Skip to content

feat(api): add version endpoint for instance identification #2520

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
majiayu000 wants to merge 8 commits into
base: staging
Choose a base branch
from
Open

feat(api): add version endpoint for instance identification #2520

majiayu000 wants to merge 8 commits into from

Conversation

@majiayu000
Copy link
Contributor

@majiayu000 majiayu000 commented Dec 22, 2025

Summary

  • Add GET /api/version endpoint that returns version information
  • Returns app version, name, build time, git commit, and environment
  • Helps identify the version of a running Sim Studio instance

Test plan

  • Manual testing with curl /api/version

Fixes #2014

icecrasher321 and others added 8 commits December 18, 2025 16:23
@icecrasher321
v0.5.35: helm updates, copilot improvements, 404 for docs, salesforce…
eb07a08 
… fixes, subflow resize clamping
@waleedlatif1
v0.5.36: hitl improvements, opengraph, slack fixes, one-click unsubsc…
4d1a9a3 
…ribe, auth checks, new db indexes
@Lutherwaves
fix(helm): add custom egress rules to realtime network policy (simstu…
4431a1a 
…dioai#2481)

The realtime service network policy was missing the custom egress rules section
that allows configuration of additional egress rules via values.yaml. This caused
the realtime pods to be unable to connect to external databases (e.g., PostgreSQL
on port 5432) when using external database configurations.

The app network policy already had this section, but the realtime network policy
was missing it, creating an inconsistency and preventing the realtime service
from accessing external databases configured via networkPolicy.egress values.

This fix adds the same custom egress rules template section to the realtime
network policy, matching the app network policy behavior and allowing users to
configure database connectivity via values.yaml.
@waleedlatif1
v0.5.37: redaction utils consolidation, logs updates, autoconnect imp…
3e697d9 
…rovements, additional kb tag types
@waleedlatif1
v0.5.38: snap to grid, copilot ux improvements, billing line items
4827866
@waleedlatif1
v0.5.39: notion, workflow variables fixes
0f4ec96
@icecrasher321
v0.5.40: supabase ops to allow non-public schemas, jira uuid
3d9d9cb
@majiayu000
feat(api): add version endpoint for instance identification
49fad6e 
Adds GET /api/version endpoint that returns:
- Application version
- Application name
- Build time (if available)
- Git commit hash (if available)
- Node environment

This helps users identify the version of a running Sim Studio instance.

Fixes simstudioai#2014
@vercel
Copy link

vercel bot commented Dec 22, 2025

@majiayu000 is attempting to deploy a commit to the Sim Team on Vercel.

A member of the Team first needs to authorize it.

@greptile-apps
Copy link
Contributor

greptile-apps bot commented Dec 22, 2025

Greptile Summary

Adds a new version endpoint that returns instance identification information including app version, build time, and git commit hash.

Key Changes:

  • New GET /api/version endpoint returns version metadata without authentication
  • Network policy updated to support custom egress rules for realtime service
  • Endpoint uses force-dynamic to prevent caching

Security Consideration:

  • Exposing NODE_ENV in the response reveals environment details that could aid reconnaissance attacks

Confidence Score: 4/5

  • This PR is safe to merge with one security consideration to address
  • The implementation is straightforward and adds useful functionality. The endpoint correctly uses force-dynamic to prevent caching. However, exposing NODE_ENV presents a minor security concern by revealing the environment type, which could aid attackers in reconnaissance. The network policy change is safe and follows established patterns.
  • Review apps/sim/app/api/version/route.ts to consider removing nodeEnv from the response

Important Files Changed

Filename Overview
apps/sim/app/api/version/route.ts New version endpoint that exposes app version, build time, git commit, and environment - potential information disclosure concern with nodeEnv
helm/sim/templates/networkpolicy.yaml Added custom egress rule support to realtime service network policy - clean infrastructure improvement

Sequence Diagram

sequenceDiagram
    participant Client
    participant API as /api/version
    participant Env as Environment Variables

    Client->>API: GET /api/version
    API->>Env: Read npm_package_version or APP_VERSION
    API->>Env: Read BUILD_TIME
    API->>Env: Read VERCEL_GIT_COMMIT_SHA or GIT_COMMIT
    API->>Env: Read NODE_ENV
    Env-->>API: Return environment values
    API->>API: Format gitCommit to 7 chars
    API-->>Client: Return JSON with version info
Loading

greptile-apps[bot]
greptile-apps bot reviewed Dec 22, 2025
View reviewed changes
Copy link
Contributor

@greptile-apps greptile-apps bot left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Additional Comments (1)

  1. apps/sim/app/api/version/route.ts, line 22 (link)

    logic: exposing NODE_ENV could reveal whether the instance is in development/staging/production, which may aid attackers in reconnaissance

2 files reviewed, 1 comment

Edit Code Review Agent Settings | Greptile

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@greptile-apps greptile-apps[bot] greptile-apps[bot] left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@majiayu000 @icecrasher321 @waleedlatif1 @Lutherwaves