Breaking change deployments on GitLab.com

Changes are deployed continuously to GitLab.com. However, breaking changes can require more time to prepare for.

In the month before the GitLab 18.0 release, breaking changes will be deployed during three time windows. The following tables list when each breaking change will be deployed.

Window 1

This window takes place on April 21 - 23, 2025 from 09:00 UTC to 22:00 UTC.

Deprecation	Impact	Stage	Scope	Check potential impact
CI/CD job token - Limit access from your project setting removal	High	Software supply chain security	Project
CI/CD job token - Authorized groups and projects allowlist enforcement	High	Software supply chain security	Project	Use the Authentication Log to verify which projects are authenticating with your project.
Deprecate License Scanning CI/CD artifact report type	Low	Secure	Project
OpenTofu CI/CD template	Low	Deploy	Project
CodeClimate-based Code Quality scanning will be removed	High	Secure		Refer to the Understanding this change section for details.
Replace `add_on_purchase` GraphQL field with `add_on_purchases`	Low	Fulfillment	Instance, group
Replace namespace `add_on_purchase` GraphQL field with `add_on_purchases`	Low	Fulfillment	Instance, group
Public use of Secure container registries is deprecated	Low	Secure	Instance
Limit number of scan execution policy actions allowed per policy	Low	Security risk management	Instance, group, project
Deprecate CI job implementation of Repository X-Ray	Low	Create	Project
Pipeline job limits extended to the Commits API	Low	Verify	Project
Deprecation of `name` field in `ProjectMonthlyUsageType` GraphQL API	Low	Fulfillment	Project
Deprecation of `STORAGE` enum in `NamespaceProjectSortEnum` GraphQL API	Low	Fulfillment	Group
Workspaces `editor` GraphQL field is deprecated	Low	Create	Project
DAST `dast_devtools_api_timeout` will have a lower default value	Low	Application security testing	Project
API Discovery will use branch pipelines by default	Low	Application_security_testing	Project
Container Scanning default severity threshold set to `medium`	Low	Application security testing	Project
Subscription related API endpoints in the public API are deprecated	Low	Fulfillment	Instance
GitLab Advanced SAST will be enabled by default	Medium	Application security testing	Instance
The `agentk` container registry is moving to Cloud Native GitLab	Medium	Deploy	Instance
SAST jobs no longer use global cache settings	Medium	Application security testing	Instance
End-of-Support SAST jobs will be removed from the CI/CD template	High	Application security testing	Project
Application Security Testing analyzers major version update	Low	Application security testing	Project

Window 2

This window takes place on April 28 - 30, 2025 from 09:00 UTC to 22:00 UTC.

Deprecation	Impact	Stage	Scope
Replace GraphQL field `take_ownership_pipeline_schedule` with `admin_pipeline_schedule` in PipelineSchedulePermissions	Low	Verify	Project
The `heroku/builder:22` image is deprecated	Medium	Deploy	Project
`mergeTrainIndex` and `mergeTrainsCount` GraphQL fields deprecated	Low	Verify	Project
Behavior change for Upcoming and Started milestone filters	Low	Plan	Group, project
`kpt`-based `agentk` is deprecated	Low	Deploy	Project
Updating CI/CD job tokens to JWT standard	Low	Software supply chain security	Project

Window 3

This window takes place on May 5 - 7, 2025 from 09:00 UTC to 22:00 UTC.

Deprecation	Impact	Stage	Scope
GitLab.com certificate-based integration with Kubernetes	Medium	Deploy
GraphQL deprecation of `dependencyProxyTotalSizeInBytes` field	Low	Package	Group
The `ci_job_token_scope_enabled` projects API attribute is deprecated	Low	Govern	Project
Deprecate license metadata format V1	Low	Secure	Instance
The `direction` GraphQL argument for `ciJobTokenScopeRemoveProject` is deprecated	Low	Govern	Project
Replace `threshold` with `maxretries` for container registry notifications	Low	Package	Project
GraphQL `target` field for to-do items replaced with `targetEntity`	Low	Foundations	Project
`ciJobTokenScopeAddProject` GraphQL mutation is deprecated	Low	Govern	Project
Removal of `migrationState` field in `ContainerRepository` GraphQL API	Low	Package	Project
Updated tooling to release CI/CD components to the Catalog	High	Verify	Instance
Increased default security for use of pipeline variables	Medium	Verify	Project
Amazon S3 Signature Version 2	Low	Package	Project
Dependency Proxy token scope enforcement	High	Package	Group
Remove duoProAssignedUsersCount GraphQL field	Low	Plan	Group, project
Remove `previousStageJobsOrNeeds` from GraphQL	Low	Verify	Instance