WarehousePG Enterprise Manager 1.1 release notes

Suggest edits

Release Date: May 4, 2026

WarehousePG Enterprise Manager (WEM) 1.1 includes new features, enhancements, and bug fixes focused on improving stability and reliability.

New features

  • Background Processes tab: The Query Monitoring now includes a dedicated Background Processes tab that separates internal database background processes from active user queries.
  • Visual query plan graphs: The Query Editor now renders a visual graph for static query execution plans, making it easier to understand and optimize query performance.
  • Remote pg_hba.conf editing: The HBA Editor now supports editing pg_hba.conf when WEM runs on a different host than the database server. In remote mode, the editor reconstructs the current configuration from database entries and provides a Generate Commands button that produces shell commands — including a backup step and a configuration reload — ready to copy and run on the coordinator host.
  • Database size growth chart: A new Database Size Growth chart in the Historical Trends tab on the System Metrics page shows how each database's size has changed over time. Requires Prometheus and the observability Collector to be configured.
  • Role management: You can now create, edit, and delete database roles directly from the Access Management page.
  • Group role membership: The Access Management page now displays the members of each group role.
  • Build details in version display: The WEM version display now includes the commit ID and build date alongside the version number.
  • Configuration parameter source: The System Settings tab in Access Management now includes source and source file columns for each configuration parameter, sorted alphabetically by name.

Enhancements

  • Materialized views: Views and materialized views are now displayed separately in the Data Analysis page. Materialized views now include size and storage options.
  • Actionable data analysis: The Missing Stats and Bloat sections on the Data Analysis page now offer direct remediation actions.
  • Clickable log severity cards: Clicking a severity count card on the Logs page now filters the log list to that severity.
  • Configurable long-running query threshold: The Connection & Query Metrics section in the Database Metrics tab on the System Metrics page has been improved, and the threshold for flagging long-running queries is now configurable via the WEM interface as well as the LONG_RUNNING_THRESHOLD environment variable.
  • Canary monitoring: The Monitoring page is reorganized into Current Status, Recent Results, and Trends tabs, with additional admin controls.
  • Canary check updates now use pointer-based partial updates and system-defined checks are protected from modification.
  • Sortable Storage Details columns: Columns in the Storage Details table in the Overview tab of the Storage page can now be sorted.
  • Segment Details filters: The Cluster Segment Details table now supports filtering by Role, Status, and Hostname.
  • Management page permission enforcement: Non-admin users who navigate to a restricted Management page now receive a 403 access denied page. Destructive actions on the Management page now prompt for confirmation before proceeding.
  • Settings form validation and unsaved-changes warning: The Settings tab in Management now validates URL, integer, and duration fields inline. Navigating away or closing the browser with unsaved changes triggers a warning, and changes to critical connectivity settings require explicit confirmation.
  • Query Monitoring session improvements: The Sessions table now displays an Active column showing Yes or No. The Filters dropdown includes a new Active option to filter sessions by active status. Canceling a query is disabled for sessions in an idle state.
  • Viewer profile defaults: The Logs tab is no longer included in the Viewer profile by default.

Changes

  • WEM 1.1 adds support for the /usr/edb/whpg<version> installation path introduced in WarehousePG 7.4 and 6.27.4.

Bug fixes

  • Fixed AI Assistant functionality that was unavailable in WEM 1.0.
  • Fixed an exception thrown in the Management tab when clicking the Copy button.
  • Fixed Loki logs displaying the time a log was sent to Loki rather than the actual log timestamp.
  • Fixed a crash that occurred when a viewer-profile user opened the Query Monitoring.
  • Fixed multiple display issues on the Data Analysis page.
  • Fixed the column selection reset in dropdown menus.
  • Fixed the session list displaying the PID instead of the session ID.
  • Fixed pagination in the Cluster Segment Details table.
  • Fixed roles starting with pg_ being incorrectly listed in the Role Assignments tab of Resource Management.
  • Fixed Terminate Session not working on idle sessions.
  • Fixed the data export button on the Storage screen.
  • Fixed WEM failing to reconnect to the WHPG cluster after a connection drop.
  • Fixed the Coordinator Logs (7 days) tab returning no results after the first search.
  • Fixed all timestamps across the interface to display in the WHPG server timezone.
  • Fixed a JavaScript error that prevented the WEM interface from loading after an upgrade.
  • Fixed compression estimate calculation for tables and partitioned tables on the Data Analysis page.
  • Fixed UI distortion in the Find Table tab on the Backups page after performing a search.
  • Fixed canary checks not running on the specified database.

Security

  • Added input validation and injection prevention across API handlers, including PromQL and Loki query parameters, Alertmanager silence IDs, EXPLAIN format values, and CSV export cells.
  • WEM user passwords now require at least one uppercase letter, lowercase letter, digit, and special character. Existing scripts or automation that create WEM users with simple passwords will need to be updated.
  • WEM now requires the WEM_COOKIE_SECRET environment variable to be set, and returns an actionable error if it's missing.
  • Debug endpoints are now only registered when DEBUG mode is enabled.
  • Updated pgx and Prometheus dependencies to address security vulnerabilities.
  • Added CSRF protection using a double-submit token pattern. All state-modifying requests (POST, PUT, PATCH, DELETE) now require a valid X-CSRF-Token header.
  • Session cookies now expire when the browser is closed. The previous 30-day persistent session lifetime has been removed.
  • The logout endpoint now uses POST instead of GET, preventing CSRF-triggered logouts.

Could this page be better? Report a problem or suggest an addition!