Reverse-chronological. Subscribe via the email below to be notified of new posts.
All five phases of the KYC obligation flow are now in production, disabled by default. Wallets get stamped with kyc_required_by on first paid action. Sweep-cron rolls back overdue publishes. Operators can flip kyc_obligations_enabled when ready.
Two follow-ups from session 29 of the admin sweep are live. Pentest count fix corrects a stale counter; double CSRF verify on sensitive admin POSTs prevents replay across stale sessions. 70/70 admin slugs now return 200/302 under live authed sweeps.
Security overview →A full redesign of the WHMCS admin skin is live across managed nodes. Cleaner navigation, faster page transitions, and a dark mode that actually respects system preference. Cosmetic-only - no functional behaviour changed.
Release notes →A long-standing display bug on the admin investments view rendered euro amounts with the wrong entity. Fixed and verified across all 57 admin pages during the Goal 1 audit.
Details →Hosting partners in Greece and Romania completed onboarding and are routing cross-node tasks. Public peer registry with health and signing keys is now reflected on /network-status.
Network status →Native iOS and Android apps shipped, built on Expo SDK 54. Push notifications, biometric login, full task lifecycle, and a Stripe off-ramp in two taps. Open beta is now public.
See features →Anniversary milestone - 16 consecutive years operating without a successful security breach. Annual third-party penetration test report is available to enterprise customers under NDA.
Security policy →Subscribe via RSS or email announce@internetivo.com with subject "subscribe".