From cd05c42d0fbb16c7dd635af8294512f5c3a8e731 Mon Sep 17 00:00:00 2001
From: Yiftach Cohen <yiftach.cohen@armis.com>
Date: Sun, 15 Mar 2026 15:21:39 +0200
Subject: [PATCH 1/2] docs: update CHANGELOG for v1.4.0

---
 docs/CHANGELOG.md | 16 +++++++++++++++-
 1 file changed, 15 insertions(+), 1 deletion(-)

diff --git a/docs/CHANGELOG.md b/docs/CHANGELOG.md
index b862553..aa8d953 100644
--- a/docs/CHANGELOG.md
+++ b/docs/CHANGELOG.md
@@ -21,6 +21,19 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ---
 
+## [1.4.0] - 2026-03-15
+
+### Added
+
+- JWT authentication flags (`--client-id`, `--client-secret`) now enabled by default as the primary authentication method (#95)
+
+### Changed
+
+- Removed `--auth-endpoint` flag — JWT endpoint is now derived automatically from the API URL and region (#98)
+- Documentation updated to establish JWT as the recommended authentication method over Basic auth (#99)
+
+---
+
 ## [1.3.0] - 2026-03-08
 
 ### Added
@@ -231,7 +244,8 @@ Manual entries for significant releases:
 
 -->
 
-[Unreleased]: https://github.com/ArmisSecurity/armis-cli/compare/v1.3.0...HEAD
+[Unreleased]: https://github.com/ArmisSecurity/armis-cli/compare/v1.4.0...HEAD
+[1.4.0]: https://github.com/ArmisSecurity/armis-cli/compare/v1.3.0...v1.4.0
 [1.3.0]: https://github.com/ArmisSecurity/armis-cli/compare/v1.2.1...v1.3.0
 [1.2.1]: https://github.com/ArmisSecurity/armis-cli/compare/v1.2.0...v1.2.1
 [1.2.0]: https://github.com/ArmisSecurity/armis-cli/compare/v1.1.0...v1.2.0

From 67e8b9b2cb0c2f239e49f69b2b8bd118a02a2fb4 Mon Sep 17 00:00:00 2001
From: Yiftach Cohen <yiftach.cohen@armis.com>
Date: Sun, 15 Mar 2026 15:25:56 +0200
Subject: [PATCH 2/2] docs: clarify JWT auth changelog entry wording

---
 docs/CHANGELOG.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/CHANGELOG.md b/docs/CHANGELOG.md
index aa8d953..4971e3f 100644
--- a/docs/CHANGELOG.md
+++ b/docs/CHANGELOG.md
@@ -25,7 +25,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ### Added
 
-- JWT authentication flags (`--client-id`, `--client-secret`) now enabled by default as the primary authentication method (#95)
+- JWT authentication via `--client-id` / `--client-secret` is now the recommended authentication method, taking priority over `--token` when both are provided (#95)
 
 ### Changed