Loading... Background job is running.

Changelog for Private Packagist Cloud

You can find the changelog for Private Packagist Enterprise, our on-premise product, on https://packagist.com/docs/enterprise/changelog.

February 2019


  • Added an option to override the default request timeout for mirrored Composer repositories


  • Performance improvements to granting customers access to packages via API, editing credentials, renaming organizations, projects and customers and deleting packages
  • The teams page now always lists the Owners and Admins team for everyone

January 2019


  • Added a search field when adding packages from synchronized repositories and when adding packages from the parent organization to a project
  • Synchronizations now list runs during the previous 48 hours and what exactly changed on each run, e.g. new users or repositories
  • The team member pages now display more information about each user, in particular the username they use on the service the team is synchronized with


  • The API now accepts customer urlNames in addition to customer ids for all API calls requiring lookup of a customer
  • The API uses the word "edit" for modifying objects instead of "update" which is usually reserved for reloading package data or the composer instruction
  • The warning about being on a free trial now shows the exact date it ends
  • Synchronizations can now be triggered by all members of an organization
  • Synchronizations show which credential is used to make requests to the external service
  • No longer displaying a warning about a missing hook for custom JSON packages which cannot be updated without editing the JSON
  • Improved typography and spacing across all pages


  • Billing access now works for Admins (non-Owners) who are also on the billing team
  • Members of new teams found during synchronization are now added immediately, rather than only on the second synchronization run

December 2018


  • Synchronizations can now be configured on a per-project basis
  • You can now grant teams access to view and/or manage vendor add-on customers
  • Added settings page for vendor add-on customers and an option to deliver source URLs to customers via Composer


  • When importing packages from JSON you can now select credentials to be applied
  • You can now switch which of your synchronizations should be the primary one

November 2018


  • Added API endpoints to manage project authentication tokens
  • Added support for the Composer search API
  • Private Packagist for Agencies: Support for projects with a separate Composer repository, including options for mirrors, credentials and tokens to be defined for just one or a set of projects
  • Packages mirrored from packagist.org are now updated automatically within a few seconds of changes on packagist.org rather than only twice a day
  • Bitbucket Team hooks are now set up automatically to detect new packages when you create new repositories
  • Added API endpoints to manage projects as part of Private Packagist for Agencies
  • Added API endpoint to fetch all customers with access to a package as part of Private Packagist for Vendors
  • Install statistics and count of accessible packages are now shown on the customers overview page


  • Added list of versions to GET package API endpoint
  • Managing access to packages for teams now sorts the dropdown of packages and lets you search through them
  • Unauthenticated users trying to login are now redirected to their organization's custom login page if a custom integration is configured
  • The list of customers is now sorted by name
  • Changed body font color to black for more contrast
  • Added composer instructions page on the customer detail page in the Private Packagist for Vendors addon
  • Warn users if packages are configured to use credentials which do not work for the package's URL
  • Improved the package update log output to better display authentication issues
  • Package updates which fail because of external API limits are now retried once the limit resets

October 2018


  • Packages now show mirror information
  • Synchronizations for existing organizations can now be set up with previously defined credentials


  • Allow a user to disconnect from their last connected third party authentication provider
  • Improved the speed of mirroring packages from packagist.org
  • Authentication tokens assigned to synchronized teams won't be deleted anymore if the team gets removed by the synchronization they lose access to all packages but can be reassigned to a different team
  • Improved the performance of package updates by caching version data
  • Allow deactivating members who do not have a Private Packagist account yet on the organization members page

Free Trial

Login with github now to create an organization and start your free trial!