Product update of the week: Year 4 • Week 19

New

🎯 New Features

• IP-restricted API tokens — API tokens can now be locked down to specific IP addresses or CIDR ranges. Requests made with restricted tokens are accepted only from approved networks, helping teams secure server-to-server access.

  

• Workspace-wide two-factor authentication — admins can now enforce 2FA across the workspace, while team members can set up an authenticator app for future logins. This adds a stronger security layer for every account without changing day-to-day workflows.

  

  

• Account-scoped state for Sync Job v4 — Get State and Add Context nodes now accept an optional integrated_account_id, letting workflows store and retrieve context for a specific connected account. This makes multi-account sync logic cleaner and more reliable.

Improvement

• Deleted record detection for Pipedrive CRM — GET crm/accounts and GET crm/contacts now return a deleted field for Pipedrive records, so apps can distinguish active records from deleted ones during syncs.

Fix

• Reliable Native File Picker upserts — fixed an issue in the Truto Link SDK where enabling truto_upsert_drive_items could skip existing drive items when new items were added. The Link SDK has been updated to 1.1.28.