-
Notifications
You must be signed in to change notification settings - Fork 4.6k
Pull requests: appsmithorg/appsmith
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
fix(security): prevent git import symlink path traversal → arbitrary file read/write (GHSA-fqwc-g9wm-5895)
ok-to-test
Required label for CI
Security
Issues related to information security within the product
#41993
opened Jul 14, 2026 by
subrata71
Collaborator
Loading…
1 of 2 tasks
chore(deps-dev): bump postcss-preset-env from 7.6.0 to 11.3.2 in /app/client
Dependencies
Pull requests that update a dependency file
javascript
Pull requests that update Javascript code
#41991
opened Jul 13, 2026 by
dependabot
Bot
Loading…
chore(deps): bump golang from 1.26.4-alpine to 1.26.5-alpine in /deploy/docker
Dependencies
Pull requests that update a dependency file
Docker
Issues related to docker
#41990
opened Jul 13, 2026 by
dependabot
Bot
Loading…
chore(deps-dev): bump com.diffplug.spotless:spotless-maven-plugin from 3.0.0 to 3.8.0 in /app/server
Dependencies
Pull requests that update a dependency file
java
Pull requests that update Java code
#41989
opened Jul 13, 2026 by
dependabot
Bot
Loading…
chore(deps): bump io.micrometer:micrometer-tracing-bridge-otel from 1.3.5 to 1.7.0 in /app/server
Dependencies
Pull requests that update a dependency file
java
Pull requests that update Java code
#41988
opened Jul 13, 2026 by
dependabot
Bot
Loading…
chore(deps): bump com.oracle.database.jdbc:ojdbc8 from 21.9.0.0 to 23.26.2.0.0 in /app/server
Dependencies
Pull requests that update a dependency file
java
Pull requests that update Java code
#41987
opened Jul 13, 2026 by
dependabot
Bot
Loading…
fix(workflows): use continue instead of break in close-labeler loop
#41986
opened Jul 13, 2026 by
moosairfaan
Loading…
fix(security): restrict datasource access to the instance's own network address
#41985
opened Jul 13, 2026 by
wyattwalter
Contributor
Loading…
fix: don't leak server host/IP in MySQL access-denied error message
#41984
opened Jul 13, 2026 by
Mavi9412
Loading…
1 of 2 tasks
fix(deps): batch security update — 2 vulnerabilities
ok-to-test
Required label for CI
#41981
opened Jul 11, 2026 by
appsmith-smithes
Bot
•
Draft
feat: embedded MCP server with user-scoped token authentication (#15383)
Enhancement
New feature or request
ok-to-test
Required label for CI
Property Pane
Issues related to the behaviour of the property pane
UI Building Product
Issues related to the UI Building experience
#41980
opened Jul 10, 2026 by
salevine
Contributor
Loading…
fix(deps): pin springdoc-openapi to 2.8.9 for Spring Boot 3.5 compatibility
#41977
opened Jul 9, 2026 by
wyattwalter
Contributor
Loading…
feat: add version & build metadata to Pylon support chat
Enhancement
New feature or request
Frontend
This label marks the issue or pull request to reference client code
ok-to-test
Required label for CI
#41976
opened Jul 9, 2026 by
salevine
Contributor
Loading…
fix: fully honor block-anonymous-tracking flag on client and server
Bug
Something isn't working
ok-to-test
Required label for CI
#41973
opened Jul 9, 2026 by
salevine
Contributor
Loading…
2 tasks
fix(plugins): parameterize query execution for Redshift, Snowflake and Databricks
#41967
opened Jul 8, 2026 by
wyattwalter
Contributor
Loading…
fix(security): harden server-side SSRF egress filtering across plugins
ok-to-test
Required label for CI
#41962
opened Jul 7, 2026 by
subrata71
Collaborator
Loading…
3 of 4 tasks
chore(deps): bump react-router-dom from 5.2.0 to 7.18.1 in /app/client
Dependencies
Pull requests that update a dependency file
javascript
Pull requests that update Javascript code
#41960
opened Jul 6, 2026 by
dependabot
Bot
Loading…
chore(deps-dev): bump @rollup/plugin-babel from 6.0.4 to 7.1.0 in /app/client
Dependencies
Pull requests that update a dependency file
javascript
Pull requests that update Javascript code
#41959
opened Jul 6, 2026 by
dependabot
Bot
Loading…
chore(deps): bump moment from 2.29.4 to 2.30.1 in /app/client
Dependencies
Pull requests that update a dependency file
javascript
Pull requests that update Javascript code
#41958
opened Jul 6, 2026 by
dependabot
Bot
Loading…
chore(deps): bump com.microsoft.sqlserver:mssql-jdbc from 11.2.4.jre11 to 13.4.0.jre11 in /app/server
Dependencies
Pull requests that update a dependency file
java
Pull requests that update Java code
#41957
opened Jul 6, 2026 by
dependabot
Bot
Loading…
Implement Query Filter Builder Widget for complex queries
Stale
#41950
opened Jul 5, 2026 by
chmes271
Loading…
2 tasks
chore(deps): bump echarts from 5.4.2 to 6.1.0 in /app/client
Dependencies
Pull requests that update a dependency file
javascript
Pull requests that update Javascript code
ok-to-test
Required label for CI
Stale
#41934
opened Jun 30, 2026 by
dependabot
Bot
Loading…
chore(deps): bump com.github.goodforgod:arangodb-testcontainer from 2.0.0 to 6.0.0 in /app/server
Dependencies
Pull requests that update a dependency file
java
Pull requests that update Java code
Stale
#41931
opened Jun 29, 2026 by
dependabot
Bot
Loading…
fix: show required marker on legacy select widgets
#41927
opened Jun 26, 2026 by
miachillgood
Loading…
Previous Next
ProTip!
Find all pull requests that aren't related to any open issues with -linked:issue.