Skip to main content

Nextflow 26.07.0-edge

Feature updates and improvements

Language features

  • Added a Semantics reference page to the docs by @bentsherman in #7271

Configuration

  • Added the docker.cpuLimits config option by @bentsherman in #7289
  • Added the seqera.executor.providerConfig option by @pditommaso in #7335

Google Batch

  • Added a docs note about IAM roles for google.batch.serviceAccountEmail by @bentsherman in #7291

Plugins

  • Sent pipeline-secret references to the Seqera Scheduler from nf-seqera by @pditommaso in #7314
  • Skipped nf-tower when superseded by nf-seqera by @jorgee in #7283
  • Reverted "Consolidate nf-tower plugin into nf-seqera (#7252)" by @pditommaso in da5afcfe9
  • Reverted "Skip nf-tower when superseded by nf-seqera (#7283)" by @pditommaso in c5dec3b4e

General

  • Added a graceful fallback for the array directive with unsupported executors by @bentsherman in #7296
  • Added two Indian scientists to NameGenerator by @deepmind11 in #7079
  • Clarified Bitbucket API token auth requirements in the docs by @pditommaso in #7279
  • Clarified the override behavior of the resourceLabels directive in the docs by @bentsherman in #7287
  • Dropped the dead oss.sonatype.org repository by @pditommaso in #7282
  • Showed the absolute path in the missing main script error by @bentsherman in #7286
  • Used the scheduler API exit code, falling back to the .exitcode file by @jordeu in #7273

Dependencies

  • Bumped jackson 2.21.1 to 2.21.4 to fix high-severity CVEs by @pditommaso in #7274
  • Bumped jackson-databind to patched versions to fix deserialization CVEs by @jorgee in #7322
  • Replaced the discontinued bcprov-ext with bcprov-jdk18on 1.84 to fix CVE-2025-14813 by @pditommaso in #7284
  • Used the wiremock self-contained distribution to drop vulnerable handlebars by @pditommaso in #7275
  • Pinned Docusaurus dependencies by @seqeralabs-renovate in #7324
  • Updated the actions/checkout action to v6.0.3 by @seqeralabs-renovate in #7325
  • Updated the anthropics/claude-code-action action to v1.0.168 by @seqeralabs-renovate in #7326
  • Updated ch.qos.logback:logback-classic to v1.5.37 by @seqeralabs-renovate in #7327
  • Updated ch.qos.logback:logback-core to v1.5.35 (security) by @seqeralabs-renovate in #7297
  • Updated com.azure:azure-compute-batch to v1.0.0-beta.6 by @seqeralabs-renovate in #7128
  • Bumped nf-amazon@3.10.1
  • Bumped nf-azure@1.23.1
  • Bumped nf-google@1.27.4
  • Bumped nf-k8s@1.5.5
  • Bumped nf-seqera@0.23.0
  • Bumped nf-tower@1.29.1
  • Bumped nf-wave@1.21.1

Bug fixes

Language features

  • Fixed error checking in workflow emits by @bentsherman in #7058
  • Fixed path input for exec processes by @bentsherman in #7272

Configuration

  • Excluded null config environment entries from the task environment by @bentsherman in #7294

AWS Batch

  • Fixed containerOptions --opt=value parsing for AWS Batch by @bentsherman in #7288
  • Rounded up CPUs to the nearest valid value for AWS Batch Fargate by @bentsherman in #7295

Azure

  • Tolerated stale or transient resize errors on autoscale Azure Batch pools by @jorgee in #7312

Fusion

  • Keyed the Fusion license token cache by product and version by @robsyme in #7320

General

  • Fixed a high-severity form-data CRLF injection in the docs site by @pditommaso in #7276
  • Fixed a Kryo deserialization error with enum types by @bentsherman in #7277
  • Fixed URL percent-encoding lost on resume for HTTP/FTP paths by @bentsherman in #7333
  • Force-created staged input symlinks to allow task re-runs by @bentsherman in #7285

Full changelog: https://github.com/nextflow-io/nextflow/releases/tag/v26.07.0-edge