WITONE — Innovate Securely
Back to WIT OS

/ Changelog

WIT OS 2.0

Released 2026 Q2. The biggest WIT OS release to date — from agent orchestration to runtime AI security to a brand-new operator console.

Highlights

  • MAESTRO 2.0 — hierarchical orchestration with seven specialist agents and native tool-calling across 17+ workflows.
  • Astute RAG— MITRE ATT&CK-aware retrieval with conflict reconciliation and first-class citations.
  • Sentinel — runtime AI security with full MITRE ATLAS coverage, inline DLP, and circuit breaker.
  • ECOS — six-agent multi-cloud control plane for AWS, Azure, GCP.
  • Cockpit — new operator console unifying security, AI, and cloud signals into one role-tuned view.

MAESTRO

  • New hierarchical orchestration model with conductor + 7 specialists.
  • Streaming responses with intermediate citations.
  • Hot-reloadable agents in local development.
  • Tool-call retries with exponential backoff and policy-aware fallback.
  • Workflow composition from natural-language intent.

Astute RAG

  • Hybrid retrieval (vector + lexical + structured filters).
  • Conflict reconciliation across contradictory sources.
  • MITRE ATT&CK technique tagging on every passage.
  • Five new ingest workflows: ingest, refresh, dedup, hunt, brief.
  • Per-citation span anchoring back to source documents.

Sentinel

  • Full MITRE ATLAS technique coverage.
  • Inline DLP (PII, PHI, secrets, source code) in prompts and outputs.
  • Indirect prompt injection and context-smuggling detection.
  • Circuit breaker auto-isolates compromised agents within milliseconds.
  • Output schema validation with policy-grade enforcement.

ECOS

  • Unified asset graph across AWS, Azure, GCP.
  • FinOps agent with cited savings recommendations.
  • CSPM grouped by attack path, not finding count.
  • Capacity forecasting tied to SLO burn rate.
  • One-click rollback on remediation actions.

Cockpit

  • Brand-new operator console — one pane of glass across three domains.
  • Five role-tuned views (SecOps, CISO, CIO, IT, Engineering).
  • Live agent activity stream with cited evidence.
  • Mobile-first incident handoff with full context preserved.
  • Forensic time-travel: replay any incident with the exact agent context.

Tool extensibility

  • Python and TypeScript both reach first-class parity for custom workflow authoring.
  • Hot-reload in local dev; CI deploy through GitHub or GitLab.
  • 100+ pre-built tools wrapping native connectors.
  • Recipe library for incident response, ITSM, and FinOps use cases.

Integrations

  • 32 new connectors, including Workspace ONE, Kandji, Tines, and Wiz.
  • Native OAuth flows on every new connector.
  • Secret rotation moved to first-class platform feature.

Breaking changes

  • maestro.run() now returns a streamed iterator by default. Use maestro.runSync() for the previous behavior.
  • Sentinel policies now require a typed schema. Untyped policies from 1.x are accepted but will warn until migrated.
  • The legacy /v1/agents REST endpoint is deprecated. Use /v2/agents.

Upgrade notes

Most customers can upgrade in place. Single-tenant deployments will be migrated by your assigned engineer over a scheduled window. See the migration guide in your tenant Cockpit.

Questions? Talk to the team.