Alpha testing: all current functionality is free while VAT Engine is in active development

Product updates

Changelog

Track product releases, security hardening, compliance reporting work, and infrastructure changes across VAT Engine.

Archive page 2 of 14.

Latest release
3.6.112
Production Frontend Now Redirects www To The Canonical Apex Host
Releases tracked
162
Since January 2026
Logged changes
755
Across all categories
SecurityFeatureImprovementFixInfrastructure

Showing releases 13-24 of 162

3.6.100July 6, 2026

Shopify Shipping Rows Recover Fulfillment-Location Alias Matching

2 changes
Fix2 items
  • Shopify shipping sale rows and refund-shipping rows now retain bounded fulfillment-location alias evidence again, so source-profile attribution can still use warehouse aliases after split-dispatch line-item scoping
  • The fix stays fail-closed: if the order-wide fulfillment-location alias set cannot fit exhaustively, VAT Engine omits those shipping alias candidates instead of storing a partial subset that could mislead source resolution
3.6.99July 6, 2026

Shopify Fulfillment-Location Evidence Stops Blocking Imports

3 changes
Security3 items
  • Shopify assigned-location names from fulfillment routing are now normalized and tightly bounded before VAT Engine stores them in canonical evidence, so large or malicious location-name sets can no longer push Shopify imports past the 16 KiB evidence cap
  • When fulfillment-location alias evidence cannot fit exhaustively, VAT Engine now drops those source-resolution alias candidates instead of storing a partial subset that could mislead source attribution
  • Fulfillment-topology attachment now strips location-name fields before evidence can overflow canonical limits, keeping preview import and background sync available even on hostile or pathological routing data
3.6.98July 5, 2026

Search Crawler Surface Keeps Optional Metadata Out

3 changes
Improvement3 items
  • The public crawler surface now avoids optional sitemap freshness, priority, change-frequency, HTML ownership-verification, and IndexNow environment knobs, keeping vat-engine.app indexing controlled by canonical URLs, robots metadata, robots.txt, sitemap.xml, and DNS-based search-engine verification
  • The production Next.js runtime no longer exposes the optional IndexNow key file or authenticated submission endpoint, leaving search discovery to standard crawler-accessible files and metadata
  • The production Nginx and Next.js review confirmed that the canonical vat-engine.app frontend, API, and helper routes are aligned to the current hostnames, while private dashboard, auth, API, health, manifest, and helper routes now receive explicit noindex headers or stay excluded from the sitemap
3.6.97July 5, 2026

Primary Domain Migration To vat-engine.app

5 changes
Infrastructure1 item
  • Migrated the production, develop, API, Grafana, and workspace endpoint hostnames to the new vat-engine.app base domain across env defaults, reverse-proxy configs, Compose files, and OpenAPI examples
Improvement4 items
  • Updated the frontend SEO production hostname, canonical site URL fallback, public contact mailbox, and production analytics hostname so public metadata and analytics gating now match vat-engine.app
  • Rewrote the maintained README, environment examples, and operator notes to the new domain and recorded the migration in the public changelog and workspace memory notes
  • Cleaned the remaining old-domain strings out of local operator examples and stored workspace captures so the project no longer mixes historical production hostnames with the current vat-engine.app domains
  • Aligned the Grafana reverse-proxy certificate paths with the shared SAN certificate lineage so the documented Certbot commands match the vhosts copied to both production and develop hosts
3.6.96July 5, 2026

Shopify Internal Cleanup Clears Dead Diagnostic Paths

1 change
Infrastructure1 item
  • Removed a redundant Shopify product-tax mapper nil check, an unused import-job claim helper parameter, and a dead Shopify Admin GraphQL constant so the current G22 code path stays clean under vet, gopls, and lint without changing runtime behavior
3.6.95July 5, 2026

Shopify Special-Product Guardrails Become End-To-End

4 changes
Fix1 item
  • Product-tax-mapping writes now reject invalid special-product combinations consistently, so goods-only excise/new-transport/assembly flags cannot land on service mappings and gift-card mappings can no longer be combined with those goods-only flags
Improvement3 items
  • The Shopify order preview API now returns the full special-product candidate-signal set used by the mapper, including Shopify gift-card, taxable, zero-rate tax-line, and captured tax-line-count evidence
  • The imported-event review queue now shows excise, new-means-of-transport, and assembly/install markers directly in the queue and review dialog, so operators can see special-product context during manual classification
  • Deployments that already have product tax mappings should run the documented preflight queries before migration 000046, because the new PostgreSQL check constraints validate existing rows during ALTER TABLE
3.6.94July 5, 2026

Shopify Special Products Stop Falling Through To Default VAT Logic

3 changes
Feature1 item
  • Shopify preview, controlled import, and background sync now recognize Shopify gift-card and line-taxability signals before final VAT classification, so special products no longer default to ordinary taxable treatment when Shopify already exposes a safer signal
Improvement2 items
  • Zero-VAT gift cards now stay excluded automatically, while taxed gift cards remain reviewable instead of blending into normal goods classification
  • Zero-rate and exempt product mappings now require matching Shopify taxability evidence, and the order preview shows the new special-product diagnostics before import
3.6.93July 4, 2026

Shopify Imported-Goods Evidence Gets Its First IOSS Slice

4 changes
Feature1 item
  • Shopify preview, controlled import, and background sync now flag imported-goods candidates from non-EU dispatch plus import-duty or additional-fee signals, carry import origin country, and keep missing IOSS evidence in review instead of silently mixing imported sales into the wrong VAT surface
Improvement3 items
  • VAT Engine now derives consignment intrinsic value conservatively from physical-goods lines only when Shopify exposes one complete non-EU dispatch segment, excluding shipping, duties, and extra fees from that value
  • The Shopify preview and imported-event review queue now show imported-goods diagnostics, duty summaries, additional-fee summaries, and consignment-value context before import or manual review
  • Regression coverage now locks in two conservative boundaries: EU-dispatch rows with only duty or import-fee signals stay as candidate diagnostics without imported-goods promotion, and imported-goods refund-line corrections do not require a sale-only consignment value
3.6.92July 4, 2026

Shopify Shipping Classification Now Checks Real Tax Amounts

3 changes
Fix1 item
  • Shopify shipping rows no longer auto-classify as standard-rated from the reported rate alone when the actual shipping VAT amount is inconsistent with that rate
Improvement2 items
  • VAT Engine now requires both the reported shipping VAT rate and the actual shipping VAT amount to match the destination-country standard rate before it classifies standard shipping automatically
  • Small one-cent rounding differences on shipping tax still classify correctly, while amount-mismatched shipping stays reviewable with an explicit diagnostic
3.6.91July 4, 2026

Shopify Split Dispatch Events Keep Their Own Warehouse Aliases

2 changes
Fix1 item
  • Shopify multi-origin split events now keep fulfillment-location alias evidence scoped to their own dispatch segment, so a DE split row no longer inherits NL warehouse aliases during source attribution
Improvement1 item
  • VAT Engine now preserves dispatch-country event splitting and fulfillment-location alias attribution together, preventing order-wide warehouse alias leakage across split canonical events
3.6.90July 4, 2026

Shopify Marketplace Liability Stops Being Implicit

3 changes
Feature1 item
  • Shopify preview, controlled import, and background sync now classify marketplace deemed-supplier liability from Shopify tax-line liability plus channel signals instead of leaving the marketplace field as a passive source default
Improvement2 items
  • Refund lines, refunded shipping rows, order adjustments, and cancellation residuals now retain the original Shopify tax-line liability evidence needed for later marketplace classification
  • The Shopify preview now shows a dedicated marketplace-liability diagnostic per normalized event, and the imported-event review queue now lets operators correct marketplace liability explicitly when Shopify evidence is incomplete or contradictory
3.6.89July 3, 2026

Shopify Fulfillment Routing Becomes Multi-Origin Aware

3 changes
Feature1 item
  • Shopify preview, controlled import, background sync, and bulk-history parsing now read fulfillment-order routing so physical lines can split into multiple VAT Engine events by dispatch-country group when Shopify reports multi-origin fulfillment
Improvement2 items
  • Fulfillment-location aliases now participate in Shopify source attribution when the order exposes fulfillment-order routing, and incomplete routing stays reviewable instead of falling back to a guessed warehouse origin
  • VAT Engine now requests the minimal extra Shopify fulfillment-order read scopes needed for routing (`read_merchant_managed_fulfillment_orders` and `read_third_party_fulfillment_orders`) while keeping the same protected-customer-data boundary