starred/kiro-gateway-jwadow
1
0
Fork 0
mirror of https://github.com/jwadow/kiro-gateway.git synced 2026-04-25 01:15:57 +03:00
Code Issues 13 Projects Releases 10 Packages Wiki Activity

[GH-ISSUE #45] BUG: 401 Unauthorized error when refreshing Kiro Desktop Auth token #32

New issue
Closed
opened 2026-02-27 07:17:34 +03:00 by kerem · 10 comments
kerem commented 2026-02-27 07:17:34 +03:00
Owner
Copy link

Originally created by @somehow-paul on GitHub (Jan 19, 2026).
Original GitHub issue: https://github.com/jwadow/kiro-gateway/issues/45

Kiro Gateway Version

Current Latest Code

What happened?

As long as I click on 'query user usage' in Kiro, I will receive an error message 401 shortly thereafter.
I am using IDE login

Environment

OS: Windows

Debug Logs

2026-01-19 20:00:50 | ERROR | kiro.routes_anthropic:messages:332 - Internal error: Client error '401 Unauthorized' for url 'https://prod.us-east-1.auth.desktop.kiro.dev/refreshToken'
For more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/401
2026-01-19 20:00:50 | ERROR | kiro.routes_anthropic:messages:333 - HTTP 500 - POST /v1/messages - Client error '401 Unauthorized' for url 'https://prod.us-east-1.auth.desktop.kiro.dev/refreshToken'

2026-01-19 20:00:50 | INFO | kiro.auth:_do_kiro_desktop_refresh:538 - Refreshing Kiro token via Kiro Desktop Auth...
2026-01-19 20:00:52 | WARNING | kiro.auth:_refresh_token_kiro_desktop:518 - Token refresh failed with 401, reloading credentials from file and retrying...
2026-01-19 20:00:52 | INFO | kiro.auth:_reload_credentials_from_file:485 - Reloading credentials from file: C:\Users\paulw.aws\sso\cache\kiro-auth-token.json
2026-01-19 20:00:52 | INFO | kiro.auth:_load_credentials_from_file:323 - Credentials loaded from C:\Users\paulw.aws\sso\cache\kiro-auth-token.json
2026-01-19 20:00:52 | INFO | kiro.auth:_do_kiro_desktop_refresh:538 - Refreshing Kiro token via Kiro Desktop Auth...
2026-01-19 20:00:54 | ERROR | kiro.routes_anthropic:messages:332 - Internal error: Client error '401 Unauthorized' for url 'https://prod.us-east-1.auth.desktop.kiro.dev/refreshToken'
For more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/401
2026-01-19 20:00:54 | ERROR | kiro.routes_anthropic:messages:333 - HTTP 500 - POST /v1/messages - Client error '401 Unauthorized' for url 'https://prod.us-east-1.auth.desktop.kiro.dev/refreshToken'

Originally created by @somehow-paul on GitHub (Jan 19, 2026). Original GitHub issue: https://github.com/jwadow/kiro-gateway/issues/45 ### Kiro Gateway Version Current Latest Code ### What happened? As long as I click on 'query user usage' in Kiro, I will receive an error message 401 shortly thereafter. I am using IDE login Environment OS: Windows ### Debug Logs 2026-01-19 20:00:50 | ERROR | kiro.routes_anthropic:messages:332 - Internal error: Client error '401 Unauthorized' for url 'https://prod.us-east-1.auth.desktop.kiro.dev/refreshToken' For more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/401 2026-01-19 20:00:50 | ERROR | kiro.routes_anthropic:messages:333 - HTTP 500 - POST /v1/messages - Client error '401 Unauthorized' for url 'https://prod.us-east-1.auth.desktop.kiro.dev/refreshToken' 2026-01-19 20:00:50 | INFO | kiro.auth:_do_kiro_desktop_refresh:538 - Refreshing Kiro token via Kiro Desktop Auth... 2026-01-19 20:00:52 | WARNING | kiro.auth:_refresh_token_kiro_desktop:518 - Token refresh failed with 401, reloading credentials from file and retrying... 2026-01-19 20:00:52 | INFO | kiro.auth:_reload_credentials_from_file:485 - Reloading credentials from file: C:\Users\paulw\.aws\sso\cache\kiro-auth-token.json 2026-01-19 20:00:52 | INFO | kiro.auth:_load_credentials_from_file:323 - Credentials loaded from C:\Users\paulw\.aws\sso\cache\kiro-auth-token.json 2026-01-19 20:00:52 | INFO | kiro.auth:_do_kiro_desktop_refresh:538 - Refreshing Kiro token via Kiro Desktop Auth... 2026-01-19 20:00:54 | ERROR | kiro.routes_anthropic:messages:332 - Internal error: Client error '401 Unauthorized' for url 'https://prod.us-east-1.auth.desktop.kiro.dev/refreshToken' For more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/401 2026-01-19 20:00:54 | ERROR | kiro.routes_anthropic:messages:333 - HTTP 500 - POST /v1/messages - Client error '401 Unauthorized' for url 'https://prod.us-east-1.auth.desktop.kiro.dev/refreshToken'
kerem 2026-02-27 07:17:34 +03:00
  • closed this issue
  • added the
    bug
    fixed
         labels
kerem commented 2026-02-27 07:17:34 +03:00
Author
Owner
Copy link

@somehow-paul commented on GitHub (Jan 19, 2026):

Another issue is that when using OpenCode + Claude Code at high frequency, there's a chance of getting 500 errors instead of 429 errors. I haven't yet figured out a stable scenario to reproduce this issue consistently.

<!-- gh-comment-id:3768021962 --> @somehow-paul commented on GitHub (Jan 19, 2026): Another issue is that when using OpenCode + Claude Code at high frequency, there's a chance of getting 500 errors instead of 429 errors. I haven't yet figured out a stable scenario to reproduce this issue consistently.
kerem commented 2026-02-27 07:17:34 +03:00
Author
Owner
Copy link

@uratmangun commented on GitHub (Jan 19, 2026):

@somehow-paul wait what you meant by opencode+claude are you opening it at the same time? im a little bit scared now i only open kiro cli to login first then open just one opencode instance for now let me know your experience first

<!-- gh-comment-id:3768305346 --> @uratmangun commented on GitHub (Jan 19, 2026): @somehow-paul wait what you meant by opencode+claude are you opening it at the same time? im a little bit scared now i only open kiro cli to login first then open just one opencode instance for now let me know your experience first
kerem commented 2026-02-27 07:17:34 +03:00
Author
Owner
Copy link

@somehow-paul commented on GitHub (Jan 19, 2026):

@somehow-paul wait what you meant by opencode+claude are you opening it at the same time? im a little bit scared now i only open kiro cli to login first then open just one opencode instance for now let me know your experience first等等,你说的 opencode+claude 是什么意思?你是同时打开它们吗?我现在有点害怕。我目前只打开 kiro cli 登录,然后才打开一个 opencode 实例。先跟我说说你的经验吧。

I have multiple projects running simultaneously, and I keep Claude continuously writing and self-testing unit tests, so it's common for me to have multiple instances of OpenCode and Claude Code open at the same time. The most frustrating issue for me right now is the 401 error problem, as it causes the entire workflow to fail.
I've encountered three main issues in the Windows environment: First, there's a concurrency issue where sometimes I get 500 errors. Second, there's the 401 problem, but I don't know what triggers it. Third, there's an "input too long" issue. Oh, and there's also a tool invocation problem where excessively long tool context will cause the connection to drop directly.
That said, overall this is still an excellent open-source project.
Restarting the reverse proxy software resolves the issue every time.
If possible, I'd also like to use Claude Code to help fix these issues. However, I suspect these are most likely Windows compatibility problems.

<!-- gh-comment-id:3768393738 --> @somehow-paul commented on GitHub (Jan 19, 2026): > [@somehow-paul](https://github.com/somehow-paul) wait what you meant by opencode+claude are you opening it at the same time? im a little bit scared now i only open kiro cli to login first then open just one opencode instance for now let me know your experience first等等,你说的 opencode+claude 是什么意思?你是同时打开它们吗?我现在有点害怕。我目前只打开 kiro cli 登录,然后才打开一个 opencode 实例。先跟我说说你的经验吧。 I have multiple projects running simultaneously, and I keep Claude continuously writing and self-testing unit tests, so it's common for me to have multiple instances of OpenCode and Claude Code open at the same time. The most frustrating issue for me right now is the 401 error problem, as it causes the entire workflow to fail. I've encountered three main issues in the Windows environment: First, there's a concurrency issue where sometimes I get 500 errors. Second, there's the 401 problem, but I don't know what triggers it. Third, there's an "input too long" issue. Oh, and there's also a tool invocation problem where excessively long tool context will cause the connection to drop directly. That said, overall this is still an excellent open-source project. Restarting the reverse proxy software resolves the issue every time. If possible, I'd also like to use Claude Code to help fix these issues. However, I suspect these are most likely Windows compatibility problems.
kerem commented 2026-02-27 07:17:34 +03:00
Author
Owner
Copy link

@somehow-paul commented on GitHub (Jan 19, 2026):

2026-01-19 22:09:01 | INFO | kiro.routes_anthropic:messages:144 - Request to /v1/messages (model=claude-opus-4-5-20251101, stream=True)
2026-01-19 22:09:02 | WARNING | kiro.auth:_refresh_token_kiro_desktop:518 - Token refresh failed with 401, reloading credentials from file and retrying...
2026-01-19 22:09:02 | INFO | kiro.auth:_reload_credentials_from_file:485 - Reloading credentials from file: C:\Users\paulw.aws\sso\cache\kiro-auth-token.json
2026-01-19 22:09:02 | INFO | kiro.auth:_load_credentials_from_file:323 - Credentials loaded from C:\Users\paulw.aws\sso\cache\kiro-auth-token.json
2026-01-19 22:09:02 | INFO | kiro.auth:_do_kiro_desktop_refresh:538 - Refreshing Kiro token via Kiro Desktop Auth...
2026-01-19 22:09:04 | ERROR | kiro.routes_anthropic:messages:332 - Internal error: Client error '401 Unauthorized' for url 'https://prod.us-east-1.auth.desktop.kiro.dev/refreshToken'
For more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/401
2026-01-19 22:09:04 | ERROR | kiro.routes_anthropic:messages:333 - HTTP 500 - POST /v1/messages - Client error '401 Unauthorized' for url 'https://prod.us-east-1.auth.desktop.kiro.dev/refreshToken'

2026-01-19 22:09:04 | INFO | kiro.debug_logger:flush_on_error:310 - [DebugLogger] Error logs flushed to debug_logs (status=500)
2026-01-19 22:09:04 | INFO | logging:callHandlers:1762 - 127.0.0.1:4987 - "POST /v1/messages?beta=true HTTP/1.1" 500
2026-01-19 22:09:05 | INFO | kiro.routes_anthropic:messages:144 - Request to /v1/messages (model=claude-haiku-4-5-20251001, stream=True)
2026-01-19 22:09:06 | INFO | logging:callHandlers:1762 - 127.0.0.1:4987 - "POST /v1/messages?beta=true HTTP/1.1" 200
2026-01-19 22:09:06 | INFO | kiro.routes_anthropic:stream_wrapper:288 - HTTP 200 - POST /v1/messages (streaming) - completed
2026-01-19 22:09:10 | INFO | logging:callHandlers:1762 - 127.0.0.1:4988 - "POST /v1/messages?beta=true HTTP/1.1" 200
2026-01-19 22:09:15 | INFO | kiro.routes_anthropic:stream_wrapper:288 - HTTP 200 - POST /v1/messages (streaming) - completed
2026-01-19 22:09:21 | INFO | kiro.routes_anthropic:messages:144 - Request to /v1/messages (model=claude-opus-4-5-20251101, stream=True)
2026-01-19 22:09:26 | INFO | logging:callHandlers:1762 - 127.0.0.1:5261 - "POST /v1/messages?beta=true HTTP/1.1" 200

<!-- gh-comment-id:3768524747 --> @somehow-paul commented on GitHub (Jan 19, 2026): 2026-01-19 22:09:01 | INFO | kiro.routes_anthropic:messages:144 - Request to /v1/messages (model=claude-opus-4-5-20251101, stream=True) 2026-01-19 22:09:02 | WARNING | kiro.auth:_refresh_token_kiro_desktop:518 - Token refresh failed with 401, reloading credentials from file and retrying... 2026-01-19 22:09:02 | INFO | kiro.auth:_reload_credentials_from_file:485 - Reloading credentials from file: C:\Users\paulw\.aws\sso\cache\kiro-auth-token.json 2026-01-19 22:09:02 | INFO | kiro.auth:_load_credentials_from_file:323 - Credentials loaded from C:\Users\paulw\.aws\sso\cache\kiro-auth-token.json 2026-01-19 22:09:02 | INFO | kiro.auth:_do_kiro_desktop_refresh:538 - Refreshing Kiro token via Kiro Desktop Auth... 2026-01-19 22:09:04 | ERROR | kiro.routes_anthropic:messages:332 - Internal error: Client error '401 Unauthorized' for url 'https://prod.us-east-1.auth.desktop.kiro.dev/refreshToken' For more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/401 2026-01-19 22:09:04 | ERROR | kiro.routes_anthropic:messages:333 - HTTP 500 - POST /v1/messages - Client error '401 Unauthorized' for url 'https://prod.us-east-1.auth.desktop.kiro.dev/refreshToken' 2026-01-19 22:09:04 | INFO | kiro.debug_logger:flush_on_error:310 - [DebugLogger] Error logs flushed to debug_logs (status=500) 2026-01-19 22:09:04 | INFO | logging:callHandlers:1762 - 127.0.0.1:4987 - "POST /v1/messages?beta=true HTTP/1.1" 500 2026-01-19 22:09:05 | INFO | kiro.routes_anthropic:messages:144 - Request to /v1/messages (model=claude-haiku-4-5-20251001, stream=True) 2026-01-19 22:09:06 | INFO | logging:callHandlers:1762 - 127.0.0.1:4987 - "POST /v1/messages?beta=true HTTP/1.1" 200 2026-01-19 22:09:06 | INFO | kiro.routes_anthropic:stream_wrapper:288 - HTTP 200 - POST /v1/messages (streaming) - completed 2026-01-19 22:09:10 | INFO | logging:callHandlers:1762 - 127.0.0.1:4988 - "POST /v1/messages?beta=true HTTP/1.1" 200 2026-01-19 22:09:15 | INFO | kiro.routes_anthropic:stream_wrapper:288 - HTTP 200 - POST /v1/messages (streaming) - completed 2026-01-19 22:09:21 | INFO | kiro.routes_anthropic:messages:144 - Request to /v1/messages (model=claude-opus-4-5-20251101, stream=True) 2026-01-19 22:09:26 | INFO | logging:callHandlers:1762 - 127.0.0.1:5261 - "POST /v1/messages?beta=true HTTP/1.1" 200
kerem commented 2026-02-27 07:17:34 +03:00
Author
Owner
Copy link

@uratmangun commented on GitHub (Jan 19, 2026):

@somehow-paul i also have multiple usage in my server and my account actually not banned but i can only use claude-sonnet-4 because of that this is the email i got from aws:

Image

do you also got this emai? its just my assumption but i think this is some mitigation in the kiro server if they detect suspicious behaviour you will definitely get a warning because we supposed to use this in kiro ide or kiro cli and not supposed to use this as an api lol so thats why probably you got what you got, also prior getting warning i also using it as an api, and then i also use it in opencode on my pc, opening it as well as kiro cli on my ssh and after that i think a week later i got that warning, right now i have kiro paid account but i only use it in my opencode in my pc just one kiro cli and opencode open and havent got warning yet i paid for kiro in 17th february, so its 3 days now hopefully not get a warning

<!-- gh-comment-id:3770471052 --> @uratmangun commented on GitHub (Jan 19, 2026): @somehow-paul i also have multiple usage in my server and my account actually not banned but i can only use claude-sonnet-4 because of that this is the email i got from aws: <img width="621" height="458" alt="Image" src="https://github.com/user-attachments/assets/040bc387-7c61-4d9d-8fd9-78d14d545c87" /> do you also got this emai? its just my assumption but i think this is some mitigation in the kiro server if they detect suspicious behaviour you will definitely get a warning because we supposed to use this in kiro ide or kiro cli and not supposed to use this as an api lol so thats why probably you got what you got, also prior getting warning i also using it as an api, and then i also use it in opencode on my pc, opening it as well as kiro cli on my ssh and after that i think a week later i got that warning, right now i have kiro paid account but i only use it in my opencode in my pc just one kiro cli and opencode open and havent got warning yet i paid for kiro in 17th february, so its 3 days now hopefully not get a warning
kerem commented 2026-02-27 07:17:34 +03:00
Author
Owner
Copy link

@somehow-paul commented on GitHub (Jan 20, 2026):

@somehow-paul i also have multiple usage in my server and my account actually not banned but i can only use claude-sonnet-4 because of that this is the email i got from aws:我的服务器上也启用了多个实例,我的账户实际上并没有被封禁,但我只能使用 claude-sonnet-4 这个实例,原因如下:这是我从 AWS 收到的邮件:

Image do you also got this emai? its just my assumption but i think this is some mitigation in the kiro server if they detect suspicious behaviour you will definitely get a warning because we supposed to use this in kiro ide or kiro cli and not supposed to use this as an api lol so thats why probably you got what you got, also prior getting warning i also using it as an api, and then i also use it in opencode on my pc, opening it as well as kiro cli on my ssh and after that i think a week later i got that warning, right now i have kiro paid account but i only use it in my opencode in my pc just one kiro cli and opencode open and havent got warning yet i paid for kiro in 17th february, so its 3 days now hopefully not get a warning你也收到这封邮件了吗?我只是猜测,但我认为这是 Kiro 服务器的某种缓解措施,如果他们检测到可疑行为,你肯定会收到警告,因为我们应该在 Kiro IDE 或 Kiro CLI 中使用它,而不是把它当作 API 使用,哈哈。所以这可能就是你收到警告的原因。在收到警告之前,我也把它当作 API 使用过,然后我还在我的电脑上用 OpenCode 打开它,同时通过 SSH 打开 Kiro CLI。之后大概一周后,我收到了那个警告。我现在有 Kiro 的付费账户,但我只在我的电脑上用 OpenCode,只打开一个 Kiro CLI 和一个 OpenCode,还没有收到警告。我是 2 月 17 日付费的 Kiro,到现在已经 3 天了,希望不会再收到警告。

My issue isn't about the warning - it's about the token not being refreshed. I'm not worried about my account being banned. If it gets banned, I'll just find other alternatives.

<!-- gh-comment-id:3770607665 --> @somehow-paul commented on GitHub (Jan 20, 2026): > [@somehow-paul](https://github.com/somehow-paul) i also have multiple usage in my server and my account actually not banned but i can only use claude-sonnet-4 because of that this is the email i got from aws:我的服务器上也启用了多个实例,我的账户实际上并没有被封禁,但我只能使用 claude-sonnet-4 这个实例,原因如下:这是我从 AWS 收到的邮件: > > <img alt="Image" width="621" height="458" src="https://private-user-images.githubusercontent.com/17805677/537779076-040bc387-7c61-4d9d-8fd9-78d14d545c87.png?jwt=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.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.e8wTGhlvimWQ4SOWNhh4w8vHjOIsZ7GifOOC_lHbxj0"> > do you also got this emai? its just my assumption but i think this is some mitigation in the kiro server if they detect suspicious behaviour you will definitely get a warning because we supposed to use this in kiro ide or kiro cli and not supposed to use this as an api lol so thats why probably you got what you got, also prior getting warning i also using it as an api, and then i also use it in opencode on my pc, opening it as well as kiro cli on my ssh and after that i think a week later i got that warning, right now i have kiro paid account but i only use it in my opencode in my pc just one kiro cli and opencode open and havent got warning yet i paid for kiro in 17th february, so its 3 days now hopefully not get a warning你也收到这封邮件了吗?我只是猜测,但我认为这是 Kiro 服务器的某种缓解措施,如果他们检测到可疑行为,你肯定会收到警告,因为我们应该在 Kiro IDE 或 Kiro CLI 中使用它,而不是把它当作 API 使用,哈哈。所以这可能就是你收到警告的原因。在收到警告之前,我也把它当作 API 使用过,然后我还在我的电脑上用 OpenCode 打开它,同时通过 SSH 打开 Kiro CLI。之后大概一周后,我收到了那个警告。我现在有 Kiro 的付费账户,但我只在我的电脑上用 OpenCode,只打开一个 Kiro CLI 和一个 OpenCode,还没有收到警告。我是 2 月 17 日付费的 Kiro,到现在已经 3 天了,希望不会再收到警告。 My issue isn't about the warning - it's about the token not being refreshed. I'm not worried about my account being banned. If it gets banned, I'll just find other alternatives.
kerem commented 2026-02-27 07:17:35 +03:00
Author
Owner
Copy link

@somehow-paul commented on GitHub (Jan 20, 2026):

Image According to my observation, this token indeed doesn't refresh. The token in the file was refreshed at 10:15, but the token inside here still hasn't been refreshed.

<!-- gh-comment-id:3770733539 --> @somehow-paul commented on GitHub (Jan 20, 2026): <img width="1269" height="577" alt="Image" src="https://github.com/user-attachments/assets/a5bc4155-d0c6-43d9-9b53-1294e659ea1d" /> According to my observation, this token indeed doesn't refresh. The token in the file was refreshed at 10:15, but the token inside here still hasn't been refreshed.
kerem commented 2026-02-27 07:17:35 +03:00
Author
Owner
Copy link

@somehow-paul commented on GitHub (Jan 20, 2026):

I captured the packets and took a look. It should be due to the enterprise AWS account - the request used to refresh the token is different from what's written in the code.

<!-- gh-comment-id:3770980110 --> @somehow-paul commented on GitHub (Jan 20, 2026): I captured the packets and took a look. It should be due to the enterprise AWS account - the request used to refresh the token is different from what's written in the code.
kerem commented 2026-02-27 07:17:35 +03:00
Author
Owner
Copy link

@jwadow commented on GitHub (Jan 20, 2026):

@somehow-paul

Thanks for the PR. Your clientIdHash detection and device registration loading logic works great. I've added it to the codebase.

One change I made: removed the conditional format logic. Both Enterprise IDE and kiro-cli now use JSON format with camelCase parameters - turns out that's what AWS SSO OIDC expects for both cases.

Your contribution is in the repo and you're in CONTRIBUTORS.md. Can you test this with your setup and confirm it works?

<!-- gh-comment-id:3771623465 --> @jwadow commented on GitHub (Jan 20, 2026): @somehow-paul Thanks for the PR. Your clientIdHash detection and device registration loading logic works great. I've added it to the codebase. One change I made: removed the conditional format logic. Both Enterprise IDE and kiro-cli now use JSON format with camelCase parameters - turns out that's what AWS SSO OIDC expects for both cases. Your contribution is in the repo and you're in CONTRIBUTORS.md. Can you test this with your setup and confirm it works?
kerem commented 2026-02-27 07:17:35 +03:00
Author
Owner
Copy link

@somehow-paul commented on GitHub (Jan 20, 2026):

@somehow-paul

Thanks for the PR. Your clientIdHash detection and device registration loading logic works great. I've added it to the codebase.

One change I made: removed the conditional format logic. Both Enterprise IDE and kiro-cli now use JSON format with camelCase parameters - turns out that's what AWS SSO OIDC expects for both cases.

Your contribution is in the repo and you're in CONTRIBUTORS.md. Can you test this with your setup and confirm it works?

It works fine.

<!-- gh-comment-id:3771688527 --> @somehow-paul commented on GitHub (Jan 20, 2026): > [@somehow-paul](https://github.com/somehow-paul) > > Thanks for the PR. Your clientIdHash detection and device registration loading logic works great. I've added it to the codebase. > > One change I made: removed the conditional format logic. Both Enterprise IDE and kiro-cli now use JSON format with camelCase parameters - turns out that's what AWS SSO OIDC expects for both cases. > > Your contribution is in the repo and you're in CONTRIBUTORS.md. Can you test this with your setup and confirm it works? It works fine.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
v2.3
v2.2
v2.1
v2.0
v1.0.8
v1.0.7
v1.0.6
v1.0.5
v1.0.4
v1.0.3
v1.0.2
v1.0.1
v1.0.0
Labels
Clear labels   
bug

   
bug

   
enhancement

   
enhancement

   
fixed

   
fixed

   
invalid

   
needs-info

   
needs-testing

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
upstream

   
wontfix

   
workaround
No labels
bug
bug
enhancement
enhancement
fixed
fixed
invalid
needs-info
needs-testing
pull-request
question
upstream
wontfix
workaround
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/kiro-gateway-jwadow#32
No description provided.