New Features

• Site Snapshots – Create reusable snapshots of your WordPress sites, including files and database, and deploy them instantly on the same server or across different servers. Ideal for agencies and developers who need to spin up pre-configured sites quickly. Snapshot creation progress is tracked in real time, and all snapshots are managed from a dedicated section in your profile.

• Node.js v24 is now available for installation on servers.

Improvements

• Centralized Credential Security – Sensitive credentials are no longer sent via email by default. Server, database, and Redis credentials are now securely accessible from the dashboard with masked display and reveal or copy options. Email notifications include a new “Send Sensitive Info” toggle, disabled by default, for better security control.

• Optimized OpenLiteSpeed PHP Workers – OpenLiteSpeed sites now automatically calculate the optimal number of PHP workers based on server CPU and RAM, replacing the previous fixed limit. This improves performance and resource utilization, with manual overrides still available from PHP Settings.
• Smarter Server Reboot Notifications – Reboot notifications can now be snoozed for 3, 7, or 30 days, or disabled per server. Newly created servers (under 12 hours old) no longer trigger reboot alerts, and servers with auto-reboot enabled will not send unnecessary notifications. Notifications can be re-enabled anytime from the Security Update page.
• Improved Git Repository Setup – Git repository URLs now automatically append .git when missing, and the branch field defaults to main, reducing setup errors during Git-based deployments.
• Staging and Demo Domain Customization – Staging and demo domains can now be customized before deployment for Custom PHP, Laravel, Node.js, Lovable, manual migrations, and site migrations, giving more control over development and demo environments.
• Optimized WordPress Bulk Operation History – Resolved memory allocation issues when viewing bulk operation history for large teams by optimizing queries and database indexing.
• Clearer SSH Restriction Notices

• A critical zero-day in the Modular DS plugin was detected and automatically mitigated across all xCloud sites using Site Security Pro powered by Patchstack. Also, all affected sites were auto-updated to v2.5.2 of the plugin and users notified by email, no action required.

Issues & Bug Fixes

• Invoice Filter Links Fixed
• Nginx configuration has been updated to correctly respect upload size limits, improving large file uploads for applications like Nextcloud.
• Fixed an issue where Patchstack was not activating during staging-to-production pushes. The deployment process now ensures correct activation.