The Domain Diagnose Overview modal previously broke when domain names exceeded 60 characters. This has been fixed with, Proper truncation using ellipses (…).

Error handling has been refined to support a customized 403 error page. Any request that triggers a 403 response is now redirected to a designated “Access Denied” page.

A new puzzle slider verification has been implemented for flows. This interactive, drag-to-verify captcha adds an extra layer of protection against automated bots and fake account registrations.

• Users must complete a simple puzzle before gaining access.

• The feature can be enabled or disabled from the console alongside other captcha options.

• Built-in logging ensures visibility into verification attempts: This upgrade strengthens platform security while keeping the verification process simple and intuitive.

Managing shadow domain certificates is now easier than ever. A new search bar has been added to the Certificates section of the console, allowing users to quickly locate certificates for primary or shadow domains without scrolling through long lists.

• Always-visible search bar (if more than 5 shadow domain certificates exist).

• Supports exact and partial matches, case-insensitive search, and dynamic filtering.

With this fix, 304 responses now correctly reflect updated cache status indicators such as REFRESH or EXPIRED, ensuring proper content delivery and cache validation.

A major upgrade to domain quota logic now groups the root domain, its www version, and wildcard domain into a single domain count. This helps streamline billing, resource allocation, and avoids double-counting, offering a more accurate and fair usage calculation for customers.

We’ve updated our log system to display the public IP addresses more accurately in relevant logs. This change improves traceability and debugging, especially for external traffic analysis and diagnostics.

Certificate validation logic has been enhanced to intelligently handle subdomain configurations. This improvement increases compatibility and reduces manual intervention for subdomain SSL provisioning.

The request banning mechanism has been fine-tuned. With this release, the system now reliably enforces rate limits and IP bans after the specified number of matching requests, while balancing accuracy to avoid false positives.

Traffic usage calculations now account for expected parsing loss, ensuring that alerts are consistent between what users see in the UI and what’s used for billing. This change brings clarity and accuracy across all account types and plans.

Improvement in HTTP 304 responses now correctly showing as HIT in cache status. This has been improved so that these responses are correctly recognized and cached, aligning with standard behavior.

Enhancement in domains/IPs parsing, This has now been addressed, ensuring smoother URL resolution and fewer configuration issues.

We improved an scenario where static content with a specific header was bypassing the cache. With this fix, the cache logic now respects content type and headers properly, improving CDN performance for static assets.

We’ve rolled out a major enhancement that allows users to manage caching behavior using standard HTTPCache-Control headers. This update introduces an intuitive toggle and dropdown interface where users can inject headers like public, private, max-age, s-maxage, and proxy-revalidate directly from the UI.

Additionally, the older Bypass Cookie Rules have been deprecated, bringing our caching strategy closer to modern best practices. This change ensures better performance, more control, and clear alignment with user-defined caching policies.

To strengthen security and prevent misconfigurations, We have improved IP type validation and multiple types of IP are now blocked from being used in whitelisting and IP restriction settings across the platform. This update ensures that Invalid IP aren’t mistakenly applied.

A new red text indicator and always-visible alert have been added to the Traffic Statistics Widget to signal bandwidth overrun conditions more clearly. These updates ensure teams are promptly notified when their traffic exceeds assigned quotas.

A critical issue where disabled domains were still allowed to initiate SSL certificate generation has been addressed. This behavior previously caused unnecessary task retries and exceeded rate limits in the certificate issuance.With this fix:

• The certificate generation button is now disabled for disabled domains.

• Attempts to import or create domains with auto-certificate generation enabled while in a disabled state are now blocked.

• Clear error messages guide users and API consumers when improper configurations are attempted.

To prevent SSL certificate generation issues caused by protection rules , we’ve updated the priority of our certificate issuance process. Now, certificate validation requests are allowed to pass through even when security protections are active, ensuring smoother certificate provisioning without compromising the existing protection mechanisms.

We’ve optimized the sync mechanism between our monitoring system and the CDN gateway by enabling instant invalidation of outdated IP cache entries. Previously, whitelisted IPs took up to 10 minutes to take effect due to caching delays. With this release, updates to the whitelist now reflect immediately across all supported environments, reducing operational delays and improving response time.

A future-proof and scalable microservice architecture has been successfully designed and deployed. This marks a significant step forward in improving platform resilience, scalability, and readiness for upcoming enterprise-grade deployments.

We’ve also fine-tuned the logic to ensure that content is never cached if the “All Cookie Bypass” option is enabled. Any relevant UI elements that might conflict with the bypass rule will be visibly disabled or greyed out to prevent confusion.

We Enhanced a logic where an IP’s removal time kept extending. Now, if an IP is marked for removal, it will be removed during the next scheduled maintenance task.

We’ve refined our caching logic so that if you enable a Bypass rule, caching will be disabled—no matter what other settings are in place. This eliminates confusion and ensures the behavior you intend (no caching) always comes first.

We’ve enhanced cookies and cache systems, with robust measures. With this fix, user sessions are properly isolated, ensuring that everyone sees only their own account details. This improvement safeguards user privacy and enhances trust in the platform’s reliability.

When Geo Location Restriction restrictions are enabled, you’ll now see a clear warning that SSL certificate generation may not proceed until those restrictions are disabled. By providing an upfront notification, we help you avoid confusion and ensure that you adjust security settings before attempting to secure your domains with new certificates.

We’ve introduced a domain sorting feature that places newly added or recently updated domains at the top of the list. You can now quickly identify the latest changes without sifting through older entries. This feature makes it easier for both support teams and users to find and manage domains, improving overall workflow and clarity.

We’ve refined the process for handling shadow domain deletions to prevent accidental removals. The new workflow guides users by restricting certain actions until the correct steps are followed. This change helps maintain domain integrity and reduces the risk of unintended domain deletions, offering greater peace of mind when managing domain configurations.

We’ve introduced optimizations to reduce unnecessary TCP retransmissions, lowering network overhead and improving response times. Additionally, a new filtering mechanism identifies and thwarts suspicious SYN packets before they can overwhelm the system. These enhancements work together behind the scenes to keep your experience smooth and secure, even under heavy network conditions.

To ensure that SSL certificate generation proceeds smoothly, we’ve added a new validation check when using DNS-based certificate methods. This pre-validation step confirms the presence of specific DNS records, helping prevent failed certificate challenges and saving you time. With this enhancement, certificate provisioning is more reliable and transparent, making secure connectivity simpler than ever.

We’ve addressed an issue where the lock icon for newly created domains wasn’t turning green even after generating a valid certificate for wildcard shadow domains. With this fix, the lock icon will now correctly display as green when certificates are in place, improving visual confirmation of secure connections.

We fixed an issue where the JS Shield was repeatedly restarting when a specific configuration involving custom request headers was applied. This fix ensures smooth operation when using both JS Shield and Custom Header features simultaneously without conflicts.

An irregular issue where domains is randomly accessible over HTTPS even after SSL/TLS certificates were removed from the console has been resolved. Now, once a certificate is removed, accessing the domain via HTTPS will result in a connection error, ensuring that no encrypted traffic is served without a valid certificate. This enhances security and prevents unauthorized access.

Additional fixes and enhancements have been made to improve the handling of wildcard shadow domain certificates, ensuring more reliable and streamlined management.

We’ve added a Captcha Challenge as part of our security shield features. This enhancement ensures that users are presented with a captcha page before proceeding, which adds an additional layer of security. The captcha functionality has been integrated into the existing system plugin, making it seamless for customers and CS teams to activate this feature when required.

We’ve optimized proxy caching for wildcard domains by introducing the Cache Reusable feature. This feature helps reduce redundant cache entries for each prefix domain, improving cache efficiency. Both clients and the CS team can now enable or disable this feature as needed within the console. Disabling this feature restores the original cache configuration, ensuring flexibility based on the requirements.

• Certificates for internal domains now support automatic renewal, ensuring that SSL/TLS certificates are kept up to date without manual intervention. This includes domains across different versions of our system. As we continue monitoring this process, we aim to extend this feature to more internal domains for smoother, automated certificate management.

• We’ve added a new feature that displays the last deployment date and time within the console. This allows users to track the most recent updates for better management of their environments.

• A new merge function has been added for managing IP whitelists and blacklists. Previously, batch edits would overwrite the existing list, but with this enhancement, users can now merge new entries with the current IP lists. This prevents accidental overwrites and ensures the integrity of historical records.

• Users can now generate or renew certificates for multiple domains simultaneously, streamlining the management of SSL certificates for large infrastructure setups.