11.2.0-rc2

TL;DR

Drupal 11.2.0-rc2 brings significant improvements to the core functionality with a focus on performance, security, and developer experience. This release includes AVIF image support with WebP fallback, enhanced SDC (Single Directory Components) functionality, HTMX response handling, and numerous bug fixes. Key improvements include better cache tag handling, session management updates, and fixes for critical issues in workspaces, layout builder, and navigation. This release candidate represents the culmination of community efforts to stabilize Drupal 11.2 before its final release.

Highlight of the Release

• AVIF image support with WebP fallback for all core image styles
• Fixed issues with SDC components not being available when enabling themes through UI
• HTMX responses now properly process CSS/JS attachments and add Drupal asset libraries
• Improved navigation with fixes for second-level menu items with children
• Package Manager can now operate directly on the live code base
• Fixed cache tags growing endlessly issue
• Improved session management with deprecated custom keys in $_SESSION

Migration Guide

Deprecated Features

Session Management

Custom keys in $_SESSION are now deprecated. You should migrate to using the proper session management APIs provided by Drupal.

// Deprecated:
$_SESSION['my_custom_key'] = 'value';

// Recommended:
\Drupal::service('tempstore.private')->get('my_module')->set('my_key', 'value');
// or
\Drupal::service('tempstore.shared')->get('my_module')->set('my_key', 'value');

Test Discovery

TestDiscovery test file scanning is deprecated in favor of using the PHPUnit API. Update your test discovery methods accordingly.

SyndicateBlock

The SyndicateBlock has been deprecated. If your site uses this block, consider creating a custom block or using an alternative solution.

RequirementSeverity Constants

The drupal_requirements_severity() constants are deprecated. Use the new RequirementSeverity enum instead:

// Deprecated:
REQUIREMENT_INFO

// Recommended:
\Drupal\Core\Extension\RequirementSeverity::INFO

BrowserTestBase Methods

BrowserTestBase::getOptions() is deprecated. Update your tests to use the appropriate WebDriver methods instead.

Package Manager and Automatic Updates

If you're using Project Browser <2.1 and Automatic Updates <4, there will be conflicts with this version. Make sure to update these modules to compatible versions.

Upgrade Recommendations

This is a release candidate (RC2) for Drupal 11.2.0, which means it's approaching stability but is not yet recommended for production sites. It's ideal for:

1. Testing environments: Deploy to your testing or staging environments to verify compatibility with your custom code and contributed modules.

2. Development sites: Developers should test their modules and themes against this RC to ensure compatibility with the final 11.2.0 release.

3. Module maintainers: Test your modules against this RC to identify and fix any compatibility issues before the final release.

For production sites, it's recommended to wait for the final 11.2.0 release unless you specifically need one of the fixes included in this RC and understand the potential risks of using pre-release software.

When upgrading from 11.1.x or earlier:

• Back up your database and files before upgrading
• Test thoroughly in a non-production environment first
• Review the full list of changes to identify potential impacts on your custom code
• Update any custom code that uses deprecated APIs mentioned in the migration guide

Bug Fixes

Navigation and Menu Issues

• Fixed critical issue where second-level menu items with children couldn't be reached
• Fixed template_preprocess_views_view_summary_unformatted() not setting active link when using AJAX
• Navigation top bar now properly utilizes Drupal.displace()

SDC and Component Issues

• Fixed SDC templates not auto-reloading after changes
• Fixed new SDC components not being available when enabling themes through UI
• Fixed InvalidComponentException when workspaces UI is installed

Cache and Performance Issues

• Fixed cache tags growing endlessly issue
• Fixed cache redirect error when using 'view own unpublished content' permission alongside node grants
• Fixed cache tags added by hook_block_view_BASE_BLOCK_ID_alter being ignored on blocks implementing MainContentBlockPluginInterface or TitleBlockPluginInterface

Image Processing

• Fixed call to undefined function Drupal\system\Plugin\ImageToolkit\imageavif()
• Implemented AVIF conversion with WebP fallback

Workspaces and Layout Builder

• Fixed WorkspacesHtmlEntityFormController building entity forms twice
• Fixed hidden dependency on block_content in layout_builder
• Fixed InvalidComponentException when workspaces UI is installed

Form and UI Issues

• Fixed askHidden prompt failing with "Unknown named parameter $default"
• Fixed node preview modal to use Drupal API
• Fixed invalid exposed form data not being excluded
• Redirect block/add if there is only one block type

Database and Migration Issues

• Fixed issue with modifying tables using JSON type
• Reset highwater mark before rolling back migrations
• Fixed uninstalling a module deleting all views with third-party settings by that module

Testing Issues

• Fixed random test failures in PackageUpdateTest::testPackageUpdate
• Fixed random test failure in Toolbar Test (toolbarTest.js)
• Fixed random failure: "Drupal.contextual.ContextualModelView is not a constructor"

New Features

AVIF Image Support with WebP Fallback

Added support for AVIF image format with WebP fallback for all core image styles. This provides better image optimization and quality while maintaining compatibility with browsers that don't support AVIF.

HTMX Response Handling

HTMX responses now properly process CSS/JS attachments and add Drupal asset libraries, ensuring a seamless experience when using HTMX for dynamic content loading.

Package Manager Direct Operation

Package Manager can now operate directly on the live code base, eliminating the need for rsync in certain scenarios and improving the update workflow.

SDC Enum Props Translation

Single Directory Components (SDC) enum props now support translatable labels using meta:enum, enhancing the internationalization capabilities of components.

New Maintainers and Roles

• Added larowlan as a co-maintainer for Form API and render API subsystems
• Added nicxvan as maintainer of the extension API
• Added Cristina Chumillas as UX Manager and Emma Horrell as provisional UX Manager to Drupal core

Security Updates

Session Management

Deprecated custom keys in $_SESSION to improve security by encouraging standardized session handling practices.

Symfony Security Updates

Updated config schema for Symfony 7.3 mailer security improvements, ensuring compatibility with the latest security enhancements.

Security Documentation

Added a SECURITY.md file explaining how to properly report security vulnerabilities, improving the security reporting process.

User Access Checks

Added user access checks to 'more' link, preventing unauthorized access to content.

Performance Improvements

Cache Tag Optimization

Fixed an issue where cache tags would grow endlessly, which could lead to performance degradation over time and excessive memory usage.

Database Transaction Improvements

• Use a transaction in PoDatabaseWriter to improve performance when writing translation data
• Fixed issues with modifying tables that use JSON type, improving database operation performance

Module Handler Optimization

ModuleHandler::resetImplementations now resets all properties with hook implementations, ensuring proper cleanup and preventing memory leaks.

Workspaces Performance

• WorkspacesHtmlEntityFormController no longer builds entity forms twice, reducing processing time
• Stopped creating a "Stage" workspace by default on module installation, reducing initial setup overhead

Lazy Loading Improvements

Removed lazy declaration and proxy class for cron and used service closure instead, streamlining the service initialization process.

Impact Summary

Drupal 11.2.0-rc2 represents a significant step forward in Drupal's evolution with improvements across multiple areas. The addition of AVIF image support with WebP fallback enhances site performance and visual quality while maintaining broad browser compatibility. Developers will appreciate the fixes to Single Directory Components (SDC), making component development more reliable and accessible.

The navigation improvements address critical usability issues, particularly with second-level menu items that have children, enhancing the overall user experience. Site administrators benefit from numerous workflow improvements, including better handling of block content dependencies and workspaces.

Performance optimizations, particularly around cache tag handling and database operations, should result in more efficient sites with better resource utilization. Security improvements, while not addressing critical vulnerabilities, strengthen the platform's overall security posture through better session management and updated dependencies.

This release candidate demonstrates Drupal's commitment to continuous improvement across all aspects of the platform - from developer experience to end-user usability, from performance to security. The large number of bug fixes (over 40 issues addressed) shows the community's dedication to stability and quality.

For organizations using Drupal, this release provides compelling reasons to plan for an upgrade to 11.2.0 when it reaches final release, with the performance improvements and bug fixes offering tangible benefits for most sites.