectionSubmitParams as ConnectionSubmitParams,
+    type ConnectionTimelineParams as ConnectionTimelineParams,
   };
 }