User Guide changelog

Portal-facing improvements, grouped by release date (day, month, year). The delivery plan and milestones live in ROADMAP.md.

Maintenance: Keep roughly the last 14 days of dated sections here—remove older ## sections when you add new ones so the User Guide tab stays readable. The portal loads this file from docs/guides/USER_GUIDE_CHANGELOG.md at runtime (monorepo layout). Agent rule: .cursor/rules/project/user-guide-whats-new.mdc (when to add bullets, trim policy).

12 May 2026

• Onboarding assistant — The bottom-right help chat on home, product, and guide now loads a Boot and early Analyse playbook together with the portal guide on your first message, so answers can follow the same stages as the Getting started wizard, Docs, and project Chat.

• Account — self-serve onboarding quality — The trial path from /signup through your first project and a completed Getting started flow is covered by the portal integration test suite alongside other release checks, which reduces the risk of regressions during sign-up.

11 May 2026

• Projects — Git migration (inbound / outbound) — Migrate repository opens with Inbound (mirror or single branch → migration branch) vs Outbound (probe → Continue to transfer from hosted repo → customer remote; full mirror uses force so an initial customer branch/README can be replaced). PATs stay server-side.

• User Guide — stay in the app when signed in — /guide opens inside the normal dashboard shell (sidebar, top bar, avatar) when you are logged in; only anonymous readers see the slim marketing-style header.

• Settings — MCP examples for all IDEs — Boot Camp MCP on Settings → AI now shows copy-ready examples for Cursor (.cursor/mcp.json), VS Code (.vscode/mcp.json with servers / type: http), and Claude Code (mcpServers in .claude/settings.json), matching what repo sync commits per portal projectId.

• Developers — VS Code MCP OAuth client ID — The User Guide Developers tab now states explicitly: for VS Code manual OAuth / registration, use Client ID sfa-bootcamp-public with an empty client secret; sfa-bootcamp-client must not be typed in that form (it led to invalid_client on the authorize URL). The tab also documents where VS Code stores mcp.json (e.g. %APPDATA%\Code\User\mcp.json on Windows) versus Cursor’s .cursor/mcp.json.

• Projects — overview — The project Overview tab no longer repeats the Chat, Tasks, Docs, Agents, and DevOps shortcuts as a second row of cards; use the tabs at the top of the project for those sections. Boot discovery and setup cards stay on Overview when they apply.

• Projects — clone URL / default branch — After Getting started provisions a new Azure Repos repo, init-project sets the repository default branch to develop. A plain git clone <url> then checks out develop, consistent with Boot Camp’s integration branch. Older repos keep whatever default branch they already had until you change it in Azure DevOps.

• Tasks — Boot discovery copy — Getting started now creates the Complete Boot stage discovery task (stage, not phase) with a clearer description of Boot discovery deliverables and the Boot → Analyse gate.

• Settings — reliability — /settings is covered by session middleware, font preferences are validated so corrupt values cannot break the page, and after re-login you return to the page you opened (not always the dashboard).

• Chat — task elaboration opening context — The first message in Elaboration chats for a task shows only the task title and description. Document linking and screenshots are handled by the assistant using the same tools as before (no tool names shown to readers).

10 May 2026

• Projects — Edit → Implementation merge — Choose platform PR flow (default), portal merge only, or portal merge + optional develop→main review PR per project so agent merges match whether you rely on Azure DevOps PRs or portal-owned merges. Bitbucket-hosted git follows the same Create/edit project and credential flows documented under Projects and User Guide → Developers.

• Chat — PDF diagrams and scans — Uploaded PDFs still send extracted text first. Pages with embedded images get selective PNG derivatives for the vision model; scan-only PDFs (no extractable text) automatically rasterize the first pages up to a safety cap. Operators can tune caps via optional env vars in ENV_SETUP.md. To cite an uploaded file from product documentation or bugs paths in the repo, link assets/portal-uploads/… in repo-relative Markdown; reuse uploads via Chat / Tasks pickers instead of duplicating files.

• Projects — migration wizard on create — On Create project, after you select a customer, you can check Open migration wizard after create to mirror a legacy repository into the new Azure DevOps repo once it exists (in addition to the existing flow when you already enter a source repository URL). Start mirror stays disabled until the project has a destination git URL; complete Getting started or DevOps setup first if needed.

• Projects — token widget full report link — View full report on the project Token Usage widget opens Cost tracking (/costs) with the current project pre-selected in the filter (no broken /projects/…/costs path).

• Rules — Company tab for tenant architects — Company rules lists projects by organization, edits .cursor/rules/project/ per clone, and adds Push Boot Camp template (after sync-rules) scoped to the selected project’s company — same push API as Push Rules, with per-project access checks for non–platform-admin users. GET/POST/PATCH/DELETE /api/projects/…/rules/project now authorize like project edit (ADMIN always; ARCHITECT with tenant/project visibility).

• Navigation — Customers hub is platform ADMIN only — The sidebar Customers entry and + New Customer appear only for ADMIN. Architects, developers, and business owners open tenant setup from Settings → Profile → Organization, which links to their workspace record (/customers/…). POST /api/customers (create tenant) is ADMIN-only; architects still GET their scoped customer list for project flows. /customers/new redirects non-admin users to Dashboard. BUSINESS_OWNER gains Settings in the sidebar and mobile nav.

• Account — User Settings in tabs — /settings uses Profile, Display, and AI. Profile includes Organization (tenant workspace links), notifications, and billing where applicable; platform admins keep Customers in the sidebar for CRM. ?tab=profile|appearance|ai deep-links tabs; ?billing=upgraded stays on Profile.

• Docs — stage vs phase — Public User Guide and in-app help prefer lifecycle stage (Boot → Maintain) when talking about the project; phase is reserved for internal spec/ADR slices inside engineering documents. Landing, demo, tutorial, and help copy updated for consistency.

• Projects — lifecycle stage — The Projects grid and each project header show the current methodology stage (Boot → Analyse → Develop → Launch → Maintain). Edit Project (admins and architects) includes a Lifecycle section to change the stage; platform admins may use Override Boot → Analyse gate when required Boot Discovery fields are incomplete. New non-platform projects start in Boot; demo/tutorial projects stay in Develop.

• Tenancy — architect accounts — Users with the Architect role now only see customers and projects they belong to (same company/workspace), including the Create project customer list, dashboard, cost tracking, tasks, activities, rules project picker, and MCP single-project fallback. Platform-wide visibility remains for Admin only. If your team previously relied on Architect for cross-customer support, assign Admin for those accounts.

• Account — self-serve signup — New tenants created via /signup get a Business owner as the first user (subscription/account admin). They can complete Getting started, manage billing and BYOK for their customer, and run init-project when they are project admin on the first project the wizard creates.

• Projects — Agents — Completed executor runs may show Anthropic session (UUID) when Claude Code JSONL on the worker contains session_id / sessionId, so you can match rows in Anthropic Usage & Cost to a specific agent run.

• Cost Tracking — Anthropic invoice reconciliation (admins) — On Cost Tracking, platform admins can sync a persisted Anthropic cost_report snapshot (org Usage & Cost API), refresh the comparison against portal cost_tracking estimates, and see variance in USD and percent. An optional Anthropic workspace id narrows vendor totals per tenant. Daily vendor buckets allow up to 31 days; longer dashboard ranges still show summary charts for the full period, while reconciliation uses the clamped window (called out in the UI). Advanced users can still fetch live raw JSON without the database.

9 May 2026

• Projects — token cost counter widget — The project dashboard now displays a Token Cost Counter widget showing AI token usage and estimated spend across Portal chat, Agent runs, and BYOK (customer-provided API keys). Toggle between 7-day, 30-day (default), and 90-day periods to track consumption trends. Admins and architects can drill down to a detailed cost report.

• Marketing — home navigation — The public home header uses a single Product & pricing link to /product (no separate Pricing item) and adds Documentation → /guide. The /product header and the public shell (/ read-only routes such as /guide) use the same Product & pricing + Documentation pattern for parity.

• Integrations — onboarding agent export — Operators can set ONBOARDING_GUIDE_AGENT_SECRET and call GET /api/guide/for-agents with Authorization: Bearer to fetch ONBOARDING_AGENT.md (same file as in the repo) — full context on /getting-started, Admins-tab gating, and Git host steps without relying on a logged-in browser.

• Portal — onboarding assistant widget — When ANTHROPIC_ONBOARDING_AGENT_ID and ANTHROPIC_ONBOARDING_ENVIRONMENT_ID are set (with ANTHROPIC_API_KEY), a bottom-right “getting started” chat bubble appears on home, /product, and /guide; the Ask Boot Camp presales bubble is bottom-left there. Uses @anthropic-ai/sdk with client.beta.sessions (upgrade to 0.95+ if you see session create errors). Assistant replies render as Markdown (lists, links, emphasis) in the bubble. The first session turn injects ONBOARDING_AGENT.md from disk (same bytes as GET /api/guide/for-agents for external automation; no portal self-HTTP). Set ONBOARDING_GUIDE_AGENT_SECRET so off-portal callers can use GET /api/guide/for-agents — see ONBOARDING_AGENT.md.

• User Guide — Getting started wizard — The Users tab documents the /getting-started four-step flow and a short GitHub / Bitbucket checklist (HTTPS URL, PAT or app password, Test connection). Dashboard help links to the anchor #getting-started-onboarding.

• User Guide — public /guide — The User Guide is available without signing in at /guide (minimal header with Product & pricing, Documentation, and Sign in / Dashboard). Same tabs and content as before; anonymous visitors see a short Public guide notice and sign-in links for onboarding and admin quick steps — useful for external documentation agents and prospects.

• Marketing — one demo block, one pricing page — Home and /product share the same See Boot Camp in action section (video embed when NEXT_PUBLIC_GTM_DEMO_VIDEO_URL is set, otherwise a Video placeholder plus Launch interactive demo). Subscription tiers (trial / seats / tokens) live only under /product#pricing; the home page Engagement models block links there. Public assistance is a floating chat bubble on / and /product only (fixed built-in widget id; no env, no operator “create widget” flow).

• Billing — trial ending soon — During the last four days of a 14-day trial, a notification appears at the top of the dashboard (all roles notice it; Business owners, architects, and admins get Starter / Team / Business checkout buttons). Settings → Billing & usage shows the same upgrade actions and a confirmation when you return from Stripe (?billing=upgraded). POST /api/internal/cron/trial-data-retention (header x-cron-secret, same as other crons) schedules 30-day retention after trial lapse or subscription cancel, then purges due tenants.

• Getting started — embedded onboarding wizard — After /signup, /getting-started is now a four-step flow on one page: create your first project (type and optional Git host URL), connect a PAT when you use Azure DevOps / GitHub / Bitbucket (with Test connection for GitHub and Bitbucket), initialize the workspace (runs init-project and shows live status when an execution server is connected), then capture company values for Boot discovery and open a starter Task Center item. Progress still persists on the customer record.

8 May 2026

• Account — self-service /signup and getting started — New tenants can pick Starter / Team / Business or a 14-day trial, accept terms, and complete Stripe Checkout (or sign in immediately after trial). Use /getting-started for a short four-step wizard with progress saved on the customer record. Settings → Billing & usage shows plan limits and opens the Stripe Customer Portal when a billing profile exists. Operators can hit /admin/billing for a read-only overview.

• Marketing — landing and /product — Home and Product copy now cite 500+ methodology rules in the headline stats and refreshed greenfield, migration, architecture, and delivery archetypes so first-time readers see breadth before they sign up.

• Chat — streamed replies stay single-copy — Tab switches, viewport resizes, and route revisits no longer stack duplicate streaming paragraphs in the transcript — streamed deltas and hydrated history cannot double-apply anymore. Full write-up — BUG — duplicate streaming text on remount.

• Chat — lighter “generating” feedback — The extra Assistant is generating a reply banner above the message list is gone; status stays beside the composer you already watched.

• Chat — clearer document tray — The tray now signals documents cited by bare filename or link separately from documents the agent opened with read tooling so you see “mentioned” versus “actually read.” Markdown previews follow documentation cross-links without dead relative URLs, and citations in prose stay linked into the tray.

• Projects — Boot discovery intake (/projects/…/boot-discovery) — Complete the Boot wizard (company values, goals, metrics, and notes) directly in the portal; answers persist via the lifecycle APIs used by gated stage moves and planning-chat context injection.

• Projects — GitHub repositories — Create/edit project exposes GitHub alongside Azure DevOps and Bitbucket: supply HTTPS repo URL plus the customer PAT, run the credential Verify handshake, then onboard with product code cloning into src/ while Boot Camp scaffolding remains at repo root once devops onboarding runs.

• Operations — tenant-scoped Claude usage isolation (non-BYOK customers) — The portal can optionally provision isolated vendor workspaces, store organisation-held API keys with the same encryption posture as BYOK, and tighten dispatch checks so malformed SFA-managed keys never silently downgrade to pooled platform keys — improving per-customer cost reconciliation. Operators configure provisioning per ENV_SETUP; end-user tooling on the Customer record expands in subsequent phases documented there.

• Customers — Azure DevOps Re-provision / Repair runs Anthropic workspace ensure — After successful ADO and demo-repo alignment, the repair flow now invokes the same idempotent Anthropic workspace provisioning used elsewhere for admins: repeat clicks succeed when a workspace is already linked, BYOK tenants are skipped, missing portal administrator API setup skips cleanly without undoing DevOps repair, and the success banner summarizes the Anthropic outcome.

5 May 2026

• Chat — Documents you discuss now appear in a side panel on desktop — Open any project chat on a desktop screen (≥ 1024 px wide) and the right-hand pane lists every document the conversation has touched: files the agent reads or edits, documents returned by a search_docs query, and any internal doc link or path the agent renders in its reply. Click a row to preview the document inline, side-by-side with the conversation, so you can keep the chat and the doc visible together. The split is a draggable gutter — your preferred width is remembered per browser.

• Chat — Mobile keeps the existing layout, with a "Docs in chat" chip in the composer — Below the desktop breakpoint the chat is single-column as before. A new Docs in chat chip in the composer action bar shows how many documents the conversation references and opens the same list as a sheet when you need it.

• Chat — Pin a doc to keep it in sync with agent edits (desktop ≥ 1024 px) — Hover any row in the Documents in this chat tray (or open the document in preview first) and use the Pin icon. The pinned doc gets a violet Pinned: <path> header with an Unpin action, and it now refreshes itself whenever the chat agent successfully edits or writes that file — usually within a second. A subtle Updated just now indicator fades in on each refresh so you can see when the pane caught up.

• Chat — Doc deep-links open pinned, not just preview — When you click Chat about this on a document (or share a chat link with ?context=doc:<path>), the right pane now opens that doc in pinned mode automatically, so any edits the agent makes during the conversation flow into the pane in real time.

• Chat — Pin and Unpin are available from two places — On a tray row (icon-only, hover-revealed) and in the preview-mode header (both icon + tooltip). Unpin always returns to the regular preview of the same doc — the tray entry is preserved.

4 May 2026

• Admin — Customers BYOK — The Customers grid shows BYOK / No BYOK beside provisioning status. Agent dispatch no longer falls back to the platform Anthropic key when BYOK is enabled but the stored key cannot be decrypted (align portal and execution server BYOK_ENCRYPTION_KEY). Affected customer contacts get email when outbound mail is configured.

• Admin — Pre-Sales navigation — Pre-Sales is listed in the sidebar and mobile admin menu so you can open the widget manager in one click.

• Customers — record page stability — Customer detail requires current database migrations (plan, billing, and BYOK fields). After upgrading the portal, apply pending migrations before opening Customers so the page does not error.

• Task Center — share a task link — On any task detail page, use Copy link to share this task (link icon beside the branch/chat shortcuts). Your clipboard gets the full portal URL (/tasks/…), including from=project-… so the recipient lands on the same task with the correct back to project tasks breadcrumb context.

• Marketing — /product and pre-sales widget — The public Product page (/product) summarises commercial plans (Trial through Business), an optional demo-video area, and clear routes to the interactive demo and sign-in. The home landing page links to Product, and the top Pricing link opens the Product page pricing section (/product#pricing). After you create a Pre-Sales widget under Admin → Pre-Sales, the home page can show the pre-sales chat bubble once your hosting is wired for it. Operators: see ENV_SETUP for deployment and environment wiring.

• Customers — GitHub & BYOK — Admins can store GitHub personal access tokens alongside Bitbucket (project creation and credential test flows). Bring-your-own-key (Anthropic) can be enabled on the customer record: validate the key, store it encrypted, and use it for planning chat and agent runs when your platform team has turned on BYOK consistently in the portal and the execution server (see ENV_SETUP). The portal and executor must use compatible encryption settings so agent tasks can apply customer-held keys.

3 May 2026

• Developers — MCP Cursor config — Committed .cursor/mcp.json now standardises on a single path-scoped OAuth URL (…/api/mcp/{projectId}), with no X-Bootcamp-Project-Id header in git-managed templates. Repo sync, Rules compliance, node bootcamp-scripts/sync-rules.mjs, Settings → Boot Camp MCP, and the User Guide Developers tab all match ADR-068 and the public Boot Camp MCP OAuth wiring documented in-app. The global MCP endpoint plus header remains a runtime escape hatch only.

1 May 2026

• Task Center — Amend & Relaunch audit trail — When an architect or admin runs Amend & Relaunch, the project activity feed now records a TASK_AMENDED_RELAUNCHED event (branch name and amendment document paths) so the team can see who restarted work on the existing implementation branch.

30 April 2026

• Developers — VS Code MCP OAuth connection — VS Code can now complete MCP OAuth registration with the public client id sfa-bootcamp-public, no client secret, and the hosted callback https://vscode.dev/redirect. The developer guide and Settings MCP card now show the VS Code servers config shape and manual registration steps.

29 April 2026

• Task Center — comment Send button fix — Fixed a bug where the Send button on task comments would remain disabled indefinitely after posting or if an error occurred, blocking further comment attempts. The button now always re-enables after the request completes (success or error), allowing users to retry if needed. BUG-task-comment-send-button-stays-disabled-no-email.

Planned (Roadmap)

Not yet full product UX in the portal:

• Redis-backed persistent chat sessions

• Executor token tracking

<< Back to documentation home