Changelog

Phishing-resistant authentication, administrator control over workspace lifecycles, and friendlier APIs for integrators.

• Passkey-based 2FA

  Register multiple passkeys per account — platform biometrics or hardware security keys — coexisting with TOTP so users can migrate gradually.

• Workspace rename & delete

  Administrators can rename or permanently delete workspaces directly from settings, with guardrails and instant UI propagation.

• Human-readable asset identifiers

  APIs now accept intuitive identifiers like `USDC` or `USDT` via a new asset resolver, replacing internal asset IDs.

• Auto-accept workspace invitations

  Pending invitations tied to a signing-in user are accepted automatically on first login, removing a redundant approval step.

• Cross-tab session coordination

  A new session hook detects workspace mismatches across browser tabs, preventing accidental operations on the wrong workspace.

Six major additions focused on compliance, cost optimization, and operational control across the transaction lifecycle.

• KYT integration with Scorechain

  Know-Your-Transaction screening scores deposits and withdrawals, feeding risk directly into approval workflows.

• Tron resource savings

  Reduced energy and bandwidth consumption during sweeps and withdrawals on the TRON network without impacting reliability.

• Role-based alert & webhook policies

  Alerts and webhooks now recognize Signer and Proposer roles, enabling role-scoped delivery and team-specific notifications.

• Cancel transaction API

  A new endpoint lets authorized users abandon unconfirmed transactions and automatically releases any holds placed at creation.

• Solana rent recovery & gas station

  Empty SPL token accounts are closed after sweeps, recycling rent SOL to fund future transaction fees via a dedicated gas station.

• Webhook CIDR allowlist

  Workspace admins can restrict outbound webhook destinations to specific CIDR ranges, validated on create and update.

Bitcoin joins as a first-class asset, safer write operations through idempotency, and a full rebuild of the withdrawal approval flow.

• Native Bitcoin support

  Dedicated Bitcoin RPC handler in the sweeper, UTXO multi-input MPC signing, HD wallet generation, and RBF tracking for in-flight transactions.

• Idempotency keys

  A Redis-backed middleware guards critical write operations, preventing duplicate withdrawals from client timeouts and enabling safe retries.

• Withdrawal approvals redesign

  New approval UI with clearer status, richer response types with timestamps, and the ability for proposers to cancel their own requests.

• Alerts module

  The legacy Notifications module was refactored into a standalone Alerts module with dedicated routing and navigation.

• Editable workspace names & token refresh

  Workspaces can be renamed from settings, 2FA modals auto-verify, and a new Token Refresh Manager improves session resilience.

Stronger separation of duties, financial visibility across wallets, and hierarchical deterministic keys inside the MPC cluster.

• Proposer role

  A new permission tier lets operations teams submit withdrawal proposals without approval authority, enforcing separation of duties.

• Withdrawal categories

  Tag withdrawals with custom labels like Operational, Payroll, or Refunds. Filter by category and include tags in CSV exports.

• Expense analytics dashboard

  Real-time spending metrics with volume, count, averages, donut and bar charts, monthly trends, and a ranked transaction list.

• Balance query by asset symbol

  `GET /workspaces/{id}/balances?symbol=USDC` returns consolidated holdings across every supported network for easier reconciliation.

• Child key derivation in MPCIUM

  BIP32-style ECDSA and extended EdDSA derivation bring HD wallet structures to the distributed MPC cluster without centralizing trust.

Security and integrity improvements across wallet operations, new Telegram-powered alerts, and major upgrades to the multichain indexer and MPC cluster.

• Security hardening

  CSRF defenses, authentication and encryption improvements, stronger session management, and expanded brute-force mitigations.

• Telegram alerts

  A new alert feature delivers webhook logging, resend functionality, and statistical APIs — integrated directly with Telegram.

• Responsive UI & wallet sorting

  Responsive design improvements, withdrawal detail visibility in approvals, and the ability to sort wallets by account balance.

• Database-backed balances

  Balance storage moved from Consul to the database, with SLSA provenance attestations added to Docker builds for supply-chain trust.

• Indexer & MPCIUM upgrades

  Multichain Indexer v1.0.10 standardizes cross-chain compatibility. MPCIUM v0.3.3 ships Kubernetes support and fixes a distributed ECDH race.

TRON blockchain joins the platform, distributed deployments gain leader election, and a new secret store enables AWS KMS signing.

• TRON blockchain support

  Full TRON integration with signing, transaction handling, address validation, and MPC wallet address updates.

• High availability

  Leader election for distributed deployments, split scheduler and block scanner, graceful shutdown, and rescanner distributed mode.

• Secret store & AWS KMS signer

  Pluggable secret store supporting AWS, plus an AWS KMS signer integration for stronger key protection in production.

• Role-based access control

  RBAC on wallet assignments, network and asset management restricted to system admins, address risk checker, and TLS configuration.

• NATS JetStream messaging

  Queues migrated for stats, signing events, and pubsub consumers. Legacy pubsub is deprecated and JetStream is now mandatory.

• Distroless Docker images

  Multi-architecture distroless images, updated Redis and Consul configurations, and refactored MPC signing with longer timeouts.

Wallet-level auto-approval limits, a worker pool architecture for webhook processing, and new workspace administration endpoints.

• Auto-approval thresholds

  New wallet settings store per-wallet automatic approval thresholds, with expanded filtering and API coverage for withdrawals.

• Webhook worker pools

  A worker pool architecture boosts webhook throughput and scalability — no extra configuration needed to activate.

• Resend invitation API

  A new endpoint and service implementation let admins resend workspace invitations that haven't been accepted.

• Expanded wallet search

  Wallet APIs now support user and asset search, plus supplementary data in network response payloads.

A foundational release introducing programmatic withdrawals, sweep automation, service accounts, and a full policy approval workflow.

• Withdrawal APIs

  Endpoints for fetching withdrawals by ID and requesting new withdrawals, with webhook callbacks for deposit and withdrawal events.

• Sweeper automation

  Sweep automation wired into the address book, deduplication and retry for MPC signing, and experimental MPC sweeper integration.

• Service accounts

  Create, update, and delete endpoints for managing service accounts used by automated integrations.

• Policy workflows

  Complete policy creation, approval, and rejection flow with validation rules and an experimental approval workflow.

• Monad network & price monitoring

  Monad network configuration support, prefix matching for asset search, and CoinMarketCap price monitoring integration.