- Increase Buffer.poolSize default to 64 KiB and add new Buffer‑related improvements; introduce httpValidation option for stricter header validation and permission.drop API; upgrade crypto root certificates to NSS 3.123.1, harden WebCrypto...
- Significant QUIC enhancements including new options (rate limiting, session creation limits, hostname verification, idle timeout, etc.) and performance tweaks; update npm to 11.16.0 and improve build pipelines (VS2022 arm64 PGO, Thin LTO...
Backend changelog updates
Runtime, databases, API services, queues, and backend operations. Follow release notes, breaking changes, security patches, pricing updates, and community reactions from this channel.
Use this Backend changelog channel to compare product release notes, discover risky migrations, and build a weekly digest for the tools in this stack.
6
12
4
Products in this channel
Latest Backend changelog updates
- Added new Array data structure and subkey notifications for hash fields, plus INCREX window counter rate limiter and XNACK stream command
- Introduced COUNT aggregator for ZUNION/ZINTER, FPHA argument for JSON.SET, multi‑aggregator support in TimeSeries commands, and FT.HYBRID KNN clause with profiling
- Provided Alpine/Debian Docker images, expanded OS support, runtime memory‑tracking, and assorted bug fixes
- Added new minor features: Temporal.Instant support in fs Stats/BigIntStats, writeInformation for arbitrary 1xx HTTP status codes, and marked stream.compose as stable
- Introduced extensive crypto updates: wire‑ML DSA/KEM, ChaCha20‑Poly1305, AES‑KW for BoringSSL, hardened CryptoKey/KeyObject slots and stricter raw key import validation
- Improved documentation across many modules and reduced test flakiness with numerous bug‑fixes and stability tweaks
- Auth docs now include clearer examples for user-owned rows.
- Teams using custom claims should review policy snippets before copying them.
- Fixed multiple security issues including a crypto null‑pointer dereference, URL parsing crash for malformed UNC hostnames, a zlib use‑after‑free on reset, HTTP keep‑alive socket reuse race, and an HTTP/2 file‑handle leak
- Resolved numerous core bugs such as module resolution double‑invocation, source‑map URL parsing, stream chunk boundary checks, and sync resolve hook handling
- Introduced a new ESM feature: separate cache for require('esm') when importing CJS modules, plus upgrades to npm (10.9.8) and OpenSSL (3.5.6)
- Multi-platform builds can reuse cache layers more predictably.
- CI pipelines with ARM and x86 targets may see shorter build times.
- Security release updates bundled dependencies and runtime patches.
- Production services should schedule patch rollout promptly.
- Client generation handles workspace output paths more consistently.
- Monorepos with custom package boundaries should re-check generated imports.