Version 2.8.0 brings new features and improvements, and updates to the Stripe integration:
- Security: Strict Content Security Policy headers (optional)
- Stripe: Added support for Basil (v18)
- Super Admin improvements
- LLMs: Cursor improvements
- Staying up to date: All dependencies have been updated to their latest versions.
Content Security Policy (CSP)
We've added a way to define stricter Content Security Policy headers for your site. If enabled (it is not enabled by default), the application will send strict CSP headers that will increase your application's overall security by protecting against a variety of attacks.
It's as easy as defining the following environment variable:
Enabling CSP will require more adjustments to your code, so it's not enabled by default.
Stripe Basil (v18)
We've updated the Stripe integration to use Stripe Basil's release.
This Stripe release came with a few breaking changes, so we've updated the Stripe integration to support the new version.
The Makerkit changes are retro-compatible, so you can continue to use the old version of the Stripe integration.
Super Admin improvements
Super Admins can now:
- Create Users straight from the Super Admin dashboard.
- Reset user passwords straight from the Super Admin dashboard.
These changes are meant to help your non-technical team members that don't have access to the Supabase Dashboard.
Cursor Improvements
The Cursor rules have been enriched with security rules and other improvements that should help the LLMs write better code and help you build your SaaS faster and more securely.
Dependency Updates
All dependencies have been updated to their latest versions.