Pull Request Explorer

Summary

Automated cherry pick of #36570

Automated cherry pick of a Playbooks plugin update to ensure consistency across the 11.7 release.

Health Assessment

• • Fast merge with minimal changes indicates automated process; no review needed.

Summary

Fix spacing in data spillage report card

This change resolves a UI spacing issue in the data spillage report card when viewed in threads, improving user experience and preventing layout glitches.

Health Assessment

• • Quick review and minimal changes indicate low risk and efficient resolution.

Summary

Fix flaky TestScrubPost

Fix flaky test for content flagging scrubPost behavior, ensuring timestamp updates are handled correctly, eliminating intermittent failures without affecting production logic.

Health Assessment

• • The PR had a long cycle time but was reviewed quickly and merged with minimal changes, indicating low complexity and risk.

Summary

Automated cherry pick of #36716

Automated cherry pick of CI change to enable build-server-image to build and push from release branches, ensuring continuous integration for release builds.

Health Assessment

• • Quick cherry pick with no review needed, minimal changes to CI workflow.

Summary

Add Data Spillage discovery page

Introduces a new Data Spillage discovery page in the System Console for lower-tier licenses, enabling admins to manage data spillage handling when Content Flagging is active.

Health Assessment

• • The PR was merged within 17 hours, with rapid review and several iterations, indicating efficient collaboration.
• • Despite the large addition of 587 lines, comprehensive tests and clear license gating logic mitigate regression risk.

Summary

Bump Go to 1.25.10 in release-11.7

Updates the server build environment to use the latest Go base image, enhancing build stability and security.

Health Assessment

• • Fast review and merge with minimal changes, indicating low complexity and risk.

Summary

Allow build-server-image to build and push from release branches

Enables automatic build and push of the server image when changes are made to release branches, ensuring that Go version updates in older releases are reflected in the CI pipeline.

Health Assessment

• • Quick review and merge with minimal changes; AI-assisted review helped streamline the process.

Summary

Handle missing OpenSearch indexes gracefully before reindex

Adds graceful handling of missing OpenSearch indexes to prevent errors during early operations, improving reliability and reducing failures.

Health Assessment

• • Quick review cycle (0.4h) and minimal changes (3 files, 92 added lines) led to a fast merge; AI-assisted review comments helped identify edge cases and improve error handling.

Summary

Support OpenSearch v3

Adds OpenSearch 3.x support while preserving backward compatibility with 2.x, updating CI pipelines and Docker images.

Health Assessment

• • The PR required several reverts and a lengthy review cycle (~3.6 days), indicating moderate process friction, but the technical changes are low risk and limited to version updates.

Summary

Fix Group Role Dropdown UI Update

Ensures that admin users see immediate visual feedback when changing group member roles, improving usability and reducing confusion.

Health Assessment

• • Fast review turnaround and minimal changes indicate low complexity and risk.

Summary

Add admin permission level to property fields

Enables channel administrators to set classification fields, improving security and flexibility for channel classification features.

Health Assessment

• • The PR required multiple review cycles and significant rework, indicating complex changes to permission logic and database schema.

Summary

Fix flaky TestPreparePostForClient/files

Fixes intermittent test failures by extending timeout, improving CI reliability without affecting production code.

Health Assessment

• • Fast review and minimal changes indicate low friction. The test-only fix has negligible risk to production.

Summary

Harden shared channel remote error handling and add WS guard

Improves reliability of shared channel remote API by converting unexpected errors to empty responses and prevents unnecessary WebSocket fetches, reducing noise and potential performance issues. This change ensures consistent client behavior and improves logging clarity.

Health Assessment

• • Fast review and merge with minimal rework; AI-assisted review helped streamline feedback.

Summary

Cherry pick of resource level permission policies

Integrates resource-level permission policies and simulation into release 11.8, ensuring consistent security behavior across branches.

Health Assessment

• • The PR cherry-picks a large feature into the release branch with minimal review, indicating a streamlined process but high code volume.

Summary

Prevent inactive team icon click highlight

This PR removes the active highlight from non-interactive team icons, improving UI clarity and preventing accidental navigation, and resolves a server compile issue that affected channel join access control.

Health Assessment

• • Quick review and merge within 20 hours, minimal changes, low risk.

Summary

Fix flaky TestPatchTeam

Adds synchronization to the TestPatchTeam test to eliminate race conditions, ensuring reliable test execution without affecting production code.

Health Assessment

• • Quick AI‑generated fix with minimal code changes, no production impact, and fast review cycle.

Summary

Skip flaky TestGetLogs to keep CI green

The PR disables a flaky test while the root cause is investigated, preventing CI failures without affecting production code.

Health Assessment

• • Multiple review rounds and commits were required to address feedback, but the change was small and test-only, resulting in low risk to production.

Summary

Automated cherry pick of #36701

This PR automatically applies a version bump for the prepackaged boards plugin to the 11.8 release, ensuring the latest plugin version is included without manual intervention.

Health Assessment

• • Fast merge with minimal changes, indicating a straightforward release maintenance task.

Summary

Bump prepackaged boards plugin version

Updates the prepackaged Boards plugin to the latest FIPS‑compliant release, ensuring compliance and compatibility without affecting server functionality.

Health Assessment

• • Quick version bump with minimal changes, reviewed and merged within 1.3 hours, indicating efficient process.

Summary

Cherry pick discoverable private channels feature

Adds discoverable private channel support to the server, enabling visibility controls and ABAC.

Health Assessment

• • Fast cycle time and single commit indicate low review friction; large code addition is a straightforward feature integration.

Summary

Update translations from Weblate

Translations updated for Mattermost server using Weblate

Health Assessment

• • The PR had a fast cycle time of 2.1 hours and received a review with changes requested within 0.4 hours.

Summary

Fix membership policy edit navigation

Corrects the navigation for the Edit action in membership policy rows, ensuring users reach the policy editor directly.

Health Assessment

• • Quick fix with minimal changes, fast review, low risk, large scope.

Summary

Fix missing channelID argument in BuildAccessControlSubject call

Corrects a compilation error that prevented channel join requests from building, restoring functionality for channel access control and ensuring users can request to join channels without build failures.

Health Assessment

• • Quick fix with minimal review, no rework, low risk.

Summary

Add discoverable private channel server feature

Enables discoverable private channels with join requests, visibility controls, and ABAC enforcement, improving collaboration and security.

Health Assessment

• • Fast review cycle but large code changes; high risk due to core API modifications.

Summary

Exclude webhook posts from thread participation

Prevents webhook-generated posts from incorrectly marking threads as replied, improving notification accuracy for users. This reduces false positives in comment mention notifications.

Health Assessment

• • Quick fix with minimal changes and fast review, indicating low complexity and low risk.

Summary

Open file preview modal for draft attachment thumbnails

Enables users to preview any draft attachment by clicking its thumbnail, improving file access and reducing friction.

Health Assessment

• • The PR required extensive AI-assisted code and review, leading to a slow cycle time but minimal review friction. The feature adds significant UI functionality with moderate risk due to multiple commits and a large code change.

Summary

Update latest patch version to 11.6.4

Automated release pipeline bump to patch version 11.6.4, ensuring consistency across backend and webapp dependencies.

Health Assessment

• • Fast, automated PR with minimal changes, indicating low risk and high confidence in release pipeline.

Summary

Add resource-level permission policies and simulation

Enables granular channel permissions and a simulation tool for admins to preview access decisions, enhancing security and user experience.

Health Assessment

• • The PR required multiple review rounds and extensive rework, reflecting complex changes to core authorization logic and a high potential for regression.

Summary

Fix content flagging update for unloaded posts

Fixed a JavaScript error when reviewers received content review updates for permanently removed flagged posts, improving reliability of content flagging flows.

Health Assessment

• • The PR was reviewed quickly but required several commits to address feedback, indicating moderate review friction. The large diff and multiple iterations suggest some complexity, but the change is a focused bugfix that improves stability for content flagging updates.

Summary

Fix IPv6 hex segments parsing as emoji

Prevents IPv6 addresses from being incorrectly rendered as custom emojis in the webapp, improving message rendering accuracy.

Health Assessment

• • The PR was reviewed immediately by an AI bot and approved quickly, indicating low friction. The change is small and focused on a single regex, minimizing risk.

Summary

Fix Global Threads quick reaction emoji count

Ensures Global Threads view displays the correct number of quick reaction emojis, aligning with center channel behavior and improving user experience.

Health Assessment

• • The PR required several iterations after the initial review, but ultimately resolved with a small code change and comprehensive tests, keeping risk low.

Summary

Fix config-change-checker to use merge-base for per-file diffs

Corrects false positives in CI change detection by aligning per-file snapshot comparisons with the merge-base, ensuring accurate attribution of changes and preventing incorrect PR change reports.

Health Assessment

• • Quick, single-file fix with a single review comment, resulting in a fast cycle time and minimal risk to production.

Summary

Update latest patch version to 10.11.19

Automated release pipeline update to bump patch version, ensuring consistency across deployments.

Health Assessment

• • Quick automated version bump with no review needed, minimal risk.

Summary

Cherry pick of plugin remote ping fix

Applies a fix that ensures restored plugin remotes are pinged immediately upon re-registration, improving connectivity reliability.

Health Assessment

• • Fast merge with no review, indicating automated cherry pick and low complexity.

Summary

Update latest patch version to 11.5.7

Automated update of the version number to 11.5.7, ensuring the release pipeline reflects the correct patch level.

Health Assessment

• • Rapid merge with no review comments indicates automated, low-risk change.

Summary

Update server dependencies for release-11.8

Bumps server dependencies to ensure compatibility with release-11.8, maintaining stability.

Health Assessment

• • Quick merge with minimal changes, indicating low complexity and high confidence in dependency updates.

Summary

Fix flaky TestUserHasJoinedChannel

Fixes flaky test for user join channel plugin hook, improving CI stability without affecting production behavior.

Health Assessment

• • Fast review and merge, minimal changes, low risk, improved CI reliability.

Summary

Upgrade Go to 1.26.3 in tool modules

Updates tool modules to Go 1.26.3 and refreshes dependencies, including switching to a maintained OpenAPI library, ensuring compatibility and removing duplicate API definitions.

Health Assessment

• • Fast cycle time and single review indicate a smooth, low-risk update.

Summary

Add user attribute validation banners

Improves admin console UX by providing clearer validation feedback for user attribute names, reducing errors before saving.

Health Assessment

• • PR had a long cycle time due to multiple review rounds and a merge conflict resolution, but the changes were confined to UI and tests, resulting in low regression risk.

Summary

Update server Go module dependencies

Bumps critical infrastructure libraries to latest patch versions, improving security and stability.

Health Assessment

• • Dependency bump took over 6 days to merge, with a single review cycle and a moderate number of changes, indicating a slow review process and potential risk due to critical infrastructure updates.

Summary

Pull and populate certificate from metadata endpoint

Fixes a bug where the IDP public certificate was not retrieved from the SAML metadata endpoint, improving SAML authentication reliability for administrators.

Health Assessment

• • The PR required several commits after the initial review, indicating iterative refinement, but the first review was quick. The overall cycle time was long, suggesting extended development or testing periods. AI-assisted review comments were present, which may have helped identify issues early.

Summary

Upgrade Go runtime to 1.26.3

Upgrades the Go runtime to 1.26.3, improving performance and security for the Mattermost platform.

Health Assessment

• • Fast merge with minimal changes, indicating low risk and straightforward upgrade.

Summary

Upgrade Go to 1.26.3

Upgrades the Go runtime to 1.26.3, ensuring the Mattermost server benefits from the latest security patches and performance improvements.

Health Assessment

• • Quick approval with minimal changes, indicating a straightforward dependency bump.

Summary

Fix config sanitize/desanitize field masking

Prevents accidental overwriting of sensitive config fields, ensuring system integrity and security.

Health Assessment

• • Quick fix with minimal rework, merged within 2 hours, indicating low complexity and high confidence.

Summary

Fix config sanitize/desanitize field masking

Ensures admin configuration changes persist correctly, preventing accidental data loss of sensitive settings.

Health Assessment

• • Quick, single-commit fix with fast review and merge, indicating low complexity and minimal risk.

Summary

Automated cherry pick of flaky E2E test fix

Applies a previously approved fix for flaky end‑to‑end tests, ensuring stable test runs.

Health Assessment

• • Quick automated cherry pick with no review, minimal changes, low risk.

Summary

Fix config sanitize/desanitize missing fields

Prevents accidental overwriting of secret configuration values when saving via API, ensuring secure configuration persistence.

Health Assessment

• • Quick, single-commit fix with minimal code churn and no review back‑and‑forth.

Summary

Fix config sanitize/desanitize missing fields

Ensures sensitive config fields are correctly sanitized and not overwritten with placeholder values when saved via API, preventing accidental exposure of secrets.

Health Assessment

• • Fast merge with minimal review; the change was straightforward and addressed a clear bug.

Summary

Fix config sanitization bug in release-11.6

Corrects persistence of sensitive config fields by ensuring desanitize removes FakeSetting placeholders, preventing accidental exposure of credentials.

Health Assessment

• • Quick fix with minimal changes, merged within an hour, indicating low complexity and high confidence.

Summary

Upgrade Go to 1.26.3 in build containers

This PR updates the Go runtime used for building Mattermost server images to the latest patch version, ensuring security and bug fixes without affecting application behavior. The change is low risk and requires minimal QA.

Health Assessment

• • The PR was merged quickly with minimal review, indicating a straightforward, low‑risk update.