v1.38.2

build: prepare to build
chore: 手机端流水线历史记录默认收起
2026-04-03 22:20:51 +08:00 · 2026-01-22 12:30:59 +08:00 · 2026-01-22 12:26:25 +08:00 · 2026-01-22 12:25:22 +08:00 · 2026-01-22 12:02:34 +08:00 · 2026-01-22 11:55:01 +08:00
860 changed files with 34019 additions and 6591 deletions
--- a/.github/workflows/deploy-demo.yml
+++ b/.github/workflows/deploy-demo.yml
@@ -19,6 +19,7 @@ permissions:
 jobs:
  deploy-certd-demo:
    runs-on: ubuntu-latest
+    if: ${{ github.event.workflow_run.conclusion == 'success' }}
    steps:
      - name: Checkout Code
        uses: actions/checkout@v4
@@ -44,7 +45,8 @@ jobs:
      - name: deploy-certd-demo
        uses: tyrrrz/action-http-request@master
        with:
-          url: http://flow-openapi.aliyun.com/pipeline/webhook/lzCzlGrLCOHQaTMMt0mG
+          # 通过webhook 触发 certd-demo来部署
+          url: ${{ secrets.WEBHOOK_CERTD_DEMO }}
          method: POST
          headers: |
            Content-Type: application/json
@@ -54,4 +56,3 @@ jobs:
            }
          retry-count: 3
          retry-delay: 5000
-
--- a/.github/workflows/publish-atom.yaml
+++ b/.github/workflows/publish-atom.yaml
@@ -0,0 +1,61 @@
+name: publish-atomgit
+on:
+  push:
+    branches: ['v2-dev']
+    paths:
+      - "trigger/publish.trigger"
+  workflow_run:
+    workflows: [ "build-image-for-release" ]
+    types:
+      - completed
+
+#  schedule:
+#    - # 国际时间 19:17 执行，北京时间3:17  ↙↙↙ 改成你想要每天自动执行的时间
+#    - cron: '17 19 * * *'
+permissions:
+  contents: read
+  packages: write
+
+jobs:
+  publish-atomgit:
+    runs-on: ubuntu-latest
+    if: ${{ github.event.workflow_run.conclusion == 'success' }}
+    steps:
+      - name: Checkout Code
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+          lfs: true
+      - name: get_certd_version
+        id: get_certd_version
+        uses: actions/github-script@v6
+        with:
+          result-encoding: string
+          script: |
+            const fs = require('fs');
+            const path = require('path');
+            const pnpmWorkspace = "./pnpm-workspace.yaml";
+            fs.unlinkSync(pnpmWorkspace)
+            const jsonFilePath = "./packages/ui/certd-server/package.json";
+            const jsonContent = fs.readFileSync(jsonFilePath, 'utf-8');
+            const pkg = JSON.parse(jsonContent)
+            console.log("certd_version:",pkg.version);
+            return pkg.version
+      - run: |
+          npm install -g pnpm
+          pnpm install
+          npm run build
+        working-directory: ./packages/ui/certd-client
+            
+      - name: publish_to_atomgit
+        id: publish_to_atomgit
+        run: |
+          rootDir=$(pwd)
+          rm -rf ./packages/ui/certd-client/dist/**/*.gz 
+          cd ./packages/ui/certd-client/dist && zip -r ../ui.zip .
+          cd $rootDir
+          export ATOMGIT_TOKEN=${{ secrets.ATOMGIT_TOKEN }}
+          pnpm install
+          npm run publish_to_atomgit
+        working-directory: ./
+     
--- a/.github/workflows/publish-gitee.yaml
+++ b/.github/workflows/publish-gitee.yaml
@@ -0,0 +1,39 @@
+name: publish-gitee
+on:
+  push:
+    branches: ['v2-dev']
+    paths:
+      - "trigger/publish.trigger"
+  workflow_run:
+    workflows: [ "build-image-for-release" ]
+    types:
+      - completed
+
+#  schedule:
+#    - # 国际时间 19:17 执行，北京时间3:17  ↙↙↙ 改成你想要每天自动执行的时间
+#    - cron: '17 19 * * *'
+permissions:
+  contents: read
+  packages: write
+
+jobs:
+  publish-gitee:
+    runs-on: ubuntu-latest
+    if: ${{ github.event.workflow_run.conclusion == 'success' }}
+    steps:
+      - name: Checkout Code
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+          lfs: true
+            
+      - name: publish_to_gitee
+        id: publish_to_gitee
+        run: |
+          export GITEE_TOKEN=${{ secrets.GITEE_TOKEN }}
+          rm -rf ./pnpm*.yaml
+          npm install -g pnpm
+          pnpm install
+          npm run publish_to_gitee
+        working-directory: ./
+    
--- a/.github/workflows/publish-github.yaml
+++ b/.github/workflows/publish-github.yaml
@@ -0,0 +1,39 @@
+name: publish-github
+on:
+  push:
+    branches: ['v2-dev']
+    paths:
+      - "trigger/publish.trigger"
+  workflow_run:
+    workflows: [ "build-image-for-release" ]
+    types:
+      - completed
+
+#  schedule:
+#    - # 国际时间 19:17 执行，北京时间3:17  ↙↙↙ 改成你想要每天自动执行的时间
+#    - cron: '17 19 * * *'
+permissions:
+  contents: read
+  packages: write
+
+jobs:
+  publish-github:
+    runs-on: ubuntu-latest
+    if: ${{ github.event.workflow_run.conclusion == 'success' }}
+    steps:
+      - name: Checkout Code
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+          lfs: true
+            
+      - name: publish_to_github
+        id: publish_to_github
+        run: |
+          export GITHUB_TOKEN=${{ secrets.GITHUB_TOKEN }}
+          rm -rf ./pnpm*.yaml
+          npm install -g pnpm
+          pnpm install
+          npm run publish_to_github
+        working-directory: ./
+    
--- a/.github/workflows/release-image.yml
+++ b/.github/workflows/release-image.yml
@@ -117,15 +117,17 @@ jobs:
 #            registry.cn-shenzhen.aliyuncs.com/handsfree/certd-agent:${{steps.get_certd_version.outputs.result}}
 #            greper/certd-agent:latest
 #            greper/certd-agent:${{steps.get_certd_version.outputs.result}}
-
      - name: deploy-certd-doc
        uses: tyrrrz/action-http-request@master
        with:
-          url: http://flow-openapi.aliyun.com/pipeline/webhook/IiSxLDp9aOhgDUxJPytv
+          url: ${{ secrets.WEBHOOK_CERTD_DOC }}
          method: POST
          body: |
-            {}
+            {
+              "CERTD_VERSION": "1.0.0"
+            }
          headers: |
            Content-Type: application/json
          retry-count: 3
          retry-delay: 5000
+   
--- a/.github/workflows/sync-to-atomgit-dev.yml
+++ b/.github/workflows/sync-to-atomgit-dev.yml
@@ -0,0 +1,34 @@
+name: sync-to-atomgit-dev
+on:
+  push:
+    branches: ['v2-dev']
+#  schedule:
+#    - # 国际时间 19:17 执行，北京时间3:17  ↙↙↙ 改成你想要每天自动执行的时间
+#    - cron: '17 19 * * *'
+permissions:
+  contents: read
+
+jobs:
+  sync:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout work repo            # 1. 检出当前仓库(certd-sync-work)
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+          lfs: true
+      - name: Set git user                  # 2. 给git命令设置用户名和邮箱,↙↙↙ 改成你的name和email
+        run: |
+          git config --global user.name "xiaojunnuo"
+          git config --global user.email "xiaojunnuo@qq.com"
+
+      - name: Set git token                 # 3. 给git命令设置token，用于push到目标仓库
+        uses: de-vri-es/setup-git-credentials@v2
+        with:                              # token 格式为： username:password
+          credentials: https://greper:${{secrets.ATOMGIT_TOKEN}}@atomgit.com
+
+      - name: push to atomgit               # 4. 执行同步
+        run: |
+          git remote add upstream https://atomgit.com/certd/certd
+          git push --set-upstream upstream v2-dev
+
--- a/.github/workflows/sync-to-atomgit.yml
+++ b/.github/workflows/sync-to-atomgit.yml
@@ -0,0 +1,34 @@
+name: sync-to-atomgit
+on:
+  push:
+    branches: ['v2']
+#  schedule:
+#    - # 国际时间 19:17 执行，北京时间3:17  ↙↙↙ 改成你想要每天自动执行的时间
+#    - cron: '17 19 * * *'
+permissions:
+  contents: read
+
+jobs:
+  sync:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout work repo            # 1. 检出当前仓库(certd-sync-work)
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+          lfs: true
+      - name: Set git user                  # 2. 给git命令设置用户名和邮箱,↙↙↙ 改成你的name和email
+        run: |
+          git config --global user.name "xiaojunnuo"
+          git config --global user.email "xiaojunnuo@qq.com"
+
+      - name: Set git token                 # 3. 给git命令设置token，用于push到目标仓库
+        uses: de-vri-es/setup-git-credentials@v2
+        with:                              # token 格式为： username:password
+          credentials: https://greper:${{secrets.ATOMGIT_TOKEN}}@atomgit.com
+
+      - name: push to atomgit               # 4. 执行同步
+        run: |
+          git remote add upstream https://atomgit.com/certd/certd
+          git push --set-upstream upstream v2
+
--- a/.npmrc
+++ b/.npmrc
@@ -3,4 +3,4 @@ prefer-workspace-packages=true
 better_sqlite3_binary_host=https://registry.npmmirror.com/-/binary/better-sqlite3
 better_sqlite3_binary_host_mirror=https://registry.npmmirror.com/-/binary/better-sqlite3
 better-sqlite3_binary_host=https://registry.npmmirror.com/-/binary/better-sqlite3
-better-sqlite3_binary_host_mirror=https://registry.npmmirror.com/-/binary/better-sqlite3
+better-sqlite3_binary_host_mirror=https://registry.npmmirror.com/-/binary/better-sqlite3
--- a/.vscode/launch.json
+++ b/.vscode/launch.json
@@ -44,6 +44,16 @@
            "runtimeArgs": ["dev-pg"],
            "console": "integratedTerminal",
            "internalConsoleOptions": "neverOpen"
+        },
+         {
+            "name": "server-pgpl",
+            "type": "node",
+            "request": "launch",
+            "cwd": "${workspaceFolder}/packages/ui/certd-server",
+            "runtimeExecutable": "pnpm",
+            "runtimeArgs": ["dev-pgpl"],
+            "console": "integratedTerminal",
+            "internalConsoleOptions": "neverOpen"
        },
        {
            "name": "server-common",
--- a/.vscode/settings.json
+++ b/.vscode/settings.json
@@ -4,5 +4,14 @@
    "typescript.tsc.autoDetect": "watch",
    "git.scanRepositories": [
        "./packages/pro"
-    ]
+    ],
+    "editor.defaultFormatter": "dbaeumer.vscode-eslint",
+    "[typescript]": {
+        "editor.defaultFormatter": "vscode.typescript-language-features"
+    },
+    "editor.tabSize": 2,
+    "explorer.autoReveal": false,
+    "[javascript]": {
+        "editor.defaultFormatter": "vscode.typescript-language-features"
+    }
 }
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -3,6 +3,211 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.

+## [1.38.2](https://github.com/certd/certd/compare/v1.38.1...v1.38.2) (2026-01-22)
+
+### Bug Fixes
+
+* 编辑插件author不允许出现符号 ([5ea2b09](https://github.com/certd/certd/commit/5ea2b09dc30397c086a2498f958f661e7fef10fc))
+* 修复插件修改名字和删除后没有注销注册的bug ([61192b9](https://github.com/certd/certd/commit/61192b998a7088a8f446fd224cc242def462a79b))
+* 修复流水线复制出错的bug ([418bcdd](https://github.com/certd/certd/commit/418bcddc95bf19d2659d2a9cfe336bc059d157b0))
+
+### Performance Improvements
+
+* 优化流水线创建入口，各种证书申请任务类型拆分成多个按钮 ([f75c73d](https://github.com/certd/certd/commit/f75c73d739ee271fb718148416836dbe09bb3266))
+* 域名导入 ([ad64384](https://github.com/certd/certd/commit/ad64384891c13342980b7559924666dcfb2796c2))
+* 支持从提供商导入域名列表 ([f442363](https://github.com/certd/certd/commit/f4423638a2ee779d48fc17b3819ce3bee55b0361))
+* 支持同步域名过期时间 ([a97cee8](https://github.com/certd/certd/commit/a97cee84f3bfdeeb2083d91f748cac5405fed6ae))
+* cname记录支持批量导入和导出 ([607afe8](https://github.com/certd/certd/commit/607afe864a12d6f50993895a4e10f4c9a3dd8fee))
+
+## [1.38.1](https://github.com/certd/certd/compare/v1.38.0...v1.38.1) (2026-01-15)
+
+### Bug Fixes
+
+* 修复自定义插件name丢失author导致找不到插件的bug ([2fbb58e](https://github.com/certd/certd/commit/2fbb58eb2b239eab4864f90aa72b0ef2ada38e8f))
+
+### Performance Improvements
+
+* 优化内存占用 ([4fc8acc](https://github.com/certd/certd/commit/4fc8acce8c1beec38c24b0977b71ff6b18cb52c9))
+* 自定义插件支持使用_ctx.import("/@/xxx.js")以绝对路径引用模块 ([9eace86](https://github.com/certd/certd/commit/9eace86aeeb48c23b55102fc5d42088294d9eb97))
+
+# [1.38.0](https://github.com/certd/certd/compare/v1.37.17...v1.38.0) (2026-01-13)
+
+### Bug Fixes
+
+* 修复禁用第三方登录自动注册无效的bug ([7ee39fd](https://github.com/certd/certd/commit/7ee39fd4eddfc847bcef879f0904a4319993d081))
+* 修复又拍云upyun密码错误没有报错的bug ([235972f](https://github.com/certd/certd/commit/235972f3dabe0b87879a2d9950367dc45edfebe8))
+* 修复重启certd后，再启用流水线，不会自动执行的bug ([468ccbf](https://github.com/certd/certd/commit/468ccbf2b725fc4b78ce4b950a114e4a4be57698))
+* 优化源码部署缺少wget的提示 ([f193341](https://github.com/certd/certd/commit/f193341eaef765b7586a0b6e7c73015470536cc2))
+
+### Features
+
+* 【破坏性更新】插件改为metadata加载模式，plugin-cert、plugin-lib包部分代码转移到certd-server中，影响自定义插件，需要修改相关import引用 ([a3fb249](https://github.com/certd/certd/commit/a3fb24993d7ac8fbb0bb354fa02ef067f609021e))
+* 通过metadata加载插件，降低内存占用 ([7634f15](https://github.com/certd/certd/commit/7634f153b7004462f207062c0502d8345e318cc7))
+
+### Performance Improvements
+
+* 流水线页面可以查看证书过期时间 ([be03d8e](https://github.com/certd/certd/commit/be03d8e13752c355dbec158da78b9cb4c3b3bb5d))
+* 每页记录条数保持 ([14f9987](https://github.com/certd/certd/commit/14f99875fb3f535fa5ffb7bf5db3960b105aa7aa))
+* 手机号登录放到前面 ([26ac081](https://github.com/certd/certd/commit/26ac08118219407c5dd3afc35130cdd48b8fab05))
+* 新增部署1panel面板证书插件 ([4243622](https://github.com/certd/certd/commit/42436224148d6fffe5da8e5e0185a698e079032b))
+* 优化微信支付对接文档 ([64e0d9a](https://github.com/certd/certd/commit/64e0d9a4d54b0d9da028be2c5e0ece7a97b2c250))
+* 优化站点监控，支持设置忽略主站证书一致性，支持开启和关闭自动同步ip ([26f75c7](https://github.com/certd/certd/commit/26f75c71ba8866278dbe117f1bfaf671e7f70781))
+* 增加邮件发送证书模版配置 ([cabc4da](https://github.com/certd/certd/commit/cabc4da3ac003a8c699c69f5bffea4c149be185c))
+* 站点监控增加是否自动同步IP开关 ([5268904](https://github.com/certd/certd/commit/52689049ae8e004e1252ab1e2872fbf676e0295f))
+* 证书流水线可以开启webhook ([840bd52](https://github.com/certd/certd/commit/840bd526714072315244a6900c95395d2d62f647))
+* 支持部署到exsi，openwrt ([dae87e2](https://github.com/certd/certd/commit/dae87e26a3266a2bf26afe1ef4c489a3f6bf41e4))
+* 支持公告功能 ([a79fe1f](https://github.com/certd/certd/commit/a79fe1f350f2991af9e5b50825f1776029677fc5))
+* 支持webhook触发流水线，新增触发类型图标显示 ([1a29541](https://github.com/certd/certd/commit/1a2954114063a8b994c257a90e5814e0a3a8d924))
+* webhook触发器一个流水线限制只能添加一个 ([6c39d7b](https://github.com/certd/certd/commit/6c39d7b1eecb679cb6506b0e3557e8152e01417d))
+* zenlayer证书更新 ([9ba6c83](https://github.com/certd/certd/commit/9ba6c838215d0750cda925778a47002a521f05e9))
+
+## [1.37.17](https://github.com/certd/certd/compare/v1.37.16...v1.37.17) (2025-12-29)
+
+### Bug Fixes
+
+* 发送证书到邮箱插件的邮件模版转为使用邮箱配置中的通用模版 ([c5a3003](https://github.com/certd/certd/commit/c5a3003cf7b640500a90ec2c8961859ffe6fdb18))
+* 首页最快到期证书，不包含已禁用的流水线 ([d731956](https://github.com/certd/certd/commit/d731956b066e4dbbe24d4de7b3d3679b355eb97c))
+* 修复部署到华为obs 报错的bug ([dd19afc](https://github.com/certd/certd/commit/dd19afce928a7f36312af9df1e7e5ed3eb1e214a))
+* 修复从模版创建的流水线不会自动执行的bug ([833808c](https://github.com/certd/certd/commit/833808c5deb716122b241d3d67349d2d6a18bf45))
+* 修复流水线列表step数量统计错误的bug ([0e5a4fb](https://github.com/certd/certd/commit/0e5a4fb098d3261b690c551cf2b95198cac487e7))
+* 修复用户删除后，用相同的oauth授权登录报错用户不存在的问题 ([e505916](https://github.com/certd/certd/commit/e5059165259e4d757abc811c0c14bbc4a3dbaee9))
+* 修复站点ip监控报主站与ip证书过期时间不一致的问题 ([62f8525](https://github.com/certd/certd/commit/62f8525dd5da95dc07ed103f602644c6e5f7f8e3))
+* 修复serverchan3 没有选择tags报错的bug ([5bbf210](https://github.com/certd/certd/commit/5bbf210394883c4893c365bd16e999490b6e9b41))
+* telegram 修复消息内存在横杠无法发出的bug ([5f4469e](https://github.com/certd/certd/commit/5f4469e306187c31d8a74d53b17ea3a213420367))
+
+### Performance Improvements
+
+* 批量修改定时时间支持随机时间 ([d0f653d](https://github.com/certd/certd/commit/d0f653da9a2970920e961e7404ff04080bccd343))
+* 批量运行优化，支持普通运行和强制重新运行 ([039c62b](https://github.com/certd/certd/commit/039c62b09b37cdda35d33c6ee9adecad62dee75c))
+* 升级lego到4.30.1版本 ([136e8dd](https://github.com/certd/certd/commit/136e8dd7c5ff7199ff4b0bcca95b8a03aa847553))
+* 腾讯云EO增加请求参数打印 ([5b5deac](https://github.com/certd/certd/commit/5b5deac7d98684eda5c68384241a4d62c48d803b))
+* 优化阿里云esa清理证书时机 ([5359a76](https://github.com/certd/certd/commit/5359a7670fac5a18c4294b37a34227308a0deed6))
+* 优化源码方式部署，前端无需编译 ([13ddc97](https://github.com/certd/certd/commit/13ddc979ec7953e3db8db76dd23fd85a3b3c7997))
+* 支持部署到goedge ([44bf4b1](https://github.com/certd/certd/commit/44bf4b1cc1aafa2d711c3b8e408009f0ceb413eb))
+* 支持从阿里云商用证书订单中获取证书 ([8872466](https://github.com/certd/certd/commit/887246696861c3a0b1f99fd9ad978caea423c650))
+* 支持授权给管理员查看和下载用户证书 ([1347355](https://github.com/certd/certd/commit/1347355cb117694abe99da385352a19771a32e84))
+* 支持执行队列，避免同一时间触发流水线太多导致被限制 ([888d959](https://github.com/certd/certd/commit/888d9591fe9730b529e1c355d71f41e7ec9b479d))
+* 支持aws route53 dns ([cbb8319](https://github.com/certd/certd/commit/cbb8319cfa48673e81ec15894adc3376c173c97e))
+* 支持ucloud waf（未测试） ([a248367](https://github.com/certd/certd/commit/a248367b154c38661a6797ef64e37ec99d4e2abf))
+* 支持ucloud，上传到ussl，部署到ucdn ([e61daae](https://github.com/certd/certd/commit/e61daaee2d0dec19710cd4ec759219a071f2435e))
+* 执行队列数量支持设置 ([cd94488](https://github.com/certd/certd/commit/cd944882c3272adad4a2da94a3889a01fe05fe13))
+* aws route53 ([8caab1f](https://github.com/certd/certd/commit/8caab1fd9264df548f467b94202d567107b7a30b))
+* ip证书校验方式提示 ([773cada](https://github.com/certd/certd/commit/773cada57a01fb28ea8602062aaeec3d45109ea9))
+
+## [1.37.16](https://github.com/certd/certd/compare/v1.37.15...v1.37.16) (2025-12-15)
+
+### Bug Fixes
+
+* 修复ipv6作为证书域名申请证书校验失败的bug ([e4e16bc](https://github.com/certd/certd/commit/e4e16bc6a65bb082c18ca0590226f0987a47d477))
+* 优化西部数据 500 already exists 的问题 ([2bfad9f](https://github.com/certd/certd/commit/2bfad9fc651da208b610abd921fbfb2fbc04203f))
+
+### Performance Improvements
+
+* 批量设置定时，支持清除定时 ([63d8bcf](https://github.com/certd/certd/commit/63d8bcf8823f713365042d3c7aee3cf31d44b044))
+* 新增数据库迁移doc说明文档，优化datetime字段平滑迁移 ([45fbce0](https://github.com/certd/certd/commit/45fbce0c2af5fb3ead6d3dd12a42f8cc1714262f))
+* 支持彩虹聚合登录 ([6f18693](https://github.com/certd/certd/commit/6f186932ccad4becfdc0087c0539f7b2d0069844))
+* 支持邮件模版设置 ([a6c0d2c](https://github.com/certd/certd/commit/a6c0d2c6f1fd6b60e6d7af290487c94564fd91ea))
+* oidc支持使用第三方昵称或账号作为certd用户的用户名 ([b6fea0c](https://github.com/certd/certd/commit/b6fea0c8562abf912daa7d72958ceb2e93575d31))
+
+## [1.37.15](https://github.com/certd/certd/compare/v1.37.14...v1.37.15) (2025-12-06)
+
+### Bug Fixes
+
+* oidc 支持nonce ([a5ca411](https://github.com/certd/certd/commit/a5ca41131b308b36b17ca359d9709ea8e9b7cee1))
+
+### Performance Improvements
+
+* 第三方登录支持gitee ([5cee7d4](https://github.com/certd/certd/commit/5cee7d44f17bd36972f477bc1f270999da558d05))
+* 邮件模版安全优化 ([adca151](https://github.com/certd/certd/commit/adca151e4f07a4c6a2a753bfa48ee0d4d6469fd2))
+* 支持部署到中国移动CDN ([4351304](https://github.com/certd/certd/commit/43513049beff407558d2a234415521464165cebc))
+* 支持k8s apply ([d55954a](https://github.com/certd/certd/commit/d55954a36391ebe6a9397ff7dcfb710193ac5e34))
+
+## [1.37.14](https://github.com/certd/certd/compare/v1.37.13...v1.37.14) (2025-12-02)
+
+### Bug Fixes
+
+* 修复注销登录时，第三方登录注销请求失败的报错 ([677e110](https://github.com/certd/certd/commit/677e1101e6cf4451abd8a876cc1d0ddd26a10b88))
+
+## [1.37.13](https://github.com/certd/certd/compare/v1.37.12...v1.37.13) (2025-12-02)
+
+### Bug Fixes
+
+* 修复西部数据返回信息乱码问题 ([78b1650](https://github.com/certd/certd/commit/78b1650bdb071c858b3f90d53a700d11ee6de328))
+* 修复西部数码使用域名级别的key申请证书失败的问题 ([5edc72d](https://github.com/certd/certd/commit/5edc72d47550b8e3364dabda70a41cce75d87956))
+
+### Performance Improvements
+
+* 第三方登录允许选择logo ([bb3085e](https://github.com/certd/certd/commit/bb3085ef84201ccd2dc632ba8c5097cb00258be4))
+* 支持OIDC单点登录 ([fbf12f1](https://github.com/certd/certd/commit/fbf12f16b5eaa7676fd41923587bf6bd2595adba))
+
+## [1.37.12](https://github.com/certd/certd/compare/v1.37.11...v1.37.12) (2025-11-29)
+
+### Bug Fixes
+
+* 修复waf tls版本号小写 ([0adcc6a](https://github.com/certd/certd/commit/0adcc6a8d194469be0c26940ed4837fb34929b68))
+
+### Performance Improvements
+
+* 支持微信扫码登录 ([73325aa](https://github.com/certd/certd/commit/73325aaefb0e750a22aaac40929e7bf3f5864996))
+* 支持证书颁发机构 LiteSSL ([6be7591](https://github.com/certd/certd/commit/6be75913324e2828d9016eb307ff2d0abbbb2191))
+
+## [1.37.11](https://github.com/certd/certd/compare/v1.37.10...v1.37.11) (2025-11-28)
+
+### Bug Fixes
+
+* 修复阿里云 waf tlsVersion参数缺失导致部署失败的问题 ([2fabee6](https://github.com/certd/certd/commit/2fabee647acf64afe689f5bea3603028cd0ba4a2))
+* 修复备注撑开表格行高的bug ([c7b298c](https://github.com/certd/certd/commit/c7b298c46f0d52b43bd2bb17b374e7970a446446))
+* 修复域名管理无法创建tencent-eo dns授权的bug ([3406bb5](https://github.com/certd/certd/commit/3406bb5a4a56bb310cddc1a1f410c70909fd129b))
+* openapi 成功后失败都返回msg ([6e735bb](https://github.com/certd/certd/commit/6e735bbd1e29712e939f775a4db974db70e3b4b0))
+
+### Performance Improvements
+
+*  ssh支持ppk格式私钥 ([575ae16](https://github.com/certd/certd/commit/575ae164c863d0b1f9fa0890549a2ee7472fb469))
+* 优化宝塔网站证书在并发部署时导致nginx配置文件错乱的问题 ([51cc084](https://github.com/certd/certd/commit/51cc08411fd2dbab66d769b495dc1b0bf2f2578c))
+* 优化天翼云cdn 等待5秒部署完成 ([53c88ad](https://github.com/certd/certd/commit/53c88ad5afe66a3f7c38b9b759747918913a4edc))
+* 支持oidc单点登录 ([ec75afb](https://github.com/certd/certd/commit/ec75afbc44139dbe9da534d8a8c08a5b91f86d3c))
+* ssl.com支持ecc ([b5ec047](https://github.com/certd/certd/commit/b5ec04723db48422f71041f4043002e7f5b450b1))
+
+## [1.37.10](https://github.com/certd/certd/compare/v1.37.9...v1.37.10) (2025-11-19)
+
+### Performance Improvements
+
+* 优化dokploy 部署插件，配置选择serverId ([c9709f2](https://github.com/certd/certd/commit/c9709f26981c1cc9f71c14babb204329fcae0db5))
+* 站点证书监控备注输入框改成textarea ([70b603d](https://github.com/certd/certd/commit/70b603d601c34f39148c2ab70c655c51babf563d))
+
+## [1.37.9](https://github.com/certd/certd/compare/v1.37.8...v1.37.9) (2025-11-19)
+
+### Bug Fixes
+
+* 商用证书上传保存失败的bug ([075b1dc](https://github.com/certd/certd/commit/075b1dc0eb8c39acc277277b1b334d66b6717ab2))
+
+### Performance Improvements
+
+* 优化阿里云clb 过期证书清理报错的问题 ([d465367](https://github.com/certd/certd/commit/d4653678b2e3643460f918992eeae4044d3a1cc7))
+
+## [1.37.8](https://github.com/certd/certd/compare/v1.37.7...v1.37.8) (2025-11-17)
+
+### Bug Fixes
+
+* **plugins/woai-cdn:** 修正默认接口域名与帮助链接中的路径 ([#576](https://github.com/certd/certd/issues/576)) @LjyLab ([d20046c](https://github.com/certd/certd/commit/d20046c86681ea177ece434423b7c81a76b437fb))
+
+### Performance Improvements
+
+* 修复西数解析记录添加失败的bug，支持部署证书到西数虚拟主机 ([1102952](https://github.com/certd/certd/commit/1102952b4703e8c0bbc17b0700c0ed3ef6f866d3))
+* 支持回车键触发登录 ([eb5c88f](https://github.com/certd/certd/commit/eb5c88fbb2901f1a9669429a7cd8dc76f6806d01))
+
+## [1.37.7](https://github.com/certd/certd/compare/v1.37.6...v1.37.7) (2025-11-12)
+
+### Bug Fixes
+
+* 修复点击立即触发运行报错的bug ([e1eef01](https://github.com/certd/certd/commit/e1eef013a856d26fe80a05d9ec6e505e2e31e5f9))
+* 账号绑定页面某些情况下打不开的bug ([44973eb](https://github.com/certd/certd/commit/44973ebd00e89c0fee8f3b91174157757ce0160f))
+
+### Performance Improvements
+
+* 支持使用letencrypt测试环境申请ip证书 ([86ce00a](https://github.com/certd/certd/commit/86ce00adf92ff98fead87a3eaaa6631036708f47))
+* 支持腾讯云teo dns解析 ([1d23dd2](https://github.com/certd/certd/commit/1d23dd2426bd1e4c4dfea0a9e561d665e045ba9d))
+
 ## [1.37.6](https://github.com/certd/certd/compare/v1.37.5...v1.37.6) (2025-11-10)

 ### Bug Fixes
--- a/README.md
+++ b/README.md
@@ -16,21 +16,30 @@ Certd® 是一个免费的全自动证书管理系统，让你的网站证书永

 > 流水线数量现已调整为无限制，欢迎大家使用

+
+|官方开源地址： | |
+| ---- | ---- |
+| [Github](https://github.com/certd/certd)| ![](https://img.shields.io/github/stars/certd/certd?logo=github)      |    
+| [Gitee](https://gitee.com/certd/certd)  | ![](https://gitee.com/certd/certd/badge/star.svg?theme=dark)        |
+| [AtomGit](https://atomgit.com/certd/certd) |![](https://atomgit.com/certd/certd/star/badge.svg)        |   
+
+
 ## 一、特性
 本项目不仅支持证书申请过程自动化，还可以自动化部署更新证书，让你的证书永不过期。     

-* 全自动申请证书（支持所有注册商注册的域名，支持DNS-01、HTTP-01、CNAME代理等多种域名验证方式）
-* 全自动部署更新证书（目前支持部署到主机、阿里云、腾讯云等70+部署插件）
-* 支持通配符域名/泛域名，支持多个域名打到一个证书上，支持pem、pfx、der、jks等多种证书格式
-* 邮件通知、webhook通知、企微、钉钉、飞书、anpush等多种通知方式
-* 私有化部署，数据保存本地，安装简单快捷，镜像由Github Actions构建，过程公开透明
-* 授权加密，站点隐藏，2FA，密码防爆破等多重安全保障
-* 支持SQLite，PostgreSQL、MySQL多种数据库
-* 开放接口支持
-* 站点证书监控
-* 多用户管理
-* 多语言支持（中英双语切换）
-* 各版本向下兼容，一键无忧升级
+* **全自动申请证书**: 支持所有注册商注册的域名，支持DNS-01、HTTP-01、CNAME代理等多种域名验证方式
+* **全自动部署更新证书**: 目前支持部署到主机、阿里云、腾讯云等110+部署插件
+* **多种证书格式**: 支持pem、pfx、der、jks、p7b
+* **免费通配符域名/泛域名证书**: 支持多个域名打到一个证书上
+* **多种通知方式**: 邮件通知、webhook通知、企微、钉钉、飞书、anpush等多种通知方式
+* **私有化部署**: 数据保存本地，安装简单快捷，镜像由Github Actions构建，过程公开透明
+* **多重安全保障**: 授权加密，站点隐藏，2FA，密码防爆破等多重安全保障
+* **多数据库支持**：支持SQLite、PostgreSQL、MySQL
+* **开放接口支持**： 提供RESTful API接口，方便集成到其他系统
+* **站点证书监控**： 定时监控网站证书的过期时间
+* **多用户管理**： 用户可以管理自己的证书流水线
+* **多语言支持**： 中英双语切换
+* **一键无忧升级**： 版本向下兼容


  ![](./docs/images/intro/intro.svg)
@@ -150,30 +159,33 @@ https://certd.handfree.work/
 | 二维码 | <img height="230" src="./docs/guide/contact/images/me.png"> |


-## 八、捐赠
-************************
-支持开源，为爱发电，我已入驻爱发电
-https://afdian.com/a/greper
+## 八、赞助捐赠

-发电权益：
-1. 可加入发电专属群，可以获得作者一对一技术支持
-2. 您的需求我们将优先实现，并且将作为专业版功能提供
-3. 一年期专业版激活码
+开源为什么要做专业版收费？
+1. 纯靠为爱发电不可持续（比如：我的[dev-sidecar项目](https://github.com/docmirror/dev-sidecar)即便是拥有20K+star，也差点凉凉，幸亏有另外大佬接手用爱发电）    
+2. 没有赞助的项目，作者会比较任性，不会用心倾听用户的心声，不顾用户体验（比如：下意识拒绝需求、频繁破坏性变更升级、全盘推倒重来之类的） 
+3. 没有赞助的项目，交流群的戾气有时候比较重，容易起冲突     
+
+赞助权益：
+1. 可加入专属VIP群，可以获得作者一对一技术支持，必要时可以远程协助
+2. 您的需求我们将优先实现，并且可能将作为专业版功能提供
+3. 获得专业版功能
+
+[50元专业版优惠券限时领取](https://app.handfree.work/subject/#/app/certd/product)

 专业版特权对比

-| 功能      | 免费版                                   | 专业版                            |
+| 功能      | 免费版                                   | 专业版                     |
 |---------|---------------------------------------|--------------------------------|
-| 免费证书申请  | 免费无限制                                 | 免费无限制                          |
-| 域名数量 | 无限制                                   | 无限制                            |
-| 证书流水线条数 | 无限制                                   | 无限制                            |
-| 站点证书监控  | 限制1条                                  | 无限制                            |
-| 自动部署插件  | 阿里云CDN、腾讯云、七牛CDN、主机部署、宝塔、1Panel等大部分插件 | 群晖                             |
-| 通知      | 邮件通知、自定义webhook                       | 邮件免配置、企微、钉钉、飞书、anpush、server酱等 |
+| 免费证书申请  | 免费无限制                        | 免费无限制                      |
+| 证书域名数量      | 无限制                           | 无限制                          |
+| 证书流水线条数 | 无限制                           | 无限制                          |
+| 自动部署插件  | 阿里云CDN、腾讯云、七牛CDN、主机部署、宝塔、1Panel等大部分插件     |     群晖、威联通、proxmox等  |
+| 通知         | 邮件通知、自定义webhook            | 邮件免配置、企微、钉钉、飞书、anpush、server酱等 |
+| 站点监控  | 限制1条                           | 无限制                          |
+| 批量操作      | 无                               | 流水线模版，流水线复制，批量运行，批量设置通知、定时等 |
+| VIP群        | 无                               | 可加，一对一技术支持，必要时可申请远程协助  |

-************************
-
-************************

 ## 九、贡献代码

--- a/README_en.md
+++ b/README_en.md
@@ -13,6 +13,15 @@ Certd® is a free, fully automated certificate management system that ensures yo

 > The number of pipelines is now unlimited. Welcome to use it.

+
+Official Open Source Address: 
+
+[Github](https://github.com/certd/certd)   ![](https://img.shields.io/github/stars/certd/certd?logo=github)        
+[Gitee](https://gitee.com/certd/certd)   ![](https://gitee.com/certd/certd/badge/star.svg?theme=dark)        
+[AtomGit](https://atomgit.com/certd/certd)       ![](https://atomgit.com/certd/certd/star/badge.svg)   
+
+
+
 ## 1. Features
 This project not only supports automated certificate application but also automated certificate deployment and updates, ensuring your certificates never expire.

--- a/docker/run/docker-compose.yaml
+++ b/docker/run/docker-compose.yaml
@@ -9,8 +9,7 @@ services:
    restart: unless-stopped # 自动重启
    volumes:
      #   ↓↓↓↓↓ -------------------------------------------------------- 数据库以及证书存储路径,默认存在宿主机的/data/certd/目录下，【您需要定时备份此目录，以保障数据容灾】
-      #                                                                  只要修改冒号前面的，冒号后面的/app/data不要动
-      - /data/certd:/app/data
+      - /data/certd:/app/data # 只要修改冒号前面的，冒号后面的/app/data切记切记不要动
      #- /volume1/docker/certd:/app/data:delegated  #群晖使用这个配置
      #   ↓↓↓↓↓ -------------------------------------------------------- 如果走时不准，考虑挂载localtime文件
      #- /etc/localtime:/etc/localtime
--- a/docs/.vitepress/config.ts
+++ b/docs/.vitepress/config.ts
@@ -81,7 +81,8 @@ export default defineConfig({
                            ]
                        },
                        {text: "演示教程", link: "/guide/tutorial.md"},
-                        {text: "版本升级", link: "/guide/install/upgrade.md"}
+                        {text: "版本升级", link: "/guide/install/upgrade.md"},
+                        {text: "赞助专业版", link: "/guide/donate/"},
                    ]
                },
                {
@@ -107,12 +108,12 @@ export default defineConfig({
                    text: "常见问题",
                    items: [
                        {text: "QA", link: "/guide/qa/use.md"},
+                        {text: "忘记密码/无法登录", link: "/guide/use/forgotpasswd/"},
                        {text: "群晖证书部署", link: "/guide/use/synology/"},
                        {text: "腾讯云密钥获取", link: "/guide/use/tencent/"},
                        {text: "连接windows主机", link: "/guide/use/host/windows.md"},
                        {text: "Google EAB获取", link: "/guide/use/google/"},
                        {text: "阿里云相关", link: "/guide/use/aliyun/"},
-                        {text: "忘记密码", link: "/guide/use/forgotpasswd/"},
                        {text: "数据备份", link: "/guide/use/backup/"},
                        {text: "Certd本身的证书更新", link: "/guide/use/https/index.md"},
                        {text: "js脚本插件使用", link: "/guide/use/custom-script/index.md"},
@@ -121,6 +122,9 @@ export default defineConfig({
                        {text: "ESXi", link: "/guide/use/ESXi/index.md"},
                        {text: "宝塔动态IP白名单", link: "/guide/use/baota/white_list.md"},
                        {text: "子域名托管", link: "/guide/use/cert/subdomain.md"},
+                        {text: "流水线有效期", link: "/guide/use/pipeline/valid.md"},
+                        {text: "IP证书申请", link: "/guide/use/cert/ip.md"},
+                        {text: "插件开发", link: "/guide/use/dev/plugin.md"},
                    ]
                },
                {
@@ -137,7 +141,6 @@ export default defineConfig({
                        {text: "更新日志", link: "/guide/changelogs/CHANGELOG.md"},
                        {text: "镜像说明", link: "/guide/image.md"},
                        {text: "联系我们", link: "/guide/contact/"},
-                        {text: "捐赠", link: "/guide/donate/"},
                        {text: "开源协议", link: "/guide/license/"},
                        {text: "我的其他开源项目", link: "/guide/link/"},
                    ]
--- a/docs/guide/changelogs/CHANGELOG.md
+++ b/docs/guide/changelogs/CHANGELOG.md
@@ -3,6 +3,207 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.

+## [1.38.1](https://github.com/certd/certd/compare/v1.38.0...v1.38.1) (2026-01-15)
+
+### Bug Fixes
+
+* 修复自定义插件name丢失author导致找不到插件的bug ([2fbb58e](https://github.com/certd/certd/commit/2fbb58eb2b239eab4864f90aa72b0ef2ada38e8f))
+
+### Performance Improvements
+
+* 优化内存占用 ([4fc8acc](https://github.com/certd/certd/commit/4fc8acce8c1beec38c24b0977b71ff6b18cb52c9))
+* 自定义插件支持使用_ctx.import("/@/xxx.js")以绝对路径引用模块 ([9eace86](https://github.com/certd/certd/commit/9eace86aeeb48c23b55102fc5d42088294d9eb97))
+
+# [1.38.0](https://github.com/certd/certd/compare/v1.37.17...v1.38.0) (2026-01-13)
+
+### Bug Fixes
+
+* 修复禁用第三方登录自动注册无效的bug ([7ee39fd](https://github.com/certd/certd/commit/7ee39fd4eddfc847bcef879f0904a4319993d081))
+* 修复又拍云upyun密码错误没有报错的bug ([235972f](https://github.com/certd/certd/commit/235972f3dabe0b87879a2d9950367dc45edfebe8))
+* 修复重启certd后，再启用流水线，不会自动执行的bug ([468ccbf](https://github.com/certd/certd/commit/468ccbf2b725fc4b78ce4b950a114e4a4be57698))
+* 优化源码部署缺少wget的提示 ([f193341](https://github.com/certd/certd/commit/f193341eaef765b7586a0b6e7c73015470536cc2))
+
+### Features
+
+* 【破坏性更新】插件改为metadata加载模式，plugin-cert、plugin-lib包部分代码转移到certd-server中，影响自定义插件，需要修改相关import引用 ([a3fb249](https://github.com/certd/certd/commit/a3fb24993d7ac8fbb0bb354fa02ef067f609021e))
+* 通过metadata加载插件，降低内存占用 ([7634f15](https://github.com/certd/certd/commit/7634f153b7004462f207062c0502d8345e318cc7))
+
+### Performance Improvements
+
+* 流水线页面可以查看证书过期时间 ([be03d8e](https://github.com/certd/certd/commit/be03d8e13752c355dbec158da78b9cb4c3b3bb5d))
+* 每页记录条数保持 ([14f9987](https://github.com/certd/certd/commit/14f99875fb3f535fa5ffb7bf5db3960b105aa7aa))
+* 手机号登录放到前面 ([26ac081](https://github.com/certd/certd/commit/26ac08118219407c5dd3afc35130cdd48b8fab05))
+* 新增部署1panel面板证书插件 ([4243622](https://github.com/certd/certd/commit/42436224148d6fffe5da8e5e0185a698e079032b))
+* 优化微信支付对接文档 ([64e0d9a](https://github.com/certd/certd/commit/64e0d9a4d54b0d9da028be2c5e0ece7a97b2c250))
+* 优化站点监控，支持设置忽略主站证书一致性，支持开启和关闭自动同步ip ([26f75c7](https://github.com/certd/certd/commit/26f75c71ba8866278dbe117f1bfaf671e7f70781))
+* 增加邮件发送证书模版配置 ([cabc4da](https://github.com/certd/certd/commit/cabc4da3ac003a8c699c69f5bffea4c149be185c))
+* 站点监控增加是否自动同步IP开关 ([5268904](https://github.com/certd/certd/commit/52689049ae8e004e1252ab1e2872fbf676e0295f))
+* 证书流水线可以开启webhook ([840bd52](https://github.com/certd/certd/commit/840bd526714072315244a6900c95395d2d62f647))
+* 支持部署到exsi，openwrt ([dae87e2](https://github.com/certd/certd/commit/dae87e26a3266a2bf26afe1ef4c489a3f6bf41e4))
+* 支持公告功能 ([a79fe1f](https://github.com/certd/certd/commit/a79fe1f350f2991af9e5b50825f1776029677fc5))
+* 支持webhook触发流水线，新增触发类型图标显示 ([1a29541](https://github.com/certd/certd/commit/1a2954114063a8b994c257a90e5814e0a3a8d924))
+* webhook触发器一个流水线限制只能添加一个 ([6c39d7b](https://github.com/certd/certd/commit/6c39d7b1eecb679cb6506b0e3557e8152e01417d))
+* zenlayer证书更新 ([9ba6c83](https://github.com/certd/certd/commit/9ba6c838215d0750cda925778a47002a521f05e9))
+
+## [1.37.17](https://github.com/certd/certd/compare/v1.37.16...v1.37.17) (2025-12-29)
+
+### Bug Fixes
+
+* 发送证书到邮箱插件的邮件模版转为使用邮箱配置中的通用模版 ([c5a3003](https://github.com/certd/certd/commit/c5a3003cf7b640500a90ec2c8961859ffe6fdb18))
+* 首页最快到期证书，不包含已禁用的流水线 ([d731956](https://github.com/certd/certd/commit/d731956b066e4dbbe24d4de7b3d3679b355eb97c))
+* 修复部署到华为obs 报错的bug ([dd19afc](https://github.com/certd/certd/commit/dd19afce928a7f36312af9df1e7e5ed3eb1e214a))
+* 修复从模版创建的流水线不会自动执行的bug ([833808c](https://github.com/certd/certd/commit/833808c5deb716122b241d3d67349d2d6a18bf45))
+* 修复流水线列表step数量统计错误的bug ([0e5a4fb](https://github.com/certd/certd/commit/0e5a4fb098d3261b690c551cf2b95198cac487e7))
+* 修复用户删除后，用相同的oauth授权登录报错用户不存在的问题 ([e505916](https://github.com/certd/certd/commit/e5059165259e4d757abc811c0c14bbc4a3dbaee9))
+* 修复站点ip监控报主站与ip证书过期时间不一致的问题 ([62f8525](https://github.com/certd/certd/commit/62f8525dd5da95dc07ed103f602644c6e5f7f8e3))
+* 修复serverchan3 没有选择tags报错的bug ([5bbf210](https://github.com/certd/certd/commit/5bbf210394883c4893c365bd16e999490b6e9b41))
+* telegram 修复消息内存在横杠无法发出的bug ([5f4469e](https://github.com/certd/certd/commit/5f4469e306187c31d8a74d53b17ea3a213420367))
+
+### Performance Improvements
+
+* 批量修改定时时间支持随机时间 ([d0f653d](https://github.com/certd/certd/commit/d0f653da9a2970920e961e7404ff04080bccd343))
+* 批量运行优化，支持普通运行和强制重新运行 ([039c62b](https://github.com/certd/certd/commit/039c62b09b37cdda35d33c6ee9adecad62dee75c))
+* 升级lego到4.30.1版本 ([136e8dd](https://github.com/certd/certd/commit/136e8dd7c5ff7199ff4b0bcca95b8a03aa847553))
+* 腾讯云EO增加请求参数打印 ([5b5deac](https://github.com/certd/certd/commit/5b5deac7d98684eda5c68384241a4d62c48d803b))
+* 优化阿里云esa清理证书时机 ([5359a76](https://github.com/certd/certd/commit/5359a7670fac5a18c4294b37a34227308a0deed6))
+* 优化源码方式部署，前端无需编译 ([13ddc97](https://github.com/certd/certd/commit/13ddc979ec7953e3db8db76dd23fd85a3b3c7997))
+* 支持部署到goedge ([44bf4b1](https://github.com/certd/certd/commit/44bf4b1cc1aafa2d711c3b8e408009f0ceb413eb))
+* 支持从阿里云商用证书订单中获取证书 ([8872466](https://github.com/certd/certd/commit/887246696861c3a0b1f99fd9ad978caea423c650))
+* 支持授权给管理员查看和下载用户证书 ([1347355](https://github.com/certd/certd/commit/1347355cb117694abe99da385352a19771a32e84))
+* 支持执行队列，避免同一时间触发流水线太多导致被限制 ([888d959](https://github.com/certd/certd/commit/888d9591fe9730b529e1c355d71f41e7ec9b479d))
+* 支持aws route53 dns ([cbb8319](https://github.com/certd/certd/commit/cbb8319cfa48673e81ec15894adc3376c173c97e))
+* 支持ucloud waf（未测试） ([a248367](https://github.com/certd/certd/commit/a248367b154c38661a6797ef64e37ec99d4e2abf))
+* 支持ucloud，上传到ussl，部署到ucdn ([e61daae](https://github.com/certd/certd/commit/e61daaee2d0dec19710cd4ec759219a071f2435e))
+* 执行队列数量支持设置 ([cd94488](https://github.com/certd/certd/commit/cd944882c3272adad4a2da94a3889a01fe05fe13))
+* aws route53 ([8caab1f](https://github.com/certd/certd/commit/8caab1fd9264df548f467b94202d567107b7a30b))
+* ip证书校验方式提示 ([773cada](https://github.com/certd/certd/commit/773cada57a01fb28ea8602062aaeec3d45109ea9))
+
+## [1.37.16](https://github.com/certd/certd/compare/v1.37.15...v1.37.16) (2025-12-15)
+
+### Bug Fixes
+
+* 修复ipv6作为证书域名申请证书校验失败的bug ([e4e16bc](https://github.com/certd/certd/commit/e4e16bc6a65bb082c18ca0590226f0987a47d477))
+* 优化西部数据 500 already exists 的问题 ([2bfad9f](https://github.com/certd/certd/commit/2bfad9fc651da208b610abd921fbfb2fbc04203f))
+
+### Performance Improvements
+
+* 批量设置定时，支持清除定时 ([63d8bcf](https://github.com/certd/certd/commit/63d8bcf8823f713365042d3c7aee3cf31d44b044))
+* 新增数据库迁移doc说明文档，优化datetime字段平滑迁移 ([45fbce0](https://github.com/certd/certd/commit/45fbce0c2af5fb3ead6d3dd12a42f8cc1714262f))
+* 支持彩虹聚合登录 ([6f18693](https://github.com/certd/certd/commit/6f186932ccad4becfdc0087c0539f7b2d0069844))
+* 支持邮件模版设置 ([a6c0d2c](https://github.com/certd/certd/commit/a6c0d2c6f1fd6b60e6d7af290487c94564fd91ea))
+* oidc支持使用第三方昵称或账号作为certd用户的用户名 ([b6fea0c](https://github.com/certd/certd/commit/b6fea0c8562abf912daa7d72958ceb2e93575d31))
+
+## [1.37.15](https://github.com/certd/certd/compare/v1.37.14...v1.37.15) (2025-12-06)
+
+### Bug Fixes
+
+* oidc 支持nonce ([a5ca411](https://github.com/certd/certd/commit/a5ca41131b308b36b17ca359d9709ea8e9b7cee1))
+
+### Performance Improvements
+
+* 第三方登录支持gitee ([5cee7d4](https://github.com/certd/certd/commit/5cee7d44f17bd36972f477bc1f270999da558d05))
+* 邮件模版安全优化 ([adca151](https://github.com/certd/certd/commit/adca151e4f07a4c6a2a753bfa48ee0d4d6469fd2))
+* 支持部署到中国移动CDN ([4351304](https://github.com/certd/certd/commit/43513049beff407558d2a234415521464165cebc))
+* 支持k8s apply ([d55954a](https://github.com/certd/certd/commit/d55954a36391ebe6a9397ff7dcfb710193ac5e34))
+
+## [1.37.14](https://github.com/certd/certd/compare/v1.37.13...v1.37.14) (2025-12-02)
+
+### Bug Fixes
+
+* 修复注销登录时，第三方登录注销请求失败的报错 ([677e110](https://github.com/certd/certd/commit/677e1101e6cf4451abd8a876cc1d0ddd26a10b88))
+
+## [1.37.13](https://github.com/certd/certd/compare/v1.37.12...v1.37.13) (2025-12-02)
+
+### Bug Fixes
+
+* 修复西部数据返回信息乱码问题 ([78b1650](https://github.com/certd/certd/commit/78b1650bdb071c858b3f90d53a700d11ee6de328))
+* 修复西部数码使用域名级别的key申请证书失败的问题 ([5edc72d](https://github.com/certd/certd/commit/5edc72d47550b8e3364dabda70a41cce75d87956))
+
+### Performance Improvements
+
+* 第三方登录允许选择logo ([bb3085e](https://github.com/certd/certd/commit/bb3085ef84201ccd2dc632ba8c5097cb00258be4))
+* 支持OIDC单点登录 ([fbf12f1](https://github.com/certd/certd/commit/fbf12f16b5eaa7676fd41923587bf6bd2595adba))
+
+## [1.37.12](https://github.com/certd/certd/compare/v1.37.11...v1.37.12) (2025-11-29)
+
+### Bug Fixes
+
+* 修复waf tls版本号小写 ([0adcc6a](https://github.com/certd/certd/commit/0adcc6a8d194469be0c26940ed4837fb34929b68))
+
+### Performance Improvements
+
+* 支持微信扫码登录 ([73325aa](https://github.com/certd/certd/commit/73325aaefb0e750a22aaac40929e7bf3f5864996))
+* 支持证书颁发机构 LiteSSL ([6be7591](https://github.com/certd/certd/commit/6be75913324e2828d9016eb307ff2d0abbbb2191))
+
+## [1.37.11](https://github.com/certd/certd/compare/v1.37.10...v1.37.11) (2025-11-28)
+
+### Bug Fixes
+
+* 修复阿里云 waf tlsVersion参数缺失导致部署失败的问题 ([2fabee6](https://github.com/certd/certd/commit/2fabee647acf64afe689f5bea3603028cd0ba4a2))
+* 修复备注撑开表格行高的bug ([c7b298c](https://github.com/certd/certd/commit/c7b298c46f0d52b43bd2bb17b374e7970a446446))
+* 修复域名管理无法创建tencent-eo dns授权的bug ([3406bb5](https://github.com/certd/certd/commit/3406bb5a4a56bb310cddc1a1f410c70909fd129b))
+* openapi 成功后失败都返回msg ([6e735bb](https://github.com/certd/certd/commit/6e735bbd1e29712e939f775a4db974db70e3b4b0))
+
+### Performance Improvements
+
+*  ssh支持ppk格式私钥 ([575ae16](https://github.com/certd/certd/commit/575ae164c863d0b1f9fa0890549a2ee7472fb469))
+* 优化宝塔网站证书在并发部署时导致nginx配置文件错乱的问题 ([51cc084](https://github.com/certd/certd/commit/51cc08411fd2dbab66d769b495dc1b0bf2f2578c))
+* 优化天翼云cdn 等待5秒部署完成 ([53c88ad](https://github.com/certd/certd/commit/53c88ad5afe66a3f7c38b9b759747918913a4edc))
+* 支持oidc单点登录 ([ec75afb](https://github.com/certd/certd/commit/ec75afbc44139dbe9da534d8a8c08a5b91f86d3c))
+* ssl.com支持ecc ([b5ec047](https://github.com/certd/certd/commit/b5ec04723db48422f71041f4043002e7f5b450b1))
+
+## [1.37.10](https://github.com/certd/certd/compare/v1.37.9...v1.37.10) (2025-11-19)
+
+### Performance Improvements
+
+* 优化dokploy 部署插件，配置选择serverId ([c9709f2](https://github.com/certd/certd/commit/c9709f26981c1cc9f71c14babb204329fcae0db5))
+* 站点证书监控备注输入框改成textarea ([70b603d](https://github.com/certd/certd/commit/70b603d601c34f39148c2ab70c655c51babf563d))
+
+## [1.37.9](https://github.com/certd/certd/compare/v1.37.8...v1.37.9) (2025-11-19)
+
+### Bug Fixes
+
+* 商用证书上传保存失败的bug ([075b1dc](https://github.com/certd/certd/commit/075b1dc0eb8c39acc277277b1b334d66b6717ab2))
+
+### Performance Improvements
+
+* 优化阿里云clb 过期证书清理报错的问题 ([d465367](https://github.com/certd/certd/commit/d4653678b2e3643460f918992eeae4044d3a1cc7))
+
+## [1.37.8](https://github.com/certd/certd/compare/v1.37.7...v1.37.8) (2025-11-17)
+
+### Bug Fixes
+
+* **plugins/woai-cdn:** 修正默认接口域名与帮助链接中的路径 ([#576](https://github.com/certd/certd/issues/576)) @LjyLab ([d20046c](https://github.com/certd/certd/commit/d20046c86681ea177ece434423b7c81a76b437fb))
+
+### Performance Improvements
+
+* 修复西数解析记录添加失败的bug，支持部署证书到西数虚拟主机 ([1102952](https://github.com/certd/certd/commit/1102952b4703e8c0bbc17b0700c0ed3ef6f866d3))
+* 支持回车键触发登录 ([eb5c88f](https://github.com/certd/certd/commit/eb5c88fbb2901f1a9669429a7cd8dc76f6806d01))
+
+## [1.37.7](https://github.com/certd/certd/compare/v1.37.6...v1.37.7) (2025-11-12)
+
+### Bug Fixes
+
+* 修复点击立即触发运行报错的bug ([e1eef01](https://github.com/certd/certd/commit/e1eef013a856d26fe80a05d9ec6e505e2e31e5f9))
+* 账号绑定页面某些情况下打不开的bug ([44973eb](https://github.com/certd/certd/commit/44973ebd00e89c0fee8f3b91174157757ce0160f))
+
+### Performance Improvements
+
+* 支持使用letencrypt测试环境申请ip证书 ([86ce00a](https://github.com/certd/certd/commit/86ce00adf92ff98fead87a3eaaa6631036708f47))
+* 支持腾讯云teo dns解析 ([1d23dd2](https://github.com/certd/certd/commit/1d23dd2426bd1e4c4dfea0a9e561d665e045ba9d))
+
+## [1.37.6](https://github.com/certd/certd/compare/v1.37.5...v1.37.6) (2025-11-10)
+
+### Bug Fixes
+
+* 修复创建流水线报id不能为空的bug ([aac569a](https://github.com/certd/certd/commit/aac569a9259ede43399e0ed5d668e936b984d6dd))
+
+### Performance Improvements
+
+* 增加vip时间同步按钮 ([32e4e91](https://github.com/certd/certd/commit/32e4e91ab81008dda422fb53fd6f4d1711c5d80c))
+* 支持letencrypt测试环境，支持IP证书？ ([1462cdd](https://github.com/certd/certd/commit/1462cddd1eb347b7ff238286b5c977b29a0591ec))
+* server 增加 "@peculiar/x509" 依赖 ([acdf091](https://github.com/certd/certd/commit/acdf0912d452029f158279fb78155086e4fbac17))
+
 ## [1.37.5](https://github.com/certd/certd/compare/v1.37.4...v1.37.5) (2025-11-08)

 ### Bug Fixes
--- a/docs/guide/donate/images/fapiao.jpg
+++ b/docs/guide/donate/images/fapiao.jpg
--- a/docs/guide/donate/images/plus.png
+++ b/docs/guide/donate/images/plus.png
--- a/docs/guide/donate/images/transfer.png
+++ b/docs/guide/donate/images/transfer.png
--- a/docs/guide/donate/images/update.png
+++ b/docs/guide/donate/images/update.png
--- a/docs/guide/donate/index.md
+++ b/docs/guide/donate/index.md
@@ -1,28 +1,65 @@
-# 捐赠
-************************
-支持开源，为爱发电，我已入驻爱发电   
-https://afdian.com/a/greper
+# 专业版赞助

-## 发电权益：
-1. 可加入发电专属群，可以获得作者一对一技术支持
+## 开源为什么要做专业版收费？
+1. 纯靠为爱发电不可持续，容易烂尾（比如：我的dev-sidecar项目即便是拥有20K+star，也差点凉凉，幸亏有另外大佬接手用爱发电）    
+2. 没有赞助的项目，作者会比较任性，不会用心倾听用户的心声，不顾用户体验（比如：下意识拒绝需求、频繁破坏性变更升级、全盘推倒重来之类的） 
+3. 没有赞助的项目，交流群的戾气有时候比较重，容易起冲突        
+
+## 赞助权益：
+1. 可加入专属VIP群，可以获得作者一对一技术支持，必要时可以远程协助
+# 专业版赞助
+
+## 开源为什么要做专业版收费？
+1. 纯靠为爱发电不可持续，容易烂尾（比如：我的[dev-sidecar项目](https://github.com/docmirror/dev-sidecar)即便是拥有20K+star，也差点凉凉，幸亏有另外大佬接手用爱发电）    
+2. 没有赞助的项目，作者会比较任性，不会用心倾听用户的心声，不顾用户体验（比如：下意识拒绝需求、频繁破坏性变更升级、全盘推倒重来之类的） 
+3. 没有赞助的项目，交流群的戾气有时候比较重，容易起冲突        
+
+## 赞助权益：
+1. 可加入专属VIP群，可以获得作者一对一技术支持，必要时可以远程协助
 2. 您的需求我们将优先实现，并且将作为专业版功能提供
-3. 一年期专业版激活码
+3. 获得专业版功能

+****------------------****
+> [限时¥50永久专业版优惠券，点我立刻领取](https://app.handfree.work/subject/#/app/certd/product)

+****------------------****
 ## 专业版特权对比

-| 功能      | 免费版                    | 专业版                         |
-|---------|------------------------|-----------------------------|
-| 免费证书申请  | 免费无限制                  | 免费无限制                       |
-| 自动部署插件  | 阿里云CDN、腾讯云、七牛CDN、主机部署等 | 支持群晖、宝塔、1Panel等，持续开发中       |
-| 证书流水线条数 | 无限制                    | 无限制                         |
-| 站点证书监控  | 限制1条                   | 无限制                         |
-| 通知      | 邮件通知、自定义webhook        | 邮件免配置、企微、飞书、anpush、server酱等 |
+| 功能&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;          | 免费版                                   | 专业版                     |
+|---------|---------------------------------------|--------------------------------|
+| 证书申请  | 无限制                        | 无限制                      |
+| 证书域名数量      | 无限制                           | 无限制           |
+| 证书流水线条数 | 无限制                           | 无限制                          |
+| 自动部署插件  | 阿里云CDN、腾讯云、七牛CDN、主机部署、宝塔、1Panel等大部分插件     |     群晖、威联通、proxmox等  |
+| 通知         | 邮件通知、自定义webhook            | 邮件免配置、企微、钉钉、飞书、anpush、server酱等 |
+| 站点监控  | 限制1条                           | 无限制                          |
+| 批量操作      | 无                               | 流水线模版，流水线复制，批量运行，批量设置通知、定时等 |
+| VIP群        | 无                               | 可加，一对一技术支持，必要时可申请远程协助  |


 ## 专业版激活方式

 ![](./images/plus.png)

-发电后，在私信中获取激活码
-************************
+
+## 相关问题
+
+### 1. 购买后VIP状态或时长未更新
+系统管理-->账号绑定页面，打开一下即可自动更新VIP最新状态（如果未登录袖手账号需要先登录）
+
+![](./images/update.png)
+
+
+### 2. 开发票
+联系我们(微信：xiaojunnuo)，并提供支付金额
+
+### 3. VIP是否可以迁移换绑服务器？
+可以的。
+* 方式1. 直接将备份数据在新服务器上还原即可（首次访问会提示您是否绑定新url，点击是即可）
+* 方式2. 如果旧站点数据丢失，您也可以部署一个新站点，然后在系统管理-->账号绑定页面，转移VIP即可
+
+![](./images/transfer.png)
+
+
+
+
--- a/docs/guide/index.md
+++ b/docs/guide/index.md
@@ -6,6 +6,13 @@ Certd 是一款开源、免费、全自动申请和部署更新SSL证书的工
 关键字：证书自动申请、证书自动更新、证书自动续期、证书自动续签、证书管理工具


+| 官方开源地址： | |
+| ---- | ---- |
+| [Github](https://github.com/certd/certd)| ![](https://img.shields.io/github/stars/certd/certd?logo=github)      |    
+| [Gitee](https://gitee.com/certd/certd)  | ![](https://gitee.com/certd/certd/badge/star.svg?theme=dark)        |
+| [AtomGit](https://atomgit.com/certd/certd) |![](https://atomgit.com/certd/certd/star/badge.svg)        |
+
+
 ![首页](../images/start/home.png)

 ## 1、关于证书续期
--- a/docs/guide/install/1panel/images/store-1.png
+++ b/docs/guide/install/1panel/images/store-1.png
--- a/docs/guide/install/1panel/images/store-2.png
+++ b/docs/guide/install/1panel/images/store-2.png
--- a/docs/guide/install/1panel/images/store-3.png
+++ b/docs/guide/install/1panel/images/store-3.png
--- a/docs/guide/install/1panel/index.md
+++ b/docs/guide/install/1panel/index.md
@@ -7,7 +7,36 @@ https://1panel.cn/docs/installation/online_installation/

 ## 二、部署certd

+有两种安装方式

+### 1. 应用商店方式安装【推荐】
+
+#### 1.1 安装
+打开`1Panel->应用商店`，更新远程应用，搜索`certd`，点击安装
+
+   ![](./images/store-1.png)
+
+
+   ![](./images/store-2.png)
+
+#### 1.2 访问测试：
+http://ip:7001   
+https://ip:7002   
+默认账号密码      
+admin/123456     
+登录后请及时修改密码 
+
+#### 1.3 备份
+   ![](./images/store-3.png)
+
+#### 1.4 恢复
+ 安装新Certd后，点击导入备份按钮，选择上面备份的文件即可
+
+
+
+### 2. docker-compose方式安装
+
+#### 2.1 安装
 1. 打开`docker-compose.yaml`，整个内容复制下来    
   https://gitee.com/certd/certd/raw/v2/docker/run/docker-compose.yaml

@@ -22,7 +51,7 @@ https://1panel.cn/docs/installation/online_installation/
 > 默认使用sqlite数据库，数据保存在`/data/certd`目录下，您可以手动备份该目录   
 > certd还支持`mysql`和`postgresql`数据库，[点我了解如何切换其他数据库](../database)

-3. 访问测试
+#### 2.2 访问测试

 http://ip:7001   
 https://ip:7002   
@@ -30,7 +59,7 @@ https://ip:7002
 admin/123456     
 登录后请及时修改密码  

-## 三、升级
+#### 2.3 升级

 1. 找到容器，点击更多->升级
   ![](./images/upgrade-1.png)
@@ -39,11 +68,11 @@ admin/123456
 ![img.png](./images/upgrade-2.png)


-## 四、数据备份
+#### 2.4 备份

 > 默认数据保存在`/data/certd`目录下，可以手动备份    
 > 建议配置一条 [数据库备份流水线](../../use/backup/)，自动备份

-## 五、备份恢复
+#### 2.5 恢复

 将备份的`db.sqlite`及同目录下的其他文件一起覆盖到原来的位置，重启certd即可
--- a/docs/guide/install/database.md
+++ b/docs/guide/install/database.md
@@ -65,9 +65,54 @@ docker-compose up -d

 ## 二、从旧版的sqlite切换数据库

-1. 先将`旧certd`升级到最新版 （`建议：备份sqlite数据库` ）
-2. 按照上面全新安装方式部署一套`新的certd` （`注意：新旧版本的certd要一致`）
-3. 使用数据库工具将数据从sqlite导入到mysql或postgresql （`注意：flyway_history数据表不要导入`）
-4. 重启新certd
-5. 确认没有问题之后，删除旧版certd
+从旧版`sqlite`迁移到`mysql`或`postgresql`数据库

+下面以 `SQLite` 转 `MySQL` 为例进行演示
+
+![db-0.png](images/db-0.png)
+
+#### 0.前提条件： 
+1. SQLite版Certd站点已经`升级到最新版` （`建议：备份sqlite数据库` ）
+2. `全新安装`MySQL版本Certd（`确保是全新的，因为里面的数据会被清空覆盖`）
+3. 两套Certd站点版本一致
+
+#### 1. 安装DBeaver工具
+
+[https://dbeaver.io/download/](https://dbeaver.io/download/)
+
+![db-1.png](images/db-1.png)
+
+#### 2. 连接到sqlite数据库
+
+![db-2.png](images/db-sqlite-1.png)
+
+![db-3.png](images/db-sqlite-2.png)
+
+#### 3. 连接到mysql或postgresql数据库
+
+![db-4.png](images/db-mysql-1.png)
+
+![db-5.png](images/db-mysql-2.png)
+
+
+#### 4. 开始同步数据
+
+选择mysql数据库，选择所有的表（`flyway_history除外`），右键导入数据
+
+> 切记flyway_history数据表不要导入
+
+![db-6.png](images/db-sync-1.jpg)
+![db-7.png](images/db-sync-2.png)
+![db-8.png](images/db-sync-3.png)
+下一步、下一步，直到数据加载设置，勾选`在加载前截断目标表`（此选项很重要，并且会清空mysql certd数据库中的数据）
+![db-7.png](images/db-sync-4.png)
+
+#### 5. 导入完成
+
+![db-9.png](images/db-success.png)
+
+#### 6. 重启MySQL版本Certd
+
+访问MySQL版本测试，数据已成功迁移     
+
+确认没有问题之后，删除旧版certd
--- a/docs/guide/install/docker/index.md
+++ b/docs/guide/install/docker/index.md
@@ -57,6 +57,10 @@ https://your_server_ip:7002

 ::: warning   
 如果您是第一次升级certd版本，切记切记先备份一下数据    
+```
+# docker-compose.yaml配置
+- /data/certd:/app/data   # 请务必确保 /app/data 这个路径没有改动，固定写死
+```
 :::


--- a/docs/guide/install/images/db-0.png
+++ b/docs/guide/install/images/db-0.png
--- a/docs/guide/install/images/db-1.png
+++ b/docs/guide/install/images/db-1.png
--- a/docs/guide/install/images/db-mysql-1.png
+++ b/docs/guide/install/images/db-mysql-1.png
--- a/docs/guide/install/images/db-mysql-2.png
+++ b/docs/guide/install/images/db-mysql-2.png
--- a/docs/guide/install/images/db-sqlite-1.png
+++ b/docs/guide/install/images/db-sqlite-1.png
--- a/docs/guide/install/images/db-sqlite-2.png
+++ b/docs/guide/install/images/db-sqlite-2.png
--- a/docs/guide/install/images/db-success.png
+++ b/docs/guide/install/images/db-success.png
--- a/docs/guide/install/images/db-sync-1.jpg
+++ b/docs/guide/install/images/db-sync-1.jpg
--- a/docs/guide/install/images/db-sync-2.png
+++ b/docs/guide/install/images/db-sync-2.png
--- a/docs/guide/install/images/db-sync-3.png
+++ b/docs/guide/install/images/db-sync-3.png
--- a/docs/guide/install/images/db-sync-4.png
+++ b/docs/guide/install/images/db-sync-4.png
--- a/docs/guide/install/upgrade.md
+++ b/docs/guide/install/upgrade.md
@@ -10,6 +10,12 @@

 ::: warning   
 如果您是第一次升级certd版本，切记切记先备份一下数据    
+很多人docker不太会配置，数据目录没有映射出来，升级导致数据丢失
+```
+# docker-compose.yaml配置
+- /data/certd:/app/data   #  请务必确保 /app/data 这个路径没有改动，固定写死
+```
+具体备份方法可以参考上面每种部署方式升级方法后面的备份章节
 :::

 ## 升级日志
--- a/docs/guide/open/index.md
+++ b/docs/guide/open/index.md
@@ -19,9 +19,15 @@ header中传入x-certd-token即可调用开放接口
 4、然后将content和sign分别base64后用.号连接： x-certd-token = base64(content) +"."+base64(sign)   


-## 补充说明
-1.证书申请接口支持证书id和域名两种方式获取证书。
-2.autoApply=true将在没有证书时自动触发申请，申请过程中会提示`正在申请中`，可轮循获取状态，直到证书申请成功。
+## 参数
+支持证书id和域名两种方式获取证书。
+
+## 创建新的证书申请
+参数autoApply=true，将在没有证书时自动触发申请证书，检查逻辑如下：
+1. 如果证书仓库里面有，且没有过期，就直接返回证书
+2. 如果没有或者已过期，就会去找流水线，有就触发流水线执行
+3. 如果没有流水线，就创建一个流水线，触发运行（`注意：需要提前在域名管理中配置好域名校验方式，否则会申请失败`）
+4. 再次采用相同参数请求接口，如果在申请过程中，就会提示`正在申请中`，可轮循获取状态，直到证书申请成功。


 ## SDK
--- a/docs/guide/plugins/access.md
+++ b/docs/guide/plugins/access.md
@@ -5,66 +5,71 @@
 | 1.| **主机登录授权** |  | 
 | 2.| **阿里云授权** |  | 
 | 3.| **阿里云ESA授权** |  | 
-| 4.| **腾讯云** |  | 
-| 5.| **华为云授权** |  | 
-| 6.| **火山引擎** |  | 
-| 7.| **京东云** |  | 
+| 4.| **华为云授权** |  | 
+| 5.| **腾讯云** |  | 
+| 6.| **京东云** |  | 
+| 7.| **火山引擎** |  | 
 | 8.| **七牛云授权** |  | 
-| 9.| **天翼云授权** |  | 
+| 9.| **百度云授权** |  | 
 | 10.| **baota授权** |  | 
-| 11.| **百度云授权** |  | 
-| 12.| **EAB授权** | ZeroSSL证书申请需要EAB授权 | 
-| 13.| **google cloud** | 谷歌云授权 | 
-| 14.| **SFTP授权** |  | 
-| 15.| **阿里云OSS授权** | 包含地域和Bucket | 
-| 16.| **FTP授权** |  | 
-| 17.| **腾讯云COS授权** | 腾讯云对象存储授权，包含地域和存储桶 | 
-| 18.| **七牛OSS授权** |  | 
-| 19.| **s3/minio授权** | S3/minio oss授权 | 
-| 20.| **宝塔云WAF授权** | 用于连接和管理宝塔云WAF服务的授权配置 | 
-| 21.| **易盾DCDN授权** | https://user.yiduncdn.com | 
-| 22.| **易盾rcdn授权** | 易盾CDN，每月免费30G，[注册即领](https://rhcdn.yiduncdn.com/register?code=8mn536rrzfbf8) | 
-| 23.| **易发云短信** | sms.yfyidc.cn/ | 
-| 24.| **cdnfly授权** |  | 
-| 25.| **群晖登录授权** |  | 
-| 26.| **k8s授权** |  | 
-| 27.| **1panel授权** | 账号和密码 | 
-| 28.| **LeCDN授权** |  | 
-| 29.| **白山云授权** |  | 
-| 30.| **plesk授权** |  | 
-| 31.| **易支付** |  | 
-| 32.| **支付宝** |  | 
-| 33.| **微信支付** |  | 
-| 34.| **长亭雷池授权** |  | 
-| 35.| **lucky** |  | 
-| 36.| **括彩云cdn授权** | 括彩云CDN，每月免费30G，[注册即领](https://kuocaicdn.com/register?code=8mn536rrzfbf8) | 
-| 37.| **uniCloud** | unicloud授权 | 
-| 38.| **猫云授权** |  | 
-| 39.| **西部数码授权** |  | 
-| 40.| **多吉云** |  | 
-| 41.| **我爱云授权** | 我爱云CDN | 
-| 42.| **CacheFly** | CacheFly | 
-| 43.| **Gcore** | Gcore | 
-| 44.| **亚马逊云aws授权** |  | 
-| 45.| **亚马逊云科技（国区）授权** |  | 
-| 46.| **dns.la授权** |  | 
-| 47.| **又拍云** |  | 
-| 48.| **51dns授权** |  | 
-| 49.| **FlexCDN授权** |  | 
-| 50.| **farcdn授权** |  | 
-| 51.| **cloudflare授权** |  | 
-| 52.| **Github授权** |  | 
-| 53.| **namesilo授权** |  | 
-| 54.| **proxmox** |  | 
-| 55.| **网宿授权** |  | 
-| 56.| **金山云授权** |  | 
-| 57.| **APISIX授权** |  | 
-| 58.| **Dokploy授权** |  | 
-| 59.| **godaddy授权** |  | 
-| 60.| **新网授权** |  | 
-| 61.| **新网授权（代理方式）** |  | 
-| 62.| **新网互联授权** | 仅支持代理账号，ip需要加入白名单 | 
-| 63.| **雨云授权** | https://app.rainyun.com/ | 
+| 11.| **天翼云授权** |  | 
+| 12.| **51dns授权** |  | 
+| 13.| **SFTP授权** |  | 
+| 14.| **阿里云OSS授权** | 包含地域和Bucket | 
+| 15.| **APISIX授权** |  | 
+| 16.| **亚马逊云aws授权** |  | 
+| 17.| **亚马逊云科技（国区）授权** |  | 
+| 18.| **CacheFly** | CacheFly | 
+| 19.| **EAB授权** | ZeroSSL证书申请需要EAB授权 | 
+| 20.| **google cloud** | 谷歌云授权 | 
+| 21.| **cloudflare授权** |  | 
+| 22.| **中国移动CND授权** |  | 
+| 23.| **授权插件示例** |  | 
+| 24.| **dns.la授权** |  | 
+| 25.| **多吉云** |  | 
+| 26.| **Dokploy授权** |  | 
+| 27.| **farcdn授权** |  | 
+| 28.| **FlexCDN授权** |  | 
+| 29.| **Gcore** | Gcore | 
+| 30.| **Github授权** |  | 
+| 31.| **godaddy授权** |  | 
+| 32.| **金山云授权** |  | 
+| 33.| **FTP授权** |  | 
+| 34.| **七牛OSS授权** |  | 
+| 35.| **腾讯云COS授权** | 腾讯云对象存储授权，包含地域和存储桶 | 
+| 36.| **s3/minio授权** | S3/minio oss授权 | 
+| 37.| **namesilo授权** |  | 
+| 38.| **1panel授权** | 账号和密码 | 
+| 39.| **支付宝** |  | 
+| 40.| **白山云授权** |  | 
+| 41.| **宝塔云WAF授权** | 用于连接和管理宝塔云WAF服务的授权配置 | 
+| 42.| **cdnfly授权** |  | 
+| 43.| **k8s授权** |  | 
+| 44.| **括彩云cdn授权** | 括彩云CDN，每月免费30G，[注册即领](https://kuocaicdn.com/register?code=8mn536rrzfbf8) | 
+| 45.| **LeCDN授权** |  | 
+| 46.| **lucky** |  | 
+| 47.| **猫云授权** |  | 
+| 48.| **plesk授权** |  | 
+| 49.| **长亭雷池授权** |  | 
+| 50.| **群晖登录授权** |  | 
+| 51.| **uniCloud** | unicloud授权 | 
+| 52.| **微信支付** |  | 
+| 53.| **易盾rcdn授权** | 易盾CDN，每月免费30G，[注册即领](https://rhcdn.yiduncdn.com/register?code=8mn536rrzfbf8) | 
+| 54.| **易发云短信** | sms.yfyidc.cn/ | 
+| 55.| **易盾DCDN授权** | https://user.yiduncdn.com | 
+| 56.| **易支付** |  | 
+| 57.| **proxmox** |  | 
+| 58.| **UCloud授权** | 优刻得授权 | 
+| 59.| **又拍云** |  | 
+| 60.| **网宿授权** |  | 
+| 61.| **西部数码授权** |  | 
+| 62.| **我爱云授权** | 我爱云CDN | 
+| 63.| **新网授权（代理方式）** |  | 
+| 64.| **新网授权** |  | 
+| 65.| **新网互联授权** | 仅支持代理账号，ip需要加入白名单 | 
+| 66.| **Zenlayer授权** | Zenlayer授权 | 
+| 67.| **GoEdge授权** |  | 
+| 68.| **雨云授权** | https://app.rainyun.com/ | 

 <style module>
 table th:first-of-type {
--- a/docs/guide/plugins/deploy.md
+++ b/docs/guide/plugins/deploy.md
@@ -1,123 +1,131 @@
 # 任务插件
-共 `102` 款任务插件    
+共 `116` 款任务插件    
 ## 1. 证书申请

 | 序号 | 名称 | 说明 |
 |-----|-----|-----|
 | 1.| **证书申请（JS版）** | 免费通配符域名证书申请，支持多个域名打到同一个证书上 | 
-| 2.| **证书申请（Lego）** | 支持海量DNS解析提供商，推荐使用，一样的免费通配符域名证书申请，支持多个域名打到同一个证书上 | 
-| 3.| **商用证书托管** | 手动上传自定义证书后，自动部署（每次证书有更新，都需要手动上传一次） | 
+| 2.| **商用证书托管** | 手动上传自定义证书后，自动部署（每次证书有更新，都需要手动上传一次） | 
+| 3.| **获取阿里云订阅证书** | 从阿里云拉取订阅模式的商用证书 | 
+| 4.| **证书申请（Lego）** | 支持海量DNS解析提供商，推荐使用，一样的免费通配符域名证书申请，支持多个域名打到同一个证书上 | 
 ## 2. 主机

 | 序号 | 名称 | 说明 |
 |-----|-----|-----|
-| 1.| **FTP-上传证书到FTP** | 将证书上传到FTP服务器 | 
-| 2.| **IIS-部署到IIS站点** |  | 
-| 3.| **主机-执行远程主机脚本命令** | 可以执行重启nginx等操作让证书生效 | 
-| 4.| **主机-部署证书到SSH主机** | SFTP上传证书到主机，然后SSH执行部署脚本命令 | 
-| 5.| **主机-复制到本机** | 【仅管理员使用】实际上是复制证书到docker容器内的某个路径，需要做目录映射到宿主机 | 
-| 6.| **上传证书到对象存储OSS** | 支持阿里云OSS、腾讯云COS、七牛云KODO、S3、MinIO、FTP、SFTP | 
+| 1.| **主机-复制到本机** | 【仅管理员使用】实际上是复制证书到docker容器内的某个路径，需要做目录映射到宿主机 | 
+| 2.| **主机-执行远程主机脚本命令** | 可以执行重启nginx等操作让证书生效 | 
+| 3.| **IIS-部署到IIS站点** |  | 
+| 4.| **上传证书到对象存储OSS** | 支持阿里云OSS、腾讯云COS、七牛云KODO、S3、MinIO、FTP、SFTP | 
+| 5.| **主机-部署证书到SSH主机** | 上传证书到主机覆盖原来的证书文件，然后自动执行部署脚本命令使证书生效 | 
+| 6.| **ESXi-部署证书到ESXi** |  | 
+| 7.| **FTP-上传证书到FTP** | 将证书上传到FTP服务器 | 
+| 8.| **Openwrt-部署证书到Openwrt** |  | 
 ## 3. CDN

 | 序号 | 名称 | 说明 |
 |-----|-----|-----|
-| 1.| **易盾-部署到易盾DCDN** | 主要是防御，http://user.yiduncdn.com/ | 
-| 2.| **易盾-部署到易盾RCDN** | 易盾CDN，每月免费30G，[注册即领](https://rhcdn.yiduncdn.com/register?code=8mn536rrzfbf8) | 
-| 3.| **cdnfly-部署证书到cdnfly** | cdnfly | 
-| 4.| **LeCDN-更新证书** |  | 
-| 5.| **LeCDN-更新证书V2** | 支持新版本LeCDN | 
-| 6.| **白山云-更新证书** |  | 
-| 7.| **天翼云-部署证书到CDN** | 部署证书到天翼云CDN和全站加速 | 
-| 8.| **括彩云-部署到括彩云CDN** | 括彩云CDN，每月免费30G，[注册即领](https://kuocaicdn.com/register?code=8mn536rrzfbf8) | 
-| 9.| **多吉云-部署到多吉云CDN** |  | 
-| 10.| **我爱云-部署证书到我爱云CDN** | 部署证书到我爱云CDN | 
-| 11.| **CacheFly-部署证书到CacheFly** | 部署证书到 CacheFly | 
-| 12.| **Gcore-部署证书到Gcore** | 仅上传 并不会部署到cdn | 
-| 13.| **Gcore-刷新Gcore证书** | 刷新现有的证书 | 
-| 14.| **又拍云-部署证书到CDN/USS** | 支持又拍云CDN，又拍云云存储USS | 
-| 15.| **FlexCDN-更新证书** |  | 
-| 16.| **farcdn-更新证书** | www.farcdn.net | 
-| 17.| **雨云-更新证书** | app.rainyun.com | 
-| 18.| **网宿-更新证书** | 网宿证书自动更新 | 
-| 19.| **金山云-更新CDN证书** | 金山云自动更新CDN证书 | 
-| 20.| **APISIX-更新证书** | 自动更新APISIX证书 | 
+| 1.| **APISIX-更新证书** | 自动更新APISIX证书 | 
+| 2.| **CacheFly-部署证书到CacheFly** | 部署证书到 CacheFly | 
+| 3.| **中国移动-部署证书到CDN** | 中国移动自动部署证书到CDN | 
+| 4.| **多吉云-部署到多吉云CDN** |  | 
+| 5.| **farcdn-更新证书** | www.farcdn.net | 
+| 6.| **FlexCDN-更新证书** |  | 
+| 7.| **Gcore-刷新Gcore证书** | 刷新现有的证书 | 
+| 8.| **Gcore-部署证书到Gcore** | 仅上传 并不会部署到cdn | 
+| 9.| **GoEdge-更新证书** | GoEdge | 
+| 10.| **金山云-更新CDN证书** | 金山云自动更新CDN证书 | 
+| 11.| **白山云-更新证书** |  | 
+| 12.| **cdnfly-部署证书到cdnfly** | cdnfly | 
+| 13.| **天翼云-部署证书到CDN** | 部署证书到天翼云CDN和全站加速 | 
+| 14.| **括彩云-部署到括彩云CDN** | 括彩云CDN，每月免费30G，[注册即领](https://kuocaicdn.com/register?code=8mn536rrzfbf8) | 
+| 15.| **LeCDN-更新证书V2** | 支持新版本LeCDN | 
+| 16.| **LeCDN-更新证书** |  | 
+| 17.| **Maoyun-更新猫云CDN证书** |  | 
+| 18.| **易盾-部署到易盾DCDN** | 主要是防御，http://user.yiduncdn.com/ | 
+| 19.| **易盾-部署到易盾RCDN** | 易盾CDN，每月免费30G，[注册即领](https://rhcdn.yiduncdn.com/register?code=8mn536rrzfbf8) | 
+| 20.| **雨云-更新证书** | app.rainyun.com | 
+| 21.| **又拍云-部署证书到CDN/USS** | 支持又拍云CDN，又拍云云存储USS | 
+| 22.| **网宿-更新证书** | 网宿证书自动更新 | 
+| 23.| **西数-部署到虚拟主机** | 西部数码部署证书到虚拟主机 | 
+| 24.| **我爱云-部署证书到我爱云CDN** | 部署证书到我爱云CDN | 
+| 25.| **Zenlayer-刷新证书** | 刷新Zenlayer CDN证书 | 
 ## 4. 面板

 | 序号 | 名称 | 说明 |
 |-----|-----|-----|
-| 1.| **宝塔-面板证书部署** | 部署宝塔面板本身的ssl证书 | 
-| 2.| **宝塔-网站证书部署** | 部署宝塔管理的站点的ssl证书，目前支持宝塔网站站点、docker站点等。本插件也支持aaPanel。 | 
-| 3.| **宝塔-WAF证书部署** | 部署宝塔云WAF/aaWAF | 
-| 4.| **宝塔win-网站证书部署** | 部署到Windows版宝塔管理的站点的ssl证书 | 
+| 1.| **Dokploy-部署server证书** | 自动更新Dokploy server证书 | 
+| 2.| **飞牛NAS-部署证书** |  | 
+| 3.| **1Panel-部署面板证书** | 更新1Panel的面板证书 | 
+| 4.| **1Panel-更新证书** | 更新1Panel的证书，包括面板证书和站点证书 | 
 | 5.| **宝塔-删除过期证书** | 删除证书夹中过期证书 | 
-| 6.| **群晖-部署证书到群晖面板** | Synology，支持6.x以上版本 | 
-| 7.| **K8S-部署证书到Secret** | 部署证书到k8s的secret | 
-| 8.| **K8S-Ingress 证书部署** | 部署证书到k8s的Ingress | 
-| 9.| **1Panel-部署证书到1Panel** | 更新1Panel的证书 | 
-| 10.| **Plesk-部署Plesk网站证书** |  | 
-| 11.| **雷池-更新证书** | 更新长亭雷池WAF的证书 | 
-| 12.| **lucky-更新Lucky证书** |  | 
-| 13.| **uniCloud-部署到服务空间** | 部署到服务空间 | 
-| 14.| **威联通-部署证书到威联通** | 部署证书到qnap | 
-| 15.| **飞牛NAS-部署证书** |  | 
-| 16.| **Proxmox-上传证书到Proxmox** |  | 
-| 17.| **Dokploy-更新证书** | 自动更新Dokploy证书 | 
+| 6.| **宝塔-WAF证书部署** | 部署宝塔云WAF/aaWAF | 
+| 7.| **宝塔-面板证书部署** | 部署宝塔面板本身的ssl证书 | 
+| 8.| **宝塔win-网站证书部署** | 部署到Windows版宝塔管理的站点的ssl证书 | 
+| 9.| **宝塔-网站证书部署** | 部署宝塔管理的站点的ssl证书，目前支持宝塔网站站点、docker站点等。本插件也支持aaPanel。 | 
+| 10.| **K8S-Apply自定义yaml** | apply自定义yaml到k8s | 
+| 11.| **K8S-Ingress 证书部署** | 部署证书到k8s的Ingress | 
+| 12.| **K8S-部署证书到Secret** | 部署证书到k8s的secret | 
+| 13.| **lucky-更新Lucky证书** |  | 
+| 14.| **Plesk-部署Plesk网站证书** |  | 
+| 15.| **Plesk-更新证书** | 不会创建新证书记录，直接更新旧的证书 | 
+| 16.| **雷池-更新证书** | 更新长亭雷池WAF的证书 | 
+| 17.| **群晖-部署证书到群晖面板** | Synology，支持6.x以上版本 | 
+| 18.| **uniCloud-部署到服务空间** | 部署到服务空间 | 
+| 19.| **Proxmox-上传证书到Proxmox** |  | 
+| 20.| **威联通-部署证书到威联通** | 部署证书到qnap | 
 ## 5. 阿里云

 | 序号 | 名称 | 说明 |
 |-----|-----|-----|
 | 1.| **阿里云-部署到Ack** | 部署到阿里云Ack集群Ingress等通过Secret管理证书的应用 | 
-| 2.| **阿里云-部署至任意云资源** | 【不建议使用】需要消耗阿里云自动部署次数，支持SLB、LIVE、webHosting、VOD、CR、DCDN、DDoS、CDN、ALB、APIGateway、FC、GA、MSE、NLB、OSS、SAE、WAF等云产品 | 
-| 3.| **阿里云-部署证书至CDN** | 自动部署域名证书至阿里云CDN | 
-| 4.| **阿里云-部署证书至DCDN** | 依赖证书申请前置任务，自动部署域名证书至阿里云DCDN | 
-| 5.| **阿里云-部署证书至OSS** | 部署域名证书至阿里云OSS自定义域名，不是上传到阿里云oss | 
-| 6.| **阿里云-上传证书到阿里云CAS** | 上传证书到阿里云数字证书管理服务（CAS），注意：不会部署到任何应用上；如果不想在阿里云上同一份证书上传多次，可以把此任务作为前置任务，其他阿里云任务证书那一项选择此任务的输出 | 
-| 7.| **阿里云-部署至阿里云WAF** | 部署证书到阿里云WAF | 
-| 8.| **阿里云-部署至ALB（应用负载均衡）** | ALB,更新监听器的默认证书 | 
-| 9.| **阿里云-部署至NLB（网络负载均衡）** | NLB,网络负载均衡,更新监听器的默认证书 | 
-| 10.| **阿里云-部署至CLB(传统负载均衡)** | 部署证书到阿里云CLB(传统负载均衡) | 
-| 11.| **阿里云-部署至阿里云FC(3.0)** | 部署证书到阿里云函数计算（FC3.0） | 
-| 12.| **阿里云-部署至ESA** | 部署证书到阿里云ESA(边缘安全加速)，自动删除过期证书 | 
+| 2.| **阿里云-部署至ALB（应用负载均衡）** | ALB,更新监听器的默认证书 | 
+| 3.| **阿里云-部署至任意云资源** | 【不建议使用】需要消耗阿里云自动部署次数，支持SLB、LIVE、webHosting、VOD、CR、DCDN、DDoS、CDN、ALB、APIGateway、FC、GA、MSE、NLB、OSS、SAE、WAF等云产品 | 
+| 4.| **阿里云-部署至云原生API网关/AI网关** | 自动部署域名证书至云原生API网关、AI网关 | 
+| 5.| **阿里云-部署证书至API网关** | 自动部署域名证书至阿里云API网关（APIGateway） | 
+| 6.| **阿里云-部署证书至CDN** | 自动部署域名证书至阿里云CDN | 
+| 7.| **阿里云-部署证书至DCDN** | 依赖证书申请前置任务，自动部署域名证书至阿里云DCDN | 
+| 8.| **阿里云-部署至ESA** | 部署证书到阿里云ESA(边缘安全加速)，自动删除过期证书 | 
+| 9.| **阿里云-部署至阿里云FC(3.0)** | 部署证书到阿里云函数计算（FC3.0） | 
+| 10.| **阿里云-部署至NLB（网络负载均衡）** | NLB,网络负载均衡,更新监听器的默认证书 | 
+| 11.| **阿里云-部署证书至OSS** | 部署域名证书至阿里云OSS自定义域名，不是上传到阿里云oss | 
+| 12.| **阿里云-部署至CLB(传统负载均衡)** | 部署证书到阿里云CLB(传统负载均衡) | 
 | 13.| **阿里云-部署至VOD** | 部署证书到阿里云视频点播（vod） | 
-| 14.| **阿里云-部署证书至API网关** | 自动部署域名证书至阿里云API网关（APIGateway） | 
-| 15.| **阿里云-部署至云原生API网关/AI网关** | 自动部署域名证书至云原生API网关、AI网关 | 
+| 14.| **阿里云-部署至阿里云WAF** | 部署证书到阿里云WAF | 
+| 15.| **阿里云-上传证书到CAS** | 上传证书到阿里云证书管理服务（CAS），如果不想在阿里云上同一份证书上传多次，可以把此任务作为前置任务，其他阿里云任务证书那一项选择此任务的输出 | 
 ## 6. 华为云

 | 序号 | 名称 | 说明 |
 |-----|-----|-----|
 | 1.| **华为云-部署证书至CDN** |  | 
-| 2.| **华为云-上传证书至CCM** | 上传证书到华为云云证书管理（CCM） | 
-| 3.| **华为云-部署证书至OBS** |  | 
+| 2.| **华为云-部署证书至OBS** |  | 
+| 3.| **华为云-上传证书至CCM** | 上传证书到华为云云证书管理（CCM） | 
 ## 7. 腾讯云

 | 序号 | 名称 | 说明 |
 |-----|-----|-----|
-| 1.| **腾讯云-部署证书到任意云资源** | 支持负载均衡、CDN、DDoS、直播、点播、Web应用防火墙、API网关、TEO、容器服务、对象存储、轻应用服务器、云原生微服务、云开发 | 
-| 2.| **腾讯云-部署到CLB** | 暂时只支持单向认证证书，暂时只支持通用负载均衡 | 
+| 1.| **腾讯云-删除即将过期证书** | 仅删除未使用的证书 | 
+| 2.| **腾讯云-部署证书到任意云资源** | 支持负载均衡、CDN、DDoS、直播、点播、Web应用防火墙、API网关、TEO、容器服务、对象存储、轻应用服务器、云原生微服务、云开发 | 
 | 3.| **腾讯云-部署到CDN（废弃）** | 已废弃，请使用v2版 | 
 | 4.| **腾讯云-部署到CDN-v2** | 推荐使用 | 
-| 5.| **腾讯云-上传证书到腾讯云** | 上传成功后输出：tencentCertId | 
+| 5.| **腾讯云-部署到CLB** | 暂时只支持单向认证证书，暂时只支持通用负载均衡 | 
 | 6.| **腾讯云-部署证书到COS** | 部署到腾讯云COS源站域名证书【注意：很不稳定，需要重试很多次偶尔才能成功一次】 | 
-| 7.| **腾讯云-部署到腾讯云EO** | 腾讯云边缘安全加速平台EdgeOne(EO)，必须配置上传证书到腾讯云任务 | 
-| 8.| **腾讯云-删除即将过期证书** | 仅删除未使用的证书 | 
-| 9.| **腾讯云-部署到TKE** | 修改TKE集群密钥配置，支持Opaque和TLS证书类型。注意：
-1. serverless集群请使用K8S部署插件；
-2. Opaque类型需要【上传到腾讯云】作为前置任务；
-3. ApiServer需要开通公网访问（或者certd可访问），实际上底层仍然是通过KubeClient进行部署 | 
-| 10.| **腾讯云-部署到腾讯云直播** | https://console.cloud.tencent.com/live/ | 
+| 7.| **腾讯云-部署到腾讯云EO** | 腾讯云边缘安全加速平台EdgeOne(EO) | 
+| 8.| **腾讯云-部署到腾讯云直播** | https://console.cloud.tencent.com/live/ | 
+| 9.| **腾讯云-部署到TKE** | 修改TKE集群密钥配置，支持Opaque和TLS证书类型。注意： 1. serverless集群请使用K8S部署插件； 2. Opaque类型需要【上传到腾讯云】作为前置任务； 3. ApiServer需要开通公网访问（或者certd可访问），实际上底层仍然是通过KubeClient进行部署 | 
+| 10.| **腾讯云-更新证书(Id不变)** | 根据证书id一键更新腾讯云证书并自动部署（Id不变），注意：当前仅支持CLB，其他需要等腾讯接口完善 | 
 | 11.| **腾讯云-实例开关机** | 腾讯云实例开关机 | 
-| 12.| **腾讯云-更新证书(Id不变)** | 根据证书id一键更新腾讯云证书并自动部署（Id不变），注意该接口为腾讯云白名单功能，非白名单用户无法使用该功能 | 
+| 12.| **腾讯云-上传证书到腾讯云** | 上传成功后输出：tencentCertId | 
 ## 8. 火山引擎

 | 序号 | 名称 | 说明 |
 |-----|-----|-----|
-| 1.| **火山引擎-部署证书至CDN** | 支持网页，文件下载，音视频点播 | 
-| 2.| **火山引擎-部署证书至CLB** | 部署至火山引擎负载均衡 | 
-| 3.| **火山引擎-上传证书至证书中心** | 上传证书至火山引擎证书中心 | 
-| 4.| **火山引擎-部署证书至ALB** | 部署至火山引擎应用负载均衡 | 
+| 1.| **火山引擎-部署证书至ALB** | 部署至火山引擎应用负载均衡 | 
+| 2.| **火山引擎-部署证书至CDN** | 支持网页，文件下载，音视频点播 | 
+| 3.| **火山引擎-部署证书至CLB** | 部署至火山引擎负载均衡 | 
+| 4.| **火山引擎-部署证书至DCDN** | 部署至火山引擎全站加速 | 
 | 5.| **火山引擎-部署证书至Live** | 部署至火山引擎视频直播 | 
-| 6.| **火山引擎-部署证书至DCDN** | 部署至火山引擎全站加速 | 
-| 7.| **火山引擎-部署证书至VOD** | 部署至火山引擎视频点播(暂不可用) | 
+| 6.| **火山引擎-部署证书至VOD** | 部署至火山引擎视频点播(暂不可用) | 
+| 7.| **火山引擎-上传证书至证书中心** | 上传证书至火山引擎证书中心 | 
 ## 9. 京东云

 | 序号 | 名称 | 说明 |
@@ -125,43 +133,50 @@
 | 1.| **京东云-部署证书至CDN** | 京东云内容分发网络 | 
 | 2.| **京东云-更新已有证书** | 更新SSL数字证书中的证书 | 
 | 3.| **京东云-上传新证书** | 上传证书到SSL数字证书中心 | 
-## 10. 百度云
+## 10. UCloud

 | 序号 | 名称 | 说明 |
 |-----|-----|-----|
-| 1.| **百度云-部署证书到CDN** | 部署到百度云CDN | 
-| 2.| **百度云-部署证书到负载均衡** | 部署到百度云负载均衡，包括BLB、APPBLB | 
+| 1.| **UCloud-部署到CDN** | 将证书部署到UCloud CDN | 
+| 2.| **UCloud-部署到WAF** | 将证书部署到UCloud WAF | 
+| 3.| **UCloud-上传到USSL** | 将证书上传到UCloud USSL | 
+## 11. 百度云
+
+| 序号 | 名称 | 说明 |
+|-----|-----|-----|
+| 1.| **百度云-部署证书到负载均衡** | 部署到百度云负载均衡，包括BLB、APPBLB | 
+| 2.| **百度云-部署证书到CDN** | 部署到百度云CDN | 
 | 3.| **百度云-上传到证书托管** | 上传证书到百度云证书托管中心 | 
-## 11. 七牛云
+## 12. 七牛云

 | 序号 | 名称 | 说明 |
 |-----|-----|-----|
-| 1.| **七牛云-部署证书至OSS** | 自动部署域名证书至七牛云KODO，注意是自定义源站域名，不是CDN域名 | 
-| 2.| **七牛云-部署证书至CDN/DCDN** | 自动部署域名证书至七牛云CDN、DCDN | 
+| 1.| **七牛云-部署证书至CDN/DCDN** | 自动部署域名证书至七牛云CDN、DCDN | 
+| 2.| **七牛云-部署证书至OSS** | 自动部署域名证书至七牛云KODO，注意是自定义源站域名，不是CDN域名 | 
 | 3.| **七牛云-上传证书到七牛云** | 上传到七牛云 | 
-## 12. 亚马逊云
+## 13. 亚马逊云

 | 序号 | 名称 | 说明 |
 |-----|-----|-----|
 | 1.| **AWS-部署证书到CloudFront** | 部署证书到 AWS CloudFront | 
 | 2.| **AWS-上传证书到ACM** | 上传证书 AWS ACM | 
 | 3.| **AWS(国区)-部署证书到CloudFront** | 部署证书到 AWS CloudFront | 
-## 13. 其他
+## 14. 其他

 | 序号 | 名称 | 说明 |
 |-----|-----|-----|
 | 1.| **Demo-测试插件** |  | 
-| 2.| **等待** | 等待一段时间 | 
+| 2.| **Github-检查Release版本** | 检查最新Release版本并推送消息 | 
 | 3.| **邮件发送证书** | 通过邮件发送证书 | 
-| 4.| **webhook方式部署证书** | 调用webhook部署证书 | 
-| 5.| **Github-检查Release版本** | 检查最新Release版本并推送消息 | 
-## 14. 管理
+| 4.| **等待** | 等待一段时间 | 
+| 5.| **webhook方式部署证书** | 调用webhook部署证书 | 
+## 15. 管理

 | 序号 | 名称 | 说明 |
 |-----|-----|-----|
-| 1.| **重启 Certd** | 【仅管理员可用】 重启 certd的https服务，用于更新 Certd 的 ssl 证书 | 
-| 2.| **自定义js脚本** | 【仅管理员】运行自定义js脚本执行 | 
-| 3.| **数据库备份** | 【仅管理员可用】仅支持备份SQLite数据库 | 
+| 1.| **数据库备份** | 【仅管理员可用】仅支持备份SQLite数据库 | 
+| 2.| **重启 Certd** | 【仅管理员可用】 重启 certd的https服务，用于更新 Certd 的 ssl 证书 | 
+| 3.| **自定义js脚本** | 【仅管理员】运行自定义js脚本执行 | 

 <style module>
 table th:first-of-type {
--- a/docs/guide/plugins/dns-provider.md
+++ b/docs/guide/plugins/dns-provider.md
@@ -2,22 +2,25 @@

 | 序号 | 名称 | 说明 |
 |-----|-----|-----|
-| 1.| **阿里云** | 阿里云DNS解析提供商 | 
-| 2.| **阿里ESA** | 阿里ESA DNS解析 | 
-| 3.| **火山引擎** | 火山引擎DNS解析提供商 | 
-| 4.| **京东云** | 京东云DNS解析提供商 | 
-| 5.| **新网** | 新网域名解析 | 
+| 1.| **阿里ESA** | 阿里ESA DNS解析 | 
+| 2.| **阿里云** | 阿里云DNS解析提供商 | 
+| 3.| **AWS Route53** | AWS Route53 DNS解析提供商 | 
+| 4.| **火山引擎** | 火山引擎DNS解析提供商 | 
+| 5.| **京东云** | 京东云DNS解析提供商 | 
 | 6.| **新网(代理方式)** | 新网域名解析(代理方式) | 
-| 7.| **腾讯云** | 腾讯云域名DNS解析提供者 | 
-| 8.| **华为云** | 华为云DNS解析提供商 | 
-| 9.| **西部数码** | west dns provider | 
-| 10.| **dns.la** | dns.la | 
-| 11.| **雨云** | 雨云DNS解析提供商 | 
-| 12.| **cloudflare** | cloudflare dns provider | 
-| 13.| **namesilo** | namesilo dns provider | 
-| 14.| **godaddy** | GoDaddy | 
-| 15.| **51dns** | 51DNS | 
-| 16.| **新网互联** | 新网互联 | 
+| 7.| **新网** | 新网域名解析 | 
+| 8.| **cloudflare** | cloudflare dns provider | 
+| 9.| **dns.la** | dns.la | 
+| 10.| **godaddy** | GoDaddy | 
+| 11.| **华为云** | 华为云DNS解析提供商 | 
+| 12.| **namesilo** | namesilo dns provider | 
+| 13.| **雨云** | 雨云DNS解析提供商 | 
+| 14.| **腾讯云** | 腾讯云域名DNS解析提供者 | 
+| 15.| **腾讯云EO DNS** | 腾讯云EO DNS解析提供者 | 
+| 16.| **西部数码** | west dns provider | 
+| 17.| **Dns提供商Demo** | dns provider示例 | 
+| 18.| **51dns** | 51DNS | 
+| 19.| **新网互联** | 新网互联 | 

 <style module>
 table th:first-of-type {
--- a/docs/guide/plugins/notification.md
+++ b/docs/guide/plugins/notification.md
@@ -4,20 +4,20 @@
 |-----|-----|-----|
 | 1.| **电子邮件** | 电子邮件通知 | 
 | 2.| **自定义webhook** | 根据模版自定义http请求 | 
-| 3.| **企业微信通知** | 企业微信群聊机器人通知 | 
-| 4.| **爱语飞飞微信通知(iyuu)** | https://iyuu.cn/ | 
-| 5.| **Server酱ᵀ** | https://sct.ftqq.com/ | 
-| 6.| **Server酱³** | https://doc.sc3.ft07.com/serverchan3 | 
-| 7.| **AnPush** | https://anpush.com | 
-| 8.| **Telegram通知** | Telegram Bot推送通知 | 
-| 9.| **Discord 通知** | Discord 机器人通知 | 
-| 10.| **Slack通知** | Slack消息推送通知 | 
-| 11.| **Bark 通知** | Bark 推送通知插件 | 
-| 12.| **飞书通知** | 飞书群聊webhook通知 | 
-| 13.| **钉钉通知** | 钉钉群聊通知 | 
-| 14.| **VoceChat通知** | https://voce.chat | 
-| 15.| **OneBot V11 通知** | 通过动态拼接URL发送 OneBot V11 协议消息 | 
-| 16.| **MeoW通知** | https://api.chuckfang.com/ | 
+| 3.| **AnPush** | https://anpush.com | 
+| 4.| **Bark 通知** | Bark 推送通知插件 | 
+| 5.| **钉钉通知** | 钉钉群聊通知 | 
+| 6.| **Discord 通知** | Discord 机器人通知 | 
+| 7.| **飞书通知** | 飞书群聊webhook通知 | 
+| 8.| **爱语飞飞微信通知(iyuu)** | https://iyuu.cn/ | 
+| 9.| **MeoW通知** | https://api.chuckfang.com/ | 
+| 10.| **OneBot V11 通知** | 通过动态拼接URL发送 OneBot V11 协议消息 | 
+| 11.| **企业微信通知** | 企业微信群聊机器人通知 | 
+| 12.| **Server酱ᵀ** | https://sct.ftqq.com/ | 
+| 13.| **Server酱³** | https://doc.sc3.ft07.com/serverchan3 | 
+| 14.| **Slack通知** | Slack消息推送通知 | 
+| 15.| **Telegram通知** | Telegram Bot推送通知 | 
+| 16.| **VoceChat通知** | https://voce.chat | 

 <style module>
 table th:first-of-type {
--- a/docs/guide/qa/use.md
+++ b/docs/guide/qa/use.md
@@ -43,4 +43,12 @@ service:
      certd_koa_hostname: 0.0.0.0
 ```

+## 6. DNS记录问题
+
+1. DNS 不要设置CAA记录，删除即可
+
+2. DNSSEC相关报错，DNSSEC管理中删除即可
+
+3. DNS 有其他平台申请过的_acme-challenge记录，删除即可
+

--- a/docs/guide/use/aliyun/index.md
+++ b/docs/guide/use/aliyun/index.md
@@ -5,8 +5,10 @@

 配置环境变量
 ```shell
-ALIYUN_CLIENT_CONNECT_TIMEOUT=10000 # 连接超时，单位毫秒
-ALIYUN_CLIENT_READ_TIMEOUT=10000 #读取数据超时，单位毫秒
+# docker-compose.yaml
+environment:
+  - ALIYUN_CLIENT_CONNECT_TIMEOUT=16000 # 连接超时，单位毫秒
+  - ALIYUN_CLIENT_READ_TIMEOUT=16000 #读取数据超时，单位毫秒

 ```

--- a/docs/guide/use/baota/white_list.md
+++ b/docs/guide/use/baota/white_list.md
@@ -17,7 +17,7 @@

 > 如果出现过： 100.25.1.5 ， 100.25.4.8
 >
-> 可以尝试配置 100.25.*.5
+> 可以尝试配置 100.25.*.*

 ## 二、nginx代理方案

--- a/docs/guide/use/cert/index.md
+++ b/docs/guide/use/cert/index.md
@@ -1,10 +0,0 @@
-# 证书申请失败情况
-
-
-## DNS记录问题
-
-1. DNS 不要设置CAA记录，删除即可
-
-2. DNSSEC相关报错，DNSSEC管理中删除即可
-
-3. DNS 有其他平台申请过的_acme-challenge记录，删除即可
--- a/docs/guide/use/cert/ip.md
+++ b/docs/guide/use/cert/ip.md
@@ -0,0 +1,11 @@
+# IP证书申请
+certd已支持IP证书申请
+
+> 注意：IP证书有效期只有7天。
+
+## 申请方式
+相比普通的域名证书申请方式区别在于：
+1. 域名栏填写IP
+2. 校验方式选择HTTP（只能HTTP）
+3. 证书颁发机构选择默认的Let's Encrypt
+4. 过期更新天数改成2天
--- a/docs/guide/use/comm/payments/images/wx-1.png
+++ b/docs/guide/use/comm/payments/images/wx-1.png
--- a/docs/guide/use/comm/payments/wxpay.md
+++ b/docs/guide/use/comm/payments/wxpay.md
@@ -11,7 +11,8 @@

   * 进入“账户中心”->“API安全”->“商户API证书”->“管理证书”
   * 根据指引生成证书
-   * 得到私钥和公钥
+   * 得到apiclient证书和私钥
+   ![wx-1.png](images/wx-1.png)


 3. 填写APIv3密钥
@@ -24,4 +25,4 @@
 4. 在Certd后台配置微信支付
   * 进入“系统”->"设置"->“支付设置”
   * 启用微信支付，选择“微信支付配置”，点击添加
-   * 填写微信支付商户号、证书私钥、证书公钥、APIv3密钥即可。
+   * 填写微信支付商户号、证书（apiclient_cert.pem）、私钥（apiclient_key.pem）、APIv3密钥即可。
--- a/docs/guide/use/dev/images/plugin-create.png
+++ b/docs/guide/use/dev/images/plugin-create.png
--- a/docs/guide/use/dev/images/plugin-edit.png
+++ b/docs/guide/use/dev/images/plugin-edit.png
--- a/docs/guide/use/dev/images/plugin-test1.png
+++ b/docs/guide/use/dev/images/plugin-test1.png
--- a/docs/guide/use/dev/images/plugin-test2.png
+++ b/docs/guide/use/dev/images/plugin-test2.png
--- a/docs/guide/use/dev/images/plugin-test3.png
+++ b/docs/guide/use/dev/images/plugin-test3.png
--- a/docs/guide/use/dev/plugin.md
+++ b/docs/guide/use/dev/plugin.md
@@ -0,0 +1,19 @@
+# 插件开发
+
+## 插件创建
+ 点击自定义插件按钮，填写插件基本信息
+![plugin-create.png](images/plugin-create.png)
+
+创建成功后，会默认打开插件编辑页面，里面默认带有示例代码说明，可以在此基础上进行你的自定义开发
+![plugin-edit.png](images/plugin-edit.png)
+
+## 插件测试
+ 
+ 在流水线中添加插件任务
+![plugin-test.png](images/plugin-test1.png)
+
+ 配置插件任务参数
+![plugin-test.png](images/plugin-test2.png)
+
+ 点击运行，查看插件任务运行结果
+![plugin-test.png](images/plugin-test3.png)
--- a/docs/guide/use/forgotpasswd/index.md
+++ b/docs/guide/use/forgotpasswd/index.md
@@ -1,26 +1,53 @@
-# 忘记管理员密码
+# 忘记密码/无法登录
+
+无法登录的情况：
+1、忘记管理员密码
+2、仅有第三方登录，但第三方登录失效，导致无法登录
+
+请查看如下方法恢复的登录
+
+## 一、忘记管理员密码
 解决方法如下：

-## 1. 修改环境变量
+### 1. 修改环境变量
+
+docker部署的：
 修改docker-compose.yaml文件，将环境变量`certd_system_resetAdminPasswd`改为`true`
 ```yaml
 services:
  certd:
    environment: # 环境变量
-      - certd_system_resetAdminPasswd=false
+      - certd_system_resetAdminPasswd=true
 ```
-## 2. 重启容器
+
+源码部署的，修改`packages/ui/certd-server/.env`文件  
+
+```ini
+certd_system_resetAdminPasswd=true
+```
+
+### 2. 重启容器
 ```shell
 docker compose up -d
 docker logs -f --tail 500 certd
-# 观察日志，当日志中输出“重置1号管理员用户的密码完成”，即可操作下一步
+# 观察日志，当日志中输出“重置1号管理员用户密码完成”，即可操作下一步
+# 这里会打印1号管理员记录的用户名，如果你修改过管理员用户名，请注意查看此条日志
 ```
-## 3. 恢复环境变量
+### 3. 恢复环境变量
 修改docker-compose.yaml，将`certd_system_resetAdminPasswd`改回`false`

-## 4. 再次重启容器
+### 4. 再次重启容器
 ```shell
 docker compose up -d
 ```
-## 5. 默认密码登录
-使用`admin/123456`登录系统，请及时修改管理员密码
+### 5. 默认密码登录
+使用`原管理员账号/123456`登录系统，请及时修改管理员密码
+> 默认管理员账号： admin
+> 如果忘记管理员账号，请查看修改密码时的启动日志，会打印管理员账号名
+
+
+## 二、仅有第三方登录，没有登录窗口
+
+当开启仅使用第三方登录模式时，如果第三方登录未配置或已失效，则会导致无法登录
+
+您可以通过访问 `http://你的certd地址/#/login?oauthOnly=false` 来临时关闭仅使用第三方登录模式，以使用密码登录。
--- a/docs/guide/use/pipeline/images/edit.png
+++ b/docs/guide/use/pipeline/images/edit.png
--- a/docs/guide/use/pipeline/images/edit2.png
+++ b/docs/guide/use/pipeline/images/edit2.png
--- a/docs/guide/use/pipeline/images/setting.png
+++ b/docs/guide/use/pipeline/images/setting.png
--- a/docs/guide/use/pipeline/images/show.png
+++ b/docs/guide/use/pipeline/images/show.png
--- a/docs/guide/use/pipeline/valid.md
+++ b/docs/guide/use/pipeline/valid.md
@@ -0,0 +1,17 @@
+# 流水线有效期功能
+
+可以为流水线设置有效期，超过有效期后，流水线将停止运行
+
+## 1. 打开有效期开关
+
+![setting.png](images/setting.png)
+
+## 2. 设置有效期
+
+![valid.png](images/edit.png)
+
+![valid.png](images/edit2.png)
+
+## 3. 设置完成
+该流水线将在有效期结束后停止运行
+![valid.png](images/show.png)
--- a/docs/guide/use/setting/images/user_valid_enable.png
+++ b/docs/guide/use/setting/images/user_valid_enable.png
--- a/docs/guide/use/setting/images/user_valid_set.png
+++ b/docs/guide/use/setting/images/user_valid_set.png
--- a/docs/guide/use/setting/oauth.md
+++ b/docs/guide/use/setting/oauth.md
@@ -0,0 +1,2 @@
+# 第三方登录配置
+
--- a/docs/guide/use/setting/user-valid.md
+++ b/docs/guide/use/setting/user-valid.md
@@ -0,0 +1,11 @@
+# 用户有效期功能
+
+可以为用户设置有效期，超过有效期后，用户的流水线将停止运行
+
+## 开启用户有效期功能
+
+![开启用户有效期功能](images/user_valid_enable.png)
+
+## 设置用户有效期
+
+![设置用户有效期](images/user_valid_set.png)
--- a/docs/guide/use/synology/images/nettest.png
+++ b/docs/guide/use/synology/images/nettest.png
--- a/docs/guide/use/synology/index.md
+++ b/docs/guide/use/synology/index.md
@@ -67,4 +67,31 @@
 ![](./images/deploy4.png)

 ## 6. 配置通知和自动运行
-![](./images/notify.png)
+![](./images/notify.png)
+
+
+## 三、 常见问题
+
+### 1. 登录超时 status:ECONNABORTED
+如果您的certd部署在群晖里面，可能会遇到登录超时的问题
+```
+httpRequest:https://dms.xxxxx.com:5001/webapi/entry.cgi, method:get
+请求出错: status:ECONNABORTED, statusText:ECONNABORTED
+Axio:sError: timeout of 120000ms exceeded
+```
+可能的原因是是您的dsm域名指向的ip地址在容器内无法访问，导致登录超时
+
+您可以通过配置域名映射来解决
+1. 获取群晖dsm内部地址
+  进入certd后台->系统管理->网络测试，  一般会看到 `172.xx.0.2` ，记住这个xx是多少
+![](./images/nettest.png)
+
+2. 修改容器编排 docker-compose.yaml
+
+```
+services:
+  certd:
+    ...
+    extra_hosts:   # 放开这段注释
+       - "你的dsm域名地址:172.xx.0.1" #  将xx替换成上面记住的数字
+```
--- a/lerna.json
+++ b/lerna.json
@@ -9,5 +9,5 @@
    }
  },
  "npmClient": "pnpm",
-  "version": "1.37.6"
+  "version": "1.38.2"
 }
--- a/package.json
+++ b/package.json
@@ -8,6 +8,7 @@
    "@lerna-lite/publish": "^3.9.3",
    "@lerna-lite/run": "^3.9.3",
    "@lerna-lite/version": "^3.9.3",
+    "axios": "^1.9.0",
    "medium-zoom": "^1.1.0",
    "vitepress": "^2.0.0-alpha.4",
    "vitepress-plugin-lightbox": "^1.0.2"
@@ -17,18 +18,18 @@
    "start:server": "cd ./packages/ui/certd-server && npm start",
    "devb": "lerna run dev-build",
    "i-all": "lerna link && lerna exec npm install  ",
-    "publish": "npm run prepublishOnly2  && lerna publish --force-publish=pro/plus-core --conventional-commits --create-release github && npm run afterpublishOnly && npm run commitAll",
-    "afterpublishOnly": "npm run plugin-doc-gen && npm run copylogs && time /t >trigger/build.trigger && git add ./trigger/build.trigger && git commit -m \"build: trigger build image\" && TIMEOUT /T 10 && git push",
+    "publish": "npm run prepublishOnly2  && lerna publish --force-publish=pro/plus-core --conventional-commits && npm run afterpublishOnly ",
+    "afterpublishOnly": "npm run copylogs && time /t >trigger/build.trigger && git add ./trigger/build.trigger && git commit -m \"build: trigger build image\" && TIMEOUT /T 10 && npm run commitAll",
    "transform-sql": "cd ./packages/ui/certd-server/db/ && node --experimental-json-modules transform.js",
-    "plugin-doc-gen": "cd ./packages/ui/certd-server/ && npm run export-md",
+    "plugin-doc-gen": "cd ./packages/ui/certd-server/ && npm run export-metadata",
    "commitAll": "git add . && git commit -m \"build: publish\" && git push && npm run commitPro",
    "commitPro": "cd ./packages/pro/ && git add . && git commit -m \"build: publish\" && git push",
    "copylogs": "copyfiles \"CHANGELOG.md\"  ./docs/guide/changelogs/",
    "prepublishOnly1": "npm run check && lerna run build ",
-    "prepublishOnly2": "npm run check && npm run before-build && lerna run build ",
+    "prepublishOnly2": "npm run check && npm run before-build && lerna run build && npm run plugin-doc-gen",
    "before-build": "npm run transform-sql && cd ./packages/core/basic && time /t >build.md && git add ./build.md && git commit -m \"build: prepare to build\"",
-    "deploy1": "node --experimental-json-modules deploy.js ",
-    "check": "node --experimental-json-modules publish-check.js",
+    "deploy1": "node --experimental-json-modules ./scripts/deploy.js ",
+    "check": "node --experimental-json-modules ./scripts/publish-check.js",
    "init": "lerna run build",
    "init:dev": "lerna run build",
    "docs:dev": "vitepress dev docs",
@@ -36,13 +37,17 @@
    "docs:preview": "vitepress preview docs",
    "pub": "echo 1",
    "dev": "pnpm run -r --parallel  compile ",
-    "release": "time /t >trigger/release.trigger && git add trigger/release.trigger && git commit -m \"build: release\" && git push"
+    "release": "time /t >trigger/release.trigger && git add trigger/release.trigger && git commit -m \"build: release\" && git push",
+    "publish_to_atomgit": "node --experimental-json-modules ./scripts/publish-atomgit.js",
+    "publish_to_gitee": "node --experimental-json-modules ./scripts/publish-gitee.js",
+    "publish_to_github": "node --experimental-json-modules ./scripts/publish-github.js",
+    "get_version": "node --experimental-json-modules ./scripts/version.js"
  },
  "license": "AGPL-3.0",
  "dependencies": {
-    "axios": "^1.7.7",
    "copyfiles": "^2.4.1",
    "lodash-es": "^4.17.21",
+    "root": "link:",
    "typescript": "^5.4.2"
  },
  "workspaces": [
--- a/packages/core/acme-client/CHANGELOG.md
+++ b/packages/core/acme-client/CHANGELOG.md
@@ -3,6 +3,73 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.

+## [1.38.2](https://github.com/publishlab/node-acme-client/compare/v1.38.1...v1.38.2) (2026-01-22)
+
+**Note:** Version bump only for package @certd/acme-client
+
+## [1.38.1](https://github.com/publishlab/node-acme-client/compare/v1.38.0...v1.38.1) (2026-01-15)
+
+**Note:** Version bump only for package @certd/acme-client
+
+# [1.38.0](https://github.com/publishlab/node-acme-client/compare/v1.37.17...v1.38.0) (2026-01-13)
+
+**Note:** Version bump only for package @certd/acme-client
+
+## [1.37.17](https://github.com/publishlab/node-acme-client/compare/v1.37.16...v1.37.17) (2025-12-29)
+
+### Performance Improvements
+
+* aws route53 ([8caab1f](https://github.com/publishlab/node-acme-client/commit/8caab1fd9264df548f467b94202d567107b7a30b))
+
+## [1.37.16](https://github.com/publishlab/node-acme-client/compare/v1.37.15...v1.37.16) (2025-12-15)
+
+### Bug Fixes
+
+* 修复ipv6作为证书域名申请证书校验失败的bug ([e4e16bc](https://github.com/publishlab/node-acme-client/commit/e4e16bc6a65bb082c18ca0590226f0987a47d477))
+
+## [1.37.15](https://github.com/publishlab/node-acme-client/compare/v1.37.14...v1.37.15) (2025-12-06)
+
+**Note:** Version bump only for package @certd/acme-client
+
+## [1.37.14](https://github.com/publishlab/node-acme-client/compare/v1.37.13...v1.37.14) (2025-12-02)
+
+**Note:** Version bump only for package @certd/acme-client
+
+## [1.37.13](https://github.com/publishlab/node-acme-client/compare/v1.37.12...v1.37.13) (2025-12-02)
+
+**Note:** Version bump only for package @certd/acme-client
+
+## [1.37.12](https://github.com/publishlab/node-acme-client/compare/v1.37.11...v1.37.12) (2025-11-29)
+
+### Performance Improvements
+
+* 支持证书颁发机构 LiteSSL ([6be7591](https://github.com/publishlab/node-acme-client/commit/6be75913324e2828d9016eb307ff2d0abbbb2191))
+
+## [1.37.11](https://github.com/publishlab/node-acme-client/compare/v1.37.10...v1.37.11) (2025-11-28)
+
+### Performance Improvements
+
+* ssl.com支持ecc ([b5ec047](https://github.com/publishlab/node-acme-client/commit/b5ec04723db48422f71041f4043002e7f5b450b1))
+
+## [1.37.10](https://github.com/publishlab/node-acme-client/compare/v1.37.9...v1.37.10) (2025-11-19)
+
+**Note:** Version bump only for package @certd/acme-client
+
+## [1.37.9](https://github.com/publishlab/node-acme-client/compare/v1.37.8...v1.37.9) (2025-11-19)
+
+**Note:** Version bump only for package @certd/acme-client
+
+## [1.37.8](https://github.com/publishlab/node-acme-client/compare/v1.37.7...v1.37.8) (2025-11-17)
+
+**Note:** Version bump only for package @certd/acme-client
+
+## [1.37.7](https://github.com/publishlab/node-acme-client/compare/v1.37.6...v1.37.7) (2025-11-12)
+
+### Performance Improvements
+
+* 支持使用letencrypt测试环境申请ip证书 ([86ce00a](https://github.com/publishlab/node-acme-client/commit/86ce00adf92ff98fead87a3eaaa6631036708f47))
+* 支持腾讯云teo dns解析 ([1d23dd2](https://github.com/publishlab/node-acme-client/commit/1d23dd2426bd1e4c4dfea0a9e561d665e045ba9d))
+
 ## [1.37.6](https://github.com/publishlab/node-acme-client/compare/v1.37.5...v1.37.6) (2025-11-10)

 ### Performance Improvements
--- a/packages/core/acme-client/package.json
+++ b/packages/core/acme-client/package.json
@@ -3,7 +3,7 @@
    "description": "Simple and unopinionated ACME client",
    "private": false,
    "author": "nmorsman",
-    "version": "1.37.6",
+    "version": "1.38.2",
    "type": "module",
    "module": "scr/index.js",
    "main": "src/index.js",
@@ -18,10 +18,10 @@
        "types"
    ],
    "dependencies": {
-        "@certd/basic": "^1.37.6",
+        "@certd/basic": "^1.38.2",
        "@peculiar/x509": "^1.11.0",
        "asn1js": "^3.0.5",
-        "axios": "^1.7.2",
+        "axios": "^1.9.0",
        "debug": "^4.3.5",
        "http-proxy-agent": "^7.0.2",
        "https-proxy-agent": "^7.0.5",
@@ -70,5 +70,5 @@
    "bugs": {
        "url": "https://github.com/publishlab/node-acme-client/issues"
    },
-    "gitHead": "9d5daf00152188369bf29e8be5795dbf04737f18"
+    "gitHead": "2c80c35b21b3f435e835167fca13db510bbc38a2"
 }
--- a/packages/core/acme-client/src/auto.js
+++ b/packages/core/acme-client/src/auto.js
@@ -4,6 +4,9 @@
 import { readCsrDomains } from "./crypto/index.js";
 import { wait } from "./wait.js";
 import { CancelError } from "./error.js";
+import { domainUtils } from '@certd/basic';
+
+


 const defaultOpts = {
@@ -65,7 +68,7 @@ export default async (client, userOpts) => {
     * Parse domains from CSR
     */

-    log("[auto] Parsing domains from Certificate Signing Request ");
+    log("[auto] Parsing domains from Certificate Signing Request");
    const { commonName, altNames } = readCsrDomains(opts.csr);
    const uniqueDomains = Array.from(new Set([commonName].concat(altNames).filter((d) => d)));

@@ -76,9 +79,21 @@ export default async (client, userOpts) => {
     */

    log("[auto] Placing new certificate order with ACME provider");
-    const orderPayload = { identifiers: uniqueDomains.map((d) => ({ type: "dns", value: d })) };
-    if (opts.profile && client.sslProvider === 'letsencrypt' ){
+
+    let hasIp = false
+    const orderPayload = { identifiers: uniqueDomains.map((d) =>{
+        // 判断是否为IP（v4或v6），否则按域名处理
+        const type = domainUtils.isIp(d) ? 'ip' : 'dns';
+        if(type === 'ip'){
+            hasIp = true
+        }
+        return { type, value: d }
+    }) };
+    if (opts.profile && client.sslProvider.startsWith("letsencrypt") ){
        orderPayload.profile = opts.profile;
+        if(hasIp){
+            orderPayload.profile = "shortlived"
+        }
    }
    const order = await client.createOrder(orderPayload);
    const authorizations = await client.getAuthorizations(order);
--- a/packages/core/acme-client/src/client.js
+++ b/packages/core/acme-client/src/client.js
@@ -7,7 +7,7 @@ import { createHash } from 'crypto';
 import  { getPemBodyAsB64u } from './crypto/index.js';
 import HttpClient from './http.js';
 import AcmeApi from './api.js';
-import verify from './verify.js';
+import {createChallengeFn} from './verify.js';
 import * as util from './util.js';
 import auto from './auto.js';
 import { CancelError } from './error.js';
@@ -492,6 +492,9 @@ class AcmeClient {
            throw new Error('Unable to verify ACME challenge, URL not found');
        }

+        const {challenges} = createChallengeFn({logger:this.logger});
+ 
+        const verify = challenges
        if (typeof verify[challenge.type] === 'undefined') {
            throw new Error(`Unable to verify ACME challenge, unknown type: ${challenge.type}`);
        }
@@ -507,7 +510,12 @@ class AcmeClient {
        };

        this.log('Waiting for ACME challenge verification（等待ACME检查验证）');
-        return util.retry(verifyFn, this.backoffOpts);
+
+
+        const log = (...args)=>{
+            this.logger.info(...args)
+        }
+        return util.retry(verifyFn, this.backoffOpts,log);
    }

    /**
--- a/packages/core/acme-client/src/index.js
+++ b/packages/core/acme-client/src/index.js
@@ -31,9 +31,32 @@ export const directory = {
    sslcom:{
      staging: 'https://acme.ssl.com/sslcom-dv-rsa',
      production: 'https://acme.ssl.com/sslcom-dv-rsa',
-    }
+      ec: 'https://acme.ssl.com/sslcom-dv-ecc',
+    },
+    litessl: {
+        staging: 'https://acme.litessl.com/acme/v2/directory',
+        production: 'https://acme.litessl.com/acme/v2/directory',
+    },
 };

+export function getDirectoryUrl(opts) {
+  const {sslProvider, pkType} = opts
+  const list= directory[sslProvider]
+  if (!list) {
+    throw new Error(`sslProvider ${sslProvider} not found`)
+  }
+  let pkTypePrefix = pkType || 'rsa'
+  if (pkType) {
+   pkTypePrefix = pkType.toLowerCase().split("_")[0]
+  }
+
+  if (pkTypePrefix && list[pkTypePrefix]) {
+    return list[pkTypePrefix]
+  }
+
+  return list.production
+}
+
 /**
 * Crypto
 */
--- a/packages/core/acme-client/src/util.js
+++ b/packages/core/acme-client/src/util.js
@@ -48,7 +48,7 @@ class Backoff {
 * @returns {Promise}
 */

-async function retryPromise(fn, attempts, backoff) {
+async function retryPromise(fn, attempts, backoff, logger = log) {
    let aborted = false;

    try {
@@ -60,12 +60,12 @@ async function retryPromise(fn, attempts, backoff) {
            throw e;
        }

-        log(`Promise rejected: ${e.message}`);
+        logger(`Promise rejected: ${e.message}`);
        const duration = backoff.duration();
-        log(`Promise rejected attempt #${backoff.attempts}, ${duration}ms 后重试: ${e.message}`);
+        logger(`Promise rejected attempt #${backoff.attempts}, ${duration}ms 后重试: ${e.message}`);

        await new Promise((resolve) => { setTimeout(resolve, duration); });
-        return retryPromise(fn, attempts, backoff);
+        return retryPromise(fn, attempts, backoff, logger);
    }
 }

@@ -80,9 +80,9 @@ async function retryPromise(fn, attempts, backoff) {
 * @returns {Promise}
 */

-function retry(fn, { attempts = 5, min = 5000, max = 30000 } = {}) {
+function retry(fn, { attempts = 5, min = 5000, max = 30000 } = {}, logger = log) {
    const backoff = new Backoff({ min, max });
-    return retryPromise(fn, attempts, backoff);
+    return retryPromise(fn, attempts, backoff, logger);
 }

 /**
@@ -216,21 +216,21 @@ function formatResponseError(resp) {
 * @returns {Promise<string>} Root domain name
 */

-async function resolveDomainBySoaRecord(recordName) {
+async function resolveDomainBySoaRecord(recordName, logger = log) {
    try {
        await dns.resolveSoa(recordName);
-        log(`找到${recordName}的SOA记录`);
+        logger(`找到${recordName}的SOA记录`);
        return recordName;
    }
    catch (e) {
-        log(`找不到${recordName}的SOA记录,继续往主域名查找`);
+        logger(`找不到${recordName}的SOA记录,继续往主域名查找`);
        const parentRecordName = recordName.split('.').slice(1).join('.');

        if (!parentRecordName.includes('.')) {
            throw new Error('SOA record查找失败');
        }

-        return resolveDomainBySoaRecord(parentRecordName);
+        return resolveDomainBySoaRecord(parentRecordName,logger);
    }
 }

@@ -241,18 +241,18 @@ async function resolveDomainBySoaRecord(recordName) {
 * @returns {Promise<dns.Resolver>} DNS resolver
 */

-async function getAuthoritativeDnsResolver(recordName) {
-    log(`获取域名${recordName}的权威NS服务器: `);
+async function getAuthoritativeDnsResolver(recordName, logger = log) {
+    logger(`获取域名${recordName}的权威NS服务器: `);
    const resolver = new dns.Resolver();

    try {
        /* Resolve root domain by SOA */
-        const domain = await resolveDomainBySoaRecord(recordName);
+        const domain = await resolveDomainBySoaRecord(recordName,logger);

        /* Resolve authoritative NS addresses */
-        log(`获取到权威NS服务器name: ${domain}`);
+        logger(`获取到权威NS服务器name: ${domain}`);
        const nsRecords = await dns.resolveNs(domain);
-        log(`域名权威NS服务器：${nsRecords}`);
+        logger(`域名权威NS服务器：${nsRecords}`);
        const nsAddrArray = await Promise.all(nsRecords.map(async (r) => dns.resolve4(r)));
        const nsAddresses = [].concat(...nsAddrArray).filter((a) => a);

@@ -261,16 +261,16 @@ async function getAuthoritativeDnsResolver(recordName) {
        }

        /* Authoritative NS success */
-        log(`Found ${nsAddresses.length} authoritative NS addresses for domain: ${domain}`);
+        logger(`Found ${nsAddresses.length} authoritative NS addresses for domain: ${domain}`);
        resolver.setServers(nsAddresses);
    }
    catch (e) {
-        log(`Authoritative NS lookup error（获取权威NS服务器地址失败）: ${e.message}`);
+        logger(`Authoritative NS lookup error（获取权威NS服务器地址失败）: ${e.message}`);
    }

    /* Return resolver */
    const addresses = resolver.getServers();
-    log(`DNS resolver addresses（域名的权威NS服务器地址）: ${addresses.join(', ')}`);
+    logger(`DNS resolver addresses（域名的权威NS服务器地址）: ${addresses.join(', ')}`);

    return resolver;
 }
--- a/packages/core/acme-client/src/verify.js
+++ b/packages/core/acme-client/src/verify.js
@@ -4,14 +4,22 @@

 import dnsSdk from "dns"
 import https from 'https'
-import {log} from './logger.js'
+import {log as defaultLog} from './logger.js'
 import axios from './axios.js'
 import * as util from './util.js'
 import {isAlpnCertificateAuthorizationValid} from './crypto/index.js'
-
+import {utils} from '@certd/basic'

 const dns = dnsSdk.promises
-/**
+
+
+export function createChallengeFn(opts = {}){
+    const logger = opts?.logger || {info:defaultLog,error:defaultLog,warn:defaultLog,debug:defaultLog}
+    
+    const log = function(...args){
+        logger.info(...args)
+    }
+    /**
 * Verify ACME HTTP challenge
 *
 * https://datatracker.ietf.org/doc/html/rfc8555#section-8.3
@@ -52,11 +60,15 @@ async function verifyHttpChallenge(authz, challenge, keyAuthorization, suffix =
    }

    const httpPort = axios.defaults.acmeSettings.httpChallengePort || 80;
-    const challengeUrl = `http://${authz.identifier.value}:${httpPort}${suffix}`;
+    let host = authz.identifier.value;
+    if(utils.domain.isIpv6(host)){
+        host = `[${host}]`;
+    }
+    const challengeUrl = `http://${host}:${httpPort}${suffix}`;

    if (!await doQuery(challengeUrl)) {
        const httpsPort = axios.defaults.acmeSettings.httpsChallengePort || 443;
-        const httpsChallengeUrl = `https://${authz.identifier.value}:${httpsPort}${suffix}`;
+        const httpsChallengeUrl = `https://${host}:${httpsPort}${suffix}`;
        const res = await doQuery(httpsChallengeUrl)
        if (!res) {
            throw new Error(`[error] 验证失败，请检查以上测试url是否可以正常访问`);
@@ -112,7 +124,7 @@ async function walkDnsChallengeRecord(recordName, resolver = dns,deep = 0) {
    return records
 }

-export async function walkTxtRecord(recordName,deep = 0) {
+ async function walkTxtRecord(recordName,deep = 0) {
    if(deep >5){
        log(`walkTxtRecord too deep (#${deep}) , skip walk`)
        return []
@@ -136,7 +148,7 @@ export async function walkTxtRecord(recordName,deep = 0) {
    try{
        /* Authoritative DNS resolver */
        log(`从域名权威服务器获取TXT解析记录`);
-        const authoritativeResolver = await util.getAuthoritativeDnsResolver(recordName);
+        const authoritativeResolver = await util.getAuthoritativeDnsResolver(recordName,log);
        const res = await walkDnsChallengeRecord(recordName, authoritativeResolver,deep);
        if (res && res.length > 0) {
            for (const item of res) {
@@ -173,7 +185,8 @@ async function verifyDnsChallenge(authz, challenge, keyAuthorization, prefix = '
    recordValues = [...new Set(recordValues)];
    log(`DNS查询成功, 找到 ${recordValues.length} 条TXT记录：${recordValues}`);
    if (!recordValues.length || !recordValues.includes(keyAuthorization)) {
-        throw new Error(`没有找到需要的DNS TXT记录: ${recordName}，期望:${keyAuthorization},结果:${recordValues}`);
+        const err = `没有找到需要的DNS TXT记录: ${recordName}，期望:${keyAuthorization},结果:${recordValues}`
+        throw new Error(err);
    }

    log(`关键授权匹配成功（${challenge.type}/${recordName}）:${keyAuthorization}，校验成功， ACME challenge verified`);
@@ -207,12 +220,13 @@ async function verifyTlsAlpnChallenge(authz, challenge, keyAuthorization) {
    return true;
 }

-/**
- * Export API
- */
+    return {
+        challenges:{
+            'http-01': verifyHttpChallenge,
+            'dns-01': verifyDnsChallenge,
+            'tls-alpn-01': verifyTlsAlpnChallenge,
+        },
+        walkTxtRecord,
+    }

-export default {
-    'http-01': verifyHttpChallenge,
-    'dns-01': verifyDnsChallenge,
-    'tls-alpn-01': verifyTlsAlpnChallenge,
-};
+}
--- a/packages/core/acme-client/types/index.d.ts
+++ b/packages/core/acme-client/types/index.d.ts
@@ -117,6 +117,8 @@ export const directory: {
    }
 };

+export function getDirectoryUrl(opts:{sslProvider:string, pkType: string}): string;
+
 /**
 * Crypto
 */
@@ -207,7 +209,8 @@ export const agents: any;

 export function setLogger(fn: (message: any, ...args: any[]) => void): void;

-export function walkTxtRecord(record: any): Promise<string[]>;
+export function createChallengeFn(opts?: {logger?:any}): any;
+// export function walkTxtRecord(record: any): Promise<string[]>;
 export function getAuthoritativeDnsResolver(record:string): Promise<any>;

 export const CancelError: typeof CancelError;
--- a/packages/core/basic/.gitignore
+++ b/packages/core/basic/.gitignore
@@ -26,3 +26,4 @@ dist-ssr
 test/user.secret.*
 test/**/*.js
 src/**/*.spec.ts
+test.mjs
--- a/packages/core/basic/CHANGELOG.md
+++ b/packages/core/basic/CHANGELOG.md
@@ -3,6 +3,70 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.

+## [1.38.2](https://github.com/certd/certd/compare/v1.38.1...v1.38.2) (2026-01-22)
+
+**Note:** Version bump only for package @certd/basic
+
+## [1.38.1](https://github.com/certd/certd/compare/v1.38.0...v1.38.1) (2026-01-15)
+
+**Note:** Version bump only for package @certd/basic
+
+# [1.38.0](https://github.com/certd/certd/compare/v1.37.17...v1.38.0) (2026-01-13)
+
+**Note:** Version bump only for package @certd/basic
+
+## [1.37.17](https://github.com/certd/certd/compare/v1.37.16...v1.37.17) (2025-12-29)
+
+**Note:** Version bump only for package @certd/basic
+
+## [1.37.16](https://github.com/certd/certd/compare/v1.37.15...v1.37.16) (2025-12-15)
+
+### Bug Fixes
+
+* 修复ipv6作为证书域名申请证书校验失败的bug ([e4e16bc](https://github.com/certd/certd/commit/e4e16bc6a65bb082c18ca0590226f0987a47d477))
+
+## [1.37.15](https://github.com/certd/certd/compare/v1.37.14...v1.37.15) (2025-12-06)
+
+**Note:** Version bump only for package @certd/basic
+
+## [1.37.14](https://github.com/certd/certd/compare/v1.37.13...v1.37.14) (2025-12-02)
+
+**Note:** Version bump only for package @certd/basic
+
+## [1.37.13](https://github.com/certd/certd/compare/v1.37.12...v1.37.13) (2025-12-02)
+
+**Note:** Version bump only for package @certd/basic
+
+## [1.37.12](https://github.com/certd/certd/compare/v1.37.11...v1.37.12) (2025-11-29)
+
+**Note:** Version bump only for package @certd/basic
+
+## [1.37.11](https://github.com/certd/certd/compare/v1.37.10...v1.37.11) (2025-11-28)
+
+### Performance Improvements
+
+* 优化宝塔网站证书在并发部署时导致nginx配置文件错乱的问题 ([51cc084](https://github.com/certd/certd/commit/51cc08411fd2dbab66d769b495dc1b0bf2f2578c))
+* 优化天翼云cdn 等待5秒部署完成 ([53c88ad](https://github.com/certd/certd/commit/53c88ad5afe66a3f7c38b9b759747918913a4edc))
+* ssl.com支持ecc ([b5ec047](https://github.com/certd/certd/commit/b5ec04723db48422f71041f4043002e7f5b450b1))
+
+## [1.37.10](https://github.com/certd/certd/compare/v1.37.9...v1.37.10) (2025-11-19)
+
+**Note:** Version bump only for package @certd/basic
+
+## [1.37.9](https://github.com/certd/certd/compare/v1.37.8...v1.37.9) (2025-11-19)
+
+**Note:** Version bump only for package @certd/basic
+
+## [1.37.8](https://github.com/certd/certd/compare/v1.37.7...v1.37.8) (2025-11-17)
+
+**Note:** Version bump only for package @certd/basic
+
+## [1.37.7](https://github.com/certd/certd/compare/v1.37.6...v1.37.7) (2025-11-12)
+
+### Performance Improvements
+
+* 支持使用letencrypt测试环境申请ip证书 ([86ce00a](https://github.com/certd/certd/commit/86ce00adf92ff98fead87a3eaaa6631036708f47))
+
 ## [1.37.6](https://github.com/certd/certd/compare/v1.37.5...v1.37.6) (2025-11-10)

 **Note:** Version bump only for package @certd/basic
--- a/packages/core/basic/build.md
+++ b/packages/core/basic/build.md
@@ -1 +1 @@
-00:42
+12:26
--- a/packages/core/basic/package.json
+++ b/packages/core/basic/package.json
@@ -1,7 +1,7 @@
 {
  "name": "@certd/basic",
  "private": false,
-  "version": "1.37.6",
+  "version": "1.38.2",
  "type": "module",
  "main": "./dist/index.js",
  "module": "./dist/index.js",
@@ -17,7 +17,8 @@
    "compile": "tsc --skipLibCheck --watch"
  },
  "dependencies": {
-    "axios": "^1.7.2",
+    "async-lock": "^1.4.1",
+    "axios": "^1.9.0",
    "dayjs": "^1.11.7",
    "http-proxy-agent": "^7.0.2",
    "https-proxy-agent": "^7.0.5",
@@ -46,5 +47,5 @@
    "tslib": "^2.8.1",
    "typescript": "^5.4.2"
  },
-  "gitHead": "9d5daf00152188369bf29e8be5795dbf04737f18"
+  "gitHead": "2c80c35b21b3f435e835167fca13db510bbc38a2"
 }
--- a/packages/core/basic/src/utils/util.domain.ts
+++ b/packages/core/basic/src/utils/util.domain.ts
@@ -7,29 +7,29 @@ function match(targetDomains: string | string[], inDomains: string[]) {
    return false;
  }

-  if (typeof targetDomains === 'string') {
+  if (typeof targetDomains === "string") {
    targetDomains = [targetDomains];
  }
  for (let targetDomain of targetDomains) {
    let matched = false;
-    if (targetDomain.startsWith('.')) {
-      targetDomain = '*' + targetDomain;
+    if (targetDomain.startsWith(".")) {
+      targetDomain = "*" + targetDomain;
    }
    for (let inDomain of inDomains) {
-      if (inDomain.startsWith('.')) {
-        inDomain = '*' + inDomain;
+      if (inDomain.startsWith(".")) {
+        inDomain = "*" + inDomain;
      }
      if (targetDomain === inDomain) {
        matched = true;
        break;
      }

-      if (!inDomain.startsWith('*.')) {
+      if (!inDomain.startsWith("*.")) {
        //不可能匹配
        continue;
      }
      //子域名匹配通配符即可
-      const firstDotIndex = targetDomain.indexOf('.');
+      const firstDotIndex = targetDomain.indexOf(".");
      const targetDomainSuffix = targetDomain.substring(firstDotIndex + 1);
      if (targetDomainSuffix === inDomain.substring(2)) {
        matched = true;
@@ -46,6 +46,32 @@ function match(targetDomains: string | string[], inDomains: string[]) {
  return true;
 }

+function isIpv4(d: string) {
+  if (!d) {
+    return false;
+  }
+  const isIPv4Regex = /^(\d{1,3}\.){3}\d{1,3}$/;
+  return isIPv4Regex.test(d);
+}
+
+function isIpv6(d: string) {
+  if (!d) {
+    return false;
+  }
+  const isIPv6Regex = /^([0-9A-Fa-f]{0,4}:){2,7}([0-9A-Fa-f]{1,4}$|((25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)(\.|$)){4})$/gm;
+  return isIPv6Regex.test(d);
+}
+
+function isIp(d: string) {
+  if (!d) {
+    return false;
+  }
+  return isIpv4(d) || isIpv6(d);
+}
+
 export const domainUtils = {
  match,
+  isIpv4,
+  isIpv6,
+  isIp,
 };
--- a/packages/core/basic/src/utils/util.env.ts
+++ b/packages/core/basic/src/utils/util.env.ts
@@ -1,4 +1,4 @@
 export function isDev() {
-  const nodeEnv = process.env.NODE_ENV || '';
+  const nodeEnv = process.env.NODE_ENV || 'dev';
  return nodeEnv === 'development' || nodeEnv.includes('local') || nodeEnv.startsWith('dev');
 }
--- a/packages/core/basic/src/utils/util.hash.ts
+++ b/packages/core/basic/src/utils/util.hash.ts
@@ -11,6 +11,10 @@ function hmacSha256(data: string, digest: BinaryToTextEncoding = "base64") {
  return crypto.createHmac("sha256", data).update(Buffer.alloc(0)).digest(digest);
 }

+function hmacSha256WithKey(key: string, data: string, digest: BinaryToTextEncoding = "base64") {
+  return crypto.createHmac("sha256", key).update(data).digest(digest);
+}
+
 function base64(data: string) {
  return Buffer.from(data).toString("base64");
 }
@@ -39,4 +43,5 @@ export const hashUtils = {
  toHex,
  hexToStr,
  hexToNumber,
+  hmacSha256WithKey,
 };
--- a/packages/core/basic/src/utils/util.lock.ts
+++ b/packages/core/basic/src/utils/util.lock.ts
@@ -1,46 +1,16 @@
-import { logger, utils } from './index.js';
+// @ts-ignore
+import AsyncLock from "async-lock";

 export class Locker {
-  locked: Record<string, any> = {};
+  private asyncLocker: AsyncLock;

-  async execute(lockStr: string, callback: any) {
-    await this.lock(lockStr);
-    const timeoutId = setTimeout(() => {
-      logger.warn('Lock timeout,自动解锁', lockStr);
-      this.unlock(lockStr);
-    }, 20000);
-    try {
-      return await callback();
-    } finally {
-      clearTimeout(timeoutId);
-      this.unlock(lockStr);
-    }
+  constructor() {
+    this.asyncLocker = new AsyncLock();
  }

-  async lock(str: string) {
-    const isLocked = this.isLocked(str);
-    if (isLocked) {
-      let count = 0;
-      while (true) {
-        await utils.sleep(100);
-        if (!this.isLocked(str)) {
-          break;
-        }
-        count++;
-        if (count > 20) {
-          throw new Error('Lock timeout');
-        }
-      }
-    }
-    this.locked[str] = true;
-  }
-
-  unlock(str: string) {
-    delete this.locked[str];
-  }
-
-  isLocked(str: string) {
-    return this.locked[str] ?? false;
+  async execute(lockStr: string, callback: any, options?: { timeout?: number }) {
+    const timeout = options?.timeout ?? 120000;
+    return this.asyncLocker.acquire(lockStr, callback, { timeout });
  }
 }

--- a/packages/core/basic/test.mjs
+++ b/packages/core/basic/test.mjs
@@ -0,0 +1,18 @@
+// import { random } from "lodash-es";
+// import { locker } from "./dist/utils/util.lock.js";
+
+// async function testLocker() {
+//   for (let i = 0; i < 10; i++) {
+//     await locker.execute("test", async () => {
+//       console.log("test", i);
+//       await new Promise(resolve => setTimeout(resolve, Math.random() * 1000));
+//       throw new Error("test error");
+//     });
+//   }
+// }
+
+// await testLocker();
+
+import { domainUtils } from "./dist/utils/util.domain.js";
+
+console.log(domainUtils.isIpv6("::0:0:0:FFFF:129.144.52.38"));
--- a/packages/core/basic/tsconfig.json
+++ b/packages/core/basic/tsconfig.json
@@ -7,6 +7,8 @@
    "esModuleInterop": true,
    "experimentalDecorators": true,
    "emitDecoratorMetadata": true,
+    "inlineSourceMap":false,
+    "sourceMap": false,
    "noImplicitThis": true,
    "noUnusedLocals": true,
    "stripInternal": true,
@@ -21,7 +23,6 @@
    "useDefineForClassFields": true,
    "strict": true,
    "typeRoots": [ "./typings", "./node_modules/@types"],
-    "inlineSourceMap": true,
    "resolveJsonModule": true,
    "isolatedModules": false,
    "lib": ["ESNext", "DOM"],
--- a/packages/core/pipeline/CHANGELOG.md
+++ b/packages/core/pipeline/CHANGELOG.md
@@ -3,6 +3,80 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.

+## [1.38.2](https://github.com/certd/certd/compare/v1.38.1...v1.38.2) (2026-01-22)
+
+### Bug Fixes
+
+* 修复插件修改名字和删除后没有注销注册的bug ([61192b9](https://github.com/certd/certd/commit/61192b998a7088a8f446fd224cc242def462a79b))
+
+### Performance Improvements
+
+* 支持同步域名过期时间 ([a97cee8](https://github.com/certd/certd/commit/a97cee84f3bfdeeb2083d91f748cac5405fed6ae))
+
+## [1.38.1](https://github.com/certd/certd/compare/v1.38.0...v1.38.1) (2026-01-15)
+
+### Bug Fixes
+
+* 修复自定义插件name丢失author导致找不到插件的bug ([2fbb58e](https://github.com/certd/certd/commit/2fbb58eb2b239eab4864f90aa72b0ef2ada38e8f))
+
+# [1.38.0](https://github.com/certd/certd/compare/v1.37.17...v1.38.0) (2026-01-13)
+
+### Features
+
+* 【破坏性更新】插件改为metadata加载模式，plugin-cert、plugin-lib包部分代码转移到certd-server中，影响自定义插件，需要修改相关import引用 ([a3fb249](https://github.com/certd/certd/commit/a3fb24993d7ac8fbb0bb354fa02ef067f609021e))
+
+## [1.37.17](https://github.com/certd/certd/compare/v1.37.16...v1.37.17) (2025-12-29)
+
+### Bug Fixes
+
+* 发送证书到邮箱插件的邮件模版转为使用邮箱配置中的通用模版 ([c5a3003](https://github.com/certd/certd/commit/c5a3003cf7b640500a90ec2c8961859ffe6fdb18))
+
+### Performance Improvements
+
+* 支持ucloud，上传到ussl，部署到ucdn ([e61daae](https://github.com/certd/certd/commit/e61daaee2d0dec19710cd4ec759219a071f2435e))
+
+## [1.37.16](https://github.com/certd/certd/compare/v1.37.15...v1.37.16) (2025-12-15)
+
+### Performance Improvements
+
+* 支持邮件模版设置 ([a6c0d2c](https://github.com/certd/certd/commit/a6c0d2c6f1fd6b60e6d7af290487c94564fd91ea))
+
+## [1.37.15](https://github.com/certd/certd/compare/v1.37.14...v1.37.15) (2025-12-06)
+
+**Note:** Version bump only for package @certd/pipeline
+
+## [1.37.14](https://github.com/certd/certd/compare/v1.37.13...v1.37.14) (2025-12-02)
+
+**Note:** Version bump only for package @certd/pipeline
+
+## [1.37.13](https://github.com/certd/certd/compare/v1.37.12...v1.37.13) (2025-12-02)
+
+**Note:** Version bump only for package @certd/pipeline
+
+## [1.37.12](https://github.com/certd/certd/compare/v1.37.11...v1.37.12) (2025-11-29)
+
+**Note:** Version bump only for package @certd/pipeline
+
+## [1.37.11](https://github.com/certd/certd/compare/v1.37.10...v1.37.11) (2025-11-28)
+
+**Note:** Version bump only for package @certd/pipeline
+
+## [1.37.10](https://github.com/certd/certd/compare/v1.37.9...v1.37.10) (2025-11-19)
+
+**Note:** Version bump only for package @certd/pipeline
+
+## [1.37.9](https://github.com/certd/certd/compare/v1.37.8...v1.37.9) (2025-11-19)
+
+**Note:** Version bump only for package @certd/pipeline
+
+## [1.37.8](https://github.com/certd/certd/compare/v1.37.7...v1.37.8) (2025-11-17)
+
+**Note:** Version bump only for package @certd/pipeline
+
+## [1.37.7](https://github.com/certd/certd/compare/v1.37.6...v1.37.7) (2025-11-12)
+
+**Note:** Version bump only for package @certd/pipeline
+
 ## [1.37.6](https://github.com/certd/certd/compare/v1.37.5...v1.37.6) (2025-11-10)

 **Note:** Version bump only for package @certd/pipeline
--- a/packages/core/pipeline/package.json
+++ b/packages/core/pipeline/package.json
@@ -1,7 +1,7 @@
 {
  "name": "@certd/pipeline",
  "private": false,
-  "version": "1.37.6",
+  "version": "1.38.2",
  "type": "module",
  "main": "./dist/index.js",
  "module": "./dist/index.js",
@@ -18,8 +18,8 @@
    "compile": "tsc --skipLibCheck --watch"
  },
  "dependencies": {
-    "@certd/basic": "^1.37.6",
-    "@certd/plus-core": "^1.37.6",
+    "@certd/basic": "^1.38.2",
+    "@certd/plus-core": "^1.38.2",
    "dayjs": "^1.11.7",
    "lodash-es": "^4.17.21",
    "reflect-metadata": "^0.1.13"
@@ -45,5 +45,5 @@
    "tslib": "^2.8.1",
    "typescript": "^5.4.2"
  },
-  "gitHead": "9d5daf00152188369bf29e8be5795dbf04737f18"
+  "gitHead": "2c80c35b21b3f435e835167fca13db510bbc38a2"
 }
--- a/packages/core/pipeline/src/access/decorator.ts
+++ b/packages/core/pipeline/src/access/decorator.ts
@@ -11,6 +11,9 @@ export const ACCESS_INPUT_KEY = "pipeline:access:input";

 export function IsAccess(define: AccessDefine): ClassDecorator {
  return (target: any) => {
+    if (process.env.certd_plugin_loadmode === "metadata") {
+      return;
+    }
    target = Decorator.target(target);

    const inputs: any = {};
@@ -35,6 +38,9 @@ export function IsAccess(define: AccessDefine): ClassDecorator {

 export function AccessInput(input?: AccessInputDefine): PropertyDecorator {
  return (target, propertyKey) => {
+    if (process.env.certd_plugin_loadmode === "metadata") {
+      return;
+    }
    target = Decorator.target(target, propertyKey);
    // const _type = Reflect.getMetadata("design:type", target, propertyKey);
    Reflect.defineMetadata(ACCESS_INPUT_KEY, input, target, propertyKey);
--- a/packages/core/pipeline/src/context/index.ts
+++ b/packages/core/pipeline/src/context/index.ts
@@ -11,11 +11,11 @@ export type PageSearch = {
  // sortOrder?: "asc" | "desc";
 };

-export type PageRes = {
+export type PageRes<T = any> = {
  pageNo?: number;
  pageSize?: number;
-  total?: string;
-  list: any[];
+  total?: number;
+  list: T[];
 };

 export class Pager {
@@ -34,3 +34,29 @@ export class Pager {
    this.pageNo = Math.ceil(offset / (this.pageSize ?? 50)) + 1;
  }
 }
+
+export async function doPageTurn<T>(req: { pager: Pager; getPage: (pager: Pager) => Promise<PageRes<T>>; itemHandle?: (item: T) => Promise<void>; batchHandle?: (pageRes: PageRes<T>) => Promise<void> }) {
+  let count = 0;
+  const { pager, getPage, itemHandle, batchHandle } = req;
+  while (true) {
+    const pageRes = await getPage(pager);
+    if (!pageRes || !pageRes.list || pageRes.list.length === 0) {
+      break;
+    }
+    count += pageRes.list.length;
+    if (batchHandle) {
+      await batchHandle(pageRes);
+    }
+    if (itemHandle) {
+      for (const item of pageRes.list) {
+        await itemHandle(item);
+      }
+    }
+    if (pageRes.total && pageRes.total >= 0 && count >= pageRes.total) {
+      //遍历完成
+      break;
+    }
+    pager.pageNo++;
+  }
+  return count;
+}
--- a/packages/core/pipeline/src/core/executor.ts
+++ b/packages/core/pipeline/src/core/executor.ts
@@ -276,7 +276,10 @@ export class Executor {
    const lastStatus = this.lastStatusMap.get(step.id);
    //执行任务
    const plugin: RegistryItem<AbstractTaskPlugin> = pluginRegistry.get(step.type);
-
+    if (!plugin) {
+      currentLogger.error(`未找到插件${step.type}`);
+      throw new Error(`未找到插件${step.type}`);
+    }
    //@ts-ignore
    let instance: ITaskPlugin = null;
    try {
@@ -285,7 +288,7 @@ export class Executor {
      //@ts-ignore
      instance = new pluginCls();
    } catch (e: any) {
-      currentLogger.error(`实例化插件失败:${e.message}`);
+      currentLogger.error(`实例化插件失败:${step.type}:${e.message}`);
      throw new Error(`实例化插件失败`, e);
    }

@@ -423,31 +426,46 @@ export class Executor {
    let subject = "";
    let content = "";
    const errorMessage = error?.message;
+    const templateData: any = {
+      pipelineId: this.pipeline.id,
+      historyId: this.runtime.id,
+      pipelineTitle: this.pipeline.title,
+    };
+    let pipelineResult = "";
+    let errors = "";
    if (when === "start") {
-      subject = `开始执行，${this.pipeline.title}【${this.pipeline.id}】`;
+      pipelineResult = "开始执行";
+      subject = `${pipelineResult}，${this.pipeline.title}【${this.pipeline.id}】`;
      content = `流水线ID:${this.pipeline.id}，运行ID:${this.runtime.id}`;
    } else if (when === "success") {
-      subject = `执行成功，${this.pipeline.title}【${this.pipeline.id}】`;
+      pipelineResult = "执行成功";
+      subject = `${pipelineResult}，${this.pipeline.title}【${this.pipeline.id}】`;
      content = `流水线ID:${this.pipeline.id}，运行ID:${this.runtime.id}`;
    } else if (when === "turnToSuccess") {
-      subject = `执行成功（失败转成功），${this.pipeline.title}【${this.pipeline.id}】`;
+      pipelineResult = "执行成功（失败转成功）";
+      subject = `${pipelineResult}，${this.pipeline.title}【${this.pipeline.id}】`;
      content = `流水线ID:${this.pipeline.id}，运行ID:${this.runtime.id}`;
    } else if (when === "error") {
-      subject = `执行失败，${this.pipeline.title}【${this.pipeline.id}】`;
-
+      pipelineResult = "执行失败";
+      subject = `${pipelineResult}，${this.pipeline.title}【${this.pipeline.id}】`;
      if (error instanceof RunnableError) {
        const runnableError = error as RunnableError;
        content = `流水线ID:${this.pipeline.id}，运行ID:${this.runtime.id}\n\n`;
        for (const re of runnableError.errors) {
-          content += ` - ${re.runnable.title} 执行失败，错误详情：${re.e?.message || re.e?.error?.message}\n\n`;
+          errors += ` - ${re.runnable.title} 执行失败，错误详情：${re.e?.message || re.e?.error?.message}\n\n`;
        }
+        content += errors;
      } else {
+        errors = error.message;
        content = `流水线ID:${this.pipeline.id}，运行ID:${this.runtime.id}\n\n${this.currentStatusMap?.currentStep?.title} 执行失败\n\n错误详情:${error.message}`;
      }
    } else {
      return;
    }

+    templateData.errors = errors;
+    templateData.pipelineResult = pipelineResult;
+
    for (const notification of this.pipeline.notifications) {
      if (!notification.when.includes(when)) {
        continue;
@@ -455,9 +473,9 @@ export class Executor {

      if (notification.type === "email" && notification.options?.receivers) {
        try {
-          await this.options.emailService?.send({
-            subject,
-            content,
+          await this.options.emailService?.sendByTemplate({
+            type: "pipelineResult",
+            data: templateData,
            receivers: notification.options?.receivers,
          });
        } catch (e) {
@@ -472,15 +490,15 @@ export class Executor {
            useEmail: false,
            logger: this.logger,
            body: {
+              notificationType: "pipelineResult",
              title: subject,
              content,
              userId: this.pipeline.userId,
              pipeline: this.pipeline,
              result: this.lastRuntime?.pipeline?.status,
-              pipelineId: this.pipeline.id,
-              historyId: this.runtime.id,
              errorMessage,
              url,
+              ...templateData,
            },
          });
        } catch (e) {
--- a/packages/core/pipeline/src/notification/api.ts
+++ b/packages/core/pipeline/src/notification/api.ts
@@ -15,6 +15,11 @@ export type NotificationBody = {
  historyId?: number;
  errorMessage?: string;
  url?: string;
+  notificationType?: string;
+  attachments?: any[];
+  pipelineResult?: string;
+  pipelineTitle?: string;
+  errors?: string;
 };

 export type NotificationRequestHandleReqInput<T = any> = {
--- a/packages/core/pipeline/src/notification/decorator.ts
+++ b/packages/core/pipeline/src/notification/decorator.ts
@@ -11,6 +11,9 @@ export const NOTIFICATION_INPUT_KEY = "pipeline:notification:input";

 export function IsNotification(define: NotificationDefine): ClassDecorator {
  return (target: any) => {
+    if (process.env.certd_plugin_loadmode === "metadata") {
+      return;
+    }
    target = Decorator.target(target);

    const inputs: any = {};
@@ -35,6 +38,9 @@ export function IsNotification(define: NotificationDefine): ClassDecorator {

 export function NotificationInput(input?: NotificationInputDefine): PropertyDecorator {
  return (target, propertyKey) => {
+    if (process.env.certd_plugin_loadmode === "metadata") {
+      return;
+    }
    target = Decorator.target(target, propertyKey);
    // const _type = Reflect.getMetadata("design:type", target, propertyKey);
    Reflect.defineMetadata(NOTIFICATION_INPUT_KEY, input, target, propertyKey);
--- a/packages/core/pipeline/src/plugin/api.ts
+++ b/packages/core/pipeline/src/plugin/api.ts
@@ -185,6 +185,8 @@ export abstract class AbstractTaskPlugin implements ITaskPlugin {
    if (res == null) {
      throw new Error("授权不存在，可能已被删除，请前往任务配置里面重新选择授权");
    }
+    res.ctx.logger = this.logger;
+    res.ctx.http = this.http;
    // @ts-ignore
    if (this.logger?.addSecret) {
      // 隐藏加密信息，不在日志中输出
--- a/packages/core/pipeline/src/plugin/decorator.ts
+++ b/packages/core/pipeline/src/plugin/decorator.ts
@@ -8,6 +8,9 @@ export const PLUGIN_CLASS_KEY = "pipeline:plugin";

 export function IsTaskPlugin(define: PluginDefine): ClassDecorator {
  return (target: any) => {
+    if (process.env.certd_plugin_loadmode === "metadata") {
+      return;
+    }
    target = Decorator.target(target);

    const inputs: any = {};
@@ -69,6 +72,9 @@ export const PLUGIN_INPUT_KEY = "pipeline:plugin:input";

 export function TaskInput(input?: TaskInputDefine): PropertyDecorator {
  return (target, propertyKey) => {
+    if (process.env.certd_plugin_loadmode === "metadata") {
+      return;
+    }
    target = Decorator.target(target, propertyKey);
    Reflect.defineMetadata(PLUGIN_INPUT_KEY, input, target, propertyKey);
  };
@@ -78,6 +84,9 @@ export function TaskInput(input?: TaskInputDefine): PropertyDecorator {
 export const PLUGIN_OUTPUT_KEY = "pipeline:plugin:output";
 export function TaskOutput(output?: TaskOutputDefine): PropertyDecorator {
  return (target, propertyKey) => {
+    if (process.env.certd_plugin_loadmode === "metadata") {
+      return;
+    }
    target = Decorator.target(target, propertyKey);
    Reflect.defineMetadata(PLUGIN_OUTPUT_KEY, output, target, propertyKey);
  };
@@ -86,6 +95,9 @@ export function TaskOutput(output?: TaskOutputDefine): PropertyDecorator {
 export const PLUGIN_DOWNLOAD_KEY = "pipeline:plugin:download";
 export function TaskDownload(output?: TaskOutputDefine): PropertyDecorator {
  return (target, propertyKey) => {
+    if (process.env.certd_plugin_loadmode === "metadata") {
+      return;
+    }
    target = Decorator.target(target, propertyKey);
    Reflect.defineMetadata(PLUGIN_DOWNLOAD_KEY, output, target, propertyKey);
  };
--- a/packages/core/pipeline/src/plugin/group.ts
+++ b/packages/core/pipeline/src/plugin/group.ts
@@ -27,6 +27,7 @@ export const pluginGroups = {
  tencent: new PluginGroup("tencent", "腾讯云", 4, "svg:icon-tencentcloud"),
  volcengine: new PluginGroup("volcengine", "火山引擎", 4, "svg:icon-volcengine"),
  jdcloud: new PluginGroup("jdcloud", "京东云", 4, "svg:icon-jdcloud"),
+  ucloud: new PluginGroup("ucloud", "UCloud", 4, "svg:icon-ucloud"),
  baidu: new PluginGroup("baidu", "百度云", 4, "ant-design:baidu-outlined"),
  qiniu: new PluginGroup("qiniu", "七牛云", 5, "svg:icon-qiniuyun"),
  aws: new PluginGroup("aws", "亚马逊云", 6, "svg:icon-aws"),
--- a/Show More
+++ b/Show More
@@ -1 +1 @@
 :42
 :26