v2.85.0

Release Pull Request

#8129

What's Changed

• revert Dockerfile fix by @gilluminate in #8012
• feat(fidesui): add agent Alert variant and update body UI by @kruulik in #8001
• Agent chat for policy builder UI by @lucanovera in #7993
• Restore webpack for Next builds by @gilluminate in #8022
• ENG-564 (1/4): SaaS dataset backend validation and protected field restoration by @Linker44 in #7686
• Add Fides.matomo() integration helper by @gilluminate in #7991
• ENG-3489: Add CCPA/CPRA privacy request disclosure metrics page by @jpople in #7980
• feat: infra monitor details tray [ENG-3119] by @speaker-ender in #7857
• ENG-3528: Update FE to match BE disclosure metrics API contract by @eastandwestwind in #8025
• fix sass warning by @gilluminate in #8006
• ENG-3603: Fix custom field updates on privacy declarations by @jpople in #8024
• ENG-3593 Fix N+1 query performance in system upsert validation by @erosselli in #8009
• Update 2.84.0 changelog fragment by @dsill-ethyca in #8028
• ENG-3261: close re-invite validation gap and null-email modal render by @nreyes-dev in #7963
• ENG-3627: Update FidesJS JSDoc links for new fidesdocs structure by @gilluminate in #8038
• Wire antd CLI lint into npm lint scripts by @gilluminate in #8036
• ENG-3466 Relax username validation to allow email addresses by @erosselli in #8049
• Upgrade ESLint and fix no-unused-vars mapped type errors by @gilluminate in #8050
• Add dedicated Celery queue for bulk consent imports by @Linker44 in #8055
• ENG-3649: Add consent to supported actions for database integrations by @galvana in #8057
• ENG-3630: Consent identity enrichment via DB graph traversal by @galvana in #8039
• Expose consent webhook requests in privacy request search by @Linker44 in #8037
• 2.84.1 changelog by @Kelsey-Ethyca in #8058
• Fix consent webhook requests not visible on detail page by @Linker44 in #8059
• Updated dependencies for security fixes by @rayharnett in #8061
• ENG-3564: Design doc for dynamic DB credentials via AWS Secrets Manager by @erosselli in #8016
• Fix NextJS 16 warnings about logos by @gilluminate in #8052
• ENG-3605: Fix login button animation to be disabled and dimmer by @gilluminate in #8054
• ENG-2174: Optimize DSR queries to only SELECT necessary columns by @nreyes-dev in #7800
• Tighten turbopack chunk filename allowlist regex by @gilluminate in #8048
• Add optional dbname override to MicrosoftSQLServerConnector.build_uri by @adamsachs in #8017
• ENG-3655 Fix excessive memory usage in get_request_task_celery_task_ids by @erosselli in #8062
• Fix VSCodes changes to settings names by @gilluminate in #8068
• ENG-3479: Enable Ant cssVar + register brand/neutral palette as custom tokens by @gilluminate in #8056
• ENG-3479: Migrate var(--fidesui-) consumers to --ant- and delete Sass var generation by @gilluminate in #8065
• ENG-3479: Rename Ant cssVar prefix to fidesui and migrate consumers by @gilluminate in #8066
• ENG-3662: Pin first two columns of the datamap report table by @gilluminate in #8069
• ENG-3630: Consent pipeline reliability improvements by @rayharnett in #8064
• Change log for 2.84.2 by @galvana in #8074
• ENG-3507: Unlink StagedResources before system deletion by @dsill-ethyca in #8032
• ENG-564 (2/4): Node-based dataset editor with drill-down, CRUD, metadata editing, and YAML panel by @Linker44 in #7687
• ENG-564 (3/4): Wire up SaaS dataset validation and protected field decorations by @Linker44 in #7685
• ENG-564 (4/4): Add node-based graph editor to manage datasets page by @Linker44 in #7812
• ENG-3657: Update URLs for harpocrates by @tina-zimnicki in #8081
• play nice with newer Prettier extension by @gilluminate in #8089
• ENG-3593: Eliminate redundant System fetches in /system/upsert by @adamsachs in #8080
• ENG-3666 Parallelize warm_async_pool connections with asyncio.gather by @erosselli in #8097
• ENG-3290: In-app questionnaire chat UI and model changes by @galvana in #8091
• ENG-3569 - Add cloud infrastructure monitor action center frontend by @vcruces in #8053
• ENG-3590: Resurface behaviors for TCf by @tvandort in #8079
• Improve progress feedback on assessment evaluation by @lucanovera in #8041
• update changelog 2.82.2 by @adamsachs in #8101
• Improve update polling for assessments by @lucanovera in #8102
• ENG-2488: Validate user_geography to prevent malicious data persistence by @mikeGarifullin in #7889
• ENG-3515: BE: new custom privacy center field types (checkbox, checkbox_group, textarea) by @mikeGarifullin in #7977
• ENG-3516: BE: Condition validation for new custom fileds: checkbox, checkbox_group, textarea by @mikeGarifullin in #8026
• ENG-3516: BE: Submission-time resolution of display_condition rules by @mikeGarifullin in #8027
• Remove newIntegrationManagement beta flag by @Kelsey-Ethyca in #8082
• Require integration name when adding from system form by @Kelsey-Ethyca in #8085
• Make database healthcheck timeout configurable by @erosselli in #8100
• Improve activity log step names by @RobertKeyser in #8088
• Fix default tag color by @lucanovera in #8105
• Fix integration detail page 404 from route shadowing by @JadeCara in #8103
• ENG-3160: BE - Access policy agent chat (types + prompt explorer) by @thabofletcher in #7992
• ENG-3252: Remove redundant and flickering tooltip from Action Center view by @nreyes-dev in #8094
• refactor/action-center-refresh [ENG-3414] by @speaker-ender in #7981
• ENG-3464: Configurable Jira completion status by @JadeCara in #8046
• Add correlation ID fallback for async polling (Movable Ink) by @Linker44 in #8034
• Configurable reduction in Celery chatter on Redis queues by @rayharnett in #8077
• Update changelog for release 2.84.3 by @Linker44 in #8111
• Data purposes: card-grid listing page (1/2) by @kruulik in #8020
• ENG-3589: Add text customization to all privacy center pages by @jpople in #8071
• ENG-3457: fix long field name overflow in action center monitor results by @nreyes-dev in #8095
• ENG-3275: Display named OAuth clients by @tvandort in #7869
• refactor: action center cache busting [ENG-3643] by @speaker-ender in #8104
• ENG-3278: Improve nav search with keyword matching and relevance ranking by @jpople in #7952
• ENG-3447: Add att_exempt field to PrivacyNotice by @thabofletcher in #8029
• ENG-3588: Add semantic CSS class names for Privacy Center customization by @jpople in #8072
• ENG-3254: surface extracted log data by @tvandort in #7975
• Policies UI improvements by @lucanovera in #8078
• ENG-3389: Add Jira credential management UI by @jpople in #8098
• ENG-3263: new privacy center error page by @nreyes-dev in #7998
• ENG-3447: Add att_exempt support to FidesJS consent overlay by @thabofletcher in #8030
• Add promotion impact modal for wildcard assets by @guncha in #8075
• Cypress test flakiness fixes by @gilluminate in #8114
• E...

v2.84.5

Merge commit from fork

* ghsa-5qrq-9645-g5g2

* Example commit.

* Remove test code.

* Remove errant update.

* chore: trigger PR refresh

---------

Co-authored-by: Thomas Van Dort <tvand@Mac.fios-router.home>
Co-authored-by: Dave Quinlan <83430497+daveqnet@users.noreply.github.com>

v2.84.3

Full Changelog: 2.84.2...2.84.3

Release Pull Request

#8112

What's Changed

• Added the ability to disable Celery heartbeat, mingle and gossip through the config by @johnewart #8077

v2.82.2

Release Pull Request

#8044

What's Changed

• Reduce redundant System fetches per row in /system/upsert from four to one, and add per-axis change-detection logging in the system audit path by @adamsachs in #8080
• Fixed excessive memory usage in DSR cancel path by using column projection instead of loading full RequestTask ORM objects with large encrypted blobs by @erosselli in #8062
• Fixed N+1 query performance issue in system upsert endpoint where privacy declaration label validation issued individual database queries per label instead of batching them by @erosselli in #8009

Full Changelog: 2.82.1...2.82.2

v2.84.2

Release Pull Request

#8073

What's Changed

• Add configurable soft time limit for privacy request tasks, fix connector engine leak, and improve consent pipeline logging by @galvana in #8064

Full Changelog: 2.84.1...2.84.2

v2.84.1

Release Pull Request

#8060

Full Changelog: 2.84.0...2.84.1

v2.84.0

Release Pull Request

#8011

What's Changed

• ENG-2246: Add regex search toggle to monitor fields UI by @adamsachs in #7855
• fix: datastore filter responsiveness by @speaker-ender in #7870
• Migrate domains/CORS config form to Ant Design by @gilluminate in #7853
• Migrate custom reports forms to Ant Design by @gilluminate in #7865
• ENG-3359: Fix SaaS connector datasets bypassing property-based DAG filtering by @JadeCara in #7868
• ENG-3364: Fix Request Manager list alignment by @jpople in #7874
• Use global reusable workflow for Claude Code Review by @JadeCara in #7873
• Revert: Use global reusable workflow for Claude Code Review by @JadeCara in #7876
• chore: update staged resource types by @speaker-ender in #7871
• Add codegraph integration to Claude Code Review workflow by @JadeCara in #7878
• Add codegraph canary to Claude Code Review by @JadeCara in #7879
• Fix codegraph MCP connection in Claude Code Review by @JadeCara in #7883
• ENG-3370: Fix incorrect error message on login with bad credentials by @gilluminate in #7882
• ENG-3179: Migrate properties form to Ant Design by @gilluminate in #7880
• ENG-2986: Controls model, migration, seed data, and FE updates by @thabofletcher in #7833
• ENG-3169: Migrate organization settings form to Ant Design by @jpople in #7872
• Promote alphaJiraIntegration flag to beta as jiraIntegration by @jpople in #7886
• ENG-3267: Fix bulk promote failing for long URNs by @nrxsmith in #7881
• Bump aiohttp to 3.13.4 (ENG-3360) by @erosselli in #7891
• Update generated types and fix all issues by @lucanovera in #7757
• refactor: filter linked progress [ENG-3259, ENG-2794] by @speaker-ender in #7846
• ENG-3198: Upgrade Node.js from 20 to 24 and bump CI actions by @gilluminate in #7885
• Fix duplicated authentication description on Okta integration page by @dsill-ethyca in #7899
• Update heading tag semantics for privacy assessments by @lucanovera in #7892
• ENG-3365: Add new env var to hide all consent-related ui by @eastandwestwind in #7890
• fix: widget issues by @speaker-ender in #7894
• ENG-3368: Add composite (created_at, id) index for privacy_preferences pagination by @erosselli in #7897
• ENG-3171: Migrate config-wizard forms from Formik/Yup to Ant Design Form by @gilluminate in #7896
• ENG-3172: Migrate privacy request forms from Chakra/Formik to Ant Design by @gilluminate in #7903
• ENG-3173: Migrate connection manager and integration forms to Ant Design by @gilluminate in #7898
• ENG-3298: Add parent_id column to Comment model for threading by @JadeCara in #7864
• ENG-3353 Homepage dashboard UI polish by @eastandwestwind in #7904
• [1 of 2] ENG-3157: Platform identity resolution — OSS type changes for PBAC by @galvana in #7807
• ENG-3298: Fix DetachedInstanceError on Comment.delete() replies access by @JadeCara in #7906
• ENG-3413: Fix property form 422 on create — paths field dropped after antd migration by @jpople in #7908
• ENG-3388: use correct confidence bucket query parameter by @tvandort in #7895
• ENG-3416: Hide redundant 'across 1 monitor' on single-monitor Action Center view by @dsill-ethyca in #7911
• ENG-3419: Update ruff target-version from py39 to py313 by @erosselli in #7915
• Eng 567 pr 3 version history UI by @Vagoasdf in #7828
• ENG-3287: Regroup assessment list by processing activity by @galvana in #7887
• Replace alphaRbac feature flag with backend-driven RBAC config by @thabofletcher in #7877
• ENG-3398: Fix column reorder drop target in Datamap report modal by @gilluminate in #7905
• Update type generation command to use heyapi by @lucanovera in #7920
• ENG-3177: Migrate datamap SystemInfo from Formik/Chakra to antd Form by @gilluminate in #7921
• ENG-3437: Change account dropdown to click-only trigger by @gilluminate in #7923
• ENG-3430: make privacy center actions optional by @nreyes-dev in #7919
• Update changelog release 2.83.1 by @nreyes-dev in #7929
• ENG-3393: Add Jira OAuth app credentials to connection secrets schema by @JadeCara in #7901
• ENG-3443: Fix selectUser selector memoization by @gilluminate in #7927
• ENG-2987: Upgrade Admin UI Next.js from 14 to 16 by @gilluminate in #7907
• ENG-3440: Fix TypeError when closing Data Catalog drawer by @gilluminate in #7925
• fix: initial steward values [ENG-3411] by @speaker-ender in #7914
• ENG-3270: Add target_system_steward_ids column to StagedResource by @dsill-ethyca in #7912
• ENG-3435: Clean up antd v6 deprecated prop warnings by @gilluminate in #7936
• Access policies controls UI + new description field by @lucanovera in #7918
• ENG-3328: Add property picker to integration forms by @jpople in #7909
• ENG-3461: migrate admin-ui to RouterLink and remove legacyBehavior by @gilluminate in #7942
• Reword "click here" links for accessibility by @gilluminate in #7937
• fix: datastore integration text taxonomy [ENG-3209] by @speaker-ender in #7943
• ENG-3451: Fix Manage integration modal reporting dirty on mount by @gilluminate in #7934
• [ENG-3281] Add all pools to database healthcheck, add extended pool status data by @johnewart in #7856
• ENG-3461: add unstyled mode to RouterLink, replace all remaining NextLink usages by @gilluminate in #7946
• Bump next from 15.5.10 to 15.5.15 in /clients/privacy-center in the npm_and_yarn group across 1 directory by @dependabot[bot] in #7940
• Add reduce motion check on animated counts by @gilluminate in #7924
• ENG-3180: Migrate messaging template forms to Ant Design by @gilluminate in #7939
• ENG-3174: Migrate privacy notice forms to Ant Design by @gilluminate in #7950
• Remove plans directory by @galvana in #7951
• Add password-reset-at to JWE token for stateless validation by @thabofletcher in #7692
• ENG-3329: Add property info to privacy request details panel by @jpople in #7930
• ENG-3466: Add username character validation on user creation by @erosselli in #7953
• Replace palette JS imports with CSS variables in Admin UI by @gilluminate in #7954
• ENG-3084: Add Go PBAC policy engine library and fides pbac CLI by @thabofletcher in #7926
• chore: only trigger code review on /code-review comment by @adamsachs in #7958
• ENG-3417: Fix browser nav for action center ignored assets by @eastandwestwind in #7961
• ENG-3406: fix stale sidebar data in action center by @nreyes-dev in #7960
• ENG-3001: Add OAuth API clients list page by @tvandort in #7747
• ENG-3455: Add username validation to new user form by @gilluminate in #7957
• Update Changelog for 2.83.2 release by @erosselli in #7948
• ENG-3462: Fix console warnings and errors in Admin UI by @gilluminate in #7959
• fix: storybook build by @speaker-ender in #7955
• Fix 3459 rate limit by @Vagoasdf in #7938
• Fix sample app builds after Next upgrade by @gilluminate in #7966
• Fix user invite email test assertion after HTML escaping update by @JadeCara in #7973
• Fix PyPI upload by pinning version from tag by @erosselli in https://github.com/ethyc...

v2.83.3

Release Pull Request

#7994

What's Changed

• Add Control model and join table for associating regulatory frameworks with access policies by @thabofletcher in #7833
• Added composite (created_at, id) index to privacy_preferences to improve pagination performance on large tables by @erosselli in #7897
• Expanded database healthcheck to report per-pool health details and readonly async prewarming metrics. Top-level migration state (database may be needs migration) and database_revision continue to come from Alembic; optional pools are reported as skipped when not configured by @johnewart in #7856
• Scope check_object_exists in post-upgrade background index creation to the current PostgreSQL schema, preventing false positives on shared-database staging environments by @erosselli in #7990
• Fixed Ticket setup tab appearing on non-Jira integrations by @jpople in #7987
• Bumped aiohttp to 3.13.4 to fix 10 CVEs including CVE-2026-34516, CVE-2026-22815, CVE-2026-34520 by @erosselli in #7891

Full Changelog: 2.83.2...2.83.3

v2.83.2

Release Pull Request

#7982

What's changed

• Security Restored identity verification path for privacy requests classified as duplicates to prevent denial of service [GHSA-qx5f-ghc2-7g5c] by @JadeCara in #7971
• Security Added identity verification check before administrator approval of duplicate privacy requests [GHSA-qx5f-ghc2-7g5c] by @JadeCara in #7972

Full Changelog: 2.83.1...2.83.2

v2.83.1

Release Pull Request

#7928

Full Changelog: 2.83.0...2.83.1