Full deployment history for this project.
š”ļø Sentinel: [MEDIUM] Add Zod input validation to save-form API - Implemented a Zod schema to validate incoming `formData` payloads on the `/api/save-form/route.ts` endpoint. - Protects the application from unexpected input types and lengths, preventing malformed data from reaching the Supabase database. - Fails securely by logging validation errors internally and returning a generic 400 error to the client. - Added a critical learning entry to `.jules/sentinel.md` regarding input validation. - Fixed a duplicated variable definition in `/api/complete-onboarding/route.ts` to allow correct compilation. Co-authored-by: mbarbine <3211492+mbarbine@users.noreply.github.com>
š”ļø Sentinel: [Security Enhancement] Add Defense in Depth HTTP Security Headers - Added standard HTTP security headers to next.config.mjs to mitigate clickjacking, MIME-sniffing, and MITM attacks - Addressed duplicate variable declaration causing build error in API onboarding route - Logged new journal entry about Security Headers learning Co-authored-by: mbarbine <3211492+mbarbine@users.noreply.github.com>
šØ Palette: Add aria-label to EnvSetupBanner dismiss button š” What: Added `aria-label="Dismiss alert"` to the icon-only close button and `aria-hidden="true"` to the inner X icon. Also fixed a duplicate declaration in `app/api/complete-onboarding/route.ts` that broke the build. šÆ Why: Screen reader users previously had no context for what the "X" button did. This improves accessibility of the alert banner. āæ Accessibility: Improved screen reader support for dismiss action. Co-authored-by: mbarbine <3211492+mbarbine@users.noreply.github.com>
š”ļø Sentinel: [CRITICAL] Fix hardcoded LOB API key Co-authored-by: mbarbine <3211492+mbarbine@users.noreply.github.com>
ā” Bolt: Optimize dashboard data fetching and processing - Restrict `select("*")` in Supabase query to only the required columns, reducing database workload and network payload. - Refactor the multiple `.filter().length` calls (O(4n)) into a single pass `.reduce()` loop (O(n)), improving CPU efficiency for rendering the dashboard stats. Co-authored-by: mbarbine <3211492+mbarbine@users.noreply.github.com>
Merge pull request #3 from mbarbine/fec-form-filer-enhancements-1699467211356277922 Add health check, FAQ page with breadcrumbs, and MCP registration
Add health check, FAQ page with breadcrumbs, and MCP registration Co-authored-by: mbarbine <3211492+mbarbine@users.noreply.github.com>
Initial commit from v0 #VERCEL_SKIP
feat: sync new changes from main and initialize project Update multiple files for new feature implementations and project setup. Co-authored-by: Michael Barbine <3211492+mbarbine@users.noreply.github.com>
Merge pull request #1 from mbarbine/vercel/react-server-components-cve-vu-dzvavq Fix React Server Components CVE vulnerabilities
Fix React Server Components CVE vulnerabilities Updated dependencies to fix Next.js and React CVE vulnerabilities. The fix-react2shell-next tool automatically updated the following packages to their secure versions: - next - react-server-dom-webpack - react-server-dom-parcel - react-server-dom-turbopack All package.json files have been scanned and vulnerable versions have been patched to the correct fixed versions based on the official React advisory. Co-authored-by: Vercel <vercel[bot]@users.noreply.github.com>
feat: sync main branch updates across project Update project files and assets from main branch. #VERCEL_SKIP Co-authored-by: Michael Barbine <3211492+mbarbine@users.noreply.github.com>
feat: sync main branch updates across project Update project files and assets from main branch. #VERCEL_SKIP Co-authored-by: Michael Barbine <3211492+mbarbine@users.noreply.github.com>
feat: sync main branch updates across project Update project files and assets from main branch. Co-authored-by: Michael Barbine <3211492+mbarbine@users.noreply.github.com>