Drupal Release: 11.1.1

TL;DR

Drupal 11.1.1 is a minor maintenance release that focuses on bug fixes, documentation improvements, and code quality enhancements. This release addresses several critical issues including a status report email validation bug, theme handler errors, and batch processing 404 handling. It also includes important TypeScript improvements, test stability fixes, and security-related enhancements for local storage usage in Olivero theme. This release is primarily aimed at improving stability and developer experience rather than introducing new features.

Highlight of the Release

• Fixed status report confusion between null and duplicate email addresses
• Resolved fatal error in ThemeHandler that affected theme management
• Improved privacy protection by avoiding localStorage for anonymous users in Olivero theme
• Added proper 404 handling for non-existent batch IDs
• Enhanced TypeScript support with return type hints for various methods and hooks
• Fixed navigation top bar issue that was hiding entity local tasks

Migration Guide

No significant migration steps are required for this maintenance release. The changes are primarily bug fixes, documentation improvements, and code quality enhancements that don't require special migration procedures.

However, developers should note:

• If you've extended or customized the Navigation Top Bar functionality, you may need to review your implementation as this release fixes an issue where it was hiding entity local tasks.
• If you're using the Olivero theme and have custom code that relies on localStorage for anonymous users, you should review those implementations as this behavior has changed to improve privacy compliance.
• If you've implemented custom recipes with dependencies, verify they work correctly with the fixes to recipe dependency handling.

As always, it's recommended to test your site thoroughly in a development environment before updating production.

Upgrade Recommendations

This is a minor maintenance release (11.1.0 → 11.1.1) that addresses several important bugs and improves code quality.

Recommendation: All sites running Drupal 11.1.0 should upgrade to 11.1.1 at their earliest convenience, especially if you:

• Use the status report feature and have encountered issues with email validation
• Have experienced theme-related errors
• Use the Navigation Top Bar and have noticed issues with entity local tasks
• Rely on batch processing functionality
• Use the Olivero theme and are concerned about data protection regulations

The upgrade process should be straightforward with minimal risk, as this is primarily a bugfix release. As always, follow these best practices:

1. Create a complete backup of your site before upgrading
2. Test the upgrade in a development or staging environment first
3. Review the full release notes for any changes that might affect your custom code
4. Update any contributed modules that may have dependencies on fixed functionality

For most sites, this upgrade should be considered routine maintenance.

Bug Fixes

Critical Bug Fixes

• Status Report Email Validation: Fixed an issue where the status report was confusing null email with duplicate email, causing incorrect validation errors.
• Theme Handler Error: Resolved a fatal TypeError in ThemeHandler::addTheme() that was affecting theme management.
• Batch Processing: Implemented proper 404 handling when a Batch ID doesn't exist, improving error handling.
• Navigation Issues: Fixed a problem where the Navigation Top Bar was hiding entity local tasks even if the user had no access to the bar.

Other Bug Fixes

• Cache Handling: Ensured invalid items are not written to FastBackend in ChainedFast.
• Breadcrumb Manager: Fixed an issue where BreadcrumbManager was ignoring cacheability when no builders apply.
• File Upload: Fixed ManagedFile #accept attribute overwriting existing attributes.
• Media Source: Resolved an issue in MediaSourceBase::getSourceFieldName() that wasn't checking character max.
• Recipe Dependencies: Fixed a bug where recipes that depend on other recipes were breaking RecipeInputFormTrait.

Test Stability Fixes

• Fixed random test failures in:
  • ImageStylesPathAndUrlTest
  • LayoutBuilderBlocksTest::testBlockPlaceholder
  • EditorSecurityTest::testEditorXssFilterOverride
  • LanguageNegotiationInfoTest::testInfoAlterations
  • LayoutSectionTest::testLayoutSectionFormatterAccess

New Features

This minor maintenance release doesn't introduce significant new features, but does include several enhancements:

• Recipe Improvements: Added an event that triggers before importing content when applying a recipe, allowing for better extensibility.
• TypeScript Enhancements: Added return type hints to various methods and hooks, improving developer experience and code quality.
• Documentation Updates: Improved documentation for several core APIs including EntityStorageInterface, CachePluginBase, and MenuLinkTreeInterface.
• Maintainer Addition: Added bradjones1 as a Serialization subsystem maintainer.

Security Updates

This release includes several security-related improvements, though no critical security vulnerabilities were addressed:

• Privacy Enhancement: Modified Olivero theme to avoid using localStorage for anonymous users, preventing potential violations of data protection regulations.
• Cache Security: Ensured invalid items are not written to FastBackend in ChainedFast, improving cache security.
• XSS Protection: Fixed a random test failure in EditorSecurityTest::testEditorXssFilterOverride, ensuring continued protection against XSS vulnerabilities.

These changes enhance the overall security posture of Drupal, particularly regarding data privacy compliance and protection against potential vulnerabilities.

Performance Improvements

This release includes some performance-related improvements:

• Cache Handling: Enhanced cache handling by ensuring invalid items are not written to FastBackend in ChainedFast, which helps maintain cache integrity and performance.
• Breadcrumb Manager: Fixed an issue where BreadcrumbManager was ignoring cacheability when no builders apply, improving cache effectiveness.
• Code Refactoring: Refactored Claro's dialog stylesheet for better performance and maintainability.

While not major performance overhauls, these changes contribute to a more efficient and stable system overall.

Impact Summary

Drupal 11.1.1 is a maintenance release that focuses on stability, bug fixes, and code quality improvements rather than introducing new features. The impact is primarily positive for all users, addressing several pain points and enhancing the developer experience.

For site administrators, the most notable fixes include resolving the status report email validation confusion, fixing a fatal error in ThemeHandler, and improving batch processing with proper 404 handling. These changes enhance the reliability of core administrative functions.

For developers, the addition of TypeScript return type hints, improved documentation, and fixes for recipe handling provide a better development experience. The numerous test stability fixes also contribute to a more reliable testing environment.

End users benefit from privacy enhancements in the Olivero theme, fixed navigation issues, and overall improved stability. The changes to localStorage usage for anonymous users are particularly important for sites that need to comply with data protection regulations.

Overall, this release represents Drupal's commitment to quality, stability, and security. While not introducing major new functionality, it strengthens the foundation of the platform and addresses several issues that could impact site operation and development workflows.