4 Commits

Author	SHA1	Message	Date
wlt	7317fbe012	feat: add AI Digital Employee agent orchestrator with pipeline tracking ... - New AgentPipeline model with JSONB pipeline_data for stages/leads/summary - AgentOrchestrator service chains DiscoveryService search→analyze→outreach→auto-save - 3 new API endpoints: POST /agent/start, GET /agent/pipelines, GET /agent/{id} - Full Agent dashboard Vue component with stats, pipeline grid, leads table, outreach preview - Sidebar redesigned with AI Agent as primary entry point - Updated PROGRESS.md, AGENTS.md, DATABASE_SCHEMA.md with latest state	2026-06-16 18:30:56 +08:00
TradeMate Dev	d8780a716b	feat: user frontend i18n (zh-CN/en) ... - vue-i18n@9 with locale files for zh-CN and en - Language switcher in topbar - Navigation, breadcrumb, credits page translated - Discovery page i18n keys prepared - Language persisted in localStorage - Build verified	2026-06-12 11:21:19 +08:00
TradeMate Dev	13e3992d4c	fix: security and code quality improvements ... Security fixes: - Add file upload size limits (10MB) for customer and product imports - Add XLSX file validation with row limits and magic byte checking - Implement password validation (min 6 chars) in registration - Add rate limiting for guest login (5 per IP per 15 minutes) - Sanitize error messages to prevent information leakage - Fix XSS vulnerability by removing unsafe v-html usage - Enforce WhatsApp webhook signature verification - Add SSRF protection with URL validation and IP blocking - Fix marketing endpoints to use proper authentication Code quality improvements: - Create shared utility functions for UUID validation and string sanitization - Remove duplicate UUID validation code from admin modules - Remove dead code (pass statement in translation.py) - Fix aliyun SDK import compatibility	2026-06-11 17:54:07 +08:00
TradeMate Dev	52dba37f22	Add admin-frontend and user-frontend standalone projects, certification/invoice/discovery features, fix auth header and theme consistency	2026-05-22 18:35:30 +08:00