- Adds
useQuery_experimental, which accepts object-based args and returns an object with status, data, and error that doesn't throw errors by default. - Adds
npx convex deployment token create my-token --save-env, enabling scripts to configure agent environments with access only to develop and deploy against their own cloud deployment. e.g.npx convex deployment create dev/foo --select --expiration "in 7 days" --type dev # npx convex env set ... (optional - typically default env vars suffice) npx convex deployment token create foo --save-env # npx convex dev --once (optional) - Re-exports ValidatorTypeToReturnType from convex/server
- AI Files will no longer prompt when connecting to an existing project.
- Updates the
VisibilityPropertiestype to allow types likeRegisteredQueryto be more easily extended without losing covariance. - New
ctx.meta.getDeploymentMetadata()function.- Includes the name, region and class of the deployment.
Product ReleaseMay 8, 2026
convex v1.37.0
convex v1.37.0
Michael Shimeles
Published on May 8, 2026
Overview
Included Features (1)
#315
Scoped authorization tokens to prevent agent risk
Currently, your dev environment (npx convex dev) always acts "as you" when you're operating in an authenticated convex with your convex cloud accounts. That means, however, that if you're a project administrator, you can push prod. This is a problem when agents "helpfully" decide to run npx convex deploy for you before you're ready. The ability to limit the power of development keys to narrower scopes than the full power of the user is important for agentic engineering.
432(11)
In Progress