v0.2.3 - Changelog

Highlights

Hardened login redirects and internal guards. Safe redirect helpers now protect GitHub login/callback flows, shared auth pages, and several backend internal checks from unsafe redirect targets or loose internal access.
Fixed admin internal proxy authentication. Admin AI translation, pricing configuration, health checks, CDN upload, notify proxy, and related backend calls now share a more consistent public proxy key and inbound auth path.
Added project-controlled guest login. Admins can enable or disable guest access per project, while the public auth entry, landing CTA, guest demo, and AI session logic respect the project-level setting.
Added a new Astro public web app. The new apps/web-astro includes public pages, pricing, login, blog, case studies, careers, integrations, Chinese routes, static assets, Wrangler config, and deployment documentation updates, replacing the previous apps/web surface.
Improved Nuxt SEO metadata. New SEO utilities and the shared usePageSeo composable now cover home, blog, docs, pricing, guest demo, privacy, terms, refund, and content policy pages with stronger titles, descriptions, canonical URLs, Open Graph/Twitter metadata, and structured page data.

Login and callback flows are safer and more predictable when redirect parameters are malformed or untrusted.
Admin translation, upload, and pricing operations are less likely to fail because of internal proxy authentication mismatches.
Site owners can offer controlled demos through guest login without creating full accounts for every evaluator.
Public pages, docs, blog posts, and legal pages now expose cleaner metadata for search engines and social previews.

This release summarizes commits from 756a68c3 through d41323ad; the earlier 0.2.2 bonus credits release remains separate.