Harness Release Notes Summaries
Explore release notes from the last 30 days across the Harness Platform and modules.
INFO
Please review the full module release notes by selecting a module in the sidebar, or using the View full release notes links beside each module summary.
Platform Release Notes
Platform
View full release notes →Notifications & Alerts
- Introduced an in-app notification system that automatically displays important account-level events, such as resource limits and system release announcements, directly within the console.
- Added configurable notification alerts for service account token events, including creation, rotation, updates, and upcoming expirations.
User Management & Administration
- New users are now prompted to complete their profile with contact and professional details immediately after signing up.
- Resolved an issue where users with limited viewing permissions received incorrect API responses when attempting to delete users or user groups.
- Fixed an issue where deleting a user or user group could trigger an inaccurate last admin warning due to permission limits.
- Corrected a bug that displayed an incorrect last admin warning when deleting users at the organization or project scopes.
- Fixed an issue where user groups in the console were not correctly sorted by creation date.
Project & Workspace Management
- Introduced the ability to seamlessly move projects between organizations while preserving execution and audit history.
- Fixed an interface issue where deleting a project or organization scope did not correctly update the Resource Scope dropdown.
- Resolved a blank error popup issue when editing a Custom Secrets Manager where the associated template had its runtime variables removed or converted to fixed values.
Performance & System Reliability
- Improved the reliability and logging of the Purchase Credits API during reset operations.
- Optimized the List Environments API to prevent timeouts by streamlining permission checks.
- Enhanced system stability and resolved potential race conditions to ensure more consistent behavior.
- Restored missing configurations required for background system routing services to function correctly.
- Improved data retrieval consistency and accuracy when fetching user metadata with account-level data flows enabled.
Delegate
View full release notes →Security & User Management
- Added support for Google Cloud Platform (GCP) OIDC authentication for database connectors, enabling secure connections without traditional credentials.
- Resolved security vulnerabilities within platform dependencies and libraries.
- Improved error messages for external Helm provider authentication failures to clearly identify them as credential errors rather than Harness login failures.
- Introduced an onboarding prompt for new users to complete their profile details immediately after registration.
Artifact & Integration Management
- Configured Git-based pull request triggers to fail early with clear permission error messages if the connector lacks required API access.
- Optimized Amazon S3 integrations to reuse client connections, resolving trigger failures and preventing resource exhaustion.
- Fixed false image validation failures when moving projects between organizations.
- Improved JFrog Artifactory integrations to ensure reliable artifact retrieval from Edge node configurations.
- Resolved artifact fetching failures in JFrog Artifactory when using repository-level access tokens for deployment to higher environments.
Infrastructure & Monitoring
- Added a configuration option to use container memory settings for more accurate delegate memory usage calculations.
- Fixed an issue where internal manager connection settings were missing from the delegate container pod.
- Added support for missing configuration parameters (such as volume and network configurations) during service update requests.
- Fixed an issue where Dynatrace Grail health source data collection would occasionally hang or fail during query polling.
AI for DevOps & Automation
Continuous Delivery & GitOps
View full release notes →Deployment & Cloud Platforms
- Introduced native deployment to Azure Container Apps with support for canary deployments, automatic rollbacks, and keyless authentication.
- Added WinRM session pooling for traditional Windows deployments to reduce connection overhead and speed up execution times.
- Fixed an issue where blank images in Cloud Run deployments triggered infinite retry loops.
- Fixed a crash that occurred in Cloud Run deployments when no manifests were configured.
- Fixed resource configuration and validation errors in Cloud Run deployments when only memory limits were specified.
- Fixed an issue where rolling deployments for Auto Scaling Groups defaulted to an incorrect template version on empty groups.
- Fixed an issue where pulling OCI Helm charts from Amazon ECR failed unless a temporary workaround repository was created.
Security & Authentication
- Enforced API access requirements for Git connectors linked to PR triggers to prevent unauthorized pipeline executions.
- Added support for passing delegate selector details as AWS session tags in OIDC tokens, enabling granular IAM policy enforcement.
- Added OIDC authentication support for AWS GovCloud regions with automatic regional endpoint routing.
- Fixed an issue where artifact image verification failed after projects were moved to a different organization or account.
Pipeline Management & Git Integration
- Added a new validation API endpoint to test pipeline YAML, template expansion, and policies before committing changes to Git.
- Added support for referencing pipeline configurations and input sets using Git tags during trigger executions.
- Transitioned GitOps licensing to a service-based model rather than an application-based model when linked to services.
- Fixed an issue where Amazon S3 artifact triggers failed after delegate upgrades.
User Interface & Performance
- Introduced a new Executions Management page for account-level visibility, filtering, and bulk cancellation of queued pipelines.
- Fixed an issue where ApplicationSet TemplatePatch settings were not saved or displayed in the Manifest Edit panel.
- Fixed a display issue where the saved state of the artifact validation setting in multi-service pipelines was not accurately shown in the user interface.
- Fixed an issue that caused intermittent delays when downloading configuration files from Amazon S3.
- Improved dashboard loading speeds to prevent slowness for impacted accounts.
Continuous Integration
View full release notes →Network & Connectivity
- Configure network egress restrictions directly in the UI for Harness Cloud Linux and Windows build virtual machines.
- Improved reliability for private network connections by automatically injecting cloud delegate selectors when none are configured.
- Ensured connector validation works properly in private network setups by routing proxy-enabled validation tasks through Harness Cloud.
- Enabled source code operations over private network paths by routing codebase tasks through Harness Cloud delegates.
- Improved reliability and reduced external network dependencies by using a default download path for containerless step binaries.
Build Performance & Speed
- Improved test splitting accuracy in Test Intelligence by using historical average durations for more balanced parallelism.
- Reduced pipeline initialization times on Harness Cloud VM images by removing automatic package list updates during startup.
- Resolved an issue that caused logs from containerized step groups to time out during upload.
- Resolved codebase and source control management task timeouts during pipeline executions triggered by large pull requests.
- Reduced pipeline initialization times on Kubernetes build infrastructures.
Cache Management
- Added support for caching NuGet dependencies based on the NuGet packages environment variable.
- Added support to override Azure-specific fields in Cache Intelligence settings.
- Added support for a stage-level YAML override of the connector used to access cache storage in self-hosted builds.
Security & Compliance
- Resolved an issue where Docker Layer Caching unexpectedly added provenance and software bill of materials (SBOM) attestations during Google Artifact Registry builds.
- Fixed Git Clone failures on FIPS-compliant environments by adding missing SSH algorithm support.
- Improved security for Docker, ACR, GCR, GAR, and ECR plugins by replacing end-of-life components in build images.
- Enhanced Git clone operations security by replacing end-of-life components in the underlying image.
Pipeline & Integration Reliability
- Fixed an issue where referencing unresolved environment variables added null values to pipeline execution tags.
- Resolved a false warning indicating that container image versions were outdated when using secure SHA256 digest references.
- Avoided rate-limiting issues on public ECR image pulls by automatically using authenticated sessions when an AWS connector is configured.
Infrastructure as Code Management
View full release notes →Infrastructure Tooling
- Added support for AWS Cloud Development Kit (CDK) in beta, enabling users to define infrastructure using TypeScript, Python, Java, C#, and Go.
- Released Terragrunt support to general availability, including drift detection, security scanning, policy enforcement, and native approval workflows.
- Fixed an issue where the Terraform provider connector was unexpectedly resetting.
- Fixed loading state issues for cost estimations in Terragrunt workspaces.
Workspace & Insights
- Introduced resource-level analytics in dashboards to provide deeper insights into infrastructure changes and resource lifecycles across workspaces.
- Upgraded the Module Registry with native webhook triggers for testing pipelines, improved error messaging, and clearer state tracking during backend updates.
- Fixed an issue where resources on the workspace resource tab were not persisting correctly.
Security & System Reliability
- Patched a security vulnerability in the go-git dependency.
- Resolved timeout issues when uploading large infrastructure plans.
- Resolved image pull failures for self-managed platform deployments.
Artifact Registry
View full release notes →Swift Package Support
- Added support for native Swift Package Manager workflows, enabling you to log in, publish, and resolve packages seamlessly.
- Securely host proprietary, private Swift packages directly within your Harness account.
- Proxy and cache packages from external Swift registries to accelerate builds and reduce external dependencies.
File & HTTP Storage
- Store and access build artifacts, reports, and shared configurations directly by file path.
- Push and pull files using standard HTTP clients like curl without requiring custom command-line interface plugins.
- Proxy and cache files from external HTTP sources through Harness to speed up downloads.
Data Retention & Recovery
- Recover accidentally deleted packages, versions, and registries directly from a dedicated Deleted tab.
- Automatically soft-delete all nested packages and versions when deleting a registry, with the ability to restore them cascade-style.
- Configure customizable data retention windows for deleted artifacts at the account, organization, or project level.
- Optionally bypass retention windows to permanently and immediately delete artifacts.
AI for Testing & Resilience
Feature Management & Experimentation
View full release notes →Governance & Standards
- Enforce naming conventions for environments to ensure consistent structures across projects.
- Enforce naming conventions for segments to standardize user group definitions.
- Validate segment definitions, including rules and exclusions, to ensure accurate targeting.
- Apply Harness Policy as Code to govern feature management and experimentation workflows.
- Use Policy as Code to define and enforce compliance guardrails for feature flags.
Targeting & User Experience
- Enable type-ahead search to quickly find and add specific identity keys in targeting rules.
- Hover over targeting keys to view detailed identity attribute tooltips for easier debugging.
- Target users and segments using custom attributes for more precise delivery.
Integration & Developer Tools
- Access the new Identities API to programmatically manage identity data.
- Connect Feature Management & Experimentation with Harness Pipelines to automate release workflows.
Feature Flags
View full release notes →Documentation & Resources
- Refer to the dedicated Feature Flags release notes page for the complete list of updates and improvements for this period.
Chaos Engineering
View full release notes →Security & Platform Administration
- Patched multiple security vulnerabilities (CVEs) across various Chaos Engineering services and images.
- Fixed an issue preventing some users from accessing the subscriptions page.
- Added support for the 'NOT_EQUAL_TO' operator for namespace label selectors in ChaosGuard.
- Deprecated the Chaos GameDays feature.
User Interface & Experience
- Added the ability to edit step names directly within Chaos Studio.
- Added user interface support for providing runtime input for connectors.
- Updated the icon for Windows infrastructure to the correct Windows logo under ChaosGuard conditions.
- Added pagination to the Chaos Hub filter within the Chaos Experiment template selector modal.
- Simplified the experiment runs page by removing expanded details and dropdown icons.
- Optimized the timeline view to improve alignment with estimated execution times.
API & Integrations
- Added filtering support for the chaos experiment list in the REST API.
- Fixed an issue where the experiment status filter was not working in the V3 list experiment API.
Experiment Execution & Reliability
- Fixed an issue where chaos experiments would get stuck in a running state if the pod failed to start on the target infrastructure.
- Updated the pod-autoscaler fault to validate that the specified target infrastructure exists before execution.
- Fixed an issue causing unexpected characters in Chaos Experiment YAML configurations.
- Fixed a date-related error occurring during composite load tests in pipelines.
AI Test Automation
View full release notes →Playwright Automation
- Introduced support for the Playwright execution engine to run web test automations.
- Added drag-and-drop capability support for Playwright-based tests.
- Added clipboard interaction support for tests executed on Playwright.
Task Management & Execution
- Implemented a maximum nesting depth for tasks to improve organization and prevent errors.
- Resolved an issue where creating a task from test steps did not properly enable nested tasks.
- Updated general tasks to run strictly as manual actions to avoid unintended automated steps.
Test Configuration & Databases
- Prevented the creation of duplicate test suites within the system.
- Expanded database query capabilities to support Oracle and MS SQL databases.
- Fixed an issue that caused base URL paths to duplicate across different environment configurations.
User Interface & Session Stability
- Improved session timeout handling and added warning notifications before session expiration.
- Disabled user click actions during automated test execution to prevent manual interference.
- Refined the visual formatting of session components for a cleaner user interface.
Last updated Apr 30, 2026
AI & Incident Analysis
- Automatically generates structured post-incident reviews containing incident summary, impact, root cause, resolution, and lessons learned upon closing an incident.
- Automatically correlates ServiceNow change records with active incidents, displaying change data alongside deployment events and code changes to accelerate root cause analysis.
Collaboration & Communication
- Automatically detects and captures action items in real time from Slack messages, meeting transcripts, and incident notes during active incidents.
- Enables incident commanders to send pre-populated, structured status updates via email to stakeholders subscribed to impacted services.
- Introduces integration with Google Chat, allowing teams to collaborate on incidents in dedicated spaces and post real-time updates.
Automation & Integrations
- Enables on-call responders to trigger runbook automations instantly from Slack using short slash commands.
- Adds native actions in runbooks to create, update, and comment on ServiceNow incidents without requiring custom webhook configurations.
- Allows users to save and reuse webhook configurations as templates across future integrations.
Alerting & On-Call Management
- Provides a centralized view of all active pages, showing page status, assigned responders, escalation progress, and acknowledgment states.
- Supports custom display names for alert rules to make it easier to identify and manage rules across the organization.
AI for Security & Compliance
Security Testing Orchestration
View full release notes →Platform & Scanner Updates
- Added Linux ARM architecture support for all STO-supported scanners.
- Introduced FIPS compliance support for Nexus IQ and Prisma Cloud scanners.
User Interface & Experience
- Redesigned the STO Issues page to provide a comprehensive view of your project's security posture, featuring trend analysis graphs and summaries of active and remediated issues.
- Fixed an issue where status updates made on the issue overview page did not immediately reflect on the main issues page without a manual refresh.
Account & Trial Management
- Introduced a self-service option for account administrators to start a 45-day trial of Harness Code and Container scanners directly within the platform.
Supply Chain Security
View full release notes →Vulnerability & Risk Management
- Introduced intelligent remediation for open-source dependency risks, recommending upgrades that reduce vulnerabilities while minimizing breaking changes.
- Added support for customizing Software Bill of Materials (SBOM) generation using cdxgen CLI flags to control scan scope, dependency resolution, and output behavior.
Artifact Integrity & Trust
- Added SLSA provenance generation for non-container artifacts, enabling build verification and traceability for Java packages, Helm charts, and native binaries.
- Introduced keyless signing and verification using OIDC-based identity with AWS, GCP, and Azure to eliminate the need for managing long-lived cryptographic keys.
- Released Artifact Registry integration for artifact signing and verification steps as Generally Available.
Platform & Usability Improvements
- Resolved an issue where Artifact Verification templates could fail validation and display errors in the YAML view when opened or recreated in the user interface.
- Fixed permission errors in Kubernetes-based workflows during SBOM, Artifact Signing, and SLSA Generation steps by ensuring correct propagation of environment variables.
AI for Cost & Optimization
Cloud Cost Management
View full release notes →Cost Recommendations
- Display account details directly in the list view for Cost Optimization Hub-based AWS passthrough recommendations.
- Refreshed the "Add to Ignore List" dialog to make recommendation scopes clearer and highlight global-scope warnings.
- Renamed the "Ignored until" column to "Scope & Duration" and added item counts to all recommendation tabs for quicker monitoring.
- Relocated the Rejected and Ignored lists to the main Recommendations view, allowing users to export these lists directly.
Data Visualization & Filters
- Fixed a filtering issue on the External Cost Data Sources page so that Perspective filters correctly use the provider name instead of the provider type.
- Enhanced the Anomaly Details page to show cost types, cost categories, and cost buckets for better business context.
- Fixed an issue with the GCP invoice month filter in Perspectives to ensure it displays the correct month on month-end dates.
- Updated Overview page charts to consistently display tooltips and x-axis labels in UTC time, eliminating time-zone confusion.
Settings & Access Control
- Streamlined the recommendation Cost Settings with a tabbed interface, adding mixed-account configuration support for AWS and selectable pricing views for Azure.
- Enforced Role-Based Access Control in Cost Settings, disabling the save preferences option for users with view-only permissions.
Software Engineering Insights
View full release notes →DORA & Performance Metrics
- Improved the accuracy of DORA metrics by leveraging ITSM-backed signals.
- Correlated deployment activities with real-world incidents and change events to track operational health.
- Enabled the use of ServiceNow data within DORA metrics to better measure engineering efficiency.
Productivity & Workflow Analytics
- Introduced new developer productivity insights to track metrics like PR cycle times.
- Added capabilities to analyze the operational impact of engineering changes.
- Streamlined the process for identifying systemic bottlenecks across delivery and incident response workflows.
- Enhanced dashboard views to make navigating and analyzing engineering insights easier.
Integration Enhancements
- Added a new integration with qTest for improved quality assurance tracking.
- Added a new integration with ServiceNow to sync incident and change management data.
- Streamlined the overall configuration process for third-party integrations.