v110.0.1

110.0.1 (2026-06-28)

What's Changed

• fix(security): inject JWT_VERIFICATION_TOKEN_SECRET in all prod/stage deploys (GHSA-chm8-2ggf-pgjq) by @evereq in #9756
• fix(security): require a server-minted state nonce for GitHub App installs (GHSA-4rwq-65wh-45h4) by @evereq in #9757
• fix(ci): resolve @electron/node-gyp to npm package (fixes Docker/MCP image builds) by @evereq in #9761
• fix(core): relax prod CORP to same-site so app.gauzy.co can embed API assets + enable Secure session cookie by @evereq in #9762
• release: cascade develop -> stage (CORP same-site image fix #9762 + security batch #9756/#9757 + CI #9761) by @evereq in #9763
• release: cascade stage -> master (prod) — CORP same-site image/avatar fix #9762 + security #9756/#9757 + CI #9761 by @evereq in #9764

Full Changelog: v109.0.2...v110.0.1