|
|
ea6fac3ed2
|
design: set default site theme to crimson red (hue 25, vivid 1.0)
|
2026-06-06 21:17:19 -07:00 |
|
|
|
334255877b
|
design: reduce border-beam size to 90px to prevent corner-overlap shudder on short vertical runs
|
2026-06-06 21:16:30 -07:00 |
|
|
|
a361aea582
|
design: optimize border-beam with layout containment and hardcoded path radius to eliminate corner stutter
|
2026-06-06 21:15:08 -07:00 |
|
|
|
f391a85938
|
design: add hardware acceleration offsets to border-beam to prevent corner jitter
|
2026-06-06 21:12:45 -07:00 |
|
|
|
b0fe3af609
|
design: apply silver gradient to .audience-title section header
|
2026-06-06 21:11:41 -07:00 |
|
|
|
3dc98f0a32
|
design: apply silver gradient to section headers + nav links, add dev-only live accent switcher, slow border-beam to 11s
|
2026-06-06 21:10:42 -07:00 |
|
|
|
c1d37184eb
|
feat(frontend): email+password auth, /signin + /signup pages, marketing consolidation, onboarding workspace naming + full data persistence
|
2026-06-06 20:28:38 -07:00 |
|
|
|
fbe991d8e6
|
feat: flatten routes and merge marketing and onboarding directories
|
2026-06-06 18:52:03 -07:00 |
|
|
|
de425667c5
|
feat: support root-level _marketing and _onboarding directories (T12)
|
2026-06-06 18:32:57 -07:00 |
|
|
|
fcf072ea7a
|
chore: remove deprecated modular marketing components (Group 3)
|
2026-06-06 18:27:17 -07:00 |
|
|
|
16a545a26a
|
feat: complete live-verified GTM onboarding flow & places autocomplete search proxies
|
2026-06-06 17:53:13 -07:00 |
|
|
|
28a959ea5a
|
fix(db): cast project_id to uuid in agent_sessions INSERT query
|
2026-05-30 12:40:14 -07:00 |
|
|
|
775c42e2fa
|
fix(auth): allow empty string appPath inside session-creation route
|
2026-05-29 19:23:06 -07:00 |
|
|
|
3cb079f6e4
|
feat(auth): enable requireWorkspacePrincipal on agent/sessions routes to support desktop API keys
|
2026-05-29 19:08:23 -07:00 |
|
|
|
a8b55b7d8f
|
feat(auth): enable requireWorkspacePrincipal on individual project GET/PATCH routes to support desktop API keys
|
2026-05-29 18:48:28 -07:00 |
|
|
|
7a3b964fb2
|
feat(auth): enable requireWorkspacePrincipal on projects GET route to support desktop API keys
|
2026-05-29 17:06:23 -07:00 |
|
|
|
cf270c285d
|
feat(auth): add Copy Workspace Key button on Next.js auth page for desktop SSO fallback
|
2026-05-29 16:17:18 -07:00 |
|
|
|
2a8bc25804
|
feat: added desktop sso endpoints
|
2026-05-28 16:05:47 -07:00 |
|
|
|
2647919bd5
|
feat(refactor): live zed-style codebase files autocomplete and context attachment
|
2026-05-21 17:20:31 -07:00 |
|
|
|
50f65e337d
|
feat(refactor): premium zed-style chat UI, collapsible reasoning, and comprehensive strict type sweeps
|
2026-05-21 17:05:42 -07:00 |
|
|
|
8bf8da088c
|
fix(ui): safely restore remarkGfm without corrupting tsx syntax
|
2026-05-19 20:00:58 -07:00 |
|
|
|
4ed5249cd0
|
fix(ui): re-add remarkGfm plugin to markdown renderer for PRD tab
|
2026-05-19 19:54:54 -07:00 |
|
|
|
b3a2e8a418
|
fix(db): correct ambiguous data column error in plan generation query
|
2026-05-19 19:52:52 -07:00 |
|
|
|
07a79df28c
|
feat(ai): patch Architect prompt with full Spec Kit PRD template rules
|
2026-05-19 19:49:05 -07:00 |
|
|
|
8323108f96
|
feat(ai): configure Architect mode prompt with Spec Kit templates and enforce task completion rules in background runner
|
2026-05-19 19:40:23 -07:00 |
|
|
|
9319ea8da2
|
fix(ui): inject Spec Kit architectural templates directly into Architect mode prompt
|
2026-05-19 19:38:40 -07:00 |
|
|
|
2b799e4907
|
feat(ai): automate end-to-end PRD, architecture, and task generation directly from Objective
|
2026-05-19 19:32:07 -07:00 |
|
|
|
7c2323f44d
|
fix(ui): remove the redundant Objective heading
|
2026-05-19 19:11:42 -07:00 |
|
|
|
e000348992
|
fix(ui): combine PRD tabs and remove redundant headers
|
2026-05-19 19:10:17 -07:00 |
|
|
|
8d53ca659e
|
fix(ui): remove unnecessary User Stories description and emojis
|
2026-05-19 19:01:45 -07:00 |
|
|
|
d43ce1fd2f
|
feat(ui): redesign Plan tab with Objective, User Stories, Features, and Architecture panels
|
2026-05-19 19:00:07 -07:00 |
|
|
|
07da08f11f
|
fix(ui): disable aggressive polling on plan page to prevent layout thrashing
|
2026-05-19 18:56:54 -07:00 |
|
|
|
4414287ed4
|
fix(ui): update API payloads for new chat modes
|
2026-05-19 18:50:27 -07:00 |
|
|
|
fc8c942329
|
fix(ui): simplify Plan tab by removing redundant Objective heading
|
2026-05-19 18:48:35 -07:00 |
|
|
|
c97e8555e3
|
fix(ui): remove over-polling from plan view to prevent infinite loops
|
2026-05-19 16:24:15 -07:00 |
|
|
|
cfc6226307
|
fix(ui): group plan tasks by User Story or Phase to support Spec Kit format
|
2026-05-19 15:56:13 -07:00 |
|
|
|
1da2a0b166
|
fix(ai): bump roundSinceText cutoff to 30 to prevent panic loops
|
2026-05-19 15:26:15 -07:00 |
|
|
|
5309a72206
|
fix(api): delete legacy atlas and advisor agent endpoints
|
2026-05-19 15:09:59 -07:00 |
|
|
|
0a4b3af327
|
fix(ai): restore thinking animations for gemini streams
|
2026-05-19 14:53:24 -07:00 |
|
|
|
6a083ff261
|
fix(ai): bump loop-breaker limits from 16 to 30 to permit long autonomous workflows
|
2026-05-19 14:51:45 -07:00 |
|
|
|
0eaa5534d0
|
feat(runner): migrate vibn-agent-runner to use frontend MCP proxy tools and updated headless prompt
|
2026-05-19 14:06:12 -07:00 |
|
|
|
d21daa8abf
|
fix(ai): implement Phase 2 and 3 prompt recommendations from review
|
2026-05-19 13:47:18 -07:00 |
|
|
|
93087d4f9a
|
feat(ai): optimize tool loops, fix deployments, and integrate new onboarding flow
|
2026-05-19 12:52:47 -07:00 |
|
|
|
5364bd8497
|
feat(api): comprehensive QA hardening — security gates, chat improvements, beta scaffolds
Closes checklist items F-01..F-06, D-01..D-28, S-01..S-10, C-01..C-07,
B-01..B-07, R-01..R-02, O-03.
Security (28 deletions + 10 auth gates):
- Delete 28 unauthenticated debug/cursor/firebase/test routes
- Gate ai/chat, ai/conversation, context/summarize, work-completed with withTenantProject/withAuth
- Add HMAC-SHA256 signature verification to webhooks/coolify
- Switch all admin secret comparisons to timingSafeStringEq
Foundations (lib/server/*):
- api-handler.ts: withAuth, withTenantProject, withWorkspace, withAdminSecret, withRateLimit
- logger.ts: structured request-scoped logging with turnId
- audit-log.ts: writeAuditLog helper + audit_log table
- rate-limit.ts: Postgres sliding window rate limiter
- coolify-webhook.ts: verifyCoolifySignature
- timing-safe.ts: timingSafeStringEq
Chat hardening (chat/route.ts):
- MAX_TOOL_ROUNDS 15 → 8 (C-01)
- Loop detection: hard-break at 3 identical fingerprints (was 5) (C-02)
- Add 6-consecutive-tool-call hard-break (C-02)
- Mode: respond first, act second prompt block (C-03)
- SSE heartbeat every 25s via setInterval (C-04)
- Per-tool 45s timeout via Promise.race (C-05)
- turnId per-turn UUID for log correlation (C-06)
- Recovery fires when roundsSinceText >= 4 (C-07)
- SSE plan event on plan_task_add/edit (B-05)
Beta features:
- invites table + GET/POST /api/invites (P4.8)
- invites/[token] validate + redeem (P4.8)
- fs_project_dev_servers table + lib/server/dev-server-state.ts (P6.B1)
- fs_project_secrets table + CRUD routes (P6.D2)
- lib/integrations/brief-extract.ts (P3.7)
Documentation:
- app/api/ROUTES.md: full route map with auth + tenant
|
2026-05-17 19:17:22 -07:00 |
|
|
|
cd062bd30d
|
fix(deploy): use explicit ssh:// scheme and port 222 for gitea clone urls in coolify
|
2026-05-16 13:54:17 -07:00 |
|
|
|
67855b94c2
|
fix(ai): upgrade deploy mechanism to use explicit ssh deploy keys rather than http basic auth to solve gitea cloning bugs
|
2026-05-16 13:30:14 -07:00 |
|
|
|
cdddaced30
|
fix(ai): implement two-stage loop detection to warn before hard-stopping (Fix 11)
|
2026-05-16 12:59:16 -07:00 |
|
|
|
c06ab8650b
|
fix(ai): relax fs_edit line number enforcement to allow safe oldString replacements
|
2026-05-16 12:54:15 -07:00 |
|
|
|
f053567741
|
fix(ai): sync auto-commit with streamed result to surface commit SHA to UI (Fix 10)
|
2026-05-16 12:26:54 -07:00 |
|
|
|
3f4a0de2e6
|
fix(ai): add hard-rule prompt clause forbidding unverified mutation claims (Fix 8)
|
2026-05-16 12:25:26 -07:00 |
|
