Appsmith — Automation, Backend product updates and releases, tracked on megachangelog.
Appsmith v2.1 introduces customer support platform integration with Pylon, adds memory analysis tooling, and includes multiple security hardening fixes including SSRF protection, path traversal validation, and permission enforcement.
Appsmith 2.0 includes major dependency upgrades to MongoDB 7, Java 25, and Node 24, along with numerous security fixes and bug fixes. Users upgrading from versions before v1.96 must first upgrade to v1.99 to complete required database migrations before proceeding to 2.0+.
v1.99 includes critical security fixes for CVE-2025-70952 and multiple vulnerabilities including SSRF, XSS, and SQL injection prevention, along with bug fixes for imports, widgets, datasources, and email normalization.
Added TLS support for Redis datasources and implemented multiple security fixes including SQL injection prevention, unauthenticated metadata disclosure prevention, and enforced permission checks. Also upgraded dependencies to resolve critical vulnerabilities.
Appsmith v1.97 introduces on-the-fly response compression, favorite applications feature, and new table styling options, while also stabilizing app deletion, fixing cookie handling, and preventing open redirect vulnerabilities in authentication flows.
This release includes new features like Betterbugs SDK support and a Tooltip property for Checkbox widgets, along with critical security fixes for file write, XSS, and OS command injection vulnerabilities, plus improvements to resource management and HTML content handling.
This release includes new Helm chart configuration options for volumes, improved security warnings when protection systems are disabled, and display of user names in workspace members. It also fixes a security issue where anonymous users could execute unpublished actions and updates default MongoDB image configuration.
Added a Redeploy button for syncing latest changes to app view mode, displayed workspace logos in sidebar navigation, fixed a git pull sync commit issue that caused lost changes, and improved Helm chart deployment support including zero replica deployments.
Appsmith v1.93 adds static URL support for applications, custom GraphQL actions, improved GraphQL editor formatting, and a setValue method for Radio Group widgets. Also includes fixes for authentication validation, custom library exports, and UI improvements across the platform.
This release adds application height and width properties to the appsmith.ui state object, fixes git pull failures for packages, corrects currency formatting for decimals and thousand separators, and disables Docker cache during base image builds to prevent stale layers.