From f6a14171df176e1d38c70ab0cbcef4f8708a8885 Mon Sep 17 00:00:00 2001 From: "mintlify[bot]" <109931778+mintlify[bot]@users.noreply.github.com> Date: Mon, 11 May 2026 21:25:13 +0000 Subject: [PATCH 1/4] docs: address CodeRabbit feedback on may-2026 changelog Generated-By: mintlify-agent --- mintlify/docs/changelog/may-2026.mdx | 32 ++++++++++++++-------------- 1 file changed, 16 insertions(+), 16 deletions(-) diff --git a/mintlify/docs/changelog/may-2026.mdx b/mintlify/docs/changelog/may-2026.mdx index 9f140de8..fde17285 100644 --- a/mintlify/docs/changelog/may-2026.mdx +++ b/mintlify/docs/changelog/may-2026.mdx @@ -6,33 +6,33 @@ description: What's new in urBackend — new features, improvements, and fixes f ## New features -**Metrics Stack & Telemetry** — Added a comprehensive analytics and telemetry stack. The admin dashboard now includes a full activation funnel (signup through first API success), interactive D1/D7/D30 retention cohorts, and churn signals. A new "My Performance" widget is available for developers to track their 30-day API and Mail usage. +**Metrics Stack & Telemetry** — You now get a comprehensive analytics and telemetry stack. The admin dashboard shows a full activation funnel from signup to first API success. You can also view interactive D1, D7, and D30 retention cohorts. You can track churn signals in the same view. A new "My Performance" widget lets you track your 30-day API and Mail usage. -**Proactive Reliability Alerts** — A new background worker continuously monitors API error rates across all projects. If a project experiences a >5% error rate within a 15-minute window, a `reliability_spike` event is flagged automatically in the admin dashboard. +**Proactive Reliability Alerts** — A new background worker continuously monitors API error rates across all your projects. If your project exceeds a 5% error rate within a 15-minute window, the system automatically flags a `reliability_spike` event in the admin dashboard. -**Mail API migrated to BullMQ** — The `/api/mail/send` endpoint has been fully decoupled from the synchronous request path. All outgoing emails now route through a high-performance Redis-backed BullMQ queue, eliminating 429 rate-limiting timeouts, handling automatic retries, and ensuring safe quota refunds on permanent failures. +**Mail API migrated to BullMQ** — Your requests to `/api/mail/send` no longer block on the synchronous request path. All outgoing emails now route through a high-performance Redis-backed BullMQ queue. This eliminates 429 rate-limiting timeouts. The queue also handles automatic retries and refunds your quota safely on permanent failures. -**Interactive User Onboarding** — The dashboard now features a premium, full-page guided onboarding flow with glassmorphism UI. This replaces the old checklist and walks new developers through project creation, API key generation, and their first API calls. +**Interactive User Onboarding** — You now see a premium, full-page guided onboarding flow with glassmorphism UI. It replaces the old checklist. The flow walks you through project creation, API key generation, and your first API calls. -**Schema Default Values** — You can now define optional default values for fields within your collection schemas. These defaults are strictly enforced at runtime, passing through Zod validation and injecting cleanly into MongoDB during insertions. +**Schema Default Values** — You can now define optional default values for fields within your collection schemas. The runtime strictly enforces these defaults. Defaults pass through Zod validation and inject cleanly into MongoDB during insertions. -**API Performance Analytics** — The public API now tracks detailed latency and error-rate metrics. Developers can view their average response times and error percentages directly in the dashboard, filterable via a new time-range selector. +**API Performance Analytics** — The public API now tracks detailed latency and error-rate metrics for you. You can view your average response times and error percentages directly in the dashboard. You can filter the data using a new time-range selector. ## Improvements -**Cursor Pagination** — Added proper cursor-based pagination support to the database API. This eliminates off-by-one errors and includes automatic tie-breaker sorting to preserve query determinism on large collections. The default limit has been aligned to 100 records. +**Cursor Pagination** — You can now use cursor-based pagination in the database API. This eliminates off-by-one errors. Automatic tie-breaker sorting preserves query determinism on large collections. The default limit is now aligned to 100 records. -**Dashboard UI Redesign** — The analytics pages and dashboard headers have been redesigned with a squared, premium dark-mode aesthetic. Dynamic API request usage is now displayed directly in the header stats. +**Dashboard UI Redesign** — You now see redesigned analytics pages and dashboard headers with a squared, premium dark-mode aesthetic. The header stats display your dynamic API request usage directly. -**Password Reset OTP Cooldown** — Hardened the password reset flow with an atomic Redis-based OTP cooldown. This prevents account enumeration attacks by returning standardized success responses regardless of whether the email exists. +**Password Reset OTP Cooldown** — Your password reset flow now uses an atomic Redis-based OTP cooldown. This protects you against account enumeration attacks. The endpoint returns standardized success responses regardless of whether the email exists. ## Bug fixes -- Patched a severe polynomial regular expression denial-of-service (ReDoS) vulnerability in the release link extraction logic. -- Resolved high-severity dependency vulnerabilities and updated the dashboard build configuration for Vite 6 compatibility. -- Fixed a bug causing the login lockout to persist after a successful password reset. -- Fixed duplicate key handling and negative limit clamping in bulk insert APIs. -- Masked PII (personally identifiable information) from server logs and implemented robust email redaction. -- Resolved a 'ns does not exist' error that occasionally triggered during a project's first collection creation. -- Replaced `Math.random()` with cryptographically secure `crypto.randomInt()` for all OTP generation. +- You are now protected against a severe polynomial regular expression denial-of-service (ReDoS) vulnerability in the release link extraction logic. +- We resolved high-severity dependency vulnerabilities. We also updated the dashboard build configuration for Vite 6 compatibility. +- We fixed a bug that caused the login lockout to persist after a successful password reset. +- We fixed duplicate key handling and negative limit clamping in bulk insert APIs. +- We now mask PII (personally identifiable information) from server logs. We also implemented robust email redaction. +- We resolved a 'ns does not exist' error that occasionally triggered during your project's first collection creation. +- We replaced `Math.random()` with cryptographically secure `crypto.randomInt()` for all OTP generation. From 351406b12647bd50bee9b34b1d9ed4132f7bd16e Mon Sep 17 00:00:00 2001 From: "mintlify[bot]" <109931778+mintlify[bot]@users.noreply.github.com> Date: Tue, 12 May 2026 18:56:36 +0000 Subject: [PATCH 2/4] docs: convert bug fix bullets to second-person voice Generated-By: mintlify-agent --- mintlify/docs/changelog/may-2026.mdx | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/mintlify/docs/changelog/may-2026.mdx b/mintlify/docs/changelog/may-2026.mdx index fde17285..42cc46c6 100644 --- a/mintlify/docs/changelog/may-2026.mdx +++ b/mintlify/docs/changelog/may-2026.mdx @@ -29,10 +29,10 @@ description: What's new in urBackend — new features, improvements, and fixes f ## Bug fixes - You are now protected against a severe polynomial regular expression denial-of-service (ReDoS) vulnerability in the release link extraction logic. -- We resolved high-severity dependency vulnerabilities. We also updated the dashboard build configuration for Vite 6 compatibility. -- We fixed a bug that caused the login lockout to persist after a successful password reset. -- We fixed duplicate key handling and negative limit clamping in bulk insert APIs. -- We now mask PII (personally identifiable information) from server logs. We also implemented robust email redaction. -- We resolved a 'ns does not exist' error that occasionally triggered during your project's first collection creation. -- We replaced `Math.random()` with cryptographically secure `crypto.randomInt()` for all OTP generation. +- You no longer need to worry about high-severity dependency vulnerabilities; the dashboard build configuration has also been updated for Vite 6 compatibility. +- You no longer experience login lockout persistence after a successful password reset. +- You no longer encounter duplicate key handling issues or negative limit clamping in bulk insert APIs. +- Your PII (personally identifiable information) is now masked from server logs, and emails are redacted. +- You should no longer see the 'ns does not exist' error during your project's first collection creation. +- You now benefit from cryptographically secure `crypto.randomInt()` in place of `Math.random()` for all OTP generation. From feac5768a8beee177f8f5861b922a558bec6a1e9 Mon Sep 17 00:00:00 2001 From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com> Date: Tue, 12 May 2026 18:58:06 +0000 Subject: [PATCH 3/4] docs: address remaining changelog review comments Agent-Logs-Url: https://github.com/geturbackend/urBackend/sessions/709f8d5c-b91d-410a-9129-baf5beb7e440 Co-authored-by: yash-pouranik <172860064+yash-pouranik@users.noreply.github.com> --- mintlify/docs/changelog/may-2026.mdx | 16 ++++++++-------- 1 file changed, 8 insertions(+), 8 deletions(-) diff --git a/mintlify/docs/changelog/may-2026.mdx b/mintlify/docs/changelog/may-2026.mdx index 42cc46c6..2a86d160 100644 --- a/mintlify/docs/changelog/may-2026.mdx +++ b/mintlify/docs/changelog/may-2026.mdx @@ -10,7 +10,7 @@ description: What's new in urBackend — new features, improvements, and fixes f **Proactive Reliability Alerts** — A new background worker continuously monitors API error rates across all your projects. If your project exceeds a 5% error rate within a 15-minute window, the system automatically flags a `reliability_spike` event in the admin dashboard. -**Mail API migrated to BullMQ** — Your requests to `/api/mail/send` no longer block on the synchronous request path. All outgoing emails now route through a high-performance Redis-backed BullMQ queue. This eliminates 429 rate-limiting timeouts. The queue also handles automatic retries and refunds your quota safely on permanent failures. +**Mail API migrated to BullMQ** — Your requests to `/api/mail/send` no longer block on the synchronous request path. All outgoing emails now route through a high-performance Redis-backed BullMQ queue. This reduces 429 rate-limiting responses. The queue also handles automatic retries and refunds your quota safely on permanent failures. **Interactive User Onboarding** — You now see a premium, full-page guided onboarding flow with glassmorphism UI. It replaces the old checklist. The flow walks you through project creation, API key generation, and your first API calls. @@ -28,11 +28,11 @@ description: What's new in urBackend — new features, improvements, and fixes f ## Bug fixes -- You are now protected against a severe polynomial regular expression denial-of-service (ReDoS) vulnerability in the release link extraction logic. -- You no longer need to worry about high-severity dependency vulnerabilities; the dashboard build configuration has also been updated for Vite 6 compatibility. -- You no longer experience login lockout persistence after a successful password reset. -- You no longer encounter duplicate key handling issues or negative limit clamping in bulk insert APIs. -- Your PII (personally identifiable information) is now masked from server logs, and emails are redacted. -- You should no longer see the 'ns does not exist' error during your project's first collection creation. -- You now benefit from cryptographically secure `crypto.randomInt()` in place of `Math.random()` for all OTP generation. +- Patched a severe polynomial regular expression denial-of-service (ReDoS) vulnerability in the release link extraction logic. +- Resolved high-severity dependency vulnerabilities and updated the dashboard build configuration for Vite 6 compatibility. +- Fixed a bug that caused login lockout to persist after a successful password reset. +- Fixed duplicate key handling and negative limit clamping in bulk insert APIs. +- Masked PII (personally identifiable information) from server logs and implemented robust email redaction. +- Resolved a `ns does not exist` error that occasionally triggered during first collection creation. +- Replaced `Math.random()` with cryptographically secure `crypto.randomInt()` for all OTP generation. From f3788e5664beb524cf346b470c79557d5d3a1501 Mon Sep 17 00:00:00 2001 From: "mintlify[bot]" <109931778+mintlify[bot]@users.noreply.github.com> Date: Tue, 12 May 2026 18:59:37 +0000 Subject: [PATCH 4/4] docs: address CodeRabbit nitpicks (code formatting, voice) Generated-By: mintlify-agent --- mintlify/docs/changelog/may-2026.mdx | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/mintlify/docs/changelog/may-2026.mdx b/mintlify/docs/changelog/may-2026.mdx index 2a86d160..e6ba7834 100644 --- a/mintlify/docs/changelog/may-2026.mdx +++ b/mintlify/docs/changelog/may-2026.mdx @@ -8,13 +8,13 @@ description: What's new in urBackend — new features, improvements, and fixes f **Metrics Stack & Telemetry** — You now get a comprehensive analytics and telemetry stack. The admin dashboard shows a full activation funnel from signup to first API success. You can also view interactive D1, D7, and D30 retention cohorts. You can track churn signals in the same view. A new "My Performance" widget lets you track your 30-day API and Mail usage. -**Proactive Reliability Alerts** — A new background worker continuously monitors API error rates across all your projects. If your project exceeds a 5% error rate within a 15-minute window, the system automatically flags a `reliability_spike` event in the admin dashboard. +**Proactive Reliability Alerts** — A new background worker continuously monitors API error rates across all your projects. If your project exceeds a 5% error rate within a 15-minute window, you'll see a `reliability_spike` event flagged in the admin dashboard. **Mail API migrated to BullMQ** — Your requests to `/api/mail/send` no longer block on the synchronous request path. All outgoing emails now route through a high-performance Redis-backed BullMQ queue. This reduces 429 rate-limiting responses. The queue also handles automatic retries and refunds your quota safely on permanent failures. **Interactive User Onboarding** — You now see a premium, full-page guided onboarding flow with glassmorphism UI. It replaces the old checklist. The flow walks you through project creation, API key generation, and your first API calls. -**Schema Default Values** — You can now define optional default values for fields within your collection schemas. The runtime strictly enforces these defaults. Defaults pass through Zod validation and inject cleanly into MongoDB during insertions. +**Schema Default Values** — You can now define optional default values for fields within your collection schemas. The runtime strictly enforces these defaults. Defaults pass through `Zod` validation and inject cleanly into `MongoDB` during insertions. **API Performance Analytics** — The public API now tracks detailed latency and error-rate metrics for you. You can view your average response times and error percentages directly in the dashboard. You can filter the data using a new time-range selector.