Release v1.98 🌈

Features

• Added TLS (SSL mode) support for the Redis datasource in both the backend and datasource UI. (#41587)

Fixes

• Enforced edit permissions for application snapshot deletion. (GHSA-g2hc-wmw2-32jr) (#41624)
• Added a red asterisk to required fields. (#41609)
• Prevented unauthenticated disclosure of instance metadata. [APP-14994] (#41598)
• Prevented SQL injection in UQI filter service projection and sortBy columns. (#41594)
• Restricted draft action execution to editors only. (#41614)
• Upgraded simple-git to 3.32.3 to resolve critical CVE-2026-28292. (#41613)
• Upgraded fast-xml-parser to 4.5.4 to resolve critical CVE-2026-25896. (#41595)
• Increased the client class API timeout for the consolidated API from 20 seconds to 60 seconds. (#41591)

Release v1.97 🌈

Features

• Enabled on-the-fly response compression in Caddy. (#41577)
• Added BetterBugs recording links with support for air-gapped environments and disable options. (#41576)
• Introduced Favorite Applications (V2). (#41555)
• Added new style properties to TableWidgetV2: headerRowColor, oddRowColor, and evenRowColor. (#41551)

---

Fixes

• Stabilized the app deletion flow to prevent resource spikes and server restarts. (#41584)
• Moved the cookie sameSite initializer to the constructor to prevent an OverflowError. (#41575)
• Prevented open redirects in login and OAuth2 redirect flows. (#41550)

Release v1.96 🌈

Features

• Added Betterbugs SDK support. (#41532)
• Added a Tooltip property for the Checkbox widget. (#41483)

---

Fixes

• Fixed an arbitrary file write vulnerability that allowed writes outside the repository scope. (#41565)
• Added a getTextFromHTML fallback and normalized search keys to properly handle HTML content. (#41553)
• Fixed an XSS vulnerability in Table HTML cells. (#41539)
• Closed InputStreams after StreamUtils.copyToString to prevent resource leaks. (#41516)
• Fixed an issue where stale actions could not read contents. (#41533)
• Updated MongoDB feature compatibility version (FCV) to 6. (#41534)
• Fixed an OS command injection vulnerability when in-memory Git is enabled. (#41525)

Release v1.95 🌈

Features

• Added extraVolumes and extraVolumeMounts configuration options to the Helm chart. (#41515)
• Show a security warning message when ps is turned off. (#41486)
• Display user display names on workspace members page (#8545)

---

Fixes

• Fixed an issue where anonymous users could execute unpublished actions. (#41517)
• Updated Helm charts to use the Appsmith-built MongoDB image by default. (#41506)
• Switched to OIDC trust for depot in the base image workflow. (#41497)

Release v1.94 🌈

Features

• Added a Redeploy button to allow users to sync the latest changes to App view mode. (#41459)
• Displayed workspace logos in the sidebar navigation. (#41377)

Fixes

• Fixed an issue where git pull created a sync commit, resulting in lost changes. (#41467)
• Updated Helm charts to support deployments with zero replicas. (#41444)
• Temporarily disabled the precompressed directive. (#41365)

Release v1.93 🌈

Features

• Static URL Support for Applications and Pages. (#41312)
• Added support for Custom GraphQL Actions for integrations using GraphQL. (#41404)
• Added formatting for GraphQL body in the query editor. (#41425)
• Added a setValue method for the Radio Group widget. (#41402)
• Enabled specifying deployments in the Helm chart without requiring autoscaling. (#41397)

Fixes

• Simplified the isChecked update logic by removing unnecessary parameters. (#41430)
• Improved authentication by validating the Origin header against APPSMITH_BASE_URL. (#41426)
• Corrected placeholder text in the GraphQL action editor. (#41423)
• Resolved an issue where partial exports of custom libraries resulted in zero libraries being exported. (#41416)
• Updated Gemini model options in the Google AI datasource to ensure compatibility with the generate command. (#41415)
• Made the horizontal scrollbar thicker for better visibility in tables. (#41370)

Release v1.92 🌈

Feature

• Exposed application height and width in the appsmith.ui state object. (#41339)

Fixes

• Resolved an issue causing git pull to fail for packages. (#41389)
• Corrected currency formatting for decimals and thousand separators. (#41372)
• Disabled Docker cache during base image builds to prevent stale layers. (#41368)

Release v1.91 🌈

Features

• Added functionality to regenerate Git deploy keys. (PR #41357)
• Enabled users to regenerate Git SSH keys directly. (PR #41352)

---

Fixes

• Fixed a null pointer exception (NPE) occurring in OPL calculation during branch creation. (PR #41331)

Release v1.90 🌈

Fixes

• Ensured applications render correctly when AI agent flags are only partially enabled. (PR #41317)
• Fixed an issue in URL generation by handling potential null values in basePageId. (PR #41315)

Security Update

• Resolved CVE-2025-58754 by upgrading the axios dependency. (PR #41295)

Release v1.89 🌈

Fixes

• Resolved an issue causing download failures for Hurl due to upstream changes. (PR #41288)
• Addressed security vulnerabilities (CVE-2025-9288 and CVE-2025-9287) in the sha.js and cipher-base libraries. (PR #41284)