kestra

v1.3.17 Security

This release includes 1 security fix for security teams reviewing exposed deployments.

Published 22d Automation & Workflows

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

This release patches 1 known CVE

Topics

automation data-orchestration devops high-availability iac java

+6 more

low-code lowcode orchestration pipeline pipeline-as-code workflow

Affected surfaces

deps

ReleasePort's take

Moderate signal

editorial:auto 13d

v1.3.17 adds dateFilter filtering options and fixes npm audit vulnerabilities on v1.3.x. Execution termination now requires UPDATE permission.

Why it matters: npm audit vulnerabilities fixed on v1.3.x—patch current deployments. Execution termination now enforces UPDATE permission, preventing unauthorized task termination.

Summary

AI summary

Added dateFilter option to execution interval filter in both open-source and enterprise editions.

Changes in this release

Type	Severity	Summary	CVE
Feature
Feature	Medium	Add dateFilter option to execution interval filter. Add dateFilter option to execution interval filter. Source: llm_adapter@2026-05-21 Confidence: high	—
Feature	Medium	Add dateFilter translations for all supported languages. Add dateFilter translations for all supported languages. Source: llm_adapter@2026-05-21 Confidence: high	—
Feature	Medium	Add dateFilter support to EE execution search. Add dateFilter support to EE execution search. Source: llm_adapter@2026-05-21 Confidence: high	—
Dependency	Medium	Fix npm audit vulnerabilities on v1.3.x. Fix npm audit vulnerabilities on v1.3.x. Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix
Bugfix	Medium	Add findDistinctNamespace to KV and namespace-file metadata repos. Add findDistinctNamespace to KV and namespace-file metadata repos. Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix	Medium	Clarify AI generation limit resets daily at midnight UTC. Clarify AI generation limit resets daily at midnight UTC. Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix	Medium	Tolerate anonymous AI calls in telemetry listeners. Tolerate anonymous AI calls in telemetry listeners. Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix	Medium	Track tool-call responses in PosthogChatModelListener. Track tool-call responses in PosthogChatModelListener. Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix	Medium	Killing an execution requires the UPDATE permission. Killing an execution requires the UPDATE permission. Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix	Medium	Correct filterTypes import path in FilterSelect.vue. Correct filterTypes import path in FilterSelect.vue. Source: llm_adapter@2026-05-21 Confidence: low	—
Bugfix	Medium	Correct TypeScript syntax errors and regenerate OpenAPI spec. Correct TypeScript syntax errors and regenerate OpenAPI spec. Source: llm_adapter@2026-05-21 Confidence: low	—
Bugfix	Medium	Replace null char escaped by JacksonMapper. Replace null char escaped by JacksonMapper. Source: llm_adapter@2026-05-21 Confidence: low	—

Full changelog

Kestra Open-Source Edition Changes

Changelog

🚀 Features

execution

4e00b6d add dateFilter option to execution interval filter (#15905), closes #15905

i18n

68b991c add dateFilter translations for all supported languages

📘 Subtasks

version

02850b3 update to version '1.3.17'

🐛 Bug Fixes

backup

2a375bd add findDistinctNamespace to KV and namespace-file metadata repos (#15873) (#15917), closes #15873 #15917

copilot

b388356 clarify that AI generation limit resets daily at midnight UTC (#15997), closes #15997
91752cd tolerate anonymous AI calls in telemetry listeners
5431b27 track tool-call responses in PosthogChatModelListener

execution

a8cbe5e killing an execution require the UPDATE permission

global

bb6f2f9 correct filterTypes import path in FilterSelect.vue
9e4a133 correct TS syntax errors in FilterEditPopper/FilterSelect and regenerate OpenAPI spec
8a9c8a0 replace null char that was escaped by JacksonMapper (#15983), closes #15983

🛠 Build

deps

1fd890b fix npm audit vulnerabilities on v1.3.x (#15957), closes #15957

Contributors

We'd like to thank the following people for their contributions:
GitHub, Loïc Mathieu, Miloš Paunović, Roman Acevedo, YannC, YannC., brian-mulier-p, brian.mulier, github-actions[bot]

Kestra Enterprise Edition Changes

Changelog

🚀 Features

execution

35e86c9 add dateFilter support to EE execution search (#7673) (#7747), closes #7673 #7747

📘 Subtasks

version

2ced983 update to version '1.3.17'

🐛 Bug Fixes

backup

265d5b9 back up namespaces that have no flow (#7655) (#7677), closes #7418 #7655 #7677

core

73dac2f clear kill switch form when opening create dialog (#7697), closes #7629 #7697

🛠 Build

deps

ec8e213 fix npm audit vulnerabilities on v1.3.x (#7706), closes #7617 #7706

Contributors

We'd like to thank the following people for their contributions:
GitHub, MilosPaunovic, Miloš Paunović, brian-mulier-p, github-actions[bot]

Security Fixes

Fixed npm audit vulnerabilities on v1.3.x in both open-source and enterprise builds.

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track kestra

Get notified when new releases ship.

About kestra

Event Driven Orchestration & Scheduling Platform for Mission Critical Applications

All releases →

kestra

ReleasePort's take

Summary

Changes in this release

Kestra Open-Source Edition Changes

Changelog

🚀 Features

📘 Subtasks

🐛 Bug Fixes

🛠 Build

Contributors

Kestra Enterprise Edition Changes

Changelog

🚀 Features

📘 Subtasks

🐛 Bug Fixes

🛠 Build

Contributors

Security Fixes

Related context

Related tools