v0.5.71: ux, ci improvements, docs updates

* fix(subflows): tag dropdown + resolution logic (#2949)

* fix(subflows): tag dropdown + resolution logic

* fixes;

* revert parallel change

* chore(deps): bump posthog-js to 1.334.1 (#2948)

* fix(idempotency): add conflict target to atomicallyClaimDb query + remove redundant db namespace tracking (#2950)

* fix(idempotency): add conflict target to atomicallyClaimDb query

* delete needs to account for namespace

* simplify namespace filtering logic

* fix cleanup

* consistent target

* improvement(kb): add document filtering, select all, and React Query migration (#2951)

* improvement(kb): add document filtering, select all, and React Query migration

* test(kb): update tests for enabledFilter and removed userId params

* fix(kb): remove non-null assertion, add explicit guard

* improvement(logs): trace span, details (#2952)

* improvement(action-bar): ordering

* improvement(logs): details, trace span

* feat(blog): v0.5 release post (#2953)

* feat(blog): v0.5 post

* improvement(blog): simplify title and remove code block header

- Simplified blog title from Introducing Sim Studio v0.5 to Introducing Sim v0.5
- Removed language label header and copy button from code blocks for cleaner appearance

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

* ack PR comments

* small styling improvements

* created system to create post-specific components

* updated componnet

* cache invalidation

---------

Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>

* feat(admin): add credits endpoint to issue credits to users (#2954)

* feat(admin): add credits endpoint to issue credits to users

* fix(admin): use existing credit functions and handle enterprise seats

* fix(admin): reject NaN and Infinity in amount validation

* styling

* fix(admin): validate userId and email are strings

* improvement(copilot): fast mode, subagent tool responses and allow preferences (#2955)

* Improvements

* Fix actions mapping

* Remove console logs

* fix(billing): handle missing userStats and prevent crashes (#2956)

* fix(billing): handle missing userStats and prevent crashes

* fix(billing): correct import path for getFilledPillColor

* fix(billing): add Number.isFinite check to lastPeriodCost

* fix(logs): refresh logic to refresh logs details (#2958)

* fix(security): add authentication and input validation to API routes (#2959)

* fix(security): add authentication and input validation to API routes

* moved utils

* remove extraneous commetns

* removed unused dep

* improvement(helm): add internal ingress support and same-host path consolidation (#2960)

* improvement(helm): add internal ingress support and same-host path consolidation

* improvement(helm): clean up ingress template comments

Simplify verbose inline Helm comments and section dividers to match the
minimal style used in services.yaml.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

* fix(helm): add missing copilot path consolidation for realtime host

When copilot.host equals realtime.host but differs from app.host,
copilot paths were not being routed. Added logic to consolidate
copilot paths into the realtime rule for this scenario.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

* improvement(helm): follow ingress best practices

- Remove orphan comments that appeared when services were disabled
- Add documentation about path ordering requirements
- Paths rendered in order: realtime, copilot, app (specific before catch-all)
- Clean template output matching industry Helm chart standards

---------

Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>

* feat(blog): enterprise post (#2961)

* feat(blog): enterprise post

* added more images, styling

* more content

* updated v0-5 post

* remove unused transition

---------

Co-authored-by: Vikhyath Mondreti <vikhyath@simstudio.ai>

* fix(envvars): resolution standardized (#2957)

* fix(envvars): resolution standardized

* remove comments

* address bugbot

* fix highlighting for env vars

* remove comments

* address greptile

* address bugbot

* fix(copilot): mask credentials fix (#2963)

* Fix copilot masking

* Clean up

* Lint

* improvement(webhooks): remove dead code (#2965)

* fix(webhooks): subscription recreation path

* improvement(webhooks): remove dead code

* fix tests

* address bugbot comments

* fix restoration edge case

* fix more edge cases

* address bugbot comments

* fix gmail polling

* add warnings for UI indication for credential sets

* fix(preview): subblock values (#2969)

* fix(child-workflow): nested spans handoff (#2966)

* fix(child-workflow): nested spans handoff

* remove overly defensive programming

* update type check

* type more code

* remove more dead code

* address bugbot comments

* fix(security): restrict API key access on internal-only routes (#2964)

* fix(security): restrict API key access on internal-only routes

* test(security): update function execute tests for checkInternalAuth

* updated agent handler

* move session check higher in checkSessionOrInternalAuth

* extracted duplicate code into helper for resolving user from jwt

* fix(copilot): update copilot chat title (#2968)

* fix(hitl): fix condition blocks after hitl (#2967)

* fix(notes): ghost edges (#2970)

* fix(notes): ghost edges

* fix deployed state fallback

* fallback

* remove UI level checks

* annotation missing from autoconnect source check

* improvement(docs): loop and parallel var reference syntax (#2975)

* fix(blog): slash actions description (#2976)

* improvement(docs): loop and parallel var reference syntax

* fix(blog): slash actions description

* fix(auth): copilot routes (#2977)

* Fix copilot auth

* Fix

* Fix

* Fix

* fix(copilot): fix edit summary for loops/parallels (#2978)

* fix(integrations): hide from tool bar (#2544)

* fix(landing): ui (#2979)

* fix(edge-validation): race condition on collaborative add (#2980)

* fix(variables): boolean type support and input improvements (#2981)

* fix(variables): boolean type support and input improvements

* fix formatting

---------

Co-authored-by: Vikhyath Mondreti <vikhyathvikku@gmail.com>
Co-authored-by: Emir Karabeg <78010029+emir-karabeg@users.noreply.github.com>
Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
Co-authored-by: Siddharth Ganesan <33737564+Sg312@users.noreply.github.com>
Co-authored-by: Vikhyath Mondreti <vikhyath@simstudio.ai>

.devcontainer/docker-compose.yml

@@ -44,7 +44,7 @@ services:
     deploy:
       resources:
         limits:
-          memory: 1G
+          memory: 4G
     environment:
       - NODE_ENV=development
       - DATABASE_URL=postgresql://postgres:postgres@db:5432/simstudio

apps/docs/content/docs/de/self-hosting/index.mdx

@@ -10,20 +10,12 @@ Stellen Sie Sim auf Ihrer eigenen Infrastruktur mit Docker oder Kubernetes berei
 
 ## Anforderungen
 
-| Ressource | Klein | Standard | Produktion |
+| Ressource | Minimum | Empfohlen |
-|----------|-------|----------|------------|
+|----------|---------|-------------|
-| CPU | 2 Kerne | 4 Kerne | 8+ Kerne |
+| CPU | 2 Kerne | 4+ Kerne |
-| RAM | 12 GB | 16 GB | 32+ GB |
+| RAM | 12 GB | 16+ GB |
-| Speicher | 20 GB SSD | 50 GB SSD | 100+ GB SSD |
+| Speicher | 20 GB SSD | 50+ GB SSD |
-| Docker | 20.10+ | 20.10+ | Neueste Version |
+| Docker | 20.10+ | Neueste Version |
-
-**Klein**: Entwicklung, Tests, Einzelnutzer (1-5 Nutzer)
-**Standard**: Teams (5-50 Nutzer), moderate Arbeitslasten
-**Produktion**: Große Teams (50+ Nutzer), Hochverfügbarkeit, intensive Workflow-Ausführung
-
-<Callout type="info">
-Die Ressourcenanforderungen werden durch Workflow-Ausführung (isolated-vm Sandboxing), Dateiverarbeitung (In-Memory-Dokumentenparsing) und Vektoroperationen (pgvector) bestimmt. Arbeitsspeicher ist typischerweise der limitierende Faktor, nicht CPU. Produktionsdaten zeigen, dass die Hauptanwendung durchschnittlich 4-8 GB und bei hoher Last bis zu 12 GB benötigt.
-</Callout>
 
 ## Schnellstart
 

apps/docs/content/docs/en/self-hosting/index.mdx

@@ -16,20 +16,12 @@ Deploy Sim on your own infrastructure with Docker or Kubernetes.
 
 ## Requirements
 
-| Resource | Small | Standard | Production |
+| Resource | Minimum | Recommended |
-|----------|-------|----------|------------|
+|----------|---------|-------------|
-| CPU | 2 cores | 4 cores | 8+ cores |
+| CPU | 2 cores | 4+ cores |
-| RAM | 12 GB | 16 GB | 32+ GB |
+| RAM | 12 GB | 16+ GB |
-| Storage | 20 GB SSD | 50 GB SSD | 100+ GB SSD |
+| Storage | 20 GB SSD | 50+ GB SSD |
-| Docker | 20.10+ | 20.10+ | Latest |
+| Docker | 20.10+ | Latest |
-
-**Small**: Development, testing, single user (1-5 users)
-**Standard**: Teams (5-50 users), moderate workloads
-**Production**: Large teams (50+ users), high availability, heavy workflow execution
-
-<Callout type="info">
-Resource requirements are driven by workflow execution (isolated-vm sandboxing), file processing (in-memory document parsing), and vector operations (pgvector). Memory is typically the constraining factor rather than CPU. Production telemetry shows the main app uses 4-8 GB average with peaks up to 12 GB under heavy load.
-</Callout>
 
 ## Quick Start
 

apps/docs/content/docs/es/self-hosting/index.mdx

@@ -10,20 +10,12 @@ Despliega Sim en tu propia infraestructura con Docker o Kubernetes.
 
 ## Requisitos
 
-| Recurso | Pequeño | Estándar | Producción |
+| Recurso | Mínimo | Recomendado |
-|----------|---------|----------|------------|
+|----------|---------|-------------|
-| CPU | 2 núcleos | 4 núcleos | 8+ núcleos |
+| CPU | 2 núcleos | 4+ núcleos |
-| RAM | 12 GB | 16 GB | 32+ GB |
+| RAM | 12 GB | 16+ GB |
-| Almacenamiento | 20 GB SSD | 50 GB SSD | 100+ GB SSD |
+| Almacenamiento | 20 GB SSD | 50+ GB SSD |
-| Docker | 20.10+ | 20.10+ | Última versión |
+| Docker | 20.10+ | Última versión |
-
-**Pequeño**: Desarrollo, pruebas, usuario único (1-5 usuarios)
-**Estándar**: Equipos (5-50 usuarios), cargas de trabajo moderadas
-**Producción**: Equipos grandes (50+ usuarios), alta disponibilidad, ejecución intensiva de workflows
-
-<Callout type="info">
-Los requisitos de recursos están determinados por la ejecución de workflows (sandboxing isolated-vm), procesamiento de archivos (análisis de documentos en memoria) y operaciones vectoriales (pgvector). La memoria suele ser el factor limitante, no la CPU. La telemetría de producción muestra que la aplicación principal usa 4-8 GB en promedio con picos de hasta 12 GB bajo carga pesada.
-</Callout>
 
 ## Inicio rápido
 

apps/docs/content/docs/fr/self-hosting/index.mdx

@@ -10,20 +10,12 @@ Déployez Sim sur votre propre infrastructure avec Docker ou Kubernetes.
 
 ## Prérequis
 
-| Ressource | Petit | Standard | Production |
+| Ressource | Minimum | Recommandé |
-|----------|-------|----------|------------|
+|----------|---------|-------------|
-| CPU | 2 cœurs | 4 cœurs | 8+ cœurs |
+| CPU | 2 cœurs | 4+ cœurs |
-| RAM | 12 Go | 16 Go | 32+ Go |
+| RAM | 12 Go | 16+ Go |
-| Stockage | 20 Go SSD | 50 Go SSD | 100+ Go SSD |
+| Stockage | 20 Go SSD | 50+ Go SSD |
-| Docker | 20.10+ | 20.10+ | Dernière version |
+| Docker | 20.10+ | Dernière version |
-
-**Petit** : Développement, tests, utilisateur unique (1-5 utilisateurs)
-**Standard** : Équipes (5-50 utilisateurs), charges de travail modérées
-**Production** : Grandes équipes (50+ utilisateurs), haute disponibilité, exécution intensive de workflows
-
-<Callout type="info">
-Les besoins en ressources sont déterminés par l'exécution des workflows (sandboxing isolated-vm), le traitement des fichiers (analyse de documents en mémoire) et les opérations vectorielles (pgvector). La mémoire est généralement le facteur limitant, pas le CPU. La télémétrie de production montre que l'application principale utilise 4-8 Go en moyenne avec des pics jusqu'à 12 Go sous forte charge.
-</Callout>
 
 ## Démarrage rapide
 

apps/docs/content/docs/ja/self-hosting/index.mdx

@@ -10,20 +10,12 @@ DockerまたはKubernetesを使用して、自社のインフラストラクチ
 
 ## 要件
 
-| リソース | スモール | スタンダード | プロダクション |
+| リソース | 最小 | 推奨 |
-|----------|---------|-------------|----------------|
+|----------|---------|-------------|
-| CPU | 2コア | 4コア | 8+コア |
+| CPU | 2コア | 4+コア |
-| RAM | 12 GB | 16 GB | 32+ GB |
+| RAM | 12 GB | 16+ GB |
-| ストレージ | 20 GB SSD | 50 GB SSD | 100+ GB SSD |
+| ストレージ | 20 GB SSD | 50+ GB SSD |
-| Docker | 20.10+ | 20.10+ | 最新版 |
+| Docker | 20.10+ | 最新版 |
-
-**スモール**: 開発、テスト、シングルユーザー（1-5ユーザー）
-**スタンダード**: チーム（5-50ユーザー）、中程度のワークロード
-**プロダクション**: 大規模チーム（50+ユーザー）、高可用性、高負荷ワークフロー実行
-
-<Callout type="info">
-リソース要件は、ワークフロー実行（isolated-vmサンドボックス）、ファイル処理（メモリ内ドキュメント解析）、ベクトル演算（pgvector）によって決まります。CPUよりもメモリが制約要因となることが多いです。本番環境のテレメトリによると、メインアプリは平均4-8 GB、高負荷時は最大12 GBを使用します。
-</Callout>
 
 ## クイックスタート
 

apps/docs/content/docs/zh/self-hosting/index.mdx

@@ -10,20 +10,12 @@ import { Callout } from 'fumadocs-ui/components/callout'
 
 ## 要求
 
-| 资源 | 小型 | 标准 | 生产环境 |
+| 资源 | 最低要求 | 推荐配置 |
-|----------|------|------|----------|
+|----------|---------|-------------|
-| CPU | 2 核 | 4 核 | 8+ 核 |
+| CPU | 2 核 | 4 核及以上 |
-| 内存 | 12 GB | 16 GB | 32+ GB |
+| 内存 | 12 GB | 16 GB 及以上 |
-| 存储 | 20 GB SSD | 50 GB SSD | 100+ GB SSD |
+| 存储 | 20 GB SSD | 50 GB 及以上 SSD |
-| Docker | 20.10+ | 20.10+ | 最新版本 |
+| Docker | 20.10+ | 最新版本 |
-
-**小型**: 开发、测试、单用户（1-5 用户）
-**标准**: 团队（5-50 用户）、中等工作负载
-**生产环境**: 大型团队（50+ 用户）、高可用性、密集工作流执行
-
-<Callout type="info">
-资源需求由工作流执行（isolated-vm 沙箱）、文件处理（内存中文档解析）和向量运算（pgvector）决定。内存通常是限制因素，而不是 CPU。生产遥测数据显示，主应用平均使用 4-8 GB，高负载时峰值可达 12 GB。
-</Callout>
 
 ## 快速开始
 

apps/sim/app/api/knowledge/search/utils.test.ts

@@ -408,7 +408,6 @@ describe('Knowledge Search Utils', () => {
             input: ['test query'],
             model: 'text-embedding-3-small',
             encoding_format: 'float',
-            dimensions: 1536,
           }),
         })
       )

apps/sim/lib/copilot/tools/client/knowledge/knowledge-base.ts

@@ -10,7 +10,6 @@ import {
   type KnowledgeBaseArgs,
 } from '@/lib/copilot/tools/shared/schemas'
 import { useCopilotStore } from '@/stores/panel/copilot/store'
-import { useWorkflowRegistry } from '@/stores/workflows/registry/store'
 
 /**
  * Client tool for knowledge base operations
@@ -103,19 +102,7 @@ export class KnowledgeBaseClientTool extends BaseClientTool {
     const logger = createLogger('KnowledgeBaseClientTool')
     try {
       this.setState(ClientToolCallState.executing)
-
+      const payload: KnowledgeBaseArgs = { ...(args || { operation: 'list' }) }
-      // Get the workspace ID from the workflow registry hydration state
-      const { hydration } = useWorkflowRegistry.getState()
-      const workspaceId = hydration.workspaceId
-
-      // Build payload with workspace ID included in args
-      const payload: KnowledgeBaseArgs = {
-        ...(args || { operation: 'list' }),
-        args: {
-          ...(args?.args || {}),
-          workspaceId: args?.args?.workspaceId || workspaceId || undefined,
-        },
-      }
 
       const res = await fetch('/api/copilot/execute-copilot-server-tool', {
         method: 'POST',

apps/sim/lib/copilot/tools/server/workflow/edit-workflow.ts

@@ -2508,10 +2508,6 @@ async function validateWorkflowSelectorIds(
     for (const subBlockConfig of blockConfig.subBlocks) {
       if (!SELECTOR_TYPES.has(subBlockConfig.type)) continue
 
-      // Skip oauth-input - credentials are pre-validated before edit application
-      // This allows existing collaborator credentials to remain untouched
-      if (subBlockConfig.type === 'oauth-input') continue
-
       const subBlockValue = blockData.subBlocks?.[subBlockConfig.id]?.value
       if (!subBlockValue) continue
 
@@ -2577,156 +2573,6 @@ async function validateWorkflowSelectorIds(
   return errors
 }
 
-/**
- * Pre-validates credential and apiKey inputs in operations before they are applied.
- * - Validates oauth-input (credential) IDs belong to the user
- * - Filters out apiKey inputs for hosted models when isHosted is true
- * Returns validation errors for any removed inputs.
- */
-async function preValidateCredentialInputs(
-  operations: EditWorkflowOperation[],
-  context: { userId: string }
-): Promise<{ filteredOperations: EditWorkflowOperation[]; errors: ValidationError[] }> {
-  const { isHosted } = await import('@/lib/core/config/feature-flags')
-  const { getHostedModels } = await import('@/providers/utils')
-
-  const logger = createLogger('PreValidateCredentials')
-  const errors: ValidationError[] = []
-
-  // Collect credential and apiKey inputs that need validation/filtering
-  const credentialInputs: Array<{
-    operationIndex: number
-    blockId: string
-    blockType: string
-    fieldName: string
-    value: string
-  }> = []
-
-  const hostedApiKeyInputs: Array<{
-    operationIndex: number
-    blockId: string
-    blockType: string
-    model: string
-  }> = []
-
-  const hostedModelsLower = isHosted ? new Set(getHostedModels().map((m) => m.toLowerCase())) : null
-
-  operations.forEach((op, opIndex) => {
-    if (!op.params?.inputs || !op.params?.type) return
-
-    const blockConfig = getBlock(op.params.type)
-    if (!blockConfig) return
-
-    // Find oauth-input subblocks
-    for (const subBlockConfig of blockConfig.subBlocks) {
-      if (subBlockConfig.type !== 'oauth-input') continue
-
-      const inputValue = op.params.inputs[subBlockConfig.id]
-      if (!inputValue || typeof inputValue !== 'string' || inputValue.trim() === '') continue
-
-      credentialInputs.push({
-        operationIndex: opIndex,
-        blockId: op.block_id,
-        blockType: op.params.type,
-        fieldName: subBlockConfig.id,
-        value: inputValue,
-      })
-    }
-
-    // Check for apiKey inputs on hosted models
-    if (hostedModelsLower && op.params.inputs.apiKey) {
-      const modelValue = op.params.inputs.model
-      if (modelValue && typeof modelValue === 'string') {
-        if (hostedModelsLower.has(modelValue.toLowerCase())) {
-          hostedApiKeyInputs.push({
-            operationIndex: opIndex,
-            blockId: op.block_id,
-            blockType: op.params.type,
-            model: modelValue,
-          })
-        }
-      }
-    }
-  })
-
-  const hasCredentialsToValidate = credentialInputs.length > 0
-  const hasHostedApiKeysToFilter = hostedApiKeyInputs.length > 0
-
-  if (!hasCredentialsToValidate && !hasHostedApiKeysToFilter) {
-    return { filteredOperations: operations, errors }
-  }
-
-  // Deep clone operations so we can modify them
-  const filteredOperations = structuredClone(operations)
-
-  // Filter out apiKey inputs for hosted models and add validation errors
-  if (hasHostedApiKeysToFilter) {
-    logger.info('Filtering apiKey inputs for hosted models', { count: hostedApiKeyInputs.length })
-
-    for (const apiKeyInput of hostedApiKeyInputs) {
-      const op = filteredOperations[apiKeyInput.operationIndex]
-      if (op.params?.inputs?.apiKey) {
-        op.params.inputs.apiKey = undefined
-        logger.debug('Filtered apiKey for hosted model', {
-          blockId: apiKeyInput.blockId,
-          model: apiKeyInput.model,
-        })
-
-        errors.push({
-          blockId: apiKeyInput.blockId,
-          blockType: apiKeyInput.blockType,
-          field: 'apiKey',
-          value: '[redacted]',
-          error: `Cannot set API key for hosted model "${apiKeyInput.model}" - API keys are managed by the platform when using hosted models`,
-        })
-      }
-    }
-  }
-
-  // Validate credential inputs
-  if (hasCredentialsToValidate) {
-    logger.info('Pre-validating credential inputs', {
-      credentialCount: credentialInputs.length,
-      userId: context.userId,
-    })
-
-    const allCredentialIds = credentialInputs.map((c) => c.value)
-    const validationResult = await validateSelectorIds('oauth-input', allCredentialIds, context)
-    const invalidSet = new Set(validationResult.invalid)
-
-    if (invalidSet.size > 0) {
-      for (const credInput of credentialInputs) {
-        if (!invalidSet.has(credInput.value)) continue
-
-        const op = filteredOperations[credInput.operationIndex]
-        if (op.params?.inputs?.[credInput.fieldName]) {
-          delete op.params.inputs[credInput.fieldName]
-          logger.info('Removed invalid credential from operation', {
-            blockId: credInput.blockId,
-            field: credInput.fieldName,
-            invalidValue: credInput.value,
-          })
-        }
-
-        const warningInfo = validationResult.warning ? `. ${validationResult.warning}` : ''
-        errors.push({
-          blockId: credInput.blockId,
-          blockType: credInput.blockType,
-          field: credInput.fieldName,
-          value: credInput.value,
-          error: `Invalid credential ID "${credInput.value}" - credential does not exist or user doesn't have access${warningInfo}`,
-        })
-      }
-
-      logger.warn('Filtered out invalid credentials', {
-        invalidCount: invalidSet.size,
-      })
-    }
-  }
-
-  return { filteredOperations, errors }
-}
-
 async function getCurrentWorkflowStateFromDb(
   workflowId: string
 ): Promise<{ workflowState: any; subBlockValues: Record<string, Record<string, any>> }> {
@@ -2811,28 +2657,12 @@ export const editWorkflowServerTool: BaseServerTool<EditWorkflowParams, any> = {
     // Get permission config for the user
     const permissionConfig = context?.userId ? await getUserPermissionConfig(context.userId) : null
 
-    // Pre-validate credential and apiKey inputs before applying operations
-    // This filters out invalid credentials and apiKeys for hosted models
-    let operationsToApply = operations
-    const credentialErrors: ValidationError[] = []
-    if (context?.userId) {
-      const { filteredOperations, errors: credErrors } = await preValidateCredentialInputs(
-        operations,
-        { userId: context.userId }
-      )
-      operationsToApply = filteredOperations
-      credentialErrors.push(...credErrors)
-    }
-
     // Apply operations directly to the workflow state
     const {
       state: modifiedWorkflowState,
       validationErrors,
       skippedItems,
-    } = applyOperationsToWorkflowState(workflowState, operationsToApply, permissionConfig)
+    } = applyOperationsToWorkflowState(workflowState, operations, permissionConfig)
-
-    // Add credential validation errors
-    validationErrors.push(...credentialErrors)
 
     // Get workspaceId for selector validation
     let workspaceId: string | undefined

apps/sim/lib/knowledge/embeddings.ts

@@ -8,17 +8,6 @@ const logger = createLogger('EmbeddingUtils')
 
 const MAX_TOKENS_PER_REQUEST = 8000
 const MAX_CONCURRENT_BATCHES = env.KB_CONFIG_CONCURRENCY_LIMIT || 50
-const EMBEDDING_DIMENSIONS = 1536
-
-/**
- * Check if the model supports custom dimensions.
- * text-embedding-3-* models support the dimensions parameter.
- * Checks for 'embedding-3' to handle Azure deployments with custom naming conventions.
- */
-function supportsCustomDimensions(modelName: string): boolean {
-  const name = modelName.toLowerCase()
-  return name.includes('embedding-3') && !name.includes('ada')
-}
 
 export class EmbeddingAPIError extends Error {
   public status: number
@@ -104,19 +93,15 @@ async function getEmbeddingConfig(
 async function callEmbeddingAPI(inputs: string[], config: EmbeddingConfig): Promise<number[][]> {
   return retryWithExponentialBackoff(
     async () => {
-      const useDimensions = supportsCustomDimensions(config.modelName)
-
       const requestBody = config.useAzure
         ? {
             input: inputs,
             encoding_format: 'float',
-            ...(useDimensions && { dimensions: EMBEDDING_DIMENSIONS }),
           }
         : {
             input: inputs,
             model: config.modelName,
             encoding_format: 'float',
-            ...(useDimensions && { dimensions: EMBEDDING_DIMENSIONS }),
           }
 
       const response = await fetch(config.apiUrl, {

apps/sim/lib/uploads/providers/blob/client.ts

@@ -18,52 +18,6 @@ const logger = createLogger('BlobClient')
 
 let _blobServiceClient: BlobServiceClientInstance | null = null
 
-interface ParsedCredentials {
-  accountName: string
-  accountKey: string
-}
-
-/**
- * Extract account name and key from an Azure connection string.
- * Connection strings have the format: DefaultEndpointsProtocol=https;AccountName=...;AccountKey=...;EndpointSuffix=...
- */
-function parseConnectionString(connectionString: string): ParsedCredentials {
-  const accountNameMatch = connectionString.match(/AccountName=([^;]+)/)
-  if (!accountNameMatch) {
-    throw new Error('Cannot extract account name from connection string')
-  }
-
-  const accountKeyMatch = connectionString.match(/AccountKey=([^;]+)/)
-  if (!accountKeyMatch) {
-    throw new Error('Cannot extract account key from connection string')
-  }
-
-  return {
-    accountName: accountNameMatch[1],
-    accountKey: accountKeyMatch[1],
-  }
-}
-
-/**
- * Get account credentials from BLOB_CONFIG, extracting from connection string if necessary.
- */
-function getAccountCredentials(): ParsedCredentials {
-  if (BLOB_CONFIG.connectionString) {
-    return parseConnectionString(BLOB_CONFIG.connectionString)
-  }
-
-  if (BLOB_CONFIG.accountName && BLOB_CONFIG.accountKey) {
-    return {
-      accountName: BLOB_CONFIG.accountName,
-      accountKey: BLOB_CONFIG.accountKey,
-    }
-  }
-
-  throw new Error(
-    'Azure Blob Storage credentials are missing – set AZURE_CONNECTION_STRING or both AZURE_ACCOUNT_NAME and AZURE_ACCOUNT_KEY'
-  )
-}
-
 export async function getBlobServiceClient(): Promise<BlobServiceClientInstance> {
   if (_blobServiceClient) return _blobServiceClient
 
@@ -173,8 +127,6 @@ export async function getPresignedUrl(key: string, expiresIn = 3600) {
   const containerClient = blobServiceClient.getContainerClient(BLOB_CONFIG.containerName)
   const blockBlobClient = containerClient.getBlockBlobClient(key)
 
-  const { accountName, accountKey } = getAccountCredentials()
-
   const sasOptions = {
     containerName: BLOB_CONFIG.containerName,
     blobName: key,
@@ -185,7 +137,13 @@ export async function getPresignedUrl(key: string, expiresIn = 3600) {
 
   const sasToken = generateBlobSASQueryParameters(
     sasOptions,
-    new StorageSharedKeyCredential(accountName, accountKey)
+    new StorageSharedKeyCredential(
+      BLOB_CONFIG.accountName,
+      BLOB_CONFIG.accountKey ??
+        (() => {
+          throw new Error('AZURE_ACCOUNT_KEY is required when using account name authentication')
+        })()
+    )
   ).toString()
 
   return `${blockBlobClient.url}?${sasToken}`
@@ -210,14 +168,9 @@ export async function getPresignedUrlWithConfig(
     StorageSharedKeyCredential,
   } = await import('@azure/storage-blob')
   let tempBlobServiceClient: BlobServiceClientInstance
-  let accountName: string
-  let accountKey: string
 
   if (customConfig.connectionString) {
     tempBlobServiceClient = BlobServiceClient.fromConnectionString(customConfig.connectionString)
-    const credentials = parseConnectionString(customConfig.connectionString)
-    accountName = credentials.accountName
-    accountKey = credentials.accountKey
   } else if (customConfig.accountName && customConfig.accountKey) {
     const sharedKeyCredential = new StorageSharedKeyCredential(
       customConfig.accountName,
@@ -227,8 +180,6 @@ export async function getPresignedUrlWithConfig(
       `https://${customConfig.accountName}.blob.core.windows.net`,
       sharedKeyCredential
     )
-    accountName = customConfig.accountName
-    accountKey = customConfig.accountKey
   } else {
     throw new Error(
       'Custom blob config must include either connectionString or accountName + accountKey'
@@ -248,7 +199,13 @@ export async function getPresignedUrlWithConfig(
 
   const sasToken = generateBlobSASQueryParameters(
     sasOptions,
-    new StorageSharedKeyCredential(accountName, accountKey)
+    new StorageSharedKeyCredential(
+      customConfig.accountName,
+      customConfig.accountKey ??
+        (() => {
+          throw new Error('Account key is required when using account name authentication')
+        })()
+    )
   ).toString()
 
   return `${blockBlobClient.url}?${sasToken}`
@@ -446,9 +403,13 @@ export async function getMultipartPartUrls(
   if (customConfig) {
     if (customConfig.connectionString) {
       blobServiceClient = BlobServiceClient.fromConnectionString(customConfig.connectionString)
-      const credentials = parseConnectionString(customConfig.connectionString)
+      const match = customConfig.connectionString.match(/AccountName=([^;]+)/)
-      accountName = credentials.accountName
+      if (!match) throw new Error('Cannot extract account name from connection string')
-      accountKey = credentials.accountKey
+      accountName = match[1]
+
+      const keyMatch = customConfig.connectionString.match(/AccountKey=([^;]+)/)
+      if (!keyMatch) throw new Error('Cannot extract account key from connection string')
+      accountKey = keyMatch[1]
     } else if (customConfig.accountName && customConfig.accountKey) {
       const credential = new StorageSharedKeyCredential(
         customConfig.accountName,
@@ -467,9 +428,12 @@ export async function getMultipartPartUrls(
   } else {
     blobServiceClient = await getBlobServiceClient()
     containerName = BLOB_CONFIG.containerName
-    const credentials = getAccountCredentials()
+    accountName = BLOB_CONFIG.accountName
-    accountName = credentials.accountName
+    accountKey =
-    accountKey = credentials.accountKey
+      BLOB_CONFIG.accountKey ||
+      (() => {
+        throw new Error('AZURE_ACCOUNT_KEY is required')
+      })()
   }
 
   const containerClient = blobServiceClient.getContainerClient(containerName)
@@ -537,10 +501,12 @@ export async function completeMultipartUpload(
   const containerClient = blobServiceClient.getContainerClient(containerName)
   const blockBlobClient = containerClient.getBlockBlobClient(key)
 
+  // Sort parts by part number and extract block IDs
   const sortedBlockIds = parts
     .sort((a, b) => a.partNumber - b.partNumber)
     .map((part) => part.blockId)
 
+  // Commit the block list to create the final blob
   await blockBlobClient.commitBlockList(sortedBlockIds, {
     metadata: {
       multipartUpload: 'completed',
@@ -591,8 +557,10 @@ export async function abortMultipartUpload(key: string, customConfig?: BlobConfi
   const blockBlobClient = containerClient.getBlockBlobClient(key)
 
   try {
+    // Delete the blob if it exists (this also cleans up any uncommitted blocks)
     await blockBlobClient.deleteIfExists()
   } catch (error) {
+    // Ignore errors since we're just cleaning up
     logger.warn('Error cleaning up multipart upload:', error)
   }
 }

docker-compose.local.yml

@@ -52,7 +52,7 @@ services:
     deploy:
       resources:
         limits:
-          memory: 1G
+          memory: 8G
     healthcheck:
       test: ['CMD', 'wget', '--spider', '--quiet', 'http://127.0.0.1:3002/health']
       interval: 90s

docker-compose.ollama.yml

@@ -56,7 +56,7 @@ services:
     deploy:
       resources:
         limits:
-          memory: 1G
+          memory: 8G
     healthcheck:
       test: ['CMD', 'wget', '--spider', '--quiet', 'http://127.0.0.1:3002/health']
       interval: 90s

docker-compose.prod.yml

@@ -42,7 +42,7 @@ services:
     deploy:
       resources:
         limits:
-          memory: 1G
+          memory: 4G
     environment:
       - DATABASE_URL=postgresql://${POSTGRES_USER:-postgres}:${POSTGRES_PASSWORD:-postgres}@db:5432/${POSTGRES_DB:-simstudio}
       - NEXT_PUBLIC_APP_URL=${NEXT_PUBLIC_APP_URL:-http://localhost:3000}

helm/sim/examples/values-production.yaml

@@ -13,10 +13,10 @@ app:
   
   resources:
     limits:
-      memory: "8Gi"
+      memory: "6Gi"
       cpu: "2000m"
     requests:
-      memory: "6Gi"
+      memory: "4Gi"
       cpu: "1000m"
   
   # Production URLs (REQUIRED - update with your actual domain names)
@@ -52,11 +52,11 @@ realtime:
   
   resources:
     limits:
-      memory: "1Gi"
+      memory: "4Gi"
-      cpu: "500m"
+      cpu: "1000m"
     requests:
-      memory: "512Mi"
+      memory: "2Gi"
-      cpu: "250m"
+      cpu: "500m"
   
   env:
     NEXT_PUBLIC_APP_URL: "https://sim.acme.ai"

helm/sim/values.yaml

@@ -29,10 +29,10 @@ app:
   # Resource limits and requests
   resources:
     limits:
-      memory: "8Gi"
+      memory: "4Gi"
       cpu: "2000m"
     requests:
-      memory: "4Gi"
+      memory: "2Gi"
       cpu: "1000m"
 
   # Node selector for pod scheduling (leave empty to allow scheduling on any node)
@@ -245,11 +245,11 @@ realtime:
   # Resource limits and requests
   resources:
     limits:
+      memory: "2Gi"
+      cpu: "1000m"
+    requests:
       memory: "1Gi"
       cpu: "500m"
-    requests:
-      memory: "512Mi"
-      cpu: "250m"
   
   # Node selector for pod scheduling (leave empty to allow scheduling on any node)
   nodeSelector: {}