releases.shpreview

OpenTelemetry alignment, security patches, and workflow state fixes

July 6–12, 2026

Inngest renamed AI Metadata fields to match OpenTelemetry GenAI standards, Temporal patched a medium-severity CVE in replication authorization, and Temporal's TypeScript SDK fixed a workflow state corruption bug that affected multiple version lines.

OpenTelemetry alignment for AI observability

Inngest Server v1.36.0 renames AI Metadata fields to align with OpenTelemetry GenAI conventions. The .model field is now .request_model and .system is now .provider — any Insights queries using the old names must be updated. The release also differentiates between request and response models when using ai.step.wrap or ai.step.infer, giving teams more precise observability into AI pipeline stages. This is a breaking change for anyone querying AI Metadata, but it brings Inngest in line with the emerging OpenTelemetry standard for GenAI instrumentation.

Security hardening across the Temporal stack

Temporal Server v1.31.2 addresses CVE-2026-5724 (MEDIUM) by adding authorization to the replication streaming endpoint. Deployments that use authorization with replication must set system.disableStreamingAuthorizer to true to opt out and avoid connection errors. The fix is also backported to v1.30.6 for teams still on the previous minor release line.

Workflow state corruption fixed across TypeScript SDK versions

Temporal TypeScript SDK v1.15.1 fixes a workflow state corruption bug that could occur when workflow updates fail (issue #2170). The fix is backported across multiple version lines: v1.16.3, v1.17.5, v1.18.2, v1.19.1, and v1.20.1 all carry the same patch. Teams on any supported version line should upgrade to avoid potential data corruption during failed updates.

AI agent reliability and chat improvements

n8n v2.30.0 fixes the AI Agent Node to preserve parallel tool call structure in chat memory and return intermediate steps when no tools are used. The v2.30.1 patch fixes chat failing when running on a separate webhook server. Two subsequent releases (v2.30.3 and v2.29.10) both keep AI Assistant thread state intact when editors hand off, preventing context loss during collaborative workflow building.

Trigger.dev v4.5.2 fixes multiple chat session bugs that were dropping or duplicating user messages, and adds onEvent lifecycle callbacks for TriggerChatTransport. The v4.5.3 release drops support for the end-of-life v3 CLI and fixes a TypeScript declaration emit error when exporting chat.agent from projects with declaration emit enabled.

Platform expansions: SvelteKit streaming, Nexus links, and SSO

Inngest JS SDK v4.12.0 adds streaming support to inngest/sveltekit serve handlers, and fixes parallel step hangs and type collapsing under multiple middleware. Temporal Go SDK v1.46.0 propagates Nexus links for Signal and Signal-with-start calls from operation handlers, and adds OpenTelemetry tracing spans for standalone activities. Trigger.dev v4.5.1 extends the SSO plugin contract with WorkOS Directory Sync (SCIM) support.

Smaller fixes across the ecosystem

n8n pinned langgraph dependencies across v2.28.7 and v2.29.6 to prevent broken npm installs. v2.29.7 fixed a Code node failure when workflows contain AI tools. v2.30.2 fixed expression isolate acquisition for node inputs and parameters. Inngest's @inngest/otel@0.2.1 fixes CommonJS module loading, and Inngest Server v1.35.0 adds experiments and sessions REST API endpoints.

Releases covered