Catalin Pit
e5cb4c6bfd
chore: refine dropdown placeholder support in PDF fields documentation and implementation
2026-05-22 11:27:18 +03:00
Lucas Smith
4877d1964a
chore: add translations ( #2771 )
2026-05-07 15:32:14 +10:00
github-actions[bot]
bc3aa9c858
chore: extract translations ( #2737 )
2026-05-07 11:39:39 +10:00
Catalin Pit
b79b4bd111
feat: add DD-MM-YYYY date format variants ( #2767 )
2026-05-06 23:34:05 +10:00
Ephraim Duncan
8c0e029b1b
feat: add pending signed PDF downloads ( #2730 )
2026-05-05 17:25:24 +10:00
David Nguyen
f10d3284ba
feat: remove default personal orgs from custom sso ( #2741 )
2026-05-05 14:50:07 +10:00
David Nguyen
6a6ef8d2ad
feat: allow add myself feature for embeds ( #2754 )
2026-05-04 15:05:13 +10:00
Lucas Smith
aebb5e2067
fix: assistant signing auth ( #2753 )
2026-05-01 15:51:58 +10:00
David Nguyen
84fc866cfb
fix: improve signature rendering quality with high-resolution caching ( #2745 )
2026-04-30 15:21:09 +10:00
David Nguyen
5d92aaf20a
feat: render signatures on pending envelopes ( #2743 )
2026-04-30 14:43:48 +10:00
Catalin Pit
ae497092d7
fix: security improvements ( #2593 )
2026-04-30 14:43:20 +10:00
Lucas Smith
61338af216
chore: add translations ( #2735 )
2026-04-28 14:55:25 +10:00
David Nguyen
2c7a1be051
feat: add envelope ids to certs ( #2733 )
2026-04-28 14:54:47 +10:00
github-actions[bot]
8bad62cc92
chore: extract translations ( #2734 )
2026-04-27 10:57:19 +10:00
Lucas Smith
19c2f7b4a1
docs: add signing reminders guide ( #2716 )
2026-04-27 10:51:14 +10:00
Lucas Smith
135b676cd4
chore: add translations ( #2689 )
2026-04-27 10:49:09 +10:00
Lucas Smith
dc575f5c80
fix: don't block organisation member removal on billing checks ( #2706 )
2026-04-22 21:59:22 +10:00
Ephraim Duncan
e5da5bca38
fix: unwrap webhook payload before test and resend ( #2710 )
2026-04-22 15:42:16 +10:00
Lucas Smith
34b31c0d80
chore: deps upgrades ( #2712 )
2026-04-21 14:43:49 +10:00
Lucas Smith
f54a8ed72f
feat: add turnstile captcha to auth flow ( #2703 )
2026-04-16 14:29:07 +10:00
Ephraim Duncan
4935f387bf
feat: signing reminders ( #1749 )
2026-04-14 21:01:53 +10:00
Lucas Smith
1af83ea854
chore: add translations ( #2683 )
2026-04-09 14:08:44 +10:00
github-actions[bot]
4c69cb9c66
chore: extract translations ( #2631 )
2026-04-08 15:37:18 +10:00
David Nguyen
14b0b4805d
feat: auto insert email and date fields ( #2639 )
2026-04-08 15:35:08 +10:00
Ephraim Duncan
9bfaa08d38
fix: documents table team email recipient lookup ( #2578 )
2026-04-07 20:10:38 +00:00
Lucas Smith
0b9a23c550
fix: handle malformed pdf cropbox/mediabox entries ( #2668 )
...
Some PDFs have CropBox or MediaBox entries stored as a PDFDict
instead of the expected PDFArray, causing pdf-lib to throw during
lookup.
Wrap both box lookups in try-catch and fall back to A4 dimensions
when neither can be parsed
2026-04-02 18:58:13 +11:00
David Nguyen
b13ec8909c
fix: resolve incorrect recipient comparision check ( #2646 )
...
## Description
Resolve issues with comparison checks.
The `envelope-editor-provider.tsx` should be low impact since it's embed
only which will only cause the non relevant attributes (such as sent at)
to be incorrectly mapped
The `auth-provider.tsx` one should have no impact
2026-04-01 16:04:14 +11:00
David Nguyen
e3b7a9e7cb
feat: add ability to save documents as template ( #2661 )
2026-04-01 16:03:26 +11:00
jpsimonsen
1c82595c12
feat: webhook allow private hosts ( #2654 )
2026-04-01 15:22:07 +11:00
Lucas Smith
ad559f72dd
feat: add BullMQ background job provider with Bull Board dashboard ( #2657 )
...
Add a new BullMQ/Redis-backed job provider as an alternative to the
existing Inngest and Local providers. Includes Bull Board UI for job
monitoring at /api/jobs/board (admin-only in production, open in dev).
2026-04-01 13:07:47 +11:00
Lucas Smith
2346de83a6
fix: replace z.string().email() with RFC 5322 compliant zEmail() ( #2656 )
2026-03-26 16:31:21 +11:00
Lucas Smith
814f6e62de
fix: replace z.string().email() with RFC 5322 compliant ZEmail/zEmail ( #2655 )
2026-03-26 13:31:26 +11:00
Catalin Pit
5be71cca21
feat: add option to disable Document created from template ( #2609 )
2026-03-23 15:11:42 +11:00
David Nguyen
b2d395e00b
fix: stale envelope editor query ( #2633 )
2026-03-19 17:22:07 +11:00
Lucas Smith
dd1b6d7dfe
chore: add translations ( #2632 )
2026-03-19 16:02:09 +11:00
Lucas Smith
bef3ea483d
chore: add translations ( #2630 )
2026-03-19 15:57:31 +11:00
David Nguyen
e87aa29823
feat: add page title translations ( #2629 )
2026-03-19 15:44:53 +11:00
github-actions[bot]
108d422a2e
chore: extract translations ( #2613 )
2026-03-19 14:18:42 +11:00
David Nguyen
48fb066b9a
feat: allow editing pending envelope titles ( #2604 )
2026-03-19 14:03:30 +11:00
David Nguyen
0b605d61c6
feat: add envelope pdf replacement ( #2602 )
2026-03-18 22:53:28 +11:00
Ted Liang
5dcdac7ecd
feat: support language in embedding ( #2364 )
2026-03-18 16:17:23 +11:00
Catalin Pit
455fef70bd
fix: folder view all page nested navigation and search filtering ( #2450 )
...
Add parentId query param support to documents/templates folder index
pages so View All correctly shows subfolders. Fix search not filtering
unpinned folders on documents page and broken mt- Tailwind class on
templates page.
2026-03-17 12:02:32 +02:00
Ephraim Duncan
36bbd97514
feat: add organisation template type ( #2611 )
2026-03-17 01:29:34 +11:00
Ephraim Duncan
943a0b50e3
perf: parallelize async operations in duplicateEnvelope ( #2619 )
2026-03-16 02:34:08 +00:00
Ephraim Duncan
ac09a48eaa
perf: parallelize independent async operations in createEnvelope ( #2618 )
2026-03-16 11:13:36 +11:00
Ephraim Duncan
70fb834a6a
feat: add more webhook events ( #2125 )
2026-03-15 19:47:52 +11:00
Ephraim Duncan
66e357c9b3
feat: add email domain restriction for signups ( #2266 )
...
Co-authored-by: Lucas Smith <me@lucasjamessmith.me >
2026-03-14 16:32:34 +11:00
Ted Liang
83fbc70a1c
refactor: avoid recipient color duplication ( #2355 )
2026-03-13 15:52:15 +11:00
Lucas Smith
1ee6ec87a2
chore: add translations ( #2614 )
2026-03-13 15:22:20 +11:00
Lucas Smith
6b1b1d0417
fix: improve webhook execution ( #2608 )
...
Webhook URLs were being fetched without validating whether they
resolved to private/loopback addresses, exposing the server to SSRF.
Current SSRF is best effort and fail open, you should never host
services that
you cant risk exposure of.
This extracts webhook execution into a shared module that validates
URLs against private IP ranges (including DNS resolution), enforces
timeouts, and disables redirect following. The resend route now
queues through the job system instead of calling fetch inline.
2026-03-13 15:02:09 +11:00