BREAKING CHANGES
PingFederate: Removed the --pingfederate-* and --as-pingfederate-* authentication CLI flags (such as --pingfederate-client-id); configure PingFederate authentication via environment variables, the configuration file, or the init wizard instead
SECURITY
PingOne and PingFederate: Refresh the access token when authentication credentials change so a cached token issued for previous credentials is no longer reused
FEATURES
Added credential-issuer-profile resource to the PingOne Credentials connector, supporting get, replace, and template commands
ENHANCEMENTS
PingOne: Added management commands for FIDO2 policies
PingOne: Added management commands for admin config
PingFederate: Added management commands for administrative accounts
PingFederate: Added management commands for authentication API settings
PingFederate: Added management commands for authentication API applications
PingOne Protect: Added management commands for risk policy sets
PingOne Authorize: Added management commands for decision endpoints
PingFederate: Added management commands for server settings
PingFederate: Added management commands for data stores
PingFederate: Added management command for version
PingFederate: Added management commands for virtual host names
PingOne: Added management commands for custom domains
PingFederate: Added management commands for IdP adapters
PingFederate: Added management commands for password credential validators
PingOne: Added management commands for user digital wallets
PingOne: Added management commands for credential issuance rules
PingFederate: Added management commands for local identity profiles
PingFederate: Added management commands for OAuth clients
PingFederate: Added management commands for extended properties
BUG FIXES
Fixed template command example text for replace-only resources to show replace --from-file instead of create --from-file
auth: Added a connector section header to each auth status block so statuses for multiple services are clearly distinguishable
DaVinci: Fixed template for application resources to correctly omit server-set read-only fields (apiKey.value, oauth.clientSecret) that were previously included in the generated template skeleton
PingOne: Fixed the --template flag on pingone api so template field traversal works against JSON response data
DOCUMENTATION
Updated output schema reference generator with editorial fixes and subfolder restructure