Changelog

All changelog posts

• May 7, 2026

  Account Security Upgrades: Passkeys, Smarter Client Trust, zxcvbn, Turnstile

  Sign in with a passkey, skip Client Trust when 2FA is on, get real password-strength scoring at signup, and run into bot challenges only when traffic looks suspicious.

  Author:

  Dima Grossman

  • Dashboard
  • Improvement

  Four account-security improvements ship together today: passkey login, Client Trust deferring to 2FA, zxcvbn-ts password scoring, and a smart CAPTCHA on sign-up.

  Existing sessions are unaffected.

  Passkey Login

  Passkeys are now a supported authentication method for Novu accounts.

  Sign up with email and password or SSO as usual, then add a passkey from Account settings → Security.

  Your platform authenticator (Touch ID, Windows Hello, a hardware security key or a password manager like 1Password or iCloud Keychain) handles the rest.

  On your next sign-in, pick Sign in with passkey.

  Passkeys are built on WebAuthn. The private key never leaves your device, so there's nothing phishable for an attacker to capture on our side.

  You can register up to 10 passkeys per account, and they stack alongside your password and 2FA. Passkeys are an additional method, not a replacement.

  Client Trust Now Defers to 2FA

  Client Trust is our defense against credential stuffing: when someone signs in with a valid password from a new device, we send a one-time code to their email or phone.

  The catch was that this fired even on accounts with 2FA already enabled. Signing in from a new laptop meant two prompts: enter your TOTP code, then approve the new device.

  That's now collapsed into the regular MFA flow.

  If you have 2FA configured (TOTP, SMS or backup codes), Client Trust skips automatically. Your second factor already covers the new device.

  If you don't have 2FA enabled, behavior is unchanged: new devices still require a verification code by email or phone.

  This only applies to password sign-ins. Passkeys, OAuth and email links bypass Client Trust entirely.

  If you've been meaning to turn on 2FA, this is the nudge.

  Stronger Password Feedback via zxcvbn

  Password strength at signup, change and reset is now scored with zxcvbn-ts, the OWASP-recommended library for measuring real password entropy rather than pattern-matching "8 characters, one number, one symbol."

  You'll see live strength feedback as you type, and a prompt when a password technically meets the basic rules but is still weak (Password1!, qwerty123, dictionary words with predictable substitutions).

  This sits on top of our existing NIST-based minimum requirements.

  Smarter Bot Protection on Sign-up

  Sign-up is where bots show up first.

  We've moved off the old invisible CAPTCHA and onto a smart variant that uses CDN-level signals to decide whether a sign-up attempt looks suspicious.

  If it does, the user gets a quick interactive challenge (typically a checkbox). If it doesn't, which is most of the time, the challenge stays out of the way.

  Less friction for real users, more for the scripted ones.

• Sept 8, 2025

  Analytics Dashboard

  The analytics dashboard gives you complete visibility into notification performance across all channels. Track delivery metrics, subscriber engagement, and workflow performance with visual charts and status updates. It also includes smart delivery lifecycle tracking that shows you the most important status for each notification.

  Author:

  George Djabarov

  • Dashboard
  • Analytics

  

  This dashboard allows you to monitor the effectiveness of your messaging strategy across all channels and optimize your workflows based on the gathered insights.

  

  Comprehensive Delivery Metrics

  Track the metrics that matter most to your notification strategy. Monitor total messages delivered across email, SMS, Chat, push, and in-app channels, and see your active subscriber growth.

  The current focus is on the inbox component and the ability to measure subscriber interactions, like:

  • Message seen

  • Message read

  • Message snoozed

  • Message archived

  The dashboard also automatically calculates your average messages per subscriber and shows period-over-period comparisons so you can spot trends immediately.

  Visual Trend Analysis

  Understand your messaging patterns with visual charts that break down delivery volumes by channel.

  See which workflows generate the most activity, track subscriber interaction trends over time, and identify your top-performing delivery providers at a glance.

  It is perfect for spotting seasonal patterns in user engagement or identifying which notification channels work best for different communication needs.

  Intelligent Delivery Lifecycle Status

  Every notification now has clear, real-time status tracking through our new delivery lifecycle system. Watch notifications progress from pending to sent, delivered, and interacted, with smart status prioritization that gives you the most relevant information.

  When a workflow runs across multiple channels, the system automatically shows the highest-priority status. So, if your email bounces but your push notification gets delivered, you'll see "Sent" status rather than getting lost in technical details.

  Flexible Time Period Analysis

  Analyze your performance over the time periods that matter to your business. Free plans include the last 24 hours and 7-day analysis, while upgraded plans unlock 30-day and 90-day historical insights for deeper strategic planning.

  Your analytics dashboard is available now in your workspace. The new status tracking system automatically benefits existing workflows, and historical data populates immediately for all active accounts.

  Coming next in analytics

  In the next few weeks, we will finalize some more important additions to the Analytics page:

  • Delivery provider activity: Connect your Email or push provider webhooks for bounces, clicks, open rates, etc., and visualize them in one central place.
  • Notification Lifecycle - Break down workflow runs by a unique notification lifecycle combined from all the workflow steps: Sent, Delivered, Engaged, Errored, Skipped

  Improvements (4)

  • You can now double-click on a step to navigate to the editor page immediately.
  • Test workflow drawer now remembers the latest selected subscriber and will use it for subsequent uses of the drawer.
  • You can now re-order steps in the workflow editor.
  • The Activity Feed shows the Severity and Criticality of the triggered workflow.

  Fixes (3)

  • 404 error when using the archiveAllRead method on the inbox component
  • Missing import error in @novu/react-native with a brand new Expo project
  • Error in the Custom Email editor when using liquid assign functions

• Sept 1, 2025

  Notification Severity

  Notification Severity lets you classify workflows as High, Medium, Low, or None importance. High/medium notifications get color-coded visual cues (red/orange), the bell icon changes color based on highest unread severity, and you can filter notifications by priority level in tabs. Available through dashboard settings, API, and template variables.

  Author:

  Paweł Tymczuk

  • Dashboard
  • <Inbox /> Components

  

  Note: Requires <Inbox /> version 3.9.1 or higher

  
  Prioritize user attention with notification classification that helps users quickly identify and respond to critical messages. Set severity levels for any workflow to ensure urgent communications get the immediate attention they deserve.

  Visual Priority Indicators

  Notifications now display with color-coded visual cues based on their importance level. High-severity notifications appear with a red accent, medium-severity with orange, and low-severity messages remain neutral.

  Your users can instantly spot critical alerts in their notification feed without reading every message.

  Smart Bell Icon Status

  The notification bell automatically adapts its color to reflect the highest priority unread message.

  When users have critical notifications waiting, the bell glows red to signal immediate attention is needed, even before they open their inbox.

  Flexible Severity Filtering

  Create dedicated tabs in your inbox that filter notifications by severity level. Build a "Critical Alerts" tab for high-priority messages or a "Security" section for account-related warnings. Users can focus on what matters most while keeping less urgent notifications organized and accessible.

  Headless API Support

  Access severity data programmatically through our API for custom notification interfaces. The severity field is available on every notification object, enabling conditional rendering and custom styling in your own UI components.

  Template Personalization

  Use workflow severity directly in your message templates with the {{workflow.severity}} variable.

  Create dynamic content that adapts based on the notification's importance level, such as "This is a high-priority message regarding your account."

  Configure severity levels for any workflow directly from the Novu dashboard under workflow settings.

  Existing workflows default to "None" severity, giving you full control over which messages receive priority treatment.

  Learn more

• Aug 26, 2025

  Command+K Palette

  Navigate the dashboard instantly with our new command palette. Press ⌘K (Mac) or Ctrl+K (Windows/Linux) from anywhere to access every feature, page, and action through a single, powerful interface.

  Author:

  Dima Grossman

  • Dashboard

  

  Smart Search and Discovery

  Find any command, page, or workflow through intelligent search that understands keywords and context. Results are automatically organized by type with visual indicators for easy navigation...

  Context-Aware Commands

  The palette adapts to your current environment and permissions, showing only relevant actions. Switch between Development and Production environments, manage workflows and subscribers, or access account settings without leaving your keyboard.

  Streamlined Workflow Management

  Create new workflows, or edit existing ones directly from the command palette. Ideal for developers who need to quickly prototype notification flows or navigate between multiple configurations during testing.

  Built-in Help and Support

  Access documentation, share feedback, or view keyboard shortcuts without interrupting your workflow.

  Includes direct links to docs.novu.co and integrated support chat.

  The command palette is available immediately in your dashboard. Press ⌘K to get started and experience faster navigation across all Novu features.

  We Want Your Feedback

  What do you think of the new Command+K Palette?

  • Does it meet your needs?
  • Have you encountered any edge cases or challenges?
  • Do you have ideas for improving it?

  Join the Feature Discussion and share your thoughts with the community! Your feedback helps us refine and improve Novu for everyone. Let’s spark a conversation! 💬

• Aug 4, 2025

  Translations 2.0

  Deliver notifications in your subscribers' preferred languages with automated selection based on subscriber locale. Create content in your default language, export it for translation, then re-upload translated files. Novu handles delivering the right version to each subscriber.

  Author:

  Adam Chmara

  • Dashboard
  • Translations

  

  Flexible Language Management

  Set your default language and add target languages you want to support. As your international reach grows, you can add more languages anytime, with multi-select fields that make managing dozens of locales straightforward.

  Per-Workflow Translation Control

  Navigate to Workflows > Select workflow > Enable Translations to enable translations on specific workflows. This gives you granular control over which notification flows support multiple languages while keeping others in your default language.

  Translation Key Integration

  Use {{t.key}} syntax in Email and In-App editors to create translatable content. The editor suggests existing keys as you type and lets you add new keys with "Add to Translations."

  Support for nested keys like {{t.product.details.description}} provides flexible content organization.

  JSON-Based Translation Files

  Export structured JSON files containing your default content, translate externally, then re-upload.

  Files follow a clear channel-based format:

  {
    "in-app": {
      "title": "Welcome to Novu!",
      "message": "Hi {{subscriber.firstName}}, let's get started!"
    },
    "email": {
      "subject": "Get Started",
      "body": "Thank you for joining us, {{subscriber.fullName}}"
    }
  }

  Smart Status Tracking

  When you update the default locale content, other languages automatically mark it as "Outdated, needs update."

  Translation groups organize all language variants per workflow, with clear status visibility and search capabilities.

  Real-Time Preview

  Test different subscriber locales using Preview Context to see how content renders in each language.

  Update translations directly from the preview interface.

  Available in beta for Team and Enterprise plans. Configure languages from the translations page, then enable translations on workflows where multilingual support matters. Get started with the translation documentation.

• Aug 3, 2025

  Email Layouts

  You can create consistent, branded email experiences across all your workflows with a reusable Email layout. Build your headers, footers, and branding elements once, then apply them to any email step across multiple workflows, bringing consistency, maintainability, and efficiency to your email communications.

  Author:

  Paweł Tymczuk

  • Email
  • Dashboard

  

  Visual Block Editor

  Design your layouts using the block-based visual editor. Add elements like headers, footers, images, and buttons by pressing the / key, making it easier for non-technical teammates to collaborate on email design. When you need complete control, switch to the code editor to work directly with raw HTML.

  Dynamic Content Integration

  Every layout must include the {{content}} variable, which dynamically injects the content from your email step into the layout. Write your email content once in the workflow, and it automatically inherits your branded layout styling—eliminating the need to duplicate branding elements across every email.

  Environment-Scoped Management

  Each environment maintains its own set of layouts, with every environment including one default layout. Create additional layouts based on your needs, such as transactional, marketing, or newsletter types, giving you flexibility across different environments.

  Note: You can share layouts by publishing changes to other environments.

  Subscriber Variable Support

  Use subscriber variables like {{subscriber.firstName}} and {{subscriber.email}} throughout your layouts to personalize branding elements. Only subscriber variables are supported in layouts to ensure compatibility across all workflows.

  Flexible Workflow Integration

  Use the Layout selector in the workflow email step editor to apply any layout to email steps. The selected layout wraps around the content written in the email editor, and you can preview the complete rendered email using the Test Workflow feature with actual subscriber data and different locales.

  Programmatic Layout Control

  Control layout selection programmatically when triggering workflows:

  - layoutId: undefined - Use the default layout for the environment (set by default on step creation)

  - layoutId: null - No layout applied (content only)

  - layoutId: "layout-id" - Use the specified layout by ID

  Learn more about Email Layouts in our documentation.

  Email Layouts are now available on the Novu dashboard sidebar. Free plans include one layout per environment, while Pro and higher plans support up to 100 layouts per environment. Navigate to the Layouts section in your dashboard to start building consistent email experiences.