[dev] [Marfuen] mariano/swap-onboarding-cloud-software-order#2452
[dev] [Marfuen] mariano/swap-onboarding-cloud-software-order#2452
Conversation
Move the infrastructure/cloud hosting question ahead of the software question in the onboarding wizard for a more logical flow. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
…tokens Frontend: - Green checkmark now requires both DB and live Vercel verified status - _vercel TXT value from live Vercel API instead of stale DB value - Show DNS records when Vercel says unverified, even if DB says verified Backend: - Don't delete+re-add domains on Vercel when re-saving (prevents token regen) - Remove old domain from Vercel when switching to a new one - checkDnsRecords fetches live Vercel state instead of stale DB values - Only set domainVerified=true after Vercel confirms verification - Add domain ownership check in checkDnsRecords - CORS only allows verified custom domains Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
|
The latest updates on your projects. Learn more about Vercel for GitHub.
2 Skipped Deployments
|
PR SummaryMedium Risk Overview Trust portal domain management is hardened and made more stable. Vercel domain API calls now URL-encode validated domains, old domains are best-effort removed when switching, and the “already on project” path no longer deletes/re-adds domains (avoids regenerating verification tokens) while syncing DNS verification now enforces org ownership and uses live Vercel status. UI reflects combined DB+Vercel verification state. The portal settings screen derives an effective “verified” state, shows the Written by Cursor Bugbot for commit c43d8e1. This will update automatically on new commits. Configure here. |
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
…button - Only gate domainVerified on Vercel verify response for cross-account domains (requiresVercelTxt). Same-account domains set domainVerified=true after DNS check passes — Vercel picks up CNAME on its own. - Fix _vercel TXT Name copy button copying the token value instead of the string "_vercel" (both desktop and mobile layouts). Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Add safeDomainPath() that encodes user-provided domains before embedding them in Vercel API and networkcalc URL paths. The existing validateDomain regex already prevents dangerous characters, but encodeURIComponent adds defense-in-depth and satisfies CodeQL's SSRF detection. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
|
🎉 This PR is included in version 3.15.1 🎉 The release is available on GitHub release Your semantic-release bot 📦🚀 |
3 participants
This is an automated pull request to merge mariano/swap-onboarding-cloud-software-order into dev.
It was created by the [Auto Pull Request] action.