New features
Official urBackend CLI — The@urbackend/cli package is now available for use, providing a command-line interface for interacting with urBackend.
PAT Visual Management — A visual interface for managing Personal Access Tokens (PAT) has been added to the dashboard.
Vercel Web Analytics — Vercel Web Analytics has been installed and configured for the platform.Improvements
Dashboard Redesign — The dashboard has undergone a UI redesign, improving the overall user experience. Disabled Public Signup Toggle — The public signup toggle has been disabled, and the React SDK prop has been updated accordingly. PAT Backend Enablement — The backend for Personal Access Tokens (PAT) has been enabled. Code Cleanup — Dead code has been removed from the dashboard as part of the redesign process.New features
Batch Email Sending Utility — You can now send batch emails using the new utility added to the tools. Onboarding Updates — You can now access new features in the updated onboarding process. Landing Page Revamp — You can now explore the revamped landing page with interactive components and a unified navigation. FAQ Item in Desktop Navbar — You can now access the FAQ item in the desktop navbar. Public API Controller Migration — You can now useAppError in the migrated public API controllers.Improvements
Web Dashboard Updates — You can now benefit from new hooks and layout improvements in the web dashboard. Optimized Database Connections — You can now experience faster performance with optimized database connections concurrency forgetGlobalStats.Bug fixes
- Normalized email storage and lookup handling (#327)
- Invalidated API key cache on deletion (#328)
- Fixed resource exhaustion in consumer export worker (#254)
New features
Pagination Support for Auth User List — Added pagination support to the Auth user list. Offset Pagination for Public Mail Logs API — Implemented offset pagination for the public mail logs API.Improvements
Standardized API Responses — Standardized API responses in Public-Api middleware, Dashboard API-Controller, and Dashboard API-Middleware. Improved Auth UI Customization — Improved auth UI customization options in the React SDK. Team Collaboration and Quota Isolation — Enhanced team collaboration and quota isolation.Bug fixes
- Caught unhandled promise rejections in logging middleware (#291)
- Improved global error handling and added React ErrorBoundary (#288)
- Aligned auth schema validation with dashboard API (#289)
- Fixed auth UI customization options in React SDK (#301)
Improvements
Standardized API Response — Standardized the API Response inPackage-Middleware to handle errors consistently (#270)
Resilience Tests — Added 503 resilience tests for Redis rejection paths to improve public API reliability (#267)
Quota Validation — Enforced quota validation and usage accounting for bulk inserts to prevent abuse (#250)Bug fixes
- Prevent Auth page crash when loading users (#263)
- Block verification field updates in profile endpoint (#271)
- Add
2000character max-length guard onqueryBuilderprompt to prevent excessive input (#274) - Update error parsing to handle standardized
AppErrorresponses (#273) - Sanitize
file.originalnamebefore use in storage path to prevent security vulnerabilities (#275) - Expand
isSafeUrito blockRFC-1918and cloud metadata IP ranges to improve security (#256) - Show
stringschema fields in RLS owner dropdown to improve user experience (#265) - Apply
checkUsageLimitstoOTPand password reset routes to prevent abuse (#264)
🚀 New Features
- Export databases asynchronously through a queue-based pipeline for improved performance.
- Recover soft-deleted records for better data management.
- Return to the home page from the signup page via the new Home button.
- Jump to the top of long pages via the new Back to Top button.
🛠 Improvements
- Standardized formatting across editors via
.editorconfig. - Faster sync webhook dispatch, now offloaded to
bullmq. - Cleaner onboarding experience with an updated
.env.exampleand added source comments. - Improved code quality via
huskyandlint-stagedpre-commit hooks.
🐛 Bug Fixes
- Fix dashboard get data query engine (
#230) - Fix query engine limit fields mock (
#231) - Pin root dependency versions (
#236)
🔒 Security
- Enforce
SameSite=Laxon all cookies to prevent CSRF attacks (#240) - Add timeout handling for OAuth fetch requests (
#220) - Patch storage quota evasion loophole in update pipeline (
#224) - Add missing max-length constraints to auth schemas (
#221)
