Pull Request Explorer

Summary

Fix folder ACL enforcement on flow run routes

This security fix prevents unauthorized execution of folder‑scoped flows via version routes, ensuring RBAC compliance and protecting against privilege escalation.

Health Assessment

• • The PR was merged within 0.4 hours, with a single review comment and no rework, demonstrating a streamlined process. The use of AI‑assisted code generation helped expedite the fix for a high‑severity vulnerability.

Summary

Validate OAuth redirect URIs for MCP registration

Prevents XSS that could allow attackers to mint API tokens by ensuring only safe redirect URIs are accepted during dynamic client registration.

Health Assessment

• • Rapid, AI-assisted fix with minimal review and no rework, merged within 30 minutes of opening.

Summary

Release 1.703.2 with security fix

This release updates Rust crates, SDKs, and OpenAPI specs, adding a security fix that prevents cross‑tenant DNS poisoning by making /etc read‑only in nsjail.

Health Assessment

• • Rapid release cycle with minimal review; AI-generated summary; large codebase changes across multiple SDKs and Rust crates.

Summary

Prevent cross-tenant DNS poisoning via writable /etc in nsjail

Fixes nsjail sandbox by adding read‑only binds for /etc/resolv.conf, /etc/hosts, and /etc/hostname, preventing DNS poisoning across tenants.

Health Assessment

• • Fast 1.1‑hour cycle, single review, minimal rework, large config changes but low risk.

Summary

Fix sidebar rendering at sub-pixel widths

Ensures the sidebar displays correctly near the 768px breakpoint, preventing UI glitches that could confuse users.

Health Assessment

• • Quick, single-commit fix with minimal code changes and no blockers.

Summary

Release version 1.703.1

This PR publishes a new release, updating dependencies and configuration files to ensure the latest features and bug fixes are available to users.

Health Assessment

• • Release PR was reviewed quickly by AI with no issues, indicating a smooth process. The PR involved moderate code changes across many config files but no significant business logic changes.

Summary

Fix actionable error for custom path conflicts across workspaces

Improves error messaging for custom path conflicts, enabling operators to identify the conflicting workspace and app while preserving uniqueness constraints.

Health Assessment

• • Quick fix with minimal changes, no rework, fast merge, low risk.

Summary

Fix auto_parent parent_hash reset for archived scripts

This change clears stale parent references when auto_parent is enabled but no active script exists, preventing lineage conflicts. It adds a regression test to guard against future regressions.

Health Assessment

• • The PR had a long review delay but minimal rework, indicating a straightforward bug fix that was eventually approved after a single review.

Summary

Harden UI builder artifact bootstrap with verified metadata

Adds checksum verification and path traversal protection to the UI builder download process, ensuring secure and reliable builds for all users.

Health Assessment

• • Fast review and merge with minimal changes, indicating straightforward implementation.

Summary

Fix misleading AI base URL error hint

Stops misleading error hints for malformed AI URLs, ensuring users see accurate messages and reducing confusion over environment variable usage. This improves user experience and cuts support tickets.

Health Assessment

• • Quick resolution with minimal rework; AI-assisted code improved clarity and reduced review comments.

Summary

Fix atomic bundle cache writes to prevent race

Ensures workers reliably load bundles without race conditions, preventing runtime errors and manual cleanup, improving reliability for parallel flows.

Health Assessment

• • Rapid AI-assisted fix with minimal review and no rework, demonstrating efficient bug resolution.

Summary

Fix S3 asset detection in TS parser

Ensures S3 read/write operations are correctly identified in asset graphs, enabling accurate trigger cascades and preventing silent failures.

Health Assessment

• • Fast turnaround with minimal review, low complexity, and no production impact.

Summary

Replace sync deprecation placeholder link

Updated deprecation messages to point users to official sync docs, improving migration guidance.

Health Assessment

• • Quick fix with no review friction, minimal scope, low risk.

Summary

Health Assessment

Summary

Fix pip_local_dependencies filtering for deployed scripts

Prevents duplicate package installs and reduces job runtime by ~18 seconds per job, improving deployment efficiency.

Health Assessment

• • Quick resolution with minimal rework; single review and small scope indicate low risk.

Summary

Update Vite to 8.0.13 for frontend stability

Bumps Vite to the latest patch, improving build stability and updating transitive dependencies.

Health Assessment

• • Merged within minutes with AI review confirming no issues; minimal friction and low risk.

Summary

Fix wait time aggregation to target true root job

Corrects a bug where wait times were incorrectly attributed to inner flow jobs, ensuring accurate metrics for top-level flow executions.

Health Assessment

• • Fast cycle time and single review indicate a straightforward bug fix with minimal impact.

Summary

Add configurable NO_PROXY hosts for OTEL proxy

Admins can now specify hosts that bypass the OTEL tracing proxy, preventing certificate errors for pinned‑CA clients such as kubectl and terraform, improving job reliability.

Health Assessment

• • Fast review and merge with minimal rework; AI review helped identify issues early, leading to a smooth, low‑risk deployment.

Summary

Fix auto_kind for failure/trigger/approval scripts

Ensures runnable failure, trigger, and approval scripts are not hidden by incorrect auto_kind, improving flow error handling and picker visibility.

Health Assessment

• • Quick fix with minimal rework, low review friction, small scope, fast cycle time.

Summary

Release 1.702.1

Bumps version to 1.702.1, updates dependencies and SDKs, and fixes OpenTelemetry tracing in nativets.

Health Assessment

• • Fast release with minimal changes, AI-assisted review, no blockers.

Summary

Add tests for deno_telemetry init and trace export

Adds integration tests to catch telemetry initialization regressions, ensuring reliable tracing for customers. This protects against future crashes that could disrupt user fetch operations.

Health Assessment

• • Fast cycle with a single commit and no review friction, adding tests to guard against future telemetry regressions.

Summary

Update EE repo reference to latest commit

Keeps the EE repository reference in sync with the latest changes, ensuring consistency across environments and preventing potential mismatches.

Health Assessment

• • Fast merge with minimal changes, indicating low complexity and quick resolution.

Summary

Release version 1.702.0

This release updates dependencies, adds new features, and fixes bugs, improving stability and performance.

Health Assessment

• • Release was approved quickly with minimal review, indicating a stable release process.

Summary

Sync granular ACLs for flows, scripts, apps

Enables end‑to‑end sync of granular permissions for flows, scripts, and apps, improving consistency between the UI and git‑sync and reducing permission drift.

Health Assessment

• • Rapid iteration with AI assistance resolved permission sync issues, achieving a feature merge within 1.2 hours.

Summary

Sanitize and enrich nested resource schemas

Ensures MCP tool registration succeeds by converting invalid resource schema types to valid JSON Schema and providing enriched descriptions, improving LLM integration and preventing registration errors.

Health Assessment

• • Fast turnaround with minimal review, indicating a straightforward bug fix.

Summary

Include service accounts in superadmin users list

Adds service accounts to the superadmin instance users list with a Bot icon, workspace badge, and a manage link, improving visibility and management of workspace‑scoped accounts.

Health Assessment

• • Merged within 0.9 hours with a single review comment, indicating a straightforward change with minimal risk.

Summary

Release version 1.701.0

Publishes a new release, updating dependencies, documentation, and packaging to enable recent features and bug fixes.

Health Assessment

• • Release completed in under 26 hours with a single AI‑reviewed comment, indicating an efficient and low‑friction release workflow.

Summary

Add read-only flag to API tokens

Adds a read-only mode for API tokens, limiting them to read-only HTTP methods and preventing mutating actions, enhancing security and compliance.

Health Assessment

• • The PR was reviewed quickly and merged within 5 hours, but required many small commits to address issues, indicating active iteration. The large code change and many files suggest a high-risk change, though the fast cycle time and single review round imply strong test coverage and confidence.

Summary

Allow devops role to use all_workspaces runs filter in admins workspace

Enables devops users to view runs across all workspaces in the admins workspace, improving operational oversight without backend changes.

Health Assessment

• • Quick fix with minimal changes, no backend modifications, merged within minutes.

Summary

Align script path check with deploy logic

Ensures scripts can be created at paths with archived scripts and hides delete options for non‑admins, improving workflow accuracy and UI consistency.

Health Assessment

• • Rapid review and merge with minimal changes; low complexity and risk.

Summary

Optimize dynselect retrigger logic

Reduces unnecessary backend jobs by only retriggering when helper arguments change, improving performance and user experience.

Health Assessment

• • Fast cycle time of 1.5h, minimal review friction, small scope of 2 files and 125 lines, indicating a low-risk, efficient PR.

Summary

Fix Bun unbundled execution symlink issue

This fix resolves module resolution failures in Bun scripts by enabling symlink preservation, preventing runtime errors for unbundled executions. It ensures reliable first-run behavior for scripts that rely on Bun's cache layout.

Health Assessment

• • Quick resolution with minimal changes and AI-assisted review, indicating low complexity and high confidence in the fix.

Summary

Align global flow tool arguments

Aligns global flow tool arguments with flow mode, preventing malformed tool calls and improving model reliability.

Health Assessment

• • Quick AI‑assisted review identified a single issue, resolved in a single commit within 12 minutes, indicating efficient collaboration and low risk.

Summary

Fix flow ping visibility to avoid deadlocks

Ensures zombie monitor sees flow pings immediately, preventing deadlocks during large parallel pushes.

Health Assessment

• • Quick fix with minimal changes resolved a deadlock issue during large parallel pushes.

Summary

Fix debounce key collision for multi-repo promotion

Ensures deployments to multiple promotion-mode git-sync repositories are not dropped due to debounce key collisions, improving reliability of multi-repo workspaces.

Health Assessment

• • Rapid resolution with minimal changes and no review indicates low complexity and high confidence.

Summary

Add global AI eval mode

Enables comprehensive testing of the global AI chat mode, improving reliability and user experience.

Health Assessment

• • PR merged quickly with minimal review, indicating confidence in the changes.

Summary

Publish CLI docs snapshot to windmill-cli-docs

Automates publishing of fully rendered Windmill CLI documentation—including AGENTS.md, CLI reference, and skills—to the windmill-cli-docs repository on each release tag, enabling context7 to index up-to-date CLI guidance.

Health Assessment

• • Rapid iteration with minimal review; quick merge indicates low complexity and high confidence.

Summary

Prevent inline script corruption during flow sync

Stops sync operations from overwriting user scripts with literal '!inline' directives, ensuring data integrity and clear error reporting. This improves reliability for developers using the CLI.

Health Assessment

• • Fast cycle time and single review indicate a straightforward bug fix with minimal rework. The PR’s moderate line count and limited file changes suggest low complexity and risk.

Summary

Refresh IAM tokens in operator process

Ensures the Kubernetes operator maintains valid IAM authentication, preventing connection failures and downtime for database-backed workloads.

Health Assessment

• • Quick fix with minimal changes, resolved in under an hour with a single review.

Summary

Unified EditorHeader with file picker

Provides a consistent header across all editors, enabling easier navigation and inline editing, which boosts developer productivity and reduces context switching.

Health Assessment

• • The PR had a slow review cycle with many issues flagged, but the large scope and extensive changes were eventually resolved before merging.

Summary

Refactor AI provider module organization

Reorganizes AI provider implementations into a dedicated crate, simplifying worker dependencies and improving modularity.

Health Assessment

• • Quick refactor with minimal review, indicating straightforward changes and good code quality.

Summary

Refactor AI evals to use proxy backend

Simplifies AI evaluation workflow by enforcing backend proxy usage, removing transport options, and adding preflight checks, improving reliability and consistency.

Health Assessment

• • Quick turnaround with single review, minimal rework, and small code churn indicates a smooth refactor.

Summary

Release version 1.700.2

This release updates dependencies, API specs, and client libraries, ensuring compatibility and stability for users.

Health Assessment

• • Release completed quickly with AI review, minimal changes, fast cycle time.

Summary

Fix explicit null handling in instance settings

Ensures that clearing typed configuration fields via the API correctly deletes the setting, preventing stale values and aligning UI behavior with backend logic.

Health Assessment

• • Quick fix with minimal changes, single review, no rework, fast merge.

Summary

Fix download routing for result and args

Ensures downloads work in embedded SDKs by using client‑side blobs, preventing 401 errors when token/header auth is configured.

Health Assessment

• • Fast review and merge with minimal changes; no blockers or complex discussion.

Summary

Fix download UI to use client-side routing

Ensures file downloads work in embedded contexts, preventing authentication errors and improving user experience.

Health Assessment

• • Quick fix with minimal rework; low risk to production.

Summary

Add global AI chat mode with workspace-item draft tools

Enables a dev-gated global AI chat mode that lets the assistant inspect workspace items and create AI-generated drafts for scripts, flows, schedules, triggers, resources, variables, and apps, improving developer productivity.

Health Assessment

• • The PR had a long cycle time (~6 days) and high review friction, with many commits and a large code change, indicating significant complexity and potential risk.

Summary

Fix negative integer handling in Bedrock schema conversion

Ensures Bedrock tool schemas correctly handle negative integers, preventing conversion errors and improving tool reliability.

Health Assessment

• • Rapid review and merge with minimal changes; no blockers or complex iterations.

Summary

Release 1.700.1

Bumps all component versions and removes the enterprise‑only compute_instance_hash, restoring Community Edition build stability.

Health Assessment

• • Fast cycle time and minimal review indicate a smooth, automated release process with low risk.

Summary

Fix CE build broken by compute_instance_hash

Updates EE reference to ungate compute_instance_hash, restoring CE builds.

Health Assessment

• • Quick fix with minimal changes, no blockers, AI-assisted description.