September 2025

Encode your expertise into slash commands

Slash commands in Ona

Encode your team’s best practices into reusable slash commands that work across your entire organization in Ona. Useful for automating standards such as PR or commits patterns and for turning complex workflows into simple and consistent actions.
  • Ensure everyone follows the same PR format or review process
  • Capture your best reviewer’s approach in commands like /review-like-sarah
  • Automate common tasks like /pr, /fix-ci-build, or /weekly-digest
Every command runs in a fully-configured Ona environment with all of your dependencies, authentication, and secrets set up. So /test can run against real databases and integrations and /fix-ci-build has everything it needs to succeed. All environments are isolated so there’s never the risk of breaking your laptop or your flow.For more, see the slash commands docs and our best practices guide.

Track agent progress with todos

Ona todo list

As agents become more autonomous and handle longer workflows, you need a way to monitor progress without watching every detail. That’s why before starting to work Ona Agents create and manage their own todo lists.
  • See the plan at a glance instead of reading through detailed agent output
  • Quickly spot when an agent might need steering without monitoring every action
  • Add, remove, or modify todos mid-task to adjust your agent’s approach
With todos you can check in to see the big picture, and intervene only when needed. With each agent maintaining its own todo list, you can start to orchestrate your own fleet of agents without losing track of who’s doing what.See our best practices guide for more.

Ona now supports AGENTS.md

Ona supports AGENTS.md

Ona now supports AGENTS.md, the emerging open standard for guiding AI coding agents used by thousands of open-source projects and supported by tools like OpenAI and Google.AGENTS.md provides a consistent way to communicate project conventions to your coding agent. Add to the file any project-specific commands, coding standards, and architecture guidance that will help your agent write code that fits your team’s patterns. If you already use AGENTS.md with another agentic tool, migration is seamless; Ona will automatically load it into every environment.See the agents.md documentation for more.

Keep momentum on any device from mobile to iPad

Ona supports AGENTS.md

Capture ideas the moment inspiration strikes. Whether you’re waiting for coffee or commuting home, Ona gives you the full power of development environments from any device without any tunnels or complex setups. So ideas can become reality, wherever you are.

Privacy-first coding agent inference with Bedrock and Vertex

Ona supported models

Ona Enterprise supports LLM inference via Amazon Bedrock, Google Vertex and Anthropic giving you secure control over your AI inference from within your private VPC. Your code, prompts, and AI interactions never leave your network. Meet strict regulatory needs with inference that runs entirely within your security perimeter. Combined with Ona’s existing VPC deployment this creates an end-to-end secure development environment platform.This feature is available today for all Ona Enterprise customers.Learn more about Ona Enterprise.

Sandboxed AI software development with Dev Container

DevContainer support

Unlike AI coding tools that run on shared infrastructure or on developer machines, Ona provides true sandboxing for writing software with agents. Agents can’t access each other’s work or leak secrets between projects. Ona Agents execute within isolated environments defined by Dev Container.
  • Complete agent isolation: Each agent runs in its own Dev Container with OS level isolation, preventing cross-contamination between source control and projects.
  • Ephemeral by design: Environments are created newly for each task (e.g. issue, bug, feature) and destroyed on completion, ensuring no persistent attack surface.
  • Standardized environments: Dev Containers are defined in code and pre-configured with your exact dependencies and access credentials.
If you’re already using the Dev Container specification, Ona will automatically use your existing devcontainer.json. For new projects, Ona can help generate appropriate Dev Container configurations based on your codebase. Available for all Ona pricing tiers.Learn more about Ona Dev Container support.
August 2025

Standardized JetBrains plugin management via devcontainer.json

You can now configure JetBrains IDE plugins directly in your devcontainer.json file, enabling fully standardized plugin management across development environments.This update lets teams pre-install essential plugins from the JetBrains Marketplace using their plugin IDs, ensuring consistent tooling for all team members. It eliminates the need for manual plugin installation, reducing setup time and improving onboarding speed.Key capabilities:
  • Plugin installation: Specify plugin IDs from the JetBrains Marketplace for automatic installation.
  • Team consistency: Guarantee the same set of plugins across every developer environment.
  • Faster onboarding: Remove the manual step of plugin setup for new contributors.
Example configuration:
devcontainer.json
{
	"name": "My Project",
	"image": "mcr.microsoft.com/devcontainers/base:ubuntu",
	"customizations": {
		"jetbrains": {
			"plugins": ["org.intellij.plugins.hcl", "com.intellij.kubernetes"]
		}
	}
}
This enhancement removes the previous limitation of non-customizable JetBrains plugin setups, bringing a consistent, repeatable configuration to the entire Dev Container ecosystem.See the JetBrains documentation to learn more.
July 2025

HTTPS support for environment services via port sharing

You can now expose environment services over HTTPS using Gitpod’s port sharing feature. This enables secure communication with applications running in your environment, which is ideal for testing HTTPS-only setups or integrating with services requiring encrypted transport.What’s new:
  • UI integration: Select https as the protocol in the port sharing dialog
  • CLI support: Use --protocol https with gitpod environment port open to expose environment service ports securely.
Use cases:
  • Applications with HTTPS-only redirects or policies
  • Streaming APIs requiring secure connections
See port sharing documentation for setup instructions.

Support for multiple region-aware environment classes per project

We’re excited to announce that Gitpod now supports Multiple environment classes for a project, a highly requested feature that enhances reliability and flexibility for organizations.With this new feature, you can:
  • Configure up to 30 environment classes per project, providing built-in regional redundancy
  • Set a default environment class while offering alternatives for user selection
  • Avoid creating multiple projects for the same repository across different regions
  • Benefit from automatic fallback options when a preferred environment class is unavailable
Highlights:
  • Enhanced Resilience: Eliminate single points of failure with multiple region support in a single project
  • User Flexibility: Users can select their preferred environment class through an intuitive UI
  • Intelligent Fallback: When a selected environment class is unavailable, users receive informative error messages and alternative options
  • Preference Persistence: The system remembers user preferences for future project launches
  • Simplified Project Management: Reduce project proliferation by consolidating multi-region support
Learn how to configure multiple environment classes for a project in our documentation.

Archive & Auto-delete for Environments

We’re excited to announce Archive & Auto-delete, a new feature that automatically manages your environment lifecycle to help reduce storage costs.With this new feature, you can:
  • Automatically archive inactive environments after 7 days of inactivity
  • Configure auto-deletion policies to remove archived environments after 1, 2, or 4 weeks
  • Set organization-wide retention limits to ensure consistent storage management
Highlights:
  • Two-stage lifecycle: Environments are archived first (reversible), then auto-deleted based on your preferences
  • Flexible policies: Users can set preferences within organization-defined limits
  • Bulk management: Delete all archived environments at once with safety controls
  • Visual indicators: Archive badge shows when you have archived environments
This feature helps reduce storage costs while maintaining control over environment retention. Organization-wide auto-delete policies are available for Enterprise customers.Learn how to configure Archive & Auto-delete in our documentation.

Organization Secrets support

We’re excited to announce that Gitpod now supports Organization secrets, alongside existing User and Project secrets.With this new feature, you can:
  • Configure organization-wide secrets for all Environments in the organization
  • Ensure consistent access to shared credentials and API keys for all team members
Highlights:
  • Files: Secrets can be mounted as files for complex structures e.g. JSON.
  • Environment Variables: Inject secrets as environment variables.
What’s the benefit of files? Files offer better security by avoiding issues like process visibility, crash logging leaks, and unintentional inheritance by child processes.Learn how to configure organization secrets in our documentation.
June 2025

VPC endpoint support for Enterprise AWS runners

Enterprise AWS runners now support VPC endpoints, allowing you to connect to Gitpod’s management plane using AWS PrivateLink.This enhancement provides:
  • Increased security - All traffic between your runner and Gitpod stays within AWS’s network backbone
  • More reliable connectivity - Eliminates dependency on internet routing and potential connectivity issues
  • Compliance ready - Ideal for customers with strict security requirements that prohibit internet-bound traffic
How it works:With VPC endpoints enabled, your Enterprise AWS runner connects to Gitpod’s management plane through AWS PrivateLink:
  • DNS resolution - app.gitpod.io automatically resolves to VPC endpoint IP addresses within your VPC
  • AWS PrivateLink - Traffic flows through Amazon’s network infrastructure via VPC endpoints
  • Seamless integration - No changes required to your existing runner configuration
Getting started:To enable VPC endpoints for your Enterprise AWS runner:
  1. Create an Interface VPC Endpoint in your AWS account pointing to Gitpod’s service
  2. Configure the endpoint in the same VPC where your runner is deployed
  3. Enable DNS names for automatic resolution
The runner dashboard will automatically detect and display “via VPC endpoint” as the connection type once configured.Learn more about setting up VPC endpoints in our Enterprise runner setup documentation.Availability: This feature is available to Enterprise customers using AWS runners.

Enterprise AWS runner with AI agent and direct connectivity

Enterprise AWS Runners are now available for Enterprise customers, providing additional capabilities beyond our AWS Runners.Key features:
  • Ona AI Agent Integration: AI-powered assistance for automatic Dev Container generation and environment setup
  • Direct Connectivity: Bypass Gitpod’s central gateway using your own Network Load Balancer with custom domain and SSL/TLS certificate
  • Advanced Networking: Custom VPC configurations with flexible subnet architecture for internal-only or internet-facing deployments
  • Flexible Deployment: Deploy behind corporate firewalls with future HTTP proxy support
Availability:Enterprise AWS Runners are exclusively available to Enterprise customers. If you’re on the Enterprise tier, contact your Gitpod account manager to get started.Coming soon:We’re continuing to enhance the Enterprise Runner with additional enterprise-focused features:
  • HTTP Proxy Support: Custom HTTP proxy configuration for environments behind corporate firewalls
  • Custom CA Certificate Support: Integration with enterprise certificate authorities and custom certificate chains
Learn more about setting up your Enterprise AWS Runner in our documentation.

Introducing our AI powered Development Environment setup workflow

Ona’s Enterprise SWE agent, Ona agent, now automatically analyzes repositories and generates Dev Container and automations configurations, helping you discover the value of Gitpod much faster.When developers open an environment without existing Dev Container configurations, Gitpod offers to run our AI powered workflow to generate the configuration automatically.Ona works relentlessly, rebuilding and testing the generated configuration until it is confident it gives you a productive setup.AI powered dev. environmentHow it works:
  1. Open an environment in Gitpod without an existing Dev Container configuration
  2. Gitpod offers to run our Ona powered setup agent automatically
  3. Ona generates devcontainer.json and automations.yaml based on detected dependencies and best practices
  4. Review and commit configurations for your team
  5. All subsequent environment launches use the optimized configuration
Availability:This feature is available to our enterprise customers. Contact sales.

Gitpod now supports Windsurf editor

Gitpod now supports Windsurf as an editor option for your development environments. Windsurf integrates advanced AI capabilities directly into your development workflow, enhancing productivity through natural language interaction and intelligent code assistance. Experience features like Tab-to-Import, real-time linting, and the powerful Cascade AI assistant to streamline your coding process.Using Windsurf with Gitpod:Windsurf w/ OnaTo get started with Windsurf in Gitpod, simply select Windsurf from the editor selector dropdown by clicking on the dropdown arrow next to the editor button on the action bar.Check our documentation for more details on how to use Windsurf with Gitpod.
May 2025

Faster development environment start times for AWS with Dev Container build caching

Development environment starts are now faster for organizations using AWS Runners with the addition of a new Dev Container build cache Runner setting that uses Amazon ECR.With this setting enabled you get:
  • Faster startup times from minutes to seconds for environments with identical Dev Container configurations
  • Reclaimed developer time: Convert 5 minute development environment startup delays into 30-second starts
  • Automatically optimized start times performance without any configuration changes required
How does it work?With the setting enabled on your AWS runner, the first environment created from a project will cache the built Dev Container image. Any changes to the Dev Container configuration will trigger a new cache build on the next environment creation.
  • All subsequent starts using the same project will benefit from significantly faster startup times.
  • Images are cached for 30 days before automatically expiring to manage storage costs.
  • The cache is restricted to users of the project and can be disabled in runner settings if needed.
The build cache speeds up developers workflows and incentivizes developers to use secure short-lived development environments.Getting started:For new AWS runners: The Dev Container image cache is enabled by default.For existing AWS runners:
  1. Update your CloudFormation stack to the latest version that supports the cache
  2. Go to Settings → Runners in your Gitpod organization
  3. Select your AWS runner and toggle Dev Container image cache to enabled
Note: Upgrading CloudFormation templates from January 2025 or earlier will cause existing environments to become inaccessible due to SSH port changes. Before upgrading, either stop existing environments or manually update the security group after the upgrade.Learn more about configuration, security considerations, and troubleshooting in our Dev Container image cache documentation.

Analyze your organization’s Gitpod usage with Insights

Ona Insights dashboard

We’re excited to announce the launch of Gitpod Insights, a powerful analytics dashboard that helps Enterprise organizations understand and optimize their Gitpod usage and cloud cost.With Gitpod Insights, you can:
  • Analyze environment usage across your entire organization
  • Optimize cloud costs by identifying opportunities to right-size resources
  • Monitor adoption by tracking active users and environment metrics
The Insights dashboard provides key metrics, including:
  • Active Users: Track weekly active users and engagement patterns
  • Environment Usage: Monitor total environments and runtime hours
  • Resource Distribution: View usage by projects, users, and environment classes
Organization administrators can access Insights directly from the Gitpod dashboard by selecting “Insights” from the left navigation menu. The dashboard offers flexible time range options from daily to yearly views, with automatically adjusted data granularity for optimal analysis.Learn more about Gitpod Insights in our documentation.

Create development environments from scratch without a Git repository

You can now create development environments from scratch directly from the environment creation modal. This new option allows you to:
  • Start with a clean slate using your organization’s default environment image
  • Start an environment without requiring a git provider configured on a runner
  • Begin development immediately without needing to clone an existing repository
To create a blank environment:
  1. Click the Create Environment button
  2. Select Create Environment From Scratch
  3. Choose your preferred environment class
  4. Click Create to start your new environment
Read more about setting your organization’s default environment image here.

Organization policies to manage cost, security and developer experience

Organization policies are now available on our Enterprise plan for organizations, giving administrators centralized controls to manage security, developer experience, and resource costs.With Organization policies, you can:
  • Enhance security - Restrict development environments to only run in the cloud (e.g. not locally) and control which editors developers can use to access your code
  • Standardize experience - Create a consistent “golden path” by defining allowed editors and default container images
  • Control costs - Set environment timeout limits and maximum environment counts to prevent unexpected resource usage
  • Enforce governance - Require environments to be created only from approved projects
  • Manage resources - Limit concurrent running environments per user for optimized resource allocation
Discover how to configure Organization Policies in our documentation.
April 2025

Gitpod now supports VS Code in the Browser

Gitpod now supports VS Code in the browser as well as regular desktop IDEs and editors. Giving developers access to secure development environments without installing any local tools, cloning any source code or managing any dependencies. Development environments that are fully automated and standardized.With Gitpod and VS Code in the Browser, you can:
  • Drive down your developer onboarding times by eliminating all manual setup for your development teams.
  • Empower developers to review code easily by launching new development environments running in their browser tab.
  • Drive down incident response times with SREs able to do on-the-go incident response direct from their mobiles.
  • For secure enterprises, Gitpod paired with a secure browser (like Island) is a secure and performant alternative to traditional VDI.

Getting started

To get started, simply click the “Open in VS Code in the Browser” button when starting a Gitpod environment. Check our documentation for more details on features and capabilities.

Gitpod now supports JetBrains Toolbox App

The JetBrains Toolbox App, a desktop application that helps you manage JetBrains IDEs and projects, now supports remote development in Gitpod environments.This means you can:
  • Use the familiar Toolbox App interface to manage your IDEs in Gitpod
  • Connect to Gitpod environments from your desktop
  • Install and update JetBrains IDEs in your remote environment
To get started, install the latest JetBrains Toolbox App (2.6+) and connect it to your Gitpod environments. Check our documentation for setup instructions.Learn more about the JetBrains Toolbox App 2.6 release in the official announcement.

User Secrets support

We’re excited to announce that Gitpod now supports User secrets, alongside existing Project secrets.With this new feature, you can:
  • Configure personal secrets for all of your Environments
  • Integrate against 3rd party systems which use Personal Access Tokens to authenticate seamlessly, and even use atuin to have persistent terminal history in your Environments.
Highlights:
  • Files: Secrets can be mounted as files for complex structures e.g. JSON.
  • Environment Variables: Inject secrets as environment variables.
What’s the benefit of files? Files offer better security by avoiding issues like process visibility, crash logging leaks, and unintentional inheritance by child processes.Learn how to configure your personal secrets in our documentation.
March 2025

AWS ECR private registry support

We’re excited to announce that Gitpod now supports AWS ECR private registries with IAM-based authentication when using AWS EC2 runners.With this new feature, you can:
  • Securely access private ECR repositories without manually managing credentials
  • Simplify authentication workflows using EC2 runner’s IAM role
  • Seamlessly work with private container images in your development environment
This native integration works automatically when:
  • You’re using AWS EC2 runners for your environments
  • Your ECR registry and EC2 runners are in the same AWS account (or have appropriate cross-account access)
Setting up ECR registry access is straightforward through the Project Secrets interface. Simply select Container Registry Basic Auth, enter your ECR registry hostname, and the system will automatically configure runner-native authentication.Learn how to configure IAM permissions and set up your ECR registry in our documentation.
February 2025

Domain Verification for SSO

Domain Verification is now available, allowing organization admins to verify ownership of their email domains through DNS TXT records. This feature strengthens security by confirming domain ownership before enabling SSO functionality. This ensures that only authorized users can access your organization using the specified domain.Learn how to verify your domain from our documentation.

Private container registry support

We’re excited to announce that Gitpod now supports Container Registry Secrets, allowing you to securely authenticate with private container registries.With Container Registry Secrets, you can now:
  • Pull Dev Container images from private registries
  • Authenticate with container registries during your development workflow
  • Work with private images in your Flex environment without exposing credentials
This feature supports all major container registries using basic authentication, including:
  • Docker Hub
  • GitHub Container Registry
  • GitLab Container Registry
  • Azure Container Registry
Setting up Container Registry Secrets is straightforward through the Project Secrets interface. You’ll need to provide the registry hostname, username, and password/token to create the authentication secret.Learn how to set up and use Container Registry Secrets in our documentation.Note: This initial release supports basic authentication only. Support for AWS ECR and other authentication methods will be coming in future updates.

Dotfiles Support for Gitpod

Gitpod now supports dotfiles. Dotfiles are a way to customize your developer environment according to your personal needs.Just configure what dotfiles repository to use and Gitpod will clone and install the dotfiles in every environment, ensuring everything is just the way you like it.Head over to the documentation to learn how to get started.
December 2024

Introducing Gitpod SSO

We’re excited to announce that Gitpod now supports Single Sign-On (SSO), making it easier than ever to manage access for your team. With SSO, your team can log in using their existing accounts with trusted Identity Providers like Okta, Azure AD, or Google using OpenID Connect (OIDC) integration.This feature simplifies authentication by eliminating the need for separate credentials, enhances security by centralizing user management, and streamlines access across your organization. As an admin, you can easily set up SSO in your organization’s settings using your IdP credentials and manage access with just a few clicks.Learn how to set up SSO in our documentation.

Introducing Gitpod secrets & environment variables

Gitpod now supports secrets and environment variables. Securely store and inject sensitive data such as API keys and access credentials into your development environment. Secrets are encrypted using AES256-GCM and stored securely. Only environments launched from an associated project can access it’s secrets.Highlights:
  • Environment Variables: Inject secrets as environment variables.
  • Files: Secrets can be mounted as files for complex structures e.g. JSON.
What’s the benefit of files? Files offer better security by avoiding issues like process visibility, crash logging leaks, and unintentional inheritance by child processes.See secrets docs for more.

Migrate from .gitpod.yml to devcontainer.json

We recently announced that Ona now supports Dev Container. To help ease your migration you can run the following command directly from a Ona environment:
gitpod env migrate