Skip to main content

Changelog

All notable changes to the Plugged.in platform are documented here. The project follows Semantic Versioning.

Latest Releases

v3.1.0

Current Stable Collective Best Practices & Intelligent Memory

v3.0.0

Agent Architecture & Vector Search Major Platform Release

v2.12.0

Enhanced Security & Performance

Version 3.1.x Series

[3.1.0] - 2026-03-01

Current Version

Added

  • Collective Best Practices (CBP)
    • Privacy-preserving pattern aggregation with HMAC-SHA256
    • k-anonymity (k>=3) for community patterns
    • Success rate tracking and contextual injection
    • Feedback loop for quality improvement
  • Concentric Memory Rings
    • Human cognition-inspired memory architecture
    • Five ring types: Fresh, Procedures, Practice, Long-term, Shocks
    • Intelligent forgetting with configurable decay engine
    • Progressive 3-layer retrieval for token efficiency
  • Claude Code Plugin
    • Native MCP integration with zero configuration
    • Memory lifecycle hooks with automatic session management
    • 9 built-in skills and 2 agents
    • CBP post-error suggestions
  • Shared Vector Infrastructure (pgvector)
    • PostgreSQL pgvector extension for native vector search
    • HNSW indexing with cosine distance similarity
    • 1536-dimension embeddings via OpenAI or Google Gemini
  • Z-Reports (Session Summaries)
    • End-of-session compressed summaries
    • Success rate calculation
    • Eligible for promotion to long-term memory
  • New MCP Tools
    • pluggedin_memory_session_start / pluggedin_memory_session_end
    • pluggedin_memory_observe / pluggedin_memory_search / pluggedin_memory_details
    • pluggedin_cbp_query / pluggedin_cbp_feedback

Security

  • 6 rounds of code review hardening
  • HMAC-SHA256 privacy for collective patterns
  • Advisory lock-based race condition prevention
  • Transaction safety for all memory operations

Version 3.0.x Series

[3.0.0] - 2026-02-01

Major Release

Added

  • PAP Agent Protocol & Lifecycle Management
    • Comprehensive framework for autonomous agent lifecycle
    • Dual-profile architecture: gRPC (PAP-CP) + JSON-RPC (PAP-Hooks)
    • Agent state machine with zombie prevention
    • DNS-based identity with Ed25519 signatures
  • Model Router (Unified LLM Gateway)
    • Multi-provider routing: OpenAI, Anthropic, Google, xAI, DeepSeek
    • OpenAI-compatible API with JWT authentication
    • Per-request cost tracking and model aliases
  • Embedded Vector Search (zvec)
    • In-process vector engine with HNSW indexing
    • Multi-format document support with automatic chunking
    • Semantic natural language queries
  • Agent Templates & Marketplace
    • Docker-based Kubernetes-native deployment
    • Template marketplace with ADL configuration
    • Integrated health checks and metrics collection
  • Memory Clipboard System
    • Persistent key-value storage with named and indexed access
    • Stack operations with TTL expiration
    • Source tracking (UI, SDK, MCP)
  • MCP Proxy Enhancements
    • Streamable HTTP transport for remote servers
    • OAuth 2.1 with automatic token refresh
    • Sandbox isolation with bubblewrap/firejail
    • 13 built-in static tools
  • Official SDKs
    • JavaScript/TypeScript SDK (v1.0.1)
    • Python SDK (v1.0.1) with sync/async clients
    • Go SDK (v1.0.1) with full type safety

Changed

  • Platform evolution from MCP management to AI Infrastructure Platform
  • 50+ database tables with 3000+ line Drizzle ORM schema
  • AES-256-GCM encryption for sensitive configuration fields

Version 2.12.x Series

[2.12.0] - 2024-12-21

Current Version

Added

  • Redis-Based Rate Limiting
    • Advanced DDoS protection with Redis
    • Intelligent in-memory fallback for Redis failures
    • Tiered rate limits for different endpoint types
    • IP-based tracking without user-agent to prevent bypasses
  • LRU Cache Implementation
    • Memory-efficient caching with automatic eviction
    • Configurable TTL via environment variables
    • Periodic cleanup of expired entries
    • Prevention of memory leaks with size limits
  • Enhanced Security Features
    • Bcrypt cost factor 14 (16,384 iterations)
    • Dynamic CSP nonces per request
    • Comprehensive security headers (HSTS, X-Frame-Options, etc.)
    • Timing attack prevention with fixed delays
  • Dual Storage Display
    • Library shows both file and RAG vector storage
    • Real-time storage metrics with cache invalidation
    • Vector embedding dimensions and chunk counts

Changed

  • Replaced dynamic imports with static imports for faster builds
  • Optimized database queries for storage calculations
  • Improved error handling with proper fallback mechanisms

Fixed

  • Storage validation bug (usage vs totalUsage)
  • Duplicate generateNonce function definitions
  • TypeScript errors in AI documents route
  • User_id format mismatch in RAG storage display

Security

  • Rate limiting prevents brute force attacks
  • Enhanced password hashing for rainbow table resistance
  • CSP nonces prevent XSS attacks
  • Security headers protect against web vulnerabilities

Version 2.11.x Series

[2.11.1] - 2025-01-18

Added

  • AI Search in Document Library
    • Semantic search with natural language queries
    • Document names displayed instead of cryptic IDs
    • Clickable source documents for instant navigation
    • 500ms smart debounce for optimal performance
    • Comprehensive answers synthesized from multiple documents
  • Document Versioning UI
    • Complete version history timeline
    • Visual diff tracking with additions/deletions
    • Model attribution badges for each version
    • Version comparison and rollback capabilities
    • Change summaries and metadata display
  • Performance Optimizations
    • 68% reduction in bundle size
    • 60% reduction in memory usage
    • Single useReducer pattern replacing 13 state variables
    • Dynamic import caching for heavy components
    • Comprehensive memoization with React hooks

Fixed

  • Document IDs showing instead of human-readable names
  • Memory leaks in document preview component
  • XSS vulnerabilities with proper DOMPurify implementation
  • Null safety issues in document ID handling

Changed

  • Enhanced RAG service to return document metadata
  • Improved useKnowledgeBaseSearch hook with documents array
  • Updated AiSearchAnswer component for better UX

Version 2.10.x Series

[2.10.3] - 2025-01-28

Security

  • Additional security patches
  • Updated dependencies
  • Enhanced input validation

[2.10.2] - 2025-01-27

Fixed

  • Critical security vulnerabilities
  • Performance bottlenecks

[2.10.1] - 2025-01-27

Fixed

  • Post-release bug fixes
  • UI consistency improvements

[2.10.0] - 2025-01-27

Major Release

Security Audit & Performance Overhaul

Key Highlights:
  • Comprehensive security audit addressing ALL GitHub security scanning findings
  • Complete encryption system overhaul
  • Enhanced Content Security Policy (CSP)
  • Performance optimizations across the entire platform

Added

  • Security Enhancements
    • New encryption migration system
    • Enhanced password reset flow with secure tokens
    • Comprehensive input sanitization
    • CSRF protection improvements
  • Performance Improvements
    • Optimized database indexes for 10x faster queries
    • Reduced JavaScript bundle size by 40%
    • Lazy loading for heavy components
    • Improved caching strategies
  • UI/UX Updates
    • Simplified Custom Instructions interface
    • Better error messaging
    • Enhanced loading states
    • Improved mobile responsiveness

Changed

  • Migrated from bcrypt to argon2 for password hashing
  • Standardized error handling across all API endpoints
  • Updated all dependencies to latest secure versions
  • Refactored authentication flow for better security

Fixed

  • All critical vulnerabilities identified by CodeQL
  • Memory leaks in real-time connections
  • Race conditions in concurrent operations
  • XSS vulnerabilities in user-generated content

Version 2.9.x Series

[2.9.1-security] - 2025-01-27

Security

  • Emergency security patch
  • Fixed authentication bypass vulnerability

[2.9.0] - 2025-01-27

UUID Tool Prefixing & Collision Resolution

Added

  • Automatic UUID Tool Prefixing
    • Prevents tool name collisions between MCP servers
    • Automatic UUID prefix generation
    • Backward compatibility maintained
  • Slug Generation System
    • Profile-scoped unique server identifiers
    • SEO-friendly URLs for shared servers
    • Automatic collision handling

Changed

  • Enhanced server validation logic
  • Improved error messages for duplicate servers
  • Optimized database queries for slug operations

Fixed

  • Tool name collision issues
  • CORS handling for external MCP servers
  • Authentication checks in server operations

Version 2.8.x Series

[2.8.0] - 2025-01-27

Feature Release

AI Document Exchange (RAG v2)

Revolutionary document management with AI integration:

Added

  • AI Document Creation
    • Direct document generation via AI models
    • Support for Markdown, JSON, HTML formats
    • Model attribution tracking (provider, name, version)
    • Automatic content deduplication
  • Document Versioning
    • Complete version history
    • Change diff tracking
    • Parent-child relationships
    • Rollback capabilities
  • Advanced Search
    • Semantic search using PostgreSQL full-text
    • Relevance scoring and ranking
    • Filter by AI model, date, tags
    • Automatic snippet generation
  • Document Preview System
    • Multi-format viewer (PDF, images, text, code)
    • Zoom controls (10%-500%)
    • Page navigation for PDFs
    • Fullscreen mode
    • Metadata sidebar
  • MCP Tools
    • pluggedin_create_document - AI document creation
    • pluggedin_search_documents - Semantic search
    • pluggedin_get_document - Document retrieval
    • pluggedin_update_document - Document updates

Security

  • 10MB content size limit
  • Rate limiting (10 requests/hour for AI creation)
  • Path traversal protection
  • Content sanitization for HTML/Markdown

Version 2.7.x Series

[2.7.0] - 2025-01-26

Feature Release

Smart Server Wizard & OAuth Integration

Added

  • Smart Server Wizard
    • Multi-step guided server creation
    • GitHub ownership verification
    • Environment variable detection
    • Registry submission integration
    • Real-time discovery testing
  • OAuth Support
    • Streamable HTTP OAuth for MCP servers
    • Session management with PostgreSQL
    • Automatic token cleanup
    • Support for GitHub, Google, and more
  • Trending Servers
    • Activity-based trending algorithm
    • Real-time metrics tracking
    • Installation count tracking
    • Enhanced discovery experience

Changed

  • Simplified registry integration
  • Improved error handling
  • Enhanced search functionality
  • Better transport configuration

Security

  • Comprehensive Zod validation
  • XSS vulnerability fixes
  • OAuth token security
  • Input sanitization improvements

Version 2.6.x Series

[2.6.2] - 2025-01-03

Fixed

  • “SSEClientTransport already started” errors
  • Connection timeout issues
  • Retry logic improvements

[2.6.1] - 2025-01-03

Added

  • SSE transport deprecation warnings
  • Auto-migration to Streamable HTTP
  • Migration UI for bulk conversion

[2.6.0] - 2025-01-03

Added

  • High-Performance Package Management
    • 10-100x faster npm installs with pnpm
    • Python package management with uv
    • Content-addressable storage caching
  • CLI-Style Discovery Toast
    • Terminal-style notifications
    • Real-time log streaming
    • Color-coded output

Earlier Versions

[2.5.0] - 2024-12-15

Added

  • Collections management system
  • Batch server operations
  • Enhanced sharing capabilities

[2.4.0] - 2024-12-01

Added

  • User profiles system
  • Following/followers functionality
  • Activity feed

[2.3.0] - 2024-11-15

Added

  • Internationalization (6 languages)
  • Email notification system
  • Rate limiting tiers

[2.2.0] - 2024-11-01

Added

  • RAG v1 implementation
  • Document upload system
  • Vector search capabilities

[2.1.0] - 2024-10-15

Added

  • Social platform features
  • Server sharing
  • Public profiles

[2.0.0] - 2024-10-01

Changed

  • Complete platform rewrite
  • Migration to Next.js 15
  • New UI with Shadcn/UI

[1.0.0] - 2024-09-01

Added

  • Initial MCP proxy implementation
  • Basic server management
  • Authentication system

Versioning Policy

Plugged.in follows Semantic Versioning:
  • Major versions (X.0.0): Breaking changes
  • Minor versions (0.X.0): New features, backward compatible
  • Patch versions (0.0.X): Bug fixes and security updates

Support Lifecycle

VersionStatusSupport Until
3.1.xCurrentActive development
3.0.xSupportedSeptember 2026
2.12.xMaintenanceJune 2026
2.10.x - 2.11.xMaintenanceMarch 2026
< 2.10.0End of Life-

Migration Guides

Reporting Issues

Found a bug or have a feature request?