v1.3.0

v1.3.0 - 2026-05-04

⛰️ Features

• (application) Add OTHER as valid tissue value in GUI metadata grid (#522) - (15a6063)
• (platform) Add organization parameter to OAuth authorization redirect (#550) - (321d4de)
• (platform) Add organization parameter to OAuth authorization redirect - (321d4de)
• (platform) Add 'for_organization' to list all runs of an org (#510) - (3f06055)
• (utils, platform) Add DEGRADED state to Health model - (21e95ba)
• Oliver Meyer 42039965+olivermeyer@users.noreply.github.com - (321d4de)
• Claude Sonnet 4.6 noreply@anthropic.com - (15a6063)
• Make BaseService methods async (#474) - (84c826a)

🐛 Bug Fixes

• (application) Sort query results by submitted_at before limit - (a2480ed)
• (ci) Fix publish-release workflow - (a97ccb9)
• (ci) Pin HETA version in E2E test - (d124c17)
• (ci) Include v prefix in release_version output for Ketryx - (6d7720f)
• (ci) Replace \d with [0-9] in semver validation grep pattern - (62aa11f)
• (ci) Prevent PYTHONHOME from leaking into nox sub-sessions on Windows - (adb1fa0)
• (deps) Update dependency packaging to v26 - (6f1df69)
• (deps) Update minor and patch dependencies - (d1f565e)
• (system) Replace uptime with psutil - (346a9f6)
• Claude Sonnet 4.6 noreply@anthropic.com - (6d7720f)
• Claude Opus 4.6 noreply@anthropic.com - (adb1fa0)
• Use renovate vulnerabiltyAlerts (#549) - (3a77e30)
• Update requests dependency to 2.33.0 for CVE-2026-25645 compliance (#511) - (8ad550d)
• Add CVE-2026-4539 to the list of ignored vulnerabilities in noxfile (#508) - (1e2e0a5)
• Prevent microsecond drift when offsets are equal in e2e test (#504) - (e59a5db)
• Prevent microsecond drift when offsets are equal in e2e test - (e59a5db)
• System health exits with 0 when degraded - (d24c285)

🚜 Refactor

• (tests) Extract submitted_run context manager - (8cf4c1d)

📚 Documentation

• (spec) Document organization parameter in platform service specification - (321d4de)
• (specs) Document scheduling support in SPEC-APPLICATION-SERVICE - (299f66b)
• (specs) Update specs for for_organization list flag - (ad8b55c)
• Claude Sonnet 4.6 (1M context) noreply@anthropic.com - (299f66b)
• Claude Sonnet 4.6 noreply@anthropic.com - (ad8b55c)
• Link risks to SHRs - (69740ad)
• Remove dates from specs - (027657b)
• Remove README alpha note and run make docs - (deef45a)

⚡ Performance

• (application) Replace like_regex with == for tag filtering (#516) - (aacb20a)
• (application) Replace like_regex with == for tag filtering in application_runs - (aacb20a)
• Claude Opus 4.6 (1M context) noreply@anthropic.com - (aacb20a)

🧪 Testing

• Increase deadline for flaky tests - (fa90a99)
• Run heavy test on ubuntu-latest only - (01e1ec2)
• Split health CLI format tests from live platform monitoring - (1360d9a)
• Claude Sonnet 4.6 noreply@anthropic.com - (1360d9a)
• Increase timeout for test_cli_run_submit_succeeds_when_system_degraded_and_no_force - (f2fb6d1)
• Limit list operation in CLI test - (e4dfc98)

⚙️ Miscellaneous Tasks

• (OP-2780) Pin GitHub Actions to commit SHA - (48015bc)
• (deps) Upgrade pip to 26.1 - (a86898b)
• (deps) Bump nbconvert from 7.17.0 to 7.17.1 (#553) - (b75aaf2)
• (deps) Bump python-dotenv from 1.2.1 to 1.2.2 (#554) - (0b5a4c4)
• (deps) Bump authlib from 1.6.9 to 1.6.11 (#544) - (5fd0054)
• (deps) Bump python-multipart from 0.0.22 to 0.0.26 (#543) - (eeffb59)
• (deps) Bump cryptography from 46.0.6 to 46.0.7 - (2aa57c7)
• (deps) Update github actions - (a9aa0f9)
• (deps) Bump pygments from 2.19.2 to 2.20.0 - (b54f245)
• (deps) Bump cryptography from 46.0.5 to 46.0.6 - (7950c3f)
• (deps) Update anthropics/claude-code-action action to v1.0.77 (#503) - (dc400d1)
• (deps) Bump pydicom from 3.0.1 to 3.0.2 (#502) - (cec28b1)
• (deps) Bump ujson from 5.11.0 to 5.12.0 - (c2fb241)
• (deps) Bump pyasn1 from 0.6.2 to 0.6.3 (#490) - (fe0ca62)
• (deps) Bump orjson from 3.11.5 to 3.11.6 - (3f583ca)
• (deps) Bump pyjwt from 2.10.1 to 2.12.0 - (3638ebc)
• (deps) Bump tornado from 6.5.2 to 6.5.5 - (f72a15b)
• Update changelog for v1.3.0 - (743f3bd)
• Auto-enable very_long_running tests on release branch pushes - (b0eefcc)
• Claude Sonnet 4.6 noreply@anthropic.com - (b0eefcc)
• Run CI/CD for PRs targeting release/v* branches - (2eb340f)
• Pass release version to ketryx on release/v* branches - (50ffbc4)
• Add concurrency to release workflows - (a2fd65f)
• Update release strategy - (c06bf1d)
• Nbconvert - (b75aaf2)
• Dependabot[bot] support@github.com - (b75aaf2)
• Dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> - (b75aaf2)
• Python-dotenv - (0b5a4c4)
• Authlib - (5fd0054)
• Python-multipart - (eeffb59)
• Update CODEOWNERS (#501) - (e1b914f)
• Moritz Krügener kruegener@users.noreply.github.com - (e1b914f)
• Cryptography - (2aa57c7)
• Pygments - (b54f245)
• Bump Python to 3.14.3 - (442c2a8)
• Update .python-version to 3.14.2 - (aacb20a)
• Use SAMIA run artifact file endpoint to download artifacts (#507) - (d552c89)
• Update renovate schedule - (ba74ebe)
• Renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> - (dc400d1)
• Pydicom - (cec28b1)
• Use scheduling payload when creating runs - (8f4445b)
• Bump FastMCP to v3.x and make the necessary changes to support it (#425) - (2509265)
• Oliver Meyer 42039965+olivermeyer@users.noreply.github.com - (2509265)
• Run SonarCloud analysis immediately on PRs - (d2b4f88)
• Update test suite name when reporting failures - (e409213)
• Ujson - (647f75b)
• Run all tests even on failure in previous steps (#481) - (485f86f)
• Pyasn1 - (fe0ca62)
• Update Renovate and Dependabot config (#467) - (4a1ef54)
• Point CICD badge to main branch (#480) - (e523bce)
• Orjson - (889dab7)
• Pyjwt - (aac87a3)
• Tornado - (2413fa6)

🛡️ Security

• (deps) Update dependency lxml to v6.1.0 [security] (#556) - (12ec0c7)
• (deps) Update dependency uv to v0.11.6 [security] - (32daf66)
• (deps) Update dependency pytest to v9.0.3 [security] - (269f072)
• (deps) Update dependency pillow to v12.2.0 [security] - (a510df1)
• (deps) Update dependency marimo to v0.23.0 [security] - (1b1b4b6)
• (deps) Update dependency aiohttp to v3.13.4 [security] - (61d3472)
• (deps) Update dependency fastmcp to v3.2.0 [security] - (a9bccae)
• (deps) Update dependency nicegui to v3.9.0 [security] - (65d553f)
• (security) Prevent script and commit-message injections (#512) - (24737e0)
• Renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> - (12ec0c7)
• Claude Sonnet 4.6 noreply@anthropic.com - (24737e0)
• Merge pull request #498 from aignostics/renovate/pypi-nicegui-vulnerability - (65d553f)

Build

• Decrease renovate noise (#529) - (d4e2f75)

• @aignostics-release-bot[bot] made their first contribution
• @aig-hannes made their first contribution in #549
• @zonorti made their first contribution in #515
• @marmarciniak95 made their first contribution in #511