v0.12.2

[0.12.2] - 2025-05-27

If you are upgrading from v0.11.x, this version includes breaking changes to the database layout and requires a migration. Please read the UPGRADING.md file for more information on how to upgrade from previous versions.

Added

• CardDAV: Legacy vCard 2.1 and 3.0 serialization support.
• WebDAV: Add SRV Records to help DAV autodiscovery (closes #1565).

Changed

Fixed

• Report list attempts to deserialize empty values (#1562)
• Refresh expired FoundationDB transactions while retrieving large blobs (#1555).

---

Check binary attestation at here

v0.12.1

[0.12.1] - 2025-05-26

If you are upgrading from v0.11.x, this version includes breaking changes to the database layout and requires a migration. Please read the UPGRADING.md file for more information on how to upgrade from previous versions.

Added

Changed

Fixed

• Migration tool to generate the correct next id (#1561).
• Failed to parse setting dav.lock.max-timeout (closes #1559).
• Failed to build OpenTelemetry span exporter: no http client specified (#1571).

---

Check binary attestation at here

v0.12.0

[0.12.0] - 2025-05-26

This version includes breaking changes to the database layout and requires a migration. Please read the UPGRADING.md file for more information on how to upgrade from previous versions.

Added

• Collaboration features including Calendars over CalDAV, Contacts over CardDAV and File Storage over WebDAV.
• Peer-to-peer cluster coordination or with Apache Kafka, Redpanda, NATS or Redis.
• Incremental caching of emails, calendars, contacts and file metadata.
• Zero-copy deserialization.
• Train spam messages as ham when the sender is in the user's address book.
• XOAUTH2 SASL mechanism support (#1194 #1369).
• Support for RFC9698, the JMAPACCESS Extension for IMAP.
• Search index for accounts and other principals (#1368).
• Add description property to OIDC ID token (#1234).

Changed

• Deprecated gossip protocol in favor of the new coordinator options.
• Renamed Git repository from stalwartlabs/mail-server to stalwartlabs/stalwart and the Docker image from stalwartlabs/mail-server to stalwartlabs/stalwart.
• Renamed multiple settings:
  • server.http.* to http.*.
  • jmap.folders.* to email.folders.*.
  • jmap.account.purge.frequency to account.purge.frequency.
  • jmap.email.auto-expunge to email.auto-expunge.
  • jmap.protocol.changes.max-history to changes.max-history.
  • storage.encryption.* to email.encryption.*.
• Deprecated lookup.default.* settings in favor of server.hostname and report.domain. v0.11 and before supported both, v0.12 will only support the new settings.

Fixed

• Allow undiscovered UIDs to be used in IMAP COPY/MOVE operations (#1201).
• Refuse loopback SMTP delivery (#1377).
• Hide the current server version (#1435).
• Use the newest X-Spam-Status Header (#1308).
• MySQL Driver error: Transactions couldn't be nested (#1271).
• Spawn a delivery thread for EmailSubmission/set requests (#1540).
• ACME: Don't restrict challenge types (#1522).
• Autoconfig: return %EMAILADDRESS% if no e-mail address is provided (#1537).

---

Check binary attestation at here

v0.11.8

[0.11.8] - 2025-04-30

To upgrade replace the stalwart-mail binary and then upgrade to the latest web-admin.

Added

Changed

Fixed

• Allow undiscovered UIDs to be used in COPY/MOVE operations (#1201).

---

Check binary attestation at here

v0.11.7

[0.11.7] - 2025-03-24

To upgrade replace the stalwart-mail binary and then upgrade to the latest web-admin.

Added

• LDAP attribute to indicate password change (#1156).

Changed

• Lazy DKIM key parsing (#1211).
• Enable edns0 for system resolver by default (#1282).
• Bump FoundationDB to 7.3.

Fixed

• Fix incorrect UIDNEXT when mailbox is empty (#1201).
• Sender variable not set when evaluating must-match-sender (#1294).
• Do not panic when mailboxId is not found (#1293).
• Prioritize local over span keys when serializing webhook payloads (#1250).
• Allow TLS name mismatch as per RFC7671 Section 5.1.
• Try with implicit MX when no MX records are found.
• SQL secrets directory query.

---

Check binary attestation at here

v0.11.5

[0.11.5] - 2025-02-01

To upgrade replace the stalwart-mail binary and then upgrade to the latest web-admin.

Added

Changed

• Open source third party OIDC support.

Fixed

• Case insensitive flag parsing (#1138).
• BCC not removed from JMAP EmailSubmissions (#618).
• Group pipelined IMAP FETCH and STATUS operations (#1096).

---

Check binary attestation at here

v0.11.4

[0.11.4] - 2025-01-29

To upgrade replace the stalwart-mail binary and then upgrade to the latest web-admin.

Added

• RFC 9208 - IMAP QUOTA Extension (#484).

Changed

• session.throttle.* is now queue.limiter.inbound.*.
• queue.throttle.* is now queue.limiter.outbound.*.
• Changed DNSBL error level to debug (#1107).

Fixed

• Creating a mailbox in a shared folder results in wrong hierarchy (#1128).
• IMAP LIST-STATUS (RFC 5819) returns items in wrong order (#1129).
• Avoid non-RFC SMTP status codes (#1109).
• Do not DNSBL check invalid domains (#1107).
• Sieve message flag parser (#1059).
• Sieve script import case insensitivity (#962).
• mailto: parsing in HTMLs.

v0.11.3

Same as 0.11.2, fixes a build issue with Docker images.

v0.11.2

[0.11.2] - 2025-01-17

To upgrade replace the stalwart-mail binary and then upgrade to the latest web-admin.

Added

• Automatic revoking of access tokens when secrets, permissions, ACLs or group memberships change (#649).
• Increased concurrency for local message delivery (configurable via queue.threads.local).
• Cluster node roles.
• config_get expression function.

Changed

• queue.outbound.concurrency is now queue.threads.remote.
• lookup.default.hostname is now server.hostname.
• lookup.default.domain is now report.domain.

Fixed

• Distributed locking issues in non-Redis stores (#1066).
• S3 incorrect backoff wait time after failures.
• Panic parsing broken HTMLs.
• Update CLI response serializer to v0.11.x (#1082).
• Histogram bucket counts (#1079).
• Do not rate limit trusted IPs (#1078).
• Avoid double encrypting PGP parts encoded as plain text (#1083).
• Return empty SASL challenge rather than "" (#1064).

v0.11.1

[0.11.0] - 2025-01-06

This version includes breaking changes to the configuration file, please read UPGRADING.md for details.
To upgrade replace the stalwart-mail binary and then upgrade to the latest web-admin.

Added

• Spam filter rewritten in Rust for a significant performance improvement.
• Multiple spam filter improvements (#947) such as training spam/ham when moving between inbox and spam folders (#819).
• Improved distributed locking and handling of large distributed SMTP queues.
• ASN and GeoIP lookups.
• Bulk operations REST endpoints (#925).
• Faster S3-FIFO caching.
• Support adding the Delivered-To header (#916).
• Semver compatibility checks when upgrading (#844).
• Sharded In-Memory Store.

Changed

• Removed authentication rate limit (no longer necessary since there is fail2ban).
• Pipes have been deprecated in favor of MTA hooks.

Fixed

• OpenPGP EOF error (#1024).
• Convert emails obtained from external directories to lowercase (#1004).
• LDAP: Support both name and email fields to be mapped to the same attribute.
• Admin role can't be assigned if an acccount with the same name exists.
• Fix macro detection in DNS record generation (#978).
• Use host FQDN in install script (#1003).