- Added Feature Policy API: a declarative system to enable/disable/modify default behavior in the SaaS kit
- Team invitation policies with pre-checks using the Feature Policy API: Invite Members dialog now shows loading, errors, and clear reasons when invitations are blocked
- Version bump to 2.16.0 and widespread dependency updates (Supabase, React types, react-i18next, etc.).
- Added comprehensive docs for the new policy system and orchestrators.
- Subscription cancellations now trigger immediate invoicing explicitly
- Removed the `zodParseFactory` utility and replaced it with direct async schema validation using `safeParseAsync` in both `enhanceAction` and `enhanceRouteHandler`.
- Improved error handling to return meaningful messages for invalid request bodies.
- Streamlined the codebase by deleting the now-unnecessary `utils/index.ts` file.
1. Added Claude Code sub-agents
2. Added PRD tool to MCP Server
3. Added MCP Server UI to Dev Tools
4. Improved MCP Server Database Tool
5. Updated dependencies
* Enhance E2E Tests and Configuration
- Updated `.gitignore` to exclude `.auth/` directory for cleaner test environment.
- Added `test:fast` script in `package.json` for faster Playwright test execution.
- Configured Playwright to include a setup project for initializing tests.
- Introduced `AUTH_STATES` utility for managing authentication states in tests.
- Created `auth.setup.ts` for user authentication tests, ensuring proper login flows.
- Refactored various test files to utilize the new authentication state management, improving test reliability and maintainability.
- Adjusted team and user billing tests to streamline setup and enhance clarity.
- Refactored some dialogs
- Removed `react-is` and `require-in-the-middle` overrides from `package.json` and `pnpm-lock.yaml`.
- Updated various dependencies across multiple packages, including `@types/node` to `^24.5.2`, `react-hook-form` to `^7.63.0`, and `@ai-sdk/openai` to `^2.0.32`.
- Deleted the `loading.tsx` component from the admin accounts directory, streamlining the codebase.
- Adjusted `playwright.config.ts` to use a configurable number of workers for CI environments, enhancing test performance.
- Improved error handling in user ban and reactivation dialogs to provide clearer feedback to the admin user.
- Use ESM for building the MCP Server
- Added own Postgres dependency to MCP Server for querying tables and other entities in MCP
- Vastly improved AI Agent rules
- Added MCP Prompts for reviewing code and planning features
- Minor refactoring
- Refactored `CreateMigration` method in `migrations.ts` to use `pnpm --filter web` for better command execution context.
- Added new Supabase CLI command descriptions in `scripts.ts` to facilitate access via the web project, enhancing usability and documentation.
- Updated the `useNotificationsStream` hook to destructure parameters directly in the function signature for clarity.
- Added a conditional check to prevent subscription when the `enabled` flag is false, enhancing performance and preventing unnecessary operations.
- Adjusted dependencies in the `useEffect` hook to ensure proper reactivity based on the new parameter structure.
- Bumped package version in package.json from 2.14.0 to 2.14.1.
- Refactored the `useNotificationsStream` hook to remove unnecessary `useQuery` and streamline the subscription logic for real-time notifications, enhancing performance and clarity.
* Update AGENTS.md and CLAUDE.md for improved clarity and structure
* Added MCP Server
* Added missing triggers to tables that should have used them
* Updated all dependencies
* Fixed rare bug in React present in the Admin layout which prevents navigating to pages (sometimes...)
* fix: enhance DataTable pagination examples and improve display logic
- Added a note in the DataTableStory component to clarify that examples show only the first page of data for demonstration purposes.
- Adjusted pagination examples to reflect smaller datasets, changing the displayed data slices for better clarity and testing.
- Updated the Pagination component to calculate and display the current record range more accurately based on the current page index and size.
* chore(dependencies): update package versions for improved compatibility
- Upgraded `@supabase/supabase-js` from `2.55.0` to `2.57.0` for enhanced functionality and performance.
- Bumped `@tanstack/react-query` from `5.85.5` to `5.85.9` to incorporate the latest improvements.
- Updated `ai` from `5.0.28` to `5.0.30` for better performance.
- Incremented `nodemailer` from `7.0.5` to `7.0.6` for stability.
- Updated `typescript-eslint` from `8.41.0` to `8.42.0` for improved type definitions and linting capabilities.
- Adjusted various package dependencies across multiple components to ensure compatibility and stability.
* chore(dependencies): update package versions for improved compatibility
- Upgraded `@ai-sdk/openai` from `2.0.23` to `2.0.24` for enhanced functionality.
- Bumped `@tanstack/react-query` from `5.85.9` to `5.86.0` to incorporate the latest improvements.
- Updated `ai` from `5.0.30` to `5.0.33` for better performance.
- Incremented `@types/node` from `24.3.0` to `24.3.1` for type safety enhancements.
- Updated `dotenv` from `17.2.1` to `17.2.2` for stability.
- Adjusted `tailwindcss` and related packages to `4.1.13` for improved styling capabilities.
- Updated `react-i18next` from `15.7.3` to `15.7.3` to include the latest localization fixes.
- Incremented `@sentry/nextjs` from `10.8.0` to `10.10.0` for enhanced monitoring features.
- Updated various package dependencies across multiple components to ensure compatibility and stability.
* fix(config): conditionally disable `devIndicators` in CI environment
* feat(settings): encapsulate danger zone actions in a styled card component
- Introduced a new `DangerZoneCard` component to enhance the visual presentation of danger zone actions in the team account settings.
- Updated `TeamAccountDangerZone` to wrap deletion and leave actions within the `DangerZoneCard` for improved user experience.
- Removed redundant card structure from `TeamAccountSettingsContainer` to streamline the component hierarchy.
* fix(e2e): improve admin account tests for response handling and visibility checks
- Enhanced the admin test suite by adding a check for the POST request method when waiting for the response from the `/admin/accounts` endpoint.
- Reduced wait times in the `filterAccounts` function for improved test performance.
- Updated the `selectAccount` function to ensure the account link is visible before clicking, enhancing reliability in the test flow.
* chore(dependencies): update package versions for improved compatibility
- Upgraded `@supabase/supabase-js` from `2.57.0` to `2.57.2` for enhanced functionality and performance.
- Bumped `@tanstack/react-query` from `5.86.0` to `5.87.1` to incorporate the latest improvements.
- Updated `i18next` from `25.5.1` to `25.5.2` for better localization support.
- Incremented `eslint` from `9.34.0` to `9.35.0` for improved linting capabilities.
- Adjusted various package dependencies across multiple components to ensure compatibility and stability.
* feat(admin): enhance user ban and reactivation actions with success handling
- Updated `AdminBanUserDialog` and `AdminReactivateUserDialog` components to handle success states based on the results of the respective actions.
- Modified `banUserAction` and `reactivateUserAction` to return success status and log errors if the actions fail.
- Introduced `revalidatePage` function to refresh the user account page after banning or reactivating a user.
- Improved error handling in the dialogs to provide better feedback to the admin user.
* feat(admin): refactor user ban and reactivation dialogs for improved structure and error handling
- Introduced `BanUserForm` and `ReactivateUserForm` components to encapsulate form logic within the respective dialogs, enhancing readability and maintainability.
- Updated the `AdminBanUserDialog` and `AdminReactivateUserDialog` components to utilize the new form components, streamlining the user interface.
- Enhanced error handling to provide clearer feedback to the admin user during ban and reactivation actions.
- Removed unnecessary revalidation calls in the server actions to optimize performance and maintain clarity in the action flow.
- Added `@types/react-dom` dependency for improved type definitions.
* refactor(admin): streamline user dialogs and server actions for improved clarity
- Removed unnecessary `useRouter` imports from `AdminBanUserDialog` and `AdminReactivateUserDialog` components to simplify the code.
- Updated `revalidateAdmin` function calls to use `revalidatePath` with specific paths, enhancing clarity in the server actions.
- Ensured that the user dialogs maintain a clean structure while focusing on form logic and error handling.
- Deleted `@kit/baselime` package and its related files.
- Removed Baselime service registration from monitoring in API services.
- Cleared `registerInstrumentation`, hooks, provider components, and server utilities associated with Baselime.
- Updated package dependencies to exclude `@kit/baselime`.
- Upgraded `@types/react` to `19.1.12` and `@types/react-dom` to `19.1.9` for improved type definitions.
- Bumped `react-i18next` to `^15.7.3` for localization fixes.
- Updated `@manypkg/cli` to `^0.25.1` for dependency management improvements.
- Incremented `@sentry/nextjs` to `^10.8.0` and `stripe` to `^18.5.0` to incorporate recent enhancements.
- Adjusted `ai` to `5.0.28` and `@ai-sdk/openai` to `^2.0.23` for AI-related updates.
- Introduced sorting improvements and code examples in `DataTable` for server-side and client-side capabilities.
* feat(docs): add interactive examples and API references for Button, Card, and LoadingFallback components
- Updated dependencies
- Set `retries` to a fixed value of 3 for consistent test retries across environments.
- Increased `timeout` from 60 seconds to 120 seconds to allow more time for tests to complete.
- Reduced `expect` timeout from 10 seconds to 5 seconds for quicker feedback on assertions.
* chore(dependencies): update package versions for improved compatibility
- Bumped `@ai-sdk/openai` from `2.0.15` to `2.0.16` for enhanced functionality.
- Updated `@tanstack/react-query` from `5.85.3` to `5.85.5` to incorporate the latest improvements.
- Incremented `ai` from `5.0.15` to `5.0.16` for better performance.
- Updated `lucide-react` from `0.539.0` to `0.540.0` for improved compatibility.
- Incremented `next` from `15.4.6` to `15.4.7` to leverage new features and fixes.
- Updated `@types/node` from `24.1.0` to `24.3.0` for type safety enhancements.
- Updated `@types/nodemailer` from `6.4.17` to `7.0.0` for better type definitions.
- Incremented `supabase` from `2.34.0` to `2.34.3` for improved performance and compatibility.
* chore(dependencies): downgrade `supabase` version to 2.34.0 for compatibility
- Changed `supabase` version in `package.json` and `pnpm-lock.yaml` from `2.34.3` to `2.34.0` to ensure compatibility and stability across the codebase.
- Improve storage files handling
- Incremented version in package.json from 2.12.2 to 2.12.3.
- Updated ImageUploader component to improve label and image styles, adding cursor pointer and transition effects for better user interaction.
- Updated `package.json` to include a new export for the server entry point at `./src/server.ts`, enhancing module accessibility for server-related functionalities.
* bug(storage): use upsert when adding images
chore(dependencies): update package versions for improved compatibility
- Bumped `@ai-sdk/openai` from `2.0.11` to `2.0.15` for enhanced functionality.
- Updated `@tanstack/react-query` from `5.85.0` to `5.85.3` to incorporate the latest improvements.
- Incremented `ai` from `5.0.11` to `5.0.15` for better performance.
- Updated `@tailwindcss/postcss` from `4.1.11` to `4.1.12` for improved compatibility.
- Incremented `@types/react` from `19.1.9` to `19.1.10` for type safety enhancements.
- Adjusted `pino-pretty` from `13.1.1` to `13.0.0` for consistency across the codebase.
- Updated `supabase` from `2.34.3` to `2.34.0` to ensure the latest improvements and bug fixes are included.
- Updated `tailwindcss` from `4.1.11` to `4.1.12` for better integration.
* chore(dependencies): update package versions for improved compatibility
- Bumped `@ai-sdk/openai` from `2.0.15` to `2.0.15` for enhanced functionality.
- Updated `@tanstack/react-query` from `5.85.0` to `5.85.3` to incorporate the latest improvements.
- Incremented `ai` from `5.0.11` to `5.0.15` for better performance.
- Updated `@tailwindcss/postcss` from `4.1.11` to `4.1.12` for improved compatibility.
- Incremented `@types/react` from `19.1.9` to `19.1.10` for type safety enhancements.
- Updated `supabase` from `2.34.3` to `2.34.0` to ensure the latest improvements and bug fixes are included.
- Updated `tailwindcss` from `4.1.11` to `4.1.12` for better integration.
- Updated `@types/node` from `24.2.1` to `24.3.0` for type safety enhancements.
- Incremented `turbo` and `@turbo/gen` from `2.5.5` to `2.5.6` for improved performance and compatibility.
- Bumped `@ai-sdk/openai` from `2.0.11` to `2.0.13` for enhanced functionality.
- Updated `zod` from `3.25.74` to `3.25.76` to incorporate the latest improvements.
- Incremented `@types/node` from `24.1.0` to `24.2.1` for type safety enhancements.
- Updated `pino-pretty` from `13.0.0` to `13.1.1` for better performance.
- Adjusted `@makerkit/data-loader-supabase-core` and `@makerkit/data-loader-supabase-nextjs` to reflect changes in their dependencies for improved compatibility.
- Added `onlyBuiltDependencies` in `pnpm-workspace.yaml` for better dependency management.
* chore(dependencies): update package versions for improved compatibility
- Bumped `@ai-sdk/openai` from `1.3.23` to `2.0.11` for enhanced functionality.
- Updated `@tanstack/react-query` from `5.84.1` to `5.85.0` to incorporate the latest improvements.
- Incremented `ai` from `4.3.19` to `5.0.11` for better performance.
- Updated `lucide-react` from `0.536.0` to `0.539.0` for improved compatibility.
- Incremented `next` from `15.4.5` to `15.4.6` to leverage new features and fixes.
- Updated `@marsidev/react-turnstile` from `1.2.0` to `1.3.0` for enhanced functionality.
- Updated `@nosecone/next` from `1.0.0-beta.9` to `1.0.0-beta.10` for better integration.
- Updated `@supabase/supabase-js` from `2.53.0` to `2.55.0` for improved performance.
- Incremented `@markdoc/markdoc` from `0.5.3` to `0.5.4` for better integration.
- Updated `@next/bundle-analyzer` from `15.4.5` to `15.4.6` for enhanced compatibility.
- Updated `@types/node` from `24.2.0` to `24.2.1` for type safety improvements.
- Updated `@types/react` from `19.1.9` to `19.1.9` for consistency across packages.
* fix(logger): update import statement for pino to default import
- Changed the import of `pino` from named import to default import for consistency with the library's usage and to avoid potential issues with module resolution.
- Updated `pino-pretty` from `13.1.1` to `13.0.0` in `package.json` files for both `dev-tool` and `web` applications to ensure compatibility across the codebase.
- Adjusted `pnpm-lock.yaml` to reflect the version change and removed references to the deprecated `secure-json-parse` and `strip-json-comments` versions.
* chore(dependencies): update package versions for improved compatibility
- Bumped `typescript` from `5.8.3` to `5.9.2` across multiple packages for enhanced type safety and features.
- Updated `@tanstack/react-query` from `5.83.0` to `5.84.1` to incorporate the latest improvements.
- Incremented `lucide-react` from `0.534.0` to `0.536.0` for better performance and compatibility.
- Updated `react-hook-form` from `7.61.1` to `7.62.0` to leverage new features and fixes.
- Incremented `@stripe/react-stripe-js` from `3.8.1` to `3.9.0`, `@stripe/stripe-js` from `7.7.0` to `7.8.0`, and `stripe` from `18.3.0` to `18.4.0` for enhanced functionality.
- Updated `@markdoc/markdoc` from `0.5.2` to `0.5.3` for better integration.
- Incremented `@sentry/nextjs` from `9.43.0` to `10.1.0` to utilize the latest features and improvements.
* chore(dependencies): update eslint-related packages for improved compatibility
- Updated `@typescript-eslint/parser` from `8.38.0` to `8.39.0` to leverage the latest features and fixes.
- Adjusted dependencies in `eslint-import-resolver-typescript` and `eslint-plugin-import` to reflect the updated parser version, ensuring better integration and compatibility across the codebase.
- Bumped `@manypkg/cli` from `0.24.0` to `0.25.0` for enhanced functionality.
- Updated `cross-env` from `7.0.3` to `10.0.0` to leverage new features and fixes.
- Incremented `next` from `15.4.3` to `15.4.5` for better performance and compatibility.
- Updated `react` and `react-dom` from `19.1.0` to `19.1.1` to ensure alignment with the latest improvements.
- Incremented `@types/node` from `24.0.15` to `24.1.0` for type safety enhancements.
- Updated various packages across the codebase to maintain consistency and compatibility.
- Bumped `next` version from `15.4.2` to `15.4.3` across multiple packages for improved compatibility.
- Updated `react-i18next` from `15.6.0` to `15.6.1` in several packages to incorporate the latest features and fixes.
- Incremented `@stripe/react-stripe-js` from `3.7.0` to `3.8.0` and `@stripe/stripe-js` from `7.5.0` to `7.6.1` for enhanced functionality.
- Updated `@keystatic/core` from `0.5.47` to `0.5.48` for better integration.
- Incremented `supabase` from `2.30.4` to `2.31.8` to ensure the latest improvements and bug fixes are included.
- Incremented version in package.json from 2.12.1 to 2.12.2.
- Updated the UpdatePasswordPage component to utilize the new requireUser function for improved user session handling.
- Refactored requireUser function to include a next parameter for redirecting after authentication failures, enhancing user experience.
- Introduced a helper function getRedirectTo for cleaner redirect logic.
- Bumped versions of several packages across the codebase, including:
- Updated `@supabase/supabase-js` from `2.51.0` to `2.52.0`
- Incremented `next` from `15.4.1` to `15.4.2`
- Updated `@types/node` from `^24.0.13` to `^24.0.15`
- Upgraded `ai` from `4.3.18` to `4.3.19`
- Updated `@next/bundle-analyzer` from `15.4.1` to `15.4.2`
- Incremented `@next/eslint-plugin-next` from `15.4.1` to `15.4.2`
- Bumped `eslint-config-next` from `15.3.5` to `15.4.2`
- Updated `@kit/prettier-config` and other related packages for consistency and compatibility improvements.
* chore(version): bump version to 2.12.1 and update auth middleware to use getClaims instead of getUser
- Incremented version in package.json from 2.12.0 to 2.12.1.
- Refactored middleware to replace supabase.auth.getUser() with supabase.auth.getClaims() for improved claims handling.
- Updated user checks in middleware to validate claims instead of user object.
* refactor(middleware): update user authentication to utilize getClaims for improved claims validation
- Replaced calls to supabase.auth.getUser() with supabase.auth.getClaims() in middleware for better claims handling.
- Adjusted user validation checks to ensure claims are used instead of the user object, enhancing security and consistency in authentication flow.
* refactor(auth): update VerifyPage to use getClaims for user validation
- Replaced the use of supabase.auth.getUser() with supabase.auth.getClaims() in the VerifyPage component for improved claims handling.
- Adjusted user validation logic to check for claims instead of the user object, enhancing security and consistency in the authentication flow.
* refactor(auth): replace Supabase `User` type with new `JWTUserData` type across the codebase
- Replaced usage of Supabase's `User` type with the newly defined `JWTUserData` type for better type mapping and alignment with JWT claims.
- Refactored session-related components and hooks (`useUser`, `requireUser`) to use the updated user structure.
- Updated Supabase client keys to use `publicKey` instead of `anonKey`.
- Adjusted multi-factor authentication logic and components to use `aal` and additional properties.
- Applied consistent naming for Supabase secret key functions.
- Incremented version to 2.12.0.
- Introduced a new `deprecated` property in the `EnvVariableModel` type to handle deprecated environment variables.
- Updated the `EnvList` component to display a warning badge for deprecated variables, including reason and alternative suggestions.
- Enhanced filtering logic to allow users to toggle the visibility of deprecated variables.
- Added new deprecated variables for Supabase keys with appropriate reasons and alternatives.
- Added support for filtering deprecated environment variables in the `FilterSwitcher` component.
- Updated the `Summary` component to display a badge for the count of deprecated variables.
- Introduced a button to filter and display only deprecated variables.
- Adjusted filtering logic to include deprecated variables in the overall state management.
add BILLING_MODE configuration to environment variables
- Introduced a new environment variable `BILLING_MODE` to configure billing options for the application.
- The variable supports two values: `subscription` and `one-time`.
- Marked as deprecated with a reason indicating that this configuration is no longer required, as billing mode is now automatically determined.
- Added validation logic for the new variable to ensure correct value parsing.
* Update billing page data handling and version bump to 2.12.0
- Refactored billing page components to streamline data loading for subscriptions and orders.
- Introduced `getProductPlan` function to encapsulate product plan resolution logic.
- Updated `package.json` version from 2.11.0 to 2.12.0.
- Upgraded `@supabase/supabase-js` to `2.51.0`
- Bumped `@tanstack/react-query` to `5.83.0`
- Incremented `next` and related packages to `15.4.1`
- Miscellaneous upgrades including `@react-email/components`, `eslint`, and `cssnano`.
- Bumped dependencies: `lucide-react`, `react-hook-form`, `@supabase/supabase-js`, `@tanstack/react-query`, `@sentry/nextjs`, and more.
- Added `react-dropzone` to `@kit/ui` for file upload support.
- Adjusted `reset-password.html` to streamline style usage and HTML structure.
- Added new translation keys for file upload functionality.
- Cleaned up import order in `existing-account-hint.tsx`.
- Bumped `lucide-react` to `^0.516.0`
- Upgraded `react-hook-form` to `^7.58.0`
- Updated `zod` to `^3.25.67`
- Incremented `@sentry/nextjs` to `^9.29.0`
- Miscellaneous upgrades for `eslint`, `@tailwindcss/postcss`, and `supabase` dependencies.
- Export `MultiFactorAuthError` from `require-user` for reuse.
- Implement MFA handling during team invitations' sign-in flow.
- Add E2E test for team invitation flow with MFA.
- Update components to improve i18n translation handling.
- Added an onEscapeKeyDown handler to the EmbeddedCheckoutPopup component to prevent default actions when the escape key is pressed, improving user experience and accessibility.
