Security updates and enhancements

What is your Merge about?

Adds new features and resolves security issues

6.91.0 2023-Feb-08

Fixed

• Bundle tutorial thumbnail (#7742)
• fix(ai-summary): summary references "the text" (#7739)
• chore(deps): bump webpack, undici (#7737)
• chore(deps): bump ua-parser-js from 0.7.31 to 0.7.33 (#7683)
• chore(deps): bump deps to fix vulns (#7730)
• chore(deps): bump http-cache-semantics from 4.1.0 to 4.1.1 (#7708)
• fix: Profile name length should have the upper limit (#7425)

Added

• chore: Migrate MeetingTemplate to PG (Phase 1 of 3) (#7679)
• chore(checkout-flow): add checkout feature flag (#7709)

Changed

• chore: update team invite email (#7710)
• chore(ai-summary): update meeting summary url (#7705)

6.90.0 2023-February-1

Fixed

• Use stripe invoice.paid event instead of invoice.payment_succeeded (#7690)
• Renamed 'next activity' to 'current activity' in ended meeting badge (#7691)
• Line breaks in comments now work on Android (#7438)
• Added missing prompts in starfish retro template (#7660)
• Fixed prompt highlight color does not cover the full-height of the column (#7416)
• Delete empty groups (#7673)
• chore(metrics): Add isPatient0 property to sign_up events emitted by GA4 (#7680)
• fix: Meetings with invalid facilitator stage can now be opened and closed (#7675)

Changed

• ai-summary: limit access to AI summaries (#7658)
• Renamed "Timeline" to "History" (#7670)
• Cleanup private _legacy.graphql types (#7689)

Added

• ai-summary: add summary to end meeting notification (#7659)
• search: add search ability to meeting view (#7676)
• standups: Email Summaries (#7649)
• teams-limit: lock organization if limit the is exceeded for 30 days (#7606)
• teams-limit: Add snackbar to usage stats enabled notification (#7601)
• teams-limit: implement organization locked modal (#7645)

6.89.0 2023-January-18

Fixed

• fix: update non-anonymous Reflect description (#7651)
• fix(ai-summary): remove AI comment from comment count (#7648)
• fix(ai-summary): update Parabol AI picture (#7657)

Changed

• chore(metrics): emit sign_up events from GA4 client side (#7635)
• perf: moved global style creation outside of the render cycle (#7598)
• chore: sendToSentry if unable to create topic summary (#7665)

6.88.0 2023-January-12

Fixed

• emails landing in spam (#7618)
• select dropdown can't be scrolled with keyboard (#7426)
• server error undefined template (#7633)

Added

• standups/notifications: Generalized notification toasts + new toasts (#7603)
• notifications: Discussion Mention notifications (#7596)
• slack uses oatuh2 redirect (#7628)
• removed recurrence feature flag (#7636)

Changed

• teams-limit: usage stats warning (#7587)
• teams-limit: prevent new team creation (#7591)
• DX: Show a warning on switching branch with migrations (#7616)
• deps: bump fast-json-patch from 3.1.0 to 3.1.1 (#7614)
• deps: bump jsonwebtoken from 8.5.1 to 9.0.0 (#7613)
• ai-summary: improve prompt (#7646)
• ai-summary: track when the summaries are viewed (#7619)
• Add reviewer for PRs and assignee for issues on mention (#7620)
• Add client unit tests to CircleCi (#7626)

6.87.1 2023-January-05

Fixed

• Check-in: could not move, pin or unpin agenda items (#7622)

6.87.0 2023-January-03

Fixed

• Task highlight sticks when adding a due date (#7395)
• Add graphql-tools/executor dev dependency
• Broken summary pages (#7604)
• Emoji length check (#7578)
• Access custom template (#7600)
• Organization Image is on top of default (#7429)
• New meetings were locked with the history limit (#7581)
• Bump sanitize-svg version (#7584)
• Jira: fix Sprint Poker voting for projects with duplicate fields (#7607)
• notifications: Remove bad shortlinks + dead code (#7574)

Added

• Change tier to starter & team (#7505)
• Add current facilitator to facilitator candidates (#7548)
• ai-summary: auto update meeting summary (#7572)
• ai-summary: ai explainer (#7571)
• teams-limit: enable usage stats when teams limit exceeded (#7563)
• teams-limit: add upgrade CTA to the meeting sidebar if teams limit is exceeded (#7520)
• teams-limit: flag an organization when it has exceeded teams limit (#7517)
• teams-limit: add addFeatureFlagToOrg mutation and support teams limit feature flag (#7526)
• parabl-ubi: add parabol-ubi and host-st to public repo (#7588)
• recurrence: Added current meeting link to ended meeting badge in standups (#7542)
• standups: Standup response replied-to notification (#7547)

Changed

• Add data team as reviewers for analytics changes (#7595)
• Add comments to rootSchema (#7576)
• Fix missing public types on private schema (#7580)
• metrics: change upgrade CTA events to standard definitions (#7594)

6.86.1 2022-December-19

Fixed

• New meetings were locked with the history limit (#7599)
• Metrics: change upgrade CTA events to standard definitions

6.86.0 2022-December-14

Fixed

• DayPicker: Bumped daypicker to v8, fixing broken icons (#7521)
• DraftJS: PRevent virtual keyboard hiding after submitting comment (#7423)
• Demo: Canonical link (#7516)
• Standups: Update discussion preview when discussion isn't open (#7558)
• Archive Team: Deleting team prevents reuse of deleted team's name (#7397)

Added

• AI-Summary: Add topic summary to discussion thread (#7545)
• Notifications: Make notification publishing generic (#7540)
• Jira: Add logging for some error cases (#7561)
• AI-Summary: Whole meeting Summary (#7543)
• AI-Summary: Discussion summary in meeting summary (#7534)
• AI-Summary: Topic summary in meeting summary (#7494)
• PG: Added SSL Support (#7175)
• Metrics: Enable send_page_view on ReactGA initialization (#7551)
• Standups: Auto-open response discussion based on query param (#7546)
• Metrics: Always include email in traits for identify calls (#7523)
• Recurrence: Added standups time left indicator (#7538)

Changed

• Chore: Limit direct access to locked meetings (#7532)
• Chore: Limit meeting history on timeline (#7511)

6.85.0 2022-December-07

Added

• lint: add lintcheck and stylecheck (prettier) to github action (#7507)
• Sprint Poker: Hitting up and down arrow keys cycles through poker cards (#7363)
• Retrospective: add heard seen respected template (#7510)
• Metrics: Enable Google Analytics client side page_view tracking (#7356)
• Notifications: Remaining email notifications (#7527)
• Recurrence: added human readable recurring meeting indicator (#7533)

Fixed

• Poker number of stories in summary stats is one less than actual stories (#7241)
• Tasks: There should be no scroll bar on tasks header (#7492)

6.84.0 2022-November-30

Added

• Notifications: Improved notifications email (#7447)
• AI summary: Added AI summary feature flag (#7493)
• Template limits: Updated selected template for free teams #7460
• Template limits: Added additional template event tracking #7454
• Template limits: Prevent cloning templates #7452
• Template limits: Focus on newly created template #7442
• Template limits: Added limit exceeded and locking flags #7441
• Template limits: Implemented custom template upgrade feedback (#7427)
• Template limits: Added teams limit feature flag #7440
• Template limits: Implemented restriction on public templates #7405
• Template limits: Updated team & org page with limit info (#7415)
• Metrics: Removed HubSpot updates from the app #7382
• Migrated OAuth2 redirect to Cloudflare #7446
• Added "go to dashboard" and "sign in" button to "invitation link expired" screen #7153

Fixed

• DX Run all yarn clean commands, even if one fails #7461

Changed

• Deps: bump vm2 from 3.9.7 to 3.9.11 (#7233)
• Deps: bump loader-utils from 1.4.0 to 1.4.2 (#7428)

6.83.1 2022-November-23

Fixed

• XSS vulnerability in meeting templates (#7491)

6.83.0 2022-November-17

Fixed

• Update tier when leaving org (#7377)
• Added CorsOptions to email images (#7393)
• Typo in Earth 2.0 check-in question
• Send button is disabled in retro discussion on mobile (#7361)
• Snackbar messages are not centered during standups #7203
• Add delete confirmation button and waiting effect (#7403)
• Snack on jira auth error (#7432)

Changed

• Cleanup packages to support future bundled server build (#7400)

6.82.0 2022-November-09

Added

• metrics: disable Company properties update to HubSpot (#7366)
• Implement setIsFreeMeetingTemplate mutation (#7346)
• Add invoice explanation to comment (#7399)
• Add template limit feature flag (#7391)

Fixed

• Use MaterialUI SvgIcons instead of Font (#7154)
• Header name should be more general (#7394)

Changed

• CircleCI: split backup from deployment (#7389)