Changelog

v1.3.0previewMinor2026-05-22

Under construction — trust + outbound infra

featTrust patches: working /docs renderer on fumadocs v15.6.4 (jsx-runtime Flight crash architecturally eliminated), 90-second founder-voice demo above the fold, 4+ hi-DPI real product screenshots replacing illustrations, substantive changelog, 3 comparison pages (Anthropic Managed Agents / Cursor / Aider) with evidence folders + pending counsel review banners
featOutbound infrastructure: /design-partners page wired to Notion CRM, 4-email 14-day cold sequence on LGPD legitimate-interest basis (balancing test + suppression list + one-click unsubscribe), TabNews + LinkedIn launch posts hand-authored in pt-BR, 2,000-word cornerstone blog 'How to verify your AI coding spend audit' positioning verify-cost-chain.sh as a standalone auditor
featConversation funnel: PostHog 5-event minimum (visit → pricing_viewed → enterprise_viewed → calcom_clicked → meeting_booked + design_partner_applied) following the object_verb_past_tense convention, Cal.com Session 4 enterprise-onboarding webhook end-to-end verified
featFounder commitment: .planning/COMMITMENT-2WEEKS-NO-CODE.md committed with 40+ Cal.com 30-min slots pre-blocked, accountability buddy named, daily success metric switched to messages_sent (not code_shipped) — the milestone close is the commitment, not the code

v1.2.0Vibe Audit — cost attribution + safety guardrails + CFO interfaceShow release

v1.2.0Minor2026-05-22

Vibe Audit — cost attribution + safety guardrails + CFO interface

featCost attribution engine (Phase 8, 5 plans): NUMERIC(20,6) precision on all v1.2 cost tables, decimal.js promoted to direct dep, CI lint rule blocks number/f64 in apps/api/src/services/cost-*.ts, 5-tier attribution cascade (manual > MCP hint > squad-name > branch regex > PR label > default)
featSafety guardrails (Phase 9, 6 plans): per-org max-spend kill switch (2-layer slow ledger + fast counter), tiered pre-flight cost gate (allow/warn/confirm/refuse), MAD + modified z-score anomaly detection, partitioned Ed25519 signer pool (N=4 LISTEN; hash(org_id) % N; 50ms/64-event batch) for ANPD-ready signed audit chain
featVibe Audit dashboards (Phase 10, 12 plans): /admin/vibe-audit/{cost,safety,exports} Server Component pages with tier-progressive payloads (Pro+/Team+/Business+), BRL formatter (R$ 1.234,56), CFO-ready PDF via @react-pdf/renderer, public scripts/verify-cost-chain.sh standalone auditor
featCFO interface (Phase 11, 9 plans, Enterprise tier): cost-audit annex generator with pending-counsel-review banner (D-7.17 pattern), ROI calculator vs Anthropic Managed Agents, BACEN Resolution 4893/2021 questionnaire bilingual (47 Q+A, 10 sections), Session 4 enterprise onboarding (4-session sequence)
featProduction cutover: vupt.dev + api.vupt.dev LIVE on VPS k3s — apps/web switched from CF Workers to standalone Next.js (Workers Paid plan's 10 MiB bundle cap was breached at 22 MiB by shiki + recharts + yjs + mdx), new Dockerfile + web-deployment.yaml + web-service.yaml + web-ingress.yaml + deploy-vupt-web.sh; wrangler.toml retained in-tree for the apps/sandbox path

v1.1.0Cloud, Team, Business, EnterpriseShow release

v1.1.0Minor2026-05-18

Cloud, Team, Business, Enterprise

featCloud account, billing & sync (Phase 4, 13 plans, Pro tier): Clerk auth (email + GitHub + Google OAuth), Asaas (BR: PIX + boleto + BRL card) + Stripe (international: card + ACH + SEPA) dual processor per ADR-003, squad metadata + journal sync, multi-device sync, customer portal for subscription management
featTeam collaboration (Phase 5, 15 plans, Team tier): organizations + workspaces + invitations, collaborative kanban via Yjs CRDT, cloud MCP server with SSE transport + bearer auth, pgvector shared decisions for cross-team RAG, basic RBAC (owner/admin/member/viewer)
featBusiness tier (Phase 6, 17 plans): SSO/SAML/OIDC via Clerk (Google Workspace + Okta + Azure AD + JumpCloud), Ed25519-signed audit logs exportable to SIEM, granular RBAC (per-project + per-agent + per-action permissions), custom retention policies, 24h response SLA priority support, license-key-gated features for self-host
featEnterprise (Phase 7, 17 plans, sales-assisted): on-prem deployment via docker-compose + Helm chart, air-gapped mode with Ollama local LLM fallback, custom LLM endpoints (Amazon Bedrock + Azure OpenAI + private endpoints), SCIM provisioning, dedicated CSM, counsel-deferred MSA/DPA/SLA contract templates (D-7.17 pattern), SIG Lite questionnaire pre-filled

v1.0.0Vupt v1.0 — initial releaseShow release

v1.0.0Major2026-05-15

Vupt v1.0 — initial release

featMulti-provider PTY agent orchestration (Claude Code, Codex CLI, Cursor CLI, Aider, Cline, OpenCode) per ADR-013 — the moat Anthropic structurally cannot ship because of revenue conflict
featPre-merge AST-level conflict prediction across parallel tasks — flags merge conflicts before agents collide, killer-feature for parallel-agent workflows
featCost analytics dashboard with per-feature ROI tracking — desktop-side token + retry counters; the Vibe Audit cost-attribution engine in v1.2 extended this with CFO-grade signed financial-ledger semantics
featPublic sandbox infrastructure at demo.vupt.dev (k3s manifests + daily-reset cron) — operationalization deferred to v1.4 per D-12.8; /sandbox-request landing ships in v1.3 as the interim path for prospects
featSelf-host on-prem (k8s + air-gapped mode); BYOK without per-session fees per ADR-007; license-key-gated enterprise features via Ed25519-signed offline-verifiable license keys per ADR-011
featPT-BR UI + BRL pricing (PIX/Boleto via Asaas) + LGPD-compliant consent banner + ANPD-ready signed audit logs (Business+) — first localization wave (en + pt-BR); LGPD/GDPR data export + deletion endpoints; counsel-deferred privacy policy + ToS + DPA per D-7.17 pattern