CloudBeaver Enterprise 26.1

June 8, 2026

Changes since 26.0:

  • Administration:
    • Added a new secrets configuration provider, “AWS Secrets”, that uses local AWS configuration. The existing provider that used the AWS cloud configuration was renamed to “AWS Integrated Cloud Secrets”.
    • Fixed an issue where duplicated usernames in a multi-server license could block setup. The application now stores the first username when names match. Details about skipped duplicates are logged on the server.
    • Added support for custom startup arguments when running CloudBeaver in a container. Administrators can specify configuration file locations to adapt the application to their environment.
    • Updated the manifest.webmanifest file to generate dynamically based on the CLOUDBEAVER_ROOT_URI environment variable.
    • Added an ability to update license information from the server on demand. The Refresh button is available on the License tab.
  • Authentication:
    • Added HTTP header authentication support for GraphQL queries. Users can provide API tokens via Authorization or X-Api-Key headers, allowing external data tools to authenticate without modifying request bodies.
    • Improved the OAuth login experience: when a user clicks a Cancel button on the external link dialog, CloudBeaver interrupts the request immediately.
    • Fixed a bug in the authentication form: the existing password is now required for password changes.
    • Added the “Authenticate” button to the toolbar for all databases supporting MS Entra ID authentication.
  • AI Assistant:
    • Added a confirmation prompt on the first run of any AI feature to allow sharing metadata with an AI service. Only administrators have access to this feature. Regular users will be prompted to contact the administrator.
    • Added an Ask AI button to the Execution Plan toolbar, providing explanations and highlights for the execution plan state and potential performance optimization. 
    • Added highlighted information blocks for errors and notifications in the AI Chat.
    • Passed the read-only connection flag to the AI assistant context via the system prompt. The assistant recognizes permission restrictions and generates responses that respect database constraints.
  • MCP:
    • Added the TOOLS & MCP Section into the AI Settings in the Administration part. External and internal agents can be configured there by administrators.
    • Added the internal MCP DBeaver Server with the ability to configure tools for the AI Chat: Read table sample rows, Open database objects editor, or open SQL Editor. This functionality is enabled by default when AI Integration is enabled.
    • Added MCP client authorization support to CloudBeaver, allowing customers to review the third-party application’s request and permissions on a dedicated consent screen.
    • Added the Claude Desktop snippet for MCP for the AI section on the Connection page.
  • SQL Editor:
    • Added an advanced graph visualization for SQL execution plans in the SQL Editor. The view highlights the most expensive nodes and routes, allows hiding irrelevant elements, and shows node details.
    • Added the ability to export a script to the Cloud Storage directly from the SQL Editor using the Export button.
    • Added fuzzy search to SQL Editor auto-completion for object names. The feature allows users to find tables and containers even with typos or incorrect letter ordering.
    • Updated the SQL Editor to use real tab characters for indentation. The application displayed tabs as four-space gaps with a distinct visual marker.
    • Added an ability to view and edit scripts without connecting to the database.
    • Added the ability to open generated queries right from the Generate SQL window.
    • Added the tooltip about quoting rules for the Bind variables parameters dialog.
    • Marked icons for non-saved (temporary) scripts with the hourglass symbol to add visual distinction from the saved ones.
    • Fixed data editing for SQL scripts with variables.
    • Fixed keyword autocompletion for partially typed keywords to avoid redundant letters.
  • Data Editor:
    • Renamed the Bar chart to Column chart and introduced a horizontal bar chart under the Bar name in the Data Editor.
    • Added the ability to copy-paste multiple cells at once. Pasted values will be distributed across selected cells.
    • Added support for adding, duplicating, deleting, or setting values to NULL in multiple highlighted rows via the Data Editor context menu.
    • Added key column mark for tables with unique keys in the data grid.
    • Added the Find and Replace functionality for the Data Editor with the ability to find data by matching case, whole word, or using regular expressions.
    • Data Editor started to keep the state of column configurations, such as filters, sorting, and ordering, after the reconnect, page refresh, and re-login.
    • Added more settings to the Generated SQL window, including the ability to select fully qualified names for query or use compact SQL formatting.
    • SQL query generation in the Data Editor is now available for columns containing large object data.
    • Added a DDL generation option to the Data Editor and Result Set context menu.
    • Improved column drag-and-drop behavior in the Data Editor. Users could drag columns from any area within the header and drop them onto any part of the target column or table body.
    • Fixed copy and paste behavior for multiline and special characters in the Data Editor. Added visual glyphs to indicate line breaks and tabs in the data grid.
    • Fixed the ability to calculate row count for non-standard SELECT statements.
    • Fixed the ability to copy Boolean values in the clipboard in the Data Editor.
  • Navigator Tree:
    • Reorganized the context menu on the connection level to make it more compact.
    • Added support for special symbols (pipe, comma, and asterisk) for the search field.
  • Accessibility:
    • Added the Skip to content option for quick keyboard access to the Navigator Tree, editors, and shortcuts list tab to improve application accessibility.
    • Improved keyboard navigation for the context menu and buttons for Data Editor, SQL Editor, and Navigator tree.
    • Fixed the ability to switch tabs in the Data Editor using the keyboard.
    • Added the Ctrl + / keyboard shortcut to open the context menu for selected cells in the Data Editor.
    • Fixed contrast for elements across different application parts in the light and dark themes to meet WCAG requirements.
  • Query Manager:
    • Added an Export button to Query History and Query Manager views. Users can filter data using existing UI controls and export the results to the CSV format.
    • Updated the message for user-canceled queries in the Query Manager result status.
    • Improved the error messages to clarify cases when the application cannot connect to the server. 
  • Miscellaneous:
    • Fixed data export in SQL format for values containing single quotes.
    • Cloud Storage: Added a clear error message for cases when users try to delete an S3 file without sufficient permissions.
    • Added the ability to set to NULL any value in the Driver Properties.
    • Fixed custom driver properties display for the connection page.
  • Databases and drivers:
    • Added support for the Valkey database.
    • Added support for the Microsoft Fabric database.
    • Added support for the GizmoSQL database.
    • Athena:
      • The default driver was updated to the AWS Athena JDBC driver. The previous driver is still available as Athena (Legacy).
      • Added type casting for date values in filters for the Data Editor.
    • BigQuery: Added a new driver – BigQuery (Experimental).
    • Cassandra: Fixed permissions representation for roles.
    • CSV, JSON, XML, Parquet: Added support for grouping multiple data files into a single table. Customers can combine files from the same folder or with matching names into a single dataset. Files of different formats remain separate.
    • ClickHouse:
      • Fixed the display of Array(JSON) types in the data grid.
      • Updated driver version to 0.9.7.
      • Fixed IP address display in the Data Editor by removing the leading slash.
    • CosmosDB Cassandra: The keyspace field is now available for the Connection page.
    • CUBRID: Fixed incorrect partitioning DDL generation for values containing commas.
    • Added support for the “prompt=false” connection property for DB2 for IBM i to turn off interactive prompts and prevent related errors.
    • Denodo:
      • Added support for custom data types.
      • Fixed column names for nested arrays.
    • DuckDB:
      • Fixed map rendering for GEOMETRY types with CRS parameters.
      • Fixed geometry type display for database versions > 1.5.
    • H2 database:
      • Added new embedded driver version 2.4.2.
      • Updated server driver to version 2.4.2.
    • The H2GIS driver was updated to version 2.2.3.
    • The InterSystems IRIS driver was updated to version 3.10.5.
    • MongoDB: Fixed the ability to rename collections in the SQL Editor.
    • Oracle:
      • Added support for the Oracle Microsoft Entra ID authentication type.
      • Fixed display of timestamp values for the legacy driver version.
      • Fixed metadata reading for indexes and privileges in the legacy driver version. 
    • PostgreSQL:
      • Updated driver to version 42.7.11
      • Fixed missing INOUT parameters in CHECK generation for procedures and functions.
      • Fixed handling of 24:xx values in time columns.
      • Fixed an error when connecting via URL if the database name contains a hyphen.
    • Redshift:
      • Updated driver to version 2.2.6.
      • Set the client_protocol_version driver property to its default value, which fixed an issue with the availability of external schemas.
    • Snowflake:
      • Implemented new browser SSO authentication (Snowflake OAuth) for Snowflake connectors.
      • Updated driver to version 4.1.0.
      • Fixed an occasional error that could appear while typing SQL in the SQL Editor.
    • SQL Server:
      • Updated driver to version 13.4.0.
      • Fixed DDL generation for external tables.
      • Fixed the database connectivity issue after the Java update.
    • Starrocks: Added external catalogs support for the Database Navigator.
    • Teradata: Added support for Teradata non-monetary Numeric values (with Use Teradata format option).
    • TimescaleDB: Added authentication with Microsoft Entra ID.
    • Vertica: Fixed column order in the Metadata Editor to match the actual table structure.
  • Security:
    • Added an administrative setting to restrict SSH tunneling capabilities. Administrators can now limit tunnel configuration to authorized users, reducing the risk of unauthorized network access.
    • Fixed a path traversal vulnerability in the Resource Manager service.
    • Fixed the high vulnerability (CVE-2026-4800) in the lodash library. The library was updated to version 4.18.0.
    • Fixed the high vulnerability (CVE-2026-39363) in the vite library. The library was updated to version 7.3.2.
    • Fixed the high vulnerability (CVE-2026-33671) in the picomatch library. The library was updated to version 2.3.2.
    • Fixed the high vulnerability (CVE-2026-33943) in the happy-dom library. The library was updated to version 20.8.8.
    • Fixed the high vulnerability (CVE-2026-33228) in the flatted library. The library was updated to version 3.4.2.
    • Fixed the high vulnerability (CVE-2025-7962) in the sun.mail.jakarta library. The library was updated to version 2.0.2.
    • Fixed the high vulnerability (CVE-2026-3505) in the bcpg-jdk18on library. The library was updated to version 1.84.0.
    • Fixed the high vulnerability (CVE-2026-42587) in the netty-codec-http2 library. The netty-bom library was updated to version 4.2.13.
    • Fixed the high vulnerability (CVE-2026-33870) in the netty-codec-http library. The library was updated to version 4.2.10.
    • Fixed the high vulnerability (CVE-2026-24734) in the tomcat-embed-core library. The library was removed from the project dependencies.
    • Fixed the high vulnerability (CVE-2025-45141) in the tar library. The library was updated to version 7.5.11.
    • Fixed the high vulnerability (CVE-2026-27148) in the storybook library. The library was updated to version 10.2.10.
    • Fixed the high vulnerability (CVE-2026-27606) in the rollup library. The library was updated to version 4.59.0.
    • Fixed the high vulnerability (CVE-2026-27904) in the minimatch library. The library was updated to version 3.1.3.
    • Fixed the high vulnerability (CVE-2026-27959) in the koa library. The library was updated to version 2.16.4.
    • Fixed the high vulnerability (CVE-2026-32141) in the flatted library. The library was updated to version 4.4.0.
    • Fixed the high vulnerability (CVE-2026-1605) in the jetty-server library. The library was updated to version 12.1.7.
    • Fixed the medium vulnerability (CVE-2025-66453) in the org.mozilla:rhino library. The library was updated to version 1.7.15.1.
    • Fixed the medium vulnerability (CVE-2026-41305) in the postcss library. The library was updated to version 8.5.14.