Introduction
There’s some great news for Magento Open Source and Adobe Commerce users. Magento is here with Magento Open Source version 2.4.7. It is a significant update that comes with a compelling mix of security improvements, performance optimizations, and exciting new features. Upgrading to this version is highly recommended to ensure the security, performance, and functionality of your Magento store.
Here’s a sneak peek into the highlights of Magento 2.4.7.
Security Enhancements and Bug Fixes
The Magento 2.4.7 release covers critical vulnerabilities, including potential cross-site scripting (XSS) and XML injection flaws. These fixes bolster the overall security posture of your eCommerce platform.
-
Non-Generated Cache Keys for Blocks
Cache keys for blocks that are not automatically generated have different prefixes compared to the ones automatically generated. These keys can only contain letters, digits, hyphens, and underscores.
-
Limit on Auto-generated Coupon Codes
Magento Open Source limits the number of automatically generated coupon codes. The maximum limit is 250,000. So the system won’t be overloaded with too many coupons. Merchants can adjust this limit with the help of the “Code Quantity Limit” option in the configuration settings.
-
Optimization of Admin URL Generation
With the recent update, Magento has optimized the process of generating the default Admin URL. As a result, the generated URLs become less predictable, thereby enhancing security.
-
Full-Page Cache Configuration
Now, users can configure the maximum number of handles for every API request. It reduces the risks associated with dynamically loaded content fragments. Merchants can change this setting in the Admin panel.
-
Subresource Integrity (SRI) Support
SRI support is introduced to adhere to PCI 4.0 requirements. It helps verify script integrity on payment pages. Integrity hashes are provided for JavaScript assets, specifically on payment pages.
-
Content Security Policy (CSP) Updates
With the help of a nonce provider, you can execute inline scripts and options to configure custom URLs to report CSP violations.
-
Native Rate Limiting for Payment Information
This feature lets merchants configure the rate limiting for payment information transmitted through REST and GraphQL APIs. It enhances protection against carding fraud.
-
Changes to the Default Behavior of Some APIs
As a default behavior, the isEmailAvailable GraphQL query and the corresponding REST endpoint always return true. Through the new update, merchants can activate the “Enable Guest Checkout Login” option in the Admin and revert to the original behavior. However, the challenge with this feature is that it exposes personal information to unauthorized users.
Platform Enhancements
Magento 2.4.7 has introduced some interesting platform enhancements, as discussed below:
1. PHP 8.3 Compatibility
Magento Open Source 2.4.7 brings long-awaited support for PHP 8.3, thereby allowing developers to leverage the latest features and performance improvements.
Note: PHP 8.2 will be supported until December 2025. Merchants using 2.4.7 deployments will have to switch to PHP 8.3 from January 2026.
2. RabbitMQ 3.13 Support
Magento Open Source 2.4.7 is compatible with RabbitMQ 3.13, the messaging and streaming broker used to facilitate the communication between different components of an application. Remember that it will continue to support the previous versions 3.11 and 3.12, until their end-of-support dates. For best performance, use Magento Open Source 2.4.7 with RabbitMQ 3.13.
3. Composer 2.7.x Compatibility
The latest Magento version is compatible with Composer 2.7.x while continuing support for Composer 2.2.x.
4. Varnish Cache 7.4 Support
The updated version of Magento is compatible with Varnish Cache version 7.4 but it will also work with versions 6.0.x and 7.2.x. For optimum results, you should use version 7.4 or version 6.0 LTS.
5. Other Compatibility Updates
Magento 2.4.7 covers compatibility with Elasticsearch 8.11, support for OpenSearch 2.12 and 1.3, and Redis 7.2.
6. Library Updates
The latest version of jsTree has replaced the extjs library. The jQuery/fileUpload library is deleted. In addition, all JavaScript libraries and NPM dependencies in the latest version have been updated to the recent versions. All Laminas library dependencies have been updated to versions compatible with PHP 8.3.
Inventory Management
With the help of Inventory Management (v.1.2.7) tool, users are able to manage product inventory well.
PWA Studio
Magento Open Source 2.4.7 is now compatible with PWA Studio version 14.0. The objective of this update is to improve accessibility.
Web API Framework
In the existing REST API endpoints, GET and POST endpoints for V1/products/attributes return the same value for the is_filterable attributes irrespective of whether it is set to Filterable with results or Filterable – no results. Two new REST endpoints have been introduced to overcome this limitation.
1. PUT / V1/Products/Attributes/{AttributeCode}/is-Filterable/{isFilterable}
Through this endpoint, it is possible to update the is_filterable attribute for a particular product attribute. It accepts two path parameters:
attributeCode (String) and isFilterable (int, where 0 represents No, 1 stands for Filterable (with results), and 2 represents Filterable (no results))
2. GET /V1/Products/Attributes/{AttributeCode}/is-Filterable
This endpoint yields the value of the is_filterable attribute for a specific product attribute. It considers a path parameter attributeCode (String).
Enhanced GraphQL Support
With advanced GraphQL features, developers can create more flexible and data-driven eCommerce experiences.
FedEx and UPS Service Updates
This update integrates the latest versions of FedEx and UPS services so that your store maintains compatibility with the most recent shipping options from these carriers.
Additional Improvements
Including the ones discussed above, Magento 2.4.7 comes with 150+ quality fixes and enhancements that address different aspects of the Magento platform and core code. Ultimately, it imparts a bug-free and more stable user experience.
Wrapping Up
Magento 2.4.7 strengthens your store security and unlocks new functionalities that level up your eCommerce business. Just make sure you back up your store data before carrying out any major updates. If in doubt, consult with a qualified Magento developer at Krish to ensure a smooth and successful update process. Availing Magento development services from our certified professionals can make the entire process a breeze for you.
Table of Content
Subscribe with Us!
Never miss any post, stay tuned!
Disha works as a Sr. Content Writer at Krish TechnoLabs. She is a dentist, who has found her calling in words & technical subjects. She loves to pen down travelogues and romantic short stories in her free time.
Recommended Reading:
12 Benefits of Hyva Theme for Adobe Commerce
22 April, 2024 In today's fast-paced eCommerce landscape, staying ahead of the curve is essential for success. Adobe Commerce, formerly known as Magento, remains a leading platform for online businesses, and the choice of frontend framework can make all the difference in delivering exceptional user experiences. As it continues to be a leading platform for online businesses, the need for innovative solutions that enhance performance and user experience has never been more critical.
Subscribe with Us!
Never miss any post, stay tuned!
Trusted by leading brands
