v0.1.0

First public release. Phase 2 of the original roadmap is complete: white-label customer portal, ServiceNow + Jira PSA integrations, HIPAA + SOC 2 + CMMC compliance evidence, downloadable audit packages, scheduled compliance, public policy templates marketplace, and a plugin SDK.

Highlights

• White-label customer portal with subdomain (<slug>.<base>) and custom domain (portal.acme.com) routing, email-based portal user invites, and per-customer branding (logo, colors, support contacts).
• AI anomaly auto-routing to ServiceNow / Jira / HaloPSA / Autotask / ConnectWise + HMAC-signed webhooks for anomaly.detected.
• Compliance evidence collection for HIPAA Security Rule, SOC 2 Trust Services Criteria, and CMMC Level 2 — 8 evaluators across 20 seeded controls. Downloadable as a ZIP per run (PDF cover + manifest + per-control snapshots), runnable on a schedule via pg_cron.
• Public marketplace for policy templates and AI-workflow plugins, with one-click install via SECURITY DEFINER RPCs.
• All Lovable.dev coupling removed — the AI gateway is now any OpenAI-compatible endpoint.

Operator actions required for upgrade

If you are deploying this for the first time:

1. Set AI_GATEWAY_API_KEY and AI_GATEWAY_URL Supabase edge function secrets.
2. Run ./scripts/deploy-aegis.sh (or .ps1) — applies all migrations and deploys all edge functions.
3. Paste scripts/post-deploy.sql into the Supabase SQL editor (after editing the placeholder URL + service-role key) to register the compliance cron job.
4. For the customer portal: configure wildcard DNS + SSL on your base host and set VITE_PORTAL_BASE_HOST.

Full step-by-step in HANDOFF.md.

Full changelog

See CHANGELOG.md.