v5.53.0

v5.53.0 - 2026-04-24

Fixed

• When hiding measurement entities marked as fixed, false positive, or won't fix, preserve that setting when exporting the report as PDF. Fixes #12976.
• Fix alignment of the right footer column. Fixes #12997.

Added

• Make default values of subject names, metric names and units, and source names editable. Closes #3420.
• Don't insert line breaks between comparison operators (<= or >=) and target values to save space. Closes #4613.
• Keep track of the measurement entity sort column and direction per metric in the URL, so that the sort order is preserved when collapsing and re-expanding a metric and when exporting the report as PDF. Closes #6644.
• When copying or moving subjects, metrics, or sources, allow for filtering the dropdown lists. Closes #10689.
• Add a "today" button to the technical debt end date and the calendar source date pickers. Closes #10956.
• Add Grafana k6 summary.json reports as source for the 'tests' metric. Closes #11173.
• Allow for using Grafana k6 summary.json reports as source for the 'source up-to-dateness' metric. Closes #11174.
• Allow for using Grafana k6 summary.json reports as source for the 'source version' metric. Closes #11373.
• Add a link to the Quality-time wiki under "User documentation". Closes #11945.

Changed

• Use Material UI to display toast messages instead of the separate react-toastify package. Also make the messages appear bottom-right of the screen instead of top-right to prevent them from overlapping the menu bar. Closes #12996.

v5.53.0-rc.0

v5.52.0 - 2026-04-17

Fixed

• Deactivate the "set next date" button of calendar sources if the user is not logged in. Fixes #12955.

Added

• Add a 'manual version' source type for metrics that measure versions. Closes #12423.
• When measuring outdated dependencies with npm as source, allow for filtering major, minor, or patch updates. Closes #12441.
• When importing a report with credentials that are encrypted for another Quality-time instance, import the report without credentials and warn the user via a toast message that the credentials have been ignored. Closes #12904.

v5.52.0

v5.52.0 - 2026-04-17

Fixed

• Deactivate the "set next date" button of calendar sources if the user is not logged in. Fixes #12955.

Added

• Add a 'manual version' source type for metrics that measure versions. Closes #12423.
• When measuring outdated dependencies with npm as source, allow for filtering major, minor, or patch updates. Closes #12441.
• When importing a report with credentials that are encrypted for another Quality-time instance, import the report without credentials and warn the user via a toast message that the credentials have been ignored. Closes #12904.

v5.52.0-rc.0

v5.51.0 - 2026-04-10

Fixed

• Work around a GitLab GraphQL bug that made merge requests metrics fail with a connection error on GitLab 18.9 and later. Fixes #12696 and #12725.
• Don't attempt to send notifications to notification destinations without a webhook. Fixes #12906.

Added

• Document what data is preserved when copying or moving subjects, metrics, and sources. Closes #6337.
• Allow for exporting a report as JSON via the UI, using the "Export report" button in the report header. Note that measurements are not included. Closes #11907.
• Add a parameter to exclude idle time from GitLab pipeline duration. Closes #12127.
• When measuring violations with Axe-core, Axe HTML reporter or Axe CSV as source, allow for specifying regular expressions to remove variable parts of URLs. Closes #12881.

v5.51.0

v5.51.0 - 2026-04-10

Fixed

• Work around a GitLab GraphQL bug that made merge requests metrics fail with a connection error on GitLab 18.9 and later. Fixes #12696 and #12725.
• Don't attempt to send notifications to notification destinations without a webhook. Fixes #12906.

Added

• Document what data is preserved when copying or moving subjects, metrics, and sources. Closes #6337.
• Allow for exporting a report as JSON via the UI, using the "Export report" button in the report header. Note that measurements are not included. Closes #11907.
• Add a parameter to exclude idle time from GitLab pipeline duration. Closes #12127.
• When measuring violations with Axe-core, Axe HTML reporter or Axe CSV as source, allow for specifying regular expressions to remove variable parts of URLs. Closes #12881.

v5.51.0-rc.0

v5.50.1 - 2026-04-01

Fixed

• When measuring manual test execution with Jira as source, use the last update date of a manual test case as proxy for the last test date as long as the manual test case has no comments. Fixes #12417.
• Allow for configuring a regular expression to extract a valid version number from non-standard version strings reported by sources, for the software version metric. Fixes #12484.
• Suppress Trivy security warnings based on vulnerability ID, package name, and installed version instead of including the target, which can change between scans due to e.g. commit hashes. Fixes #12746.
• Remove unused subject description field from reports. Fixes #12799.
• If importing a report fails, show a toast message with the error. Fixes #12800.
• Update help URL for finding the id of a GitLab project. Fixes #12813.
• Allow for configuring a GitHub personal access token to prevent being rate limited by GitHub when checking for new source versions. Fixes #12853.
• When measuring user story points, issues, or average issue lead time with Jira as source, correctly parse the sprint name from the Jira sprint text field. Fixes #12884.

v5.50.1

v5.50.1 - 2026-04-01

Fixed

• When measuring manual test execution with Jira as source, use the last update date of a manual test case as proxy for the last test date as long as the manual test case has no comments. Fixes #12417.
• Allow for configuring a regular expression to extract a valid version number from non-standard version strings reported by sources, for the software version metric. Fixes #12484.
• Suppress Trivy security warnings based on vulnerability ID, package name, and installed version instead of including the target, which can change between scans due to e.g. commit hashes. Fixes #12746.
• Remove unused subject description field from reports. Fixes #12799.
• If importing a report fails, show a toast message with the error. Fixes #12800.
• Update help URL for finding the id of a GitLab project. Fixes #12813.
• Allow for configuring a GitHub personal access token to prevent being rate limited by GitHub when checking for new source versions. Fixes #12853.
• When measuring user story points, issues, or average issue lead time with Jira as source, correctly parse the sprint name from the Jira sprint text field. Fixes #12884.

v5.50.1-rc.0

v5.50.0 - 2026-03-27

Removed

• Remove support for Checkmarx SAST as source for metrics. Closes #12798.

Fixed

• Improve the documentation for the change failure rate metric. Fixes #10526.
• GitLab v18 does not mark zip files as zipped in the response headers, which Quality-time uses to detect zip files. Add a magic number check to detect zip files. Fixes #12735.
• Document how to use the public key of the destination Quality-time instance when exporting a quality report. Fixes #12801.
• The UI would crash when expanding a metric with accepted technical debt but no measurement value. Fixes #12824.

Deprecated

• Support for the Cobertura Jenkins plugin as source for metrics is deprecated and marked for removal in the future, because the plugin itself is end-of-life. Closes #12816.

Added

• When measuring the source version, show an info message if the newest available source version is newer than the used version. This only works for sources using GitHub releases. Closes #2923.
• Login submit button shows loading indicator while verifying credentials. Closes #12670.

v5.50.0

v5.50.0 - 2026-03-27

Removed

• Remove support for Checkmarx SAST as source for metrics. Closes #12798.

Fixed

• Improve the documentation for the change failure rate metric. Fixes #10526.
• GitLab v18 does not mark zip files as zipped in the response headers, which Quality-time uses to detect zip files. Add a magic number check to detect zip files. Fixes #12735.
• Document how to use the public key of the destination Quality-time instance when exporting a quality report. Fixes #12801.
• The UI would crash when expanding a metric with accepted technical debt but no measurement value. Fixes #12824.

Deprecated

• Support for the Cobertura Jenkins plugin as source for metrics is deprecated and marked for removal in the future, because the plugin itself is end-of-life. Closes #12816.

Added

• When measuring the source version, show an info message if the newest available source version is newer than the used version. This only works for sources using GitHub releases. Closes #2923.
• Login submit button shows loading indicator while verifying credentials. Closes #12670.

v5.50.0-rc.3

v5.49.0 - 2026-03-03

Fixed

• Fix retrieving all suppressed issues from SonarQube instead of only accepted, false positive, and sandboxed issues. Fixes #12707.

Added

• Add singular versions of the metric units to the data model and allow users to override both the singular and plural forms via the UI. Closes #550.
• Allow for ignoring draft merge requests when using GitLab. Closes #12327.