SDK performance releases and proxy detection
What's new in Arcjet (2026-06-12). New versions for each of our JS, Python, and Go SDKs to improve performance and detect proxies.
What's new in Arcjet (2026-07-03). New SDK updates, security briefing email improvements, Nosecone nonce API, and a new Console activity view.
This week was our usual set of monthly SDK releases. We also released improvements to our weekly security briefing emails, added Nonce access to the Nosecone API, and opened the first version of our new activity view in the Arcjet Console.
We aim for monthly SDK releases to minimize version churn whilst adding new functionality.
Every Monday we email a security briefing to all users. This now includes more detailed threat tagging, country-breakdowns, and updated recommendations when we see suspicious traffic.
Arcjet Nosecone is an open source library that helps set security headers such as Content-Security-Policy (CSP), Strict-Transport-Security (HSTS), and X-Content-Type-Options in JS applications built with Bun, Deno, Next.js, Node.js, or SvelteKit.
We latest 1.6.1 release includes an API so you can access the Nonce in Next.js. This is usually applied to scripts automatically if you use the <Script> component, but that is not universally supported. Use new the nonce function to read the nonce for the current request from a Server Component, Route Handler, or anywhere else next/headers is available:
import { nonce } from "@nosecone/next";
export default async function Page() {
const cspNonce = await nonce();
return <script nonce={cspNonce}>{`/* ... */`}</script>;
}Arcjet Guards operate on events triggered without an HTTP context, often following a web request e.g. a chat UI triggering a file access in an agentic application. These are now visible in the Arcjet Console on a new activity view alongside web requests. Over time we'll be merging these two views.

🚀
What's new in Arcjet (2026-06-12). New versions for each of our JS, Python, and Go SDKs to improve performance and detect proxies.
Arcjet Signals are evaluated without a CAPTCHA and enforced when the request passes through a critical flow. The browser gives us signals. The application gives us intent.
What's new in Arcjet (2026-05-22). Unified coding agent skills, expanded Python docs, email notification management.
Get the full posts by email every week.