Skip to content
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
5 changes: 0 additions & 5 deletions .changeset/address-enrichment-drizzle-migrations.md

This file was deleted.

5 changes: 0 additions & 5 deletions .changeset/authful-ci-token-seeding.md

This file was deleted.

5 changes: 0 additions & 5 deletions .changeset/authful-observability.md

This file was deleted.

5 changes: 0 additions & 5 deletions .changeset/authful-require-json-body.md

This file was deleted.

2 changes: 0 additions & 2 deletions .changeset/clever-peaches-rescue.md

This file was deleted.

5 changes: 0 additions & 5 deletions .changeset/comp-description-escaped-newlines.md

This file was deleted.

5 changes: 0 additions & 5 deletions .changeset/create-proposal-fixes.md

This file was deleted.

5 changes: 0 additions & 5 deletions .changeset/delete-snapshot-proposals.md

This file was deleted.

7 changes: 0 additions & 7 deletions .changeset/dev-758-authful-gateful.md

This file was deleted.

5 changes: 0 additions & 5 deletions .changeset/dev-758-mcp-forward-auth.md

This file was deleted.

10 changes: 0 additions & 10 deletions .changeset/efp-social-stats.md

This file was deleted.

7 changes: 0 additions & 7 deletions .changeset/env-validation-mcp-authful.md

This file was deleted.

5 changes: 0 additions & 5 deletions .changeset/gateful-health-fail-closed.md

This file was deleted.

5 changes: 0 additions & 5 deletions .changeset/gateful-health-readonly-probe.md

This file was deleted.

5 changes: 0 additions & 5 deletions .changeset/gateful-vercel-preview-spec.md

This file was deleted.

5 changes: 0 additions & 5 deletions .changeset/late-eagles-pick.md

This file was deleted.

5 changes: 0 additions & 5 deletions .changeset/mcp-authful-inbound-auth.md

This file was deleted.

2 changes: 0 additions & 2 deletions .changeset/nice-wings-stop.md

This file was deleted.

5 changes: 0 additions & 5 deletions .changeset/offchain-support-guards.md

This file was deleted.

6 changes: 0 additions & 6 deletions .changeset/preview-untrusted-gateful-fallback.md

This file was deleted.

5 changes: 0 additions & 5 deletions .changeset/proposal-mobile-viewport-dvh.md

This file was deleted.

5 changes: 0 additions & 5 deletions .changeset/protect-gateful-metrics-endpoint.md

This file was deleted.

6 changes: 0 additions & 6 deletions .changeset/remove-legacy-shared-token-auth.md

This file was deleted.

5 changes: 0 additions & 5 deletions .changeset/shareable-proposal-drafts.md

This file was deleted.

5 changes: 0 additions & 5 deletions .changeset/torn-delegation-voting-power.md

This file was deleted.

5 changes: 0 additions & 5 deletions .changeset/torn-lock-transfer-direction.md

This file was deleted.

5 changes: 0 additions & 5 deletions .changeset/torn-proposal-display.md

This file was deleted.

5 changes: 0 additions & 5 deletions .changeset/torn-treasury-transfers-phantom-voting-power.md

This file was deleted.

5 changes: 0 additions & 5 deletions .changeset/torn-vote-change-mutability.md

This file was deleted.

5 changes: 0 additions & 5 deletions .changeset/torn-vote-options.md

This file was deleted.

6 changes: 0 additions & 6 deletions .changeset/torn-voting-power-history-transfer-link.md

This file was deleted.

7 changes: 0 additions & 7 deletions .changeset/tornado-cash-integration.md

This file was deleted.

13 changes: 13 additions & 0 deletions apps/address-enrichment/CHANGELOG.md
Original file line number Diff line number Diff line change
@@ -0,0 +1,13 @@
# @anticapture/address-enrichment

## 1.1.0

### Minor Changes

- [#1993](https://github.com/blockful/anticapture/pull/1993) [`add9bd1`](https://github.com/blockful/anticapture/commit/add9bd1e96ea89dd26f892fcd30353919d905126) Thanks [@caveman-eth](https://github.com/caveman-eth)! - Surface ENS social records and EFP stats for addresses.
- `address-enrichment` now reads the EFP `/details` endpoint, capturing the ENS `com.twitter`, `org.telegram`, `email`, and `com.github` text records plus EFP follower/following counts. These are exposed under `ens` (socials) and a new `efp` object, cached under the existing ENS TTL. EFP counts are returned even when the address has no primary ENS name.
- The Holders & Delegates drawer header now shows follower/following counts (linked to the EFP profile) and social links (X, Telegram, GitHub, email) for the selected address.

### Patch Changes

- [#2010](https://github.com/blockful/anticapture/pull/2010) [`325fccb`](https://github.com/blockful/anticapture/commit/325fccbed3d6693be643127c0ef71fb90cf1e0bd) Thanks [@pikonha](https://github.com/pikonha)! - Add committed Drizzle migrations and apply them at startup.
2 changes: 1 addition & 1 deletion apps/address-enrichment/package.json
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
{
"name": "@anticapture/address-enrichment",
"version": "1.0.0",
"version": "1.1.0",
"private": true,
"scripts": {
"dev": "tsx watch src/index.ts",
Expand Down
14 changes: 14 additions & 0 deletions apps/api/CHANGELOG.md
Original file line number Diff line number Diff line change
@@ -1,5 +1,19 @@
# @anticapture/api

## 1.5.0

### Minor Changes

- [#2002](https://github.com/blockful/anticapture/pull/2002) [`451db65`](https://github.com/blockful/anticapture/commit/451db65d6497503ecebcae24fed44027a2e6479f) Thanks [@pikonha](https://github.com/pikonha)! - Integrate Tornado Cash DAO (TORN): custom stake-to-vote indexer (lock-based delegated supply, timestamp governance), timestamp-based proposal-status API client, and dashboard config/icon.

### Patch Changes

- [#2002](https://github.com/blockful/anticapture/pull/2002) [`2f0aca6`](https://github.com/blockful/anticapture/commit/2f0aca60e1a4785af8d7f52cd81c6a3cfbac63ee) Thanks [@pikonha](https://github.com/pikonha)! - Return unsupported-offchain errors consistently across offchain proposal and vote routes.

- [#2002](https://github.com/blockful/anticapture/pull/2002) [`873bb45`](https://github.com/blockful/anticapture/commit/873bb4514e144aaece91246c86ba61e0e7f54c1f) Thanks [@pikonha](https://github.com/pikonha)! - Normalize TORN lock/unlock transfer direction in voting-power history so the locker (not the custody contract) is shown as the delegator.

- [#2002](https://github.com/blockful/anticapture/pull/2002) [`2fc7174`](https://github.com/blockful/anticapture/commit/2fc71740f3953d5c49eaf92d5ab7947ae821ce0f) Thanks [@pikonha](https://github.com/pikonha)! - Fix TORN historical voting power rows being rendered as bogus zero-address delegations. TORN derives voting power directly from Transfers, so each history row shares the Transfer's log index, which the generic repository's strict `<` join never matched. Added a dedicated TORN voting-power repository that links the causing event at `logIndex <= row logIndex`. Dashboard also formats the auto-delegation fallback amount instead of dumping the raw delta.

## 1.4.0

### Minor Changes
Expand Down
2 changes: 1 addition & 1 deletion apps/api/package.json
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
{
"name": "@anticapture/api",
"version": "1.4.0",
"version": "1.5.0",
"private": true,
"main": "dist/index.js",
"type": "module",
Expand Down
17 changes: 17 additions & 0 deletions apps/authful/CHANGELOG.md
Original file line number Diff line number Diff line change
@@ -0,0 +1,17 @@
# @anticapture/authful

## 0.2.0

### Minor Changes

- [#2000](https://github.com/blockful/anticapture/pull/2000) [`1e6c3fb`](https://github.com/blockful/anticapture/commit/1e6c3fb2d6a7846a5d2e9f8aa4bcb769e0beab07) Thanks [@PedroBinotto](https://github.com/PedroBinotto)! - On Railway PR previews (`RAILWAY_ENVIRONMENT_NAME` other than `dev`/`production`) the service now seeds a fixed token from the required `SEED_TOKEN_PLAINTEXT` env var on boot — idempotently, so it survives restarts — giving the rest of the preview stack a known key to authenticate with. The seeding capability is internal only; the admin API still mints exclusively with server-generated values.

- [#1971](https://github.com/blockful/anticapture/pull/1971) [`4a85cf4`](https://github.com/blockful/anticapture/commit/4a85cf47d6a56b3f0c9de5da87978e0687755c55) Thanks [@brunod-e](https://github.com/brunod-e)! - Per-tenant API tokens (DEV-758): new Authful service issues, validates and revokes tenant tokens (sha256-only storage, manual minting); Gateful gains an optional token-auth middleware with Redis-cached validation, per-token rate limiting and per-tenant request metrics exposed on its `/metrics` endpoint (Prometheus counter `tenant_requests_total{tenant, route}`), enabled via `TOKEN_SERVICE_URL` (legacy `BLOCKFUL_API_TOKEN` behavior unchanged when unset). The MCP server can forward the caller's `Authorization` header to Gateful via `FORWARD_CLIENT_AUTH=true`; in that mode the shared `ANTICAPTURE_API_KEY` is never attached, so unauthenticated requests get a per-tenant 401 instead of riding the shared key.

### Patch Changes

- [#1971](https://github.com/blockful/anticapture/pull/1971) [`dd8756c`](https://github.com/blockful/anticapture/commit/dd8756c61fcb2a755a692a018a83ab36a61415c8) Thanks [@brunod-e](https://github.com/brunod-e)! - Add project-standard observability to Authful: structured Pino request logging, OpenTelemetry metrics/tracing via `@anticapture/observability`, an HTTP request-duration histogram, and a public `/metrics` Prometheus endpoint. Instrumentation is emitted as its own bundle entry and loaded with `node --import` so it registers before `pg`/`http` are required.

- [#1971](https://github.com/blockful/anticapture/pull/1971) [`858d286`](https://github.com/blockful/anticapture/commit/858d2860afbb58344044aa8c5d4629652ba47ae4) Thanks [@brunod-e](https://github.com/brunod-e)! - Mark request bodies as `required` on the Authful `POST /tokens` and `/validate` routes. Without it, `@hono/zod-openapi` skips validation and substitutes an empty body when a request omits the JSON content-type — letting `POST /tokens` mint a token with a null `tenant` (NOT NULL violation / 500) instead of returning a 400. Malformed and empty bodies are now rejected with 400.

- [#1971](https://github.com/blockful/anticapture/pull/1971) [`51e110a`](https://github.com/blockful/anticapture/commit/51e110a12820493c453097fc069b194f0b8c08e5) Thanks [@brunod-e](https://github.com/brunod-e)! - Standardize environment-variable handling to match the API module. The MCP server now loads `.env` via dotenv and validates `PORT`, `HOST`, `ANTICAPTURE_API_URL`, `ANTICAPTURE_API_KEY`, and `FORWARD_CLIENT_AUTH` through a single zod schema instead of ad-hoc `process.env` reads. Authful's env parsing switches to the same `safeParse` + friendly-error pattern and folds `TOKEN_PLAINTEXT` into the schema so the mint script no longer reads `process.env` directly. Gateful now normalizes `TOKEN_SERVICE_URL` (trailing-slash trimming) in its zod env schema rather than manually inside `AuthfulClient`.
2 changes: 1 addition & 1 deletion apps/authful/package.json
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
{
"name": "@anticapture/authful",
"version": "0.1.0",
"version": "0.2.0",

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

P2 Badge Mark Authful token removal as major

For Authful deployments that still seed a known TOKEN_PLAINTEXT or rely on the removed manual mint/plaintext-token path, this release removes the provisioning workflow while still advertising a normal 0.2.0 minor. The repo changeset guidance says breaking changes in 0.x packages should be treated as major, so this should either retain compatibility or be released as a major bump before the changeset is consumed.

Useful? React with 👍 / 👎.

"private": true,
"type": "module",
"main": "dist/index.js",
Expand Down
Loading