Zuplo Changelog

Zuplo provides automatic DDoS (Distributed Denial of Service) protection for all APIs deployed on the platform. This service detects and mitigates attacks in real-time, ensuring your APIs remain available even under attack.

No configuration required - protection is active immediately upon deployment.

Key Features#

• Always-on protection against both network (Layer 3/4) and application (Layer 7) attacks
• Multi-layered defense covering UDP floods, SYN floods, HTTP floods, and slowloris attacks
• Smart detection with minimal false positives to keep legitimate traffic flowing
• Unmetered protection with no bandwidth limits during attacks
• Cost protection - blocked malicious requests don't count toward your usage limits

Protection Levels#

• Working Copy environments: Medium sensitivity by default
• Preview/Production environments: Medium sensitivity with Enterprise customization options
• Enterprise add-on: Four sensitivity levels (High, Medium, Low, Essentially Off) with advanced analytics and custom rule configuration

How It Works#

The system analyzes traffic patterns in real-time, examining request rates, IP reputation, geographic distribution, and behavioral anomalies. When attacks are detected, malicious traffic is automatically filtered at the edge before reaching your API.

Note: This feature is available for managed edge deployments. Customers using managed dedicated deployments should refer to the Managed Dedicated WAF Options documentation.

This changelog covers improvements to sourcemapping, configuration flexibility, MCP support, and Portal analytics from Monday, 2025-08-25 to Sunday, 2025-08-31.

Features#

• Sourcemapping Improvements: Enhanced sourcemap generation and file mapping capabilities for better debugging experience
• Configuration Flexibility: Updated zuplo.jsonc configuration shape to support additional customization options
• Certificate Validation Control: Added environment variable to disable certificate validation when needed for specific deployment scenarios
• MCP Prompts Support: Added support for Model Context Protocol (MCP) prompts functionality
• MCP Error Handling: Improved error display formatting for MCP operations

Fixes#

• CLI Template Fix: Corrected the create app readme to reference the correct template
• Request Validator: Improved handling of invalid parameter validators in the request-validator policy to prevent runtime errors

This release brings significant improvements to the Dev Portal, including support for Model Context Protocol (MCP) endpoints and important bug fixes for documentation file handling. The update also includes numerous dependency upgrades to ensure security and performance optimizations.

Features#

• MCP Endpoint Support - Added comprehensive support for Model Context Protocol (MCP) endpoints, enabling enhanced AI integration capabilities within the Dev Portal #1434

Fixes#

• Documentation File Pattern Resolution - Fixed relative documentation file glob pattern handling to ensure proper file discovery and inclusion in the Dev Portal build process #1503

Dependency Updates#

• Updated GitHub Actions checkout from version 4 to 5 #1481
• Upgraded allof-merge from 0.6.6 to 0.6.7 #1478
• Updated tsx development dependency from 4.19.4 to 4.20.4 #1475
• Upgraded lucide-react icons from 0.526.0 to 0.542.0 across multiple updates #1477 #1496 #1505
• Updated Radix UI dependencies with 17 component updates #1476
• Upgraded NX development dependencies across multiple updates #1474 #1495
• Updated validate-npm-package-name from 6.0.1 to 6.0.2 #1400
• Upgraded remark-directive from 3.0.1 to 4.0.0 #1097
• Updated PostHog analytics from 4.17.1 to 5.7.0 #1480
• Upgraded Shiki syntax highlighting dependencies across multiple updates #1487 #1508
• Updated React Router from 7.6.3 to 7.8.2 #1498
• Upgraded TanStack React Query from 5.81.5 to 5.85.5 #1485
• Updated Zustand state management from 5.0.6 to 5.0.8 #1511
• Upgraded React Hook Form from 7.60.0 to 7.62.0 #1486
• Updated Clerk authentication from 5.71.0 to 5.90.0 #1509
• Upgraded Lefthook git hooks from 1.12.2 to 1.12.3 #1510
• Updated Testing Library Jest DOM from 6.6.3 to 6.8.0 #1506

This changelog covers changes from Monday, 2025-08-18 to Sunday, 2025-08-24.

Summary#

This release includes improvements to the CLI login experience with device flow authentication and source map support for better debugging capabilities.

Features#

• Enhanced CLI Authentication: The CLI now uses device flow for login, providing a more secure and user-friendly authentication experience
• Source Maps Support: Enabled source maps on public builds to improve debugging and error tracking capabilities

This changelog covers all releases from Monday, 2025-08-11 to Sunday, 2025-08-17.

Summary#

This release focused on improving the stability and reliability of the Dev Portal with multiple bug fixes related to OpenAPI 3.1 support, API reference documentation, and authentication components. Key improvements include better handling of complex schema references, enhanced pagination support, and fixes to API key management. The release also includes updates to several dependencies to ensure security and compatibility.

Features#

No new features were introduced in this release.

Fixes#

• Fixed OpenAPI 3.1 sibling properties in $ref resolution - Improved handling of OpenAPI specifications that use reference objects with sibling properties, ensuring proper schema resolution and documentation generation #1465
• Fixed anyOf schema variants - Resolved issues with anyOf schema handling to properly display all possible schema variations in the API documentation #1469
• Fixed API key secret duplicated elements - Eliminated duplicate elements appearing in API key secret management interfaces #1470
• Fixed x-displayName handling in pagination - Corrected pagination component to properly respect custom display names defined through the x-displayName extension #1471
• Fixed API basename path collision - Resolved conflicts when API basename paths overlap, ensuring proper routing and documentation generation #1473
• Fixed missing response tabs - Restored response tabs that were not displaying correctly in API endpoint documentation #1472

Dependency Updates#

• Updated TypeScript from 5.8.3 to 5.9.2 for improved type checking and performance
• Updated Vitest coverage tools from 3.2.1 to 3.2.4 for better test coverage reporting
• Updated json-schema-to-typescript-lite from 14.1.0 to 15.0.0 for enhanced TypeScript generation
• Updated YAML parser from 2.8.0 to 2.8.1 with bug fixes and improvements
• Updated React and related type definitions for compatibility and performance improvements
• Updated JSON Schema reference parser from 12.0.2 to 14.1.1 with enhanced schema resolution capabilities

This release focuses on improving the developer portal user interface with various enhancements to search functionality, settings pages, and AI gateway features. The changes include better environment variable search capabilities, updated settings page styles, and improvements to the AI gateway user experience.

Portal Updates#

Features#

• Enhanced environment variable search: Improved search functionality for environment variables with better filtering and updated components for a smoother user experience
• Settings page redesign: Updated settings pages with consistent styling, improved billing page layout, and added billing addons support
• Compliance and trust page: Added new dedicated page for compliance and trust information