Full deployment history for this project.
š”ļø Sentinel: [HIGH] Fix missing authentication in services API endpoint - Added explicit `getSessionFromCookies` check to `app/api/v1/services/route.ts` handlers (`GET` and `POST`) - Unauthenticated requests now securely fail with a 401 response instead of exposing internal logic Co-authored-by: mbarbine <3211492+mbarbine@users.noreply.github.com>
š”ļø Sentinel: [CRITICAL] Add authentication to tools API endpoint Co-authored-by: mbarbine <3211492+mbarbine@users.noreply.github.com>
š”ļø Sentinel: [HIGH] Add authentication to `/api/v1/runs` endpoint Co-authored-by: mbarbine <3211492+mbarbine@users.noreply.github.com>
ā” Bolt: Optimize data fetching in ToolsPage using useSWR Replaced the manual `useEffect` and `useState` fetching logic with `useSWR` in `app/(workspace)/dashboard/tools/page.tsx`. This introduces built-in request caching, deduplication, and automatic revalidation on focus, reducing unnecessary API calls and improving the perceived loading performance of the tool registry. Co-authored-by: mbarbine <3211492+mbarbine@users.noreply.github.com>
feat: Add aria-pressed to run status filter buttons Added `aria-pressed={filter === status}` to the status filter buttons on the Runs page. This improves accessibility by informing screen readers which filter is currently active. Co-authored-by: mbarbine <3211492+mbarbine@users.noreply.github.com>
š”ļø Sentinel: [HIGH] Fix missing authentication on publish endpoints Adds explicit `getSessionFromCookies` checks to the GET and POST handlers in `app/api/v1/publish/route.ts` to prevent unauthenticated access. Co-authored-by: mbarbine <3211492+mbarbine@users.noreply.github.com>
Merge pull request #20 from mbarbine/sentinel/fix-flows-auth-11732629473453464123 š”ļø Sentinel: [CRITICAL] Fix missing authentication on flows API
Merge pull request #21 from mbarbine/jules-7098510669602137770-9f7e44ba ā” Bolt: Add React.memo to prevent unnecessary node re-renders in FlowCanvas
ā” Bolt: Add React.memo to prevent unnecessary node re-renders in FlowCanvas Co-authored-by: mbarbine <3211492+mbarbine@users.noreply.github.com>
š”ļø Sentinel: [CRITICAL] Fix missing authentication on flows API šØ Severity: CRITICAL š” Vulnerability: The `app/api/v1/flows/route.ts` GET and POST handlers lacked authentication, allowing any user to read and create flows without an active session. šÆ Impact: Unauthenticated users could view all flows in the system or create unauthorized flows. š§ Fix: Added `getSessionFromCookies` check at the beginning of the GET and POST handlers to return a 401 Unauthorized response if a valid session is missing. ā Verification: Ran unit tests and typecheck; manually verified code logic. Co-authored-by: mbarbine <3211492+mbarbine@users.noreply.github.com>
Merge pull request #17 from mbarbine/sentinel-fix-approvals-auth-7177592187031436493 š”ļø Sentinel: [HIGH] Fix authorization bypass in API
Merge pull request #19 from mbarbine/fix-api-key-sql-injection-vulnerability-9487682843613455068
Merge pull request #18 from mbarbine/performance-hash-optimization-10993567685525742376
Merge pull request #14 from mbarbine/sentinel-fix-flows-auth-12272946685137290318 š”ļø Sentinel: [CRITICAL] Fix missing authentication on flows API endpoint
Merge branch 'main' into sentinel-fix-flows-auth-12272946685137290318
Merge pull request #13 from mbarbine/fix-discovery-sitemap-seo-12677549578926385005 Fix and enhance discovery files, dynamic sitemap, SEO, LLMs, and .well-known endpoints