v0.0.11-beta.9 — invite-a-friend flow, audit-poster PNG fix, Supply Chain green
Pre-release
Pre-release
0.0.11-beta.9
Features
- Invite a friend from
/audit(#435) — thecome back bettercard gains an invite modal: paste a comma/space/newline-separated list of friend emails (validated inline, capped at 10 per submit, deduped against your own address) and they're emailed an audit invite from failproof.ai with you Cc'd. Anonymous users are routed through sign-in first so there's a sender identity. Replaces the placeholder "1 of 3 invited" perks bar.
Fixes
- Supply Chain (OSV-Scanner) CI gate is green again (#446) — the dependency tree resolved a
vite@8.0.14(two advisories, incl. CVSS 8.2) andundici@7.27.2(7 advisories) transitively. Both are now pinned viapackage.jsonoverrides(vite@8.0.16,undici@7.28.0) to dedupe the whole tree. OSV-Scanner now reports "No issues found". /auditposter PNG export rendering (#435) — swapped the poster export fromhtml2canvastohtml-to-image, fixing broken dashed borders, a stray square cutting through the wordmark, and clone/flex misalignment that left content anchored off-center. The poster now rasterizes through the browser's native renderer, so masks, gradients, and font metrics match what's on screen.- Dashboard restraint (#435) — dropped the decorative
━━glyph prefix and amber slipping-count badge from every navbar tab, and calmed the/project/[name]page chrome (flat back chip, mono title, single meta line, calm sessions list). - Correct CLI binary name in
/auditinstall commands (#435) — the per-policy and[install all]rows emittedfailproof policy add …; the shipped binary isfailproofai, so a copied command would fail. Fixed at all call sites plus the docs example. - CodeRabbit review follow-ups (#435) — invite flow now routes 401s back through sign-in and never leaks upstream error text to the client/telemetry; share-fallback telemetry no longer reports success on failure; transient
/api/auth/statusfailures preserve prior auth state; new:focus-visibleoutlines on all new interactive controls.
Dependencies
- Consolidated Dependabot bumps #436–#445 (#446) —
next16.2.9,eslint10.5.0,@tailwindcss/postcss+tailwindcss4.3.1,@anthropic-ai/sdk0.104.2,vitest4.1.9,lucide-react1.18.0,@tanstack/react-virtual3.14.3,posthog-node5.37.1,eslint-config-next16.2.9. - Add
html-to-image@^1.11.13for the audit-poster export (#435).
Docs
- Update
docs/dashboard.mdxfor the new 5-section audit flow and theinvite a friendflow (#435).
Published to npm under the beta dist-tag (npm i failproofai@beta).