Skip to content

Releases: jeffgreendesign/commerce-changeset

v0.2.1

07 Apr 03:13
@jeffgreendesign jeffgreendesign
v0.2.1
386902f

Choose a tag to compare

View all tags
v0.2.1 Latest
Latest

What's Changed

Features

  • Production Google account connection endpoint at /api/auth/connect-google
  • Demo mode with 4 complete scenarios, mock Auth0 login, Claude Sonnet 4.6
  • Homepage redesign: demo-focused dark landing with animated pipeline
  • Mobile dashboard CTAs: long-press product actions + FAB for bulk actions
  • Persistent voice agent across view navigation
  • Password-gated judges login for competition access
  • Token Vault visibility in demo mode with phase annotations
  • Agent Activity panel wired to chat interaction traces
  • Timeline panel with persistent history, session-scoped stats, schema validation
  • CTA button animations: iridescent glow, FAB pulse, risk dot animation
  • Chat-style bottom action bar replacing workspace IntentBar
  • Product image support via Vercel Blob URLs in Google Sheet
  • Architecture diagram (static SVG + React component)
  • Demo step delays for sequential execution feel
  • Image URL in writer/orchestrator schema

Fixes

  • Input bar bottom padding and chat Send button alignment
  • Voice session 1007 disconnect (sendRealtimeInput fix)
  • Workspace intent bar error on read-only queries
  • Desktop bottom bar button/input height mismatch
  • Voice and visual feedback after changeset execution via voice
  • Price update sync: target matching and cross-view state propagation
  • Taskbar bottom padding on desktop and mobile
  • Pipeline line width spanning between first and last dots
  • Workspace-provider error parsing for nested apiError shape
  • Distinct CIBA denial handling across executor, UI, and demo
  • Various voice UI, mobile dock, and demo annotation fixes

Security

  • Narrow Reader Agent OAuth scope to spreadsheets.readonly
  • Harden judges login with zod validation, timing-safe compare, HttpOnly cookie
  • HMAC-signed judge token replacing static cookie
  • Require non-empty changesetId via zod before execute/approve

See CHANGELOG.md for the full list.

Assets 2
Loading

v0.2.0 — Hackathon Submission

04 Apr 02:36
@jeffgreendesign jeffgreendesign
v0.2.0
b75a4d8
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v0.2.0 — Hackathon Submission

Highlights

  • 4-agent architecture — Reader, Orchestrator, Writer, and Notifier agents with per-agent OAuth scope isolation enforced at the Token Vault layer
  • Token Vault integration — Auth0 Connected Accounts + On-Behalf-Of delegation for Google Sheets and Gmail, zero frontend token exposure
  • CIBA + Guardian approval — all write operations gated by push notification approval with dynamic binding messages
  • 7-rule policy engine — json-rules-engine evaluating operation type, record count, price change magnitude, and voice-derived stress/fatigue signals
  • Voice input — Gemini Live API for real-time voice-to-text with stress and fatigue detection
  • Verify-after-write — Reader Agent read-back comparison after every Writer mutation
  • SHA-256 audit receipts — cryptographic hash over complete OBO delegation chain

Auth0 Features Used

  • Universal Login
  • Token Vault (Connected Accounts)
  • CIBA (Client-Initiated Backchannel Authentication) + Guardian
  • On-Behalf-Of token exchange
  • @auth0/nextjs-auth0 v4
  • @auth0/ai-vercel

Tech Stack

Next.js 16, React 19, TypeScript (strict), Tailwind CSS v4, Vercel AI SDK, Anthropic Claude Sonnet, Gemini Live API, json-rules-engine

Loading