🚀 New
- When importing an OpenAPI file, you can now choose to create a collection, an API specification, or both together in a single step. (#2973)
🐛 Fixes
- On Windows, the sign-in dialog now stays open and offers a “Copy the URL” option when your default browser fails to launch, so you can complete the login without getting stuck. (#2894)
- Pasting a cURL command whose URL contains unencoded spaces now imports correctly instead of being rejected. (#3027)
- Importing a Postman collection now correctly preserves query parameters defined in request examples. (#2899)
- Signing up with an email and password now requires at least 8 characters, preventing accounts with weak credentials from being created. (#3016)
- Adding a new route in the Mock Server now automatically selects it so you can start editing immediately, and the rule row controls are visually aligned. (#2893)
🚀 New
- If your organization is subject to data-residency restrictions, you now see a clear compliance notice on sign-in with a sign-out option, instead of hitting an unexpected error. (#2963)
🐛 Fixes
- Importing a Postman data-export ZIP no longer shows a false error for the archive metadata file bundled by Postman, and imports that finish with warnings now display a ‘What needs attention’ summary instead of a generic success message. (#2931)
- Fixed a server-side issue that caused login failures and widespread errors when multiple users signed in at the same time. (#2991)
🚀 New
- You can now click ‘View changelog’ in the desktop update notification to read what changed before restarting to install the update. (#2904)
🐛 Fixes
- Fixed security issues in the desktop vault where a crash during startup could erase your stored secrets, vault folders were readable by other users on shared machines, and crafted symbolic links could affect files outside the vault. (#2891)
- When adding a team member or resending an invitation fails, you now see the specific reason from the server instead of a generic error message. (#2956)
- Fixed a bug in the desktop terminal where commands installed via login-profile tools (such as Homebrew, nvm, or Volta) were not found, and fixed a separate issue where the cursor would jump unexpectedly when resizing the terminal panel. (#2958)
- Fixed an error that prevented ‘Update Collections’ from applying content changes when syncing a collection from an API specification. (#2949)
🚀 New
- You can now open an embedded terminal in the Dev Tools panel of the desktop app, with support for multiple concurrent sessions in tabs. (#2863)
- Each operation in the published API docs reader now has its own shareable URL, so you can link teammates directly to a specific endpoint. (#2922)
✨ Improvements
- Press Mod+K while viewing published API docs to jump straight to the outline search field. (#2940)
- Published API docs now render oneOf and anyOf schema compositions with clearly labeled sections, making complex request and response shapes easier to read. (#2934)
- Schema property descriptions in published API docs now render markdown formatting, so code snippets, bold text, and links display as intended instead of as raw markup. (#2928)
- Published API docs now correctly display response headers and link sections, and resolve schemas that are defined at the top level of your spec. (#2927)
🐛 Fixes
- Proxy settings now show a clear validation error for out-of-range port numbers, automatically remove any http:// or https:// prefix you type in the host field, and require both username and password when authentication is turned on. (#2846)
- Fixed an issue where triggering a scheduled run returned a permissions error immediately after signing in. (#2918)
✨ Improvements
- Collection imports now show a real progress bar with live status instead of a bare spinner. (#2787)
- Invalid project names are now flagged with a clear message before you create or rename a project, instead of failing afterward. (#2892)
- Legacy Postman scripts that use deprecated variables now keep working in the default safe sandbox, with a deprecation warning instead of a silent error. (#2912)
- In published API docs, the outline now highlights and follows the section you are reading as you scroll. (#2917)
🐛 Fixes
- Markdown editing is now readable in light mode, with syntax markers that match your theme. (#2859)
🚀 New
- Scripts gain a full request-execution namespace with setNextRequest, skipRequest, runRequest, and location. (#2849)
- Scripts can now clear request headers for Postman parity. (#2832)
- Scripts can now clear environment, global, and collection variables for Postman parity. (#2854)
- Bulk-delete mock routes by path prefix. (#2811)
✨ Improvements
🚀 New
- Request capture now follows redirect hops and handles Digest/NTLM challenges and GraphQL introspection. (#2746)
- Create multiple mock routes at once, including their nested responses and rules. (#2759)
- Stash your Git changes from a new stash view, with indicators shown across the app. (#2774)
✨ Improvements
- Scripts can now modify request headers in both scripting engines. (#2783)
- The Git sidebar panel is tidier with collapsible sections, a change-count badge, and clearer error messages. (#2775)
🐛 Fixes
- Importing a partial Requestly export now re-parents orphaned items so nothing goes missing. (#2782)
🚀 New
- Cloning a repository now discovers and sets up any Requestly project it contains automatically. (#2768)
- Resolve merge conflicts with a new two-way conflict resolution view. (#2769)
✨ Improvements
- Scripts now run on a faster, more reliable safe-mode engine, including full support on Windows. (#2731)
🐛 Fixes
🚀 New
- DevTools now captures OAuth token fetches that the app makes on your behalf. (#2697)
- A new Git Providers settings page lets you connect accounts, and you can enter or update a personal access token mid-operation when authentication is needed. (#2735)
- Create, switch, and pick Git branches directly from a branch picker. (#2736)
- Browse and select GitHub repositories from a built-in repo picker. (#2737)
✨ Improvements
- Search your projects and see them sorted alphabetically. (#2739)
🚀 New
- Added App Settings rows to configure eight default behaviors for HTTP and GraphQL requests. (#2390)
- Added rq.sendRequest in scripts for parity with Postman’s pm.sendRequest. (#2582)
- Added several quality-of-life improvements to the WebSocket and Socket.IO editors. (#2531)
✨ Improvements
- Importers now show clearer, more accurate reasons when an import fails. (#2227)
🐛 Fixes
✨ Improvements
- You now get a success toast when switching environments. (#2425)
- The active history entry is now highlighted and its font matches collections. (#2421)
- Template variables are now highlighted in HTTP and GraphQL examples. (#2435)
- MQTT expanded timeline messages now show the retain flag. (#2433)
🐛 Fixes
🚀 New
- HTTP and GraphQL requests now have a per-request Settings tab with values that can inherit from parent levels. (#2379)
- Manage reusable message-body templates in a dedicated Message Templates library. (#2363)
🐛 Fixes
- Fixed sending GET requests with a body over HTTP/2. (#2388)
- Switching authorization type now correctly drops stale fields from the previous type. (#2377)
- The Vault now surfaces the real reason when an operation fails. (#2380)
- The WSDL import button now enables only when the URL matches a valid pattern as you type. (#2355)
🚀 New
- Save and reuse WebSocket and Socket.IO examples. (#2285)
- gRPC proto file content now persists across sessions and syncs to the cloud. (#2314)
🐛 Fixes
- Fixed gRPC stream panel preview, trailer overflow, and reflection method reset issues. (#2209)
- Saving an HTTP, GraphQL, or gRPC request as new now keeps it in the right collection. (#2325)
- GraphQL Send is now blocked when the query body is empty. (#2337)
- URL-bar encoding is preserved when you toggle a query parameter on or off. (#2333)
🚀 New
- Reuse saved message templates, beautify XML, and get clearer connection-state feedback in realtime clients. (#2277)
✨ Improvements
- Added a Skip link to onboarding. (#2311)
🐛 Fixes
- Discarding or saving variable edits no longer leaves phantom rows behind. (#2292)
- The authorization info banner now shows the correct text when an API key is placed in query params. (#2293)
- URL fragments are now stripped from query-parameter parsing so they no longer pollute your params. (#2299)
- Validation errors are now shown verbatim when saving, so you know exactly what went wrong. (#2305)
🚀 New
- Build and send Socket.IO requests with a dedicated editor. (#2202)
- Import environment variables directly from a .env file. (#2254)
- Save and reuse MQTT examples on both cloud and local projects. (#2261)
- Import and export WebSocket and Socket.IO requests in Requestly’s native format. (#2278)
🐛 Fixes
🚀 New
- Added the MQTT request editor with message, topics, authorization, properties, and last will tabs. (#2047)
- Added a keyboard shortcuts modal you can open from the Help menu or with Cmd+/. (#2131)
✨ Improvements
- gRPC service discovery now supports importing a proto file. (#2156)
- gRPC requests now support pre and post scripts and per-protocol editor autocompletion. (#2125)
🐛 Fixes
🚀 New
- Send and inspect gRPC requests with the new gRPC support. (#1917)
✨ Improvements
- Environments are now sorted alphabetically in the selector. (#1949)
- Clearer drag-and-drop indicators when reordering collections. (#1962)
- Bottom panel dock preferences now persist across sessions. (#1963)
🐛 Fixes
- The app now reloads automatically instead of erroring after a new version is deployed. (#1811)
🚀 New
- The Requestly CLI now supports running cloud collections. (#1591)
- Added five new authentication types for securing your requests. (#1784)
- Authenticate requests using JWT Bearer tokens with configurable payload directives. (#1834)
✨ Improvements
- Collection trees now remember expansion state per project and added a collapse-all button. (#1795)
🐛 Fixes
🚀 New
- Run your collections from the command line with the new Requestly CLI. (#1541)
- Authenticate requests with OAuth 2.0, including a token service and orchestration. (#1596)
- Use non-interactive OAuth 2.0 grants with automatic token refresh. (#1648)
- Sign requests with OAuth 1.0 directly from the Authorization tab. (#1572)
✨ Improvements
- Added contextual help hints across the API client. (#1659)
🐛 Fixes
- Older imported records without an explicit type now correctly default to HTTP requests. (#1674)
🚀 New
- An app-wide cookie jar lets you manage cookies with a Postman-style experience. (#1622)
- Import much larger files, with the limit raised from 30 MB to 100 MB. (#1550)
- Import API definitions from SoapUI projects. (#1531)
- Import an exported Requestly project archive directly. (#1602)
✨ Improvements
🚀 New
- Use npm packages directly in your scripts, with search and one-click install. (#1467)
✨ Improvements
- Postman imports now translate npm and jsr package requires in scripts. (#1520)
- The package library now always shows its split layout for a steadier view. (#1502)
🐛 Fixes
- The package library Save button now matches the size of other editors. (#1509)
🚀 New
- Run bulk operations on examples and import them from supported formats. (#1296)
- Create examples instantly from the sidebar and save them from a new dropdown. (#1348)
✨ Improvements
- Persisted example tabs now show a “Try it” button in place of Send. (#1358)
- Redesigned confirmation dialogs for clearer, more readable prompts. (#1316)

