Skip to main content

Changelog

Last updated: 2026-05-20

Public release history of the True Aim Platform. Each entry summarizes user-visible features, reliability improvements, fixes, and security or compliance work shipped in that release.

True Aim Platform v0.8.02026-05-20

Features

  • Session lifetimes now roll continuously over a 24-hour idle / 7-day hard cap window, and users are signed out automatically on authentication-failure errors for tighter session hygiene.

Fixes

  • Content Security Policy: relaxed the image source policy to allow any HTTPS origin, restoring image rendering for customer-supplied assets served from external CDNs.

True Aim Platform v0.7.02026-05-16

Features

  • Stale-claim watchdog auto-fails runs stalled for more than 20 minutes, so stuck claims surface to operators instead of hanging indefinitely.
  • Structured worker logging and pre-pipeline lifecycle stage events provide end-to-end traceability of every claim.
  • Workbench now surfaces stalled claims explicitly (replacing the previous “Unknown” state) and the dashboard live-reloads while runs are in flight.
  • Super-admins can now delete claims directly from the dashboard.

Improvements

  • Stepper derives state once and reflects success and in-progress states correctly.
  • In-progress view renders immediately after claim creation (no perceived blank state).
  • Restored vision extraction on Document Intelligence cache-hit reruns.
  • Production: unbuffered stdout, single worker, and predictable AI inference throughput.
  • Frontend: `.mjs` is now served with the correct JavaScript MIME type so the PDF.js worker loads cleanly.

True Aim Platform v0.6.02026-05-15

Features

  • Release automation: `release-please` now owns version bumps and GitHub Release creation, giving the platform a fully automated, auditable release pipeline.

Fixes

  • Workbench claim table now reflects the override verdict and payout immediately after a claim is finalized.
  • Frontend CSP allows SAS blob origins so customer document previews render reliably.
  • Hardened the release-please configuration for deterministic version computation.

True Aim Platform v0.5.02026-05-15

This release consolidates work that spanned v0.3.0 and v0.4.0 (administrative tag-only releases) plus the v0.5.0 cycle.

Features

  • Workbench: migrated the legacy extraction-review and side-by-side compare workbench into the new platform.
  • Processing dashboard: upgraded with KPI tiles, pipeline funnel, and volume chart.
  • Vehicle endpoint: new read endpoint exposing vehicle details for downstream consumers.
  • Admin: Platform Status page for at-a-glance system health.
  • Theming & i18n: three new themes, plus chrome cleanup across customer tenants.
  • AI PR reviewer: automated pull-request reviewer with manual command triggers, a CI queue, and chunked review support for diffs over the 200 KB single-call budget.

Fixes

  • Aligned screening brand keys with renamed canonical slugs; bridged workbench to legacy parity and wired the new vehicle endpoint; matched async AI client retry budget to the sync client.
  • Frontend: switched the production base image to a slim nginx-alpine variant to clear a CVE; resolved type-export issues; corrected pnpm install path.
  • Backend: production builds now use a slimmer dependency install for smaller images.
  • Infrastructure: corrected shared-storage resource scope; suppressed CodeQL false positives.

Security

  • Session hardening: tightened session timeouts to SOC 2-compliant defaults.
  • Transport security: pinned TLS 1.2 and added a security-headers middleware.
  • Cloud monitoring: enabled Microsoft Defender for Cloud Standard tiers across all relevant resource types.
  • Audit logging & alerting: added Activity Log, diagnostic Log, and Storage alerts for production environments.
  • Capacity & operations: published an Azure Workbook covering capacity planning and operational dashboards.
  • Network telemetry: enabled VNet flow logs on production and demo environments.
  • Application security: added GitHub CodeQL static-analysis workflow.
  • Vulnerability management: closed P1 backlog of Azure container image findings; pinned key Python dependencies to clear HIGH findings.
  • Dependency management: added Dependabot configuration for routine security updates.
  • Branch protection: configured require-last-push-approval and dismiss-stale-reviews rulesets.
  • Documentation: published Stage 2 SOC 2 policies and runbooks, code-review policy, and Vanta evidence summary.