Current Version: v2.25.3

This changelog covers what has changed in the WhatsApp Business API client and AWS Templates.


Software Version Details

WhatsApp Business API for On-premise


Expires on Apr 4, 2020

WhatsApp Business API for AWS

Template version: 2.3.3

Expires on Apr 4, 2020



Must be 5.7.xx. Higher versions of this are not currently supported.



Versions 9.5.x, 9.6.x, and 10.x are currently supported.

Docker, Postman

Any recent version

Ideally it should support any recent version.

WhatsApp Business API Client

Deprecated versions are not supported anymore and will soon not be allowed to send messages. Please keep your WhatsApp Business API Client installation updated.

Version Date Introduced Available Until

v2.25.3 CURRENT

Oct 7, 2019

Apr 4, 2020


Sep 9, 2019

Mar 7, 2020


Aug 26, 2019

Feb 22, 2020


Sep 9, 2019

Mar 7, 2020


Jun 18, 2019

Dec 15, 2019


Apr 29, 2019

Oct 26, 2019


Blocking updates are ones in which the Coreapp will suffer downtime while upgrading using the db-upgrade service. Non-blocking updates are ones in which the Coreapp should continue to run when upgrading using the db-upgrade service. You can only use the db-upgrade service to upgrade to a version >= 2.23.* from your current version.

Oct 7, 2019 (v2.25.3)

  • Throughput for outbound text type messages is improved to 50 messages/second
  • Improved efforts to show URL preview
  • Improved error handling when preview URL is invalid or not supported
  • [Bug fix] Mark messages as read in Postgres
  • [Bug fix] Previously, photos larger than 63 KB were encoded. This limit is now increased to 5 MB, enabling original high quality pictures to be sent as they are.
  • [Bug fix] Fixed security vulnerabilities for CVE-2019-11931 and CVE-2019-14835

Sep 9, 2019 (v2.25.2, v2.23.6)

  • Improvements to Coreapp security

Aug 26, 2019 (v2.25.1)

  • Throughput for outbound media type messages is improved to 18 messages/second
  • Throughput for outbound text type messages is improved to 25 messages/second
  • Throughput for inbound text type messages is improved to 100 messages/second for single instance
  • “Non-secure http” Webhooks are deprecated — Please upgrade Webhooks to https for inbound notifications
  • A long lived authentication token is available for health API calls to help monitor multiple deployments of WhatsApp Business API clients
    • The number of requests (rate limits) for the health endpoint is set to 10 per second
  • Business vertical values to be enumerable rather than free-form text
  • [Bug fix] Propagating mime-types correctly to address inbound media issues
  • [Bug fix] Mark message read request in multiconnect mode should be distributed uniformly to all the shards rather than sending to shard 0 alone
  • AWS cloud formation template is made publicly available from S3, removing manual step of requesting access via Direct Support

Security Advisory

The following security vulnerabilities impact the v2.25.1 Coreapp image. The next patch release will include fixes.

  • CVE-2018-20856: A patch release will include the fix when published by the vendor for Ubuntu 16.04

Jun 18, 2019 (v2.23.5)

  • [Fixed] WhatsApp Web Business Tool not working in Multiconnect mode
  • Upload media file size now 100MB
  • Disallow setting shards for single instance
  • Improved error handling while
    • Setting shards
    • Setting two-factor verification
    • Sending message templates
  • Oncall pager error messages improved for "structure unavailable errors"
  • "Mark messages as read" now includes all readable message types

Apr 29, 2019 (v2.23.4)

If you are using High Availability/Multiconnect setup, you will see "Bad response received from health check" error in WhatsApp Web Business Tool when you use v2.23.4.

This is a known issue, and we are working hard to fix it. This doesn't affect other functionalities such as sending messages or checking contact via the WhatsApp Business API, yet we advise you NOT to use/upgrade to v2.23.4 if you are using High Availability/Multiconnect setup and WhatsApp Web Business Tool. Single instance setups will NOT be affected.

Breaking Changes

  • callback_requests replaced with callback_requests_duration_ms_count and callback_requests_duration_ms_sum
  • metric out_message_received_by_server, out_message_received_by_target, out_message_received_by_target_read, out_message_sent replaced with out_message_status
  • Upgrade Prometheus/Grafana containers to 2.23+ to enable monitoring for new metrics

Security Advisory

The following security vulnerabilities impact v2.23.4 images. The next patch release will include fixes.


Amazon Web Services Templates

The most recent version of the template is 2.3.3.

What's included in the Amazon Web Services (AWS) - Cloud Formation (CFN) templates:

Release Version Date Introduced Changes


Aug 19, 2019

Change details


Sep 3, 2018

Change details

Release 2.3.3

Template URLS




  • All CFN templates are now available in the new S3 bucket
  • EC2 instance is now launched from a marketplace CentOS 7 AMI
  • Removed unsupported EC2 instance type from the business API client template
  • EC2 instance is now equipped with cron jobs for maintenance work (Webapp/Coreapp log rotate, ECS agent update)
  • Use General Purpose SSD as the RDS instance storage in staging environment, now it’s the same as production environment
  • Removed unused CloudWatch alarms

Release 2.3.1

Template URLs

  • Enterprise:
  • DB:
  • Lambda:
  • Network:




  • Support for new regions (Seoul, Singapore & Tokyo)

Known Issues

DetailsFirst present inFixed in

Video preview thumbnails are not correctly generated on the receivers phone client

> v2.23.*