Skip to Content
Release Notes11.6.0 ~ 11.6.5

11.6.0 ~ 11.6.5

QueryPie 11.6.5 Release

July 2, 2026

New Feature

  • [Common] Added display of licensed user count and users who accessed in the last 30 days within the license scope
  • [DAC] Added support for Databricks Connection, Web Editor, Agent/Agentless Proxy, policies, and audit logs
  • [DAC] Added Result Reuse option for Athena Connections
  • [DAC] Added ability to block SQL execution without WHERE clauses in SQL Editor and RDB targets
  • [DAC] Added support for collecting Label information during GCP Cloud SQL synchronization and using it as Cloud Provider filter tags
  • [DAC] Added license usage restriction by DB vendor
  • [DAC] Promoted Custom JDBC Vendor and Query Rule from beta to official features
  • [KAC] Added GCP Cloud Provider Tag-based synchronization
  • [KAC] Added YAML editing, local validation, and change Diff Review features in Web Client
  • [AI Chat] Integrated Skills management into the AI Chat workspace
  • [MAC] Added support for connecting OAuth MCP Servers that do not support DCR by using Client ID/Secret

Improvement

  • [Common] Added attachments with expiring target details to SAC/DAC permission expiration notification emails
  • [Common] Added force option support to User Profile lookup and update External APIs
  • [Common] Improved API Token Allowed Zone changes to be refreshed immediately
  • [Common] Improved Vault AppRole Namespace application error handling
  • [Common] Fixed User Not Found error when viewing Job execution history for deleted users
  • [Common] Improved Multi Agent token handling security
  • [Common] Improved client JavaScript bundle so unnecessary internal IP information is not included
  • [DAC] Improved Databricks connection stability, including Web Editor autocomplete, DataGrip connections, SSH settings, and LIMIT/OFFSET handling
  • [DAC] Fixed Databricks policy application and Agentless Agent JDBC URL handling errors
  • [DAC] Added PostgreSQL RETURNING statement support for data masking policies
  • [DAC] Improved Draft Workflow entry to show an error message when referencing a Connection without access permission
  • [DAC] Fixed intermittent JavaScript errors during DAC Audit filtering
  • [DAC] Fixed multiple query handling errors in Workflow SQL Export Requests
  • [DAC] Improved Privilege Type editing so Privilege Name can also be changed
  • [DAC] Fixed issue where an incorrect Proxy port error popup was shown when accessing MongoDB
  • [DAC] Fixed Athena CREATE PROTECTED MULTI DIALECT VIEW parsing error
  • [DAC] Improved DB Policy Exception Request Approval Permission so it is exposed in the Roles Policy list
  • [DAC] Improved Trino Proxy connections so query cancel requests are applied correctly
  • [DAC] Improved Trino / Presto Proxy parse errors so they are delivered as proper failure responses
  • [DAC] Fixed issue where workflows were incorrectly shown as failed due to parsing delay while processing MongoDB SQL Requests
  • [DAC] Fixed status display issue where failed query execution appeared successful in QueryPie Web
  • [DAC] Fixed partition key column insert error in Impala
  • [DAC] Improved Redis Cluster read/write routing stability during SQL Request processing
  • [DAC] Fixed issue where unmasked fields were displayed as null in MongoDB Aggregate queries
  • [DAC] Improved Query Rule so string conditions containing spaces are evaluated as intended
  • [SAC] Improved the Add Account screen to query only required settings without unnecessary full configuration permissions
  • [SAC] Improved Windows Server Agent remote upgrades so they are not treated as failed in slow network environments
  • [SAC] Improved TACACS authentication processing logic
  • [SAC] Improved RDP session handling so domain controller network errors during session creation do not interrupt session processing
  • [KAC] Improved GCP Cloud Provider API and scheduled synchronization to work correctly
  • [KAC] Fixed WEB ACL blocking issue by preserving the actual client IP in Kubernetes Web Client requests
  • [KAC] Improved Kubernetes Web Client internal proxy communication path to fix connection issues in NLB environments
  • [KAC] Improved Kubernetes Web Client status display, error handling, and operational UX
  • [KAC] Fixed User Not Found error when deleting Role Assignment after deleting a user
  • [AI Chat] Improved MCP tool calls so users can choose approval-based execution or automatic execution mode
  • [MAC] Changed the default Transport to Streamable HTTP when creating MCP Servers
  • [MAC] Improved MAC Policy YAML to support allow and deny policy syntax together
  • [MAC] Improved MCP Server detail behavior so OAuth connection and Tool synchronization after Endpoint URL changes use the draft endpoint
  • [MAC] Fixed save errors after MCP Server token reset
  • [MAC] Fixed client error when viewing a Policy without a Tool list
  • [MAC] Improved the Request Audit detail screen so request contents can be checked in a consistent format
  • [MAC] Improved status display for the Include Payload option when Client Request Audit is disabled
  • [MAC] Improved scrolling and guide display on the MCP Server list and user page
  • [MAC] Fixed MCP Client authentication and registration flow errors for Claude Code, Cursor, and similar clients

QueryPie 11.6.4 Release

June 23, 2026

New Feature

  • None

Improvement

  • [Common] Fixed a vulnerability where remaining SQLJob token-related code removed in 10.2.6 could be used in External API

QueryPie 11.6.3 Release

May 29, 2026

New Feature

  • [Common] Expanded support for the SCIM 2.0 standard protocol (including PATCH, externalId support, and inactive user reactivation)
  • [Common] Added External API V3 User API (supports user create/read/update/delete, activation/deactivation, password reset, profile/group/Allowed Zone management, authentication setting lookup, and IdP synchronization)
  • [DAC] Added Vault-based Secret Store integration support for GCP CloudProvider
  • [DAC] Added Secret Store integration support for BigQuery and Google Spanner Connections
  • [DAC] Added Secret Store Auth Type support when configuring DB Jumphost (SSH Tunnel)
  • [DAC] Added RTA connection support for AWS DocumentDB Cluster
  • [DAC] Added AWS Secrets Manager authentication support for Custom JDBC Vendor
  • [DAC] Added TLS and properties configuration support for Custom JDBC Vendor
  • [DAC] Added Web Editor autocomplete support for Custom JDBC Vendor
  • [SAC] Added authentication and Role switching features in CLI
  • [SAC] Added Secret Store (Vault SSH CA) Auth Type for Jumphost server authentication
  • [KAC] Added External APIs to query, create, update, and delete K8s Cloud Providers
  • [MAC] Improved MCP Server create/edit UI and QueryPie Upstream Access Token masking

Improvement

  • [Common] Improved to allow User Agent download items to be hidden through environment variables
  • [Common] Fixed Audit Log Export creation error
  • [Common] Improved Workflow submission to allow separate approvals per Connection Owner
  • [Common] Improved Attribute-based Workflow approval rules and assignment method
  • [Common] Added option to disable Multi Agent GPU acceleration
  • [Common] Fixed issue related to password reuse for newly created users
  • [Common] Improved permission expiration notification emails to show environment information and detailed expiration targets
  • [DAC] Added AWS ap-southeast-7 (Thailand) region to Cloud Provider synchronization regions
  • [DAC] Added Redis Username-based authentication support for Reverse Tunnel
  • [DAC] Improved tunnel list sync speed after Headless Agent tunnel refresh
  • [DAC] Improved UserName filter/search usability on the DB Access Control Admin page
  • [DAC] Improved warning text and visibility for Auto Commit Off state
  • [DAC] Fixed Schema-based access control permission check error when using MySQL JSON_TABLE
  • [DAC] Fixed ClickHouse/Trino/Athena HTTP proxy connection failure when Proxy Protocol v2 is enabled on AWS NLB
  • [DAC] Improved BigQuery Connection settings synchronized with Cloud Provider SA Key so Service Account can be edited and retained
  • [DAC] Fixed issue where Proxy settings were automatically disabled in ElastiCache/Valkey Redis Cluster mode (warning message displayed)
  • [DAC] Fixed Athena autocomplete data generation issue
  • [DAC] Fixed Lost Connection issue when running large queries
  • [DAC] Fixed intermittent SQL Server connection issue after upgrading to 11.4.3
  • [DAC] Improved deployment image and driver management by separating the HBase Driver
  • [DAC] Improved Snowflake DML/SQL Request handling
  • [SAC] Added Seamless SSH support in Headless Agent
  • [SAC] Added MFA (OTP) authentication support for Internal DB in Headless Agent
  • [SAC] Improved Cloud Provider Auto Configuration to allow SSH Port and Tag editing
  • [SAC] Improved detail lookup performance by tuning the server_policy_versions query
  • [SAC] Improved security of command block messages
  • [SAC] Fixed issue where RDP sessions were blocked when manually entered account passwords needed to be changed
  • [SAC] Improved Seamless SSH CLI MFA authentication messages
  • [KAC] Added Auto Configuration Upon Synchronization (Tag) support during initial K8s Cloud Provider synchronization
  • [KAC] Improved KAC Web Client (beta) to preserve task state and perform operational tasks more reliably

QueryPie 11.6.2 Release

April 21, 2026

New Feature

  • [DAC] Added access control for Audit Log lookup
  • [DAC] Added ClickHouse HTTPS connection support
  • [DAC] Added Custom JDBC Vendor configuration file upload, Driver Class auto-detection, Vault integration, and Firebird-family vendor support
  • [DAC] Added Cubrid support (policy application and Proxy are not supported. However, when ANSI QSI is enabled, policy application is partially available within the parser’s supported scope.)
  • [SAC] Added single Server Policy lookup API
  • [KAC] Added KAC Web Client (beta)
  • [MCP] Added tools to query DAC/SAC/KAC audit logs through MCP
  • [AI Chat] Added ability to view analysis results as charts
  • [AI Chat] Improved integration to use the work context of SQL Editor and KAC Web Terminal

Improvement

  • [Common] Improved Attribute-based Workflow approval processing
  • [Common] Improved email display in approval documents to distinguish approvers with the same name
  • [Common] Improved exception handling for Approval Expiration Job
  • [Common] Improved password change flow for users with expired passwords in Admin Page Access Control environments
  • [Common] Improved error messages when duplicate permissions exist during SQL Request handling
  • [Common] Improved response information exposure, Cache-Control, and possibility of viewing other users’ Requests for security review response
  • [DAC] Added setting for default number of rows queried in the Data Tab
  • [DAC] Improved required input indicators for Query Rule UI and ShardingSphere Connection creation
  • [DAC] Improved display of deleted Connection information in Workflow approval history
  • [DAC] Improved table name display when creating SQL Export Requests
  • [DAC] Added Start On Approval disable option
  • [DAC] Improved table search highlighting
  • [DAC] Applied utf8mb4 charset to the DML Snapshot DB for new installations
  • [DAC] Fixed issue where DML Snapshot could be turned off for Connections with Ledger policies
  • [DAC] Fixed External API SQL Request call error when forced DML approval is used
  • [DAC] Improved DB Access History lookup errors and stability
  • [DAC] Improved MongoDB insertMany parsing error
  • [DAC] Fixed SHOW CREATE VIEW permission error when querying Impala VIEW
  • [DAC] Fixed expired password change error for MySQL host-specified accounts
  • [DAC] Improved writer instance routing issue when using DocumentDB Reader endpoint
  • [DAC] Improved SSH Tunneling connection stability
  • [DAC] Improved password input handling for ClickHouse No TLS connections
  • [DAC] Improved Custom JDBC Vendor icon refresh display
  • [SAC] Improved new session creation stability by fixing the cause of port exhaustion in Reverse Tunnel Agent
  • [SAC] Improved lower UI display in the Web Editor left server list
  • [SAC] Improved keyboard-interactive access
  • [KAC] Improved audit information so user requests from KAC Web Client (beta) can be distinguished in Request Audit
  • [KAC] Stabilized and improved usability of KAC Web Client (beta)
  • [MAC] Improved MCP Servers and Role detail screen usability

QueryPie 11.6.1 Release

March 23, 2026

New Feature

  • [DAC] Added temporary draft saving for Workflow SQL Execution Requests and External API integration support
  • [DAC] Added Trino data source Kerberos authentication support
  • [DAC] Added HANA Web Editor Auto Commit ON/OFF and HanaScriptParser-based block syntax handling support
  • [KAC] Added Vault-based GCP Cloud Provider and GKE integration support
  • [AI Chat] Added AI Chat Audit menu and Export support
  • [AI Chat] Added feature to integrate DAC SQL Editor context with AI Chat
  • [MAC] Added MCP Access Control feature to establish MCP Servers, Access Control, and Role management foundation

Improvement

  • [Common] Fixed error when running migrate.sh list in new installation environments
  • [Common] Improved OAuth Client Application to manage scopes, redirect URLs, and registration information more flexibly
  • [Common] Improved exposure of detailed internal information in login error responses
  • [Common] Added setting to apply Secure attribute so login session cookies are sent only over secure connections in HTTPS environments
  • [DAC] Improved Query Rule UI and safeguards - organized ALTERNATE_ANALYSIS naming, improved create/update UX
  • [DAC] Expanded Selectable QSI - show verified vendors first, allow vendors without QSI, and enhance syntax support for CREATE/UNNEST/Trino/HANA
  • [DAC] Improved Custom JDBC Vendor - added Kerberos additional authentication, icon and limit style, Object info data tab, and SQL Editor compatibility
  • [DAC] Fixed masking exemption permission application error when exporting JOIN query and Expression columns
  • [DAC] Improved SQL handling stability by data source such as Trino, Impala, Vertica, and SAP HANA
  • [DAC] Improved exception permission expiration handling so SQL execution flow remains stable even after Policy Exception expires
  • [DAC] Improved Query Audit search behavior to accurately query audit logs with table(s) filter
  • [SAC] Fixed issue where sessions ended when arrow keys were entered in SSH shell
  • [SAC] Improved Command Detection exception handling when using kubectl commands
  • [KAC] Improved Activity Log display and roleset key reissue behavior during Vault and GKE integration
  • [KAC] Fixed missing namespace permission check for cluster-scoped Kubernetes resources
  • [AI Chat] Improved AI Chat Audit permissions, time display, filtering, and chat result screen navigation stability
  • [MAC] Fixed bugs related to MCP reauthentication and Access Control

QueryPie 11.6.0 Release

February 13, 2026

New Feature

  • [Common] AI Chat basic functionality added (including MCP Tool invocation and conversation history management support)
  • [DAC] AWS Secrets Manager integration support - Secret Store functionality added to automatically retrieve DB connection passwords from AWS Secrets Manager
  • [DAC] Query Rule functionality added - support for configuring ALLOW/DENY/SKIP filtering rules based on SQL query patterns
  • [DAC] Custom JDBC Vendor added - support for uploading custom JDBC drivers and managing Custom JDBC Configurations, with ANSI SQL level query analysis support

Improvement

  • [Common] OAuth Client management improvement - scope selection, multiple redirect URLs, detail page introduction, and DCR endpoint type stability enhancement
  • [Common] Fixed issue where emails were sent even when Email Integration workflow notification was disabled
  • [Common] Fixed issue where qpctl command was not found due to non-existent /usr/local/bin directory during macOS Multi-Agent installation
  • [DAC] MySQL LOAD DATA LOCAL INFILE large file processing improvement
  • [DAC] Unnecessary metadata query improvement during Trino proxy connection
  • [DAC] Resolved SAP HANA SECONDDATE error caused by Julian/Gregorian calendar difference
  • [DAC] Aborted status check in SQL Request Workflow - fixed duplicate execution bug caused by singleton object contamination
  • [DAC] Policy support added for PostgreSQL RETURNING clause
  • [DAC] Fixed minWritableBytes error when querying SAP HANA BLOB type columns
  • [DAC] Changed SAP BTP Web Editor comment style to ANSI SQL
  • [DAC] Fixed missing Audit Log recording for Web Editor context menu DDL operations (Truncate/Drop/Rename)
  • [DAC] Fixed issue where logs were duplicated by the number of WHERE conditions in Policy Audit Log
  • [DAC] Reverse Tunnel Server Redis TLS support and cluster mode auto-detection improvement
  • [DAC] Fixed inability to connect to Redis Cluster through Reverse Tunnel
  • [DAC] Improved to display clear error message when HTTPS certificate is not configured
  • [DAC] Fixed issue where Workflow Tag Display feature was not shown when New DAC Policy Management was disabled
  • [SAC] Server Agent code signing verification logic improvement - certificate change compatibility secured
  • [SAC] Fixed issue where VMs were missing due to resource path case mismatch during Azure Cloud Provider synchronization
  • [SAC] Fixed IndexOutOfBoundsException issue during Cloud Provider synchronization
  • [WAC] Key Pair validation logic added when uploading Root CA Certificate
Last updated on