A follow-up release focused on polishing the Multiverse experience and substantially hardening Enjin Connect reliability and authentication. Notable security improvements include rate limiting on login, address-to-session binding for Enjin Connect, PII sanitisation in auth logs, and stricter cookie handling.

Added

• Tap-to-connect on the Enjin Connect modal
• Create-pool notifications
• Multiverse video hero, OG banner, and Terms of Service
• Notifications page disclaimer
• Indexer order enums for tokens
• Multiverse promo rewards and total wallets display
• EnjinConnect Debug feature toggle
• Rate limiting on the login endpoint (10 req/min per IP)
• Address-to-session binding verification for Enjin Connect

Changed

• PTS terminology renamed to ESSENCE
• FAQ updates
• Notifications are now prunable, with daily pruning of user notifications
• Pool mutated notifications dispatched only for active pools
• Raw metadata fetching replaced with the metadata service
• Multiverse tokens now minted using a dedicated minting account
• Cookie TTL aligned with session TTL at 28 days; HttpOnly set on the wallet connection cookie
• Empty pools removed from staking analytics

Fixed

• Profile card layout gap and connect button issues
• Counter offer and royalty-increase listing flows
• Token group editing
• Collection banner display
• Search sorting
• Enjin Connect browser and websocket issues
• localStorage clearing bug that skipped items during iteration
• Cross-subdomain login
• Auth message UUID is now invalidated after successful authentication
• PII sanitised from wallet signature verification logs