Back to Home

Changelog

Stay up to date with the latest updates, features, and security improvements to Vaultbrix.

Security

SOC 2 Security Retest - All Clear

External security retest by OpenClaw confirms 87.5% remediation rate. All HIGH and MEDIUM findings resolved. Ready for SOC 2 Type II audit.

  • Kong fingerprinting headers removed from API responses
  • SPF DNS record added for email authentication
  • HSTS preload accepted by Chrome/Firefox/Safari
  • TLS 1.3 verified across all domains
  • Security headers consistent across all subdomains
Security

SOC 2 Security Audit

Comprehensive security audit by OpenClaw. Score improved from 72/100 to 94/100 with same-day remediation.

  • HSTS header with includeSubDomains and preload
  • Content Security Policy (CSP) implemented
  • security.txt RFC 9116 compliant
  • CAA DNS records for certificate control
  • Permissions-Policy for privacy protection
Security

Security Audit Fixes

Addressed critical security findings from comprehensive audit including SQL injection prevention and rate limiting improvements.

  • SQL injection protection via orderBy parameter validation
  • Redis-backed rate limiting for persistence across deploys
  • Query validation with 25+ blocked dangerous patterns
  • System schema access detection and blocking
Improvement

UI Theme Consistency

Complete audit and fix of hardcoded dark-mode colors. All pages now properly support light and dark themes.

  • Migrated 10+ pages to theme variables
  • Fixed light mode appearance issues
  • Consistent color mapping across all components
  • Brand color alignment (indigo → emerald)
Feature

Production Readiness Audit

Comprehensive wiring of frontend to real backend APIs. All dashboard pages now use live data instead of mocks.

  • Stripe billing integration with real checkout flow
  • Dashboard KPIs from real usage metrics
  • Team invitation emails via Resend
  • Real pg_dump backups with compression
Feature

Frontend API Integration

Complete React hooks for all dashboard operations with real-time data fetching.

  • useDatabase() - Table CRUD, SQL execution
  • useStorage() - Bucket management
  • useFunctions() - Edge function deployment
  • useAuthSettings() - OAuth provider configuration
Security

Production Hardening

Core security infrastructure for production deployment.

  • JWT authentication middleware
  • CORS and security headers
  • Rate limiting per plan tier
  • RLS policies for tenant isolation
Feature

Advanced Features

Enterprise-grade features for production workloads.

  • Custom domains with automatic SSL
  • Database branching for dev/staging
  • Point-in-time recovery (PITR)
  • Scale-to-zero for cost optimization
Feature

Multi-Tenant Control Plane

Schema-per-tenant architecture with full API coverage.

  • Tenant provisioning in <10 seconds
  • Control Plane API (Hono/Bun)
  • Storage, Functions, Database, Auth APIs
  • Stripe billing integration

Looking for earlier changes? Check our commit history.