Updates

Release notes

Platform improvements, new features, and enhancements.

v4.0.0major

Super Admin Panel & System Telemetry

Phase 18: Enterprise super admin panel, tenant telemetry, funnel analysis, and secure impersonation.

  • admin-panel Next.js app (port 3003)
  • JWT-based SUPER_ADMIN authentication
  • Tenant list, system health, BullMQ queue metrics
  • Audit-logged tenant impersonation for support
  • Funnel drop-off analysis
v3.6.0minor

Consent Layer & SDK v2.3

GDPR-compliant consent banner, opt-out API, and Customer Match allowlist preparation.

  • SDK v2.3 integrated consent banner
  • ConsentRecord table and opt-out endpoint
  • Customer Match upload for consented users only
  • Dashboard Customer Match readiness checklist
v3.5.0minor

DataCenter Export & Positive Customer Match

Phase 16: Central intelligence export and positive audience seed upload.

  • Anomaly + blacklist bulk export to DataCenter API
  • Hashed email/phone → positive UserList
  • Payment webhook → ConversionContact queue
  • Batch size 50, exponential backoff workers
v3.4.0major

Campaign Cross-Check & Attack Monitor

Hot-path cross-check against parameter campaign attacks and live attack metrics.

  • evaluateCampaignCrossCheck hot-path layer
  • CAMPAIGN_ID_MISMATCH / CAMPAIGN_ATTRIBUTION_MISMATCH signals
  • campaignAliasMap Redis cache
  • Attack Monitor: ghost gclid, 403, mismatch counters
  • gclid reconciliation worker improvements
v3.3.0minor

Mobile-Only Defense Matrix

Phase 15: Hardware mobile verification for local service campaigns.

  • MISSING_TOUCH_ENTROPY signal
  • DESKTOP_EMULATING_MOBILE detection
  • Tenant opt-in mobileOnlyDefense setting
  • Portrait and connectionType entropy checks
v3.2.0minor

Landing Beacon & Live Logs

Phase 9: Landing beacon requirement for gclid security and real-time dashboard.

  • SDK landing + interaction beacon separation
  • MISSING_LANDING_BEACON zero-tolerance 403
  • Live activity logs (3s polling)
  • Overview 5s polling + cross-browser profiles
v3.1.0minor

Layered Threat Engine

Phase 8: Cross-browser abuse, hardware profile, and strict bot rules.

  • Hardware profile hash (cross-browser)
  • COORDINATE_REPEAT behavior signal
  • IP rotation + cross-browser burst detection
  • Trust score EWMA and daily device limit
  • BlockRule manual IP/CIDR/fingerprint rules
v3.0.0major

MySQL 8.0 Migration

Phase 11: Production database migrated from PostgreSQL to MySQL 8.0.

  • Prisma MySQL provider
  • Docker compose MySQL 8.0 service
  • Hot-path Redis-only preserved
v2.8.0minor

Refund Reports & IP Rotation

Phase 12-13: Evidence-based refund export and 500 IP LRU rotation.

  • Weekly/monthly fraud refund reports (JSON/CSV)
  • Google Invalid Click Investigation ready format
  • 500 IP exclusion LRU eviction