Pull Request Explorer

Summary

Optimize onboarding pipeline to ~2 minutes

Reduces onboarding time from 5–6 minutes to ~2 minutes by parallelizing LLM calls, replacing slow policy generation with a fast template processor, and improving UI progress tracking, enhancing demo experience and user onboarding.

Health Assessment

• • Rapid merge with minimal review indicates high confidence; large code changes but no blockers; performance gains critical for demos and user experience.

Summary

Deploy production release v3.44.1

Fixes Prisma TLS failures by using Node trust store, restoring DB connectivity in production.

Health Assessment

• • Rapid automated merge with minimal review, quick turnaround, low friction.

Summary

Fix TLS errors by removing inlined RDS CA bundle

This fix removes the inlined RDS CA bundle, allowing Node's default trust store to validate TLS connections. It restores database connectivity for SSR routes in staging, eliminating P1011 TLS errors.

Health Assessment

• • Immediate merge with no review indicates high confidence in the fix; large code removal but minimal friction.

Summary

Deploy production release v3.44.0

Deploys the v3.44.0 release to production, co‑locating SSR functions with the US East database to reduce latency and inline the RDS CA bundle for TLS verification.

Health Assessment

• • Rapid deployment with minimal review; automated AI review flagged no issues; quick cycle time indicates efficient release process.

Summary

Inline RDS CA bundle to fix Turbopack warning

Fixes cold‑start warnings by embedding the RDS CA bundle directly into the code, eliminating the need for environment variables and ensuring TLS works under Turbopack.

Health Assessment

• • Quick fix with minimal code changes, no blockers, and fast review cycle.

Summary

Pin portal SSR to Vercel region iad1

Co-locates portal SSR functions with the database to reduce latency for EU users, improving performance and reducing cross-Atlantic round-trips.

Health Assessment

• • Fast cycle time of 0.1h, single commit, no review friction, quick merge.

Summary

Pin Vercel SSR functions to iad1

Reduces server‑side rendering latency by co‑locating functions with the database, cutting page load times for US and EU users.

Health Assessment

• • Fast review and merge with minimal changes; high confidence in impact.

Summary

Deploy production release v3.43.1

Releases updated risk, billing, TLS, and vendor features to production, improving security and user experience.

Health Assessment

• • Rapid deployment with AI assistance and zero review lag, but the large code churn and many feature changes raise the risk profile of this release.

Summary

Remove code-based JumpCloud manifest, enable DIP

Enables device posture checks for SOC 2/PCI compliance without requiring customer reconnection. Existing connections continue to work, and employee sync remains unchanged.

Health Assessment

• • Fast 1.6‑hour cycle with a single review and no rework, indicating a low‑risk, straightforward change.

Summary

Fix incorrect active members count on overview

Corrects the active members total displayed on the overview page, ensuring accurate user metrics.

Health Assessment

• • The PR was auto-generated and reviewed quickly with no issues, indicating a straightforward fix with minimal risk.

Summary

Ship CA bundle and clean debug routes

Adds the RDS CA bundle to the @trycompai/db package, enabling downstream consumers to reference it directly, and removes temporary TLS debug endpoints to streamline the codebase.

Health Assessment

• • Merged in under 3 minutes with no review comments, indicating a straightforward, low‑risk change.

Summary

Refine vendor risk scoring after research

Rescores vendor inherent and residual risk using researched posture data so onboarding yields evidence‑grounded scores instead of the conservative default.

Health Assessment

• • Fast cycle time of 2 hours, no review required, automated PR with minimal friction.

Summary

Improve Treatment Plan UI and Pagination

Enhances treatment plan layout, adds pagination, stabilizes tabs, and ensures mitigation plans are correctly saved, improving user experience and data accuracy.

Health Assessment

• • Rapid iteration with minimal review time indicates high confidence in changes; automated PR and AI-generated description streamlined the process.

Summary

Secure Postgres connections with verified TLS

Enforces strict TLS for Prisma clients across apps, bundles AWS RDS CA, and adds a runtime debug endpoint.

Health Assessment

• • AI-assisted PR merged within minutes with minimal code changes and no review required.

Summary

Secure Postgres TLS across apps and workers

Adds secure TLS configuration for Postgres connections across the application, bundling the AWS RDS CA bundle and enforcing strict Prisma TLS checks to prevent insecure connections.

Health Assessment

• • Automated PR merged immediately with minimal changes, indicating low complexity and high confidence in the update.

Summary

Add verified TLS for all RDS connections

Ensures all Postgres connections use verified TLS, eliminating silent MITM risk and enforcing strict certificate validation across all runtimes.

Health Assessment

• • Rapid approval with minimal review indicates high confidence; large code addition but well-tested and reviewed quickly.

Summary

Improve treatment plan editor and UX

Enhance user experience with paginated linked work, URL-backed tabs, and bug fixes for navigation and scoring.

Health Assessment

• • Automated review by cubic-dev-ai found no issues, but the large scope and multiple changes may introduce risks.

Summary

Fix 403 Access Denied for Employee Submissions

Employees can now submit access requests and view pending counts without 403 errors, improving portal usability.

Health Assessment

• • Rapid review and merge within 21 hours, minimal rework, indicating a straightforward bug fix.

Summary

Move upgrade-page auto-approval to API

Centralizes Stripe logic and access control, reducing secret exposure and improving auditability.

Health Assessment

• • Fast cycle time and minimal review iterations indicate an efficient refactor with clear AI-assisted review.

Summary

Fix billing UI to show wallet credits

Ensures wallet credits are displayed in pentest and background‑check UIs, preventing false paywalls when trials are exhausted.

Health Assessment

• • Quick AI‑generated fix with minimal review, no rework, and fast merge.

Summary

Surface real error messages for trust toggles

Users can now see actionable error messages when toggling trust framework settings, improving troubleshooting and reducing support tickets.

Health Assessment

• • Rapid review and merge with minimal changes indicates low complexity and high confidence.

Summary

Fix permission guard to prevent 403s

Fixes 403 errors on cookie‑authenticated requests by sending an explicit undefined permission to better‑auth, ensuring the request body matches zod’s discriminated union.

Health Assessment

• • PR merged immediately after creation with automated deployment, minimal changes, quick review.

Summary

Fix permission guard for cookie-authenticated requests

This PR resolves 403 errors for cookie‑authenticated requests by ensuring the permission payload matches better‑auth's schema, restoring access to all protected endpoints.

Health Assessment

• • Quick fix with minimal changes, merged immediately after commit, indicating low complexity and high confidence.

Summary

Deploy production release v3.42.0

Releases new pentest scan features, document relevance controls, and trust portal improvements to production, enhancing security workflows and user experience.

Health Assessment

• • The PR involved extensive code changes across 20 files and 13,320 lines, but AI‑assisted reviews identified issues quickly, leading to a fast first review and eventual merge after several iterations. The large scope and multiple review rounds indicate a high‑risk deployment, but automated tooling helped mitigate risk.

Summary

chore: regenerate bun lockfile

Regenerate bun.lock to refresh dependency resolution and reduce lockfile size, ensuring reproducible installs.

Health Assessment

• • Lockfile regenerated with no review friction; minimal risk to production.

Summary

Add per-policy PDF download to Trust Portal

Adds a signed URL endpoint for per-policy PDF downloads, watermarked for security. Simplifies access reclaim flow, reducing manual steps and improving user experience.

Health Assessment

• • The PR received a single review comment and no subsequent changes, indicating low friction. However, the overall cycle time was long, likely due to merge queue delays.

Summary

Add org-level and per-member background check toggles

Provides permission‑gated toggles for background check requirements at both organization and member levels, improving compliance control and user experience.

Health Assessment

• • Fast cycle time and minimal review comments indicate smooth integration; AI assistance accelerated development, but large code changes warrant careful testing.