2025.10.0

This release introduces mock servers for simulating API responses, enhancements to the scripting suite, including Chai-powered assertions with experimental Postman script import support (see RFC #5221), the ability to disable HTTP redirects for native interceptors, alongside bug fixes and improvements.

Read more at: https://hoppscotch.com/blog/hoppscotch-v2025-10-0

Note: This release comprises database migrations for the mock server feature. Ensure to run the latest migrations after upgrading.

What's Changed

• refactor: cleanup sync logic and imports by @Prit1912 in #5428
• fix: reset ONBOARDING_COMPLETED to false during infra config reset by @mirarifhasan in #5496
• fix: ensure graceful shutdown and container stop when stopApp is called by @mirarifhasan in #5494
• chore: security patch for the dependency chain v2025.10.0 by @mirarifhasan in #5487
• fix: avoid rapid polling while fetching teams in selector by @nivedin in #5485
• fix(common): preserve PKCE and client secret in postman collection imports by @anwarulislam in #5480
• feat: add auth refresh token flow if token expires by @nivedin in #5490
• fix(common): preserve file uploads in experimental scripting sandbox by @jamesgeorge007 in #5512
• feat(relay): control redirect follow by @CuriousCorrelation in #5508
• feat(scripting-revamp): chai powered assertions and postman compatibility layer by @jamesgeorge007 in #5417
• feat(ci): agent workflow with platform jobs by @CuriousCorrelation in #5514
• feat: add $randomCompanyName predefined variable by @EmanFateen in #5479
• feature: mock server by @mirarifhasan in #5482
• feat: add configurable session cookie name by @CHANDRAHARSHIT in #5425
• fix(js-sandbox): resolve environment variable fallback behavior by @chhaviG22 in #5439
• chore: mock server name validation and prevent duplicates by @mirarifhasan in #5524
• fix (common): address mock server issues and improve the UI by @anwarulislam in #5517
• feat(common): handle null collection and add private access hint for mock servers by @anwarulislam in #5527
• chore(agent): bump version to v0.1.15 by @CuriousCorrelation in #5531
• feat(common): mock server ui improvements by @anwarulislam in #5532
• fix(common): use fallback ref ID for mock server creation with legacy collections by @anwarulislam in #5536
• chore: v2025.10.0 release by @jamesgeorge007 in #5534

New Contributors

• @Prit1912 made their first contribution in #5428
• @EmanFateen made their first contribution in #5479
• @CHANDRAHARSHIT made their first contribution in #5425

Full Changelog: 2025.9.2...2025.10.0

2025.9.2

This is a patch release comprising various bug fixes across the board.

Note

The Desktop App update is not included in this release and will be addressed in an upcoming release.

What's Changed

• fix(js-sandbox): resolve errors with pw.env namespace in legacy sandbox by @jamesgeorge007 in #5433
• fix: prevent syncing secret variable initial values by @nivedin in #5434
• fix: focus existing request tab instead of duplicating by @nivedin in #5452

Full Changelog: 2025.9.1...2025.9.2

2025.9.1

This patch release fixes an issue where request runs were not properly resolving inherited authorization properties and headers from parent collections.

What's Changed

• fix: correctly resolve inherited properties before request runs by @nivedin in #5418

Full Changelog: 2025.9.0...2025.9.1

2025.9.0

This release introduces alphabetical sorting for collections, enhanced UI interactions, and expanded scripting capabilities through the new hopp namespace within the experimental scripting sandbox. It also includes numerous bug fixes and improvements across the platform.

Read more at: https://hoppscotch.com/blog/hoppscotch-v2025-9-0.

Note

It is not recommended to migrate or reformat your existing scripts to the new scripting APIs at this time. Upcoming updates are expected to introduce breaking changes as we continue to refine and improve the scripting experience.

The current rollout is intentionally gradual, allowing us to gather user feedback and iterate based on real-world usage.

All further updates to scripting will be scoped to the experimental scripting sandbox, which is the default, and the preference can be updated from Settings → Experiments.

Your feedback will be invaluable as we shape the next generation of Hoppscotch scripting.

What's Changed

• fix(common): correct indentation for nested endpoints in sidebar by @jarvis2754 in #5370
• fix: prevent empty entries when dragging items past last row by @aakashsbhatia2 in #5384
• fix(desktop): window lifecycle for instance switch by @CuriousCorrelation in #5381
• fix: handle actions for logged-in users in case of token expiration by @chhaviG22 in #5249
• feature: add alphabetical sort for user and team collections by @mirarifhasan in #5383
• fix(relay): multiple Set-Cookie headers in resp by @CuriousCorrelation in #5394
• fix: ensure npm is installed for Node.js base image by @Leon-Luu in #5397
• chore: security patch for the dependency chain by @mirarifhasan in #5400
• feat(scripting-revamp): introduce hopp namespace by @jamesgeorge007 in #5388
• fix(native): bump tauri-plugin-shell to v2.2.1 by @CuriousCorrelation in #5402
• refactor: streamline duplicated advanced param type definitions for oauth grant types by @anwarulislam in #5401
• fix: close modal on clicking overlay for non input modals by @anandude in #5403
• chore(agent): bump version to 0.1.14 by @CuriousCorrelation in #5405
• fix: race condition in active team collection tab inheritance by @mayank-jain-1010 in #5184
• chore: accept single character length name and trim white spaces by @nivedin in #5412
• fix: highlight environment on string containing dot by @souravagrawal29 in #5409

New Contributors

• @aakashsbhatia2 made their first contribution in #5384
• @anandude made their first contribution in #5403
• @souravagrawal29 made their first contribution in #5409

Full Changelog: 2025.8.1...2025.9.0

2025.8.1

This is a hotfix release addressing an issue where request deletions incorrectly affected order index computations across collections specific to Self Hosted instances, alongside other improvements. We recommend you update to this release immediately.

What's Changed

• fix: orderIndex update to scope by collection ID by @mirarifhasan in #5365
• feat: allow non-empty shared workspace names by @nivedin in #5363
• fix: add support for data-schema changes after version bump by @nivedin in #5368

Full Changelog: 2025.8.0...2025.8.1

2025.8.0

This release introduces collection variables, OpenTelemetry integration for connecting Hoppscotch to your own telemetry pipeline, enhancements to OpenAPI import and OAuth 2.0 flows, alongside various improvements and bug fixes.

Read more at: https://hoppscotch.com/blog/hoppscotch-v2025-8-0.

SH Deployment Notes:

This release includes a schema update that recalculates and enforces ordering constraints for collections and requests.
Specifically:

• orderIndex values are recalculated for UserCollection, UserRequest, TeamCollection, and TeamRequest to ensure consistent ordering within their respective parents.
• New deferrable unique constraints have been added to enforce the uniqueness of orderIndex within each parent scope (user/team + collection/parent).

These changes are backwards-compatible, but you must run the latest database migrations after upgrading. Skipping this step may result in duplicate order indices or pending migrations being reported.

What's Changed

• fix: correctly resolve client IP behind proxies by @L3o-pold in #5323
• fix: update masked secret environment value after replace action by @nivedin in #5335
• fix: preserve request name when importing cURL commands by @anwarulislam in #5337
• feat(common): add support for post/put body schemas in openapi import by @anwarulislam in #5322
• fix: show argument type on click in GQL documentation view by @notKvS in #5328
• chore: bump dependencies and account for breaking changes by @jamesgeorge007 in #5329
• chore(native): bump and align dependencies by @CuriousCorrelation in #5331
• chore: align tailwindcss to 3.4.16 by @CuriousCorrelation in #5343
• feat: collection variables by @nivedin in #5325
• feat: add structured JSON fold indicators in response viewer by @jarvis2754 in #5347
• chore: security patch for the dependency chain by @mirarifhasan in #5349
• fix: handle edge cases and bugs in collection variables by @nivedin in #5348
• feat(desktop): portable phase-2 app loader infra by @CuriousCorrelation in #5341
• fix(desktop): rebase with appload mirror and hash by @CuriousCorrelation in #5351
• fix: prevent GQL request failure caused by collection property computation by @nivedin in #5350
• test(common): add comprehensive unit tests for auth helpers by @anwarulislam in #5211
• chore: improve french translations by @BasilicApps in #5340
• fix: maintain incremental orderIndex for collections and requests across workspaces by @mirarifhasan in #5338
• chore: update ws dependency for subscriptions-transport-ws by @mirarifhasan in #5353

New Contributors

• @L3o-pold made their first contribution in #5323
• @notKvS made their first contribution in #5328
• @BasilicApps made their first contribution in #5340

Full Changelog: 2025.7.1...2025.8.0

2025.7.1

This is a patch release that includes various bug fixes across the platform.

What's Changed

• fix: onboarding flow smtp bug by @nivedin in #5297
• fix: resolve typo in i18n string by @xbonell-sage in #5300
• fix: SmartEnvInput environment context bug by @nivedin in #5305
• feat(desktop): explore random port for IPv6 compat by @CuriousCorrelation in #5311
• fix(relay): expand MIME type support by @CuriousCorrelation in #5306
• chore(i18n): update action block translations in tw.json by @ruyut in #5315
• fix: correctly resolve request variables during collection runs by @nivedin in #5313
• chore(agent): bump version to 0.1.12 by @CuriousCorrelation in #5318
• fix: (import-export) add spacing above exporter buttons by @CodeCat-maker in #5220

New Contributors

• @xbonell-sage made their first contribution in #5300
• @ruyut made their first contribution in #5315
• @CodeCat-maker made their first contribution in #5220

Full Changelog: 2025.7.0...2025.7.1

2025.7.0

This release introduces a new onboarding flow for SH instances, scripting editors powered by Monaco as part of the experimental scripting sandbox, and advanced configuration options for OAuth 2.0 requests alongside various enhancements and bug fixes across the platform.

Read more at: https://hoppscotch.com/blog/hoppscotch-v2025-7-0.

SH Deployment Notes:

• Database Schema Update: This release includes a schema update that converts all timestamp fields to timezone-aware UTC format (TIMESTAMPTZ(3)). While the change is backwards-compatible, you must run the latest database migrations after upgrading. Skipping this step may result in the system reporting pending migrations.

• Environment Variable Deprecations (UI-Based Configuration): Several environment variables are now deprecated in favour of configuration via the Admin Dashboard, introduced through an updated onboarding flow. Existing setups will continue to function, but any values supplied for the deprecated environment variables will no longer take effect. Instead, configuration should now be completed and maintained through the UI.

For more context, please refer to the official documentation:

• Community Edition
• Enterprise Edition

What's Changed

• feat(desktop): cross-platform quit action by @CuriousCorrelation in #5266
• fix: preserve encoded characters in cURL URLs by @xTudoS in #4792
• feat(desktop): portable phase-1 foundational: infra & build by @CuriousCorrelation in #5259
• feat(kernel): extensible content media types by @CuriousCorrelation in #5244
• feat(common): add status code and additional metadata to GraphQL responses by @barrettluke in #4435
• feat(common): authorization ui panel revamp by @anwarulislam in #5258
• chore: add proper error msg and disable email updation in SH by @nivedin in #5247
• feat: move scripting code editors to use Monaco by @jamesgeorge007 in #5191
• fix(common): added theme support for tooltips by @anwarulislam in #5242
• fix: allow aws signature to work with query params by @rafalaidlaw in #5231
• docs: removed repeated bold formatting from headers by @meeraiswar in #5277
• feat: preserve response viewer scroll position per tab by @kowsi2715 in #5193
• chore: security patches for the dependency chain by @mirarifhasan in #5278
• chore(backend): prevent clear text transmission of sensitive cookie by @mirarifhasan in #5274
• feature: reduce .env usage and move configurations to admin dashboard by @mirarifhasan in #5194
• chore: add i18n for onboarding flow and cleanup by @nivedin in #5285
• docs(agent): add README by @CuriousCorrelation in #5286
• chore: migrate to @db.Timestamptz(3) and remove luxon dependency by @mirarifhasan in #5283
• feat(common): add advanced configuration for auth and token request parameters by @anwarulislam in #5253
• chore: security patches for the dependency chain (second iteration) by @mirarifhasan in #5288
• chore: change session config by @mirarifhasan in #5289
• test(common): coverage for desktop tab navigation by @CuriousCorrelation in #5291
• fix: SH admin dashboard setting and onboarding page cleanups by @nivedin in #5290
• chore: hide advanced configuration for non-authCode grant types by @anwarulislam in #5293

New Contributors

• @barrettluke made their first contribution in #4435
• @rafalaidlaw made their first contribution in #5231
• @meeraiswar made their first contribution in #5277
• @kowsi2715 made their first contribution in #5193

Full Changelog: 2025.6.1...2025.7.0

2025.6.1

This is a patch release featuring various improvements and bug fixes across the board.

What's Changed

• fix: tooltip alignment update by @nivedin in #5217
• feat(desktop): tab shortcuts discoverability by @CuriousCorrelation in #5229
• fix(agent): vue-tsc and typescript compat (CI) by @CuriousCorrelation in #5227
• fix: unicode error in postman import by @nivedin in #5213
• feat(common): retry import openapi from url with proxy interceptor on network error by @anwarulislam in #5225
• fix: avoid shortcut conflicts in CodeMirror editors by @SharadSaha in #5224
• fix: fallback env to initial and make valid url in codegen by @nivedin in #5214
• chore(common): fixes lint errors and clean up code by @anwarulislam in #5237
• fix(desktop): disk space detection on overlay fs by @CuriousCorrelation in #5226
• feat(common): enhance URL parsing to use environment variables on openapi import by @anwarulislam in #5232

New Contributors

• @SharadSaha made their first contribution in #5224

Full Changelog: 2025.6.0...2025.6.1

2025.6.0

This release introduces some quality of life improvements to the desktop experience with native tab keyboard shortcuts and enhanced navigation handling, alongside the ability to copy between initial and current environment values. We've also included security patches, German i18n additions, and various bug fixes across the platform.

Read more at: https://hoppscotch.com/blog/hoppscotch-v2025-6-0.

What's Changed

• chore: German i18n string entry additions by @pavog in #5142
• fix(desktop): prevent navigation on file drops by @CuriousCorrelation in #5176
• feat(desktop): native tab keyboard shortcuts by @CuriousCorrelation in #5190
• fix: output raw numbers in JSON filter by @g3Bg2 in #5152
• chore: resolve global env in team env and tooltip UI update by @nivedin in #5187
• fix(common): auto unescape utf-8 issue in the request body by @anwarulislam in #5185
• refactor(backend): enhance auth strategies with type safety and better error handling by @Krishprajapati15 in #5066
• feat: ability to copy initial and current env value to eachother by @nivedin in #5195
• chore: security patches for the dependency chain by @AndrewBastin in #5196
• feat(common): authentication strategy improvements by @anwarulislam in #5130
• chore(desktop): update typescript bump hash by @CuriousCorrelation in #5199
• fix(desktop): redirect menu bar events to window by @CuriousCorrelation in #5200

New Contributors

• @Krishprajapati15 made their first contribution in #5066

Full Changelog: 2025.5.4...2025.6.0