chore:

2026-04-14 12:30:54 +08:00 · 2025-07-23 00:12:51 +08:00
266 changed files with 980 additions and 9230 deletions
--- a/.editorconfig
+++ b/.editorconfig
@@ -1,11 +0,0 @@
 #
 # http://editorconfig.org
 #
 root = true
 [*]
 indent_style = space
 indent_size = 2
 trim_trailing_whitespace = true
--- a/.github/ISSUE_TEMPLATE/3bug.md
+++ b/.github/ISSUE_TEMPLATE/3bug.md
@@ -1,28 +1,21 @@
 ---
 name: Bug Report
 about: 错误或问题报告
 title: "[BUG] "
 labels: bug
 ---
 > 感谢您支持certd，请按如下规范提交issue    
 > 如果有条件，请尽量在[github上提交](https://github.com/certd/certd/issues)
-# bug提交
+
-## 1、问题描述
+## 一、问题描述
 `请在此处简要描述你所遇到的问题，必要时请贴出相关截图辅助理解和定位`
-### 2、复现步骤
+### 复现步骤
 `请描述复现问题的详细步骤`
 `如果非示例页面的问题，最好能提供最小复现示例的代码、或者仓库链接`
-### 3.报错截图
+### 报错截图
 `请贴出报错日志截图`
-### 4、效果截图
+### 效果截图
 `请贴出效果截图`
-#### 4.1. 期望效果
+#### 1. 期望效果
 #### 2. 实际效果
 #### 4.2. 实际效果
--- a/.github/ISSUE_TEMPLATE/1plugin.md
+++ b/.github/ISSUE_TEMPLATE/1plugin.md
@@ -1,36 +0,0 @@
 ---
 name: Plugin Apply
 about: 部署插件申请支持
 title: "[Plugin] "
 labels: feature
 ---
 > > 感谢您支持certd，请按如下规范提交issue
 > 如果有条件，请尽量在[github上提交](https://github.com/certd/certd/issues)
 # 新部署插件申请支持
 ## 1. 需求描述
 `请在此处简要描述你的需求`
 ## 2. 要部署证书应用的信息
 1. 应用名称：
 2. 应用网址/项目地址/官方网站：
 3. 管理证书界面截图（或者手动部署证书方式介绍及截图）：
 4. 是否有API接口，接口地址：
 5. 如果没有API接口，网页登录是否需要验证码：
 6. 是否可以提供测试账号？（如果可以请留下联系方式或者加作者好友）
--- a/.github/ISSUE_TEMPLATE/2dns.md
+++ b/.github/ISSUE_TEMPLATE/2dns.md
@@ -1,36 +0,0 @@
 ---
 name: DNS Provider Apply
 about: 域名提供商申请支持
 title: "[DNS] "
 labels: feature
 ---
 > 感谢您支持certd，请按如下规范提交issue
 > 如果有条件，请尽量在[github上提交](https://github.com/certd/certd/issues)
 # 新域名提供商支持申请
 ## 1. 基本信息
 请填写如下内容：
 1. 域名提供商名称：
 2. 管理页面地址：
 3. 是否有API接口，接口地址：
 4. 如果没有API接口，网页登录是否有验证码：
 5. 是否可以提供测试账号？（如果可以请留下联系方式或者加作者好友）
 ## 2. 截图
 `域名管理页面截图`
--- a/.github/ISSUE_TEMPLATE/4feature.md
+++ b/.github/ISSUE_TEMPLATE/4feature.md
@@ -1,24 +0,0 @@
 ---
 name: Feature Request
 about: 新需求、新特性申请支持
 title: "[Feature] "
 labels: feature
 ---
 > > 感谢您支持certd，请按如下规范提交issue
 > 如果有条件，请尽量在[github上提交](https://github.com/certd/certd/issues)
 # 新特性申请
 >注意：这里仅供如果是要申请新的部署插件，请提交插件申请
 ## 1. 需求描述，需求背景
 `请在此处简要描述你所遇到的问题，必要时请贴出相关截图辅助理解`
 ## 2. 期望效果
 `必要时可以截图描述你的期望效果`
 ## 3. 你的解决方案
 `如果你有解决方案，请描述你的方案`
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -3,140 +3,6 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 ## [1.36.19](https://github.com/certd/certd/compare/v1.36.18...v1.36.19) (2025-09-05)
 ### Bug Fixes
 * 前置任务输出不存在时输出警告提示 ([b59052c](https://github.com/certd/certd/commit/b59052cc43b7b070fabd8b8e914e4c2a5e0ad61c))
 * 修复批量流水线执行时日志显示错乱的问题 ([4372adc](https://github.com/certd/certd/commit/4372adc703b9a4c785664054ab2a533626d815a8))
 * 修复远程数据选择无法过滤的bug ([6cbb073](https://github.com/certd/certd/commit/6cbb0739f8428d51b0712f718fe4d236cc087cf9))
 * 修复mysql下购买套餐加量包无效的bug ([c26ad4c](https://github.com/certd/certd/commit/c26ad4c8075f0606d45b8da13915737968d6191a))
 ### Performance Improvements
 * 创建证书时支持选择通知时机 ([0e96bfd](https://github.com/certd/certd/commit/0e96bfdfa377824d204e72923d1176408ae6b300))
 * 创建k8s secret 时设置type为tls ([79ebabf](https://github.com/certd/certd/commit/79ebabfcfb9e5a534049c84f5f1a642b357fc856))
 * 去掉宝塔url后面的斜杠 ([8a0c2b9](https://github.com/certd/certd/commit/8a0c2b9b13628da750c25757e0cb8ed3038775ba))
 * 商业版隐藏文档相关链接 ([4443a1c](https://github.com/certd/certd/commit/4443a1c0308fa6b95a05efd73d15d24b65d641c9))
 * 商业版隐藏文档相关链接 ([db89561](https://github.com/certd/certd/commit/db8956148083bc4f988226ccf719940d08158a27))
 * 增加健康检查探针  /health/liveliness 和 /health/readiness ([44019e1](https://github.com/certd/certd/commit/44019e104289fedd32a867db00e9c6cb71b389cc))
 * 支持根据id更新证书（证书Id不变接口），不过该接口为白名单功能，普通腾讯云账户无法使用 ([fe9c4f3](https://github.com/certd/certd/commit/fe9c4f3391ff07c01dd9a252225f69a129c39050))
 * 支持godaddy ([b7980aa](https://github.com/certd/certd/commit/b7980aad5ab50f58662eaddf5d84aa82876a98eb))
 * 支持ssl.com证书颁发机构 ([27b6dfa](https://github.com/certd/certd/commit/27b6dfa4d2ab3bddd284c3a34511a72e1a513a4c))
 * 子域名托管说明 ([39a0223](https://github.com/certd/certd/commit/39a02235cf4416bb5bd1acd3831241efeaa2f602))
 * ssh 增加超时断开连接，默认10分钟超时 ([c24a040](https://github.com/certd/certd/commit/c24a040c19cacafc79228d7a7649af93837d94a1))
 ## [1.36.18](https://github.com/certd/certd/compare/v1.36.17...v1.36.18) (2025-08-28)
 ### Bug Fixes
 * 更新我爱云CDN域名地址，和部分目录结构 [@tyjsjxh](https://github.com/tyjsjxh)  ([#514](https://github.com/certd/certd/issues/514)) ([78e7a81](https://github.com/certd/certd/commit/78e7a81638c2ee779f0ab6c3ba7e5c6f6e064151))
 * 修复cron选择组件星期显示错误的bug ([eb75e52](https://github.com/certd/certd/commit/eb75e52278f94a72643f7317e6740fb42666c68a))
 * 修复proxmox某些情况下执行卡住的bug ([ebd6917](https://github.com/certd/certd/commit/ebd6917a1d40ae4d94555c32b7e3c093d0599b94))
 ### Performance Improvements
 * 部署到k8s支持自动创建secret ([c09c962](https://github.com/certd/certd/commit/c09c962cb676ca261610aa9f3e5105c9dae43f43))
 * 短信验证码支持腾讯云 ([9108459](https://github.com/certd/certd/commit/9108459ae42bcd95a59acba164a64e82e5f2cfe6))
 * 商业版支持自定义插件的参数配置 ([17f23f3](https://github.com/certd/certd/commit/17f23f37516af925d5049291d67d41e4271f81f8))
 * 腾讯云插件支持国际版 ([58e82d5](https://github.com/certd/certd/commit/58e82d5dbd4ebf089ef239578ef9b68454d17b30))
 * 腾讯云EO插件支持自动获取zoneid和域名列表 ([70fcdc9](https://github.com/certd/certd/commit/70fcdc9ebbfb7c883c0c8a2138f61a0776a9491b))
 * 支持部署到阿里云云原生API网关、AI网关 ([2ca20be](https://github.com/certd/certd/commit/2ca20be197720201fceabcce9d927f4dbc1cc872))
 * 支持部署到华为云obs ([9feb9d0](https://github.com/certd/certd/commit/9feb9d04b3c56ec95c06fcf4fd071eb0e88ffc6f))
 * 支持部署到dokploy ([7dbdeae](https://github.com/certd/certd/commit/7dbdeaebe0bfee7521a863fe5e6b4a712aec5876))
 * 支持删除宝塔证书夹中的过期证书 ([3575113](https://github.com/certd/certd/commit/3575113655be751d19f88c64491e98a89042d6a2))
 * 支持p7b证书格式 ([d9f4a57](https://github.com/certd/certd/commit/d9f4a5793d68a017a5d80ad5385cbda603c4e165))
 * lecdnv2支持api token ([e448934](https://github.com/certd/certd/commit/e4489343fee7754be07bcfc3323969dc3a30e90c))
 * openapi返回证书时挑选匹配范围最小的那一个；增加format参数，增加返回值p7b格式，增加detail返回 ([2085bcc](https://github.com/certd/certd/commit/2085bcceb61c3723c9bdfec4c4cc0917631ff5e5))
 * ssh 配置sudo免密提示 ([e1e7011](https://github.com/certd/certd/commit/e1e7011853ad0c5bd7b09c3690861d5aa34b2db4))
 ## [1.36.17](https://github.com/certd/certd/compare/v1.36.16...v1.36.17) (2025-08-17)
 ### Bug Fixes
 * 修复新部署的无法保存公共eab配置的bug ([d5dee75](https://github.com/certd/certd/commit/d5dee75df3bd635a597436e448b2de1407531f3a))
 ### Performance Improvements
 * 阿里云 FC3.0 不在要求证书加密方式为旧版， 修复支持的协议类型可以正常选择 ([a34db74](https://github.com/certd/certd/commit/a34db7449eff6ad1dda01de673bf85579fa3865a))
 * 部署到腾讯云cdn，每个域名增加3每秒延迟 ([f7d43ad](https://github.com/certd/certd/commit/f7d43ad5af4663d4be369820a80d1fd9817ca4ab))
 * 腾讯云关闭证书通知增加开关选项，在腾讯云授权里面 ([a77c777](https://github.com/certd/certd/commit/a77c777980dd38d97d983124eeed1596879bba95))
 * 证书申请任务默认不发送申请成功通知 ([0283bd2](https://github.com/certd/certd/commit/0283bd2f978dbcd13d361129135e439dd9fbc180))
 ## [1.36.16](https://github.com/certd/certd/compare/v1.36.15...v1.36.16) (2025-08-16)
 ### Bug Fixes
 * 修复授权配置复制功能，无法复制已加密字段的问题 ([221e068](https://github.com/certd/certd/commit/221e068bac3af6cd5d1794f8cd4c2ec5c0bc3f45))
 ### Performance Improvements
 * 百度云支持上传到证书托管，支持部署到负载均衡 ([798a48a](https://github.com/certd/certd/commit/798a48aa9686fd5d11cfffb6cd93eadfc40aacb3))
 * 部署到百度cdn支持自动获取域名列表选择 ([4e432ed](https://github.com/certd/certd/commit/4e432ed03f4fb564e85a2f284ee26b58400b82f5))
 * 验证码可重试次数设置为3次 ([1bdceee](https://github.com/certd/certd/commit/1bdceeecf4b5daecdd621a05a2596b6eb45ce8ea))
 * 增加找回密码的验证码可重试次数 [@nicheng-he](https://github.com/nicheng-he)  ([#496](https://github.com/certd/certd/issues/496)) ([fe03f99](https://github.com/certd/certd/commit/fe03f9942b5662fb90cad86da10782f5dc3603f5))
 * 支持阿里云API网关 ([9e1e4ee](https://github.com/certd/certd/commit/9e1e4eeec2859759ca5b07834c9d24cf88a6ad33))
 * 支持部署到金山云CDN ([dfa74a6](https://github.com/certd/certd/commit/dfa74a69f7cbb9009d3e20c7eecfa1b905a00cf0))
 * 支持更新金山云cdn证书 ([462e22a](https://github.com/certd/certd/commit/462e22a3b0a94887462fe6aa68e4671a365e0737))
 * 支持apisix证书部署 ([9b63fb4](https://github.com/certd/certd/commit/9b63fb4ee2c6b56139160c5bf63482dab0869c2b))
 ## [1.36.15](https://github.com/certd/certd/compare/v1.36.14...v1.36.15) (2025-08-07)
 ### Bug Fixes
 * 修复  https://cas.undefined.aliyuncs.com 的bug ([60e6aa9](https://github.com/certd/certd/commit/60e6aa9b54a761a47e39acee4a1ff947a745be27))
 * 修复阿里云clb api接口没有使用region的问题 ([0770f17](https://github.com/certd/certd/commit/0770f174a14313e28d08113e69829ef6cc02d719))
 * 修复站点监控使用自定义dns解析域名报错的bug ([eb8cd53](https://github.com/certd/certd/commit/eb8cd53de27991321e36dd14e5ce95f42b51351f))
 ### Performance Improvements
 * 部署到阿里云支持选择bucket和域名 ([013b9c4](https://github.com/certd/certd/commit/013b9c4c7c2adf485d086123ccea448719577fd4))
 * 清理数据库备份的临时目录 ([fd95549](https://github.com/certd/certd/commit/fd95549de9a5d8cec09772ee2630bb7521e15e1f))
 * 添加免费通知,OneBot V11协议通知支持 ([#491](https://github.com/certd/certd/issues/491)) [@ayakasuki](https://github.com/ayakasuki)  ([be053d4](https://github.com/certd/certd/commit/be053d47e41084f817882400882b64143d036d1a))
 * 支持webhook部署证书 ([cbe0b1c](https://github.com/certd/certd/commit/cbe0b1c5a6538f232e9a63f1693d20d5acf0a306))
 * 注册时支持填写用户名 ([fdcfcc7](https://github.com/certd/certd/commit/fdcfcc77a0db87954e0b026635d3ccdd9bc6cee8))
 * add start:server npm script for quick server launch from root directory ([#484](https://github.com/certd/certd/issues/484)) [@orzyyyy](https://github.com/orzyyyy) ([fae1981](https://github.com/certd/certd/commit/fae1981161080f698c3f1263b712306d63baae64))
 ## [1.36.14](https://github.com/certd/certd/compare/v1.36.13...v1.36.14) (2025-07-28)
 ### Bug Fixes
 * 修复复制流水线为空的bug ([b070773](https://github.com/certd/certd/commit/b0707739fdfbae3d78db4efd3f180db05c4e4164))
 * 修复商用证书上传第二次运行无法使用pfx格式证书的bug ([251dd1f](https://github.com/certd/certd/commit/251dd1fe457a7b152f43eb6de18f7beb9f0b194e))
 ### Performance Improvements
 * 1panel支持 currenNode ([acc8907](https://github.com/certd/certd/commit/acc890730f43d492c9b1bd3668814cf10efdf7b8))
 * 授权管理支持模糊查询 ([866eb62](https://github.com/certd/certd/commit/866eb6241baa7b21f6eddc649966324c188236c6))
 * 新增找回密码功能 [@nicheng-he](https://github.com/nicheng-he) ([81ac240](https://github.com/certd/certd/commit/81ac240ac84db0af2f56b6352e227ecb49f38377))
 * 优化start脚本 ([238ad7c](https://github.com/certd/certd/commit/238ad7ce51f17e1098c624e7f61ee2d98de1e02d))
 * 运行主机脚本插件支持选择运行策略 ([86b3df1](https://github.com/certd/certd/commit/86b3df194126476e1f58e0952a77e986f62eecce))
 * cdnfly 支持 账号密码登陆授权 ([e87f6d5](https://github.com/certd/certd/commit/e87f6d56f524dbbb9e3243e382b348b6e49f0d2c))
 * k8s ack、tke 支持重启ingress ([95715a0](https://github.com/certd/certd/commit/95715a007d931c64fa7dd953d94957398e00a443))
 ## [1.36.13](https://github.com/certd/certd/compare/v1.36.12...v1.36.13) (2025-07-23)
 ### Bug Fixes
 * 修复阿里云发送短信验证码失败的bug ([2e6d03f](https://github.com/certd/certd/commit/2e6d03ff001f521f57368e7a62b97ed7b122e8d0))
 ### Performance Improvements
 * 阿里云部分插件优化  [@nicheng-he](https://github.com/nicheng-he) ([e3738f6](https://github.com/certd/certd/commit/e3738f6422270d75ec414c15a343248cc4cad6e1))
 ## [1.36.12](https://github.com/certd/certd/compare/v1.36.11...v1.36.12) (2025-07-22)
 ### Bug Fixes
 * 上传到阿里云cas，证书前缀无效的bug ([b382351](https://github.com/certd/certd/commit/b382351c7b91ec10e1f61d94bec5aad075207ec8))
 * 修复自定义插件onlyAdmin报错的bug ([4e5e862](https://github.com/certd/certd/commit/4e5e862f5834ad180e4428959c272d444a6f78ab))
 ### Performance Improvements
 * 部署到k8s，tke，ack忽悠证书校验 ([ab84835](https://github.com/certd/certd/commit/ab848353621869464a2c9a45fdb5e28d998b8a58))
 * 首页增加更新日志按钮 ([41ce848](https://github.com/certd/certd/commit/41ce8489dc2f03a705dfa3fbb357769defb56c60))
 * 增加版本过低提示 ([d1ce360](https://github.com/certd/certd/commit/d1ce36038cab72b5dc1b320d0a708c261ffbdacb))
 ## [1.36.11](https://github.com/certd/certd/compare/v1.36.10...v1.36.11) (2025-07-22)
 ### Bug Fixes
--- a/README.md
+++ b/README.md
@@ -1,6 +1,6 @@
 # Certd
-中文 | [English](./README_en.md)
+[English](./README_en.md) | [中文](./README.md)
 Certd® 是一个免费的全自动证书管理系统，让你的网站证书永不过期。   
 后缀d取自linux守护进程的命名风格，意为证书守护进程
@@ -16,6 +16,7 @@ Certd® 是一个免费的全自动证书管理系统，让你的网站证书永
 > 流水线数量现已调整为无限制，欢迎大家使用
 ## 一、特性
 本项目不仅支持证书申请过程自动化，还可以自动化部署更新证书，让你的证书永不过期。     
@@ -86,8 +87,8 @@ https://certd.handfree.work/
 1. 【推荐】[Docker方式部署 ](https://certd.docmirror.cn/guide/install/docker/)
 2. 【推荐】[宝塔面板方式部署 ](https://certd.docmirror.cn/guide/install/docker/)
 3. 【推荐】[1Panel面板方式部署](https://certd.docmirror.cn/guide/install/1panel/)
-4. 【推荐】[雨云一键部署](https://app.rainyun.com/apps/rca/store/6646/?ref=NzExMDQ2) ： 首充翻倍，每月仅需2.2元    
+4. 【推荐】[雨云一键部署](https://app.rainyun.com/apps/rca/store/6646/?ref=NzExMDQ2_) ： 首充翻倍，每月仅需2.2元    
-[<img src="https://rainyun-apps.cn-nb1.rains3.com/materials/deploy-on-rainyun-cn.svg">](https://app.rainyun.com/apps/rca/store/6646/?ref=NzExMDQ2)
+[<img src="https://rainyun-apps.cn-nb1.rains3.com/materials/deploy-on-rainyun-cn.svg">](https://app.rainyun.com/apps/rca/store/6646/?ref=NzExMDQ2_)
 5. 【不推荐】[源码方式部署 ](https://certd.docmirror.cn/guide/install/source/)
 #### Docker镜像说明：
--- a/README_en.md
+++ b/README_en.md
@@ -1,6 +1,6 @@
 # Certd
-[中文](./README.md) | English
+[English](./README_en.md) | [中文](./README.md)
 Certd® is a free, fully automated certificate management system that ensures your website certificates never expire. The suffix 'd' is inspired by the naming convention of Linux daemons, representing a certificate daemon.
--- a/build.trigger
+++ b/build.trigger
@@ -1 +1 @@
-00:34
+12:27
--- a/docker/run/docker-compose.yaml
+++ b/docker/run/docker-compose.yaml
@@ -11,9 +11,6 @@ services:
      #   ↓↓↓↓↓ -------------------------------------------------------- 数据库以及证书存储路径,默认存在宿主机的/data/certd/目录下，【您需要定时备份此目录，以保障数据容灾】
      #                                                                  只要修改冒号前面的，冒号后面的/app/data不要动
      - /data/certd:/app/data
      #   ↓↓↓↓↓ -------------------------------------------------------- 如果走时不准，考虑挂载localtime文件
      #- /etc/localtime:/etc/localtime
      #- /etc/timezone:/etc/timezone
    ports: # 端口映射
      #  ↓↓↓↓ ---------------------------------------------------------- 如果端口有冲突，可以修改第一个7001为其他不冲突的端口号，第二个7001不要动
      - "7001:7001"
@@ -41,11 +38,11 @@ services:
 #      - ip6net
    environment:
 #             ↓↓↓↓ ----------------------------------------------------- 使用上海东八时区
-      - TZ=Asia/Shanghai
+#      - TZ=Asia/Shanghai
 #     设置环境变量即可自定义certd配置
 #     配置项见： packages/ui/certd-server/src/config/config.default.ts
 #     配置规则： certd_ + 配置项, 点号用_代替
-#                                    #↓↓↓↓ ----------------------------- 如果忘记管理员密码，可以设置为true，docker compose up -d 重建容器之后，管理员密码将改成123456，然后请及时修改回false
+#                                    #↓↓↓↓ ----------------------------- 如果忘记管理员密码，可以设置为true，重启之后，管理员密码将改成123456，然后请及时修改回false
      - certd_system_resetAdminPasswd=false
 #     默认使用sqlite文件数据库，如果需要使用其他数据库，请设置以下环境变量
--- a/docs/.vitepress/config.ts
+++ b/docs/.vitepress/config.ts
@@ -107,6 +107,7 @@ export default defineConfig({
                    text: "常见问题",
                    items: [
                        {text: "QA", link: "/guide/qa/use.md"},
                        {text: "常见报错处理", link: "/guide/qa/"},
                        {text: "群晖证书部署", link: "/guide/use/synology/"},
                        {text: "腾讯云密钥获取", link: "/guide/use/tencent/"},
                        {text: "连接windows主机", link: "/guide/use/host/windows.md"},
@@ -119,7 +120,6 @@ export default defineConfig({
                        {text: "邮箱配置", link: "/guide/use/email/index.md"},
                        {text: "IPv6支持", link: "/guide/use/setting/ipv6.md"},
                        {text: "ESXi", link: "/guide/use/ESXi/index.md"},
                        {text: "子域名托管", link: "/guide/use/cert/subdomain.md"},
                    ]
                },
                {
--- a/docs/guide/changelogs/CHANGELOG.md
+++ b/docs/guide/changelogs/CHANGELOG.md
@@ -3,140 +3,6 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 ## [1.36.19](https://github.com/certd/certd/compare/v1.36.18...v1.36.19) (2025-09-05)
 ### Bug Fixes
 * 前置任务输出不存在时输出警告提示 ([b59052c](https://github.com/certd/certd/commit/b59052cc43b7b070fabd8b8e914e4c2a5e0ad61c))
 * 修复批量流水线执行时日志显示错乱的问题 ([4372adc](https://github.com/certd/certd/commit/4372adc703b9a4c785664054ab2a533626d815a8))
 * 修复远程数据选择无法过滤的bug ([6cbb073](https://github.com/certd/certd/commit/6cbb0739f8428d51b0712f718fe4d236cc087cf9))
 * 修复mysql下购买套餐加量包无效的bug ([c26ad4c](https://github.com/certd/certd/commit/c26ad4c8075f0606d45b8da13915737968d6191a))
 ### Performance Improvements
 * 创建证书时支持选择通知时机 ([0e96bfd](https://github.com/certd/certd/commit/0e96bfdfa377824d204e72923d1176408ae6b300))
 * 创建k8s secret 时设置type为tls ([79ebabf](https://github.com/certd/certd/commit/79ebabfcfb9e5a534049c84f5f1a642b357fc856))
 * 去掉宝塔url后面的斜杠 ([8a0c2b9](https://github.com/certd/certd/commit/8a0c2b9b13628da750c25757e0cb8ed3038775ba))
 * 商业版隐藏文档相关链接 ([4443a1c](https://github.com/certd/certd/commit/4443a1c0308fa6b95a05efd73d15d24b65d641c9))
 * 商业版隐藏文档相关链接 ([db89561](https://github.com/certd/certd/commit/db8956148083bc4f988226ccf719940d08158a27))
 * 增加健康检查探针  /health/liveliness 和 /health/readiness ([44019e1](https://github.com/certd/certd/commit/44019e104289fedd32a867db00e9c6cb71b389cc))
 * 支持根据id更新证书（证书Id不变接口），不过该接口为白名单功能，普通腾讯云账户无法使用 ([fe9c4f3](https://github.com/certd/certd/commit/fe9c4f3391ff07c01dd9a252225f69a129c39050))
 * 支持godaddy ([b7980aa](https://github.com/certd/certd/commit/b7980aad5ab50f58662eaddf5d84aa82876a98eb))
 * 支持ssl.com证书颁发机构 ([27b6dfa](https://github.com/certd/certd/commit/27b6dfa4d2ab3bddd284c3a34511a72e1a513a4c))
 * 子域名托管说明 ([39a0223](https://github.com/certd/certd/commit/39a02235cf4416bb5bd1acd3831241efeaa2f602))
 * ssh 增加超时断开连接，默认10分钟超时 ([c24a040](https://github.com/certd/certd/commit/c24a040c19cacafc79228d7a7649af93837d94a1))
 ## [1.36.18](https://github.com/certd/certd/compare/v1.36.17...v1.36.18) (2025-08-28)
 ### Bug Fixes
 * 更新我爱云CDN域名地址，和部分目录结构 [@tyjsjxh](https://github.com/tyjsjxh)  ([#514](https://github.com/certd/certd/issues/514)) ([78e7a81](https://github.com/certd/certd/commit/78e7a81638c2ee779f0ab6c3ba7e5c6f6e064151))
 * 修复cron选择组件星期显示错误的bug ([eb75e52](https://github.com/certd/certd/commit/eb75e52278f94a72643f7317e6740fb42666c68a))
 * 修复proxmox某些情况下执行卡住的bug ([ebd6917](https://github.com/certd/certd/commit/ebd6917a1d40ae4d94555c32b7e3c093d0599b94))
 ### Performance Improvements
 * 部署到k8s支持自动创建secret ([c09c962](https://github.com/certd/certd/commit/c09c962cb676ca261610aa9f3e5105c9dae43f43))
 * 短信验证码支持腾讯云 ([9108459](https://github.com/certd/certd/commit/9108459ae42bcd95a59acba164a64e82e5f2cfe6))
 * 商业版支持自定义插件的参数配置 ([17f23f3](https://github.com/certd/certd/commit/17f23f37516af925d5049291d67d41e4271f81f8))
 * 腾讯云插件支持国际版 ([58e82d5](https://github.com/certd/certd/commit/58e82d5dbd4ebf089ef239578ef9b68454d17b30))
 * 腾讯云EO插件支持自动获取zoneid和域名列表 ([70fcdc9](https://github.com/certd/certd/commit/70fcdc9ebbfb7c883c0c8a2138f61a0776a9491b))
 * 支持部署到阿里云云原生API网关、AI网关 ([2ca20be](https://github.com/certd/certd/commit/2ca20be197720201fceabcce9d927f4dbc1cc872))
 * 支持部署到华为云obs ([9feb9d0](https://github.com/certd/certd/commit/9feb9d04b3c56ec95c06fcf4fd071eb0e88ffc6f))
 * 支持部署到dokploy ([7dbdeae](https://github.com/certd/certd/commit/7dbdeaebe0bfee7521a863fe5e6b4a712aec5876))
 * 支持删除宝塔证书夹中的过期证书 ([3575113](https://github.com/certd/certd/commit/3575113655be751d19f88c64491e98a89042d6a2))
 * 支持p7b证书格式 ([d9f4a57](https://github.com/certd/certd/commit/d9f4a5793d68a017a5d80ad5385cbda603c4e165))
 * lecdnv2支持api token ([e448934](https://github.com/certd/certd/commit/e4489343fee7754be07bcfc3323969dc3a30e90c))
 * openapi返回证书时挑选匹配范围最小的那一个；增加format参数，增加返回值p7b格式，增加detail返回 ([2085bcc](https://github.com/certd/certd/commit/2085bcceb61c3723c9bdfec4c4cc0917631ff5e5))
 * ssh 配置sudo免密提示 ([e1e7011](https://github.com/certd/certd/commit/e1e7011853ad0c5bd7b09c3690861d5aa34b2db4))
 ## [1.36.17](https://github.com/certd/certd/compare/v1.36.16...v1.36.17) (2025-08-17)
 ### Bug Fixes
 * 修复新部署的无法保存公共eab配置的bug ([d5dee75](https://github.com/certd/certd/commit/d5dee75df3bd635a597436e448b2de1407531f3a))
 ### Performance Improvements
 * 阿里云 FC3.0 不在要求证书加密方式为旧版， 修复支持的协议类型可以正常选择 ([a34db74](https://github.com/certd/certd/commit/a34db7449eff6ad1dda01de673bf85579fa3865a))
 * 部署到腾讯云cdn，每个域名增加3每秒延迟 ([f7d43ad](https://github.com/certd/certd/commit/f7d43ad5af4663d4be369820a80d1fd9817ca4ab))
 * 腾讯云关闭证书通知增加开关选项，在腾讯云授权里面 ([a77c777](https://github.com/certd/certd/commit/a77c777980dd38d97d983124eeed1596879bba95))
 * 证书申请任务默认不发送申请成功通知 ([0283bd2](https://github.com/certd/certd/commit/0283bd2f978dbcd13d361129135e439dd9fbc180))
 ## [1.36.16](https://github.com/certd/certd/compare/v1.36.15...v1.36.16) (2025-08-16)
 ### Bug Fixes
 * 修复授权配置复制功能，无法复制已加密字段的问题 ([221e068](https://github.com/certd/certd/commit/221e068bac3af6cd5d1794f8cd4c2ec5c0bc3f45))
 ### Performance Improvements
 * 百度云支持上传到证书托管，支持部署到负载均衡 ([798a48a](https://github.com/certd/certd/commit/798a48aa9686fd5d11cfffb6cd93eadfc40aacb3))
 * 部署到百度cdn支持自动获取域名列表选择 ([4e432ed](https://github.com/certd/certd/commit/4e432ed03f4fb564e85a2f284ee26b58400b82f5))
 * 验证码可重试次数设置为3次 ([1bdceee](https://github.com/certd/certd/commit/1bdceeecf4b5daecdd621a05a2596b6eb45ce8ea))
 * 增加找回密码的验证码可重试次数 [@nicheng-he](https://github.com/nicheng-he)  ([#496](https://github.com/certd/certd/issues/496)) ([fe03f99](https://github.com/certd/certd/commit/fe03f9942b5662fb90cad86da10782f5dc3603f5))
 * 支持阿里云API网关 ([9e1e4ee](https://github.com/certd/certd/commit/9e1e4eeec2859759ca5b07834c9d24cf88a6ad33))
 * 支持部署到金山云CDN ([dfa74a6](https://github.com/certd/certd/commit/dfa74a69f7cbb9009d3e20c7eecfa1b905a00cf0))
 * 支持更新金山云cdn证书 ([462e22a](https://github.com/certd/certd/commit/462e22a3b0a94887462fe6aa68e4671a365e0737))
 * 支持apisix证书部署 ([9b63fb4](https://github.com/certd/certd/commit/9b63fb4ee2c6b56139160c5bf63482dab0869c2b))
 ## [1.36.15](https://github.com/certd/certd/compare/v1.36.14...v1.36.15) (2025-08-07)
 ### Bug Fixes
 * 修复  https://cas.undefined.aliyuncs.com 的bug ([60e6aa9](https://github.com/certd/certd/commit/60e6aa9b54a761a47e39acee4a1ff947a745be27))
 * 修复阿里云clb api接口没有使用region的问题 ([0770f17](https://github.com/certd/certd/commit/0770f174a14313e28d08113e69829ef6cc02d719))
 * 修复站点监控使用自定义dns解析域名报错的bug ([eb8cd53](https://github.com/certd/certd/commit/eb8cd53de27991321e36dd14e5ce95f42b51351f))
 ### Performance Improvements
 * 部署到阿里云支持选择bucket和域名 ([013b9c4](https://github.com/certd/certd/commit/013b9c4c7c2adf485d086123ccea448719577fd4))
 * 清理数据库备份的临时目录 ([fd95549](https://github.com/certd/certd/commit/fd95549de9a5d8cec09772ee2630bb7521e15e1f))
 * 添加免费通知,OneBot V11协议通知支持 ([#491](https://github.com/certd/certd/issues/491)) [@ayakasuki](https://github.com/ayakasuki)  ([be053d4](https://github.com/certd/certd/commit/be053d47e41084f817882400882b64143d036d1a))
 * 支持webhook部署证书 ([cbe0b1c](https://github.com/certd/certd/commit/cbe0b1c5a6538f232e9a63f1693d20d5acf0a306))
 * 注册时支持填写用户名 ([fdcfcc7](https://github.com/certd/certd/commit/fdcfcc77a0db87954e0b026635d3ccdd9bc6cee8))
 * add start:server npm script for quick server launch from root directory ([#484](https://github.com/certd/certd/issues/484)) [@orzyyyy](https://github.com/orzyyyy) ([fae1981](https://github.com/certd/certd/commit/fae1981161080f698c3f1263b712306d63baae64))
 ## [1.36.14](https://github.com/certd/certd/compare/v1.36.13...v1.36.14) (2025-07-28)
 ### Bug Fixes
 * 修复复制流水线为空的bug ([b070773](https://github.com/certd/certd/commit/b0707739fdfbae3d78db4efd3f180db05c4e4164))
 * 修复商用证书上传第二次运行无法使用pfx格式证书的bug ([251dd1f](https://github.com/certd/certd/commit/251dd1fe457a7b152f43eb6de18f7beb9f0b194e))
 ### Performance Improvements
 * 1panel支持 currenNode ([acc8907](https://github.com/certd/certd/commit/acc890730f43d492c9b1bd3668814cf10efdf7b8))
 * 授权管理支持模糊查询 ([866eb62](https://github.com/certd/certd/commit/866eb6241baa7b21f6eddc649966324c188236c6))
 * 新增找回密码功能 [@nicheng-he](https://github.com/nicheng-he) ([81ac240](https://github.com/certd/certd/commit/81ac240ac84db0af2f56b6352e227ecb49f38377))
 * 优化start脚本 ([238ad7c](https://github.com/certd/certd/commit/238ad7ce51f17e1098c624e7f61ee2d98de1e02d))
 * 运行主机脚本插件支持选择运行策略 ([86b3df1](https://github.com/certd/certd/commit/86b3df194126476e1f58e0952a77e986f62eecce))
 * cdnfly 支持 账号密码登陆授权 ([e87f6d5](https://github.com/certd/certd/commit/e87f6d56f524dbbb9e3243e382b348b6e49f0d2c))
 * k8s ack、tke 支持重启ingress ([95715a0](https://github.com/certd/certd/commit/95715a007d931c64fa7dd953d94957398e00a443))
 ## [1.36.13](https://github.com/certd/certd/compare/v1.36.12...v1.36.13) (2025-07-23)
 ### Bug Fixes
 * 修复阿里云发送短信验证码失败的bug ([2e6d03f](https://github.com/certd/certd/commit/2e6d03ff001f521f57368e7a62b97ed7b122e8d0))
 ### Performance Improvements
 * 阿里云部分插件优化  [@nicheng-he](https://github.com/nicheng-he) ([e3738f6](https://github.com/certd/certd/commit/e3738f6422270d75ec414c15a343248cc4cad6e1))
 ## [1.36.12](https://github.com/certd/certd/compare/v1.36.11...v1.36.12) (2025-07-22)
 ### Bug Fixes
 * 上传到阿里云cas，证书前缀无效的bug ([b382351](https://github.com/certd/certd/commit/b382351c7b91ec10e1f61d94bec5aad075207ec8))
 * 修复自定义插件onlyAdmin报错的bug ([4e5e862](https://github.com/certd/certd/commit/4e5e862f5834ad180e4428959c272d444a6f78ab))
 ### Performance Improvements
 * 部署到k8s，tke，ack忽悠证书校验 ([ab84835](https://github.com/certd/certd/commit/ab848353621869464a2c9a45fdb5e28d998b8a58))
 * 首页增加更新日志按钮 ([41ce848](https://github.com/certd/certd/commit/41ce8489dc2f03a705dfa3fbb357769defb56c60))
 * 增加版本过低提示 ([d1ce360](https://github.com/certd/certd/commit/d1ce36038cab72b5dc1b320d0a708c261ffbdacb))
 ## [1.36.11](https://github.com/certd/certd/compare/v1.36.10...v1.36.11) (2025-07-22)
 ### Bug Fixes
--- a/docs/guide/install/baota/index.md
+++ b/docs/guide/install/baota/index.md
@@ -10,8 +10,7 @@
 * 登录宝塔面板，在菜单栏中点击 Docker，首次进入会提示安装Docker服务，点击立即安装，按提示完成安装
 ### 2、部署certd
-以下两种方式任选一种：
+以下两种方式人选一种：
 #### 2.1 应用商店方式一键部署【推荐】
 * 在宝塔Docker应用商店中找到`certd`（要先点右上角更新应用）
--- a/docs/guide/install/source/index.md
+++ b/docs/guide/install/source/index.md
@@ -4,7 +4,7 @@
 ## 一、源码安装
 ### 环境要求
- nodejs 22 及以上
+- nodejs 20 及以上
 ### 源码启动
 ```shell
 # 克隆代码
@@ -58,18 +58,3 @@ kill -9 $(lsof -t -i:7001)
 ## 四、备份恢复
 将备份的`db.sqlite`及同目录下的其他文件覆盖到原来的位置，重启certd即可
 ## 六、常见问题
 ### 1. npm install better-sqlite3 时，提示node-gyp需要vscode环境编译
 1. 首先确保node版本为22以上
 2. 将下面两行加到  ~/.npmrc 里面
 3. 重新install
 > better_sqlite3_binary_host=https://registry.npmmirror.com/-/binary/better-sqlite3
 > better_sqlite3_binary_host_mirror=https://registry.npmmirror.com/-/binary/better-sqlite3
--- a/docs/guide/qa/index.md
+++ b/docs/guide/qa/index.md
@@ -0,0 +1,73 @@
 # 常见报错解决
 ## 1. getaddrinfo ENOTFOUND错误
 如果出现`getaddrinfo ENOTFOUND`/`getaddrinfo EAI_AGAIN`错误，可以尝试在`docker-compose.yaml`中设置dns
 ```yaml
 version: '3.3' # 兼容旧版docker-compose
 services:
  certd:
    #↓↓↓↓ ------------ # 如果出现getaddrinfo ENOTFOUND 或 EAI_AGAIN错误，可以尝试设置dns
    dns:
      - 223.5.5.5      # 阿里云公共dns
      - 223.6.6.6
 #       # ↓↓↓↓ ------- # 如果你服务器在腾讯云，可以用这个替换上面阿里云的公共dns
 #      - 119.29.29.29  # 腾讯云公共dns
 #      - 182.254.116.116
 #       # ↓↓↓↓ ------- # 如果你服务器部署在国外，可以用这个替换上面阿里云的公共dns
 #      - 8.8.8.8       # 谷歌公共dns
 #      - 8.8.4.4
 ```
 如果仍然有问题,按如下步骤检查是否能够ping通域名
 ```shell
 docker exec -it certd /bin/sh
 ping www.baidu.com
 ping gg.px.certd.handfree.work
 ping app.handfree.work
 ```
 如果您是宝塔部署的
 可以试试将容器网络加入brige网络，看是否解决问题
 ![img.png](images/baota-net.png)
 如果还是不行，请联系我们
 ## 2. 连接IPv6超时
 docker-compose 需要放开IPv6网络的配置
 ```yaml
 services:
  certd:
    networks:
      - ip6net
 #    ↓↓↓↓ -------------------------------------------------------------- 启用ipv6网络，还需要把上面networks的注释放开
 networks:
  ip6net:
    enable_ipv6: true
    ipam:
      config:
        - subnet: 2001:db8::/64
 ```
 ## 3. SSL_CERT_NOT_MATCH_DOMAIN_ERROR
 部署证书任务报类似 `SSL_CERT_NOT_MATCH_DOMAIN_ERROR`错误
 这是由于当前流水线的证书域名与要部署的目标站点的域名不匹配导致的，在申请证书任务中，增加目标站点域名，重新运行流水线即可
 ## 4. 没有服务器配置文件，请检查是否开启了外网映射！
 宝塔网站证书部署报错：`Error: 没有服务器配置文件，请检查是否开启了外网映射！`    
 解决方案：先手动在宝塔网站中设置一次证书    
 ## 5. 如何查看容器日志
 ```shell
 docker logs -f --tail 200 certd
 ```
--- a/docs/guide/qa/use.md
+++ b/docs/guide/qa/use.md
@@ -1,4 +1,4 @@
-# 常见问题
+# 使用问题
 ## 1. 是否支持IP证书
@@ -12,9 +12,3 @@
 当证书到期前35天（创建流水线时可以修改），将会自动重新申请证书，自动部署
 ## 3. too many certificates 错误
 当出现如下报错时，说明相同的域名短时间内申请超过5次
 解决方案：可以加多一个子域名，重新执行就可以规避次错误
 ```
 "detail": too many certificates (5) already issued for this exact set of idantifiers in the last 168hm0s
 ```
--- a/docs/guide/use/cert/images/subdomain1.png
+++ b/docs/guide/use/cert/images/subdomain1.png
--- a/docs/guide/use/cert/images/subdomain2.png
+++ b/docs/guide/use/cert/images/subdomain2.png
--- a/docs/guide/use/cert/subdomain.md
+++ b/docs/guide/use/cert/subdomain.md
@@ -1,10 +0,0 @@
 # 二级子域名托管
 如果你的域名是免费的二级域名（比如：sub.handsfree.work），托管在CF或者阿里云上
 在使用DNS方式校验时需要设置子域名托管
 [阿里云子域名托管说明](https://help.aliyun.com/zh/dns/pubz-subdomain-management)
 ![img.png](./images/subdomain1.png)
 ![img_1.png](./images/subdomain2.png)
--- a/docs/guide/use/comm/payments/alipay.md
+++ b/docs/guide/use/comm/payments/alipay.md
@@ -2,24 +2,19 @@
 ## 配置步骤
-
+1. 创建应用，获取APPID
 1. 注册支付宝商家账号
   * 开通电脑网站支付产品(需营业执照)： https://b.alipay.com/page/product-workspace/all-product
 2. 开放平台，创建应用，获取APPID
   * 登录支付宝开放平台，进入开发者中心，创建网页应用，获取应用的AppId（左上角复制）
   * 开发者中心：https://open.alipay.com/develop/manage
-3. 进入应用详情，选择开发设置，配置接口加签方式 （选择密钥类型）
+2. 进入应用详情，选择开发设置，配置接口加签方式 （选择密钥类型）
   * 参考文档：https://opendocs.alipay.com/common/02kdnc?pathHash=fb0c752a
   * 此步骤完成后，可以获取应用的私钥、支付宝公钥。     
   * 注意：支付宝不会保存应用的私钥，你需要自己保管好私钥。
-4. 在Certd后台配置支付宝 
+3. 在Certd后台配置支付宝 
   * 进入“系统”->"设置"->“支付设置”
   * 启用支付宝，选择“支付宝配置”，点击添加
--- a/docs/guide/use/tencent/images/opaque.png
+++ b/docs/guide/use/tencent/images/opaque.png
--- a/docs/guide/use/tencent/images/tcpssl.png
+++ b/docs/guide/use/tencent/images/tcpssl.png
--- a/docs/guide/use/tencent/index.md
+++ b/docs/guide/use/tencent/index.md
@@ -8,11 +8,8 @@
 ![](./tencent-access.png)
 ## 如何避免收到腾讯云证书过期邮件
 > 新版本已经自动将证书设置为免提醒，certd上传的证书后续都不会再提醒了。
 腾讯云在证书有效期还剩28天时会发送过期通知邮件    
 您可以通过配置“腾讯云过期证书删除”任务来避免收到此类邮件。
@@ -22,16 +19,3 @@
 > 1. 选择腾讯云授权，需授权`服务角色SSL_QCSLinkedRoleInReplaceLoadCertificate`权限
 > 2. `1.26.14`版本之前Certd创建的证书流水线默认是到期前20天才更新证书，需要将之前创建的证书申请任务的更新天数修改为35天，保证删除之前就已经替换掉即将过期证书
 ![](./images/delete2.png)
 ## TKE service 的 TCP_SSL Opaque类型证书授权
 部署证书到腾讯云TKE，如果报以下错误：     
 `is forbidden: User "xxxxxx-xxxxx" cannot get resource "secrets" in API group "" in the namespace "default"'`     
 则需要单独从授权管理侧再授权子用户的权限
 ![](./images/tcpssl.png)
 ![](./images/opaque.png)
--- a/lerna.json
+++ b/lerna.json
@@ -9,5 +9,5 @@
    }
  },
  "npmClient": "pnpm",
-  "version": "1.36.19"
+  "version": "1.36.11"
 }
--- a/package.json
+++ b/package.json
@@ -14,7 +14,6 @@
  },
  "scripts": {
    "start": "lerna bootstrap --hoist",
    "start:server": "cd ./packages/ui/certd-server && npm start",
    "devb": "lerna run dev-build",
    "i-all": "lerna link && lerna exec npm install  ",
    "publish": "npm run prepublishOnly2  && lerna publish --force-publish=pro/plus-core --conventional-commits --create-release github && npm run afterpublishOnly && npm run commitAll",
@@ -31,7 +30,7 @@
    "init": "lerna run build",
    "init:dev": "lerna run build",
    "docs:dev": "vitepress dev docs",
-    "docs:build": "npm run copylogs && vitepress build docs",
+    "docs:build": "vitepress build docs",
    "docs:preview": "vitepress preview docs",
    "pub": "echo 1"
  },
--- a/packages/core/acme-client/.editorconfig
+++ b/packages/core/acme-client/.editorconfig
@@ -6,7 +6,7 @@ root = true
 [*]
 indent_style = space
-indent_size = 2
+indent_size = 4
 trim_trailing_whitespace = true
 [{*.yml,*.yaml}]
--- a/packages/core/acme-client/CHANGELOG.md
+++ b/packages/core/acme-client/CHANGELOG.md
@@ -3,42 +3,6 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 ## [1.36.19](https://github.com/publishlab/node-acme-client/compare/v1.36.18...v1.36.19) (2025-09-05)
 ### Performance Improvements
 * 支持ssl.com证书颁发机构 ([27b6dfa](https://github.com/publishlab/node-acme-client/commit/27b6dfa4d2ab3bddd284c3a34511a72e1a513a4c))
 ## [1.36.18](https://github.com/publishlab/node-acme-client/compare/v1.36.17...v1.36.18) (2025-08-28)
 **Note:** Version bump only for package @certd/acme-client
 ## [1.36.17](https://github.com/publishlab/node-acme-client/compare/v1.36.16...v1.36.17) (2025-08-17)
 **Note:** Version bump only for package @certd/acme-client
 ## [1.36.16](https://github.com/publishlab/node-acme-client/compare/v1.36.15...v1.36.16) (2025-08-16)
 ### Performance Improvements
 * 部署到百度cdn支持自动获取域名列表选择 ([4e432ed](https://github.com/publishlab/node-acme-client/commit/4e432ed03f4fb564e85a2f284ee26b58400b82f5))
 ## [1.36.15](https://github.com/publishlab/node-acme-client/compare/v1.36.14...v1.36.15) (2025-08-07)
 **Note:** Version bump only for package @certd/acme-client
 ## [1.36.14](https://github.com/publishlab/node-acme-client/compare/v1.36.13...v1.36.14) (2025-07-28)
 **Note:** Version bump only for package @certd/acme-client
 ## [1.36.13](https://github.com/publishlab/node-acme-client/compare/v1.36.12...v1.36.13) (2025-07-23)
 **Note:** Version bump only for package @certd/acme-client
 ## [1.36.12](https://github.com/publishlab/node-acme-client/compare/v1.36.11...v1.36.12) (2025-07-22)
 **Note:** Version bump only for package @certd/acme-client
 ## [1.36.11](https://github.com/publishlab/node-acme-client/compare/v1.36.10...v1.36.11) (2025-07-22)
 **Note:** Version bump only for package @certd/acme-client
--- a/packages/core/acme-client/package.json
+++ b/packages/core/acme-client/package.json
@@ -3,7 +3,7 @@
    "description": "Simple and unopinionated ACME client",
    "private": false,
    "author": "nmorsman",
-    "version": "1.36.19",
+    "version": "1.36.11",
    "type": "module",
    "module": "scr/index.js",
    "main": "src/index.js",
@@ -18,7 +18,7 @@
        "types"
    ],
    "dependencies": {
-        "@certd/basic": "^1.36.19",
+        "@certd/basic": "^1.36.11",
        "@peculiar/x509": "^1.11.0",
        "asn1js": "^3.0.5",
        "axios": "^1.7.2",
@@ -69,5 +69,5 @@
    "bugs": {
        "url": "https://github.com/publishlab/node-acme-client/issues"
    },
-    "gitHead": "6d8981479517b5de9634e242c1ebf22e70527ec4"
+    "gitHead": "7f9c4e52ac5c3837b251d3b2508457ce802e11cb"
 }
--- a/packages/core/acme-client/src/index.js
+++ b/packages/core/acme-client/src/index.js
@@ -25,10 +25,6 @@ export const directory = {
        staging: 'https://acme.zerossl.com/v2/DV90',
        production: 'https://acme.zerossl.com/v2/DV90',
    },
    sslcom:{
      staging: 'https://acme.ssl.com/sslcom-dv-rsa',
      production: 'https://acme.ssl.com/sslcom-dv-rsa',
    }
 };
 /**
--- a/packages/core/basic/CHANGELOG.md
+++ b/packages/core/basic/CHANGELOG.md
@@ -3,44 +3,6 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 ## [1.36.19](https://github.com/certd/certd/compare/v1.36.18...v1.36.19) (2025-09-05)
 ### Bug Fixes
 * 修复批量流水线执行时日志显示错乱的问题 ([4372adc](https://github.com/certd/certd/commit/4372adc703b9a4c785664054ab2a533626d815a8))
 ### Performance Improvements
 * 去掉宝塔url后面的斜杠 ([8a0c2b9](https://github.com/certd/certd/commit/8a0c2b9b13628da750c25757e0cb8ed3038775ba))
 ## [1.36.18](https://github.com/certd/certd/compare/v1.36.17...v1.36.18) (2025-08-28)
 **Note:** Version bump only for package @certd/basic
 ## [1.36.17](https://github.com/certd/certd/compare/v1.36.16...v1.36.17) (2025-08-17)
 **Note:** Version bump only for package @certd/basic
 ## [1.36.16](https://github.com/certd/certd/compare/v1.36.15...v1.36.16) (2025-08-16)
 **Note:** Version bump only for package @certd/basic
 ## [1.36.15](https://github.com/certd/certd/compare/v1.36.14...v1.36.15) (2025-08-07)
 **Note:** Version bump only for package @certd/basic
 ## [1.36.14](https://github.com/certd/certd/compare/v1.36.13...v1.36.14) (2025-07-28)
 **Note:** Version bump only for package @certd/basic
 ## [1.36.13](https://github.com/certd/certd/compare/v1.36.12...v1.36.13) (2025-07-23)
 **Note:** Version bump only for package @certd/basic
 ## [1.36.12](https://github.com/certd/certd/compare/v1.36.11...v1.36.12) (2025-07-22)
 **Note:** Version bump only for package @certd/basic
 ## [1.36.11](https://github.com/certd/certd/compare/v1.36.10...v1.36.11) (2025-07-22)
 **Note:** Version bump only for package @certd/basic
--- a/packages/core/basic/build.md
+++ b/packages/core/basic/build.md
@@ -1 +1 @@
-00:30
+12:23
--- a/packages/core/basic/package.json
+++ b/packages/core/basic/package.json
@@ -1,7 +1,7 @@
 {
  "name": "@certd/basic",
  "private": false,
-  "version": "1.36.19",
+  "version": "1.36.11",
  "type": "module",
  "main": "./dist/index.js",
  "module": "./dist/index.js",
@@ -45,5 +45,5 @@
    "tslib": "^2.8.1",
    "typescript": "^5.4.2"
  },
-  "gitHead": "6d8981479517b5de9634e242c1ebf22e70527ec4"
+  "gitHead": "7f9c4e52ac5c3837b251d3b2508457ce802e11cb"
 }
--- a/packages/core/basic/src/utils/util.log.ts
+++ b/packages/core/basic/src/utils/util.log.ts
@@ -1,4 +1,22 @@
-import log4js, { CallStack, Level } from "log4js";
+import log4js, { LoggingEvent, Logger } from "log4js";
 const OutputAppender = {
  configure: (config: any, layouts: any, findAppender: any, levels: any) => {
    let layout = layouts.basicLayout;
    if (config.layout) {
      layout = layouts.layout(config.layout.type, config.layout);
    }
    function customAppender(layout: any, timezoneOffset: any) {
      return (loggingEvent: LoggingEvent) => {
        if (loggingEvent.context.outputHandler?.write) {
          const text = `${layout(loggingEvent, timezoneOffset)}\n`;
          loggingEvent.context.outputHandler.write(text);
        }
      };
    }
    return customAppender(layout, config.timezoneOffset);
  },
 };
 let logFilePath = "./logs/app.log";
 export function resetLogConfigure() {
@@ -6,6 +24,7 @@ export function resetLogConfigure() {
  log4js.configure({
    appenders: {
      std: { type: "stdout" },
      output: { type: OutputAppender },
      file: {
        type: "dateFile",
        filename: logFilePath,
@@ -14,7 +33,7 @@ export function resetLogConfigure() {
        numBackups: 3,
      },
    },
-    categories: { default: { appenders: ["std", "file"], level: "info" }, pipeline: { appenders: ["std", "file"], level: "info" } },
+    categories: { default: { appenders: ["std", "file"], level: "info" }, pipeline: { appenders: ["std", "file", "output"], level: "info" } },
  });
 }
 resetLogConfigure();
@@ -25,98 +44,15 @@ export function resetLogFilePath(filePath: string) {
  resetLogConfigure();
 }
 export function buildLogger(write: (text: string) => void) {
-  return new PipelineLogger("pipeline", write);
+  const logger = log4js.getLogger("pipeline");
-}
+  const _secrets: string[] = [];
-
+  //@ts-ignore
-export type ILogger = {
+  logger.addSecret = (secret: string) => {
-  readonly category: string;
+    _secrets.push(secret);
-  level: Level | string;
+  };
-  log(level: Level | string, ...args: any[]): void;
+  logger.addContext("outputHandler", {
-
+    write: (text: string) => {
-  isLevelEnabled(level?: string): boolean;
+      for (const item of _secrets) {
  isTraceEnabled(): boolean;
  isDebugEnabled(): boolean;
  isInfoEnabled(): boolean;
  isWarnEnabled(): boolean;
  isErrorEnabled(): boolean;
  isFatalEnabled(): boolean;
  _log(level: Level, data: any): void;
  addContext(key: string, value: any): void;
  removeContext(key: string): void;
  clearContext(): void;
  /**
   * Replace the basic parse function with a new custom one
   * - Note that linesToSkip will be based on the origin of the Error object in addition to the callStackLinesToSkip (at least 1)
   * @param parseFunction the new parseFunction. Use `undefined` to reset to the base implementation
   */
  setParseCallStackFunction(parseFunction: (error: Error, linesToSkip: number) => CallStack | undefined): void;
  /**
   * Adjust the value of linesToSkip when the parseFunction is called.
   *
   * Cannot be less than 0.
   */
  callStackLinesToSkip: number;
  trace(message: any, ...args: any[]): void;
  debug(message: any, ...args: any[]): void;
  info(message: any, ...args: any[]): void;
  warn(message: any, ...args: any[]): void;
  error(message: any, ...args: any[]): void;
  fatal(message: any, ...args: any[]): void;
  mark(message: any, ...args: any[]): void;
 };
 const locale = Intl.DateTimeFormat().resolvedOptions().locale;
 const formatter = new Intl.DateTimeFormat(locale, {
  year: "numeric",
  month: "2-digit",
  day: "2-digit",
  hour: "2-digit",
  minute: "2-digit",
  second: "2-digit",
  hour12: false,
 });
 function formatDateIntl(date = new Date()) {
  const milliseconds = date.getMilliseconds(); // 获取毫秒
  const formattedMilliseconds = milliseconds.toString().padStart(3, "0");
  return formatter.format(date) + "." + formattedMilliseconds;
 }
 // @ts-ignore
 export class PipelineLogger implements ILogger {
  callStackLinesToSkip: number = 3;
  readonly category: string = "pipeline";
  level: Level | string = "info";
  _secrets: string[] = [];
  logger: ILogger;
  customWriter!: (text: string) => void;
  constructor(name: string, write: (text: string) => void) {
    this.customWriter = write;
    this.logger = log4js.getLogger(name);
  }
  addSecret(secret: string) {
    this._secrets.push(secret);
  }
  _doLog(level: string, ...args: any[]) {
    let text = args.join(" ");
    if (this.customWriter) {
      for (const item of this._secrets) {
        if (item == null) {
          continue;
        }
@@ -130,88 +66,10 @@ export class PipelineLogger implements ILogger {
          text = text.replaceAll(item, "*".repeat(item.length));
        }
      }
-      text = `[${formatDateIntl()}] [${level.toUpperCase()}] - ${text} \n`;
+      write(text);
-      this.customWriter(text);
+    },
-    }
+  });
-    // @ts-ignore
+  return logger;
    this.logger[level](...args);
  }
  _log(level: Level, data: any): void {}
  addContext(key: string, value: any): void {}
  clearContext(): void {}
  debug(message: any, ...args: any[]): void {
    if (this.isDebugEnabled()) {
      this._doLog("debug", message, ...args);
    }
  }
  error(message: any, ...args: any[]): void {
    if (this.isErrorEnabled()) {
      this._doLog("error", message, ...args);
    }
  }
  fatal(message: any, ...args: any[]): void {
    if (this.isFatalEnabled()) {
      this._doLog("fatal", message, ...args);
    }
  }
  info(message: any, ...args: any[]): void {
    if (this.isInfoEnabled()) {
      this._doLog("info", message, ...args);
    }
  }
  trace(message: any, ...args: any[]): void {
    if (this.isTraceEnabled()) {
      this._doLog("trace", message, ...args);
    }
  }
  warn(message: any, ...args: any[]): void {
    if (this.isWarnEnabled()) {
      this._doLog("warn", message, ...args);
    }
  }
  isDebugEnabled(): boolean {
    return logger.isDebugEnabled();
  }
  isErrorEnabled(): boolean {
    return logger.isErrorEnabled();
  }
  isFatalEnabled(): boolean {
    return logger.isFatalEnabled();
  }
  isInfoEnabled(): boolean {
    return logger.isInfoEnabled();
  }
  isLevelEnabled(level?: string): boolean {
    return logger.isLevelEnabled();
  }
  isTraceEnabled(): boolean {
    return logger.isTraceEnabled();
  }
  isWarnEnabled(): boolean {
    return logger.isWarnEnabled();
  }
  log(level: Level | string, ...args: any[]): void {}
  mark(message: any, ...args: any[]): void {}
  removeContext(key: string): void {}
  setParseCallStackFunction(parseFunction: (error: Error, linesToSkip: number) => CallStack | undefined): void {}
 }
 export type ILogger = Logger;
--- a/packages/core/basic/src/utils/util.request.ts
+++ b/packages/core/basic/src/utils/util.request.ts
@@ -1,5 +1,6 @@
 import axios, { AxiosHeaders, AxiosRequestConfig } from "axios";
 import { ILogger, logger } from "./util.log.js";
 import { Logger } from "log4js";
 import { HttpProxyAgent } from "http-proxy-agent";
 import { HttpsProxyAgent } from "https-proxy-agent";
 import nodeHttp from "http";
@@ -83,7 +84,7 @@ export function getGlobalAgents() {
 /**
 * @description 创建请求实例
 */
-export function createAxiosService({ logger }: { logger: ILogger }) {
+export function createAxiosService({ logger }: { logger: Logger }) {
  // 创建一个 axios 实例
  const service = axios.create();
--- a/packages/core/pipeline/CHANGELOG.md
+++ b/packages/core/pipeline/CHANGELOG.md
@@ -3,50 +3,6 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 ## [1.36.19](https://github.com/certd/certd/compare/v1.36.18...v1.36.19) (2025-09-05)
 ### Bug Fixes
 * 前置任务输出不存在时输出警告提示 ([b59052c](https://github.com/certd/certd/commit/b59052cc43b7b070fabd8b8e914e4c2a5e0ad61c))
 ### Performance Improvements
 * 支持godaddy ([b7980aa](https://github.com/certd/certd/commit/b7980aad5ab50f58662eaddf5d84aa82876a98eb))
 * 支持ssl.com证书颁发机构 ([27b6dfa](https://github.com/certd/certd/commit/27b6dfa4d2ab3bddd284c3a34511a72e1a513a4c))
 ## [1.36.18](https://github.com/certd/certd/compare/v1.36.17...v1.36.18) (2025-08-28)
 **Note:** Version bump only for package @certd/pipeline
 ## [1.36.17](https://github.com/certd/certd/compare/v1.36.16...v1.36.17) (2025-08-17)
 **Note:** Version bump only for package @certd/pipeline
 ## [1.36.16](https://github.com/certd/certd/compare/v1.36.15...v1.36.16) (2025-08-16)
 ### Performance Improvements
 * 百度云支持上传到证书托管，支持部署到负载均衡 ([798a48a](https://github.com/certd/certd/commit/798a48aa9686fd5d11cfffb6cd93eadfc40aacb3))
 * 支持部署到金山云CDN ([dfa74a6](https://github.com/certd/certd/commit/dfa74a69f7cbb9009d3e20c7eecfa1b905a00cf0))
 ## [1.36.15](https://github.com/certd/certd/compare/v1.36.14...v1.36.15) (2025-08-07)
 **Note:** Version bump only for package @certd/pipeline
 ## [1.36.14](https://github.com/certd/certd/compare/v1.36.13...v1.36.14) (2025-07-28)
 **Note:** Version bump only for package @certd/pipeline
 ## [1.36.13](https://github.com/certd/certd/compare/v1.36.12...v1.36.13) (2025-07-23)
 **Note:** Version bump only for package @certd/pipeline
 ## [1.36.12](https://github.com/certd/certd/compare/v1.36.11...v1.36.12) (2025-07-22)
 ### Bug Fixes
 * 修复自定义插件onlyAdmin报错的bug ([4e5e862](https://github.com/certd/certd/commit/4e5e862f5834ad180e4428959c272d444a6f78ab))
 ## [1.36.11](https://github.com/certd/certd/compare/v1.36.10...v1.36.11) (2025-07-22)
 ### Bug Fixes
--- a/packages/core/pipeline/package.json
+++ b/packages/core/pipeline/package.json
@@ -1,7 +1,7 @@
 {
  "name": "@certd/pipeline",
  "private": false,
-  "version": "1.36.19",
+  "version": "1.36.11",
  "type": "module",
  "main": "./dist/index.js",
  "module": "./dist/index.js",
@@ -17,8 +17,8 @@
    "pub": "npm publish"
  },
  "dependencies": {
-    "@certd/basic": "^1.36.19",
+    "@certd/basic": "^1.36.11",
-    "@certd/plus-core": "^1.36.19",
+    "@certd/plus-core": "^1.36.11",
    "dayjs": "^1.11.7",
    "lodash-es": "^4.17.21",
    "reflect-metadata": "^0.1.13"
@@ -44,5 +44,5 @@
    "tslib": "^2.8.1",
    "typescript": "^5.4.2"
  },
-  "gitHead": "6d8981479517b5de9634e242c1ebf22e70527ec4"
+  "gitHead": "7f9c4e52ac5c3837b251d3b2508457ce802e11cb"
 }
--- a/packages/core/pipeline/src/context/index.ts
+++ b/packages/core/pipeline/src/context/index.ts
@@ -11,6 +11,7 @@ export type PageSearch = {
  // sortOrder?: "asc" | "desc";
 };
 export type PageRes = {
  pageNo?: number;
  pageSize?: number;
@@ -21,9 +22,9 @@ export type PageRes = {
 export class Pager {
  pageNo: number;
  pageSize: number;
-  constructor(req?: PageSearch) {
+  constructor(req: PageSearch) {
-    this.pageNo = req?.pageNo ?? 1;
+    this.pageNo = req.pageNo ?? 1;
-    this.pageSize = req?.pageSize || 50;
+    this.pageSize = req.pageSize || 50;
  }
  getOffset() {
--- a/packages/core/pipeline/src/core/executor.ts
+++ b/packages/core/pipeline/src/core/executor.ts
@@ -314,7 +314,7 @@ export class Executor {
          const outputKey = arr[2];
          input[key] = this.currentStatusMap.get(id)?.status?.output[outputKey] ?? this.lastStatusMap.get(id)?.status?.output[outputKey];
          if (input[key] == null) {
-            currentLogger.warn(`${item.title}的配置未找到对应的输出值，请确认对应的前置任务是否存在或者是否执行正确`);
+            this.logger.warn(`${item.title}的配置未找到对应的输出值，请确认对应的前置任务是否存在或者是否执行正确`);
          }
        }
      }
--- a/packages/core/pipeline/src/plugin/api.ts
+++ b/packages/core/pipeline/src/plugin/api.ts
@@ -165,7 +165,7 @@ export abstract class AbstractTaskPlugin implements ITaskPlugin {
      this.registerSecret(cert.one);
    }
-    if (this.ctx?.define?.onlyAdmin) {
+    if (this.ctx.define.onlyAdmin) {
      if (!this.isAdmin()) {
        throw new Error("只有管理员才能运行此任务");
      }
@@ -253,9 +253,9 @@ export abstract class AbstractTaskPlugin implements ITaskPlugin {
    return name + "_" + dayjs().format("YYYYMMDDHHmmssSSS");
  }
-  buildCertName(domain: string, prefix = "") {
+  buildCertName(domain: string) {
    domain = domain.replaceAll("*", "_").replaceAll(".", "_");
-    return `${prefix}_${domain}_${dayjs().format("YYYYMMDDHHmmssSSS")}`;
+    return `${domain}_${dayjs().format("YYYYMMDDHHmmssSSS")}`;
  }
  async onRequest(req: PluginRequestHandleReq<any>) {
--- a/packages/core/pipeline/src/plugin/group.ts
+++ b/packages/core/pipeline/src/plugin/group.ts
@@ -27,7 +27,6 @@ export const pluginGroups = {
  tencent: new PluginGroup("tencent", "腾讯云", 4, "svg:icon-tencentcloud"),
  volcengine: new PluginGroup("volcengine", "火山引擎", 4, "svg:icon-volcengine"),
  jdcloud: new PluginGroup("jdcloud", "京东云", 4, "svg:icon-jdcloud"),
  baidu: new PluginGroup("baidu", "百度云", 4, "ant-design:baidu-outlined"),
  qiniu: new PluginGroup("qiniu", "七牛云", 5, "svg:icon-qiniuyun"),
  aws: new PluginGroup("aws", "亚马逊云", 6, "svg:icon-aws"),
  other: new PluginGroup("other", "其他", 10, "clarity:plugin-line"),
--- a/packages/core/pipeline/src/registry/registry.ts
+++ b/packages/core/pipeline/src/registry/registry.ts
@@ -69,15 +69,9 @@ export class Registry<T = any> {
    return this.storage;
  }
-  getDefineList(prefix?: string) {
+  getDefineList() {
    let list = [];
    if (prefix) {
      prefix = prefix + ":";
    }
    for (const key in this.storage) {
      if (prefix && !key.startsWith(prefix)) {
        continue;
      }
      const define = this.getDefine(key);
      if (define) {
        if (define?.deprecated) {
@@ -96,10 +90,7 @@ export class Registry<T = any> {
    return list;
  }
-  getDefine(key: string, prefix?: string) {
+  getDefine(key: string) {
    if (prefix) {
      key = prefix + ":" + key;
    }
    const item = this.storage[key];
    if (!item) {
      return;
--- a/packages/libs/lib-huawei/CHANGELOG.md
+++ b/packages/libs/lib-huawei/CHANGELOG.md
@@ -3,38 +3,6 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 ## [1.36.19](https://github.com/certd/certd/compare/v1.36.18...v1.36.19) (2025-09-05)
 **Note:** Version bump only for package @certd/lib-huawei
 ## [1.36.18](https://github.com/certd/certd/compare/v1.36.17...v1.36.18) (2025-08-28)
 **Note:** Version bump only for package @certd/lib-huawei
 ## [1.36.17](https://github.com/certd/certd/compare/v1.36.16...v1.36.17) (2025-08-17)
 **Note:** Version bump only for package @certd/lib-huawei
 ## [1.36.16](https://github.com/certd/certd/compare/v1.36.15...v1.36.16) (2025-08-16)
 **Note:** Version bump only for package @certd/lib-huawei
 ## [1.36.15](https://github.com/certd/certd/compare/v1.36.14...v1.36.15) (2025-08-07)
 **Note:** Version bump only for package @certd/lib-huawei
 ## [1.36.14](https://github.com/certd/certd/compare/v1.36.13...v1.36.14) (2025-07-28)
 **Note:** Version bump only for package @certd/lib-huawei
 ## [1.36.13](https://github.com/certd/certd/compare/v1.36.12...v1.36.13) (2025-07-23)
 **Note:** Version bump only for package @certd/lib-huawei
 ## [1.36.12](https://github.com/certd/certd/compare/v1.36.11...v1.36.12) (2025-07-22)
 **Note:** Version bump only for package @certd/lib-huawei
 ## [1.36.11](https://github.com/certd/certd/compare/v1.36.10...v1.36.11) (2025-07-22)
 **Note:** Version bump only for package @certd/lib-huawei
--- a/packages/libs/lib-huawei/package.json
+++ b/packages/libs/lib-huawei/package.json
@@ -1,7 +1,7 @@
 {
  "name": "@certd/lib-huawei",
  "private": false,
-  "version": "1.36.19",
+  "version": "1.36.11",
  "main": "./dist/bundle.js",
  "module": "./dist/bundle.js",
  "types": "./dist/d/index.d.ts",
@@ -24,5 +24,5 @@
    "prettier": "^2.8.8",
    "tslib": "^2.8.1"
  },
-  "gitHead": "6d8981479517b5de9634e242c1ebf22e70527ec4"
+  "gitHead": "7f9c4e52ac5c3837b251d3b2508457ce802e11cb"
 }
--- a/packages/libs/lib-iframe/CHANGELOG.md
+++ b/packages/libs/lib-iframe/CHANGELOG.md
@@ -3,38 +3,6 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 ## [1.36.19](https://github.com/certd/certd/compare/v1.36.18...v1.36.19) (2025-09-05)
 **Note:** Version bump only for package @certd/lib-iframe
 ## [1.36.18](https://github.com/certd/certd/compare/v1.36.17...v1.36.18) (2025-08-28)
 **Note:** Version bump only for package @certd/lib-iframe
 ## [1.36.17](https://github.com/certd/certd/compare/v1.36.16...v1.36.17) (2025-08-17)
 **Note:** Version bump only for package @certd/lib-iframe
 ## [1.36.16](https://github.com/certd/certd/compare/v1.36.15...v1.36.16) (2025-08-16)
 **Note:** Version bump only for package @certd/lib-iframe
 ## [1.36.15](https://github.com/certd/certd/compare/v1.36.14...v1.36.15) (2025-08-07)
 **Note:** Version bump only for package @certd/lib-iframe
 ## [1.36.14](https://github.com/certd/certd/compare/v1.36.13...v1.36.14) (2025-07-28)
 **Note:** Version bump only for package @certd/lib-iframe
 ## [1.36.13](https://github.com/certd/certd/compare/v1.36.12...v1.36.13) (2025-07-23)
 **Note:** Version bump only for package @certd/lib-iframe
 ## [1.36.12](https://github.com/certd/certd/compare/v1.36.11...v1.36.12) (2025-07-22)
 **Note:** Version bump only for package @certd/lib-iframe
 ## [1.36.11](https://github.com/certd/certd/compare/v1.36.10...v1.36.11) (2025-07-22)
 **Note:** Version bump only for package @certd/lib-iframe
--- a/packages/libs/lib-iframe/package.json
+++ b/packages/libs/lib-iframe/package.json
@@ -1,7 +1,7 @@
 {
  "name": "@certd/lib-iframe",
  "private": false,
-  "version": "1.36.19",
+  "version": "1.36.11",
  "type": "module",
  "main": "./dist/index.js",
  "module": "./dist/index.js",
@@ -31,5 +31,5 @@
    "tslib": "^2.8.1",
    "typescript": "^5.4.2"
  },
-  "gitHead": "6d8981479517b5de9634e242c1ebf22e70527ec4"
+  "gitHead": "7f9c4e52ac5c3837b251d3b2508457ce802e11cb"
 }
--- a/packages/libs/lib-jdcloud/CHANGELOG.md
+++ b/packages/libs/lib-jdcloud/CHANGELOG.md
@@ -3,38 +3,6 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 ## [1.36.19](https://github.com/certd/certd/compare/v1.36.18...v1.36.19) (2025-09-05)
 **Note:** Version bump only for package @certd/jdcloud
 ## [1.36.18](https://github.com/certd/certd/compare/v1.36.17...v1.36.18) (2025-08-28)
 **Note:** Version bump only for package @certd/jdcloud
 ## [1.36.17](https://github.com/certd/certd/compare/v1.36.16...v1.36.17) (2025-08-17)
 **Note:** Version bump only for package @certd/jdcloud
 ## [1.36.16](https://github.com/certd/certd/compare/v1.36.15...v1.36.16) (2025-08-16)
 **Note:** Version bump only for package @certd/jdcloud
 ## [1.36.15](https://github.com/certd/certd/compare/v1.36.14...v1.36.15) (2025-08-07)
 **Note:** Version bump only for package @certd/jdcloud
 ## [1.36.14](https://github.com/certd/certd/compare/v1.36.13...v1.36.14) (2025-07-28)
 **Note:** Version bump only for package @certd/jdcloud
 ## [1.36.13](https://github.com/certd/certd/compare/v1.36.12...v1.36.13) (2025-07-23)
 **Note:** Version bump only for package @certd/jdcloud
 ## [1.36.12](https://github.com/certd/certd/compare/v1.36.11...v1.36.12) (2025-07-22)
 **Note:** Version bump only for package @certd/jdcloud
 ## [1.36.11](https://github.com/certd/certd/compare/v1.36.10...v1.36.11) (2025-07-22)
 **Note:** Version bump only for package @certd/jdcloud
--- a/packages/libs/lib-jdcloud/package.json
+++ b/packages/libs/lib-jdcloud/package.json
@@ -1,6 +1,6 @@
 {
  "name": "@certd/jdcloud",
-  "version": "1.36.19",
+  "version": "1.36.11",
  "description": "jdcloud openApi sdk",
  "main": "./dist/bundle.js",
  "module": "./dist/bundle.js",
@@ -61,5 +61,5 @@
      "fetch"
    ]
  },
-  "gitHead": "6d8981479517b5de9634e242c1ebf22e70527ec4"
+  "gitHead": "7f9c4e52ac5c3837b251d3b2508457ce802e11cb"
 }
--- a/packages/libs/lib-k8s/CHANGELOG.md
+++ b/packages/libs/lib-k8s/CHANGELOG.md
@@ -3,50 +3,6 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 ## [1.36.19](https://github.com/certd/certd/compare/v1.36.18...v1.36.19) (2025-09-05)
 ### Bug Fixes
 * 修复远程数据选择无法过滤的bug ([6cbb073](https://github.com/certd/certd/commit/6cbb0739f8428d51b0712f718fe4d236cc087cf9))
 ### Performance Improvements
 * 创建k8s secret 时设置type为tls ([79ebabf](https://github.com/certd/certd/commit/79ebabfcfb9e5a534049c84f5f1a642b357fc856))
 ## [1.36.18](https://github.com/certd/certd/compare/v1.36.17...v1.36.18) (2025-08-28)
 ### Performance Improvements
 * 部署到k8s支持自动创建secret ([c09c962](https://github.com/certd/certd/commit/c09c962cb676ca261610aa9f3e5105c9dae43f43))
 ## [1.36.17](https://github.com/certd/certd/compare/v1.36.16...v1.36.17) (2025-08-17)
 **Note:** Version bump only for package @certd/lib-k8s
 ## [1.36.16](https://github.com/certd/certd/compare/v1.36.15...v1.36.16) (2025-08-16)
 **Note:** Version bump only for package @certd/lib-k8s
 ## [1.36.15](https://github.com/certd/certd/compare/v1.36.14...v1.36.15) (2025-08-07)
 **Note:** Version bump only for package @certd/lib-k8s
 ## [1.36.14](https://github.com/certd/certd/compare/v1.36.13...v1.36.14) (2025-07-28)
 ### Performance Improvements
 * k8s ack、tke 支持重启ingress ([95715a0](https://github.com/certd/certd/commit/95715a007d931c64fa7dd953d94957398e00a443))
 ## [1.36.13](https://github.com/certd/certd/compare/v1.36.12...v1.36.13) (2025-07-23)
 **Note:** Version bump only for package @certd/lib-k8s
 ## [1.36.12](https://github.com/certd/certd/compare/v1.36.11...v1.36.12) (2025-07-22)
 ### Performance Improvements
 * 部署到k8s，tke，ack忽悠证书校验 ([ab84835](https://github.com/certd/certd/commit/ab848353621869464a2c9a45fdb5e28d998b8a58))
 ## [1.36.11](https://github.com/certd/certd/compare/v1.36.10...v1.36.11) (2025-07-22)
 **Note:** Version bump only for package @certd/lib-k8s
--- a/packages/libs/lib-k8s/package.json
+++ b/packages/libs/lib-k8s/package.json
@@ -1,7 +1,7 @@
 {
  "name": "@certd/lib-k8s",
  "private": false,
-  "version": "1.36.19",
+  "version": "1.36.11",
  "type": "module",
  "main": "./dist/index.js",
  "module": "./dist/index.js",
@@ -17,7 +17,7 @@
    "pub": "npm publish"
  },
  "dependencies": {
-    "@certd/basic": "^1.36.19",
+    "@certd/basic": "^1.36.11",
    "@kubernetes/client-node": "0.21.0"
  },
  "devDependencies": {
@@ -32,5 +32,5 @@
    "tslib": "^2.8.1",
    "typescript": "^5.4.2"
  },
-  "gitHead": "6d8981479517b5de9634e242c1ebf22e70527ec4"
+  "gitHead": "7f9c4e52ac5c3837b251d3b2508457ce802e11cb"
 }
--- a/packages/libs/lib-k8s/src/lib/k8s.client.ts
+++ b/packages/libs/lib-k8s/src/lib/k8s.client.ts
@@ -1,7 +1,7 @@
 import { CoreV1Api, KubeConfig, NetworkingV1Api, V1Ingress, V1Secret } from "@kubernetes/client-node";
 import dns from "dns";
 import { ILogger } from "@certd/basic";
-import { merge } from "lodash-es";
+import _ from "lodash-es";
 export type K8sClientOpts = {
  kubeConfigStr: string;
@@ -85,11 +85,12 @@ export class K8sClient {
  /**
   * 创建Secret
   * @param opts {namespace:default, body:yamlStr}
   * @returns {Promise<*>}
   */
  async createSecret(opts: { namespace: string; body: V1Secret }) {
    const namespace = opts.namespace || "default";
    const created = await this.client.createNamespacedSecret(namespace, opts.body);
-    this.logger.info("new secrets:", opts.body.metadata);
+    this.logger.info("new secrets:", opts.body);
    return created.body;
  }
@@ -102,39 +103,17 @@ export class K8sClient {
  //   return await this.client.replaceNamespacedSecret(secretName, namespace, opts.body);
  // }
-  async patchSecret(opts: { namespace: string; secretName: string; body: V1Secret; createOnNotFound?: boolean }) {
+  async patchSecret(opts: { namespace: string; secretName: string; body: V1Secret }) {
    const namespace = opts.namespace || "default";
    const secretName = opts.secretName;
    if (secretName == null) {
      throw new Error("secretName 不能为空");
    }
    this.logger.info("patch secret:", secretName, namespace);
-    let oldSecret: any = null;
+    const oldSecret = await this.client.readNamespacedSecret(secretName, namespace);
-    try {
+    const newSecret = _.merge(oldSecret.body, opts.body);
      oldSecret = await this.client.readNamespacedSecret(secretName, namespace);
    } catch (e) {
      //@ts-ignore
      if (e.response?.body?.code === 404) {
        this.logger.warn(`secret ${secretName} 不存在`);
        if (opts.createOnNotFound) {
          //没有找到，则创建
          const body = merge(
            {
              type: "kubernetes.io/tls",
            },
            opts.body
          );
          const res = await this.createSecret({ namespace, body });
          this.logger.info(`secret ${secretName} 已创建`);
          return res;
        }
      }
      throw e;
    }
    const newSecret = merge(oldSecret.body, opts.body);
    const res = await this.client.replaceNamespacedSecret(secretName, namespace, newSecret);
-    this.logger.info(`secret ${secretName} 已更新`);
+    this.logger.info("secret updated");
    return res.body;
  }
@@ -166,23 +145,9 @@ export class K8sClient {
    this.logger.info("patch ingress:", ingressName, namespace);
    const client = this.kubeconfig.makeApiClient(NetworkingV1Api);
    const oldIngress = await client.readNamespacedIngress(ingressName, namespace);
-    const newIngress = merge(oldIngress.body, opts.body);
+    const newIngress = _.merge(oldIngress.body, opts.body);
    const res = await client.replaceNamespacedIngress(ingressName, namespace, newIngress);
    this.logger.info("ingress patched", opts.body);
    return res;
  }
  async restartIngress(namespace: string, ingressNames: string[], labels: any) {
    const body = {
      metadata: {
        labels: {
          ...labels,
        },
      },
    };
    for (const ingress of ingressNames) {
      await this.patchIngress({ namespace, ingressName: ingress, body });
      this.logger.info(`ingress已重启:${ingress}`);
    }
  }
 }
--- a/packages/libs/lib-server/CHANGELOG.md
+++ b/packages/libs/lib-server/CHANGELOG.md
@@ -3,42 +3,6 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 ## [1.36.19](https://github.com/certd/certd/compare/v1.36.18...v1.36.19) (2025-09-05)
 **Note:** Version bump only for package @certd/lib-server
 ## [1.36.18](https://github.com/certd/certd/compare/v1.36.17...v1.36.18) (2025-08-28)
 **Note:** Version bump only for package @certd/lib-server
 ## [1.36.17](https://github.com/certd/certd/compare/v1.36.16...v1.36.17) (2025-08-17)
 **Note:** Version bump only for package @certd/lib-server
 ## [1.36.16](https://github.com/certd/certd/compare/v1.36.15...v1.36.16) (2025-08-16)
 ### Bug Fixes
 * 修复授权配置复制功能，无法复制已加密字段的问题 ([221e068](https://github.com/certd/certd/commit/221e068bac3af6cd5d1794f8cd4c2ec5c0bc3f45))
 ## [1.36.15](https://github.com/certd/certd/compare/v1.36.14...v1.36.15) (2025-08-07)
 **Note:** Version bump only for package @certd/lib-server
 ## [1.36.14](https://github.com/certd/certd/compare/v1.36.13...v1.36.14) (2025-07-28)
 ### Performance Improvements
 * 新增找回密码功能 [@nicheng-he](https://github.com/nicheng-he) ([81ac240](https://github.com/certd/certd/commit/81ac240ac84db0af2f56b6352e227ecb49f38377))
 ## [1.36.13](https://github.com/certd/certd/compare/v1.36.12...v1.36.13) (2025-07-23)
 **Note:** Version bump only for package @certd/lib-server
 ## [1.36.12](https://github.com/certd/certd/compare/v1.36.11...v1.36.12) (2025-07-22)
 **Note:** Version bump only for package @certd/lib-server
 ## [1.36.11](https://github.com/certd/certd/compare/v1.36.10...v1.36.11) (2025-07-22)
 **Note:** Version bump only for package @certd/lib-server
--- a/packages/libs/lib-server/package.json
+++ b/packages/libs/lib-server/package.json
@@ -1,6 +1,6 @@
 {
  "name": "@certd/lib-server",
-  "version": "1.36.19",
+  "version": "1.36.11",
  "description": "midway with flyway, sql upgrade way ",
  "private": false,
  "type": "module",
@@ -27,10 +27,10 @@
  ],
  "license": "AGPL",
  "dependencies": {
-    "@certd/acme-client": "^1.36.19",
+    "@certd/acme-client": "^1.36.11",
-    "@certd/basic": "^1.36.19",
+    "@certd/basic": "^1.36.11",
-    "@certd/pipeline": "^1.36.19",
+    "@certd/pipeline": "^1.36.11",
-    "@certd/plus-core": "^1.36.19",
+    "@certd/plus-core": "^1.36.11",
    "@midwayjs/cache": "~3.14.0",
    "@midwayjs/core": "~3.20.3",
    "@midwayjs/i18n": "~3.20.3",
@@ -61,5 +61,5 @@
    "typeorm": "^0.3.11",
    "typescript": "^5.4.2"
  },
-  "gitHead": "6d8981479517b5de9634e242c1ebf22e70527ec4"
+  "gitHead": "7f9c4e52ac5c3837b251d3b2508457ce802e11cb"
 }
--- a/packages/libs/lib-server/src/index.ts
+++ b/packages/libs/lib-server/src/index.ts
@@ -1,9 +1,8 @@
 import { SysSettingsEntity } from './system/index.js';
 import { AccessEntity } from './user/access/entity/access.js';
 import { AddonEntity } from "./user/index.js";
 export * from './basic/index.js';
 export * from './system/index.js';
 export * from './user/index.js';
 export { LibServerConfiguration as Configuration } from './configuration.js';
-export const libServerEntities = [SysSettingsEntity, AccessEntity,AddonEntity];
+export const libServerEntities = [SysSettingsEntity, AccessEntity];
--- a/packages/libs/lib-server/src/system/settings/service/models.ts
+++ b/packages/libs/lib-server/src/system/settings/service/models.ts
@@ -22,7 +22,6 @@ export class SysPublicSettings extends BaseSettings {
  mobileRegisterEnabled = false;
  smsLoginEnabled = false;
  emailRegisterEnabled = false;
  selfServicePasswordRetrievalEnabled = false;
  limitUserPipelineCount = 0;
  managerOtherUserPipeline = false;
@@ -30,13 +29,6 @@ export class SysPublicSettings extends BaseSettings {
  mpsNo?: string;
  robots?: boolean = true;
  aiChatEnabled = true;
  //验证码是否开启
  captchaEnabled = false;
  //验证码类型
  captchaType?: string;
  captchaAddonId?:number;
 }
 export class SysPrivateSettings extends BaseSettings {
@@ -214,3 +206,4 @@ export class SysSafeSetting extends BaseSettings {
  };
 }
--- a/packages/libs/lib-server/src/user/access/service/access-service.ts
+++ b/packages/libs/lib-server/src/user/access/service/access-service.ts
@@ -34,18 +34,7 @@ export class AccessService extends BaseService<AccessEntity> {
  }
  async add(param) {
-    let oldEntity = null;
+    this.encryptSetting(param, null);
    if (param._copyFrom){
      oldEntity = await this.info(param._copyFrom);
      if (oldEntity == null) {
        throw new ValidateException('该授权配置不存在,请确认是否已被删除');
      }
      if (oldEntity.userId  !== param.userId) {
        throw new ValidateException('您无权查看该授权配置');
      }
    }
    delete param._copyFrom
    this.encryptSetting(param, oldEntity);
    return await super.add(param);
  }
--- a/packages/libs/lib-server/src/user/addon/api/api.ts
+++ b/packages/libs/lib-server/src/user/addon/api/api.ts
@@ -1,96 +0,0 @@
 import { HttpClient, ILogger, utils } from "@certd/basic";
 import {upperFirst} from "lodash-es";
 import { FormItemProps, PluginRequestHandleReq, Registrable } from "@certd/pipeline";
 export type AddonRequestHandleReqInput<T = any> = {
  id?: number;
  title?: string;
  addon: T;
 };
 export type AddonRequestHandleReq<T = any> = {
  addonType: string;
 } &PluginRequestHandleReq<AddonRequestHandleReqInput<T>>;
 export type AddonInputDefine = FormItemProps & {
  title: string;
  required?: boolean;
 };
 export type AddonDefine = Registrable & {
  addonType: string;
  needPlus?: boolean;
  input?: {
    [key: string]: AddonInputDefine;
  };
 };
 export type AddonInstanceConfig = {
  id: number;
  addonType: string;
  type: string;
  name: string;
  userId: number;
  setting: {
    [key: string]: any;
  };
 };
 export interface IAddon {
  ctx: AddonContext;
  [key: string]: any;
 }
 export type AddonContext = {
  http: HttpClient;
  logger: ILogger;
  utils: typeof utils;
 };
 export abstract class BaseAddon implements IAddon {
  define!: AddonDefine;
  ctx!: AddonContext;
  http!: HttpClient;
  logger!: ILogger;
  // eslint-disable-next-line @typescript-eslint/no-empty-function
  async onInstance() {}
  setCtx(ctx: AddonContext) {
    this.ctx = ctx;
    this.http = ctx.http;
    this.logger = ctx.logger;
  }
  setDefine = (define:AddonDefine) => {
    this.define = define;
  };
  async onRequest(req:AddonRequestHandleReq) {
    if (!req.action) {
      throw new Error("action is required");
    }
    let methodName = req.action;
    if (!req.action.startsWith("on")) {
      methodName = `on${upperFirst(req.action)}`;
    }
    // @ts-ignore
    const method = this[methodName];
    if (method) {
      // @ts-ignore
      return await this[methodName](req.data);
    }
    throw new Error(`action ${req.action} not found`);
  }
 }
 export interface IAddonGetter {
  getById<T = any>(id: any): Promise<T>;
  getCommonById<T = any>(id: any): Promise<T>;
 }
--- a/packages/libs/lib-server/src/user/addon/api/decorator.ts
+++ b/packages/libs/lib-server/src/user/addon/api/decorator.ts
@@ -1,65 +0,0 @@
 // src/decorator/memoryCache.decorator.ts
 import * as _ from "lodash-es";
 import { merge } from "lodash-es";
 import { addonRegistry } from "./registry.js";
 import { AddonContext, AddonDefine, AddonInputDefine } from "./api.js";
 import { Decorator } from "@certd/pipeline";
 // 提供一个唯一 key
 export const ADDON_CLASS_KEY = "pipeline:addon";
 export const ADDON_INPUT_KEY = "pipeline:addon:input";
 export function IsAddon(define: AddonDefine): ClassDecorator {
  return (target: any) => {
    target = Decorator.target(target);
    const inputs: any = {};
    const properties = Decorator.getClassProperties(target);
    for (const property in properties) {
      const input = Reflect.getMetadata(ADDON_INPUT_KEY, target, property);
      if (input) {
        inputs[property] = input;
      }
    }
    _.merge(define, { input: inputs });
    Reflect.defineMetadata(ADDON_CLASS_KEY, define, target);
    target.define = define;
    const key = `${define.addonType}:${define.name}`;
    addonRegistry.register(key, {
      define,
      target: async () => {
        return target;
      },
    });
  };
 }
 export function AddonInput(input?: AddonInputDefine): PropertyDecorator {
  return (target, propertyKey) => {
    target = Decorator.target(target, propertyKey);
    // const _type = Reflect.getMetadata("design:type", target, propertyKey);
    Reflect.defineMetadata(ADDON_INPUT_KEY, input, target, propertyKey);
  };
 }
 export async function newAddon(addonType:string,type: string, input: any, ctx: AddonContext) {
 const key = `${addonType}:${type}`
  const register = addonRegistry.get(key);
  if (register == null) {
    throw new Error(`${addonType} ${type} not found`);
  }
  // @ts-ignore
  const pluginCls = await register.target();
  // @ts-ignore
  const plugin = new pluginCls();
  merge(plugin, input);
  if (!ctx) {
    throw new Error("ctx is required");
  }
  plugin.setDefine(register.define);
  plugin.setCtx(ctx);
  await plugin.onInstance();
  return plugin;
 }
--- a/packages/libs/lib-server/src/user/addon/api/index.ts
+++ b/packages/libs/lib-server/src/user/addon/api/index.ts
@@ -1,3 +0,0 @@
 export * from "./api.js";
 export * from "./registry.js";
 export * from "./decorator.js";
--- a/packages/libs/lib-server/src/user/addon/api/registry.ts
+++ b/packages/libs/lib-server/src/user/addon/api/registry.ts
@@ -1,3 +0,0 @@
 import { createRegistry } from "@certd/pipeline";
 export const addonRegistry = createRegistry("addon");
--- a/packages/libs/lib-server/src/user/addon/entity/addon.ts
+++ b/packages/libs/lib-server/src/user/addon/entity/addon.ts
@@ -1,44 +0,0 @@
 import { Column, Entity, PrimaryGeneratedColumn } from 'typeorm';
 /**
 */
@Entity('cd_addon')
 export class AddonEntity {
  @PrimaryGeneratedColumn()
  id: number;
  @Column({ name: 'user_id', comment: '用户id' })
  userId: number;
  @Column({ comment: '名称', length: 100 })
  name: string;
  @Column({ name: 'addon_type', comment: 'addon类型', length: 100 })
  addonType: string;
  @Column({ comment: '类型', length: 100 })
  type: string;
  @Column({ name: 'setting', comment: '设置', length: 10240, nullable: true })
  setting: string;
  @Column({ name: 'is_system', comment: '是否系统级别',  nullable: false, default: false })
  isSystem: boolean;
  @Column({ name: 'is_default', comment: '是否默认',  nullable: false, default: false })
  isDefault: boolean;
  @Column({
    name: 'create_time',
    comment: '创建时间',
    default: () => 'CURRENT_TIMESTAMP',
  })
  createTime: Date;
  @Column({
    name: 'update_time',
    comment: '修改时间',
    default: () => 'CURRENT_TIMESTAMP',
  })
  updateTime: Date;
 }
--- a/packages/libs/lib-server/src/user/addon/index.ts
+++ b/packages/libs/lib-server/src/user/addon/index.ts
@@ -1,5 +0,0 @@
 export * from './api/index.js'
 export * from './entity/addon.js'
 export * from './service/addon-service.js'
 export * from './service/addon-getter.js'
 export * from './service/addon-sys-getter.js'
--- a/packages/libs/lib-server/src/user/addon/service/addon-getter.ts
+++ b/packages/libs/lib-server/src/user/addon/service/addon-getter.ts
@@ -1,18 +0,0 @@
 import { IAddonGetter } from "../api/index.js";
 export class AddonGetter implements IAddonGetter {
  userId: number;
  getter: <T>(id: any, userId?: number) => Promise<T>;
  constructor(userId: number, getter: (id: any, userId: number) => Promise<any>) {
    this.userId = userId;
    this.getter = getter;
  }
  async getById<T = any>(id: any) {
    return await this.getter<T>(id, this.userId);
  }
  async getCommonById<T = any>(id: any) {
    return await this.getter<T>(id, 0);
  }
 }
--- a/packages/libs/lib-server/src/user/addon/service/addon-service.ts
+++ b/packages/libs/lib-server/src/user/addon/service/addon-service.ts
@@ -1,231 +0,0 @@
 import { Provide, Scope, ScopeEnum } from "@midwayjs/core";
 import { InjectEntityModel } from "@midwayjs/typeorm";
 import { In, Repository } from "typeorm";
 import { AddonDefine, BaseService, PageReq, PermissionException, ValidateException } from "../../../index.js";
 import { addonRegistry, newAddon } from "../api/index.js";
 import { AddonEntity } from "../entity/addon.js";
 import { http, logger, utils } from "@certd/basic";
 /**
 * Addon
 */
@Provide()
@Scope(ScopeEnum.Request, {allowDowngrade: true})
 export class AddonService extends BaseService<AddonEntity> {
  @InjectEntityModel(AddonEntity)
  repository: Repository<AddonEntity>;
  //@ts-ignore
  getRepository() {
    return this.repository;
  }
  async page(pageReq: PageReq<AddonEntity>) {
    const res = await super.page(pageReq);
    res.records = res.records.map(item => {
      return item;
    });
    return res;
  }
  async add(param) {
    let oldEntity = null;
    if (param._copyFrom){
      oldEntity = await this.info(param._copyFrom);
      if (oldEntity == null) {
        throw new ValidateException('该Addon配置不存在,请确认是否已被删除');
      }
      if (oldEntity.userId  !== param.userId) {
        throw new ValidateException('您无权查看该Addon配置');
      }
    }
    if (!param.userId){
      param.isSystem = true
    }else{
      param.isSystem = false
    }
    delete param._copyFrom
    return await super.add(param);
  }
  /**
   * 修改
   * @param param 数据
   */
  async update(param) {
    const oldEntity = await this.info(param.id);
    if (oldEntity == null) {
      throw new ValidateException('该Addon配置不存在,请确认是否已被删除');
    }
    return await super.update(param);
  }
  async getSimpleInfo(id: number) {
    const entity = await this.info(id);
    if (entity == null) {
      throw new ValidateException('该Addon配置不存在,请确认是否已被删除');
    }
    return {
      id: entity.id,
      name: entity.name,
      userId: entity.userId,
      addonType: entity.addonType,
      type: entity.type,
    };
  }
  async getAddonById(id: any, checkUserId: boolean, userId?: number): Promise<any> {
    const ctx = {
      http: http,
      logger: logger,
      utils: utils,
    };
    if (!id){
      //使用图片验证码
      return await newAddon("captcha", "image", {},ctx);
    }
    const entity = await this.info(id);
    if (entity == null) {
      //使用图片验证码
      return await newAddon("captcha", "image", {},ctx);
    }
    if (checkUserId) {
      if (userId == null) {
        throw new ValidateException('userId不能为空');
      }
      if (userId !== entity.userId) {
        throw new PermissionException('您对该Addon无访问权限');
      }
    }
    const setting =  JSON.parse(entity.setting ??"{}")
    const input = {
      id: entity.id,
      ...setting,
    };
    return await newAddon(entity.addonType, entity.type, input,ctx);
  }
  async getById(id: any, userId: number): Promise<any> {
    return await this.getAddonById(id, true, userId);
  }
  getDefineList(addonType: string) {
    return addonRegistry.getDefineList();
  }
  getDefineByType(type: string,prefix?: string)  {
    return addonRegistry.getDefine(type,prefix) as AddonDefine;
  }
  async getSimpleByIds(ids: number[], userId: any) {
    if (ids.length === 0) {
      return [];
    }
    if (!userId) {
      return [];
    }
    return await this.repository.find({
      where: {
        id: In(ids),
        userId,
      },
      select: {
        id: true,
        name: true,
        addonType: true,
        type: true,
        userId:true,
        isSystem: true,
      },
    });
  }
  async getDefault(userId: number,addonType: string): Promise<any> {
    const res = await this.repository.findOne({
      where: {
        userId,
        addonType
      },
      order: {
        isDefault: 'DESC',
      },
    });
    if (!res) {
      return null;
    }
    return this.buildAddonInstanceConfig(res);
  }
  private buildAddonInstanceConfig(res: AddonEntity) {
    const setting = JSON.parse(res.setting);
    return {
      id: res.id,
      addonType: res.addonType,
      type: res.type,
      name: res.name,
      userId: res.userId,
      setting,
    };
  }
  async setDefault(id: number, userId: number,addonType:string) {
    if (!id) {
      throw new ValidateException('id不能为空');
    }
    if (!userId) {
      throw new ValidateException('userId不能为空');
    }
    await this.repository.update(
      {
        userId,
        addonType
      },
      {
        isDefault: false,
      }
    );
    await this.repository.update(
      {
        id,
        userId,
        addonType
      },
      {
        isDefault: true,
      }
    );
  }
  async getOrCreateDefault(opts:{addonType:string,type:string, inputs: any, userId: any}) {
    const {addonType,type,inputs,userId} = opts;
   const addonDefine =  this.getDefineByType( type,addonType)
    const defaultConfig = await this.getDefault(userId,addonType);
    if (defaultConfig) {
      return defaultConfig;
    }
    const setting = {
      ...inputs,
    };
    const res = await this.repository.save({
      userId,
      addonType,
      type: type,
      name: addonDefine.title,
      setting: JSON.stringify(setting),
      isDefault: true,
    });
    return this.buildAddonInstanceConfig(res);
  }
 }
--- a/packages/libs/lib-server/src/user/addon/service/addon-sys-getter.ts
+++ b/packages/libs/lib-server/src/user/addon/service/addon-sys-getter.ts
@@ -1,17 +0,0 @@
 import { IAccessService } from '@certd/pipeline';
 import { AddonService } from './addon-service.js';
 export class AddonSysGetter implements IAccessService {
  addonService: AddonService;
  constructor(addonService: AddonService) {
    this.addonService = addonService;
  }
  async getById<T = any>(id: any) {
    return await this.addonService.getById(id, 0);
  }
  async getCommonById<T = any>(id: any) {
    return await this.addonService.getById(id, 0);
  }
 }
--- a/packages/libs/lib-server/src/user/index.ts
+++ b/packages/libs/lib-server/src/user/index.ts
@@ -1,2 +1 @@
 export * from './access/index.js';
 export * from './addon/index.js';
--- a/packages/libs/midway-flyway-js/CHANGELOG.md
+++ b/packages/libs/midway-flyway-js/CHANGELOG.md
@@ -3,38 +3,6 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 ## [1.36.19](https://github.com/certd/certd/compare/v1.36.18...v1.36.19) (2025-09-05)
 **Note:** Version bump only for package @certd/midway-flyway-js
 ## [1.36.18](https://github.com/certd/certd/compare/v1.36.17...v1.36.18) (2025-08-28)
 **Note:** Version bump only for package @certd/midway-flyway-js
 ## [1.36.17](https://github.com/certd/certd/compare/v1.36.16...v1.36.17) (2025-08-17)
 **Note:** Version bump only for package @certd/midway-flyway-js
 ## [1.36.16](https://github.com/certd/certd/compare/v1.36.15...v1.36.16) (2025-08-16)
 **Note:** Version bump only for package @certd/midway-flyway-js
 ## [1.36.15](https://github.com/certd/certd/compare/v1.36.14...v1.36.15) (2025-08-07)
 **Note:** Version bump only for package @certd/midway-flyway-js
 ## [1.36.14](https://github.com/certd/certd/compare/v1.36.13...v1.36.14) (2025-07-28)
 **Note:** Version bump only for package @certd/midway-flyway-js
 ## [1.36.13](https://github.com/certd/certd/compare/v1.36.12...v1.36.13) (2025-07-23)
 **Note:** Version bump only for package @certd/midway-flyway-js
 ## [1.36.12](https://github.com/certd/certd/compare/v1.36.11...v1.36.12) (2025-07-22)
 **Note:** Version bump only for package @certd/midway-flyway-js
 ## [1.36.11](https://github.com/certd/certd/compare/v1.36.10...v1.36.11) (2025-07-22)
 **Note:** Version bump only for package @certd/midway-flyway-js
--- a/packages/libs/midway-flyway-js/package.json
+++ b/packages/libs/midway-flyway-js/package.json
@@ -1,6 +1,6 @@
 {
  "name": "@certd/midway-flyway-js",
-  "version": "1.36.19",
+  "version": "1.36.11",
  "description": "midway with flyway, sql upgrade way ",
  "private": false,
  "type": "module",
@@ -46,5 +46,5 @@
    "typeorm": "^0.3.11",
    "typescript": "^5.4.2"
  },
-  "gitHead": "6d8981479517b5de9634e242c1ebf22e70527ec4"
+  "gitHead": "7f9c4e52ac5c3837b251d3b2508457ce802e11cb"
 }
--- a/packages/plugins/plugin-cert/CHANGELOG.md
+++ b/packages/plugins/plugin-cert/CHANGELOG.md
@@ -3,50 +3,6 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 ## [1.36.19](https://github.com/certd/certd/compare/v1.36.18...v1.36.19) (2025-09-05)
 ### Performance Improvements
 * 支持ssl.com证书颁发机构 ([27b6dfa](https://github.com/certd/certd/commit/27b6dfa4d2ab3bddd284c3a34511a72e1a513a4c))
 * 子域名托管说明 ([39a0223](https://github.com/certd/certd/commit/39a02235cf4416bb5bd1acd3831241efeaa2f602))
 ## [1.36.18](https://github.com/certd/certd/compare/v1.36.17...v1.36.18) (2025-08-28)
 ### Performance Improvements
 * 支持p7b证书格式 ([d9f4a57](https://github.com/certd/certd/commit/d9f4a5793d68a017a5d80ad5385cbda603c4e165))
 * openapi返回证书时挑选匹配范围最小的那一个；增加format参数，增加返回值p7b格式，增加detail返回 ([2085bcc](https://github.com/certd/certd/commit/2085bcceb61c3723c9bdfec4c4cc0917631ff5e5))
 ## [1.36.17](https://github.com/certd/certd/compare/v1.36.16...v1.36.17) (2025-08-17)
 ### Performance Improvements
 * 证书申请任务默认不发送申请成功通知 ([0283bd2](https://github.com/certd/certd/commit/0283bd2f978dbcd13d361129135e439dd9fbc180))
 ## [1.36.16](https://github.com/certd/certd/compare/v1.36.15...v1.36.16) (2025-08-16)
 ### Performance Improvements
 * 百度云支持上传到证书托管，支持部署到负载均衡 ([798a48a](https://github.com/certd/certd/commit/798a48aa9686fd5d11cfffb6cd93eadfc40aacb3))
 ## [1.36.15](https://github.com/certd/certd/compare/v1.36.14...v1.36.15) (2025-08-07)
 **Note:** Version bump only for package @certd/plugin-cert
 ## [1.36.14](https://github.com/certd/certd/compare/v1.36.13...v1.36.14) (2025-07-28)
 ### Bug Fixes
 * 修复商用证书上传第二次运行无法使用pfx格式证书的bug ([251dd1f](https://github.com/certd/certd/commit/251dd1fe457a7b152f43eb6de18f7beb9f0b194e))
 ## [1.36.13](https://github.com/certd/certd/compare/v1.36.12...v1.36.13) (2025-07-23)
 **Note:** Version bump only for package @certd/plugin-cert
 ## [1.36.12](https://github.com/certd/certd/compare/v1.36.11...v1.36.12) (2025-07-22)
 **Note:** Version bump only for package @certd/plugin-cert
 ## [1.36.11](https://github.com/certd/certd/compare/v1.36.10...v1.36.11) (2025-07-22)
 **Note:** Version bump only for package @certd/plugin-cert
--- a/packages/plugins/plugin-cert/package.json
+++ b/packages/plugins/plugin-cert/package.json
@@ -1,7 +1,7 @@
 {
  "name": "@certd/plugin-cert",
  "private": false,
-  "version": "1.36.19",
+  "version": "1.36.11",
  "type": "module",
  "main": "./dist/index.js",
  "types": "./dist/index.d.ts",
@@ -16,10 +16,10 @@
    "pub": "npm publish"
  },
  "dependencies": {
-    "@certd/acme-client": "^1.36.19",
+    "@certd/acme-client": "^1.36.11",
-    "@certd/basic": "^1.36.19",
+    "@certd/basic": "^1.36.11",
-    "@certd/pipeline": "^1.36.19",
+    "@certd/pipeline": "^1.36.11",
-    "@certd/plugin-lib": "^1.36.19",
+    "@certd/plugin-lib": "^1.36.11",
    "@google-cloud/publicca": "^1.3.0",
    "dayjs": "^1.11.7",
    "jszip": "^3.10.1",
@@ -43,5 +43,5 @@
    "tslib": "^2.8.1",
    "typescript": "^5.4.2"
  },
-  "gitHead": "6d8981479517b5de9634e242c1ebf22e70527ec4"
+  "gitHead": "7f9c4e52ac5c3837b251d3b2508457ce802e11cb"
 }
--- a/packages/plugins/plugin-cert/src/access/eab-access.ts
+++ b/packages/plugins/plugin-cert/src/access/eab-access.ts
@@ -12,7 +12,7 @@ export class EabAccess extends BaseAccess {
    component: {
      placeholder: "kid / keyId",
    },
-    helper: "EAB KID， google的叫 keyId，ssl.com的叫Account/ACME Key",
+    helper: "EAB KID， google的叫 keyId",
    required: true,
    encrypt: true,
  })
--- a/packages/plugins/plugin-cert/src/plugin/cert-plugin/acme.ts
+++ b/packages/plugins/plugin-cert/src/plugin/cert-plugin/acme.ts
@@ -48,9 +48,8 @@ export type CertInfo = {
  der?: string;
  jks?: string;
  one?: string;
  p7b?: string;
 };
-export type SSLProvider = "letsencrypt" | "google" | "zerossl" | "sslcom";
+export type SSLProvider = "letsencrypt" | "google" | "zerossl";
 export type PrivateKeyType = "rsa_1024" | "rsa_2048" | "rsa_3072" | "rsa_4096" | "ec_256" | "ec_384" | "ec_521";
 type AcmeServiceOptions = {
  userContext: IContext;
@@ -329,9 +328,8 @@ export class AcmeService {
    isTest?: boolean;
    privateKeyType?: string;
    profile?: string;
    preferredChain?: string;
  }): Promise<CertInfo> {
-    const { email, isTest, csrInfo, dnsProvider, domainsVerifyPlan, profile, preferredChain } = options;
+    const { email, isTest, csrInfo, dnsProvider, domainsVerifyPlan, profile } = options;
    const client: acme.Client = await this.getAcmeClient(email, isTest);
    let domains = options.domains;
@@ -374,7 +372,6 @@ export class AcmeService {
        commonName,
        ...csrInfo,
        altNames,
        emailAddress: email,
      },
      privateKey
    );
@@ -405,7 +402,6 @@ export class AcmeService {
      },
      signal: this.options.signal,
      profile,
      preferredChain,
    });
    const crtString = crt.toString();
--- a/packages/plugins/plugin-cert/src/plugin/cert-plugin/base-convert.ts
+++ b/packages/plugins/plugin-cert/src/plugin/cert-plugin/base-convert.ts
@@ -28,7 +28,7 @@ export abstract class CertApplyBaseConvertPlugin extends AbstractTaskPlugin {
      "2、子域名被通配符包含的不要填写，例如：www.foo.com已经被*.foo.com包含，不要填写www.foo.com\n" +
      "3、泛域名只能通配*号那一级（*.foo.com的证书不能用于xxx.yyy.foo.com、不能用于foo.com）\n" +
      "4、输入一个，空格之后，再输入下一个 \n" +
-      "5、如果设置了子域托管解析（比如免费的二级域名托管在CF或者阿里云），请先[设置托管子域名](#/certd/pipeline/subDomain)",
+      "5、如果您配置了子域托管解析，请先[设置托管子域名](#/certd/pipeline/subDomain)",
  })
  domains!: string[];
@@ -125,10 +125,6 @@ export abstract class CertApplyBaseConvertPlugin extends AbstractTaskPlugin {
          cert.jks = res.jks;
        }
        if (cert.p7b == null && res.p7b) {
          cert.p7b = res.p7b;
        }
        this.logger.info("转换证书格式成功");
      } catch (e) {
        this.logger.error("转换证书格式失败", e);
@@ -154,7 +150,6 @@ export abstract class CertApplyBaseConvertPlugin extends AbstractTaskPlugin {
    zip.file("intermediate.crt", cert.ic);
    zip.file("origin.crt", cert.oc);
    zip.file("one.pem", cert.one);
    zip.file("cert.p7b", cert.p7b);
    if (cert.pfx) {
      zip.file("cert.pfx", Buffer.from(cert.pfx, "base64"));
    }
@@ -199,13 +194,4 @@ cert.jks：jks格式证书文件，java服务器使用
    };
    return newCert;
  }
  async readLastCert(): Promise<CertReader | undefined> {
    const cert = this.lastStatus?.status?.output?.cert;
    if (cert == null) {
      this.logger.info("没有找到上次的证书");
      return undefined;
    }
    return new CertReader(cert);
  }
 }
--- a/packages/plugins/plugin-cert/src/plugin/cert-plugin/base.ts
+++ b/packages/plugins/plugin-cert/src/plugin/cert-plugin/base.ts
@@ -33,7 +33,7 @@ export abstract class CertApplyBasePlugin extends CertApplyBaseConvertPlugin {
  @TaskInput({
    title: "证书申请成功通知",
-    value: false,
+    value: true,
    component: {
      name: "a-switch",
      vModel: "checked",
@@ -41,7 +41,7 @@ export abstract class CertApplyBasePlugin extends CertApplyBaseConvertPlugin {
    order: 100,
    helper: "证书申请成功后是否发送通知，优先使用默认通知渠道",
  })
-  successNotify = false;
+  successNotify = true;
  // @TaskInput({
  //   title: "CsrInfo",
@@ -130,6 +130,15 @@ export abstract class CertApplyBasePlugin extends CertApplyBaseConvertPlugin {
    return null;
  }
  async readLastCert(): Promise<CertReader | undefined> {
    const cert = this.lastStatus?.status?.output?.cert;
    if (cert == null) {
      this.logger.info("没有找到上次的证书");
      return undefined;
    }
    return new CertReader(cert);
  }
  /**
   * 检查是否过期，默认提前35天
   * @param expires
--- a/packages/plugins/plugin-cert/src/plugin/cert-plugin/cert-reader.ts
+++ b/packages/plugins/plugin-cert/src/plugin/cert-plugin/cert-reader.ts
@@ -17,19 +17,9 @@ export type CertReaderHandleContext = {
  tmpIcPath?: string;
  tmpJksPath?: string;
  tmpOnePath?: string;
  tmpP7bPath?: string;
 };
 export type CertReaderHandle = (ctx: CertReaderHandleContext) => Promise<void>;
 export type HandleOpts = { logger: ILogger; handle: CertReaderHandle };
 const formats = {
  pem: ["crt", "key", "ic"],
  one: ["one"],
  pfx: ["pfx"],
  der: ["der"],
  jks: ["jks"],
  p7b: ["p7b", "key"],
 };
 export class CertReader {
  cert: CertInfo;
@@ -83,17 +73,8 @@ export class CertReader {
    return arr[0] + endStr;
  }
-  toCertInfo(format?: string): CertInfo {
+  toCertInfo(): CertInfo {
-    if (!format) {
+    return this.cert;
      return this.cert;
    }
    const formatArr = formats[format];
    const res: any = {};
    formatArr.forEach((key: string) => {
      res[key] = this.cert[key];
    });
    return res;
  }
  getCrtDetail(crt: string = this.cert.crt) {
@@ -143,7 +124,7 @@ export class CertReader {
    return domain;
  }
-  saveToFile(type: "crt" | "key" | "pfx" | "der" | "oc" | "one" | "ic" | "jks" | "p7b", filepath?: string) {
+  saveToFile(type: "crt" | "key" | "pfx" | "der" | "oc" | "one" | "ic" | "jks", filepath?: string) {
    if (!this.cert[type]) {
      return;
    }
@@ -157,7 +138,7 @@ export class CertReader {
    if (!fs.existsSync(dir)) {
      fs.mkdirSync(dir, { recursive: true });
    }
-    if (type === "crt" || type === "key" || type === "ic" || type === "oc" || type === "one" || type === "p7b") {
+    if (type === "crt" || type === "key" || type === "ic" || type === "oc" || type === "one") {
      fs.writeFileSync(filepath, this.cert[type]);
    } else {
      fs.writeFileSync(filepath, Buffer.from(this.cert[type], "base64"));
@@ -176,19 +157,17 @@ export class CertReader {
    const tmpDerPath = this.saveToFile("der");
    const tmpJksPath = this.saveToFile("jks");
    const tmpOnePath = this.saveToFile("one");
    const tmpP7bPath = this.saveToFile("p7b");
    logger.info("本地文件写入成功");
    try {
      return await opts.handle({
        reader: this,
-        tmpCrtPath,
+        tmpCrtPath: tmpCrtPath,
-        tmpKeyPath,
+        tmpKeyPath: tmpKeyPath,
-        tmpPfxPath,
+        tmpPfxPath: tmpPfxPath,
-        tmpDerPath,
+        tmpDerPath: tmpDerPath,
-        tmpIcPath,
+        tmpIcPath: tmpIcPath,
-        tmpJksPath,
+        tmpJksPath: tmpJksPath,
-        tmpOcPath,
+        tmpOcPath: tmpOcPath,
        tmpP7bPath,
        tmpOnePath,
      });
    } catch (err) {
@@ -210,7 +189,6 @@ export class CertReader {
      removeFile(tmpIcPath);
      removeFile(tmpJksPath);
      removeFile(tmpOnePath);
      removeFile(tmpP7bPath);
    }
  }
@@ -221,10 +199,10 @@ export class CertReader {
    return `${prefix}_${domain}_${timeStr}.${suffix}`;
  }
-  buildCertName(prefix: string = "") {
+  buildCertName() {
    let domain = this.getMainDomain();
    domain = domain.replaceAll(".", "_").replaceAll("*", "_");
-    return `${prefix}_${domain}_${dayjs().format("YYYYMMDDHHmmssSSS")}`;
+    return `${domain}_${dayjs().format("YYYYMMDDHHmmssSSS")}`;
  }
  static appendTimeSuffix(name?: string) {
@@ -233,8 +211,4 @@ export class CertReader {
    }
    return name + "_" + dayjs().format("YYYYMMDDHHmmssSSS");
  }
  static buildCertName(cert: any) {
    return new CertReader(cert).buildCertName();
  }
 }
--- a/packages/plugins/plugin-cert/src/plugin/cert-plugin/convert.ts
+++ b/packages/plugins/plugin-cert/src/plugin/cert-plugin/convert.ts
@@ -18,13 +18,11 @@ export class CertConverter {
    pfx: string;
    der: string;
    jks: string;
    p7b: string;
  }> {
    const certReader = new CertReader(opts.cert);
    let pfx: string;
    let der: string;
    let jks: string;
    let p7b: string;
    const handle = async (ctx: CertReaderHandleContext) => {
      // 调用openssl 转pfx
      pfx = await this.convertPfx(ctx, opts.pfxPassword, opts.pfxArgs);
@@ -33,8 +31,6 @@ export class CertConverter {
      der = await this.convertDer(ctx);
      jks = await this.convertJks(ctx, opts.pfxPassword);
      p7b = await this.convertP7b(ctx);
    };
    await certReader.readCertFile({ logger: this.logger, handle });
@@ -43,7 +39,6 @@ export class CertConverter {
      pfx,
      der,
      jks,
      p7b,
    };
  }
@@ -100,23 +95,6 @@ export class CertConverter {
    return derCert;
  }
  async convertP7b(opts: CertReaderHandleContext) {
    const { tmpCrtPath } = opts;
    const p7bPath = path.join(os.tmpdir(), "/certd/tmp/", Math.floor(Math.random() * 1000000) + `_cert.p7b`);
    const dir = path.dirname(p7bPath);
    if (!fs.existsSync(dir)) {
      fs.mkdirSync(dir, { recursive: true });
    }
    //openssl crl2pkcs7 -nocrl \
    //     -certfile your_domain.crt \
    //     -certfile intermediate.crt \
    //     -out chain.p7b
    await this.exec(`openssl crl2pkcs7 -nocrl -certfile ${tmpCrtPath} -out ${p7bPath}`);
    const fileBuffer = fs.readFileSync(p7bPath);
    const p7bCert = fileBuffer.toString();
    fs.unlinkSync(p7bPath);
    return p7bCert;
  }
  async convertJks(opts: CertReaderHandleContext, pfxPassword = "") {
    const jksPassword = pfxPassword || "123456";
    try {
@@ -135,7 +113,9 @@ export class CertConverter {
      if (!fs.existsSync(dir)) {
        fs.mkdirSync(dir, { recursive: true });
      }
-      await this.exec(`keytool -importkeystore -srckeystore ${p12Path} -srcstoretype PKCS12 -srcstorepass "${jksPassword}" -destkeystore ${jksPath} -deststoretype PKCS12 -deststorepass "${jksPassword}" `);
+      await this.exec(
        `keytool -importkeystore -srckeystore ${p12Path} -srcstoretype PKCS12 -srcstorepass "${jksPassword}" -destkeystore ${jksPath} -deststoretype PKCS12 -deststorepass "${jksPassword}" `
      );
      fs.unlinkSync(p12Path);
      const fileBuffer = fs.readFileSync(jksPath);
--- a/packages/plugins/plugin-cert/src/plugin/cert-plugin/custom/index.ts
+++ b/packages/plugins/plugin-cert/src/plugin/cert-plugin/custom/index.ts
@@ -100,17 +100,8 @@ export class CertApplyUploadPlugin extends CertApplyBaseConvertPlugin {
  async onInit(): Promise<void> {}
  async getCertFromStore() {
-    let certReader = null;
+    const certReader = new CertReader(this.uploadCert);
-    try {
+    if (!certReader.expires && certReader.expires < new Date().getTime()) {
      this.logger.info("读取上次证书");
      certReader = await this.readLastCert();
    } catch (e) {
      this.logger.warn("读取cert失败：", e);
    }
    if (certReader == null) {
      certReader = new CertReader(this.uploadCert);
    }
    if (!certReader.expires || certReader.expires < new Date().getTime()) {
      throw new Error("证书已过期，停止部署，请重新上传证书");
    }
--- a/packages/plugins/plugin-cert/src/plugin/cert-plugin/index.ts
+++ b/packages/plugins/plugin-cert/src/plugin/cert-plugin/index.ts
@@ -89,7 +89,6 @@ export class CertApplyPlugin extends CertApplyBasePlugin {
        { value: "letsencrypt", label: "Let's Encrypt", icon: "simple-icons:letsencrypt" },
        { value: "google", label: "Google", icon: "flat-color-icons:google" },
        { value: "zerossl", label: "ZeroSSL", icon: "emojione:digit-zero" },
        { value: "sslcom", label: "SSL.com（仅主域名和www免费）", icon: "la:expeditedssl" },
      ],
    },
    helper: "Let's Encrypt：申请最简单\nGoogle：大厂光环，兼容性好，仅首次需要翻墙获取EAB授权\nZeroSSL：需要EAB授权，无需翻墙",
@@ -195,13 +194,6 @@ export class CertApplyPlugin extends CertApplyBasePlugin {
  })
  zerosslCommonEabAccessId!: number;
  @TaskInput({
    title: "SSL.com公共EAB授权",
    isSys: true,
    show: false,
  })
  sslcomCommonEabAccessId!: number;
  @TaskInput({
    title: "EAB授权",
    component: {
@@ -211,16 +203,11 @@ export class CertApplyPlugin extends CertApplyBasePlugin {
    maybeNeed: true,
    required: false,
    helper:
-      "需要提供EAB授权" +
+      "需要提供EAB授权\nZeroSSL：请前往[zerossl开发者中心](https://app.zerossl.com/developer),生成 'EAB Credentials'\n Google:请查看[google获取eab帮助文档](https://certd.docmirror.cn/guide/use/google/)，用过一次后会绑定邮箱，后续复用EAB要用同一个邮箱",
      "\nZeroSSL：请前往[zerossl开发者中心](https://app.zerossl.com/developer),生成 'EAB Credentials'" +
      "\nGoogle:请查看[google获取eab帮助文档](https://certd.docmirror.cn/guide/use/google/)，用过一次后会绑定邮箱，后续复用EAB要用同一个邮箱" +
      "\nSSL.com:[SSL.com账号页面](https://secure.ssl.com/account),然后点击api credentials链接，然后点击编辑按钮，查看Secret key和HMAC key",
    mergeScript: `
    return {
        show: ctx.compute(({form})=>{
-            return (form.sslProvider === 'zerossl' && !form.zerosslCommonEabAccessId)
+            return (form.sslProvider === 'zerossl' && !form.zerosslCommonEabAccessId) || (form.sslProvider === 'google' && !form.googleCommonEabAccessId)
            || (form.sslProvider === 'google' && !form.googleCommonEabAccessId)
            || (form.sslProvider === 'sslcom' && !form.sslcomCommonEabAccessId)
        })
    }
    `,
@@ -292,29 +279,6 @@ export class CertApplyPlugin extends CertApplyBasePlugin {
  })
  certProfile!: string;
  @TaskInput({
    title: "首选链",
    value: "ISRG Root X1",
    component: {
      name: "a-select",
      vModel: "value",
      options: [
        { value: "ISRG Root X1", label: "ISRG Root X1" },
        { value: "ISRG Root X2", label: "ISRG Root X2" },
      ],
    },
    helper: "仅 Let's Encrypt 可选，默认为 ISRG Root X1",
    required: false,
    mergeScript: `
    return {
        show: ctx.compute(({form})=>{
            return form.sslProvider === 'letsencrypt'
        })
    }
    `,
  })
  preferredChain!: string;
  @TaskInput({
    title: "使用代理",
    value: false,
@@ -375,8 +339,8 @@ export class CertApplyPlugin extends CertApplyBasePlugin {
  async onInit() {
    let eab: EabAccess = null;
-    if (this.sslProvider !== "letsencrypt") {
+    if (this.sslProvider === "google") {
-      if (this.sslProvider === "google" && this.googleAccessId) {
+      if (this.googleAccessId) {
        this.logger.info("当前正在使用 google服务账号授权获取EAB");
        const googleAccess = await this.getAccess(this.googleAccessId);
        const googleClient = new GoogleClient({
@@ -384,19 +348,24 @@ export class CertApplyPlugin extends CertApplyBasePlugin {
          logger: this.logger,
        });
        eab = await googleClient.getEab();
      } else if (this.eabAccessId) {
        this.logger.info("当前正在使用 google EAB授权");
        eab = await this.getAccess(this.eabAccessId);
      } else if (this.googleCommonEabAccessId) {
        this.logger.info("当前正在使用 google 公共EAB授权");
        eab = await this.getAccess(this.googleCommonEabAccessId, true);
      } else {
-        const getEab = async (type: string) => {
+        throw new Error("google需要配置EAB授权或服务账号授权");
-          if (this.eabAccessId) {
+      }
-            this.logger.info(`当前正在使用 ${type} EAB授权`);
+    } else if (this.sslProvider === "zerossl") {
-            eab = await this.getAccess(this.eabAccessId);
+      if (this.eabAccessId) {
-          } else if (this[`${type}CommonEabAccessId`]) {
+        this.logger.info("当前正在使用 zerossl EAB授权");
-            this.logger.info(`当前正在使用 ${type} 公共EAB授权`);
+        eab = await this.getAccess(this.eabAccessId);
-            eab = await this.getAccess(this[`${type}CommonEabAccessId`], true);
+      } else if (this.zerosslCommonEabAccessId) {
-          } else {
+        this.logger.info("当前正在使用 zerossl 公共EAB授权");
-            throw new Error(`${type}需要配置EAB授权`);
+        eab = await this.getAccess(this.zerosslCommonEabAccessId, true);
-          }
+      } else {
-        };
+        throw new Error("zerossl需要配置EAB授权");
        await getEab(this.sslProvider);
      }
    }
    this.eab = eab;
@@ -428,12 +397,12 @@ export class CertApplyPlugin extends CertApplyBasePlugin {
    const csrInfo = _.merge(
      {
-        // country: "CN",
+        country: "CN",
-        // state: "GuangDong",
+        state: "GuangDong",
-        // locality: "ShengZhen",
+        locality: "ShengZhen",
-        // organization: "CertD Org.",
+        organization: "CertD Org.",
-        // organizationUnit: "IT Department",
+        organizationUnit: "IT Department",
-        // emailAddress: email,
+        emailAddress: email,
      },
      this.csrInfo ? JSON.parse(this.csrInfo) : {}
    );
@@ -461,7 +430,6 @@ export class CertApplyPlugin extends CertApplyBasePlugin {
        isTest: false,
        privateKeyType: this.privateKeyType,
        profile: this.certProfile,
        preferredChain: this.preferredChain,
      });
      const certInfo = this.formatCerts(cert);
--- a/packages/plugins/plugin-lib/CHANGELOG.md
+++ b/packages/plugins/plugin-lib/CHANGELOG.md
@@ -3,52 +3,6 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 ## [1.36.19](https://github.com/certd/certd/compare/v1.36.18...v1.36.19) (2025-09-05)
 ### Performance Improvements
 * ssh 增加超时断开连接，默认10分钟超时 ([c24a040](https://github.com/certd/certd/commit/c24a040c19cacafc79228d7a7649af93837d94a1))
 ## [1.36.18](https://github.com/certd/certd/compare/v1.36.17...v1.36.18) (2025-08-28)
 ### Performance Improvements
 * 腾讯云插件支持国际版 ([58e82d5](https://github.com/certd/certd/commit/58e82d5dbd4ebf089ef239578ef9b68454d17b30))
 * 支持部署到阿里云云原生API网关、AI网关 ([2ca20be](https://github.com/certd/certd/commit/2ca20be197720201fceabcce9d927f4dbc1cc872))
 * ssh 配置sudo免密提示 ([e1e7011](https://github.com/certd/certd/commit/e1e7011853ad0c5bd7b09c3690861d5aa34b2db4))
 ## [1.36.17](https://github.com/certd/certd/compare/v1.36.16...v1.36.17) (2025-08-17)
 ### Performance Improvements
 * 腾讯云关闭证书通知增加开关选项，在腾讯云授权里面 ([a77c777](https://github.com/certd/certd/commit/a77c777980dd38d97d983124eeed1596879bba95))
 ## [1.36.16](https://github.com/certd/certd/compare/v1.36.15...v1.36.16) (2025-08-16)
 **Note:** Version bump only for package @certd/plugin-lib
 ## [1.36.15](https://github.com/certd/certd/compare/v1.36.14...v1.36.15) (2025-08-07)
 ### Performance Improvements
 * 支持webhook部署证书 ([cbe0b1c](https://github.com/certd/certd/commit/cbe0b1c5a6538f232e9a63f1693d20d5acf0a306))
 ## [1.36.14](https://github.com/certd/certd/compare/v1.36.13...v1.36.14) (2025-07-28)
 ### Performance Improvements
 * 1panel支持 currenNode ([acc8907](https://github.com/certd/certd/commit/acc890730f43d492c9b1bd3668814cf10efdf7b8))
 ## [1.36.13](https://github.com/certd/certd/compare/v1.36.12...v1.36.13) (2025-07-23)
 ### Bug Fixes
 * 修复阿里云发送短信验证码失败的bug ([2e6d03f](https://github.com/certd/certd/commit/2e6d03ff001f521f57368e7a62b97ed7b122e8d0))
 ## [1.36.12](https://github.com/certd/certd/compare/v1.36.11...v1.36.12) (2025-07-22)
 **Note:** Version bump only for package @certd/plugin-lib
 ## [1.36.11](https://github.com/certd/certd/compare/v1.36.10...v1.36.11) (2025-07-22)
 **Note:** Version bump only for package @certd/plugin-lib
--- a/packages/plugins/plugin-lib/package.json
+++ b/packages/plugins/plugin-lib/package.json
@@ -1,7 +1,7 @@
 {
  "name": "@certd/plugin-lib",
  "private": false,
-  "version": "1.36.19",
+  "version": "1.36.11",
  "type": "module",
  "main": "./dist/index.js",
  "types": "./dist/index.d.ts",
@@ -21,8 +21,8 @@
    "@alicloud/pop-core": "^1.7.10",
    "@alicloud/tea-util": "^1.4.10",
    "@aws-sdk/client-s3": "^3.787.0",
-    "@certd/basic": "^1.36.19",
+    "@certd/basic": "^1.36.11",
-    "@certd/pipeline": "^1.36.19",
+    "@certd/pipeline": "^1.36.11",
    "@kubernetes/client-node": "0.21.0",
    "ali-oss": "^6.22.0",
    "basic-ftp": "^5.0.5",
@@ -53,5 +53,5 @@
    "tslib": "^2.8.1",
    "typescript": "^5.4.2"
  },
-  "gitHead": "6d8981479517b5de9634e242c1ebf22e70527ec4"
+  "gitHead": "7f9c4e52ac5c3837b251d3b2508457ce802e11cb"
 }
--- a/packages/plugins/plugin-lib/src/aliyun/access/aliyun-access.ts
+++ b/packages/plugins/plugin-lib/src/aliyun/access/aliyun-access.ts
@@ -7,9 +7,9 @@ export type AliyunClientV2Req = {
  // 接口 HTTP 方法
  method?: "GET" | "POST";
  authType?: "AK";
-  style?: "RPC" | "ROA";
+  style?: "RPC";
  // 接口 PATH
-  pathname?: string;
+  pathname?: `/`;
  data?: any;
 };
@@ -63,10 +63,10 @@ export class AliyunClientV2 {
      protocol: "HTTPS",
      // 接口 HTTP 方法
      method: req.method ?? "POST",
-      authType: req.authType ?? "AK",
+      authType: "AK",
-      style: req.style ?? "RPC",
+      style: "RPC",
      // 接口 PATH
-      pathname: req.pathname ?? `/`,
+      pathname: `/`,
      // 接口请求体内容格式
      reqBodyType: "json",
      // 接口响应体内容格式
--- a/packages/plugins/plugin-lib/src/aliyun/lib/base-client.ts
+++ b/packages/plugins/plugin-lib/src/aliyun/lib/base-client.ts
@@ -35,7 +35,7 @@ export class AliyunClient {
  }
  checkRet(ret: any) {
-    if (ret.Code != null && ret.Code !== "OK" && ret.Message !== "OK") {
+    if (ret.Code != null) {
      throw new Error("执行失败：" + ret.Message);
    }
  }
--- a/packages/plugins/plugin-lib/src/aliyun/lib/ssl-client.ts
+++ b/packages/plugins/plugin-lib/src/aliyun/lib/ssl-client.ts
@@ -9,8 +9,7 @@ export type AliyunCertInfo = {
 export type AliyunSslClientOpts = {
  access: AliyunAccess;
  logger: ILogger;
-  endpoint?: string;
+  endpoint: string;
  region?: string;
 };
 export type AliyunSslGetResourceListReq = {
@@ -49,19 +48,10 @@ export class AliyunSslClient {
  async getClient() {
    const access = this.opts.access;
    const client = new AliyunClient({ logger: this.opts.logger });
    let endpoint = this.opts.endpoint || "cas.aliyuncs.com";
    if (this.opts.endpoint == null && this.opts.region) {
      if (this.opts.region === "cn-hangzhou") {
        endpoint = "cas.aliyuncs.com";
      } else {
        endpoint = `cas.${this.opts.region}.aliyuncs.com`;
      }
    }
    await client.init({
      accessKeyId: access.accessKeyId,
      accessKeySecret: access.accessKeySecret,
-      endpoint: `https://${endpoint}`,
+      endpoint: `https://${this.opts.endpoint || "cas.aliyuncs.com"}`,
      apiVersion: "2020-04-07",
    });
    return client;
--- a/packages/plugins/plugin-lib/src/common/util.ts
+++ b/packages/plugins/plugin-lib/src/common/util.ts
@@ -17,7 +17,7 @@ export function createCertDomainGetterInputDefine(opts?: { certInputKey?: string
          }
        }
        `,
-      template: false,
+      template:false,
      required: true,
    },
    opts?.props
@@ -42,7 +42,6 @@ export function createRemoteSelectInputDefine(opts?: {
  search?: boolean;
  pager?: boolean;
  component?: any;
  value?: any;
 }) {
  const title = opts?.title || "请选择";
  const certDomainsInputKey = opts?.certDomainsInputKey || "certDomains";
@@ -75,7 +74,6 @@ export function createRemoteSelectInputDefine(opts?: {
      watches: [certDomainsInputKey, accessIdInputKey, ...watches],
      ...opts.component,
    },
    value: opts.value,
    rules: opts?.rules,
    required: opts.required ?? true,
    mergeScript:
--- a/packages/plugins/plugin-lib/src/ctyun/access/ctyun-access.ts
+++ b/packages/plugins/plugin-lib/src/ctyun/access/ctyun-access.ts
@@ -5,7 +5,6 @@ import { IsAccess, AccessInput, BaseAccess } from "@certd/pipeline";
  title: "天翼云授权",
  desc: "",
  icon: "ant-design:aliyun-outlined",
  order: 2,
 })
 export class CtyunAccess extends BaseAccess {
  @AccessInput({
--- a/packages/plugins/plugin-lib/src/qiniu/access.ts
+++ b/packages/plugins/plugin-lib/src/qiniu/access.ts
@@ -6,7 +6,6 @@ import { AccessInput, BaseAccess, IsAccess } from "@certd/pipeline";
  desc: "",
  icon: "svg:icon-qiniuyun",
  input: {},
  order: 2,
 })
 export class QiniuAccess extends BaseAccess {
  @AccessInput({
--- a/packages/plugins/plugin-lib/src/ssh/ssh-access.ts
+++ b/packages/plugins/plugin-lib/src/ssh/ssh-access.ts
@@ -5,7 +5,6 @@ import { AccessInput, BaseAccess, IsAccess } from "@certd/pipeline";
  desc: "",
  icon: "clarity:host-line",
  input: {},
  order: 0,
 })
 export class SshAccess extends BaseAccess {
  @AccessInput({
@@ -46,8 +45,8 @@ export class SshAccess extends BaseAccess {
    title: "私钥登录",
    helper: "私钥或密码必填一项",
    component: {
-      name: "pem-input",
+      name: "a-textarea",
-      vModel: "modelValue",
+      vModel: "value",
    },
    encrypt: true,
  })
@@ -64,22 +63,6 @@ export class SshAccess extends BaseAccess {
  })
  passphrase!: string;
  @AccessInput({
    title: "脚本类型",
    helper: "bash 、sh 、fish",
    component: {
      name: "a-select",
      vModel: "value",
      options: [
        { value: "default", label: "默认" },
        { value: "sh", label: "sh" },
        { value: "bash", label: "bash" },
        { value: "fish", label: "fish(不支持set -e)" },
      ],
    },
  })
  scriptType: string;
  @AccessInput({
    title: "伪终端",
    helper: "如果登录报错：all authentication methods failed，可以尝试开启伪终端模式进行keyboard-interactive方式登录\n开启后对日志输出有一定的影响",
@@ -102,15 +85,6 @@ export class SshAccess extends BaseAccess {
  })
  socksProxy!: string;
  @AccessInput({
    title: "超时时间",
    helper: "执行命令的超时时间，单位秒,默认30分钟",
    component: {
      name: "a-input-number",
    },
  })
  timeout: number;
  @AccessInput({
    title: "是否Windows",
    helper: "如果是Windows主机，请勾选此项\n并且需要windows[安装OpenSSH](https://certd.docmirror.cn/guide/use/host/windows.html)",
@@ -161,10 +135,9 @@ export class SshAccess extends BaseAccess {
    const { SshClient } = await import("./ssh.js");
    const client = new SshClient(this.ctx.logger);
    const script = ["echo hello", "exit"];
    await client.exec({
      connectConf: this,
-      script: script,
+      script: "echo hello",
    });
    return "ok";
  }
--- a/packages/plugins/plugin-lib/src/ssh/ssh.ts
+++ b/packages/plugins/plugin-lib/src/ssh/ssh.ts
@@ -247,9 +247,6 @@ export class AsyncSsh2Client {
            const err = this.convert(iconv, ret);
            stdErr += err;
            hasErrorLog = true;
            if (err.includes("sudo: a password is required")) {
              this.logger.warn("请配置sudo免密，否则命令无法执行");
            }
            this.logger.error(`[${this.connConf.host}][error]: ` + err.trimEnd());
          });
      });
@@ -469,8 +466,7 @@ export class SshClient {
  async isCmd(conn: AsyncSsh2Client) {
    const spec = await conn.exec("echo %COMSPEC% ");
-    const ret = spec.toString().trim();
+    if (spec.toString().trim() === "%COMSPEC%") {
    if (ret.includes("%COMSPEC%") && !ret.includes("echo %COMSPEC%")) {
      return false;
    } else {
      return true;
@@ -543,16 +539,8 @@ export class SshClient {
          }
        }
-        if (isLinux) {
+        if (isLinux && options.stopOnError !== false) {
-          if (options.connectConf.scriptType == "bash") {
+          script = "set -e\n" + script;
            script = "#!/usr/bin/env bash \n" + script;
          } else if (options.connectConf.scriptType == "sh") {
            script = "#!/bin/sh\n" + script;
          }
          if (options.connectConf.scriptType != "fish" && options.stopOnError !== false) {
            script = "set -e\n" + script;
          }
        }
        return await conn.exec(script as string, { throwOnStdErr });
@@ -596,15 +584,10 @@ export class SshClient {
      }
      throw e;
    }
-    let timeoutId = null;
+
    try {
      timeoutId = setTimeout(() => {
        this.logger.info("执行超时，断开连接");
        conn.end();
      }, 1000 * (connectConf.timeout || 1800));
      return await callable(conn);
    } finally {
      clearTimeout(timeoutId);
      conn.end();
    }
  }
--- a/packages/plugins/plugin-lib/src/tencent/access.ts
+++ b/packages/plugins/plugin-lib/src/tencent/access.ts
@@ -4,7 +4,6 @@ import { IsAccess, AccessInput, BaseAccess } from "@certd/pipeline";
  name: "tencent",
  title: "腾讯云",
  icon: "svg:icon-tencentcloud",
  order: 0,
 })
 export class TencentAccess extends BaseAccess {
  @AccessInput({
@@ -47,21 +46,7 @@ export class TencentAccess extends BaseAccess {
  })
  accountType: string;
  @AccessInput({
    title: "关闭证书过期通知",
    value: true,
    component: {
      name: "a-switch",
      vModel: "checked",
    },
  })
  closeExpiresNotify: boolean = true;
  isIntl() {
    return this.accountType === "intl";
  }
  intlDomain() {
    return this.isIntl() ? "intl." : "";
  }
 }
--- a/packages/plugins/plugin-lib/src/tencent/lib/cos-client.js
+++ b/packages/plugins/plugin-lib/src/tencent/lib/cos-client.js
@@ -1,183 +0,0 @@
 "use strict";
 var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
    return new (P || (P = Promise))(function (resolve, reject) {
        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
        step((generator = generator.apply(thisArg, _arguments || [])).next());
    });
 };
 var __generator = (this && this.__generator) || function (thisArg, body) {
    var _ = { label: 0, sent: function() { if (t[0] & 1) throw t[1]; return t[1]; }, trys: [], ops: [] }, f, y, t, g = Object.create((typeof Iterator === "function" ? Iterator : Object).prototype);
    return g.next = verb(0), g["throw"] = verb(1), g["return"] = verb(2), typeof Symbol === "function" && (g[Symbol.iterator] = function() { return this; }), g;
    function verb(n) { return function (v) { return step([n, v]); }; }
    function step(op) {
        if (f) throw new TypeError("Generator is already executing.");
        while (g && (g = 0, op[0] && (_ = 0)), _) try {
            if (f = 1, y && (t = op[0] & 2 ? y["return"] : op[0] ? y["throw"] || ((t = y["return"]) && t.call(y), 0) : y.next) && !(t = t.call(y, op[1])).done) return t;
            if (y = 0, t) op = [op[0] & 2, t.value];
            switch (op[0]) {
                case 0: case 1: t = op; break;
                case 4: _.label++; return { value: op[1], done: false };
                case 5: _.label++; y = op[1]; op = [0]; continue;
                case 7: op = _.ops.pop(); _.trys.pop(); continue;
                default:
                    if (!(t = _.trys, t = t.length > 0 && t[t.length - 1]) && (op[0] === 6 || op[0] === 2)) { _ = 0; continue; }
                    if (op[0] === 3 && (!t || (op[1] > t[0] && op[1] < t[3]))) { _.label = op[1]; break; }
                    if (op[0] === 6 && _.label < t[1]) { _.label = t[1]; t = op; break; }
                    if (t && _.label < t[2]) { _.label = t[2]; _.ops.push(op); break; }
                    if (t[2]) _.ops.pop();
                    _.trys.pop(); continue;
            }
            op = body.call(thisArg, _);
        } catch (e) { op = [6, e]; y = 0; } finally { f = t = 0; }
        if (op[0] & 5) throw op[1]; return { value: op[0] ? op[1] : void 0, done: true };
    }
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.TencentCosClient = void 0;
 var basic_1 = require("@certd/basic");
 var fs_1 = require("fs");
 var TencentCosClient = /** @class */ (function () {
    function TencentCosClient(opts) {
        this.access = opts.access;
        this.logger = opts.logger;
        this.bucket = opts.bucket;
        this.region = opts.region;
    }
    TencentCosClient.prototype.getCosClient = function () {
        return __awaiter(this, void 0, void 0, function () {
            var sdk, clientConfig;
            return __generator(this, function (_a) {
                switch (_a.label) {
                    case 0: return [4 /*yield*/, Promise.resolve().then(function () { return require("cos-nodejs-sdk-v5"); })];
                    case 1:
                        sdk = _a.sent();
                        clientConfig = {
                            SecretId: this.access.secretId,
                            SecretKey: this.access.secretKey,
                        };
                        return [2 /*return*/, new sdk.default(clientConfig)];
                }
            });
        });
    };
    TencentCosClient.prototype.uploadFile = function (key, file) {
        return __awaiter(this, void 0, void 0, function () {
            var cos;
            var _this = this;
            return __generator(this, function (_a) {
                switch (_a.label) {
                    case 0: return [4 /*yield*/, this.getCosClient()];
                    case 1:
                        cos = _a.sent();
                        return [2 /*return*/, (0, basic_1.safePromise)(function (resolve, reject) {
                                var readableStream = file;
                                if (typeof file === "string") {
                                    readableStream = fs_1.default.createReadStream(file);
                                }
                                cos.putObject({
                                    Bucket: _this.bucket /* 必须 */,
                                    Region: _this.region /* 必须 */,
                                    Key: key /* 必须 */,
                                    Body: readableStream, // 上传文件对象
                                    onProgress: function (progressData) {
                                        console.log(JSON.stringify(progressData));
                                    },
                                }, function (err, data) {
                                    if (err) {
                                        reject(err);
                                        return;
                                    }
                                    resolve(data);
                                });
                            })];
                }
            });
        });
    };
    TencentCosClient.prototype.removeFile = function (key) {
        return __awaiter(this, void 0, void 0, function () {
            var cos;
            var _this = this;
            return __generator(this, function (_a) {
                switch (_a.label) {
                    case 0: return [4 /*yield*/, this.getCosClient()];
                    case 1:
                        cos = _a.sent();
                        return [2 /*return*/, (0, basic_1.safePromise)(function (resolve, reject) {
                                cos.deleteObject({
                                    Bucket: _this.bucket,
                                    Region: _this.region,
                                    Key: key,
                                }, function (err, data) {
                                    if (err) {
                                        reject(err);
                                        return;
                                    }
                                    resolve(data);
                                });
                            })];
                }
            });
        });
    };
    TencentCosClient.prototype.downloadFile = function (key, savePath) {
        return __awaiter(this, void 0, void 0, function () {
            var cos, writeStream;
            var _this = this;
            return __generator(this, function (_a) {
                switch (_a.label) {
                    case 0: return [4 /*yield*/, this.getCosClient()];
                    case 1:
                        cos = _a.sent();
                        writeStream = fs_1.default.createWriteStream(savePath);
                        return [2 /*return*/, (0, basic_1.safePromise)(function (resolve, reject) {
                                cos.getObject({
                                    Bucket: _this.bucket,
                                    Region: _this.region,
                                    Key: key,
                                    Output: writeStream,
                                }, function (err, data) {
                                    if (err) {
                                        reject(err);
                                        return;
                                    }
                                    resolve(data);
                                });
                            })];
                }
            });
        });
    };
    TencentCosClient.prototype.listDir = function (dirKey) {
        return __awaiter(this, void 0, void 0, function () {
            var cos;
            var _this = this;
            return __generator(this, function (_a) {
                switch (_a.label) {
                    case 0: return [4 /*yield*/, this.getCosClient()];
                    case 1:
                        cos = _a.sent();
                        return [2 /*return*/, (0, basic_1.safePromise)(function (resolve, reject) {
                                cos.getBucket({
                                    Bucket: _this.bucket,
                                    Region: _this.region,
                                    Prefix: dirKey,
                                    MaxKeys: 1000,
                                }, function (err, data) {
                                    if (err) {
                                        reject(err);
                                        return;
                                    }
                                    resolve(data.Contents);
                                });
                            })];
                }
            });
        });
    };
    return TencentCosClient;
 }());
 exports.TencentCosClient = TencentCosClient;
--- a/packages/plugins/plugin-lib/src/tencent/lib/ssl-client.ts
+++ b/packages/plugins/plugin-lib/src/tencent/lib/ssl-client.ts
@@ -26,7 +26,7 @@ export class TencentSslClient {
      region: this.region,
      profile: {
        httpProfile: {
-          endpoint: this.access.isIntl() ? "ssl.intl.tencentcloudapi.com" : "ssl.tencentcloudapi.com",
+          endpoint: "ssl.tencentcloudapi.com",
        },
      },
    };
@@ -50,10 +50,7 @@ export class TencentSslClient {
    const ret = await client.UploadCertificate(params);
    this.checkRet(ret);
    this.logger.info(`证书[${opts.certName}]上传成功：tencentCertId=`, ret.CertificateId);
-    if (this.access.closeExpiresNotify) {
+    await this.switchCertNotify([ret.CertificateId], true);
      await this.switchCertNotify([ret.CertificateId], true);
    }
    return ret.CertificateId;
  }
@@ -76,26 +73,9 @@ export class TencentSslClient {
    return res;
  }
-  async DescribeHostUploadUpdateRecordDetail(params: any) {
+  async DescribeCertificates(params: any) {
    const client = await this.getSslClient();
-    const res = await client.request("DescribeHostUploadUpdateRecordDetail", params);
+    const res = await client.DescribeCertificates(params);
    this.checkRet(res);
    return res;
  }
  async UploadUpdateCertificateInstance(params: any) {
    const client = await this.getSslClient();
    const res = await client.request("UploadUpdateCertificateInstance", params);
    this.checkRet(res);
    return res;
  }
  async DescribeCertificates(params: { Limit?: number; Offset?: number; SearchKey?: string }) {
    const client = await this.getSslClient();
    const res = await client.DescribeCertificates({
      ExpirationSort: "ASC",
      ...params,
    });
    this.checkRet(res);
    return res;
  }
--- a/packages/ui/certd-client/.env
+++ b/packages/ui/certd-client/.env
@@ -10,4 +10,3 @@ VITE_APP_LOGO=static/images/logo/logo.svg
 VITE_APP_LOGIN_LOGO=static/images/logo/rect-black.svg
 VITE_APP_PROJECT_PATH=https://github.com/certd/certd
 VITE_APP_NAMESPACE=fs
 VITE_APP_VIP_PRODUCT_URL=http://localhost:1017/subject#/product/list
--- a/packages/ui/certd-client/CHANGELOG.md
+++ b/packages/ui/certd-client/CHANGELOG.md
@@ -3,87 +3,6 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 ## [1.36.19](https://github.com/certd/certd/compare/v1.36.18...v1.36.19) (2025-09-05)
 ### Bug Fixes
 * 修复批量流水线执行时日志显示错乱的问题 ([4372adc](https://github.com/certd/certd/commit/4372adc703b9a4c785664054ab2a533626d815a8))
 * 修复远程数据选择无法过滤的bug ([6cbb073](https://github.com/certd/certd/commit/6cbb0739f8428d51b0712f718fe4d236cc087cf9))
 * 修复mysql下购买套餐加量包无效的bug ([c26ad4c](https://github.com/certd/certd/commit/c26ad4c8075f0606d45b8da13915737968d6191a))
 ### Performance Improvements
 * 创建证书时支持选择通知时机 ([0e96bfd](https://github.com/certd/certd/commit/0e96bfdfa377824d204e72923d1176408ae6b300))
 * 商业版隐藏文档相关链接 ([4443a1c](https://github.com/certd/certd/commit/4443a1c0308fa6b95a05efd73d15d24b65d641c9))
 * 商业版隐藏文档相关链接 ([db89561](https://github.com/certd/certd/commit/db8956148083bc4f988226ccf719940d08158a27))
 * 支持根据id更新证书（证书Id不变接口），不过该接口为白名单功能，普通腾讯云账户无法使用 ([fe9c4f3](https://github.com/certd/certd/commit/fe9c4f3391ff07c01dd9a252225f69a129c39050))
 * 子域名托管说明 ([39a0223](https://github.com/certd/certd/commit/39a02235cf4416bb5bd1acd3831241efeaa2f602))
 ## [1.36.18](https://github.com/certd/certd/compare/v1.36.17...v1.36.18) (2025-08-28)
 ### Bug Fixes
 * 修复cron选择组件星期显示错误的bug ([eb75e52](https://github.com/certd/certd/commit/eb75e52278f94a72643f7317e6740fb42666c68a))
 ### Performance Improvements
 * 短信验证码支持腾讯云 ([9108459](https://github.com/certd/certd/commit/9108459ae42bcd95a59acba164a64e82e5f2cfe6))
 * 商业版支持自定义插件的参数配置 ([17f23f3](https://github.com/certd/certd/commit/17f23f37516af925d5049291d67d41e4271f81f8))
 * 支持p7b证书格式 ([d9f4a57](https://github.com/certd/certd/commit/d9f4a5793d68a017a5d80ad5385cbda603c4e165))
 * openapi返回证书时挑选匹配范围最小的那一个；增加format参数，增加返回值p7b格式，增加detail返回 ([2085bcc](https://github.com/certd/certd/commit/2085bcceb61c3723c9bdfec4c4cc0917631ff5e5))
 ## [1.36.17](https://github.com/certd/certd/compare/v1.36.16...v1.36.17) (2025-08-17)
 **Note:** Version bump only for package @certd/ui-client
 ## [1.36.16](https://github.com/certd/certd/compare/v1.36.15...v1.36.16) (2025-08-16)
 ### Bug Fixes
 * 修复授权配置复制功能，无法复制已加密字段的问题 ([221e068](https://github.com/certd/certd/commit/221e068bac3af6cd5d1794f8cd4c2ec5c0bc3f45))
 ### Performance Improvements
 * 增加找回密码的验证码可重试次数 [@nicheng-he](https://github.com/nicheng-he)  ([#496](https://github.com/certd/certd/issues/496)) ([fe03f99](https://github.com/certd/certd/commit/fe03f9942b5662fb90cad86da10782f5dc3603f5))
 * 支持阿里云API网关 ([9e1e4ee](https://github.com/certd/certd/commit/9e1e4eeec2859759ca5b07834c9d24cf88a6ad33))
 * 支持部署到金山云CDN ([dfa74a6](https://github.com/certd/certd/commit/dfa74a69f7cbb9009d3e20c7eecfa1b905a00cf0))
 ## [1.36.15](https://github.com/certd/certd/compare/v1.36.14...v1.36.15) (2025-08-07)
 ### Performance Improvements
 * 部署到阿里云支持选择bucket和域名 ([013b9c4](https://github.com/certd/certd/commit/013b9c4c7c2adf485d086123ccea448719577fd4))
 * 支持webhook部署证书 ([cbe0b1c](https://github.com/certd/certd/commit/cbe0b1c5a6538f232e9a63f1693d20d5acf0a306))
 * 注册时支持填写用户名 ([fdcfcc7](https://github.com/certd/certd/commit/fdcfcc77a0db87954e0b026635d3ccdd9bc6cee8))
 ## [1.36.14](https://github.com/certd/certd/compare/v1.36.13...v1.36.14) (2025-07-28)
 ### Bug Fixes
 * 修复复制流水线为空的bug ([b070773](https://github.com/certd/certd/commit/b0707739fdfbae3d78db4efd3f180db05c4e4164))
 ### Performance Improvements
 * 授权管理支持模糊查询 ([866eb62](https://github.com/certd/certd/commit/866eb6241baa7b21f6eddc649966324c188236c6))
 * 新增找回密码功能 [@nicheng-he](https://github.com/nicheng-he) ([81ac240](https://github.com/certd/certd/commit/81ac240ac84db0af2f56b6352e227ecb49f38377))
 ## [1.36.13](https://github.com/certd/certd/compare/v1.36.12...v1.36.13) (2025-07-23)
 ### Performance Improvements
 * 阿里云部分插件优化  [@nicheng-he](https://github.com/nicheng-he) ([e3738f6](https://github.com/certd/certd/commit/e3738f6422270d75ec414c15a343248cc4cad6e1))
 ## [1.36.12](https://github.com/certd/certd/compare/v1.36.11...v1.36.12) (2025-07-22)
 ### Bug Fixes
 * 上传到阿里云cas，证书前缀无效的bug ([b382351](https://github.com/certd/certd/commit/b382351c7b91ec10e1f61d94bec5aad075207ec8))
 ### Performance Improvements
 * 首页增加更新日志按钮 ([41ce848](https://github.com/certd/certd/commit/41ce8489dc2f03a705dfa3fbb357769defb56c60))
 * 增加版本过低提示 ([d1ce360](https://github.com/certd/certd/commit/d1ce36038cab72b5dc1b320d0a708c261ffbdacb))
 ## [1.36.11](https://github.com/certd/certd/compare/v1.36.10...v1.36.11) (2025-07-22)
 **Note:** Version bump only for package @certd/ui-client
--- a/packages/ui/certd-client/index.html
+++ b/packages/ui/certd-client/index.html
@@ -23,6 +23,5 @@
 </div>
 <script type="module" src="/src/main.ts"></script>
 <script src="https://static.geetest.com/v4/gt4.js"></script>
 </body>
 </html>
--- a/packages/ui/certd-client/package.json
+++ b/packages/ui/certd-client/package.json
@@ -1,6 +1,6 @@
 {
  "name": "@certd/ui-client",
-  "version": "1.36.19",
+  "version": "1.36.11",
  "private": true,
  "scripts": {
    "dev": "vite --open",
@@ -30,7 +30,6 @@
    "@ant-design/icons-vue": "^7.0.1",
    "@aws-sdk/client-s3": "^3.535.0",
    "@aws-sdk/s3-request-presigner": "^3.535.0",
    "@certd/vue-js-cron-light": "^4.0.14",
    "@ctrl/tinycolor": "^4.1.0",
    "@fast-crud/fast-crud": "^1.25.13",
    "@fast-crud/fast-extends": "^1.25.13",
@@ -44,6 +43,7 @@
    "@tailwindcss/typography": "^0.5.16",
    "@tanstack/vue-store": "^0.7.0",
    "@vee-validate/zod": "^4.15.0",
    "@vue-js-cron/light": "^4.0.5",
    "@vue/shared": "^3.5.13",
    "@vueuse/core": "^10.11.0",
    "ant-design-vue": "^4.2.6",
@@ -103,8 +103,8 @@
    "zod-defaults": "^0.1.3"
  },
  "devDependencies": {
-    "@certd/lib-iframe": "^1.36.19",
+    "@certd/lib-iframe": "^1.36.11",
-    "@certd/pipeline": "^1.36.19",
+    "@certd/pipeline": "^1.36.11",
    "@rollup/plugin-commonjs": "^25.0.7",
    "@rollup/plugin-node-resolve": "^15.2.3",
    "@types/chai": "^4.3.12",
@@ -120,7 +120,7 @@
    "@vue/compiler-sfc": "^3.4.21",
    "@vue/eslint-config-typescript": "^13.0.0",
    "@vue/test-utils": "^2.4.6",
-    "autoprefixer": "^10.4.21",
+    "autoprefixer": "^10.4.20",
    "caller-path": "^4.0.0",
    "chai": "^5.1.0",
    "dependency-cruiser": "^16.2.3",
--- a/packages/ui/certd-client/public/static/icons/demo_index.html
+++ b/packages/ui/certd-client/public/static/icons/demo_index.html
@@ -54,36 +54,6 @@
      <div class="content unicode" style="display: block;">
          <ul class="icon_lists dib-box">
            <li class="dib">
              <span class="icon iconfont">&#xe8fb;</span>
                <div class="name">social-foursquare</div>
                <div class="code-name">&amp;#xe8fb;</div>
              </li>
            <li class="dib">
              <span class="icon iconfont">&#xe65a;</span>
                <div class="name">ksyun-logo</div>
                <div class="code-name">&amp;#xe65a;</div>
              </li>
            <li class="dib">
              <span class="icon iconfont">&#xe608;</span>
                <div class="name">雨-copy</div>
                <div class="code-name">&amp;#xe608;</div>
              </li>
            <li class="dib">
              <span class="icon iconfont">&#xe655;</span>
                <div class="name">网宿</div>
                <div class="code-name">&amp;#xe655;</div>
              </li>
            <li class="dib">
              <span class="icon iconfont">&#xe727;</span>
                <div class="name">ai客服</div>
                <div class="code-name">&amp;#xe727;</div>
              </li>
            <li class="dib">
              <span class="icon iconfont">&#xe6e4;</span>
                <div class="name">cdn</div>
@@ -228,7 +198,7 @@
 <pre><code class="language-css"
 >@font-face {
  font-family: 'iconfont';
-  src: url('iconfont.svg?t=1754884110189#iconfont') format('svg');
+  src: url('iconfont.svg?t=1743267254898#iconfont') format('svg');
 }
 </code></pre>
          <h3 id="-iconfont-">第二步：定义使用 iconfont 的样式</h3>
@@ -254,51 +224,6 @@
      <div class="content font-class">
        <ul class="icon_lists dib-box">
          <li class="dib">
            <span class="icon iconfont icon-four"></span>
            <div class="name">
              social-foursquare
            </div>
            <div class="code-name">.icon-four
            </div>
          </li>
          <li class="dib">
            <span class="icon iconfont icon-ksyun"></span>
            <div class="name">
              ksyun-logo
            </div>
            <div class="code-name">.icon-ksyun
            </div>
          </li>
          <li class="dib">
            <span class="icon iconfont icon-rainyun"></span>
            <div class="name">
              雨-copy
            </div>
            <div class="code-name">.icon-rainyun
            </div>
          </li>
          <li class="dib">
            <span class="icon iconfont icon-wangsu"></span>
            <div class="name">
              网宿
            </div>
            <div class="code-name">.icon-wangsu
            </div>
          </li>
          <li class="dib">
            <span class="icon iconfont icon-aikefu"></span>
            <div class="name">
              ai客服
            </div>
            <div class="code-name">.icon-aikefu
            </div>
          </li>
          <li class="dib">
            <span class="icon iconfont icon-cdn"></span>
            <div class="name">
@@ -515,46 +440,6 @@
      <div class="content symbol">
          <ul class="icon_lists dib-box">
            <li class="dib">
                <svg class="icon svg-icon" aria-hidden="true">
                  <use xlink:href="#icon-four"></use>
                </svg>
                <div class="name">social-foursquare</div>
                <div class="code-name">#icon-four</div>
            </li>
            <li class="dib">
                <svg class="icon svg-icon" aria-hidden="true">
                  <use xlink:href="#icon-ksyun"></use>
                </svg>
                <div class="name">ksyun-logo</div>
                <div class="code-name">#icon-ksyun</div>
            </li>
            <li class="dib">
                <svg class="icon svg-icon" aria-hidden="true">
                  <use xlink:href="#icon-rainyun"></use>
                </svg>
                <div class="name">雨-copy</div>
                <div class="code-name">#icon-rainyun</div>
            </li>
            <li class="dib">
                <svg class="icon svg-icon" aria-hidden="true">
                  <use xlink:href="#icon-wangsu"></use>
                </svg>
                <div class="name">网宿</div>
                <div class="code-name">#icon-wangsu</div>
            </li>
            <li class="dib">
                <svg class="icon svg-icon" aria-hidden="true">
                  <use xlink:href="#icon-aikefu"></use>
                </svg>
                <div class="name">ai客服</div>
                <div class="code-name">#icon-aikefu</div>
            </li>
            <li class="dib">
                <svg class="icon svg-icon" aria-hidden="true">
                  <use xlink:href="#icon-cdn"></use>
--- a/packages/ui/certd-client/public/static/icons/iconfont.css
+++ b/packages/ui/certd-client/public/static/icons/iconfont.css
@@ -1,6 +1,6 @@
@font-face {
  font-family: "iconfont"; /* Project id 4688792 */
-  src: url('iconfont.svg?t=1754884110189#iconfont') format('svg');
+  src: url('iconfont.svg?t=1743267254898#iconfont') format('svg');
 }
 .iconfont {
@@ -11,26 +11,6 @@
  -moz-osx-font-smoothing: grayscale;
 }
 .icon-four:before {
  content: "\e8fb";
 }
 .icon-ksyun:before {
  content: "\e65a";
 }
 .icon-rainyun:before {
  content: "\e608";
 }
 .icon-wangsu:before {
  content: "\e655";
 }
 .icon-aikefu:before {
  content: "\e727";
 }
 .icon-cdn:before {
  content: "\e6e4";
 }
--- a/packages/ui/certd-client/public/static/icons/iconfont.js
+++ b/packages/ui/certd-client/public/static/icons/iconfont.js
--- a/packages/ui/certd-client/public/static/icons/iconfont.json
+++ b/packages/ui/certd-client/public/static/icons/iconfont.json
@@ -5,41 +5,6 @@
  "css_prefix_text": "icon-",
  "description": "",
  "glyphs": [
    {
      "icon_id": "544964",
      "name": "social-foursquare",
      "font_class": "four",
      "unicode": "e8fb",
      "unicode_decimal": 59643
    },
    {
      "icon_id": "8567079",
      "name": "ksyun-logo",
      "font_class": "ksyun",
      "unicode": "e65a",
      "unicode_decimal": 58970
    },
    {
      "icon_id": "42174864",
      "name": "雨-copy",
      "font_class": "rainyun",
      "unicode": "e608",
      "unicode_decimal": 58888
    },
    {
      "icon_id": "14065547",
      "name": "网宿",
      "font_class": "wangsu",
      "unicode": "e655",
      "unicode_decimal": 58965
    },
    {
      "icon_id": "41324539",
      "name": "ai客服",
      "font_class": "aikefu",
      "unicode": "e727",
      "unicode_decimal": 59175
    },
    {
      "icon_id": "13592652",
      "name": "cdn",
--- a/packages/ui/certd-client/public/static/icons/iconfont.svg
+++ b/packages/ui/certd-client/public/static/icons/iconfont.svg
--- a/packages/ui/certd-client/src/components/captcha/captcha-input.vue
+++ b/packages/ui/certd-client/src/components/captcha/captcha-input.vue
@@ -1,50 +0,0 @@
 <template>
  <component :is="captchaComponent" v-if="settingStore.inited" ref="captchaRef" class="captcha_input" :captcha-get="getCaptcha" @change="onChange" />
 </template>
 <script setup lang="ts">
 import { ref, computed, defineAsyncComponent } from "vue";
 import { useSettingStore } from "/@/store/settings";
 import { nanoid } from "nanoid";
 import { request } from "/@/api/service";
 const captchaRef = ref(null);
 const settingStore = useSettingStore();
 const emits = defineEmits(["update:modelValue", "change"]);
 const captchaImpls = import.meta.glob("./captchas/*.vue");
 const captchaAddonId = computed(() => {
  return settingStore.sysPublic.captchaAddonId ?? 0;
 });
 const captchaComponent = computed(() => {
  let type = "image";
  if (settingStore.sysPublic.captchaAddonId && settingStore.sysPublic.captchaType) {
    type = settingStore.sysPublic.captchaType;
  }
  const componentName = `${type}_captcha`;
  return defineAsyncComponent(captchaImpls[`./captchas/${componentName}.vue`]);
 });
 async function getCaptcha(): Promise<any> {
  const randomStr = nanoid(10);
  return await request({
    url: `/basic/code/captcha/get?randomStr=${randomStr}`,
    method: "post",
    data: {
      captchaAddonId: captchaAddonId.value,
    },
  });
 }
 function onChange(data) {
  emits("update:modelValue", data);
  emits("change", data);
 }
 async function getCaptchaForm() {
  return await captchaRef.value.getCaptchaForm();
 }
 defineExpose({
  getCaptchaForm,
 });
 </script>
--- a/Show More
+++ b/Show More
		`@@ -1,3 +0,0 @@`
			`import { createRegistry } from "@certd/pipeline";`

			`export const addonRegistry = createRegistry("addon");`
`@@ -1,2 +1 @@`
	`export * from './access/index.js';`	`export * from './access/index.js';`
	`export * from './addon/index.js';`