lockllm
diff --git a/‎CHANGELOG.md‎
Lines changed: 127 additions & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 127 additions & 0 deletions
@@ -5,6 +5,133 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [1.1.0] - 2026-02-18
+
+### Added
+
+#### Custom Content Policy Enforcement
+You can now enforce your own content rules on top of LockLLM's built-in security. Create custom policies in the [dashboard](https://www.lockllm.com/policies), and the SDK will automatically check prompts against them. When a policy is violated, you'll get a `PolicyViolationError` with the exact policy name, violated categories, and details.
+
+```python
+from lockllm import create_openai, PolicyViolationError
+
+try:
+    openai.chat.completions.create(...)
+except PolicyViolationError as e:
+    print(e.violated_policies)
+    # [{"policy_name": "No competitor mentions", "violated_categories": [...]}]
+```
+
+#### AI Abuse Detection
+Protect your endpoints from automated misuse. When enabled, LockLLM detects bot-generated content, repetitive prompts, and resource exhaustion attacks. If abuse is detected, you'll get an `AbuseDetectedError` with confidence scores and detailed indicator breakdowns.
+
+```python
+from lockllm import create_openai, ProxyOptions
+
+openai = create_openai(
+    api_key=os.getenv("LOCKLLM_API_KEY"),
+    proxy_options=ProxyOptions(abuse_action="block")
+)
+```
+
+#### Credit Balance Awareness
+The SDK now returns a dedicated `InsufficientCreditsError` when your balance is too low for a request. The error includes your `current_balance` and the `estimated_cost`, so you can handle billing gracefully in your application.
+
+#### Scan Modes and Actions
+Control exactly what gets checked and what happens when threats are found:
+
+- **Scan modes** - Choose `normal` (core security only), `policy_only` (custom policies only), or `combined` (both)
+- **Actions per detection type** - Set `block` or `allow_with_warning` independently for core scans, custom policies, and abuse detection
+- **Abuse detection** is opt-in - disabled by default, enable it with `abuse_action`
+
+```python
+result = lockllm.scan(
+    input=user_prompt,
+    scan_mode="combined",
+    sensitivity="high",
+    scan_action="block",
+    policy_action="allow_with_warning",
+    abuse_action="block",
+)
+```
+
+You can also use the `ScanOptions` dataclass for reusable configurations:
+
+```python
+from lockllm import ScanOptions
+
+opts = ScanOptions(scan_mode="combined", scan_action="block")
+result = lockllm.scan(input=user_prompt, scan_options=opts)
+```
+
+#### Proxy Options on All Wrappers
+All wrapper functions (`create_openai`, `create_anthropic`, `create_groq`, etc. and their `create_async_*` variants) now accept a `proxy_options` parameter so you can configure security behavior at initialization time:
+
+```python
+from lockllm import create_openai, ProxyOptions
+
+openai = create_openai(
+    api_key=os.getenv("LOCKLLM_API_KEY"),
+    proxy_options=ProxyOptions(
+        scan_mode="combined",
+        scan_action="block",
+        policy_action="block",
+        route_action="auto",
+        cache_response=True,
+        cache_ttl=3600,
+    )
+)
+```
+
+#### Intelligent Routing
+Let LockLLM automatically select the best model for each request based on task type and complexity. Set `route_action="auto"` to enable, or `route_action="custom"` to use your own routing rules from the dashboard.
+
+#### Response Caching
+Reduce costs by caching identical LLM responses. Enabled by default in proxy mode - disable it with `cache_response=False` or customize the TTL with `cache_ttl`.
+
+#### Universal Proxy Mode
+Access 200+ models without configuring individual provider API keys using `get_universal_proxy_url()`. Uses LockLLM credits instead of BYOK.
+
+```python
+from lockllm import get_universal_proxy_url
+url = get_universal_proxy_url()
+# 'https://api.lockllm.com/v1/proxy'
+```
+
+#### Proxy Response Metadata
+New utilities to read detailed metadata from proxy responses - scan results, routing decisions, cache status, and credit usage:
+
+```python
+from lockllm import parse_proxy_metadata
+metadata = parse_proxy_metadata(response_headers)
+# metadata.safe, metadata.routing, metadata.cache_status, metadata.credits_deducted, etc.
+```
+
+#### Expanded Scan Response
+Scan responses now include richer data when using advanced features:
+- `policy_warnings` - Which custom policies were violated and why
+- `scan_warning` - Injection details when using `allow_with_warning`
+- `abuse_warnings` - Abuse indicators when abuse detection is enabled
+- `routing` - Task type, complexity score, and selected model when routing is enabled
+- `policy_confidence` - Separate confidence score for policy checks
+
+#### New Type Exports
+- `ProxyOptions` - Configuration dataclass for proxy wrapper options
+- `ProxyResponseMetadata` - Typed dataclass for parsed proxy response metadata
+- `ScanOptions`, `ScanMode`, `ScanAction`, `RouteAction` - Scan configuration types
+- `PolicyViolation`, `ViolatedCategory`, `ScanWarning`, `AbuseWarning`, `RoutingInfo` - Scan response types
+- `TaskType`, `ComplexityTier` - Routing type aliases
+
+### Changed
+- The scan API is fully backward compatible - existing code works without changes. Internally, scan configuration is now sent via HTTP headers for better compatibility and caching behavior.
+- `ScanResult.confidence` and `ScanResult.injection` are now `Optional[float]` (they are `None` in `policy_only` mode where core injection scanning is skipped).
+
+### Notes
+- All new features are opt-in. Existing integrations continue to work without any changes.
+- Custom policies, abuse detection, and routing are configured in the [LockLLM dashboard](https://www.lockllm.com/dashboard).
+
+---
+
 ## [1.0.0] - 2025-01-17
 
 ### Added