v1.4.0

1.4.0 (2026-04-30)

✨ Features

• add AI chatbot feature with configuration, access control, and attachment management (e139b72)
• add AI chatbot feature with configuration, access control, and attachment management (912d55d)
• add ApplicationDetailDrawer and CandidateDetailDrawer components (1371e7d)
• add column visibility management to Applications and Candidates views (a5237a5)
• add docker entrypoint script to derive NUXT_PUBLIC_* flags from environment variables (39e098e)
• add Docker support with pre-built image instructions and CI workflow (753b37e)
• add Docker support with pre-built image instructions and CI workflow (6f9223d)
• add document re-parsing functionality and improve error handling in candidate analysis (8842c6f)
• add experience level and quick notes fields to job and candidate schemas (d36b5a0)
• add new migration entries for candidate demographics organization settings and salary negotiable (36e3e81)
• add Nitro plugin to recompute public auth-provider flags at server startup (6b7b699)
• add OIDC SSO environment validation and unit tests (1b23af3)
• add organization localization settings and candidate demographics (f828877)
• add property management utilities and schemas (a62eea1)
• add property management utilities and schemas (4dc5aad)
• add raw tag support for Docker image publishing (29775cb)
• add salary input change handlers and update permissions for organization (6c238c2)
• add site origin computation for dynamic redirect URI in SSO setup (9e5aa68)
• add SSO provider schema and relations for better authentication integration (62fdf39)
• ai-config: add connection test functionality and update AI settings UI (c9f4afd)
• enhance authentication security with stricter password policy, email verification, and session management (aaae17f)
• enhance forgot password functionality and improve SSRF protection (8e0abd6)
• enhance OIDC endpoint origin fetching to directly inject discovered origins into trusted-origins list (ee34d86)
• Enhance PostHog proxy handling with explicit header management and error handling (8b9ea20)
• enhance property management with new color variables and update component interactions (349ec6a)
• enhance PropertyFilterBar and PropertySchemaEditor with improved element references and state management (cd7524e)
• enhance SSO sign-in and sign-up error handling, and enforce email requirement in profile mapping (76c54b4)
• enhance trusted origins resolution for CSRF checks and OIDC discovery (3c24417)
• enhance trusted origins resolution for SSO provider registration (b5832b6)
• enhance workflows and documentation for release process, including PR title linting and release verification (4785db5)
• implement forgot password and reset password functionality (aa00e89)
• implement forgot password and reset password functionality (ad864ef)
• implement OIDC endpoint origin prefetching for trusted origins resolution (9c355ab)
• implement social sign-in for Google, GitHub, and Microsoft with configuration support (d4ceaf8)
• implement social sign-in for Google, GitHub, and Microsoft with configuration support (0e4d4bd)
• Implement two-tier consent model for PostHog analytics (0d51cd5)
• Implement two-tier consent model for PostHog analytics (ef7fee5)
• implement unique default chatbot agent constraint and enhance related logic for attachment management (f11a78f)
• improve edit element reference handling in PropertyFilterBar (486d0e1)
• refactor authentication handling to use runtime-config for providers and remove entrypoint script (ad91cc9)
• streamline authentication configuration by removing deprecated social sign-in options and enhancing OAuth token encryption (b94ffd9)
• update button styles for social sign-in and sign-up to improve user interaction (d8d0e6e)
• update color classes for property options to enhance visual consistency (c827d56)
• Update PostHog consent model to use sessionStorage for cookieless tracking (1368dbb)

🐛 Bug Fixes

• address CodeRabbit review comments on PR #166 (3b9e52b)
• correct syntax error in prefetchOidcEndpointOrigins function (3f6a56b)
• register migrations 0023 and 0024 in drizzle journal (93ed4b1)
• remove orphaned code after </template> in candidates/new.vue (a976d8d)
• resolve esbuild and typecheck errors in PR validation (e3d9994)
• Rewrite Host headers in proxyRequest to prevent Cloudflare errors (fee0be6)
• update token reference in release-please workflow to prioritize RELEASE_PLEASE_TOKEN (7a57891)
• update token reference in release-please workflow to use GITHUB_TOKEN (b2733f8)

v1.3.0

1.3.0 (2026-04-03)

✨ Features

• add AI configuration seeding and demo data reset script (927cf1e)
• add db:reseed script and implement demo organization deletion script (f0f8b2e)
• add Deploy on Railway badge to README, enhance ScoreBreakdown component with caching, and introduce DemoUpsellBanner component (c372668)
• add document parsing functionality (e6279d0)
• add robots.txt for SEO optimization and allow indexing of job board pages (0c387ba)
• add Settings page for job management and update job tabs in AppTopBar (7dba4da)
• add Source Tracking page with initial layout and SEO metadata (750dc0b)
• add tracking link schemas for creation, update, and querying (9d60aaf)
• add tracking link schemas for creation, update, and querying (558e054)
• add WordExtractor type declarations and update document permissions (6f66efd)
• ai-analysis: add AI analysis dashboard and stats endpoint with tests (c09ea21)
• ai: enhance AI scoring and configuration with rate limiting and error handling improvements (71f0185)
• analytics: enhance PostHog consent management and user identification for GDPR compliance (0632620)
• api: add candidate timeline endpoint and tracking link stats endpoint (46e1e15)
• delete-demo-org: invalidate sessions for demo organization before deletion (b8ee811)
• enhance analytics consent management with cross-domain linking and event buffering (7a9dd82)
• enhance analytics event handling by flushing pending events on consent and organization creation (2212af8)
• enhance event tracking by persisting pending events in sessionStorage (95c48ce)
• enhance LanguageSwitcher component with drop-up option and impr… (5aea684)
• enhance LanguageSwitcher component with drop-up option and improve layout for candidate and job detail pages (ccc829e)
• enhance mobile responsiveness and scrollbar visibility across components (ab939bb)
• enhance mobile responsiveness and scrollbar visibility across components (5ecc098)
• enhance resume parser with PDF polyfills and dynamic import for pdf-parse (2d6dea5)
• enhance timeline functionality with collapsible sections and candidate grouping (b8c6ab9)
• Implement AI scoring system with provider integration and criteria management (6ba3159)
• Implement AI scoring system with provider integration and criteria management (8158718)
• implement autoScoreApplication for AI-driven application scoring (5222980)
• implement combined demo-check and sign-out endpoint for fresh sign-up flow (a5632bd)
• implement demo-aware signup redirect with server-side session check (092d324)
• implement internationalization for navigation and hero sections across multiple languages (7720fc8)
• implement server-side demo organization check for fresh sign-up flow (3075a17)
• implement Timeline page with activity log and infinite scroll functionality (5b1c694)
• implement Timeline page with activity log and infinite scroll functionality (abda1a3)
• implement tracking for various user actions and API events in the application (674993c)
• improve demo organization check by ensuring demo slug is validated before redirecting (b60b9bc)
• jobs: add remote status and experience level fields to job creation form (405ee5b)
• jobs: enhance job application form with AI integration warnings and improved field descriptions (2bcae86)
• logging: integrate OpenTelemetry for structured logging to PostHog (3f62f29)
• logging: refine log attributes type for improved type safety in PostHog API tracking (38f46b3)
• logging: replace console.error with structured logging for error handling across multiple modules and add Vitest setup for logging stubs (ded88f8)
• logging: replace console.error with structured logging for error handling across various modules (4451b95)
• migrate analytics consent management from localStorage to cross-domain cookies (59e5e33)
• propagate source tracking parameters through job application flow (60bdc55)
• refactor demo session checks to use user email for demo account detection (c747d24)
• refactor demo sign-up flow by removing demo-fresh-signup endpoint and handling session checks in fresh-signup component (58be8e0)
• refactor demo sign-up flow by replacing POST endpoint with GET for better cookie handling (e4268eb)
• refactor timeline component to simplify candidate grouping and remove unused action groups (8d226c8)
• session-management: implement session expiration handling and UI feedback for demo accounts (3a6c1f4)
• source-tracking: add tracking links management and attribution (8d25601)
• source-tracking: enhance tracking links management with dynamic URL generation and sorting functionality (877d03c)
• timeline: enhance timeline action styles and status badges (475e643)
• timeline: implement TimelineDateLink component for date navigation and update date displays across applications (be4a438)
• tracking-links: implement collision handling for unique tracking code generation and enhance validation for tracking codes (88489e6)
• update button labels for clarity and consistency in job creation flow ([850383c](850383c81066470f6...

v1.2.0

1.2.0 (2026-03-16)

✨ Features

• add email template management system (616ada5)
• add email template validation schemas and pre-made templates (7879e38)
• add fullscreen toggle functionality to job detail view (a94e4b6)
• add functionality to move applications directly to interview stage without scheduling (22e6a0a)
• add Greenhouse vs Open Source ATS comparison article and enhance existing content with links (8c2e225)
• add iCalendar generation for interview invitations (57e692a)
• add interview scheduling functionality with sidebar integration (0eb29b0)
• add interview validation schemas for creation, updating, and querying (a93da4e)
• add interview validation schemas for creation, updating, and querying (be8f623)
• add interviews dashboard page with filtering, editing, and deleting functionalities (59bdb36)
• add middleware for 301 redirect from legacy domain to canonical domain (5525cf6)
• add realistic interview data and scheduling logic to seed script (e3b1881)
• add realistic interview data and scheduling logic to seed script (467cc56)
• add script to backfill google_calendar_event_link for existing interviews (c46d13d)
• add teleport target prop to modals for improved flexibility in rendering (78a3ae8)
• add use case guide for open source ATS adoption by company size and industry (f9770e5)
• AppTopBar: remove unused transition classes for user menu (49976c3)
• auth: add fresh signup page with redirect functionality (f0ae97f)
• auth: enhance error handling for sign-in and sign-up processes, including BETTER_AUTH_URL mismatch detection (dd29c49)
• auth: improve BETTER_AUTH_URL handling for Railway environments and enhance validation (e368cc8)
• auth: improve BETTER_AUTH_URL handling for Railway environments… (ef155aa)
• calendar: add Google Calendar integration with OAuth2 flow (08f778a)
• calendar: add Google Calendar sync status indicators in interview components (bb5244a)
• calendar: update webhook renewal to require specific permissions and enhance error handling in sync process (140d6ac)
• centralize system email templates in shared module for improved maintainability (e05b877)
• create HMAC-signed tokens for candidate interview responses (57e692a)
• dark mode: enhance checkbox and radio styles for dark mode rendering (728feb2)
• dashboard: enhance job management and pipeline tracking (a60f489)
• dashboard: update job pipeline display logic to use application count (b75b0e5)
• demo: add 'Get Started' options for demo mode in AppTopBar and enhance PreviewUpsellModal (8c530cf)
• demo: add 'Get Started' options for demo mode in AppTopBar and enhance PreviewUpsellModal (e607520)
• docker: add CHANGELOG.md to Docker image for runtime access (b7af4ce)
• enhance interview management with inline editing and rescheduling features (ef5cdbb)
• enhance webhook handling with cron secret validation and improve interview ID validation (457af10)
• google-calendar: update integration instructions and add environment variable details (be9ccbd)
• implement advanced filtering and sorting options for job applications (27f179e)
• implement sortable candidate and application tables with improved UI (9188d3b)
• improve date formatting helper to return local timezone date string (ddda624)
• integrate email template selection for interview invitations (771917f)
• interview: add Google Calendar notification preferences and customization options (6c942d0)
• interview: enhance interview scheduling with Google Calendar integration and email validation (58810b1)
• make candidate email addresses clickable for improved user interaction (2c01f77)
• refactor interview management with enhanced status transitions and email template integration (6033d06)
• tracking: implement privacy-respecting event tracking across various pages and actions (ebb22c9)
• updates: add API endpoints for update management, backup, chang… (e8432e5)
• updates: add API endpoints for update management, backup, changelog, system info, and version check (3a5d96e)
• updates: enhance backup functionality and improve update checks with error handling (1921be8)

🐛 Bug Fixes

• cast return type of getAuth function to Auth (665e059)
• correct promise chaining for Google Calendar event creation (a935615)
• issue-template: enable blank issues in configuration (b634752)
• update G2 ranking link for Greenhouse in ATS comparison article (c46549e)

♻️ Refactoring

• simplify refreshNuxtData calls in useInterview composable and remove unused migration placeholder (b9533fe)

v1.1.0

1.1.0 (2026-03-10)

✨ Features

• add new article on best free ATS software for startups and update related content (021f8db)
• add new article on the differences between open source and free ATS, including a comprehensive guide and internal links (da31e77)
• add release automation configuration and update versioning (a37c1cc)
• analytics: integrate PostHog for user analytics and consent management (8bd4bd5)
• analytics: integrate PostHog for user analytics and consent management (619f239)
• consent: implement consent banner for analytics tracking and update privacy policy (24a9201)
• consent: simplify consent message for clarity in analytics tracking (c28356a)
• consent: update wording in consent banner for improved clarity (91c6550)
• database: enhance database URL resolution with fallback handling for environment variables (0302102)
• dependencies: update PostHog CLI and related packages for improved functionality (f532a3e)
• interviews: add Interview interface for managing interview data structure (da4e78d)
• navbar: replace static navbar with reusable PublicNavBar component across blog, catalog, docs, and roadmap pages (a0d17db)
• nuxt: conditionally load PostHog module based on API key availability to prevent crashes (ddb1f59)
• posthog: add PostHog configuration for server-side event capture (9958fe5)
• posthog: enhance analytics consent management and data minimization in PostHog integration (92588d9)
• posthog: enhance PostHog integration with consent handling and graceful shutdown (5e708fa)
• posthog: replicate safe accessor for PostHog in composables and plugins to ensure compatibility when not configured (1e948cb)
• posthog: update PostHog integration with environment variables and consent handling (4b745ec)
• posthog: update PostHog integration with environment variables and consent handling (4c11f99)

🐛 Bug Fixes

• add config and manifest file parameters to release-please action (ff30b11)
• posthog: read server PostHog config from env vars directly (74ae687)
• posthog: update proxy targets for PostHog integration with environment variable notes (da4e78d)
• release: remove pull request header from release configuration (9636fd5)
• update token in release-please action for proper authentication (5ae917e)

v1.0.0 — Public Launch

Reqcore v1.0.0 — The Open Source ATS

The open-source ATS you own. No per-seat fees. No data lock-in. No secret algorithms.

I am thrilled to announce the first stable release of Reqcore — a self-hostable, full-stack Applicant Tracking System built with Nuxt 4, PostgreSQL, and S3-compatible storage.

This release establishes the first major public baseline for the project. While the core workflows are ready to use, the product is still evolving and users should expect continued improvements, polish, and bug fixes in upcoming releases.

Highlights

• Full ATS workflow — Create jobs, receive public applications, track candidates through a Kanban pipeline, upload and manage documents — all from a single dashboard.
• Self-hosted & data sovereign — Runs on your infrastructure via Docker Compose. Your candidate data stays in your PostgreSQL database and your S3 bucket. No vendor lock-in.
• No per-seat pricing — Add your entire hiring team without increasing your software bill.
• SEO-ready public job board — Slug-based URLs, JSON-LD JobPosting schema, sitemap integration, and OG meta for maximum visibility on Google and social platforms.
• Production-hardened — Rate limiting, security headers, server-proxied document access, private S3 bucket enforcement, and filename sanitization out of the box.

Core Features

Job Management

• Full CRUD with status workflow: Draft → Open → Closed → Archived
• Multi-step job creation form with guided wizard UX
• Markdown support for rich job descriptions
• Custom URL slugs for public job pages
• SEO fields: salary range, remote status, employment type, valid-through date

Candidate Pipeline

• Drag-and-drop Kanban board: Applied → Screening → Interview → Offer → Hired / Rejected
• Candidates data table with filtering, sorting, and column visibility controls
• Click-to-open detail sidebar with status transitions, notes, and question responses
• Search functionality across candidates and applications
• Email-based candidate deduplication

Public Job Board & Application Forms

• Public job listing page — browse open positions, no authentication required
• Custom application forms with 9 field types (text, textarea, select, multi-select, checkbox, number, date, URL, file upload)
• Drag-to-reorder questions per job
• Resume and cover letter file upload with magic-byte MIME validation
• Anti-spam honeypot protection
• Shareable application links for open positions
• Confirmation page after submission

Document Storage

• S3-compatible storage via MinIO (self-hosted) or any S3 provider
• Resume and cover letter upload with multipart/form-data
• Server-proxied download and inline PDF preview — documents are never exposed via public URLs
• Private bucket policy enforced on startup
• Filename sanitization and per-candidate document limits

Recruiter Dashboard

• At-a-glance stat cards: Open Jobs, Total Candidates, Applications, Unreviewed
• Pipeline overview with color-coded status breakdown
• Recent applications feed with relative timestamps
• Top active jobs ranked by application count
• Quick actions to create jobs or add candidates
• Welcome empty state for new organizations

Multi-Tenant Organizations

• Organization-scoped data isolation via Better Auth org plugin
• Organization creation onboarding flow
• Organization switcher for users with multiple orgs
• Role-based membership (owner, admin, member)

Infrastructure & Deployment

• One-command setup — setup.sh generates secrets, docker compose up starts everything
• Docker Compose — PostgreSQL 16 + MinIO + Adminer, ports bound to 127.0.0.1
• Railway support — Managed deployment with auto-build, auto-deploy, and PR preview environments
• Auto-migrations — Database migrations apply automatically on server startup
• Demo seed data — npm run db:seed populates a demo organization with sample jobs, candidates, and applications

Security

• Global API rate limiting (IP-based sliding window) with stricter thresholds for auth and write endpoints
• Security headers: X-Frame-Options, X-Content-Type-Options, Referrer-Policy, X-XSS-Protection, Permissions-Policy
• noindex on all private routes (auth, dashboard, onboarding)
• Server-proxied document access — no presigned URLs leak to clients
• Honeypot anti-spam on public application forms
• Zod validation on every API endpoint (server + client)

SEO & Content

• Full @nuxtjs/seo integration: Sitemap, Robots, Schema.org, OG + Twitter Card meta
• JSON-LD structured data: JobPosting, Organization, WebSite, WebPage, Article
• Dynamic sitemap auto-includes all open job postings
• Blog engine powered by @nuxt/content v3 with Markdown + YAML frontmatter
• Dark-themed public landing page, roadmap, and blog
• ISR caching on job pages, prerendered landing + blog pages

Internationalization

• Crowdin integration for community-driven translations
• i18n infrastructure with locale file management
• Upload/download/sync workflows via npm scripts

Testing & CI

• Playwright end-to-end tests for critical flows (candidate application, job creation, resume upload)
• Allure reporting for test visibility
• Docker README validation workflow
• PR validation pipeline

Developer Experience

• Nuxt 4 with app source directory structure
• Drizzle ORM with type-safe schema and postgres.js driver
• Zod v4 validation schemas shared between server and client
• Auto-imported composables, components, and server utilities
• Tailwind CSS v4 with @tailwindcss/vite and typography plugin
• Lucide icons — tree-shakeable icon library
• In-app feedback button — submit bug reports and feature requests directly to GitHub Issues

What's Next

Reqcore v1.0.0 completes Phase 1 (MVP). Here's what's on the roadmap:

• Resume Parsing — PDF text extraction → structured JSON (contact, experience, education, skills)
• AI Candidate Ranking — Transparent, explainable matching with visible "Matching Logic" summaries (the Glass Box principle)
• Local AI via Ollama — Privacy-first AI where candidate PII never leaves your network
• Team Collaboration — Threaded comments, activity logs, interview scheduling
• Candidate Portal — Self-service application status tracking

See the full Roadmap for details.

Get Started

git clone https://github.com/reqcore-inc/reqcore.git
cd reqcore
./setup.sh
docker compose up

Open http://localhost:3000 and start hiring.

All Changes

• feat: add railway configuration and seed script for PR environment setup by @JoachimLK in #14
• feat: added feedback submission with optional context, screenshot support within the software by @JoachimLK in #24
• feat: enhance seed script with environment variable support and error handling by @JoachimLK in #25
• feat: add Docker README validation workflow by @JoachimLK in #28
• feat: add feedback configuration API and integrate feedback feature in sidebar by @JoachimLK in #30
• feat: implement live demo sign-in functionality with prefilled credentials by @JoachimLK in #34
• feat: implement read-only mode for demo organization and add error handling by @JoachimLK in #35
• feat: implement preview read-only mode with upsell guidance and error handling by @JoachimLK in #38
• feat: add Markdown support for job descriptions and implement MarkdownDescription component by @JoachimLK in #39
• feat: enhance candidates table with filtering, sorting, and column visibility options by @JoachimLK in #40
• feat: simplify setup process and enhance environment configuration by @JoachimLK in #41
• feat: multi-step job creation form by @JoachimLK in #44
• feat: add AI intelligence, collaboration, pipeline management, recruitment tools, and security compliance documentation by @JoachimLK in #42
• feat: implement search functionality and enhance job filtering in applications dashboard by @JoachimLK in #47
• feat: rename Applirank to Reqcore across the codebase by @JoachimLK in #48
• feat: clear Nuxt data on sign out and after sign-in/sign-up for a full page reload by @JoachimLK in #49
• feat(i18n): integrate Crowdin for translation management and add locale files by @JoachimLK in #59
• feat(e2e): add Playwright end-to-end tests for candidate application and job creation flows by @JoachimLK in #62
• feat: integrate Allure reporting and enhance CI workflows for better test visibility by @JoachimLK in #63
• feat: team collaboration infrastructure by @JoachimLK in #65
• feat: add documentation for Document Storage, Public Job Board, Application Forms, Dashboard, and Architecture Overview by @JoachimLK in #69
• fix:...