fix(deps): update dependency reflex to >=0.9.3

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
reflex	>=0.8.26 → >=0.9.3

---

Release Notes

reflex-dev/reflex (reflex)

v0.9.3

Compare Source

Breaking Changes

• Lifespan tasks will now be passed an rx.App instance instead of a Starlette instance
  • fix(app): pass Reflex app instance to lifespan task app parameter by @​BABTUNA in #​6358

New Features

Persistent Frontend Dep Locking

Projects should commit the new reflex.lock directory which includes package.json and bun.lock. This helps avoid accidentally introducing upstream changes and helps protect against supply chain attacks.

• Respect root bun.lock during frontend installs by @​GautamBytes in #​6289
• Move bun.lock under reflex.lock/bun.lock by @​masenf in #​6475

reflex cloud deploy --gcp

• feat(hosting-cli): add reflex cloud gcp deploy for Cloud Run by @​Kastier1 in #​6450

EmbedPlugin

With the EmbedPlugin, a Reflex frontend can now be mounted into an existing DOM element in a custom HTML page by simply including the entry point javascript.

• feat: support embedding Reflex apps into host pages via mount_target by @​FarhanAliRaza in #​6462

frontend_compression_formats

The build process now produces .gz sidecar files during export and serves them to supported clients for reflex run --env prod.

• feat: pre-compress frontend assets at build time by @​FarhanAliRaza in #​6497

Improvements

• fix(event): handle mixed rx.cond event/function returns in event lambdas by @​BABTUNA in #​6354
• fix(app): normalize subpath imports to install base npm package by @​BABTUNA in https://redirect.github.com/reflex-dev/reflex/pull/6380\\
• Remove redundant lost-and-found warning log by @​masenf in #​6527
• fix(state.js): drop deprecated unload listener, use pagehide (#​6195) by @​ChinmayShringi in #​6479

Bug Fixes

Compiler

• fix(memo): skip {children} hole substitution when wrapped component h… by @​carlosabadia in #​6466
• Allow overriding files with Plugins, just warn about it by @​riebecj in #​6476
• [codex] Fix memoized component hook prop rendering by @​Alek99 in #​6506
• [codex] fix foreach memo style cache by @​Alek99 in #​6513
• fix: use python truthiness for compiled and/or Var operations by @​adhami3310 in #​6546

CLI

• fix(hosting-cli): exit deploy when --envfile requires missing python-dotenv by @​BABTUNA in #​6414
• ENG-9522: Fix CLI: Lists projects as "Unknown" by @​carlosabadia in #​6530

Other Areas

• fix: Textarea enter_key_submit uses add_custom_code instead of _get_all_custom_code by @​algojogacor in #​6485
• fix(component): compare field values in BaseComponent.eq by @​FarhanAliRaza in #​6493
• fix: REFLEX_FRONTEND_PATH without leading slash duplicates path in logged URL by @​qubydev in #​6364
• fix: make Markdown a MemoizationLeaf so Var children stay inlined by @​FarhanAliRaza in #​6532
• Expose rx.Plugin hook contexts by @​masenf in #​6537
• ENG-9553: prepend frontend_path to RouterData.url and RouterData.page.raw_path by @​masenf in #​6535

Doc / Web

• add otp field to reflex components internal by @​carlosabadia in #​6467
• ENG-9435: add .md files to deal with AI blindly adding .md by @​adhami3310 in #​6460
• Update router documentation for new URL API by @​masenf in #​6371
• OPS-1430: Add what are you interested in option in demo form by @​carlosabadia in #​6459
• Update shared components for new web design by @​carlosabadia in #​6474
• internal: Make the Demo Form Accept Extra on_submit Handlers by @​amsraman in #​6486
• Update customers link in marketing navbar by @​carlosabadia in #​6487
• Small updates to footer and mobile navbar for web by @​carlosabadia in #​6492
• ENG-9484: update docs for auto setters by @​adhami3310 in #​6496
• Show up to two lines per toc sidebar item by @​carlosabadia in #​6502
• Update internal drawer component by @​carlosabadia in #​6523
• Remove accidental whitelist changes by @​masenf in #​6524
• Update docs whitelist workflow path and naming by @​adhami3310 in #​6525
• reflex-site-shared: canonical override + Try-for-free primary CTA by @​PalashAwasthi05 in #​6521
• Fix docs breadcrumb overview routes by @​Alek99 in #​6441
• [codex] update README example sections by @​Alek99 in #​6511
• AgentFilesPlugin writes md files to frontend_path subdir by @​masenf in #​6536
• Fix feedback popover bg color by @​carlosabadia in #​6540
• Bump base ui version for internal components by @​carlosabadia in #​6541
• Fix mobile drawer internal links in marketing navbar by @​carlosabadia in #​6539
• Refactor sidebar to use reactive Var operations instead of Python conditionals by @​masenf in #​6528
• Increase case study click area in navbar by @​carlosabadia in #​6529
• update docs/app/reflex.lock by @​masenf in #​6543

Telemetry Improvements

• feat(telemetry): emit compile events with page/component/state breakdown by @​FarhanAliRaza in #​6507
• feat(telemetry): report export status, duration, and phase timings by @​FarhanAliRaza in #​6509
• feat(telemetry): track per-feature usage counters on compile events by @​FarhanAliRaza in #​6519
• feat: capture pre-init Python environment in init telemetry by @​FarhanAliRaza in #​6534
• Display ToS / privacy warning on console with logging in by @​masenf in #​6547
• add doc page for telemetry info and opt-out by @​masenf in #​6548

Other Changes

• ENG-9447: add agents md instructions by @​adhami3310 in #​6461
• fix rx-shout integration test for new uv project structure by @​masenf in #​6470
• added the missing tests (and verified they pass) by @​patrizzzz in #​6170
• use uv run --no-sync in pre-commit commands by @​masenf in #​6472
• fix(test): make tailwind integration test rerun-safe by @​masenf in #​6473
• test(perf): add Lighthouse benchmark suite and CI job by @​FarhanAliRaza in #​6494
• pin action commits by @​adhami3310 in #​6498
• security hygiene on actions by @​adhami3310 in #​6499
• Pin some docs app components by @​carlosabadia in #​6501
• [codex] Loosen enterprise docs alert copy by @​Alek99 in #​6505
• Embed README example video by @​Alek99 in #​6508
• Update select docs by @​tgberkeley in #​6503
• bump backend deps by @​adhami3310 in #​6488
• bump frontend deps 093 by @​adhami3310 in #​6489
• fix(make_pyi): also diff staged changes when scanning for pyi updates by @​FarhanAliRaza in #​6544

New Contributors

• @​patrizzzz made their first contribution in #​6170
• @​amsraman made their first contribution in #​6486
• @​algojogacor made their first contribution in #​6485
• @​PalashAwasthi05 made their first contribution in #​6521

Full Changelog: reflex-dev/reflex@v0.9.2.post1...v0.9.3

v0.9.2.post1

Compare Source

Full Changelog: reflex-dev/reflex@v0.9.2...v0.9.2.post1

v0.9.2

Compare Source

Release Notes

Rewriting the frontend compiler to be plugin-based

• Add compiler plugin hooks and plugins and move compilation pipeline out of App by @​FarhanAliRaza in #​6260

Drop JSON5 frontend dependency

• refactor: drop json5 dep, handle non-finite floats in socket parse fallback by @​FarhanAliRaza in #​6339

Deprecate rx.Model

Use sqlAlchemy/sqlmodel directly.

• deprecate rx Model by @​adhami3310 in #​6442

Bugfxies

• ENG-9425: fixes for extensible BaseState by @​masenf in #​6418
• fix: segmented_control indicator renders for >10 items by @​FarhanAliRaza in #​6344
• fix: reject string CodeBlock theme to surface invalid values at create time by @​FarhanAliRaza in #​6419
• fix(hosting-cli): make ScaleParams.as_json() side-effect free by @​BABTUNA in #​6415
• fix: dynamically report backend_host in terminal logs by @​Krishnachaitanyakc in #​6222
• fix: emit valid JS for DestructuredArg with only a rest field by @​FarhanAliRaza in #​6444
• Return the true value of an AsyncComputedVar when called via get_var_value() by @​riebecj in #​6391
• Deepcopy EventSpec args when creating Event.from_event_type by @​masenf in #​6458
• Do not memoize parent component of Foreach by @​masenf in #​6454
• Make memo tag determination based on memoized component by @​masenf in #​6453
• fix(config): normalize Config.plugins entries with clear errors (#​6440) by @​ChinmayShringi in #​6445

Docs

• ENG-9029: EventHandlerAPIPlugin (enterprise) docs by @​masenf in #​6370
• Fix headings href by @​carlosabadia in #​6397
• create python module that just has all markdown files by @​adhami3310 in #​6398
• fix: drop temporal=True from fetch_recent_blogs by @​Kastier1 in #​6399
• Point navbar Reflex Framework link to /open-source by @​Kastier1 in #​6400
• fix(docs): dropdown bg in dark mode, MCP sidebar sync, Safari copy by @​Alek99 in #​6402
• remove unneeded escapes by @​adhami3310 in #​6403
• delete weird arrow by @​adhami3310 in #​6406
• Fix doc popover transparent background and contrast by @​carlosabadia in #​6407
• fix double docs/ route on os templates by @​carlosabadia in #​6409
• Generate docs llms index by @​Alek99 in #​6401
• remove hardcoded deploy_url by @​carlosabadia in #​6410
• Fix docs llms index links by @​Alek99 in #​6412
• update mcp docs by @​adhami3310 in #​6426
• Fix broken docs links and updates for agents by @​carlosabadia in #​6420
• docs: redesign API Reference (interactive demo + props table polish) by @​Alek99 in #​6387
• Improve docs props table by @​Alek99 in #​6423
• Refactor docs sidebar to frontend state by @​Alek99 in #​6430
• use images from integration docs package instead of github by @​carlosabadia in #​6435
• Add AG Grid theme customization guide to documentation by @​masenf in #​6432
• Fix docs sidebar guide alignment by @​Alek99 in #​6431
• Add checks for broken docs urls by @​carlosabadia in #​6448

Chores

• No 10 by @​masenf in #​6434
• Fix flakiness in integration/test_upload by @​masenf in #​6424
• [fix]: error "_supports_virtual_terminal" is not a known attribute of module "nt" by @​qubydev in #​6439
• Add benchmark for creating Event objects by @​masenf in #​6455

New Contributors

• @​qubydev made their first contribution in #​6439
• @​Krishnachaitanyakc made their first contribution in #​6222
• @​ChinmayShringi made their first contribution in #​6445

Full Changelog: reflex-dev/reflex@v0.9.1...v0.9.2

v0.9.1: 0.9.1

Compare Source

Release Notes

Bugfixes

• ENG-9398: fix upload handler race condition by @​adhami3310 in #​6368
• Fix incorrect fragment import in radix themes callout component. by @​masenf in #​6366
• State.reset() should not reset inherited backend vars by @​masenf in #​6365
• fix(upload): correct on_drop_rejected args spec by @​BABTUNA in #​6342
• fix(app): support register_lifespan_task as a decorator by @​BABTUNA in #​6343

Docs

• add rx.asset to docs app fonts by @​carlosabadia in #​6352
• bump packages by @​carlosabadia in #​6353
• Updates to support docs frontend path by @​carlosabadia in #​6359
• ENG-9279: Add status to reflex.dev footer by @​carlosabadia in #​6351
• docs: add "Contributing to the Docs" section to CONTRIBUTING.md by @​Alek99 in #​6361
• ENG-8905: Add reflex-enterprise license by @​carlosabadia in #​6381
• Refine Getting Started docs: typography, preview styling, content polish by @​Alek99 in #​6340
• Update CONTRIBUTING.md to simplify guidelines by @​Alek99 in #​6389
• Fix search icon not showing in navbar by @​carlosabadia in #​6393

Chores

• Rename reflex UI and reflex UI shared by @​adhami3310 in #​6356
• add CI for auto releasing internal packages by @​adhami3310 in #​6357
• site requires internal components to build pyi by @​adhami3310 in #​6362
• add reflex hosting cli by @​adhami3310 in #​6369
• Add CODEOWNERS rules for docs and README by @​Alek99 in #​6374
• add workflow dispatch for releases by @​adhami3310 in #​6372
• remove translated docs from the readme by @​adhami3310 in #​6375
• 091dev by @​adhami3310 in #​6349
• clean up subpackage pyproject.toml dependencies by @​masenf in #​6377
• make reflex and reflex base tied by @​adhami3310 in #​6379
• fix: make ruff format work outside of pre-commit by @​benedikt-bartscher in #​6388

Full Changelog: reflex-dev/reflex@v0.9.0...v0.9.1

v0.9.0

Release Notes

BREAKING CHANGES

reflex-enterprise must upgrade to >= 0.7.0.post1

Due to internal changes detailed below, reflex-enterprise has been updated to use the new event queuing mechanism. The latest reflex-enterprise package retains compatibility with reflex >= 0.8.23.

Database support is now opt-in (#​6293)

pydantic, sqlmodel, and alembic have been removed from Reflex's base dependencies. If your app uses rx.Model, rx.session, database migrations, or any other DB feature, you must now:

1. Install the DB extra: pip install 'reflex[db]~=0.9.0'
2. Set db_url in your rxconfig.py, for example:

config = rx.Config(
    app_name="my_app",
    db_url="sqlite:///reflex.db",
)

Apps that do not use the database can drop these dependencies entirely.

• remove pydantic sqlmodel alembic dep by @​adhami3310 in #​6293
• do not set db_url to sqlite by default by @​adhami3310 in #​6347

Event processing moved to the backend (#​6267)

The primary responsibility for chaining and queueing events has moved from the frontend to the backend. This removes an extra client round-trip when chaining events with yield, but it requires changes for anyone reaching into the internals.

Removed / renamed (Python):

• App.process_background and rx.app.process are removed — use the new app.event_processor (a BaseStateEventProcessor / EventProcessor) which owns the full event lifecycle, including background tasks.
• App._background_tasks replaced by App.event_processor._tasks.
• State.class_substates is removed — use State.get_substates() instead.
• AppHarness state helpers removed (reflex/testing.py): state_manager, get_state(token), set_state(token, **kwargs), modify_state(token), poll_for_clients(), and _reset_backend_state_manager() are all gone. Tests should drive state changes through the app's event processor / in-app assertions instead.
• Event.token field removed — the token now lives on EventContext.
• Event.substate_token replaced by the Event.state_cls property (resolved via the new registry).
• Delta type refined from dict[str, Any] to dict[str, dict[str, Any]] (nested by substate name).
• StateManager.create() no longer accepts a state= argument — state classes are discovered from the registry.
• StateToken (reflex/istate/manager/token.py) replaces raw "client_token_substate" strings across all state managers (disk / memory / redis). StateToken and BaseStateToken are exported from reflex.
• EventHandlerSetVar.state_cls renamed to .state (to match EventHandler).
• fix_events removed from the semi-public event API — use Event.from_event_type().
• get_hydrate_event removed — hydration is now handled internally; simulated pre-hydrated states are gone.

Frontend (state.js):

• applyEvent() now returns void (previously returned bool); the internal event_processing flag was removed.
• StateUpdate only includes non-empty fields to reduce bytes over the wire.
• Params are passed around as a ref instead of inline.

• ENG-9028: Move event queue to backend by @​masenf in #​6267

Production mode runs on a single port (#​6297)

Production deployments now always serve the frontend and backend on the same port (what used to be --single-port). Consequences:

• You cannot pass different --frontend-port and --backend-port values in --env PROD.
• The frontend is now served via Starlette StaticFiles through granian/uvicorn instead of a separate sirv process.
• The sirv-cli npm dependency has been removed.
• prerequisites.check_running_mode() now returns a RunningMode enum (FRONTEND_ONLY, BACKEND_ONLY, FULLSTACK) instead of a (bool, bool) tuple.

• ENG-8961: Single port is only prod option by @​adhami3310 in #​6297
• make sure running prod backend only uses backend port by @​adhami3310 in #​6346

state_auto_setters default is now False (#​6292)

Auto-generated setters (set_<var>) are no longer created by default. Define explicit event handlers for setting state vars, e.g.:

class MyState(rx.State):
    count: int = 0

    @​rx.event
    def set_count(self, value: int):
        self.count = value

Existing apps can opt back in temporarily with rx.Config(state_auto_setters=True, ...), but the option is now deprecated and will be removed in 1.0. Explicitly setting state_auto_setters (either value) will emit a deprecation warning.

Other removed deprecations (#​6292)

• PydanticV1 support got deleted (along rx.Base). Please migrate to either dataclasses or PydanticV2.
• App.overlay_component removed — use extra_app_wraps to inject an overlay component.
• rx.Model default primary key override: defining your own primary key no longer silently drops the built-in id field. If you need custom PKs on a registered SQLModel class, register it via @rx.ModelRegistry.register and declare the table explicitly.
• MutableProxy keys in State.get_value(...) are no longer accepted — pass a str key.
• codeblock in rx.markdown component_map removed — use pre instead to customize code-block rendering.
• 'string-name' entries in disable_plugins are still supported in 0.9.0 but now targeted for removal in 1.0 (pass Plugin classes directly, e.g. disable_plugins=[SitemapPlugin]).
• RouterData.page deprecation has been pushed out to 1.0 — still works in 0.9.0, use RouterData.url going forward.

What's Changed

• provide event for redis state expiry by @​adhami3310 in #​6194
• Support FunctionVar handlers in EventChain rendering by @​FarhanAliRaza in #​6188
• feat: add chunked file upload support Streaming Upload API (rx.upload_files_chunk) by @​FarhanAliRaza in #​6190
• Add in-memory state expiration to StateManagerMemory by @​FarhanAliRaza in #​6201
• feat: add experimental memo decorator for JS-level component and function memoization by @​FarhanAliRaza in #​6192
• Add chunked upload documentation for rx.upload_files_chunk by @​FarhanAliRaza in #​6259
• add sitemap slash configuration by @​adhami3310 in #​6291
• Add Defs to recharts components by @​Darksinian in #​6322
• Added dropdown-cell support for the data editor by @​IEC1 in #​6139
• feat: add backend_path config to prefix backend routes by @​FarhanAliRaza in #​6338
• ENG-9350: App.modify_state can directly modify SharedState tokens by @​masenf in #​6336

Performance Improvements

• fix: avoid eagerly copying uploaded files into memory by @​FarhanAliRaza in #​6174
• Cache expensive introspection calls in pyi_generator for faster stub generation by @​FarhanAliRaza in #​6187
• do inspect signature once by @​adhami3310 in #​6197
• define _compile_stateful_components as an external by @​adhami3310 in #​6198
• do not compile stateful components in dev mode by @​adhami3310 in #​6199
• skip duplicate DynamicRouteVar by @​adhami3310 in #​6202
• avoid validating app when running in backend only by @​adhami3310 in #​6203

Bugfixes

• Fix race conditions in StateManagerRedis lock detection by @​masenf in #​6196
• reflex.event: revert future annotation changes by @​masenf in #​6254
• Fix buffered upload handler not cancelling on client disconnect by @​FarhanAliRaza in #​6307
• fix: set_focus/blur_focus args stripped by get_handler_args for stateless handlers by @​FarhanAliRaza in #​6314
• Serve _upload files with content-disposition: attachment by @​masenf in #​6303
• fix: collect imports from components in props in _get_all_imports() by @​lawrence3699 in #​6317
• Remove last pydantic.v1 vestiage by @​masenf in #​6321
• Fix outstanding frontend_path issues by @​masenf in #​6328
• ENG-9348: Lifespan tasks execute in registration order by @​masenf in #​6334
• Expose .importable_path on the value returned from rx.asset by @​masenf in #​6348

Docs

• implement reflex docgen by @​adhami3310 in #​6200
• ENG-9032: move framework docs into framework repo by @​adhami3310 in #​6206
• Expose docs through reflex docgen by @​adhami3310 in #​6257
• make reflex state import dynamic by @​adhami3310 in #​6258
• remove all pcweb references from the docs by @​adhami3310 in #​6263
• add back images for readme by @​adhami3310 in #​6265
• Fix cond typing by @​adhami3310 in #​6279
• Make reflex init and docs uv-first by @​GautamBytes in #​6287
• Add docs app by @​carlosabadia in #​6299
• Add reflex-ui and integrations docs to packages by @​carlosabadia in #​6302
• Update docs sidebar text color by @​carlosabadia in #​6309
• Update posthog script by @​carlosabadia in #​6315
• Add posthog recordings and events by @​carlosabadia in #​6310
• Remove image zoom in how reflex works doc by @​carlosabadia in #​6276
• update reflex ui links by @​carlosabadia in #​6326
• ENG-9295: add docs llms.txt by @​adhami3310 in #​6327
• Update hugeicon import in reflex-ui by @​carlosabadia in #​6333

Chores

• 090dev by @​adhami3310 in #​6182
• README.md: Add responsive logo for light and dark themes by @​masenf in #​6253
• export modules for plugins by @​adhami3310 in #​6261
• make the ci better at not install reflex deps for reflex-web by @​adhami3310 in #​6262
• reflex core is typed by @​adhami3310 in #​6271
• Add wildcard ignore and pragma: no cover for compat shims by @​masenf in #​6275
• ENG-9277: Add AI builder, Entreprise and hosting docs by @​carlosabadia in #​6277
• Rename reflex core to reflex base by @​adhami3310 in #​6281
• specify directories for publish by @​adhami3310 in #​6282
• improve pypi directory handling by @​adhami3310 in #​6283
• publish dist star by @​adhami3310 in #​6284
• Codspeed benchmark for backend state event processing by @​masenf in #​6290
• Remove 090 deprecations by @​adhami3310 in #​6292
• Exclude old-style imports when they will be replaced with subpackage imports by @​masenf in #​6294
• ENG-9212: integration socket.dev in OSS integration tests by @​masenf in #​6280
• Bump requests from 2.32.5 to 2.33.0 in the uv group across 1 directory by @​dependabot[bot] in #​6251
• reflex-web CI uses local reflex version by @​masenf in #​6298
• remove git https pyproject by @​adhami3310 in #​6306
• remove flexdown completely by @​adhami3310 in #​6308
• Update some reflex ui components by @​carlosabadia in #​6311
• Add page whitelist instructions to README for faster docs app dev builds by @​carlosabadia in #​6313
• pyi_generator regression tests by @​masenf in #​6318
• More pyi_generator tweaks by @​masenf in #​6319
• Usability improvements for generated type hints by @​masenf in #​6300
• delete js prod command by @​adhami3310 in #​6323
• Add AGENTS.md by @​masenf in #​6337
• Bump locked dependencies for 0.9.0 by @​masenf in #​6329
• update DECORATED_PAGES type annotation by @​zoumingzhe in #​6266

New Contributors

• @​FarhanAliRaza made their first contribution in #​6174
• @​GautamBytes made their first contribution in #​6287
• @​lawrence3699 made their first contribution in #​6317
• @​Darksinian made their first contribution in #​6322
• @​IEC1 made their first contribution in #​6139
• @​zoumingzhe made their first contribution in #​6266

Full Changelog: reflex-dev/reflex@v0.8.28...v0.9.0

v0.8.28

Compare Source

• fix: make disable_plugins accept Plugin types instead of strings by @​masenf in #​6155

• feat: add vite_allowed_hosts config option for Vite dev server by @​milochen0418 in #​6147

Bugfixes

• Unlink broken symlinks in the assets folder by @​masenf in #​6140
• fix: include frontend_path in sirv prod command for correct 404.html fallback by @​masenf in #​6154
• Skip MutableProxy rebind self for _sa_instrumented functions by @​masenf in #​6168
• Gracefully reset the StateProxy internals on error by @​masenf in #​6169
• fix: clean up stale asset symlinks to prevent hot reload crash loop by @​masenf in #​6163

Performance Improvements

• fix: more cached type hints by @​benedikt-bartscher in #​6161

Chores

• 0828dev by @​adhami3310 in #​6136
• bump devcontainer to python:3.14-trixie by @​masenf in #​6158

Full Changelog: reflex-dev/reflex@v0.8.27...v0.8.28

v0.8.27

Compare Source

Release Notes

Components Improvements

• fix: apply ID to debounceinput even when it is a var. by @​abulvenz in #​6105
• Origin/matthew collins nz/adddataeditorrowcheckboxvisible by @​MatthewCollinsNZ in #​6082
• adding row selection mode by @​MatthewCollinsNZ in #​6090
• Data editor search props by @​MatthewCollinsNZ in #​6113

Bugfixes

• fix: Preserve event_actions from @​rx.event decorator in mixin event handlers by @​benedikt-bartscher in #​6099
• Fix socket reference shape mismatch in queueEvents by @​Dadzemovic in #​6094
• fix: Preserve object identity when pickling MutableProxy by @​benedikt-bartscher in #​6097
• Catch all exceptions in health checks by @​masenf in #​6089
• Run external servers with sys.executable -m by @​masenf in #​6095
• Use homogenous tuple annotation in BaseStateMeta.new by @​masenf in #​6096

Performance Improvements

• cache get_type_hints for heavy init subclass stuff - improve import performance by @​benedikt-bartscher in #​6118

Chores

• 0827dev by @​adhami3310 in #​6091
• bump packaging upper-bound to <27 by @​masenf in #​6102
• Bump python-multipart from 0.0.21 to 0.0.22 in the uv group across 1 directory by @​dependabot[bot] in #​6103
• Bump pillow from 12.1.0 to 12.1.1 in the uv group across 1 directory by @​dependabot[bot] in #​6127
• use get_event_handler in upload, cherry-pick from #​6100 by @​benedikt-bartscher in #​6130
• handle empty getBackendUrl by @​adhami3310 in #​6093
• Allow granian log level to be set by @​masenf in #​6131

New Contributors

• @​dependabot[bot] made their first contribution in #​6103
• @​Dadzemovic made their first contribution in #​6094

Full Changelog: reflex-dev/reflex@v0.8.26...v0.8.27

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • At any time (no schedule defined)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[semanticdiff-com]

Review changes with  

[gitnotebooks]

Review these changes at https://app.gitnotebooks.com/AlphaSphereDotAI/AlphaSphereDotAI.github.io/pull/54

[deepsource-io]

DeepSource Code Review

We reviewed changes in 8096ed9...fb7a192 on this pull request. Below is the summary for the review, and you can see the individual issues we found as inline review comments.

See full review on DeepSource ↗

PR Report Card

Overall Grade

Security   Reliability   Complexity   Hygiene

Code Review Summary

Analyzer	Status	Updated (UTC)	Details
Secrets		Apr 21, 2026 12:55a.m.	Review ↗
Python		Apr 21, 2026 12:55a.m.	Review ↗

---

Important

AI Review is run only on demand for your team. We're only showing results of static analysis review right now. To trigger AI Review, comment @deepsourcebot review on this thread.

[mergify]

🧪 CI Insights

Here's what we observed from your CI run for 611095f.

🟢 All jobs passed!

But CI Insights is watching 👀

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	reflex@​0.8.26 ⏵ 0.9.3	+6

View full report

[socket-security]

All alerts resolved. Learn more about Socket for GitHub.

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

View full report

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud