Table of contents
Official Content
  • This documentation is valid for:

Version 2025-11 was officially released on December 1, 2025, and includes additional updates delivered through Hot Fix 1 up to Hot Fix 6 (December 12, 2025 to February 9, 2026).

Below are the most important fixes and features introduced in this version and its Hot Fixes.

Version: 2025-11 Hot Fix 6 (February 9, 2026)

  • Security
    • Security updates and improvements to the infrastructure components.

Version: 2025-11 Hot Fix 5 (February 5, 2026)

  • LLM
    • Enhances observability in LLMServer by improving OpenTelemetry support and ensuring proper integration with AWS X-Ray traces, enabling better troubleshooting and traceability for GEAI workloads.
    • Fixes error handling and parameter usage for Vertex AI and Anthropic (via LiteLLM) so that tool‑use and thinking blocks are handled correctly and meaningful error messages are exposed to users, avoiding opaque or partial error outputs in Kilo.
    • Resolves compatibility issues with AWS Bedrock by dropping unsupported parallel_tool_calls parameters when required, preventing LiteLLM UnsupportedParamsError failures in clients like Cline and Kilo.
  • Security
    • Addresses security findings on the LiteLLM package by updating dependencies and configurations, reducing known vulnerabilities and aligning the GEAI LLMServer with current security recommendations.

Version: 2025-11 Hot Fix 4 (January 14, 2026)

  • API
    • New Access Control API endpoint to invite users to Projects by email and assign one or more roles.
      • Sends an invitation and grants access only after acceptance, returning appropriate errors for invalid, mismatched, or insufficient authorization, and conflicts for pending/confirmed members.
  • Tools/Agents
    • New Python SDK - PyGEAI to invite users to Projects using the Access Control API.
      • Supports single and batch invitations (CSV), roles by name or GUID, and correct OAuth invitation ownership.
      • Allows customizing the frontend URL used in invitation emails and returns precise error codes for authorization and conflict scenarios.
  • Console
    • Improved localization with complete Spanish coverage across all labels, menus, dialogs, notifications, and system messages.
    • Improved language settings by migrating available/default languages and user preferences to ISO 639-1 codes.
  • Workspace
    • Fixed cloud-agnostic file access by resolving signed URLs through File API instead of public storage URLs, ensuring images render and files download across S3 and Azure Blob.
    • Fixed signed URL generation for RAG message attachments by using relative file paths consistent with regular files.
  • Lab
    • Fixed duplicated variable substitution in Agents' prompts that produced repeated values in completion-api messages.
      • Variable name standardization no longer causes duplication when variables are supplied via chat-api without a user message.
  • Security
    • Security Fixed missing security headers across Console, Station, and related frontend services.
    • Security Restricted HTTP methods to only those required.

Version: 2025-11 Hot Fix 3 (January 5, 2026)

  • The Globant Enterprise AI Link Menu now shows only modules with configured URLs in The Lab, Workspace, and The Station, so you get a consistent header experience across products. URLs are loaded from the UIConfiguration service. Options without a URL are hidden.
  • The Workspace correctly loads UI customizations when using INSTALLATION_CONFIG_PROVIDER=geai.

Version: 2025-11 Hot Fix 2 (December 23, 2025)

  • Flows
    • Improved single sign-on to use custom IdPs and custom subdomains, enabling secure access to Flows.
      • Configured the organization UIConfiguration parameter to reference the client IdP for Flows.
      • Set up a dedicated OpenID Connect IdP in Keycloak and mapped roles and session attributes.
      • Ensured the GAM application includes the OpenID scope.
    • Improved diagnostics to enable optional endpoint interaction logging and clearer execution logs in the Flows Editor.
      • Set DEBUG_FLOWS_API=1 to increase request and response verbosity.
      • Set FLOWS_FORCE_SYNC_EXECUTION=1 to force synchronous execution for tenant API interactions when needed.
    • Fixed error handling to prevent error messages from being sent to end users when Handle error is enabled in an Agent.
    • Fixed missing items in the Flows Editor console panel so complete execution logs are displayed.
  • Console
    • Improved single sign-on to allow the use of custom IdPs and custom subdomains across the Console.
      • Updated the organization UIConfiguration parameter to ensure SSO works with client IdPs and branded URLs.
      • Ensured the FluentLab GAM module includes the OpenID scope by default for new environments.
    • Fixed quota tracking to ensure the correct number of active sessions is shown when contexts are deleted.
    • Fixed Control Panel taxonomy migrations so they can be run again from the Console.
  • LLMs
    • Fixed OpenAI rate limit disruptions to reduce 429 errors by enabling provider fallback for SaaS usage.
  • Security
    • Fixed sensitive OAuth token exposure on logout to reduce token data recorded in logs.
    • Fixed a denial-of-service risk in Scrapy, ensuring protection against decompression-based DoS attacks.
    • Fixed information disclosure in AI error responses to avoid exposing system details, returning generic messages instead.

Version: 2025-11 Hot Fix 1 (December 12, 2025)

  • API
    • Fixed GetPlugins Agent listing limits. Allows retrieving all Agents from GetPlugins even when a project has more than 100 Agents.
      • Internal pagination was implemented transparently, and increasing page size as a workaround is no longer required.
  • Console
    • Fixed Organization Settings access control: Ensures that Organization Settings are visible only if you have an Organization role for that organization.
      • Being a Project member or Project administrator in another organization no longer grants access to that organization’s settings.
    • Fixed 403 errors behind OWASP‑protected NGINX at EY: Prevents receiving "403 Forbidden" errors when confirming TRNs or executing Console actions that send large payloads.
      • Reduced POST payload size by avoiding full posts, removing unnecessary control properties, and preventing the WorkWithPlus menu SDT from bloating requests to over 1,000 parameters.
  • RAG
    • Improved ingestion stability on Azure with container‑aware memory settings. Allows ingesting large media files (e.g., MP4) and documents more reliably without OutOfMemoryError.
      • Standardized JVM memory parameters (MaxRAM and MaxRAMPercentage) to match IaC settings, and applied the container‑aware memory fix validated on AWS to Azure.
    • Fixed "File rejected" errors for .doc/.docx uploads in console.saia. Enables uploading Word documents to RAG from console.saia without rejection errors.
      • MIME type validation and ingestion pipeline handling are aligned with the corporate environment.
    • Fixed stuck bulk uploads and blocked new uploads after interruptions. Ensures uploads can be restarted and new files queued without encountering messages such as "Requests are currently being processed …%" or "File rejected."
      • Interrupted batch tasks are now identified and canceled, and pending queue items are cleared to unblock new requests.
  • Security
    • Fixed vulnerabilities in GEAIRAG container images: Allows benefiting from updated base images and dependency patches identified by container scans.
      • Changes are available in environments built from 20251201 onward.

Version: 2025-11 (December 1, 2025)

  • Data Analyst Assistant is deprecated.
  • Flows
    • New partial-result streaming so you can receive progress updates while a Flow executes across Slack and Teams. A streaming API is also exposed for programmatic consumption.
    • Improved Flow creation by enabling “Create from import” in The Lab.
    • Fixed a blank page when opening the bot builder from The Lab.
  • Tools/Agents
    • New “Test” button on each Agent card in The Lab so you can open a chat with that Agent without entering edit mode.
    • Improved Agent import to automatically select the first available model in your environment from the template’s list, avoiding multiple fallbacks and UI mismatches.
    • Improved Agent configuration to enable file uploads only when the chosen model supports it, showing supported extensions, categories, and size limits in context.
    • Fixed an authentication error that returned an empty list when using the retrieve_tools Tool from Iris.
    • Fixed Agent imports that referenced existing private Agents, reusing them instead of failing or duplicating.
    • Fixed error tracking in the new “Test” chat so the trace ID displays correctly.
    • Fixed chat history not rendering in the “Run Test” panel and ensured messages persist on reload.
    • Fixed the “More options” menu on the last row of the dashboard so you can access all actions.
  • API
    • New OpenAI-compatible endpoint chat/completions so you can plug in Xcode and other standard clients without changes.
    • New images/edits endpoint in Image API (v1/images/edits) for image editing with OpenAI models.
    • New video generation endpoint for Vertex AI Veo 2 so you can request text-to-video generation via the API.
    • New Parameters API so you can retrieve Globant Enterprise AI configuration programmatically from The Lab and Station.
    • Improved APIM integrations by forwarding the JWT and injecting Ocp-Apim-Subscription-Key when the provider “flow” flag is enabled.
    • Improved stability by enforcing a 60-second max execution time at the MySQL driver level to abort long-running queries automatically.
    • Fixed S3 uploads in “bucket owner enforced” mode by removing PutObjectAcl calls that caused 403 AccessDenied.
  • RAG
    • New S3Vectors vector store support so you can create, delete, and query indexes programmatically, with automatic index creation and required IAM permissions applied.
    • New observability by propagating the X-Saia-Trace-Id header through RAG requests so you can correlate traces across services.
    • Improved telemetry by fixing OpenTelemetry traces that did not appear in AWS X-Ray.
    • Fixed a non-deterministic deadlock when deleting documents by adjusting the persistence strategy.
    • Fixed an error with gpt-5-nano in Assistants by removing the n:1 default in LLMs templates and issuing a new module revision.
    • Improvements are made to the omni-parser, which speeds up processing. 
  • LLMs
    • New Anthropic models.
      • Haiku 4.5-20251001
      • Claude-opus-4-5-20251101
      • Claude-opus-4-5-20251101-v1:0
    • New AWS Bedrock models.
      • awsbedrock/openai.gpt-oss-120b-1:0
      • awsbedrock/openai.gpt-oss-20b-1:0
      • awsbedrock/haiku 4.5-20251001
    • New Open AI models.
      • gpt-image-1-mini
      • gpt-5-chat-latest
      • gpt-5-codex
      • gpt-5-pro
      • gpt-5.1
      • gpt-5.1-codex
      • gpt-5.1-codex-min
    • New Open Router model.
      • moonshotai-kimi-k2-thinking
    • New Vertex AI models.
      • claude-opus-4-5-20251101
      • gemini-3-pro-image-preview
      • gemini-2.5-flash-image (Nano banana)
      • openai-gpt-oss-120b-maas
      • openai-gpt-oss-20b-maas
    • New xAI models.
      • grok-4-1-fast-reasoning
      • grok-4-fast-reasoning
    • Improved OpenAI routing by migrating chatgpt-4o-latest to gpt-4.1 with a safe fallback so you get function calling support.
    • Fixed codex-mini requests by dropping the unsupported parameter stream_options.include_usage.
    • Fixed GPT-5 requests by ignoring the unsupported reasoning_effort parameter when sent.
  • Lab
    • Improved Agents file upload configuration so you can enable uploads when supported by the model, with clear limits and supported types. The checkbox visibility in Agent detail was fixed.
    • Improved the Agentic Processes engine with throw/catch handling in intermediate events.
    • Fixed multiple input files being overwritten during process start or intermediate events so each file is preserved and processed correctly.
    • Fixed 502 errors when listing Jobs in environments with large datasets.
  • Station: Discover and Scale AI Across the Organization
    • The Station is the new Globant Enterprise AI interface designed for consumers to easily explore, adopt, and execute AI solutions. Serving as the centralized entry point for company-wide AI enablement, it empowers end consumers to discover and interact with Agents.
    • This first release includes:
      • Search, filter, and discovery of available AI solutions
      • Detailed solution pages to understand capabilities and use cases
      • Solution sharing via public links
      • Redirection to Workspace for execution
      • Ratings and reviews to gather user feedback
      • Help and contact support options to ensure user success
      • Tenant-isolated SaaS deployment option for Station, provisioned in a client’s cloud or on-prem environment, with IdP integration (Azure AD/Entra, Okta, SAML/OIDC) and in-tenant admin moderation for approvals.
      • AI Pods client environments in Station, configurable per client organization, including IdP setup and an administrator role to moderate and publish only approved solutions.
    • Global Navigation header so you can switch suite (Station, Lab, Console, Workspace), Organization, and Project from the top bar. The header uses geai-ui-library, includes role-aware modals, and routes to modules via dynamic, environment-aware URLs.
    • New shareable links for the Solutions Gallery so you can share the current search, filters, and ordering.
    • New taxonomy model support across Station and Admin so you can manage org-scoped taxonomies with translations and use them in filters, publish flow, and solution details.
      • CRUD endpoints with translation support and org scoping.
      • Middleware normalization (caption + stable taxonomyKey) and recursive item handling.
      • Optional embeddings for taxonomies so semantic search can include taxonomy context.
    • Improved Publish to Station flow so you can select org-specific taxonomies dynamically in Step 3, with clearer notifications and a refined modal. The Subscription button is hidden to avoid confusion.
    • Improved execution and sharing controls so you can set chat sharing and external execution permissions per Agent.
      • The UI enforces the maximum scope configured by your organization.
      • Confidential solutions disable the Run button and show a contextual tooltip; cross-project execution respects project-only permissions.
    • Improved Admin experience so you can sort the Solutions list and see only the current project’s data, with new roles replacing the legacy AIStationAdministrator:
      • StationOrganizationAdministrator — org-wide moderation.
      • StationProjectAdministrator — project-scoped moderation.
    • Improved search usability with inline warnings for fewer than 3 characters and unsupported special characters, and a clearer “Explore Solutions” CTA on empty results. The Share button now appears when searching.
    • Improved UI polish to match design specs:
      • Fixed filter reset/clear/apply buttons and handling of items without children.
      • Fixed taxonomy display in shared links when the target org lacks those items.
      • Updated filter icon, spacing between title and subtitle, avatar size (88x88), font weights, and Arabic sidebar width.
      • Enabled Japanese in the language selector.
    • Fixed guided walkthrough issues: corrected tooltip order, alignment with the Run button, persistent overlays, and reappearance on org changes.
  • Console
    • New API dimension in Dashboards so you can analyze Cost, Tokens, and Requests by API Token and model, with date filters and usage KPIs. Usage details now include User and API Token dimensions. More information: API Dashboard
    • Improved Organization Settings with a redesigned General Settings card so you can control “Publish to Station” and “Share conversations,” including a maximum execution scope and org-wide warnings.
    • Improved labeling by renaming “Assistant” to “Agent” across Dashboards.
    • Fixed Reasoning Strategy creation so you can create strategies and see network activity as expected.
    • Fixed document indexing to RAG Assistants that timed out at /upsertDoc.
    • Fixed legacy objects by removing the deprecated PlaygroundChatbotWeb.
  • Workspace
    • New paste-from-clipboard support so you can paste screenshots directly into chat.
    • New drag & drop support so you can drop files into chat when the selected model supports uploads.
    • New inline safety warning in Legacy Workspace so you see a non-blocking alert when files or external links appear in chat.
    • New Global Navigation header aligned with the suite-wide experience.
    • Fixed Japanese localization issues so item names do not overlap and chat titles can be edited in Kanji without saving after each character.
    • Fixed styling in the Workspace so the Consumer Information combo is visible.
    • Fixed permissions for creating anonymous conversation links so you can share when org policies allow it.
  • Security
    • The controls performed in the file upload process were improved.
    • Security fixed a critical jersey-client vulnerability by updating org.glassfish.jersey.core:jersey-client to a non-vulnerable version family.
    • Security addressed a High vulnerability in RAG (expr-eval CVE-2025-12735) by updating/mitigating the dependency.
    • Security reduced container attack surface for Console images by triaging and remediating Trivy findings.
    • Security migrated system notifications to AWS SES (no-reply-geai@globant.com) to comply with email security policies.
  • Deployment Guide
  • Components Version Update
Last update: 6 April 2026 by lmigone
Last update: December 2025 | © GeneXus. All rights reserved. GeneXus Powered by Globant