Changelog

What’s shipped.

Reverse chronological. Features, fixes, and security updates land here on the same day they go to production.

  1. featuresecuritychore

    Launch-readiness polish

    • New /pricing and /changelog pages with shared tier data
    • OpenGraph + Twitter card images (1200x630) for real social previews
    • CSP (Report-Only), HSTS, X-Frame-Options, Permissions-Policy headers across every route
    • Self-hosted Inter + JetBrains Mono via next/font — no FOUC
    • Branded 404 + global error boundary with support-friendly error IDs
    • JSON-LD SoftwareApplication + Organization schema for rich results
    • Accessibility: skip-link, focus-visible rings, prefers-contrast tokens
  2. fixchore

    Rebrand + platform stabilization

    • penntest → pennscan across every asset, env, domain, and workflow
    • db-query edge function reads DB_PROXY_SECRET from public.pn_edge_config, surviving Management-API redeploys
    • Pooler URL auto-derived from direct URL — no manual ops step
    • Vercel production domain serves 200 (was 401 from stale SITE_PASSWORD)
  3. feature

    Exploit workbench + kill-chain graph

    • Interactive kill-chain viewer (Cytoscape) under /projects/[slug]/chain
    • Exploit workbench card on each finding — runs non-destructive PoC inside sandbox
    • Session recorder: replay the exact request sequence that triggered a finding
    • SIEM export: signed JSONL stream for Splunk / Elastic / Chronicle