wso2 · renuka-fernando · Feb 18, 2026 · Feb 18, 2026 · Feb 18, 2026 · Feb 18, 2026
diff --git a/gateway/gateway-controller/default-policies/advanced-ratelimit.yaml b/gateway/gateway-controller/default-policies/advanced-ratelimit.yaml
@@ -1,5 +1,5 @@
 name: advanced-ratelimit
-version: v0.1.4
+version: v0.3.0
 description: |
   Rate limiting policy supporting multiple algorithms (GCRA, Fixed Window), multi-dimensional quotas,
   weighted rate limiting, flexible key extraction, and both in-memory and Redis backends. Supports

diff --git a/gateway/gateway-controller/default-policies/api-key-auth.yaml b/gateway/gateway-controller/default-policies/api-key-auth.yaml
@@ -1,5 +1,5 @@
 name: api-key-auth
-version: v0.3.0
+version: v0.8.0
 description: |
   Validates API keys in incoming requests and authorizes access when a valid key
   is present. Reads the key from a configured header or query parameter.

diff --git a/gateway/gateway-controller/default-policies/azure-content-safety-content-moderation.yaml b/gateway/gateway-controller/default-policies/azure-content-safety-content-moderation.yaml
@@ -1,5 +1,5 @@
 name: azure-content-safety-content-moderation
-version: v0.3.0
+version: v0.8.0
 description: |
   Validates request and response content with Azure Content Safety moderation
   checks. Supports configurable category thresholds, optional JSONPath

diff --git a/gateway/gateway-controller/default-policies/basic-auth.yaml b/gateway/gateway-controller/default-policies/basic-auth.yaml
@@ -1,5 +1,5 @@
 name: basic-auth
-version: v0.1.0
+version: v0.8.0
 description: |
   Implements HTTP Basic Authentication to protect APIs with username and password credentials.
   Validates the Authorization header against configured credentials and sets authentication

diff --git a/gateway/gateway-controller/default-policies/basic-ratelimit.yaml b/gateway/gateway-controller/default-policies/basic-ratelimit.yaml
@@ -1,5 +1,5 @@
 name: basic-ratelimit
-version: v0.3.0
+version: v0.8.1
 description: |
   Enforces request rate limits by restricting how many requests are allowed
   within one or more configured time windows.

diff --git a/gateway/gateway-controller/default-policies/cors.yaml b/gateway/gateway-controller/default-policies/cors.yaml
@@ -1,5 +1,5 @@
 name: cors
-version: v0.3.0
+version: v0.8.0
 description: |
   Applies Cross-Origin Resource Sharing (CORS) rules by handling preflight
   requests and adding CORS headers to responses. Controls cross-origin access

diff --git a/gateway/gateway-controller/default-policies/jwt-auth.yaml b/gateway/gateway-controller/default-policies/jwt-auth.yaml
@@ -1,5 +1,5 @@
 name: jwt-auth
-version: v0.3.0
+version: v0.8.0
 description: |
   Validates JWT access tokens in API requests using configured JWKS providers.
   Verifies signature and claims such as expiry, issuer, audience, scopes, and

diff --git a/gateway/gateway-controller/default-policies/model-round-robin.yaml b/gateway/gateway-controller/default-policies/model-round-robin.yaml
@@ -1,5 +1,5 @@
 name: model-round-robin
-version: v0.3.0
+version: v0.8.0
 description: |
   Distributes requests across configured AI models in round-robin order to
   balance traffic and reduce overloading on any single model.

diff --git a/gateway/gateway-controller/default-policies/pii-masking-regex.yaml b/gateway/gateway-controller/default-policies/pii-masking-regex.yaml
@@ -1,5 +1,5 @@
 name: pii-masking-regex
-version: v0.3.0
+version: v0.8.0
 description: |
   Masks or redacts Personally Identifiable Information (PII) in request and
   response payloads using configured regex patterns. Supports reversible

diff --git a/gateway/gateway-controller/default-policies/prompt-decorator.yaml b/gateway/gateway-controller/default-policies/prompt-decorator.yaml
@@ -1,5 +1,5 @@
 name: prompt-decorator
-version: v0.3.0
+version: v0.8.0
 description: |
   Applies configured prompt decorations to request payloads before upstream
   processing.

diff --git a/gateway/gateway-controller/default-policies/prompt-template.yaml b/gateway/gateway-controller/default-policies/prompt-template.yaml
@@ -1,5 +1,5 @@
 name: prompt-template
-version: v0.3.0
+version: v0.8.0
 description: |
   Applies configured prompt templates to request payloads to transform prompts
   before upstream processing.

diff --git a/gateway/gateway-controller/default-policies/remove-headers.yaml b/gateway/gateway-controller/default-policies/remove-headers.yaml
@@ -1,5 +1,5 @@
 name: remove-headers
-version: v0.3.0
+version: v0.8.0
 description: |
   Removes configured headers from requests and/or responses. Header matching is
   case-insensitive, and removing a non-existent header is ignored.

diff --git a/gateway/gateway-controller/default-policies/semantic-cache.yaml b/gateway/gateway-controller/default-policies/semantic-cache.yaml
@@ -1,5 +1,5 @@
 name: semantic-cache
-version: v0.3.0
+version: v0.8.0
 description: |
   Caches LLM responses using semantic similarity over request embeddings to
   reduce repeated upstream calls. Returns cached responses on similarity hits

diff --git a/gateway/gateway-controller/default-policies/semantic-prompt-guard.yaml b/gateway/gateway-controller/default-policies/semantic-prompt-guard.yaml
@@ -1,5 +1,5 @@
 name: semantic-prompt-guard
-version: v0.1.0
+version: v0.8.0
 description: |
   Blocks or allows prompts based on semantic similarity to configured allow/deny
   phrase embeddings. The incoming prompt is embedded via the configured embedding provider

diff --git a/gateway/gateway-controller/default-policies/set-headers.yaml b/gateway/gateway-controller/default-policies/set-headers.yaml
@@ -1,5 +1,5 @@
 name: set-headers
-version: v0.3.0
+version: v0.8.0
 description: |
   Sets configured headers on requests and/or responses. If the same header is set
   multiple times, the latest configured value overwrites earlier values.

diff --git a/gateway/gateway-controller/default-policies/token-based-ratelimit.yaml b/gateway/gateway-controller/default-policies/token-based-ratelimit.yaml
@@ -1,5 +1,5 @@
 name: token-based-ratelimit
-version: v0.3.0
+version: v0.8.1
 description: |
   Enforces token-based rate limits for LLM traffic by resolving token extraction
   paths from provider templates and delegating enforcement to the