FlavorGPTFlavorGPT
Changelog

What's new in FlavorGPT

Every release, documented. See what we shipped, what we fixed, and where the platform is heading.

v3.0.0April 2026

Model Tier Simplification

New Features
  • New 'Model Tiers' admin page to classify models as Normal or Pro with bulk selection and search.
  • Batch API endpoint for updating model tiers in bulk.
Enhancements
  • Simplified model tier system from three tiers (free/basic/pro) to binary (normal/pro).
  • All models are now accessible to all plans — only daily message limits differ.
  • User profile now shows separate daily usage bars for Normal and Pro models with remaining counts.
  • Plan management now prominently displays both Normal and Pro model daily limit fields.
  • Tier Rank field removed from plan management UI.
  • Model tier editing removed from Models page — managed via dedicated Model Tiers page.
Bug Fixes
  • Removed stale tier-rank gating logic from subscription validation and API routes.
v2.9.0April 2026

Dynamic Plans & Feature Gating

New Features
  • Plans are now fully dynamic — create, edit, and delete plans with custom pricing, discounts, and limits from the admin panel.
  • Per-plan feature gating — toggle which product features are accessible on each plan.
  • Users see an upgrade prompt when trying to use a gated feature.
  • Plan deletion supports subscriber transfer to another plan before removing.
  • Rich subscription details with quota progress, feature checklist, and discontinued plan warnings.
  • Redesigned onboarding finish screen with orbital animation, typewriter status indicator, and step-completion bar.
  • Plan card glow uses smooth radial gradient that fades naturally at edges.
Enhancements
  • Simplified plan creation form with auto-generated plan ID and live preview.
  • Upgrade modal renders dynamically from admin-configured plans.
  • Payment gateway wired to dynamic plan IDs with computed yearly pricing.
  • Upgrade popup card width stays consistent between monthly and yearly billing cycles.
  • Upgrade dialog auto-sizes to content instead of fixed height.
  • Trust signal text and finish step UI fully translated across all 6 supported locales.
Bug Fixes
  • Fixed tier rank 0 not being accepted in plan creation.
  • Fixed free plan users incorrectly showing subscription dates after transfer.
  • Fixed new users not receiving the admin-configured default model.
  • Fixed model picker not auto-closing in single-model mode.
  • Fixed plan card glow being sharply clipped by parent containers.
  • Fixed hardcoded English strings in trust signals and empty-state messages.
v2.8.0April 2026

Admin-Driven Configuration

New Features
  • Default chat model is now configurable from the admin panel instead of environment variables.
  • Plan message limits are now enforced directly from the admin plans table — changes take effect immediately.
  • Admin-created plans with custom names and limits work automatically without code changes.
Enhancements
  • Chat message counter dynamically fetches limits from the server.
  • Removed all hardcoded message limit environment variables and unused plan constants.
  • Removed unused email review script and 7 related dependencies that were never integrated into the product.
Bug Fixes
  • Plan limits configured in the admin panel are now actually enforced at runtime.
v2.7.2April 2026

Security & Dependency Updates

Security
  • Resolved 25 npm security vulnerabilities across critical, high, and moderate severities.
  • Patched critical arbitrary-code-execution vulnerability in protobufjs.
  • Patched high-severity Denial of Service in Next.js Server Components, path-to-regexp, and picomatch.
  • Patched moderate SMTP command injection in nodemailer, open redirect in next-intl, and prototype pollution in langsmith.
Under the Hood
  • Updated all dependencies to latest compatible versions including Next.js, React, AI SDK, Supabase, Sentry, and 40+ other packages.
  • Added protobufjs override to resolve critical CVE in onnxruntime-web dependency chain.
  • Updated langsmith and serialize-javascript overrides for latest security patches.
v2.7.1April 2026

System Model Controls & Runtime Fallbacks

New Features
  • Added admin settings for required system models with primary and fallback options for embeddings, text-to-speech, speech-to-text, and translation.
  • Added dedicated speech-to-text and translation API routes that use these system settings.
  • Added per-model provider selection in System Required Models — pin a specific provider for each primary and fallback model instead of relying on automatic detection.
  • Added "Test Selected" bulk action in admin models — select multiple models and test them all at once.
  • Added 24-hour automated model health check — a daily cron job tests all models and auto-disables failing ones and re-enables recovered ones, while respecting manually disabled models.
Enhancements
  • Improved admin model provider operations with sync/reindex progress that remains visible across page refreshes.
  • Improved model configuration with provider metadata plus manual context and output token overrides.
  • Added admin light/dark theme toggle and settings-page polish.
  • Grouped admin model list by provider and developer with collapsible sections, alphabetical sorting, and enabled-first ordering.
Bug Fixes
  • Added automatic fallback retries when primary models fail in embeddings, TTS, STT, translation, and system fallback chat paths.
  • Reduced token-limit failures with tighter per-chat max output token control.
  • Fixed chat scrolling regression that prevented scrolling on both desktop and mobile.
  • Reorganised mobile chat input layout — send button now sits at the end of the tool icons row for a cleaner composition area.
  • Fixed tool-icon active colour being overridden on hover, so enabled tools retain their colour on desktop and respond instantly to taps on mobile.
  • Added date and time display under the user's name in chat messages across all views.
  • Made message action toolbars always visible on mobile and tablet instead of requiring hover.
  • Aligned assistant toolbar inline with model info; moved Translate and Delete into the More menu on mobile for a compact layout.
Under the Hood
  • Added admin_system_model_settings migration and generated Supabase types.
  • Added shared provider metadata and system-model resolver utilities for consistent runtime model selection.
  • Added migration for provider-id columns on admin_system_model_settings and updated Supabase generated types.
  • Added manually_disabled column to admin_models to track admin intent and prevent auto-tests from overriding manual toggles.
  • Added daily cron trigger to Cloudflare Worker for automated model health checks.
v2.7.0April 2026

Public Link Sharing Overhaul

New Features
  • Public shared links now show all conversation messages in real time — new messages appear automatically without updating the link.
  • Added "Reset link" to generate a new URL and instantly revoke access through the old one.
  • Added disable/enable toggle for public links — pause access without deleting the link, and restore the same URL later.
  • Added "Go to chat" button in the shared links list for quick navigation to the original conversation.
  • Disabled links now appear in the shared links list with a "Disabled" badge so they can be re-enabled.
Enhancements
  • Improved public link dialog UI with better dark-theme contrast, readable button hierarchy, and proper scroll handling.
  • Fixed share icon hover effect that had asymmetric padding.
Under the Hood
  • Added share_token column to chats table, decoupling public share URLs from message foreign key constraints.
  • Migration automatically preserves existing shared links by copying identifiers into the new column.
v2.6.9April 2026

Consolidated Dependency Upgrade & Stability Hardening

New Features
  • Upgraded core product, UI, and AI integration dependencies to their latest compatible stable releases in one validated rollout.
Enhancements
  • Improved lint and TypeScript compatibility with newer ecosystem packages for a smoother contributor upgrade path.
  • Improved markdown, calendar, and icon component compatibility with updated upstream libraries.
  • Upgraded the test stack to Jest 30, `jest-environment-jsdom` 30, `@types/jest` 30, and `@testing-library/react` 16 while keeping validation checks green.
Bug Fixes
  • Fixed currency picker test instability in headless environments by hardening interaction timing and missing DOM API handling.
  • Fixed multiple admin and billing update flows to remain compatible with stricter Supabase update payload typing.
  • Fixed billing timer tests for newer fake-timers behavior by switching `jest.setSystemTime` usage to epoch-millisecond inputs.
Under the Hood
  • Added ESLint v9 flat-config support for repository-wide linting.
  • Consolidated redundant Dependabot dependency PRs into this validated update stream and closed superseded update PRs.
  • Removed redundant `@types/uuid` dev dependency now that `uuid` ships bundled type definitions.
v2.6.8April 2026

Admin-Protected System Setup

New Features
  • Added admin-session gating for the `/system-setup` UI and `/api/system-setup` bootstrap endpoint.
Enhancements
  • Updated setup docs and environment guidance to include admin dashboard credentials for automatic setup access.
Bug Fixes
  • Unauthenticated requests to `/api/system-setup` now return `401 Unauthorized` instead of running setup logic.
  • Unauthenticated access to `/system-setup` now redirects to admin login.
Security
  • Restricted database bootstrap operations to authenticated admin users using configured admin dashboard credentials.
v2.6.7April 2026

Enterprise Open-Source Publish Baseline

New Features
  • Added complete open-source governance files: `CONTRIBUTING.md`, `CODE_OF_CONDUCT.md`, `SECURITY.md`, `SUPPORT.md`, and `GOVERNANCE.md`.
  • Added a structured `docs/` portal covering quickstart, environment setup, DB setup, architecture, deployment, operations, security, governance, and troubleshooting.
  • Added GitHub collaboration scaffolding with issue templates, PR template, CODEOWNERS, Dependabot config, and dependency review workflow.
Enhancements
  • Reworked `README.md` into a publish-ready open-source landing page with quickstart, docs map, and governance links.
  • Simplified and aligned `help.md` with current setup and operations guidance.
  • Added `.editorconfig` for cross-editor consistency in open-source collaboration.
Bug Fixes
  • Updated CI push branch coverage to include both `master` and `main` for consistent validation in mixed-branch environments.
  • Added a dedicated docs-sync Cursor rule so behavior-changing code updates include required documentation updates.
Under the Hood
  • Added build verification as a required stage in `CI PR Checks`.
  • Added a pull-request dependency review workflow with high-severity failure gating.
v2.6.6April 2026

Open-Source Database Setup Assistant

New Features
  • Added a guided `/system-setup` page that lets new self-hosted users initialize Supabase with required credentials and one-click setup.
  • Added a Node runtime `/api/system-setup` bootstrap route that applies repository migrations and can optionally run seed data.
Enhancements
  • Added setup diagnostics that report applied/skipped migrations and missing required tables to make first-time installation verification faster.
  • Updated setup documentation in `README.md` and `help.md` to keep manual and automatic setup flows aligned.
Bug Fixes
  • Added a root-level shared-chat migration to prevent fresh installs from missing schema updates when nested migration paths are skipped.
  • Updated middleware guest routing to explicitly allow `/system-setup` and `/api/system-setup` during first-run onboarding.
Security
  • Removed the legacy hardcoded Supabase URL and service-role key dependency from the base setup migration path.
  • Added a secure storage-deletion migration that replaces credential-based deletion logic with internal storage metadata deletion.
Under the Hood
  • Added deployment tracing includes for migration and seed SQL assets required by setup API execution.
  • Added a DB rollout/revert runbook for setup bootstrap hardening and split Cursor DB setup-sync rules for future schema work.
v2.6.5March 2026

Deployment Reliability Hotfix

New Features
  • Added a temporary helper script to sync selected `.env.local` values into GitHub repository secrets for scheduler and CI setup.
Enhancements
  • Set external schedulers as the default cron strategy and removed built-in Vercel cron schedules from baseline deployment settings.
Bug Fixes
  • Fixed Netlify runtime `500` responses by excluding internal Netlify handler paths from middleware processing.
  • Fixed CI unit test instability by mocking server model tiers in chat limit tests and ignoring generated `.netlify` artifacts in Jest module resolution.
  • Added chat POST rate limiting to `/api/chat/custom/test` so test endpoint traffic follows the same abuse protections as other chat routes.
Under the Hood
  • Aligned Netlify build runtime to Node `22.13.1` to match repository runtime expectations across CI and platform builds.
  • Simplified Vercel deployment config to app-hosting only while cron execution remains externally managed.
v2.6.4March 2026

Multi-Platform Deploy & CI Readiness

New Features
  • Added one-click deployment entry points for Vercel, Netlify, and Render to speed up open-source onboarding.
  • Added GitHub Actions PR checks for lint, type-check, and unit tests to improve beta release confidence.
Enhancements
  • Added a platform support matrix and deployment guide covering Vercel, Netlify, Render, Coolify, and generic Node hosts.
  • Added Render blueprint and updated Netlify configuration for smoother Next.js deployment defaults.
Bug Fixes
  • Made `/api/billing/crypto/verify-pending` compatible with both `POST` and `GET` so scheduler integrations behave consistently across hosts.
Under the Hood
  • Added Vercel cron coverage for hourly `/api/cron/sync-models` in addition to crypto verification cadence.
  • Added CI workflow orchestration with cache-aware Node setup for predictable PR validation.
v2.6.3March 2026

Platform-Neutral Deployment Baseline

New Features
  • Added a Cloudflare Worker cron setup for scheduled verification and model sync jobs, replacing platform-tied scheduler assumptions.
  • Added Redis URL based chat rate limiting for Node runtime API routes so deployments can use any Redis provider.
Enhancements
  • Centralized canonical base URL resolution through `APP_BASE_URL` with safe fallbacks for metadata, callbacks, and share links.
  • Cron auth now supports `Authorization: Bearer CRON_SECRET` with temporary query compatibility for smooth rollout.
Bug Fixes
  • Removed Vercel-specific callback and geo-header dependencies that could cause inconsistent behavior outside Vercel.
  • Removed middleware-side chat rate limiting dependency on Vercel KV/Upstash runtime wiring.
Under the Hood
  • Removed Vercel runtime packages and introduced provider-neutral Redis client dependency (`ioredis`).
  • Updated self-host deployment docs and environment examples for `APP_BASE_URL`, `REDIS_URL`, and serverless-neutral runtime controls.
v2.6.2March 2026

Profile Language Update Reliability

New Features
  • Improved profile preference compatibility across database environments to keep language updates stable.
Enhancements
  • Profile writes now work consistently after aligning production and development schemas for user UI preference storage.
Bug Fixes
  • Fixed "Failed to update language" errors in profile settings caused by missing `profiles.ui_preferences` in production.
Under the Hood
  • Added and applied Supabase migration `20260325130000_sync_profiles_ui_preferences_column` to align `profiles.ui_preferences` between production and development.
  • Added DB change runbook for rollout and rollback in `Instructions/DB-changes/profile-ui-preferences-schema-alignment.md`.
v2.6.1March 2026

Enterprise White-Label Customization

New Features
  • Admin Customize Center — configure global white-label settings from one panel with a master enable switch.
  • Brand Identity Controls — set brand name, company name, website, product description, and upload logo/favicon assets.
  • Redirect Behavior Toggle — choose whether non-logged-in users go to /i landing or /login when white-label mode is enabled.
Enhancements
  • Brand settings now apply across admin/public/private layouts, metadata, logos, and OG defaults when customization is enabled.
  • Contact and legal identity (support/sales/billing/security/legal/privacy emails and sender profile) is now centrally configurable.
Bug Fixes
  • Removed hardcoded identity touchpoints in key landing/legal/contact surfaces by routing them through configurable settings.
  • Fixed selected user language reverting to English after loading transitions and aligned loader messages with the resolved locale.
Under the Hood
  • Added `admin_customize_settings` singleton table with seeded defaults and `branding_assets` storage bucket.
  • Added new APIs for white-label management: `/api/admin/customize-settings`, `/api/admin/customize-assets`, and `/api/customize-settings`.
v2.6.0March 2026

Multilingual Platform & Geo-Based Language Detection

New Features
  • Full Multilingual Support — six languages (EN, RU, ZH, KO, AZ, AR) across the entire platform.
  • Locale-Aware Landing Page — automatic region detection via Cloudflare geo IP headers.
  • Profile Language Preferences — users can choose Auto, Default, or a specific language from settings.
  • Admin i18n Control Panel — master translation toggle, auto-detection switch, default language selector, and separate admin language setting.
  • Contact Form API — public contact endpoint for user inquiries with email integration.
  • Footer Language Picker — quick locale switching on the landing page.
Enhancements
  • Server-side geo detection via Cloudflare cf-ipcountry now powers product auto-language, matching landing page behavior.
  • Fully translated changelog page in all 6 supported languages.
  • Translated content pages — Privacy, Terms, Security, Refund, About, Enterprise, and Pricing.
  • RTL layout support for Arabic across the entire application.
  • Translated product UI strings covering sidebar, chat, settings, billing, setup, workspace, and admin.
Bug Fixes
  • Fixed auto-language detection relying on browser language instead of geographic IP location on the product side.
  • Fixed unauthenticated access to i18n settings API being blocked by middleware.
  • Fixed service worker caching stale i18n settings responses.
  • Fixed loader showing hardcoded English text before i18n provider initializes.
Under the Hood
  • Supabase migrations for language preferences and admin i18n settings tables.
  • 54+ translation JSON files across 9 namespaces and 6 locales.
  • Automated Playwright E2E test script for multilingual validation.
  • Middleware updated to allow guest access to i18n settings and exclude service worker from redirects.
v2.5.0March 2026

Enterprise Checkout & Authentication Hardening

New Features
  • Crypto Payments Integration — support for USDT/USDC via NOWPayments with Tron, BSC, and Solana chain selections.
  • Enterprise Checkout Stack — robust checkout with Stripe for USD and international payments.
  • Fingerprint-First Authentication — fingerprint login/signup with passkey support and GitHub OAuth fallback.
  • Advanced Account Recovery — TOTP, backup codes, and hotkey signature recovery options.
  • Comprehensive Admin Dashboard — real-time stats, user management, model auto-discovery, and API docs.
Enhancements
  • Profile Settings redesign with glassmorphism layout, status badges, and progress bars.
  • Glassmorphism UI refresh across the entire app — sidebar, tool cards, chat header.
  • Fully admin-driven model catalog with developer-based grouping across all selectors.
  • Multi-model chat polish with parallel comparison and pre-rendered grid layouts.
  • Onboarding UX stabilization with centered fingerprint cards and mobile viewport fixes.
Bug Fixes
  • Resolved duplicate authentication user issues with self-healing reconciliation.
  • Handled OAuth collision errors during code exchange and popup callbacks.
  • Fixed hydration mismatches in shared badge components.
  • Corrected layout overlap and clipping in redesigned chat workspace.
  • Fixed admin login hydration failures and runtime timeouts.
Security
  • Resolved all severe npm audit vulnerabilities and upgraded Supabase CLI.
  • Disabled automated retries for timed-out tool requests to prevent cascaded failures.
  • Implemented environment-driven high-power controls for self-hosted tool workflows.
Under the Hood
  • Migrated to Next.js Node.js runtime for chat routes (bypass Edge IP restrictions).
  • Removed legacy BYOK systems and provider-specific chat routes.
  • Dropped unused provider API key columns, regenerated database types.
v2.4.0June 2025 — February 2025

Model Expansion & OpenRouter Integration

New Features
  • Massive model integrations — GPT-4.5 Preview, Gemini 2.5 Pro, o1, o3-mini, and xAI models.
  • Image Generation — GPT-4o Image Generation Plugin and 4 Cloudflare Text-to-Image models.
  • OpenRouter Support — integrated OpenRouter free models, expanding accessible model ecosystem.
Enhancements
  • Model categorization under developer names for easier navigation.
  • Default preferred model setting in Profile Settings.
  • Clearer UI feedback for error, success, and warning messages.
Bug Fixes
  • Fixed image fetching in Message component for immediate display after generation.
  • Retained original code block formatting when editing messages.
  • Resolved deployment build issues related to Next.js and Vercel initialization.
  • Fixed bug when opening manage model options.
Security
  • Updated solid-js, resolved xmldom, fast-jwt, and Babel RegExp vulnerabilities.
Under the Hood
  • Added Netlify configuration for alternative deployment.
  • Updated KaTeX, Axios, Sentry, and Next.js; pruned unused libraries.
  • Disabled experimental models (FLUX.1 Pro, Stable Diffusion 3) for stability.
v2.3.0December 2024 — September 2024

UI Redesign, Workspace Storage & File Support

New Features
  • File Attachments — PDF, DOCX, CSV, TXT, and image previews in chat.
  • Workspace Storage — local vector storage via indexedDB for document queries.
  • Custom Themes — full theme support with preset color templates and deep dark mode.
  • Web Search Tool — Perplexity and custom scraping for real-time internet browsing.
Enhancements
  • Copy, Edit, and Regenerate buttons on chat messages.
  • Overhauled code block rendering with 50+ language syntax highlighting and one-click copy.
  • Rebuilt sidebar for mobile-first responsiveness with swipe-to-close gestures.
Bug Fixes
  • Resolved infinite rendering loops when switching concurrent chat sessions.
  • Fixed markdown table rendering on small screens.
  • Corrected text-to-speech voice selection resetting on reload.
Under the Hood
  • Migrated state management from React Context to Zustand.
  • Upgraded to Shadcn UI latest spec.
  • Implemented strict API route rate limiting.
v2.0.0August 2024 — February 2024

Initial Core Development & App Launch

New Features
  • Core Chat Interface — streaming responses and markdown support.
  • Supabase Authentication — email/password and social login.
  • Basic Billing — Stripe checkout for premium tier subscriptions.
Enhancements
  • Established baseline design system with TailwindCSS.
  • Initial OpenAI and Anthropic API model support.
Under the Hood
  • Repository initialized with Next.js 14 App Router architecture.
  • Database schema designed and deployed via Supabase migrations.