MX Connect Release (July 7, 2025)

Table of Contents

1. Features

   • Expanded Risk Flags for Canadian Transactions

2. Enhancements

   • Orchestration Support for Individual Entities
   • Improved Attachment Upload Stability
   • Multi-Index Search Support in Storage Broker
   • Callback Retry Mechanism Update

3. Bugs and Fixes

   • Inconsistent Attachment Visibility for Georgia Banking Company
   • Risk Review Filter Functionality Restored
   • PDF Generation Stability in Signature API
   • Blank Product Page on Application Tab Duplication
   • Type Filter Issue on Partners Page

Features

Expanded Risk Flags for Canadian Transactions

The Risk Engine now supports a comprehensive set of Canadian-specific fraud detection flags across multiple transaction dimensions, including volume anomalies, excessive declines, foreign card usage, and dormant account reactivation. Key additions include:

• Abnormal Low Ticket: Flags when daily average transaction amounts fall below expected thresholds.
• Negative Daily Batch: Scores merchants with net negative daily volumes.
• Exceeded Monthly Volume: Detects when merchants surpass their approved monthly sales limits.
• Large Transaction Amounts: Triggers when a single transaction exceeds the configured max.
• Foreign Card Usage: Flags activity from cards issued outside Canada.
• Dormant Account Activity: Identifies reactivated accounts after extended inactivity.
• Excessive Declines: Flags merchants with high ratios of declined authorizations.
• Multi-BIN Usage: Detects repeated BINs on a single day.
• Duplicate Cards: Flags repeated card use on a merchant within a single day.
• Error Auth Declines: Scores based on declined authorization errors.
• Keyed Percentage: Flags merchants with high rates of manually entered transactions.
• Average Ticket: Scores deviations from merchant average ticket sizes.
• Merchant Processing Volume: Monitors spikes in daily processing relative to recent trends.

These additions enhance fraud detection, increase analyst visibility, and support proactive risk mitigation across the Canadian portfolio.

Enhancements

Orchestration Support for Individual Entities

The platform now supports individual-based entity orchestration via new MySQL tables, Elasticsearch indices, and Kafka topics. Enhancements include:

• Creation of Individual_Entity schema for personal data.
• Updates to the BoardingDedupProducts lookup to enable eligibility configuration.
• Expanded Internal Entity API with full CRUD operations, including pagination, filtering, and Swagger documentation.

These updates enable seamless onboarding and management of individuals alongside business entities within the orchestration engine.

Improved Attachment Upload Stability

A race condition in the merchant application attachment flow was resolved to ensure that file uploads complete before downstream processes are triggered. This prevents issues like missing documents or incorrect statuses during submission, improving the reliability of merchant workflows and document tracking.

Multi-Index Search Support in Storage Broker

The storage broker now supports querying across multiple indices simultaneously. Clients can pass multiple entity names (e.g., Merchant_Uar, Individual_Uar) to broker.storage.search, enabling unified search experiences and more powerful orchestration logic without disrupting existing integrations.

Callback Retry Mechanism Update

The callback consumer retry logic was redesigned using a serial, exponential backoff strategy. Key changes include:

• Immediate success on 2xx responses
• Dead-lettering on 4xx
• Up to five retries on 5xx with increasing delays
• Infinite retries for timeouts with a 1-minute max backoff
• Enhanced logging for traceability

These improvements reduce Kafka strain and improve the handling of downstream service failures.

Bugs and Fixes

Inconsistent Attachment Visibility for Georgia Banking Company

Resolved an issue that prevented users—particularly those from Georgia Banking Company—from accessing application attachments. A support script was executed to standardize access labels like “Axiom” across categories, restoring full visibility for all authorized users.

Risk Review Filter Functionality Restored

Fixed an issue where the “Latest” filter in the Risk Review tab failed to return results. The correction ensures that filtering now accurately reflects application recency, improving analyst workflows.

PDF Generation Stability in Signature API

Addressed ~161 Level 60 errors in mx-vtx-api-signature stemming from improper asynchronous handling in Puppeteer-based PDF generation. Promises are now correctly awaited, preventing “Target closed” errors and ensuring stable document rendering.

Blank Product Page on Application Tab Duplication

Fixed a defect where duplicating a tab post-boarding caused the Product page to remain blank due to UI/backend conflicts. An error modal now notifies the user that the application is already signed and redirects safely to the Applications grid, preventing unintended edits.

Type Filter Issue on Partners Page

Corrected a filter mismatch in the Partners page within the UAT environment. The issue, caused by camelCase enum mismatches, has been resolved by updating both UI inputs and Elasticsearch mappings. Reindexing will follow in SB and PROD to ensure consistent filtering behavior.