Zuplo Changelog

Audit Logs are now available for Zuplo Enterprise customers. This feature provides a record of activities within your Zuplo account, including project modifications, configuration changes, team management, API key operations, and deployment activities. Each log entry includes information about the actor, affected resources, timestamp, and geographic context.

Availability#

Available now as an add-on for Enterprise customers. Current enterprise customers can trial the feature for development and testing. Contact your account manager or sales@zuplo.com to enable it.

Audit Log Features#

• 90-day retention by default (extended retention available on request)
• Immutable audit trails suitable for compliance requirements
• Real-time activity logging
• Detailed context including IP address, user agent, and location data

How to access Audit Logs#

Once enabled, Audit Logs can be found in the Zuplo Portal (Account Settings → Audit Logs). You will see the most recent activities as well as options to filter the events by date range, action type, actor or success/failure status.

Programmatic Access to Audit Logs#

Audit Log data is also available via the API using the /accounts/{accountName}/audit-logs endpoint. Query parameters are available for filtering and pagination (maximum 100 results per request, 30-day query range limit).

Note: During beta, not all events may be captured.

See the Audit Logs documentation for more information.

This changelog covers improvements to the runtime and portal from Monday, 2025-09-01 to Sunday, 2025-09-07.

Fixes#

• Runtime: Fixed MCP (Model Context Protocol) server handlers to return proper 405 Method Not Allowed responses instead of 404 Not Found when unsupported HTTP methods are used

Portal Updates#

• Added enhanced stack trace mapping and formatting in the log viewer for better debugging experience with loading states and improved readability

This changelog covers all releases from Monday, 2025-09-01 to Sunday, 2025-09-07, introducing performance optimizations for prerendering and important bug fixes for directive parsing. Key highlights include configurable prerender workers for better build performance and resolution of remark-directive parsing issues that were affecting content processing.

Features#

• Configurable prerender workers - Added ability to configure the number of prerender workers during build process for improved performance and resource utilization #1521

Fixes#

• Remark-directive parsing - Fixed critical parsing issues with remark-directive that were preventing proper content processing #1530

Documentation#

• API Keys documentation - Corrected typo in API keys documentation for improved clarity #1528

Zuplo provides automatic DDoS (Distributed Denial of Service) protection for all APIs deployed on the platform. This service detects and mitigates attacks in real-time, ensuring your APIs remain available even under attack.

No configuration required - protection is active immediately upon deployment.

Key Features#

• Always-on protection against both network (Layer 3/4) and application (Layer 7) attacks
• Multi-layered defense covering UDP floods, SYN floods, HTTP floods, and slowloris attacks
• Smart detection with minimal false positives to keep legitimate traffic flowing
• Unmetered protection with no bandwidth limits during attacks
• Cost protection - blocked malicious requests don't count toward your usage limits

Protection Levels#

• Working Copy environments: Medium sensitivity by default
• Preview/Production environments: Medium sensitivity with Enterprise customization options
• Enterprise add-on: Four sensitivity levels (High, Medium, Low, Essentially Off) with advanced analytics and custom rule configuration

How It Works#

The system analyzes traffic patterns in real-time, examining request rates, IP reputation, geographic distribution, and behavioral anomalies. When attacks are detected, malicious traffic is automatically filtered at the edge before reaching your API.

Note: This feature is available for managed edge deployments. Customers using managed dedicated deployments should refer to the Managed Dedicated WAF Options documentation.

This changelog covers improvements to sourcemapping, configuration flexibility, MCP support, and Portal analytics from Monday, 2025-08-25 to Sunday, 2025-08-31.

Features#

• Sourcemapping Improvements: Enhanced sourcemap generation and file mapping capabilities for better debugging experience
• Configuration Flexibility: Updated zuplo.jsonc configuration shape to support additional customization options
• Certificate Validation Control: Added environment variable to disable certificate validation when needed for specific deployment scenarios
• MCP Prompts Support: Added support for Model Context Protocol (MCP) prompts functionality
• MCP Error Handling: Improved error display formatting for MCP operations

Fixes#

• CLI Template Fix: Corrected the create app readme to reference the correct template
• Request Validator: Improved handling of invalid parameter validators in the request-validator policy to prevent runtime errors

This release brings significant improvements to the Dev Portal, including support for Model Context Protocol (MCP) endpoints and important bug fixes for documentation file handling. The update also includes numerous dependency upgrades to ensure security and performance optimizations.

Features#

• MCP Endpoint Support - Added comprehensive support for Model Context Protocol (MCP) endpoints, enabling enhanced AI integration capabilities within the Dev Portal #1434

Fixes#

• Documentation File Pattern Resolution - Fixed relative documentation file glob pattern handling to ensure proper file discovery and inclusion in the Dev Portal build process #1503

Dependency Updates#

• Updated GitHub Actions checkout from version 4 to 5 #1481
• Upgraded allof-merge from 0.6.6 to 0.6.7 #1478
• Updated tsx development dependency from 4.19.4 to 4.20.4 #1475
• Upgraded lucide-react icons from 0.526.0 to 0.542.0 across multiple updates #1477 #1496 #1505
• Updated Radix UI dependencies with 17 component updates #1476
• Upgraded NX development dependencies across multiple updates #1474 #1495
• Updated validate-npm-package-name from 6.0.1 to 6.0.2 #1400
• Upgraded remark-directive from 3.0.1 to 4.0.0 #1097
• Updated PostHog analytics from 4.17.1 to 5.7.0 #1480
• Upgraded Shiki syntax highlighting dependencies across multiple updates #1487 #1508
• Updated React Router from 7.6.3 to 7.8.2 #1498
• Upgraded TanStack React Query from 5.81.5 to 5.85.5 #1485
• Updated Zustand state management from 5.0.6 to 5.0.8 #1511
• Upgraded React Hook Form from 7.60.0 to 7.62.0 #1486
• Updated Clerk authentication from 5.71.0 to 5.90.0 #1509
• Upgraded Lefthook git hooks from 1.12.2 to 1.12.3 #1510
• Updated Testing Library Jest DOM from 6.6.3 to 6.8.0 #1506