* New: Query Logger - Real-time database query monitoring with slow query detection and performance metrics
* New: Query Statistics Dashboard - Visual insights into query performance and component-level breakdowns
* New: N+1 Query Detection - Automatically identifies and highlights repeated queries with aggregate statistics
* New: Database query error logging with detailed error messages and filtering
* New: Query export to CSV, JSON, and TSV formats with accurate component attribution
* New: Dynamic query statistics that recalculate based on active filters
* New: WP-CLI commands for license activation, debug toggling, viewer setup, and log management (wp dbtk)
* New: Email notification system for error alerts with customizable templates
* New: Automatic log cleanup with delete/archive/truncate methods, size limits, and age-based rotation
* New: Viewer permissions health check with repair button in Site Health
* New: Viewer settings for query dashboard limit, tail scan MB, max entry MB
* New: PHP memory limit management (writes to wp-config.php)
* New: Upload limit controls via WordPress filters
* New: Settings UI redesign with modern tabbed interface
* New: Modular licensing system with grandfathered benefits for early adopters
* Security: Query logs encrypted at rest
* Security: Password protection now mandatory for viewer (8-character minimum)
* Security: SQLite-based rate limiting with progressive brute-force protection
* Security: Enhanced session security with 30-minute timeout and IP binding
* Security: Strengthened path traversal prevention with expanded blocklist
* Security: Replaced exec() with token_get_all() for PHP syntax validation
* Security: Fixed wp-config.php case-sensitivity bypass vulnerability in viewer
* Security: Added protection for secure-debug.php (GridPane compatibility)
* Security: Scoped CORS headers to plugin endpoints only
* Security: Restricted wp-config backup file permissions
* Security: Hardened viewer config and auth files against direct access
* Security: Expanded viewer blocked files list with additional sensitive file patterns
* Security: Added directory listing protection for query log storage
* Improved: Production and performance warnings in setup wizard for debug mode and query logging
* Improved: “Install without tools” option to set up the viewer without enabling debugging tools
* Improved: Setup wizard defaults tools to disabled — users opt in consciously
* Improved: Viewer installer wizard with step-by-step guidance
* Improved: Redesigned crash recovery system with cleaner UI and granular plugin/theme controls
* Improved: License management moved to Settings page
* Improved: Targeted cache clearing (plugin-specific transients only)
* Improved: Enhanced output buffer management
* Improved: Better type safety and code quality across PHP and React code
* Added: Custom file paths configuration (DBTK_CONFIG_PATH, DBTK_LOG_PATH constants)
* Added: Error level selection in Settings (Debug, Info, Warning, Error)
* Added: Cache busting in Admin and Viewer apps
* Added: WordPress internationalization (wp-i18n) support
* Added: Psalm static analysis with type hints
* Added: Partner discounts page
* Fix: Query Viewer tail reader no longer returns 0 entries on huge final log line
* Fix: Viewer auth rate limiter fallback when PDO SQLite is unavailable
* Fix: Directory permission issues on restrictive servers (umask handling)
* Fix: Viewer installation on hosts where WordPress files are in subfolders
* Fix: Path validation now supports relative paths securely
* Fix: Health check now properly loads WordPress admin functions
* Fix: Admin CSS isolation prevents conflicts with other plugins
* Fix: Compatibility with UiPress Lite and WP Dark Mode
* Fix: wp-config.php duplicate constants when reinstalling viewer
