Skip to main content
May 4, 2026
New ReleaseImprovement

Guardian Admin UI

Guardian now ships with a built-in Admin UI for day-to-day token operations. Browse and manage tokens, handle API keys with proper timezone-aware expiration, and walk new operators through token creation — all backed by a Playwright end-to-end test suite so it stays solid release after release.

Metadata Inquiry Endpoint

A new POST /metadata/inquiry endpoint lets you look up issuer metadata on-demand. The endpoint is feature-flagged per tier, propagates the x-request-id end-to-end as a correlation ID, and emits a billing event tagged with the requester’s contract ID — so reporting and chargeback reconciliation work out of the box.

Improvements and bugfixes

  • American Express now renders with its proper scheme name in admin views.
  • Metadata inquiry events include network_token_id for richer reconciliation data.
  • Hellgate SDK <script> tag no longer carries SRI/crossorigin attributes, simplifying embedding.
March 30, 2026
New ReleaseImprovement

Token Import

Migrating into Guardian from a legacy vault just got dramatically easier. A new admin Tokens Import workflow lets you bulk-load tokens via SFTP, with vault key handling that accepts both PEM and OpenSSH key formats. Move large token estates in hours, not weeks.

Improvements and bugfixes

  • Vault error handling is now much more informative — fewer mystery failures, more actionable messages.
  • Clearer error response when creating a PCI token with invalid input.
March 11, 2026
New ReleaseImprovement

Generic Token Types API

Building on January’s Generic Tokens launch, you can now manage token type definitions through a new admin API: GET /api/admin/types, GET /api/admin/types/{id}, and DELETE /api/admin/types/{id}. Type schemas are validated at token-creation time, and you can filter your generic tokens by type_id — making it straightforward to organize SEPA credentials separately from API keys, for example.

Improvements and bugfixes

  • PCI token limits are now checked before network tokenization, avoiding half-completed states when a tenant hits its cap.
  • Network token status is validated before cryptogram creation, surfacing a clean error instead of an opaque failure deep in the cryptogram path.
  • Token requestor returns proper user-facing error messages.
  • 404 response shape is now consistent across the API.
  • Completed sessions return a sensible response even when the network token attempt failed.
  • Added PAYONE test cards to the test fixtures.
January 29, 2026
New ReleaseMaintenance

Introduction of Generic Tokens

Effecitve with this release, you can now store arbitrary payloads (for example SEPA credentials, API keys, or other sensitive data). Find more information in our documentation.

Improved TMS Support

The integration of VISA Token Management Service (TMS) was update for better feature coverage and more flexibility.
December 19, 2025
New ReleaseMaintenance

Added support for VISA Token Management Service (TMS)

Effecitve with this release another backend for network token management was added. This brings more options and better flexibility.

Bugfixes

  • Allow deletion of network tokens in case of active cryptograms.
  • Better handling of image dimensions of card-art data.
  • Better error messages for missing data in scheme cryptograms.
November 8, 2025
ImprovementMaintenance

Small improvements

  • Updates to the latest PCI DSS requirements.
  • Support more card art formats from issuers (including PDFs 😀).

Bugfix

  • Fixed a small issue where notifications were retried on successful delivery.
August 29, 2025
New Release

Wide support of metadata attributes on API

We rolled out a wide support of metadata attributes on API. This allows you to store more information along side your token operations.

Support of deterministic TPANs

We added support for deterministic TPANs on Guardian’s Network Token Sandbox. This allows you to test your integration with deterministic TPANs.