Changelog | VertaaUX

March 3, 2026

GA4 Analytics Infrastructure

Server-side analytics pipeline for deeper product insights

Features

GA4 Data Import via SFTP — server-side analytics pipeline for richer Google Analytics reporting
Daily automated CSV upload via GitHub Actions

Security

Chroot-jailed SFTP with fail2ban intrusion prevention
Dedicated service account with minimal bucket-scoped permissions

Audit Reliability: Failure Visibility & Robustness

Audits are now more reliable with better timeout handling and failure recovery

Fixes

Audits no longer spin forever — 3-minute frontend polling deadline prevents infinite loading states
Increased public audit time budget from 12s to 20s for adequate page navigation headroom
Per-category 5s auditor timeout prevents a single slow category from starving others
Stale queued jobs no longer re-queue infinitely — failed jobs now route to dead letter queue after retries exhausted
Missing failure reasons now tracked in telemetry for partial audit results

Enhancements

Expanded audit failure test coverage from 4 to 14 tests covering all 9 failure patterns

March 1, 2026

Unified Configuration Page

All setup and integration config in one place

Features

New /dashboard/configuration page with tabbed navigation
CI/CD wizard now embedded within Configuration (no longer a separate page)
Old CI/CD page automatically redirects to new Configuration page

Dashboard Home Redesign

Activity-centric dashboard replacing the audit list

Enhancements

Dashboard home rewritten around pages and sites — Recent Pages, Recent Sites, and Unlinked Audits sections
New card-based layout with RecentItemCard component showing latest score and audit date
Orphaned audits (not linked to any page) surfaced in dedicated Unlinked Audits widget
Simplified greeting without inbox/notification references

Pages & Sites Dashboard

Track individual pages and sites over time with dedicated views

Features

New Pages dashboard (/dashboard/pages) — list, search, and manage tracked pages
Individual page detail views with 4 tabs: Overview, Issues, Trends, and History
Score trends chart showing how each page's scores change over time
CSV and Markdown export for page issues
New Sites dashboard (/dashboard/sites) — group pages into sites
Individual site views with Overview, Pages list, and History tabs
Pages auto-created from audits — every audit now creates/links a tracked page record
"Run by" column shows which surface (web, CLI, CI/CD, API) triggered each audit

AEO Content & Methodology Pages

New educational content for AI search engine optimization

Features

WCAG 2.2 compliance guide with 6 structured answer sections
GDPR compliance guide for websites with regulation overview and audit process
Accessibility audit guide covering automated vs manual approaches
Full audit methodology page with 6-step pipeline and 5 scoring models
Three pillar hub pages: Accessibility, UX - Auditing, and Trust center
Enhanced sample report page with confidence scores and methodology links

February 24, 2026

CLI 0.4.0: Localhost & Private URL Auditing

Audit your local development server without deploying

Features

vertaa audit http://localhost:3000/ now works — CLI captures page HTML locally and sends it for static analysis
New /v1/analyze API endpoint for pre-captured HTML analysis
30+ checks across 6 categories (accessibility, semantic, IA, clarity, usability, conversion) via Cheerio-based DOM analyzer
Unavailable checks clearly listed (keyboard nav, visual hierarchy, heatmap require a live browser)

Fixes

MCP server .env loading order — environment variables were snapshotted at import time before .env files loaded; now uses lazy getters
MCP client duplication — 7 tool modules were bypassing central config; consolidated to single getClient()
CLI --all-workspaces monorepo audits returned false-green placeholder results; now fails explicitly until real implementation exists

February 22, 2026

CI Quality Gates Hardened

Stricter checks prevent regressions from reaching production

Enhancements

Removed || true bypasses from 3 CI gates (circular dependencies, unused packages, unused code detection)
Module boundary enforcement via dependency-cruiser with 4 architectural rules
Bypass detection CI gate prevents unannotated || true patterns in workflows "Simplicity Gate Status" is now a required status check for the main branch

Developer Platform: SDK Migration

MCP server now uses the published npm package

Enhancements

MCP server migrated from local SDK source to @vertaaux/sdk@1.0.0 npm package
All 10 MCP wrapper functions now delegate to typed SDK resources
SDK JavaScript client default base URL corrected from /v1 to /api/v1

API Key Provenance & Audit Trail

Know where every API key came from

Features

API keys now track origin (Dashboard, CLI Login, CI/CD Setup, Service, Test), IP address, and user agent
Colored origin badges displayed on the API Keys dashboard page
Telemetry events emitted on key creation and revocation

Security

API key lifecycle fully auditable with origin, IP, and timestamp metadata