Addresses CVE-2026-5724 (MEDIUM severity). Deployments using authorization with replication should set system.disableStreamingAuthorizer dynamic config to true to opt out from the security changes in this release and avoid replication traffic connection errors.
Temporal Server
Replication streaming endpoint is now covered by authorization, addressing CVE-2026-5724 (MEDIUM). If using authorization with replication setup, set system.disableStreamingAuthorizer dynamic config to true to opt out and avoid replication traffic connection errors.
What's Changed
- Cherry-pick: Combine PostgreSQL Visibility schema upgrades from v1.10 through v1.13 (#10371) by @fretz12 in https://github.com/temporalio/temporal/pull/10681
- Cherry-pick: PGX SimpleProtocol test suite (#10198) by @fretz12 in…
What's Changed
- Bump x/crypto v0.52.0, x/net v0.55.0, Go 1.25.11, thrift v0.23.0 (security patch) by @fretz12 in https://github.com/temporalio/temporal/pull/10645
- Cherry-pick: Encode duration as bigint for pgx simple protocol (#10529) by @simvlad in…
What's Changed
- Bump defaultCliVersion to 1.7.0 by @prathyushpv in https://github.com/temporalio/temporal/pull/10126
- Bump Go toolchain to 1.26.3, thrift to 0.23.0, cli to 1.7.1 (security patch) (#10395) by @fretz12 in https://github.com/temporalio/temporal/pull/10470 *…
What's Changed
- Update dependencies in v1.29.x branch by @rodrigozhou in https://github.com/temporalio/temporal/pull/10031
Full Changelog: https://github.com/temporalio/temporal/compare/v1.29.6...v1.29.6.1
What's Changed
- Update dependencies in v1.30.x branch by @rodrigozhou in https://github.com/temporalio/temporal/pull/10030
- Update alpine to v3.23.4 by @rodrigozhou in https://github.com/temporalio/temporal/pull/10068
Full Changelog:…
Schema changes
Warning
Before upgrading your Temporal Cluster to v1.31.0, you must upgrade core and visibility schema to the following:
- Core:
- MySQL schema
v1.19 - PostgreSQL schema
v1.19 - SQLite schema
v1.11
- MySQL schema
- Visibility:
- Elasticsearch…
What's Changed
Potential Breaking Change
If using authorization with replication setup, set system.disableStreamingAuthorizer dynamic config to true to opt out from changes in this release and avoid replication traffic connection errors. Check the linked CVE for…
What's Changed
Potential Breaking Change
If using authorization with replication setup, set system.disableStreamingAuthorizer dynamic config to true to opt out from changes in this release and avoid replication traffic connection errors. Check the linked CVE for…
What's Changed
Potential Breaking Change
If using authorization with replication setup, set system.disableStreamingAuthorizer dynamic config to true to opt out from changes in this release and avoid replication traffic connection errors. Check the linked CVE for…
What's Changed
Security
- Check namespaces in batch workflow (CVE-2026-5199, LOW)
Full Changelog: https://github.com/temporalio/temporal/compare/v1.30.2...v1.30.3
**Helpful links to get you started…
What's Changed
Security
- Check namespaces in batch workflow (CVE-2026-5199, LOW)
Full Changelog: https://github.com/temporalio/temporal/compare/v1.29.4.1...v1.29.5
**Helpful links to get you…
What's Changed
- Bump dependencies to address security CVEs for v1.28.3.1 by @rkannan82 in https://github.com/temporalio/temporal/pull/9662
Full Changelog: https://github.com/temporalio/temporal/compare/v1.28.3...v1.28.3.1
What's Changed
- Bump dependencies to address security CVEs for v1.29.4.1 by @rkannan82 in https://github.com/temporalio/temporal/pull/9629
Full Changelog: https://github.com/temporalio/temporal/compare/v1.29.4...v1.29.4.1
What's Changed
What's Changed
What's Changed
Dependency Updates and Ignore Unknown Predefined Search Attributes After Rollback from v1.30.1
Helpful links to get you started with Temporal
Temporal Docs Server [Samples…
⚠️💥 DOCKER IMAGE BREAKING CHANGES 💥⚠️
Starting in this release, for security reasons, Temporal Docker images have been slimmed down, and we have removed binaries and packages that do not strictly need to be included. This includes:
###…
What's changed
Ignore unknown fields when decoding Worker Deployment memo for backwards compatibility after rolling back from v1.30
Full Changelog: https://github.com/temporalio/temporal/compare/v1.29.2...v1.29.3

