v0.50.0

This release centers on security auditing, a major new feature that brings vulnerability tracking and advisory matching to your Pricore registry. It also includes an Inertia.js v3 upgrade and several smaller fixes.

New Features

• Package Version Security Auditing (#55): Pricore now syncs security advisories from the Packagist Security Advisories API and matches them against your package versions using semver constraint checking. Packages are automatically scanned after repository and mirror syncs. The new organization-level security overview page shows severity stats and per-package vulnerability summaries, with badges on version lists and details in version dialogs. Org admins receive email notifications when new vulnerabilities are detected, and composer audit works natively against your Pricore registry.

Improvements

• Inertia.js v3: Upgraded from Inertia.js v2 to v3 for both the Laravel backend and React frontend.

Fixes

• Fixed missing activity log descriptions for mirror and SSH key events, which previously displayed awkward phrasing like "Test User Mirror added"