3.15.5 LTS Release Notes

3.15.5 LTS Release Notes#

Squirro 3.15.5 LTS was released on May 13, 2026.

Learn more about the Squirro Release Process page. When upgrading between LTS releases, see the Upgrading Squirro page for important information about the sequential upgrade path.

Notes for administrators

Squirro 3.15.5 is a long-term support release with a two-year support window, consolidating all changes from the 3.15.x biweekly release series.
This release introduces important changes that may require adjustments to your existing setup. Learn more
Python 3.9 support for Squirro Toolbox and the SquirroClient SDK is deprecated in this release and no longer supported starting with the next LTS release (3.16.x). If you are running these tools with Python 3.9, plan to upgrade to Python 3.10 or 3.11 as soon as possible. For the supported versions, see the Install In a Python Environment and SquirroClient Installation pages.

What’s New#

Project Neo technical preview

Next-generation Squirro user interface built on a modern React foundation, available on the same platform as the existing interface via a dedicated URL. Squirro instances hosted on Squirro Cloud include Project Neo automatically. On-premises and other cloud deployments require a parameter change. Contact Squirro Support for setup instructions.
OpenSearch technical preview

Available as an alternative to Elasticsearch. Intended solely for testing and evaluation and must not be used in production environments.
OpenAI Code Interpreter technical preview

Provides secure code execution in a sandboxed environment. Intended solely for testing and evaluation and must not be used in production environments.
Chat with filtered content using Squirro entities

It is now possible to focus chat conversations on specific subsets of data by applying entity filters. That proves especially useful in Copilot Mode, allowing for more targeted and relevant interactions.
Rhein Insights data source connector

Connects to Rhein Insights and enforces document-level access control based on user and group permissions.

Improvements#

AI#

Project administrators can now enable readers and restricted users to upload files for chat interactions by activating the topic.globaltemp.allow-reader-file-upload setting.
File upload tool skipped when no files are attached to the conversation.
Retriever tool description refined for improved precision and relevance in agent searches.
Document metadata included in event stream snippets for streaming chat responses.
New default large language model set to GPT-5.2 for enhanced performance, accuracy, and responsiveness.
AWS Bedrock Guardrails configuration support via genai.sqgpt.settings.
RequestTimeout serialized as Tuple as expected by the genai service API.
langchain-classic package for backward compatibility with legacy chains.
Error handling for invalid file objects with clear error messages.
Warning triggered when tools are defined but ignored in passthrough mode.
agent_id added to prompt schema.
waitForImage added to the DynamicImage component for automatic retry when an image fails to load.
Support for provider-specific extra arguments allowing advanced Bedrock configurations.
AWS credential configuration supporting multiple authentication methods (explicit credentials, AWS profiles, session tokens, and AWS credential chain).
Dual-mode chat history storage with database backend support.
Intelligent container caching with file deduplication and LRU eviction.
Lifecycle management added for artifacts (delete by project/conversation scope).
Database-backed conversation storage for GenAI service chat history.
safety_identifier introduced for OpenAI API calls for user-level tracking and abuse prevention.
Automatic generation of concise titles (5-7 words) for new conversations based on the first user question.
Conversation import/export endpoints for data migration.
Standalone migration script tools/devops/genai_migrate_redis_to_db.py.
AWS Bedrock support with two provider types, bedrock_converse using Converse API and bedrock_chat using InvokeModel API.
Audit logging for conversation operations using structlog.
Storage bucket configuration for GenAI artifacts with automatic setup.
Artifact persistence with multiple storage backends.
Artifact reference list in responses with download links and file sizes.
preserve_filename configuration flag for opt-in filename preservation in file uploads.
/projects/<project_id>/arbitrary_prompt endpoint added to GenAI proxy plugin for direct LLM prompt execution.
Async-first architecture with proper error handling and retry logic.
Converter module for translating between Redis and DB formats.
Field validator for automatic truncation of conversation titles to 512 characters.
Supported file types tooltip and filter on the chat attachment button.

Search#

Newly added editable chips parsed and split when needed.
search_after pagination in ActivityInsightsSource.
Query syntax extended with a multi-value (any of) match.
Support for Point-in-Time and search_after.
NLP parsing and smart search for the search widget.
pagination_mode available in the SquirroClient scan.

Platform#

Apache Tika upgrade updated for improved document parsing capabilities and enhanced security.
Easier collection creation directly from the Collections List dialog using a convenient new button.
Better time display formatting of the relative end time selections for enhanced readability.
none string explicitly set for a more visible reasoning_effort parameter in project settings.
Layer visibility builder in the dashboard editor migrated to React.
Split view open state preserved while navigating between items in Item Detail.
Semantic Search pipeline workflow included in new projects by default. Default Dashboard replaced by Explore Dashboard for correct display of project items and an updated interface.
Server Admin terminology updated to Workspace Admin in Project Settings for instances with the Workspaces feature turned on.
Auto-refresh functionality for the data sources page. Administrators can turn it off via the frontend.userapp.show-sources-auto-refresh server configuration key.
Warning added when the preserve_filename flag is set for the newsletter bucket.
XSS sanitization for the email editor.
REST API for programmatic file management in Squirro projects, supporting upload, listing, download, and deletion.
Workspace renaming available via the interface and through the SquirroClient update_workspace method.
JWT authentication support.
New Studio plugin for JWT validation.
File content download with secure authentication.
Extended file upload support for additional Office and text-based document formats.
Enhanced user permission validation to apply a role-based fallback when project permissions exceed the scope of the user role.
All-permissions matching method for improved accuracy of permission validation.
Items collection renaming.
Improved validation for asset and widget endpoints, with boolean type conversion for query parameters.
MySQL connection charset updated from utf8 to utf8mb4 to match the table encoding and ensure full Unicode support.
LTS release channel available in the instance upgrade Studio plugin.
Workspace renaming accessible to users with the Cluster Reader or Workspace Admin role via the Properties page.
ACL alias mirroring in the Squirro connector.

Bug Fixes#

Cluster users unable to access the cluster space.
Queries added via the q URL parameter duplicated after page refresh.
Pipeline workflow endpoints accessible outside their workspace scope.
Data sources page incorrectly showing an empty state when errors occurred.
Activity Tracking pipelet failures on instances with a large number of users.
Item detail modal opening unexpectedly on its own.
Spellcheck functionality not working in certain scenarios.
Time setter URL parameters not applying correctly.
Exact phrase matching on fields incorrectly truncating the last character. Phrase searches on fields like $title:"\"Elasticsearch Tutorial - 2.pdf\"" now work as expected.
Dashboard query not highlighted in the item cards of the items widget.
User cannot select a facet with a numerical value from the item card.
Long loading in “from chunks” mode.
Scan context not properly closed.
Editing the name of the collection, favorite, or search-results agent types not updating the agents dropdown.
llm_timeout not parsed properly from project settings.
Dashboard query not included in reference search, document search, and similar items queries.
Missing tool calls in conversation history for agentic workflows with multiple iterations.
Paragraph citation in Chat not highlighted in the old reference format.
Timeline widget not showing header.
Date and time not displayed in the client timezone.
arbitrary_prompt endpoint not using LLM configuration from project settings.
Incorrect quotes handling in the unanalyzed field search.
itemsCollectionsCollection property missing from the ItemDetail component in the Chat widget.
Lost text fragments in Dynamic UI components leading to incorrect highlighting of referenced text.
Infinite loading when semantic search returns few results.
Inline citations inside dynamic UI not opened in the item detail.
Dashboard time selection not included in the chat context.
Passthrough mode condition incorrectly handling the CHAT_WITH_LLM agent type.
Query not clearing when changing dashboard programmatically via external navigation, preventing a clean dashboard state transition.
Single-page PDFs not handled correctly when using the retriever with image reasoning in Squirro Chat.
/var/log/squirro/topic/stderr.log growing continuously due to DeprecationWarning messages in wsgiservice-based services.
Item details loading indefinitely when the chat widget was opened directly from a URL.
Chat not functioning correctly with RSS data sources.
Context variable propagation in asynchronous executor calls affecting tracing.
Semantic search plugin not correctly handling the TERMS array filter syntax.
Index Manager /cluster/health endpoint not responding correctly.
Double quotes not escaped when applying a facet filter from the Labels widget.
Incorrect interpolation of encrypted configuration values.
Collection update operations not returning the correct 409 status code when a collection with the same name already exists.
World Map widget crashing when the map component was not yet initialized.
Data loading failures when using the Squirro connector with instances running a version prior to 3.15.1.
Chat with Document feature missing the item ID when dashboard selections were active.
Parent item not always cleaned up from the index and neither retried nor moved to a failed batch when sub-items failed to index.
Text tokens streamed before tool calls missing from agent responses.
Accumulated answer text discarded when the code interpreter used within an agent turn.
Pre-tool and post-tool text concatenated without a separator in agent responses.
Multiple code interpreter calls in a single agent turn producing duplicate Generated Artifacts sections.
Instance upgrade Studio plugin not fetching the latest available releases and not supporting Enterprise Linux 8 and 9.
PDF conversion failing when missing MIME type of an input PDF file.
Adding labels to a data source no longer applying materialized tags.
Item detail panel opening unexpectedly when navigating to a Chat dashboard.
Case-insensitive email uniqueness not enforced in PostgreSQL.
Log file and log data endpoints accessible to non-Cluster Admins.
Semantic search failing in OpenSearch.
Sample email sending not restricted to Cluster Admin and Workspace Admin roles.
List users and list groups endpoints accessible to users without project management permissions.
List users and list groups access extended to Project Admins.
SSO user records missing email address and full name after first-touch SSO login from JSON-based web clients.
Corrupted data source causing all data loaders to fail.
Rhein Insights ACL filter failing for users with no email address on record.
Chat with Document not functioning correctly in certain scenarios.
PII data not unmasked correctly.
Items query endpoint returning a server error when the requesting user had no email address on record.
Query lens returning no results for workspace admins.
API keys and other sensitive values written to warning logs when unknown configuration keys were provided.
user_prompt_extra instructions not applied to summarization requests.
runtime_config.default_user_prompt_extra not overriding the project-level configuration.

Miscellaneous#

Upgraded LangChain libraries for improved performance and security.

Known Issues#

In specific scenarios, cross-lingual information retrieval for semantic search may deliver lower-than-expected quality (SQ-28171).
Opening item references in the chat may not display text highlights as expected (SQ-30667).
An error may occur when chatting with an uploaded .pptx file in Squirro Chat (SQ-31480).

Breaking Changes#

Email templates that make external requests to populate the template using the h.requests_get utility are no longer supported.
extended_plugin_options was removed from the DataSource class.
LangChain v1 removes support for classic chains like LLMChain and Chain base classes. Custom code using these deprecated classes must update imports from langchain.* to langchain_classic.*. See the langchain-classic migration guide.
Removed string support for project_permissions in SquirroClient.new_grant. The method now raises a ValueError if a non-list value is provided.
Introduction of nutrient_pdf_viewer.license_key configuration to frontend.ini, required for PDF viewing to work properly.
The migrated PDF viewer requires additional Content Security Policy directives. Add the following to security.content-security-policy in the server configuration:
```
worker-src blob:
img-src blob:
script-src 'wasm-unsafe-eval'
```
The PDF viewer does not load without those directives.

Installation and Upgrade#

For new installations, find step-by-step instructions on the Install and Manage Squirro with Ansible page (recommended) and Installing Squirro on Linux pages.

To upgrade an existing installation, see the Upgrading Squirro page.