v0.3.4

Security

• Resolved RustSec advisories: dropped unused rand, bumped lru to 0.16

Full Changelog: v0.3.3...v0.3.4

v0.3.3

Changed

• Docker images rebased on Debian trixie

Added

• CI scans dependencies for RustSec advisories (non-blocking)

Full Changelog: v0.3.2...v0.3.3

v0.3.2

Fixed

• PostgreSQL: rate-limited projects crashed with a column decode error

Full Changelog: v0.3.1...v0.3.2

v0.3.1

Added

• Docker images published to GHCR on release (SQLite and PostgreSQL variants)

Full Changelog: v0.3.0...v0.3.1

v0.3.0

Changed

• Web UI redesigned around the "Stackpit Precision Tooling" design system:
  240px fixed sidebar, dark cockpit canvas with a matching light variant,
  Inter + JetBrains Mono, dense tables, semantic status pills, tonal layers
  without shadows
• Per-project navigation moved from a horizontal tab strip into the sidebar
• CSS is now pre-built from Tailwind v4 via the standalone CLI (make css);
  runtime stays single-binary — no Node or node_modules at runtime
• Fonts are vendored as woff2 under assets/fonts/ and served from _assets/
  (no external CDN)

Full Changelog: v0.2.1...v0.3.0

v0.2.1

Added

• Email alerts via Lettermint and SendGrid in addition to Postmark
• Global [email] config with optional lock to fix provider and sender across integrations

Full Changelog: v0.2.0...v0.2.1

v0.2.0

Added

• OAuth 2.0 / OIDC single sign-on (Authorization Code + PKCE) with just-in-time user provisioning
• API bearer auth via JWT (RS256/JWKS) and RFC 7662 token introspection
• MCP endpoint (/mcp, bearer-only)
• external_url / external_ingest_url config for deployments behind a proxy
• Operator guide (docs/operator-guide.md)

Changed

• Admin token is now a break-glass fallback that runs alongside OAuth/OIDC
• OAuth requires a 32-byte master key; IdP tokens stored encrypted at rest

Full Changelog: v0.1.8...v0.2.0

v0.1.8

Full Changelog: v0.1.7...v0.1.8

v0.1.7

Full Changelog: v0.1.6...v0.1.7

v0.1.6

Full Changelog: v0.1.5...v0.1.6