1.12.7-release

fix(security): pin libthrift, provided jsonschema2pojo, bump azure-kv…

1.13.0-rc1-release

chore(release): Prepare Branch for `1.13.0-rc1`

1.12.6-release

Improvements

• Platform: Enhanced search index performance and reduced memory footprint during reindex operations to minimize runtime impact #27153
• Platform: Improved reliability of bulk indexing with better handling of large payloads and batching #27127
• Governance: Refactored certification storage to improve consistency and auditability across entities #26448
• Platform: Added support for SAML metadata XML upload to simplify SSO configuration #26862
• Ingestion: Improved Looker ingestion error handling with safer logging and better diagnostics #27236
• AI/Platform: Introduced safeguards for large payload handling in vector embedding workflows to prevent system overload #26943

Fixes

• Security: Addressed multiple vulnerabilities by upgrading dependencies including MCP Java SDK and netty-bom (CVE-2026-34237, CVE-2026-33870, CVE-2026-33871) #26886, #26938
• Security: Enforced stricter validation on token generation APIs to prevent unauthorized access #27078
• Platform: Fixed authentication token refresh issues causing session drops (notably in Safari environments) #27214
• Platform: Resolved failures in bulk indexing leading to 413 Request Too Large errors #27127
• Platform: Fixed issues with search index template creation and serialization impacting Data Quality indexing #27202
• Platform: Improved OAuth callback handling fallback logic for better stability #26770
• Discovery: Fixed inconsistencies in Tier filtering and tag aggregation logic #26826
• Discovery: Resolved UI access issues where restricted users could view tier/certification popovers #26880
• Governance: Fixed handling of non-boolean rule results and certification propagation issues #26850, #26958
• Data Observability: Fixed permission checks when creating Data Quality test cases #27069
• Ingestion: Fixed Airflow REST client connectivity issues impacting workflow execution #26895
• Ingestion: Resolved multiple connector issues including:
  • ClickHouse datatype parsing #26858
  • Teradata column description ingestion #26695
  • Pinot double datatype handling #26680
  • S3 ingestion failure due to Pydantic validation (BucketArn field) #27180
• Ingestion: Improved handling of case sensitivity for table constraints during ingestion #27244

1.12.5-release

Improvements

• Governance: Refactor asset certification storage to tag_usage table for improved data integrity and reliability #26448
• Platform: Enhance Search Index performance and reliability #26669
• Platform: Add SAML metadata XML upload support #26862
• AI: Enforce payload size limits for vector embedding bulk operations #26943
• Platform: Improve reindex process memory usage and assign lower thread priority to reduce application impact #27153

Fixes

• Security: Bump MCP Java SDK from 1.1.0 to 1.1.1 to address CVE-2026-34237 #26886
• Security: Upgrade netty-bom to 4.1.132.Final to address CVE-2026-33870 and CVE-2026-33871 #26938
• Security: Enforce bot-type check on generateToken endpoint to prevent unauthorized JWT token generation #27078
• Security: Fix Vite vulnerability by upgrading to v7.3.2 #27131
• Platform: Fix MSAL token renewal on Safari causing session loss due to ITP blocking #27214
• Platform: Ensure auth token is updated before retrying failed requests #27140
• Platform: Fix MCP OAuth callback servlet registration fallback #26770
• Platform: Fix runtime spacy model loading for non-root containers #26753
• Platform: Fix bulk sink serialization that broke Data Quality test case search indexing #27202
• Platform: Fix 413 Request Too Large errors via iterative bisection for large bulk indexing batches #27127
• Discovery: Fix tier and certification popovers accessible to view-only users on data asset header #26880
• Discovery: Fix Tier filter incorrectly combining getTags API with aggregation #26826
• Discovery: Improve export modal UX with inline errors and count loading state #27096
• Governance: Fix data-contract handling of non-Boolean semantics rule results and unsupported entity types #26850
• Governance: Fix certification tags leaking into tags field on LIST and missing appliedBy audit trail #26876
• Governance: Restore certification data in storeMany/updateMany before applying certification batch #26958
• Data Observability: Fix Data Quality permissions check for creating test cases #27069
• Ingestion: Fix Airflow REST Client connection issues #26895
• Ingestion: Fix Clickhouse LowCardinality DataType parsing #26858
• Ingestion: Fix Teradata column descriptions not being ingested #26695
• Ingestion: Fix Pinot DB double data type handling #26680
• Ingestion: Fix S3 ingestion failure caused by Pydantic validation error on BucketArn extra field #27180
• Ingestion: Improve Looker error handling with better warnings and credential protection in logs #27236
• Ingestion: Handle case sensitivity for table constraints during ingestion #27244

1.12.4-release

Improvements

• AI: Add OAuth support for MCP server with database-backed token persistence and automatic refresh #25391
• AI: Add MCP bot impersonation with audit logging and change event publishing #26488
• Governance: Implement self-approval prevention for workflow change requests #26289
• Governance: Add fields filter support in event-based workflows and description change validation node #26230
• Ingestion: Add Airflow 3.x API-based connector with support for DAG status, configuration, and pipeline management #26624
• Ingestion: Add support for SAP HANA table function ingestion and lineage #26711
• Ingestion: Add debug logging for Power BI query parsing source expressions #26339
• Integration: Add Trino metadata exporter for pushing OpenMetadata descriptions and tags to Trino #25970
• Platform: Parallelize DataAssetsWorkflow with virtual threads for improved ingestion throughput #25817

Fixes

• Discovery: Fix hasDomain() search filter to use OR logic for multi-domain users #26397
• Data Observability: Fix Trino table diff to use table-specific catalog and schema from FQN instead of service-level defaults #26604
• Data Observability: Fix tableConstraint to tableConstraints field name in Data Insights config #26642
• Ingestion: Fix GCS test connection to properly handle excluded buckets #26627
• Ingestion: Fix Hive ingestion to handle tables with NULL TBL_TYPE in metastore #26540
• Governance: Fix FQN quoting in entity link comparison for self-approval prevention #26766
• Lineage: Fix async lineage export silently dropping edges after encountering a missing entity node #26562
• Platform: Fix race condition in async event consumers on rapid create-delete operations #26718
• Platform: Add authorization checks to application operational endpoints for trigger and deploy actions #26590
• Platform: Remove sensitive workflow configuration from TestConnection API responses #26762
• Platform: Fix UI crash when JSON parsing fails for activity feed data #26553
• Platform: Fix span tag rendering issue on breadcrumb for metric entities #26793
• Platform: Fix flaky search index application #26795

1.12.3-release

Improvements

• AI: Remove logging capability from MCP server #26257
• Discovery: Refactor search infrastructure to use canonical index aliases #23742
• Discovery: Add Metric entity type to Data Insights description coverage chart #26260
• Discovery: Add displayName search support and improve wildcard matching #26348
• Ingestion: Add support for S3 file paths in REST connector OpenAPI and config ingestion #26504
• Ingestion: Add SSRS connector for SQL Server Reporting Services #26310
• Data Observability: Improved layout responsiveness for test case and test suite summary cards in Data Quality #26402
• Data Observability: Migrated Data Insights entity pagination from offset-based to keyset pagination to prevent sort buffer exhaustion #26127
• Discovery: Users now inherit personas from their team memberships #26052
• Integration: Added support for filtering cold storage files during datalake ingestion #26137
• Integration: Improved error handling to mark ingestion agents as failed when quota limits are exceeded #26058
• Integration: Enhanced Kafka Connect lineage to support wildcard file name matching for storage services #26034
• Integration: Added StorageServices entity support to the Python client SDK #26164
• Data Observability: Increased notification template body size limit to 64KB #26094
• Platform: Improved server URL sanitization for deploy pipeline API calls #26114
• Data Observability: Enabled Quartz JDBC clustering to prevent duplicate event processing in high availability deployments #26012
• Integration: Added support for dataflow to database table lineage in Power BI #26291
• Platform: Improved Azure AD SSO logout to properly terminate IdP sessions #26327
• Integration: Limited records summary logging to prevent out-of-memory failures in ingestion agents #26167
• Platform: Implemented canvas-based edge rendering to significantly improve column-level lineage page performance for large tables #25930
• Governance: Activity feeds now correctly record the actual user for bulk asset operations on domains, data products, and teams #26266
• Data Observability: Pipeline logs breadcrumb and title now display entity display names instead of IDs #26331
• Discovery: Service search now supports searching by display name in addition to service name #26399
• Data Observability: Aligned observability alerts and incident manager header styles with data quality page design #26467
• Discovery: Search placeholders in service tabs now dynamically reflect the asset type instead of the service name #26511

Fixes

• AI: Ensure glossary terms created via MCP generate change events correctly #26567
• Data Observability: Enable gzip compression on AWS IAM OpenSearch transport #26349
• Data Observability: Fix Trino dimension test case execution with EXPRESSION_NOT_AGGREGATE error #26584
• Governance: Add conditional rendering for ClassificationDetails GenericProvider #26256
• Ingestion: Fix column ingestion for nested NUMERIC types under RECORD columns in BigQuery #24200
• Ingestion: Fix Glue ingestion failure on nested STRUCT columns #26129
• Ingestion: Fix Hive ingestion for array columns with null arrayDataType #25901
• Ingestion: Fix lineage parser handling of CTEs in INSERT ... WITH statements #24416
• Platform: Fix audit log entries for accepted suggestions #26548
• Integration: Fixed Trino ingestion to no longer require owner permissions when fetching view definitions #26136
• Governance: Fixed glossary status filtering to properly handle large numbers of glossary terms (3000+) by moving filtering logic to the backend #25428
• Integration: Fixed agent status display to accurately show the last 5 runs #26206
• Platform: Resolved issue where assets were missing from search results and lineage was not visible #26482
• Discovery: Fixed asset count discrepancies for teams across different views #26168
• Platform: Corrected Java client to return paginated list of ingestion pipelines instead of a single object #26181
• Integration: Fixed auto-classification workflow registration in the ingestion-base image #26192
• Integration: Resolved Hive ingestion failures caused by duplicate column names when partition keys are present #26295
• Platform: Fixed metric search indexing failures due to excessive nested clauses #26298
• Integration: Resolved Redshift lineage agent errors caused by LISTAGG result size limits #26292
• Integration: Fixed QuickSight ingestion to properly handle multiple datasets on the same datasource without collapsing them into a single DataModel #26317

1.11.14-release

Revert "Fix #20052: Add tier field mapping with lowercase_normalizer …

1.11.13-release

Pin min collate-sqllineage version to 2.0.2 (#26250)

1.11.12-release

⚠️ Breaking Changes

OpenLineage Kinesis Support

Refactored OpenLineage connection schema to support both Kafka and Kinesis brokers

Migration Required: The OpenLineage connection configuration structure has changed from flat Kafka-specific fields to a nested brokerConfig object. Existing configurations with fields like brokersUrl, topicName, consumerGroupName, consumerOffsets, poolTimeout, sessionTimeout, securityProtocol, sslConfig, and saslConfig at the root level will be automatically migrated to the new brokerConfig.kafkaBrokerConfig structure during the database migration to version 1.11.12. No manual intervention is required for existing deployments, but any external scripts or API integrations that create/update OpenLineage connections must be updated to use the new schema structure.

Redshift IAM Authentication Support

Added support for IAM authentication for Amazon Redshift connections
Migration Required: The Redshift connection schema has changed from a flat password field to a polymorphic authType object supporting both Basic Auth and IAM Auth. Existing configurations with password at the root level will be automatically migrated to authType.password (BasicAuth structure) during the database migration to version 1.11.12. No manual intervention is required for existing deployments, but any external scripts or API integrations that create/update Redshift connections must be updated to use the new schema structure.

Improvements

• Platform: Fixed RTL layout issues and translations for Hebrew language selection

Fixes

• Platform: Resolved intermittent OAuth login failures by adding SameSite=None attribute to session cookies for cross-site authentication flows

1.11.11-release

Changelog

Breaking Changes

• Extended the REST connector to support OpenAPI schemas from local files (JSON/YAML) in addition to HTTP URLs via the openAPISchemaConnection union type.
• Updated the REST connector connection configuration to accept either connection type. Refer to this YAML example
  to review the updated connection structure.

Improvements

• Connectors: Snowflake connector now quotes identifiers in GET_DDL queries to support tables with special characters in their names.
• Connectors: Snowflake connector now skips fetching definitions of Snowflake stages as they are not relevant for metadata ingestion.
• Ingestion: Improved memory management in dbt ingestion to prevent out-of-memory errors when listing files from GCS.

Fixes

• Connectors: Fixed CSV parsing and table name errors during Datalake metadata ingestion.
• Governance: Fixed scroll functionality in Data Product pages with large descriptions.
• UI: Fixed global domain filter translation not updating when changing application language.