See what's new in Sourcegraph without leaving the app.
We're shipping fast at Sourcegraph. Refreshing https://sourcegraph.com/changelog continuously is tedious though. Now you don't have to — with relevant updates highlighted directly from the product. Click the "What's new" icon in the sidebar to see the latest updates from Sourcegraph.
All content is relevant to your Sourcegraph version, so you're always seeing things you can try immediately.
A comprehensive design refresh with a new theme system and UI refinements.
Administration is becoming simpler to navigate and easier to configure, with clear forms and guided setup flows.
We're shipping a broad set of improvements to the administration area focused on one goal: make Sourcegraph easy and obvious to configure.
The administration area now contains dedicated pages for configuring many settings found in the former "Site configuration" page. These include:
Going forward, expect the same direction: more task-focused pages, better guided setup experiences with pre-save validation where possible, and fewer places where you need to hand-edit the raw JSON configuration.
To reflect this, the former "Site configuration" page is now called Advanced configuration, with the goal that you never need to go there in the future.
If you have feedback about your experience configuring Sourcegraph, please reach out at support@sourcegraph.com.
Longer, more focused conversations with Deep Search address context window issues and enable even deeper research.
Deep Search now uses a dedicated subagent specialized for finding files relevant to your query. This subagent performs thorough searches and presents a summary to the main agent. Since the main Deep Search agent only needs to read this summary, this saves tokens in its context window.
This means Deep Search can explore more of your codebase while using fewer tokens, so you get more focused context and longer conversations - you should be able to ask Deep Search more questions before reaching the context window limit.
When Deep Search uses this subagent, you can follow along on the individual steps the subagent takes.
Code navigation, right inside Deep Search.
Deep Search file sources now support code navigation directly in the sidebar preview. When you click on a file source in the right sidebar, the file preview displays interactive hover cards — just like the regular code view. You can inspect symbol documentation, jump to definitions, and find references without leaving Deep Search, to dive extra deep into the citations that Deep Search provided, helping validation and further exploration of answers.
Clicking Go to definition or Find references transitions you to the dedicated code navigation view, where the Deep Search sidebar stays open so you can continue your research thread without losing context.
Real-time results in Deep Search.
Deep Search now streams tool calls, results, and answers as they're generated. Previously, Deep Search would wait for a full intermediate step or answer before displaying it.
Checking in on Deep Search's thought process lets you understand the information retrieval process better, and steer the agent as needed.
Drag and drop images into Deep Search.
Deep Search now supports images. Drag and drop or copy-paste images directly into the prompt editor, add your question, and submit. Deep Search will analyze the image alongside your code to help you find better answers faster.
This is useful when you want to:
You can attach up to 2 images per question, with a maximum size of 5 MB each.
Quickly find and navigate to Deep Search conversations from anywhere with the fuzzy finder.
You can now search your Deep Search conversations directly from the fuzzy finder. Press cmd + J (or ctrl + J on Linux/Windows) to open the Conversations tab and start typing to find past conversations by title or content.
Track Sourcegraph MCP tool usage with new dashboards in Sourcegraph Analytics.
Sourcegraph Analytics now includes MCP usage. The new MCP section on the Search page shows daily and monthly active users, tool-level usage, and top MCP users, giving you visibility into MCP adoption.
MCP tool calls are also included in the Overview Time Saved table and CSV exports, giving you a complete picture alongside search, completions, and chat.
We also took the opportunity to clean up navigation: The Search page now uses tabs for Search, Deep Search, MCP, Batch Changes, and Code Navigation, and the separate Cody pages are consolidated into a single tabbed view, making it easier to find what you need.
New to Sourcegraph Analytics? Check out the docs and enable it to start exploring usage across your organization.
The Sourcegraph MCP server is now generally available with frictionless OAuth setup enabled by default.
The Sourcegraph MCP server is now GA with OAuth Dynamic Client Registration enabled by default. Connecting AI agents like Amp or Claude Code to your Sourcegraph instance is now a single command:
# Amp
amp mcp add sg https://sourcegraph.example.com/.api/mcp
# Claude Code
claude mcp add --transport http sg https://sourcegraph.example.com/.api/mcp
See our MCP documentation for more details.
auth.idpDynamicClientRegistrationEnabled to false if you need to disable it.deepsearch tool is now available on the MCP server by default. Admins can disable it by setting the SRC_MCP_DISABLE_DEEPSEARCH_TOOL=true environment variable. We plan to add more generic tool allow/deny listing in a future release, but this environment variable serves as a workaround in the meantime.Sourcegraph search and file links now unfurl with rich previews in Slack.
Sourcegraph code search and file links shared in Slack now automatically unfurl with rich previews, giving your teammates instant context without leaving Slack.
When you paste a Sourcegraph search URL or file link into a Slack channel, you'll see a preview that includes relevant details like the search query, repository name, file path, and code snippets. This makes it easier for teams to discuss code and search results directly in Slack conversations.
To enable rich link previews, set up the Sourcegraph Slack integration for your workspace via Administration → Slack integration.
Improved repository availability with enhanced corruption detection, safer optimization coordination, and atomic recovery.
To improve support for the largest codebases, Sourcegraph is now significantly more resilient to repository corruption events.
We have made coordinated improvements across optimization, corruption detection, and recovery so repositories stay available and searchable in more scenarios.
Repository corruption can occur when Git objects are missing or corrupted. This can happen for many reasons, including incomplete or interrupted clones/fetches, filesystem corruption, or other disk issues. When Git objects are missing or corrupted, Sourcegraph operations that require those objects (such as listing a repository directory tree, retrieving files, resolving references, or searching commits) can fail.
Here's what changed:
git fetch).You can monitor this recovery process from the repository settings page, which now reports reclone progress directly in the UI.
Bring Deep Search to your custom integrations with the new Sourcegraph API.
We're introducing a new, versioned Sourcegraph API for custom integrations, starting with the general availability of the Deep Search API. The new Deep Search API can be used to bring Deep Search to your own tooling.
The new, interactive API reference page is available at /api-reference (e.g. https://sourcegraph.example.com/api-reference). From this page, you can view the available operations and download the OpenAPI schema. We've seen many of you build on top of Sourcegraph as the central platform for access to code and code knowledge, to power your custom tooling.
We are committed to supporting integrations built on top of these new APIs with backwards compatibility and migration assistance for breaking changes.
The new Sourcegraph API is a work in progress, and capabilities are gradually being ported over. In the coming weeks, we will be bringing the following capabilities to the new API:
If you have an integration you'd like to build that is not currently served by the new Sourcegraph API, or if you need assistance with migration, please reach out at support@sourcegraph.com.
The existing Sourcegraph GraphQL API and experimental /.api/deepsearch/ API remains available, but we recommend migrating to the new Sourcegraph API for a stable integration experience. To reflect the GraphQL API's intended purpose for integrators, we've renamed it in our documentation and UI to the "Debug API" or "Debug console".
Please reach out to support@sourcegraph.com to get the capabilities your require added to the new Sourcegraph API endpoints at /api/ for your use cases. We are fully committed to supporting our integrators!
In the past, we've primarily directed integrators to the Sourcegraph GraphQL API. This is the same API we use to build Sourcegraph itself, which has its benefits: all capabilities you can see in our product, are immediately available via the GraphQL API. It also has a lot of issues, such as:
With Sourcegraph 7.0, we want to take this opportunity to start afresh: a new foundation for a first-class integrations API. This will allow us to provide a better integrations experience for our customers, treated like a core part of our product offering, with the level of care and attention it deserves.
If you'd like to partner with us to ensure the new Sourcegraph API suits your needs, please reach out to support@sourcegraph.com.
Software development is changing, and so are its tools.
Deep Search now displays a warning banner when answers are truncated due to output token limits.
Citations in Deep Search conversations are numbered continuously across all questions. When the same source is referenced in multiple questions, it reuses the original citation number, making it easier to track sources throughout a conversation. The citations panel auto-scrolls to show relevant sources as you navigate between answers.
Deep Search now provides better answers to "what have I worked on recently" questions by automatically including current user and date context.
Added Deep Search conversation search to the fuzzy finder, allowing users to search past conversations by title or content using Cmd+J (or Ctrl+J on Linux/Windows).
When Deep Search is enabled, it replaces Cody Web in the UI. The /cody/chat route and Cody sidebar are no longer shown.
Reintroduced the get_contributor_repos tool to enable queries about contributor activity.
Added Cmd+. (Mac) / Ctrl+. (Windows/Linux) keyboard shortcut to start a new Deep Search conversation from anywhere within the interface.
@mention suggestions now remember recently used repositories and show them instantly
Deep Search now streams answers with a typing effect, improving perceived latency.
Added context window indicator to inform users of how much of the context window has been used.
Include images in Deep Search questions by pasting or dragging up to 2 images per question (5MB max each) to share screenshots, diagrams, or error messages.
File preview in Deep Search now supports code intelligence features including hover tooltips, go to definition, and find references.
Deep Search conversations now display a Slack icon in the thread header when initiated from Slack, providing a direct link back to the original Slack thread.
Deep Search now uses a dedicated subagent for finding relevant files, reducing token usage and allowing more thorough searches before reaching context window limits.
When the search input is empty, a "Recent searches" suggestion group now appears showing up to 5 of your most recent queries with syntax highlighting and clock icons. Selecting an entry populates the search input with that query.
Site admin authentication settings now offer password policy presets (Standard, Strong, Fortress) instead of requiring manual configuration of each complexity rule. Session idle timeout uses an explicit checkbox instead of empty-field conventions. Access request toggle is disabled with an explanation when built-in signup is already enabled.
Added a form-based UI for managing authentication settings including session management, signup controls, password policies, and access restrictions, replacing the need to edit raw JSON configuration.
Added a dedicated UI in the site administration area for configuring TLS/mTLS settings.
Added a dedicated page in the site administration area for configuring email SMTP settings.
Admins can now update the license key directly from the License page
Consolidated Background jobs and Code Insights jobs pages as tabs within the Diagnostics page.
Added query parameters to the Diagnostics page to make tab selection shareable and bookmarkable. Old diagnostic routes now redirect to the new page with the appropriate tab selected.
Consolidated Pings, Migrations, Outbound requests, and Slow requests pages under a single "Diagnostics" page in the site admin sidebar.
Administrators can now mark an email as verified when creating a user.
Reorganized site admin sidebar navigation: Repositories section now lists repos before code hosts, Users & auth section moved higher, new Integrations section groups Slack/webhooks, and redundant API Console and Documentation links removed.
A warning is now displayed on the repositories administration page when authz.enforceForSiteAdmins is enabled.
Users now see a modal informing them their session has expired, with an option to redirect to the sign-in page.
GitHub privacy emails (format: <ID>+<username>@users.noreply.github.com) are now resolved to Sourcegraph users when the GitHub account is linked, improving user attribution on commit pages and other views.
auth.idpDynamicClientRegistrationEnabled is now enabled by default for easy MCP access.
OAuth Clients registered via Dynamic Client Registration are now limited to the "mcp" scope only, improving security by preventing overly permissive applications.
Added a new mcp scope for issuing access tokens or OAuth tokens with access limited to MCP tools only. This provides a more restricted alternative to the previously required user:all scope.
Added a search bar to the Code Insights "All Insights" tab, enabling users to quickly filter insights by title instead of scrolling through paginated results.
Group Results (Compute) Code Insights feature is now generally available and no longer requires an experimental feature flag.
Added a worker that runs ANALYZE on database tables on weekends to optimize query performance.
Added KUBERNETES_JOB_HOST_NETWORK environment variable for the Executor service to enable host networking for Kubernetes job pods. This is useful when pods need to access routes accessible by the host but not from the pod, such as when running a kind cluster on podman.
On sourcegraph.com, MCP tool descriptions now explicitly indicate they search open source code, making it easier for AI agents to distinguish between public and private Sourcegraph instances.
Repository recloning operations now display real-time progress updates on the repository mirroring page. The reclone and fetch buttons are hidden while a reclone is in progress.
Gitserver now coordinates optimization tasks per repository, ensuring only one optimization runs at a time with priority-based preemption.
Repository optimization now writes incremental progress reports, making it easier to monitor long-running optimization operations.
This enables us to render the Slack identity of a user instead of just the Sourcegraph username.
Added instructions for uploading a profile picture to the Slack app.
Users can now send direct messages to the Slack app for Deep Search. To use this feature, uninstall the app, update the manifest, and reinstall the app.
Slack integration now supports rich link previews for code file links.
Slack integration now supports asking Deep Search questions with images in the thread, with a maximum of 2 images per message.
Slack integration now uses the ContentBlocks API to pass thread context as structured data instead of prepending it to the question text.
Slack configuration errors are now displayed in the Administration -> Notifications area.
Sourcegraph now supports rich link preview for search links in Slack.
Verbose responses in Slack now include an AI-generated summary, providing immediate insight before expanding the full response.
Removed the 30-minute expiration for deferred Slack messages, so unfurled responses are now always available.
Added an interactive button to handle lengthy Slackbot responses (over 3,000 characters). Users can choose to view the full response inline or in the Deep Search thread. Full responses are temporarily stored for 30 minutes, after which users must view them in the Sourcegraph instance.
Removed the feature flag UI from the site admin interface for all non-Cody self-hosted Sourcegraph instances. Site admins that still need to manage feature flags can do so using the src CLI tool with GraphQL API commands.
Removed the feature flag UI from the site admin interface for all non-Cody self-hosted Sourcegraph instances. Site admins that still need to manage feature flags can do so using the src CLI tool with GraphQL API commands. See this docs page for instructions on how to do so.
Repository URLs now use the /r/ prefix (e.g., /r/github.com/owner/repo). Old top-level repository routes automatically redirect to the new format for backward compatibility. This prevents conflicts between product routes and repository names.
Access requests are now displayed as a status notification.
Added a "What's new" popover in the navigation that displays recent changelog posts, allowing users to discover new features directly within the product.
Hides several admin UI elements on Cloud that are not relevant and actionable to customers on Cloud, including gitserver disk details, email delivery configuration, Updates/Gitserver/Observability pages, OOB migrations, license key form, and gitserver storage warnings.
Diff pages now load faster by initially rendering plaintext hunks and lazily loading syntax highlighting as hunks are scrolled into view.
Entitlements now support an hourly option.
Administrators can now reset user entitlement usage via the "Entitlement usage" page.
To support moving off of notebooks, we're providing an exports API. The GraphQL query field notebookExports provides markdown exports of all notebooks with filtering options.
Added toast notification system with helper functions and custom Sourcegraph styling for light and dark themes.
Improved error handling when token limits are exceeded by estimating prompt size before LLM calls and ensuring errors are displayed in the UI.
Fixed tool renderers to display "0 results" instead of raw JSON when no results are found.
Deep Search now resumes automatically after server restarts instead of getting stuck in a pending state.
Added support for Proto/Protobuf, SCSS, Groovy, PowerShell, CMake, and Makefile highlighting in Deep Search markdown code blocks.
Fixed URLs in deep search results being incorrectly double-prepended with the domain when they already contained the external URL.
Fix errors when deleting Deep Search conversations while they are still processing.
Fixed horizontal scrolling in the Deep Search sidebar when a long filename context chip was displayed.
Fixed a visual bug where a draggable divider line appeared on the right edge of Deep Search on narrow screens.
Fixed overflow issue in search input history mode
Search-based symbols in the symbol tree now preserve the current file view (e.g., blame view) instead of resetting to code/raw view.
Fixed alignment of code intelligence preview popover when blame panel is visible
Fixed inconsistent alignment of the batch change state pill (OPEN/CLOSED badge) in the batch changes list.
GitLab OAuth tokens are now properly validated using the /oauth/token/info endpoint to check scopes, while personal access tokens continue to use the /user endpoint. This ensures correct token validation behavior for both authentication methods.
When connecting a code host identity to Batch Changes, errors are now correctly surfaced in the UI.
Fixed incorrect pattern syntax in the "GitHub Actions: Pin Versions" batch spec template to use proper regex instead of glob syntax
Fixed database constraint violations when recreating batch changes in the same repositories by properly cleaning up associated changesets during deletion
Fixed a bug where users (including service accounts) could not be created by a site admin when signup is disabled.
Site configuration history now loads significantly faster in many cases.
Fixed site config occasionally reverting to old config after saving
Fixed an issue where site config would occasionally revert to old config after saving
Sourcegraph will now avoid dropping a user's repository permissions if it encounters a 429, 500, 502, 503, or 504 when refreshing the OAuth access token (as encountered during the Feb 9 GitHub incident: https://www.githubstatus.com/incidents/lcw3tg2f6zsd). The permission syncer will simply re-use the users' old permissions until the next sync.
invalid_grant errors when concurrent refresh attempts occurredRemoved distracting fly-in animation when loading Code Insights dashboards
Skip invalid repositories (deleted or not cloned) to prevent infinite processing loops
Code monitor webhooks now accept all HTTP 2xx status codes (200-299) as successful responses, preventing duplicate notifications when webhook endpoints return HTTP 202 Accepted or other 2xx codes.
Reduce concurrent load on gitserver by spreading out code monitor queries with jitter
Long gone because of webworker issues in Safari, Cody Web is now available again.
Report which container failed if an executor pod fails when executing on Kubernetes.
Fixed executors on Kubernetes joining commands incorrectly
Improve page that lists executor instances to better handle instances with extremely long names
When connecting a GitHub external account to Sourcegraph, the user's GitHub profile link is now properly displayed on the Account Security page. If the link is not visible, remove and re-add the GitHub connection.
Fixed missing sync reasons in the SOURCEGRAPH group for the permissionsSyncJobs API.
Fixed an issue where Anthropic models could produce malformed tool call arguments, causing Deep Search conversations to become stuck in an errored state.
Fixed stale license validation states being used after updating license keys, ensuring validation results always correspond to the currently configured key.
Added --scopes mcp argument to the MCP login command to ensure proper OAuth scope grants for MCP functionality.
Upgraded go-tuf dependency to v2.4.1 to fix three medium-severity security vulnerabilities (CVE-2026-23991, CVE-2026-23992, CVE-2026-24686).
Show the right error message in Slack search link preview when there is a query syntax error
Fixed confusing UI state in Administration -> Slack configuration where the UI showed a warning that Slack couldn't contact the Sourcegraph instance even when the integration was working correctly. The UI now displays a cache-busting ?retry URL parameter to force Slack to re-verify the connection.
Fixed video playback in Safari for Markdown-rendered content
Fixed z-index stacking issue where app shell floating elements incorrectly appeared above survey toasts and feedback modals
Fixed UI flash when loading temporary settings from cache
The "Account security" page now displays the login for each connected external account (e.g., GitHub, GitLab).
Fixed line number alignment when switching to blame view
Fixed sticky file header positioning on commit page
Fixed image alignment in the image viewer and now always display the dimensions of binary images.
Fixed cursor-based pagination to correctly apply filters when using multi-column cursors. Previously, filters (such as search queries or clone status) were silently ignored for a subset of results due to SQL operator precedence, causing paginated endpoints to return more results than expected and include items that didn't match the filter criteria.
User settings page headers now have a consistent appearance across all sections.
Deep Search no longer generates diagrams by default, making responses faster and more responsive. You can still request diagrams anytime by including "draw a diagram" or similar in your query.
Hid implementations and supers buttons in the explore panel when using search-based code navigation, as these features are only supported by precise code intelligence.
Removed automatic PostgreSQL 12 to PostgreSQL 16 upgrade support from builtin Sourcegraph database containers (pgsql, codeintel-db, and codeinsights-db).
Removed support for generation 1 Gemini models (no longer accessible) and Mistral models (no longer deployed on Fireworks serverless).
Deprecated observability.tracing.type: "jaeger"; use "opentelemetry" with an OTLP-compatible collector instead
Remove autoupgrade supporting functions and methods
Removed feature flag UI access for non-Sourcegraph operators in Cloud environments.
Removed the single-container (sourcegraph/server) deployment mode. The sourcegraph/server Docker image is no longer published. Customers must migrate to Docker Compose or Kubernetes before upgrading to 7.0.0.
Search Notebooks pick up on the idea that most searches are not just one search. In a common workflow, you run multiple searches, gather several pieces of information, and then you compile your final answer from all these sources. Back in 2022, Notebooks solved a real need to be able to document and share that research trail.
Sound familiar? Notebooks are reflecting the steps a Deep Search takes to compile it's answer. It collects citations and the answer in a central place. We believe that the future lies much more in this agent-driven code exploration and future iterations of it than the manual Notebooks idea that predates the AI era.
Removed explicit code ownership assignment and teams management from the web app. Codeowners files are still processed and this information is still available via search and the ownership panel.
Migrated the search-content-based-lang-detection feature flag to the searchContentBasedLanguageDetection site configuration setting. Customers who previously had the flag enabled and would like to continue using this feature should enable it in their site configuration settings.
/api/openapi/ pages, home to the Cody API, have been moved to /legacy/openapi/. Existing links are redirected./external-api./api/console/ to /debug/console/ to reflect its role as an internal API. Existing links are redirected./external-api.Upgrade opentelemetry-collector to v0.144.0.