Skip to main content
Wizzo

Wizzo v0.44.2 Release Notes

Released Feb 11, 2026Public Beta

Highlights

  • Stabilized first-message chat UX by preventing conversation bootstrap reloads from clobbering optimistic assistant streaming updates.

Fixes

  • Fixed home chat layout snapping after the first prompt by keeping the initial home layout mode stable for the page lifecycle.
  • Fixed `/api/ml/drift-detection` route handling so explicit auth/admin/validation errors (`401`/`403`/`400`) are preserved instead of being collapsed into generic `500`s.
  • Fixed `/api/ml/drift-detection` retraining-check failures to return standardized route errors (`DRIFT_RETRAIN_CHECK_FAILURE`) through shared API error handling.
  • Fixed `/api/analytics/retention` route handling so explicit auth/admin/validation errors (`401`/`403`/`400`) are preserved instead of being collapsed into generic `500`s.
  • Fixed `/api/tasks/migrate` route handling so preview/auth guard errors (`401`/`403`) are preserved instead of being collapsed into generic `500`s.
  • Fixed `/api/community/group-quests` route handling so explicit challenge-not-found/access errors (`404`/`403`) are preserved instead of being collapsed into generic `500`s.
  • Fixed `/api/achievements/rebuild` route handling so explicit auth/ownership/validation errors (`401`/`403`/`400`) are preserved instead of being collapsed into generic `500`s.
  • Fixed `/api/dev/stress-sse` route handling so non-development guard errors (`403`) are preserved instead of being collapsed into generic `500`s.
  • Fixed `/api/ai/classify-theme` route handling so explicit auth/validation errors (`401`/`400`) are preserved instead of being swallowed by fallback `200` responses.
  • Fixed `/api/community/activities` route handling so typed service-level route errors are preserved instead of being collapsed into generic `500`s.
  • Fixed `/api/safety/{block,block/[userId],report}` route handling so typed service-level route errors are preserved instead of being collapsed into generic `500`s.
  • Fixed `/api/community/peers` route handling so typed service-level route errors are preserved instead of being collapsed into generic `500`s.
  • Fixed `/api/ml/predict-success` route handling so auth/owner/validation failures preserve explicit statuses (`401`/`403`/`400`) instead of being swallowed by fallback `200` responses.
  • Fixed `/api/ml/analyze-voice-patterns` route handling so auth and owner-mismatch guard errors (`401`/`403`) are preserved instead of being swallowed by fallback responses.
  • Fixed `/api/ops/streak-scheduler` route handling so feature-flag check failures preserve typed route-error responses instead of being rewritten to ad-hoc `500` bodies.
  • Fixed `/api/jobs/run` auth semantics to return `401` for unauthenticated callers and `403` for authenticated non-admin callers, and added `ADMIN_EMAIL` fallback support.
  • Fixed `/api/admin/ab/community-prompt` route handling to preserve typed errors and use standardized internal-error responses when A/B bootstrap fails.
  • Fixed `/api/tasks/[id]` patch error handling to preserve typed route errors (`401`/`403`/`409`) instead of swallowing them as `500`.
  • Fixed legacy `/api/tasks` GET/POST error handling to preserve typed route errors instead of collapsing `routeError.*` responses into generic `500`s.
  • Fixed `/api/priorities` error handling so auth/ownership route errors keep their intended status codes and unexpected persistence failures return `500` instead of `400`.
  • Fixed `/api/wins` route handling so auth/ownership errors preserve their intended `401/403` statuses and invalid payloads return `400` instead of generic `500`s.
  • Fixed `/api/streaks/batch` error handling to preserve explicit auth/ownership route errors (`401/403`) instead of collapsing them into generic `500`s.
  • Fixed notifications API error handling to preserve typed auth/action errors, and scoped single-notification read updates to the authenticated owner.
  • Fixed notification dedupe window logic to detect recent duplicates correctly (within window) instead of only matching older records.
  • Fixed `/api/goals/adjustments` POST error handling so explicit auth errors (`401`) are preserved instead of being collapsed into generic `500`s.
  • Fixed `/api/streaks` route handling so explicit auth/validation/ownership route errors are preserved instead of being collapsed into generic `500`s.
  • Fixed `/api/users/self` error handling so explicit auth/not-found route errors (`401`/`404`) are preserved instead of being collapsed into generic `500`s.
  • Fixed `/api/community/feed/[activityId]/like` route handling so explicit auth/validation errors (`401`/`400`) are preserved instead of being collapsed into generic `500`s.
  • Fixed admin analytics route handling (`/api/analytics/{growth,activation,onboarding,suggestions}`) so explicit auth/admin errors (`401`/`403`) are preserved instead of being collapsed into generic `500`s.
  • Fixed `/api/users` error handling so explicit auth errors (`401`) are preserved and unexpected failures follow standardized route error formatting without leaking debug details.
  • Fixed `/api/admin/cache` route handling so invalid/missing admin token and bad-action errors preserve their intended statuses (`401`/`400`) instead of being collapsed into generic `500`s.
  • Fixed admin ML control route handling (`/api/admin/ml/{alerts,monitor,export}`) so explicit auth/admin/validation errors (`401`/`403`/`400`) are preserved instead of being collapsed into generic `500`s.
  • Fixed `/api/activity` GET error handling so explicit auth/ownership route errors (`401`/`403`) are preserved instead of being collapsed into generic `500`s.
  • Fixed `/api/analytics/share` route handling so explicit auth/validation route errors (`401`/`400`) are preserved instead of being collapsed into generic `500`s.
  • Fixed `/api/auth/register` route handling so explicit rate-limit and validation route errors (`429`/`400`) are preserved instead of being collapsed into generic `500`s.
  • Fixed `/api/community/challenges/[id]` route handling so explicit challenge validation/not-found route errors (`400`/`404`) are preserved instead of being collapsed into generic `500`s.
  • Fixed `/api/community/challenges` route handling so explicit auth/validation/moderation errors are preserved when surfaced as typed route/application errors instead of being collapsed into generic `500`s.
  • Fixed `/api/community/participants/[challenge_id]` route handling so explicit challenge-not-found/auth/validation errors preserve their intended statuses (`404`/`401`/`400`) instead of being collapsed into generic `500`s.
  • Restored public avatar rendering reliability by allowing secure remote avatar hosts in CSP/image config and using unoptimized rendering on community profile cards.
  • Added regression coverage for conversation persistence bootstrap behavior to protect against refresh-only and non-streaming first-turn regressions.
  • Added regression tests for `/api/priorities` unauthorized/forbidden handling and database failure response semantics.
  • Added regression tests for `/api/wins` unauthorized/forbidden + validation error handling.
  • Added regression tests for `/api/streaks/batch` unauthorized and owner-mismatch error semantics.
  • Added regression tests for notifications API auth/action handling and notification database dedupe/owner-scoping behavior.
  • Added regression tests for `/api/goals/adjustments` auth and payload validation error semantics.
  • Added regression tests for `/api/streaks` unauthorized GET/POST behavior.
  • Added regression tests for `/api/users/self` auth/not-found response semantics.
  • Added regression tests for `/api/community/feed/[activityId]/like` auth/invalid-id response semantics.
  • Added regression tests for admin analytics route auth semantics (`401` unauthenticated, `403` non-admin).
  • Added regression tests for `/api/users` auth and successful-session response behavior.

Known issues

  • _None yet_
Back to releases