Added GraphQL support to Docs MCP server.
- Realm
- Reef
- Revel
- Redoc
- Reunite
Latest release
Features
Adds validation and logging for mutually exclusive
access.idpsandaccess.ssoinredocly.yaml.Added
titleattribute to thejson-schemaMarkdoc tag to display a heading above the rendered schema.Updated the
imgMarkdoc tag withframed,caption, andimagesproperties.Added annotations to the MCP tools.
Added support for the
openapi-code-sampleandopenapi-response-sampleMarkdoc tags inllms.txt.Added a setup instructions page which is displayed when users open the Docs MCP server URL
/mcpin a browser.Added
inputHintsto dynamic Replay configuration to customize empty-input tooltips in Try It.
Fixes
Fixed an issue where the Docs MCP server
searchtool returned results from all locales.Fixed an issue where the login button did not return users to their previous page after signing in.
Fixed scroll synchronization between the Webview and editor: dragging the Webview scrollbar scrolls the editor, and mouse-wheel scrolling maintains alignment.
Fixed an issue where setting an empty string in
openapi.corsProxyUrldid not disable the CORS proxy server.Fixed an issue where search results prioritized matches in page text over matches in page titles.
Fixed issues in the breadcrumbs dropdown component where the chevron icon did not change and a focus outline was added on click.
Fixed an issue where the selected version persisted across versioned content sets instead of resetting to each set's default version.
Fixed an issue where italic or bold text inside headings was excluded from generated anchor links.
Fixed an issue where Markdown output for
llms.txtwas missing blank lines after Markdoc tags.Fixed an issue where MCP page actions were hidden on pages for which
llms.txtfiles weren't generated.Updated
@redocly/openapi-coreto version2.37.0.Fixed layout shift in the sidebar that happened when users selected a sidebar item.
Fixed an issue where the Markdoc
tabstag crashed if it contained content without alabelattribute.Fixed an issue where API functions could stop working and return errors after a function had been edited, added, or renamed during preview.
Fixed an issue where the deprecated badge didn't appear in search dialog results for the Typesense search engine.
Improved HTTP caching for public and private pages.
Fixed an issue where search results were incorrectly scoped to the selected product, version, or filter.
Fixed styling and layout issues in the
requestBodytab of Replay.Fixed layout issue causing OpenAPI operation content to be squeezed into narrow columns when navigating between pages.
Fixed incorrect handling of
readOnlyandwriteOnlyproperties in complex schemas.Fixed an issue in Replay where example values with line breaks or tabs corrupted the request URL.
Fixed an issue where some APIs rejected requests from Replay that didn't have request bodies.
Fixed an issue in Replay where form data fields were not displayed in the initial view of
multipart/form-datarequest bodies.Fixed Replay requests failing when sent to a trusted credential origin with a CORS proxy.
readOnlyproperties are no longer required in mock server request bodies.Fixed an issue where
multipart/form-datarequest properties were not coerced correctly.
Previous releases
Fixes
Fixed Azure DevOps pull request checks not running for project builds triggered by push events.
Fixed intermittent request failures caused by exhausting the database connection pool under high load.
Updated
@redocly/cliand@redocly/openapi-coreto version2.37.0.Fixed trial creation when a Rebilly customer exists without a subscription.
startTrialattaches a trial to the existing customer, enabling organizations affected by partial provisioning failures to recover on the next subscription lookup.Fixed an issue in Replay tab where requests to external URLs failed with generic
Errormessage.
Fixes
Added the ability to stop an in-progress autonomous agent run and start a run on demand from the agent settings page.
Fixed intermittent
Unable to start a transaction in the given timeerrors under load by removing transactions from authenticated database queries.
Fixes
Cached Vault secrets per project with a 30-second TTL to reduce
RbacGuardVault query load.
Fixes
Fixed processing of Bitbucket Cloud pull request updates authored by apps or bots for connected project sources.
Fixes
Fixed an issue where uploading a large profile picture could cause login failures.
Features
Added
access.idpsconfiguration inredocly.yamlto specify which identity providers, defined by unique IDs in Reunite, appear on the login screen.
Fixes
Fixed crash caused by concurrent pull requests creating duplicate branches and triggering Prisma P2002 unique constraint errors.
Fixed an issue where organization logos in invitation emails appeared small and blurry.
Fixed scout job pickup failure caused by Postgres error
42P18by casting thescoutVersionquery parameter to text.
Fixes
Raised
Prismatransaction timeout to prevent commit expiration errors on paginated list endpoints.
Fixes
Updated
@redocly/cliand@redocly/openapi-coreto version2.35.0.
Fixes
Fixed issue loading large numbers of PR contributors.
Fixed an issue where external Git user logins were capitalized instead of preserving the original casing.
Features
Added provider-native pagination and server-side search to git branch listings. Branch pickers in the project source and remote content flows now load branches page by page with infinite scroll and filter them on the git provider (GitHub, GitLab, Bitbucket Cloud, Azure DevOps) instead of fetching every branch upfront.
Fixes
Fixed security vulnerability
CVE-2026-40879by upgrading@nestjs/microservicesto version11.1.27.Fixed security vulnerability
CVE-2026-35515by upgrading@nestjs/coreto version11.1.27.
Fixes
Fixed security vulnerabilities
CVE-2026-54286,CVE-2026-54287,CVE-2026-54288,CVE-2026-54289, andCVE-2026-54290by upgradinghonoto version4.12.25.Fixed security vulnerability
CVE-2026-53550by upgradingjs-yamlto version4.2.0.Fixed security vulnerabilities
GHSA-gvmj-g25r-r7wr,CVE-2026-49978,GHSA-x4vx-rjvf-j5p4,GHSA-vxr8-fq34-vvx9,CVE-2026-49459,CVE-2026-49458,GHSA-76mc-f452-cxcm, andGHSA-cmwh-pvxp-8882by upgradingdompurifyto version3.4.11.Fixed security vulnerability
GHSA-gv7w-rqvm-qjhrby upgradingesbuildto version0.28.1.Fixed security vulnerability
CVE-2026-54285by upgrading@opentelemetry/coreto version2.8.0.
Features
Added status dots to folders in the editor file tree, indicating when a folder contains an added or modified file.
Fixes
Fixed security vulnerabilities
CVE-2026-2359,CVE-2026-3304andCVE-2026-3520by upgradingmulterto version2.2.0.Updated
@redocly/openapi-coreand@redocly/clito version2.34.0.
Features
Added an analytics source to the autonomous agent to investigate project analytics, including AI search conversations, standard search queries, and page views. Added filtering, sorting, and search to project analytics tables in Reunite. Fixed an issue where clearing the time range caused a malformed filter.
Fixes
Updated
@redocly/openapi-coreand@redocly/clito version2.33.1.Fixed
"Custom filter 'workflowId' can only be used with ':' operator"error in the Respect Monitoring tab when filtering multiple workflows.Added
captionattribute to theimgMarkdoc tag in the Reunite editor.
Fixes
Fixed git blame annotations wrapping onto a new line with word wrap enabled.
Fixes
Fixed an issue where a transient Rebilly concurrent modification conflict during usage reporting was misclassified as exceeding the pages budget, failing the build. Usage reporting now retries on such conflicts.
Fixes
Updated
@redocly/openapi-coreand@redocly/clito version2.32.1.Fixed an issue where the active editor file and
redocly.yamlcontents were not sent as context to the Reunite AI Assistant, causing answers to ignore the current file.