🚀 Release 2.19.0

[n8n-assistant]

2.19.0 (2026-04-28)

Bug Fixes

• Add credential auth and test for Twilio, Pipedrive, Asana, Freshdesk, Workable (#28265) (a2aa69d)
• Additional keys in routing nodes (#28758) (8e49800)
• ai-builder: Adjust chat trigger memory builderHints (#29156) (b6fcabc)
• ai-builder: Hide and reap intermediate AI-created workflows (#29066) (632ae67)
• ai-builder: Improve button, icon, callout and workflowSelector schemas (#28828) (afe4298)
• ai-builder: Keep workflow identity across rebuild/patch (#28926) (13029e6)
• ai-builder: Prevent duplicate workflow creation on parallel submits in instance AI (#28793) (782b2d1)
• ai-builder: Stop treating empty defaults as satisfying required for the Split node (#28978) (8b33424)
• ai-builder: Support 'disabledOptions' in node schemas (#28894) (bc5e490)
• ai-builder: Validate merge node connections matches 'numberInputs' parameter (#28831) (0e838de)
• ai-builder: Validate required inputs on AI nodes (#29159) (97bdbd0)
• Allow task runner to invoke skills via slash command prefix (#29302) (65e55a8)
• Brevo Node: Send valid email attachments with correct filenames (#28816) (7d6f777)
• core: Fixes user search functionality in ProjectSettings for pr… (#28914) (1eea626)
• core: Add missing break statements in filter condition evaluation (#27708) (1e77f71)
• core: Allow .trim() in workflow-sdk parsing and coerce stringified patches (#29111) (b44e9d1)
• core: Allow SAML connection test without saving config first (#28702) (828d0ee)
• core: Broadcast MCP availability change via push connection (#29019) (e183ae4)
• core: Can't install community nodes on Windows (#28481) (7e3a2f6)
• core: Clean up project mapping rules on provisioning strategy switch (#28726) (c662862)
• core: Declare credentialType on MCP workflow-builder autoAssignedCredentials schema (#28353) (41424b3)
• core: Fix fixedCollection validation issues and empty setup cards on instance AI (#28794) (8630845)
• core: Fix health endpoint cross-origin requests (#28878) (b6eabb4)
• core: Fix publishing dynamic credential chathub flow (#28827) (852d082)
• core: Generate title once there's enough user context (#28721) (2d624a5)
• core: Guard event log parsing against unbounded memory growth (#28594) (a817cbc)
• core: Harden event log parse against malformed input (#29004) (b2b1370)
• core: Hide pre-resolved setup requests from Instance AI wizard (#28731) (9ea2ef1)
• core: Improve error messages for invalid node and trigger input (#28053) (0f4c5b3)
• core: Link existing email users on LDAP sync instead of failing (#28695) (767b3ab)
• core: Pass userId through webhook test execution path for redaction (#28775) (19b2388)
• core: Persist execution metadata for failed executions in scaling mode (#28774) (1256da9)
• core: Pin Alpine version in Docker builder stages for reproducible builds (#29097) (147bd8c)
• core: Pin sandbox workflow-sdk to host version (#29048) (9ea8533)
• core: Preserve manual scopes for inherited generic OAuth2 credentials (#27858) (5ee534c)
• core: Preserve user-selected credentials when AI recreates a node (#28943) (5fa1f8f)
• core: Prevent Redis connection recovery from being missed (#28256) (494a855)
• core: Prevent S3 socket pool exhaustion on partial stream reads (#28313) (481fbdf)
• core: Request helper function support setting agentOptions (#28756) (4ce186a)
• core: Scope live and test webhook handlers to their route family (#28804) (bb25d4c)
• core: Shift existing rules on create to avoid order conflict (#28722) (c55b95f)
• core: Support mixed bracket/dot notation in external secrets expressions (#28711) (a757ddd)
• core: Surface credential and resource choice when more than one match exists (#29087) (0d16dd5)
• core: Surface pagination state in instance AI credentials list (#29098) (9345d13)
• core: Upgrade task-runner-launcher to v1.4.5 (#29155) (b37044e)
• core: Use upsert for MCP OAuth consent to allow re-authorization (#28703) (26ecadc)
• core: Workflow import cli doesn't deregister crons for deactivated workflows (#29129) (553976d)
• Correct typo in proxy error message: not value -> not valid (#28318) (b143830)
• Correctly rename all temporal binary files after execution (#28960) (71b2b88)
• Disable "Get 100 free OpenAI API credits"  if aiGateway enabled in the license (#29050) (67bd8de)
• Disable until we encrypt (#28875) (1b02a0d)
• Discord Node: Correctly handle API rate limits (#29051) (089d6bd)
• Discord Node: Fix file name and mimetype for file upload (#28807) (d3ef7e3)
• E2E test for token exchange (#28895) (d49049d)
• EditImage Node: Fix orientation when modifying images (#28970) (b649eea)
• editor: Align Model and Sandbox visibility with edit permissions (#29076) (e10509f)
• editor: Allow name parameters to be defined by AI (#28763) (76358a6)
• editor: Allow users to logout of dynamic creds in chathub (#29117) (b1ddbf2)
• editor: Checklist not showing workflow settings configuration (#28034) (3c54cda)
• editor: Constrain InstanceAiView stacking context below sidebar (#29324) (b71a31d)
• editor: Copy to editor not using pinned data from the execution (#28905) (20d9215)
• editor: Disable WF version menu only when all actions are unavailable (#29266) (23170e4)
• editor: Fix column collapse button not visible in table view (#28899) (0eb30c6)
• editor: HTTP request node showing warning about credentials not set when they are set (#28270) (4869e0a)
• editor: Move tooltip for required RMC fields to the right (#28803) (713c498)
• editor: Populate chat history in executions view (#29229) (cf5cdbf)
• editor: Prevent executions table flicker on empty auto-refresh (#28805) (2bd8b47)
• editor: Refresh wallet balance when usage refresh is clicked (#29067) (7fd0b37)
• editor: Restore missing node icons for HTTP-auth credentials (#28814) (345ce7f)
• editor: Save button never shows saved state after saving credentials (#28486) (4352749)
• editor: Show error toasts in Instance AI executable canvas (#29328) (dc33223)
• editor: Show Manage community-node link to admins, not just owners (#29060) (ef944b4)
• editor: Show saved credentials when node has mismatched credentials object (#28693) (d8f742b)
• editor: Surface configured minimum password length in UI (#28194) (330211c)
• Embeddings Google Gemini Node: Update wrong default embeddings model (#26977) (a1d733b)
• Fix 11 security issues in @xmldom/xmldom, defu, @langchain/community and 5 more (#29126) (35449aa)
• Fix 15 critical issues in protobufjs, defu, @langchain/community and 6 more (#28661) (6650068)
• Fixes AI Assistant opt-in modal terms link (#28779) (10f619f)
• GitHub Node: Return pagination token as string in resource locators (#29099) (5dda3b2)
• Gmail Trigger Node: Add maxResults limit to prevent OOM on large inboxes (#28470) (b9c4618)
• Gmail Trigger Node: Exclude scheduled emails from trigger query (#29244) (58d7983)
• Google Gemini Node: Filter out undefined parts when processing API responses (#28567) (0aabee0)
• Google Gemini Node: Show Number of Images option only for models that supports it (#29153) (b0ec5cd)
• Jenkins Node: Properly load job parameters (#28631) (f2aa016)
• MCP Server Trigger Node: Only return error name and message in tool error responses (#28791) (6db02fe)
• Microsoft Outlook Trigger Node: Show nested subfolders in folder dropdowns (#28759) (3409a67)
• MongoDB Chat Memory Node: Add connection pool limit (#28042) (a88ee76)
• Moonshot Kimi Node: Update default model to kimi-k2.6 (#28859) (1c52b0a)
• MySql Node: Fix table name filtering (#28911) (ccbd914)
• Preserve structuredContent in MCP nodes to prevent AI Agent reasoning loops (#27297) (048e01e)
• RabbitMQ Trigger Node: Redeliver messages on failed executions (#28712) (7be9f65)
• Schedule Node: Avoid using 0 day of month (#28432) (a9e5f0e)
• Update hono, protobufjs, yaml, and other dependencies (#28877) (c4ff018)
• Use different runtime for each agent call, refactor state management (#27915) (68c289f)
• WooCommerce Trigger Node: Guard HMAC verification against missing secret (#28964) (5cef662)
• Xero Node: Update OAuth Scopes to meet new Xero API requirements (#27563) (7f54ff4)

Features

• Add warning when publishing workflow, if some nodes in it are using ai gateway credentials (#29089) (d2d7dfc)
• Alibaba Cloud Node: Switch to dynamic model list fetched from API (#28839) (3a165d4)
• API: Add encryption key management endpoints (#28897) (5af4e1c)
• AwsS3 Node: Add option to return common prefixes in bucket search (#28571) (13dbcf9)
• core: Accept token-exchanged scoped JWTs on the instance MCP server (#28909) (1d325a2)
• core: Add --projectId filter to export:workflow and export:credentials commands (#29329) (2d721d2)
• core: Add AES-256-GCM cipher support (#28916) (0c02111)
• core: Add audit logs for webhook waiting and resuming (#28204) (bb6a5e4)
• core: Add delete folder endpoint to public API (#28984) (f931b17)
• core: Add encryptWithKey and decryptWithKey to Cipher service (#28608) (c40599b)
• core: Add instance setting to disable public chat in Chat Trigger (#27565) (af3841f)
• core: Add observability for the VM expression engine (#28715) (f3efcf8)
• core: Add opt-in RFC-style outbound User-Agent via env flag (#28771) (67af2e1)
• core: Add PATCH endpoint for data table column management (#29090) (b437371)
• core: Add public API endpoints for data table column management… (#29073) (2b0add1)
• core: Add public API endpoints for folder management (#28760) (ff9d7d6)
• core: Add public API endpoints for folder management (folderId) (#28790) (fda3d5c)
• core: Bootstrap encryption key set from environment (#28716) (c012b52)
• core: Broadcast workflow updates from MCP tools to open editors (#28709) (b1ca129)
• core: Centralise user listing permissions for internal and publ… (#28989) (9e694f5)
• core: Drop BetaTag from sidebar, use 'Preview' instead for new features (#29347) (a7d7352)
• core: Guard Instance AI prompts against asking for plaintext secrets (#28876) (d58e67e)
• core: Make SSO connection settings configurable via env vars (#28714) (3bd7a28)
• core: OTEL changes to support context propagation (#28720) (9599fb9)
• core: Remove expression role mapping feature flag (#29361) (a70a314)
• core: Scale expression isolate pool to 0 after inactivity (#28472) (10dbf32)
• core: Stamp x-n8n-feature on proxied LLM calls for cost attribution (#28987) (e129518)
• core: Wire Cipher to encryption key proxy for key rotation support (#29013) (641d492)
• editor: Add Delete permanently link to workflow archive toast (#29157) (98ec56a)
• editor: Move computer use toggle to chat sidebar (#28974) (47bb91e)
• editor: Track favorite toggle events (#28810) (86a6d1b)
• editor: Warn when data table cell value exceeds safe integer range (#28904) (e62e44f)
• Enable log streamin settings via env vars (#29005) (ff6d65e)
• Google Drive Node: Add Markdown export option for Google Docs download (#27006) (80cb82e)
• Google Gemini Node: Gemini default models update (#28853) (46739a5)
• In the n8n Connect table on row click open execution related to that usage row (#29075) (f658278)
• MiniMax Node: Add standalone MiniMax vendor node (#28748) (0295369)
• OpenAI Node: Use dynamic model selection for image edit and update analyze model filter (#29223) (5f2c32a)
• Postgres Node: Sort PostgreSQL schemas and tables alphabetically when fetching (#28036) (11ebf61)
• Salesforce Node: Add middle name, suffix, and identity fields to contacts (#23905) (c7a0f3e)
• Slack Node: Add emoji reaction filter to Slack Trigger (#28628) (90843cf)

[cubic-dev-ai]

1 issue found across 49 files

Prompt for AI agents (unresolved issues)

Check if these issues are valid — if so, understand the root cause of each and fix them. If appropriate, use sub-agents to investigate and fix each issue separately.


<file name="CHANGELOG.md">

<violation number="1" location="CHANGELOG.md:138">
P3: Fix typo in changelog entry: `streamin` should be `streaming`.</violation>
</file>

Architecture diagram

sequenceDiagram
    participant UI as Editor UI
    participant API as n8n API (Core)
    participant AI as AI Builder / Assistant
    participant Cipher as Cipher Service
    participant Exec as Execution Engine
    participant TR as Task Runner
    participant DB as Database / Redis / S3

    Note over UI, DB: AI Workflow Construction & Execution
    UI->>AI: Request workflow rebuild/patch
    AI->>API: CHANGED: Update workflow (preserve identity)
    API->>DB: NEW: Reap intermediate AI workflows
    API->>UI: Return patched workflow

    Note over UI, DB: Secure Credential & Data Flow
    Exec->>Cipher: Request decrypted credentials
    Cipher->>Cipher: NEW: AES-256-GCM Decryption
    opt Key Rotation / Management
        API->>Cipher: NEW: encryptWithKey / decryptWithKey
    end
    Cipher-->>Exec: Plaintext secrets

    Note over UI, DB: Task & Tool Execution
    UI->>API: Execute workflow / node
    API->>Exec: Trigger execution
    alt Isolation Mode
        Exec->>TR: NEW: Invoke skill via slash command
        TR-->>Exec: Return isolated result
    else Scaling Mode
        Exec->>DB: CHANGED: Persist metadata for failed runs
    end

    Note over UI, DB: System Events & Observability
    API->>UI: NEW: Broadcast MCP availability via Push
    API->>DB: NEW: Audit log (Webhook wait/resume)
    Exec->>DB: CHANGED: Guard S3 socket pool (stream reads)
    API->>DB: CHANGED: Recover Redis connection

Loading

_{Reply with feedback, questions, or to request a fix. Tag @cubic-dev-ai to re-run a review, or fix all with cubic.}

[cubic-dev-ai]

P3: Fix typo in changelog entry: streamin should be streaming.

Prompt for AI agents

Check if this issue is valid — if so, understand the root cause and fix it. At CHANGELOG.md, line 138:

<comment>Fix typo in changelog entry: `streamin` should be `streaming`.</comment>

<file context>
@@ -1,3 +1,151 @@
+* **editor:** Move computer use toggle to chat sidebar ([#28974](https://github.com/n8n-io/n8n/issues/28974)) ([47bb91e](https://github.com/n8n-io/n8n/commit/47bb91e9b4ade6638e8d54fb79cae54b90b0a1a2))
+* **editor:** Track favorite toggle events ([#28810](https://github.com/n8n-io/n8n/issues/28810)) ([86a6d1b](https://github.com/n8n-io/n8n/commit/86a6d1b1fafc8deb8a7611b4bc0fd2d807ed090b))
+* **editor:** Warn when data table cell value exceeds safe integer range ([#28904](https://github.com/n8n-io/n8n/issues/28904)) ([e62e44f](https://github.com/n8n-io/n8n/commit/e62e44f3f8c42547a1c8726ed8d9a50ca5a069d6))
+* Enable log streamin settings via env vars ([#29005](https://github.com/n8n-io/n8n/issues/29005)) ([ff6d65e](https://github.com/n8n-io/n8n/commit/ff6d65e22aa758ee78f4f27ac0c781e3754bd917))
+* **Google Drive Node:** Add Markdown export option for Google Docs download ([#27006](https://github.com/n8n-io/n8n/issues/27006)) ([80cb82e](https://github.com/n8n-io/n8n/commit/80cb82e9c52e6170b75dc0841ee9b143058bdd5e))
+* **Google Gemini Node:** Gemini default models update ([#28853](https://github.com/n8n-io/n8n/issues/28853)) ([46739a5](https://github.com/n8n-io/n8n/commit/46739a5bc464af81ebf5145d2ae37fd3bfbb5fa8))
</file context>

Suggested change

	* Enable log streamin settings via env vars ([#29005](https://github.com/n8n-io/n8n/issues/29005)) ([ff6d65e](https://github.com/n8n-io/n8n/commit/ff6d65e22aa758ee78f4f27ac0c781e3754bd917))
	* Enable log streaming settings via env vars ([#29005](https://github.com/n8n-io/n8n/issues/29005)) ([ff6d65e](https://github.com/n8n-io/n8n/commit/ff6d65e22aa758ee78f4f27ac0c781e3754bd917))

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.

📢 Thoughts on this report? Let us know!

[github-actions]

Performance Comparison

Comparing current → latest master → 14-day baseline

Memory consumption baseline with starter plan resources

Metric	Current	Latest Master	Baseline (avg)	vs Master	vs Baseline	Status
memory-rss-baseline	293.85 MB	293.85 MB	291.38 MB (σ 29.40)	+0.0%	+0.8%	✅
memory-heap-used-baseline	118.98 MB	118.98 MB	115.72 MB (σ 2.02)	+0.0%	+2.8%	⚠️

docker-stats

Metric	Current	Latest Master	Baseline (avg)	vs Master	vs Baseline	Status
docker-image-size-runners	388.00 MB	388.00 MB	391.15 MB (σ 9.26)	+0.0%	-0.8%	✅
docker-image-size-n8n	1280.00 MB	1300.48 MB	1303.55 MB (σ 51.48)	-1.6%	-1.8%	✅

Idle baseline with Instance AI module loaded

Metric	Current	Latest Master	Baseline (avg)	vs Master	vs Baseline	Status
instance-ai-rss-baseline	354.18 MB	354.18 MB	364.79 MB (σ 21.08)	+0.0%	-2.9%	✅
instance-ai-heap-used-baseline	191.65 MB	191.65 MB	187.79 MB (σ 2.07)	+0.0%	+2.1%	⚠️

How to read this table

• Current: This PR's value (or latest master if PR perf tests haven't run)
• Latest Master: Most recent nightly master measurement
• Baseline: Rolling 14-day average from master
• vs Master: PR impact (current vs latest master)
• vs Baseline: Drift from baseline (current vs rolling avg)
• Status: ✅ within 1σ | ⚠️ 1-2σ | 🔴 >2σ regression

[codecov]

Bundle Report

Bundle size has no change ✅