What's new in v0.14.14
Branded auth emails
- Added Switchbord-branded Supabase Auth templates for confirmation, password recovery, magic link, Supabase Auth invite, email change, and reauthentication.
- Templates use the Switchbord wordmark and TokenHash callback links instead of Supabase's default
ConfirmationURLflow. - Transactional email defaults to
info@switchbord.aiacross repo examples and the email package fallback.
Resend delivery operations
- Hosted Supabase Auth can now be configured reproducibly with Resend SMTP using
scripts/configure-supabase-auth-email.mjs. - Added an operator runbook covering sender settings, template link mapping, and verification checks.
Callback hardening
- TokenHash callbacks preserve safe nested invite/update-password redirects while rejecting unsafe external or malformed redirect targets.