Merge pull request #1400 from trycompai/main

[comp] Production Deploy

Author: Marfuen

.env.example

@@ -1,49 +1,23 @@
-# Database Configuration - Required
-DATABASE_URL="postgresql://postgres:[email protected]:5432/comp"
+# Required
+AUTH_SECRET="" # openssl rand -base64 32
+DATABASE_URL="" # Format: "postgresql://postgres:[email protected]:5432/comp"
+RESEND_DOMAIN=" # Domain configured in Resend, e.g. mail.trycomp.ai
+RESEND_API_KEY="" # API key from Resend for email authentication / invites
+REVALIDATION_SECRET="" # openssl rand -base64 32
+NEXT_PUBLIC_PORTAL_URL="http://localhost:3002" # The employee portal uses port 3002 by default
+
+# Recommended
+# Store attachemnts in any S3 compatible bucket, we use AWS
+APP_AWS_ACCESS_KEY_ID="" # AWS Access Key ID
+APP_AWS_SECRET_ACCESS_KEY="" # AWS Secret Access Key
+APP_AWS_REGION="" # AWS Region
+APP_AWS_BUCKET_NAME="" # AWS Bucket Name
+
+TRIGGER_SECRET_KEY="" # For background jobs. Self-host or use cloud-version @ https://trigger.dev
+# TRIGGER_API_URL="" # Only set if you are self-hosting
+TRIGGER_API_KEY="" # API key from Trigger.dev
+TRIGGER_SECRET_KEY="" # Secret key from Trigger.dev
+
+OPENAI_API_KEY="" # AI Chat + Auto Generated Policies, Risks + Vendors
+FIRECRAWL_API_KEY="" # For research, self-host or use cloud-version @ https://firecrawl.dev
 
-# Authentication - Required
-AUTH_SECRET=your-secret-auth-key-here-min-32-chars
-
-# Optional
-AUTH_GOOGLE_ID=your-google-oauth-client-id
-AUTH_GOOGLE_SECRET=your-google-oauth-client-secret
-AUTH_GITHUB_ID=your-github-oauth-app-id
-AUTH_GITHUB_SECRET=your-github-oauth-app-secret
-
-# Email Service - Required for OTP and Magic Link
-RESEND_API_KEY=re_your_resend_api_key_here
-
-# Application URLs
-NEXT_PUBLIC_PORTAL_URL=http://localhost:3001
-NEXT_PUBLIC_VERCEL_URL=http://localhost:3000
-
-# Security
-REVALIDATION_SECRET=your-revalidation-secret-here
-
-# Required - Redis/Upstash (for caching)
-UPSTASH_REDIS_REST_URL=your-upstash-redis-url
-UPSTASH_REDIS_REST_TOKEN=your-upstash-redis-token
-
-# Optional - AWS S3 (for file uploads)
-APP_AWS_ACCESS_KEY_ID=your-aws-access-key
-APP_AWS_SECRET_ACCESS_KEY=your-aws-secret-key
-APP_AWS_REGION=us-east-1
-APP_AWS_BUCKET_NAME=your-s3-bucket-name
-
-# Optional - for AI features
-OPENAI_API_KEY=sk-your-openai-api-key
-
-# Optional - Analytics
-NEXT_PUBLIC_POSTHOG_KEY=your-posthog-key
-NEXT_PUBLIC_POSTHOG_HOST=https://app.posthog.com
-
-# Required - External Services
-TRIGGER_SECRET_KEY=your-trigger-secret
-TRIGGER_API_KEY=your-trigger-api-key
-
-# Required - Chat and research with AI
-GROQ_API_KEY=your-groq-api-key
-FIRECRAWL_API_KEY=your-firecrawl-key
-
-# Environment
-NODE_ENV=production 

README.md

@@ -1,7 +1,7 @@
 <!-- PROJECT LOGO -->
 <p align="center">
   <a href="https://github.com/trycompai/comp">
-   <img src="https://lp.trycomp.ai/logo_light.svg" alt="Logo" width="50%">
+   <img src="https://assets.trycomp.ai/logo.png" alt="Logo" width="10%">
   </a>
 
   <h3 align="center">Comp AI</h3>
@@ -24,23 +24,28 @@
   </p>
 </p>
 
-## About
+<p align="center">
+   <a href="https://www.producthunt.com/products/comp-ai-get-soc-2-iso-27001-gdpr/launches/comp-ai"><img src="https://img.shields.io/badge/Product%20Hunt-%231%20Product%20of%20the%Day%23DA552E" alt="Product Hunt"></a>
+   <a href="https://github.com/trycompai/comp/stargazers"><img src="https://img.shields.io/github/stars/trycompai/comp" alt="Github Stars"></a>
+   <a href="https://github.com/trycompai/comp/blob/main/LICENSE"><img src="https://img.shields.io/badge/license-AGPLv3-purple" alt="License"></a>
+   <a href="https://github.com/trycompai/comp/pulse"><img src="https://img.shields.io/github/commit-activity/m/trycompai/comp" alt="Commits-per-month"></a>
+   <a href="https://github.com/trycompai/comp/issues"><img src="https://img.shields.io/badge/Help%20Wanted-Contribute-blue"></a>
+</p>
 
-# Security and compliance, open.
+## About
 
-We're building the first open source compliance automation platform that helps companies of any size work towards, manage and achieve compliance with common standards like SOC 2, ISO 27001 and GDPR.
+### AI that handles compliance for you in hours.
 
-We transform compliance from a vendor checkbox into an engineering problem solved through code. Our platform automates evidence collection, policy management, and control implementation while keeping you in control of your data and infrastructure.
+Comp AI is the fastest way to get compliant with frameworks like SOC 2, ISO 27001, HIPAA and GDPR. Comp AI automates evidence collection, policy management, and control implementation while keeping you in control of your data and infrastructure.
 
 ## Recognition
 
 #### [ProductHunt](https://www.producthunt.com/posts/comp-ai)
 
 <a href="https://www.producthunt.com/posts/comp-ai?embed=true&utm_source=badge-top-post-badge&utm_medium=badge&utm_souce=badge-comp&#0045;ai" target="_blank"><img src="https://api.producthunt.com/widgets/embed-image/v1/top-post-badge.svg?post_id=944698&theme=light&period=daily&t=1745500415958" alt="Comp&#0032;AI - The&#0032;open&#0032;source&#0032;Vanta&#0032;&#0038;&#0032;Drata&#0032;alternative | Product Hunt" style="width: 250px; height: 54px;" width="250" height="54" /></a>
 
-### [Vercel](https://vercel.com)
+#### [Vercel](https://vercel.com/)
 
-<br />
 <a href="https://vercel.com/oss">
   <img alt="Vercel OSS Program" src="https://vercel.com/oss/program-badge.svg" />
 </a>
@@ -92,41 +97,13 @@ To get the project working locally with all integrations, follow these extended
    cd comp
    ```
 
-3. Remove existing lock files:
-
-#### Linux / macOS
-
-```sh
-rm bun.lock yarn.lock
-```
-
-#### Windows (Command Prompt)
-
-```cmd
-del bun.lock yarn.lock
-```
-
-#### Windows (PowerShell)
-
-```powershell
-Remove-Item bun.lock, yarn.lock
-```
-
-4. Remove any `yarn` references from `comp/apps/app/package.json`
-
-```sh
-"yarn": "^1.22.22",
-```
-
-> 💡 Make sure this line is already deleted or running `bun install` will give you an error.
-
-5. Install dependencies using Bun:
+3. Install dependencies using Bun:
 
 ```sh
    bun install
 ```
 
-6. Install `concurrently` as a dev dependency:
+4. Install `concurrently` as a dev dependency:
 
 ```sh
    bun add -d concurrently
@@ -301,48 +278,6 @@ bun docker:clean
 
 ---
 
-### Hardcoding Env Vars (if needed)
-
-If `.env` files don’t load values as expected, you can hard-code the following:
-
-- **`comp/packages/kv/src/index.ts`** → Hard-coded Redis client credentials:
-  - **URL**: The Redis URL needs to start with `https`. Example:
-    ```sh
-    url: "https://default:AXhaAA***MA@charmed-wombat-3**0.upstash.io:6379"
-    ```
-  - **Token**: Example:
-    ```sh
-    token: "935****8f20"
-    ```
-
-- **`comp/packages/db/prisma/schema.prisma`** → Hard-coded `DATABASE_URL`:
-  - Example:
-    `sh
-    datasource db {
-  url        = "postpostgresql://user:password@host:port/database?schema=public"
-  directUrl  = "postpostgresql://user:password@host:port/database?schema=public"
-}
-    `
-
-- **`comp/apps/portal/src/app/lib/auth.ts`** → Hard-coded Google environment variables `clientId`, `clientSecret` under `socialProviders/google`:
-  - Example:
-    ```js
-    socialProviders: {
-      google: {
-        clientId: "your-client-id",
-        clientSecret: "your-client-secret"
-      }
-    }
-    ```
-
-- **`comp/apps/app/trigger.config.ts`** → Change the project to yours:
-  - Example:
-    ```sh
-    projectId: "proj_la**ob"
-    ```
-
----
-
 ### Start Development
 
 Once everything is configured:
@@ -432,7 +367,3 @@ Comp AI, Inc. is a commercial open source company, which means some parts of thi
 
 > [!TIP]
 > We work closely with the community and always invite feedback about what should be open and what is fine to be commercial. This list is not set and stone and we have moved things from commercial to open in the past. Please open a [discussion](https://github.com/trycompai/comp/discussions) if you feel like something is wrong.
-
-```
-
-```

SELF_HOSTING.md

@@ -49,10 +49,8 @@ App (`apps/app`):
 - **NEXT_PUBLIC_GTM_ID**: Google Tag Manager container ID for client tracking.
 - **NEXT_PUBLIC_LINKEDIN_PARTNER_ID**, **NEXT_PUBLIC_LINKEDIN_CONVERSION_ID**: LinkedIn insights/conversion tracking.
 - **NEXT_PUBLIC_GOOGLE_ADS_CONVERSION_LABEL**: Google Ads conversion tracking label.
-- **ZAPIER_HUBSPOT_WEBHOOK_URL**: Zapier inbound webhook for HubSpot events.
-- **HUBSPOT_ACCESS_TOKEN**: Server-side HubSpot API access for CRM sync.
 - **DUB_API_KEY**, **DUB_REFER_URL**: Dub.co link shortener/referral features.
-- **FIRECRAWL_API_KEY**, **GROQ_API_KEY**: Optional LLM/crawling providers for research features.
+- **FIRECRAWL_API_KEY**: Optional LLM/crawling providers for research features.
 - **SLACK_SALES_WEBHOOK**: Slack webhook for sales/lead notifications.
 - **GA4_API_SECRET**, **GA4_MEASUREMENT_ID**: Google Analytics 4 server/client tracking.
 - **NEXT_PUBLIC_API_URL**: Override client API base URL (defaults to same origin).
@@ -154,12 +152,9 @@ NEXT_PUBLIC_BETTER_AUTH_URL_PORTAL=http://localhost:3002
 # NEXT_PUBLIC_LINKEDIN_PARTNER_ID=
 # NEXT_PUBLIC_LINKEDIN_CONVERSION_ID=
 # NEXT_PUBLIC_GOOGLE_ADS_CONVERSION_LABEL=
-# ZAPIER_HUBSPOT_WEBHOOK_URL=
-# HUBSPOT_ACCESS_TOKEN=
 # DUB_API_KEY=
 # DUB_REFER_URL=
 # FIRECRAWL_API_KEY=
-# GROQ_API_KEY=
 # SLACK_SALES_WEBHOOK=
 # GA4_API_SECRET=
 # GA4_MEASUREMENT_ID=

apps/app/.env.example

@@ -1,45 +1,23 @@
-# Authentication (https://console.cloud.google.com/apis/credentials)
-AUTH_SECRET=""        # Generate with: openssl rand -base64 32
-AUTH_GOOGLE_ID=""     # Google Cloud Console -> APIs & Services -> Credentials -> Create OAuth 2.0 Client ID
-AUTH_GOOGLE_SECRET="" # Google Cloud Console -> Same location as above
-
-# Database (https://neon.tech)
+# Required
+AUTH_SECRET="" # openssl rand -base64 32
 DATABASE_URL="" # Format: "postgresql://postgres:[email protected]:5432/comp"
+RESEND_DOMAIN=" # Domain configured in Resend, e.g. mail.trycomp.ai
+RESEND_API_KEY="" # API key from Resend for email authentication / invites
+REVALIDATION_SECRET="" # openssl rand -base64 32
+NEXT_PUBLIC_PORTAL_URL="http://localhost:3002" # The employee portal uses port 3002 by default
+
+# Recommended
+# Store attachemnts in any S3 compatible bucket, we use AWS
+APP_AWS_ACCESS_KEY_ID="" # AWS Access Key ID
+APP_AWS_SECRET_ACCESS_KEY="" # AWS Secret Access Key
+APP_AWS_REGION="" # AWS Region
+APP_AWS_BUCKET_NAME="" # AWS Bucket Name
+
+TRIGGER_SECRET_KEY="" # For background jobs. Self-host or use cloud-version @ https://trigger.dev
+# TRIGGER_API_URL="" # Only set if you are self-hosting
+TRIGGER_API_KEY="" # API key from Trigger.dev
+TRIGGER_SECRET_KEY="" # Secret key from Trigger.dev
+
+OPENAI_API_KEY="" # AI Chat + Auto Generated Policies, Risks + Vendors
+FIRECRAWL_API_KEY="" # For research, self-host or use cloud-version @ https://firecrawl.dev
 
-# AI Services
-# OpenAI (https://platform.openai.com/api-keys)
-OPENAI_API_KEY="" # Get from OpenAI dashboard -> API Keys
-
-# Sentry (optional)
-SENTRY_AUTH_TOKEN="" # Sentry Dashboard -> Settings -> API Keys
-
-# Email Services
-# Resend (https://resend.com/api-keys)
-RESEND_API_KEY="" # Resend Dashboard -> API Keys
-
-# Infrastructure
-# Redis - Upstash (https://console.upstash.com/)
-UPSTASH_REDIS_REST_URL=""   # Upstash Console -> Redis -> Create Database
-UPSTASH_REDIS_REST_TOKEN="" # Found in the same database details page
-
-# File Storage
-# Upload Thing (https://uploadthing.com/dashboard)
-UPLOADTHING_TOKEN=""  # Upload Thing Dashboard -> API Keys
-UPLOADTHING_SECRET="" # Upload Thing Dashboard -> API Keys
-
-# Integration Services
-# OpenPanel (https://openpanel.dev)
-OPENPANEL_SECRET_KEY=""            # OpenPanel Dashboard -> Settings -> API Keys
-NEXT_PUBLIC_OPENPANEL_CLIENT_ID="" # OpenPanel Dashboard -> Settings -> Client ID
-
-# Nango (https://app.nango.dev)
-NANGO_SECRET_KEY="" # Nango Dashboard -> API Keys
-
-# Trigger.dev (https://app.trigger.dev)
-TRIGGER_SECRET_KEY="" # Trigger.dev Dashboard -> Project Settings -> API Keys
-
-# Monitoring
-DISCORD_WEBHOOK_URL="" # Discord Server -> Settings -> Integrations -> Create Webhook
-
-NEXT_PUBLIC_PORTAL_URL="http://localhost:3002" # http://localhost:3002
-REVALIDATION_SECRET=""                         # It can be anything (Use `openssl rand -base64 32` to generate)

apps/app/src/actions/organization/accept-invitation.ts

@@ -3,7 +3,6 @@
 import { db } from '@db';
 import { revalidatePath, revalidateTag } from 'next/cache';
 import { redirect } from 'next/navigation';
-import { Resend } from 'resend';
 import { z } from 'zod';
 import { authActionClientWithoutOrg } from '../safe-action';
 import type { ActionResponse } from '../types';
@@ -124,22 +123,6 @@ export const completeInvitation = authActionClientWithoutOrg
           },
         });
 
-        if (process.env.RESEND_API_KEY && process.env.RESEND_AUDIENCE_ID) {
-          const resend = new Resend(process.env.RESEND_API_KEY);
-
-          await resend.contacts.create({
-            firstName:
-              (user.name?.split(' ')[0] || '').charAt(0).toUpperCase() +
-              (user.name?.split(' ')[0] || '').slice(1),
-            lastName:
-              (user.name?.split(' ')[1] || '').charAt(0).toUpperCase() +
-              (user.name?.split(' ')[1] || '').slice(1),
-            email: user.email,
-            unsubscribed: false,
-            audienceId: process.env.RESEND_AUDIENCE_ID,
-          });
-        }
-
         revalidatePath(`/${invitation.organization.id}`);
         revalidatePath(`/${invitation.organization.id}/settings/users`);
         revalidateTag(`user_${user.id}`);

apps/app/src/actions/send-feedback-action.ts

@@ -42,11 +42,7 @@ export function DynamicMinHeight({ children, className }: DynamicMinHeightProps)
   const style = useMemo(() => ({ minHeight: `calc(100vh - ${offsetPx}px)` }), [offsetPx]);
 
   return (
-    <div
-      ref={containerRef}
-      className={cn('textured-background mx-auto px-4 py-4', className)}
-      style={style}
-    >
+    <div ref={containerRef} className={cn('mx-auto px-4 py-4', className)} style={style}>
       {children}
     </div>
   );

apps/app/src/app/(app)/[orgId]/components/DynamicMinHeight.tsx

@@ -49,7 +49,7 @@ export const ControlRequirementsTableColumns: ColumnDef<RequirementTableData>[]
       return (
         <div className="flex items-center justify-center">
           {isCompleted ? (
-            <CheckCircle2 size={16} className="text-green-500" />
+            <CheckCircle2 size={16} className="text-primary" />
           ) : (
             <XCircle size={16} className="text-red-500" />
           )}