SFTPPlus version 5.16.0 is now available.
This release focuses on tightening SSH key-based access policies, extending SharePoint Online cloud integration, and improving content validation and reliability.
Highlights
- Enforce SSH public key algorithms: the SFTP server can now restrict accepted key algorithms via ssh_cipher_list, closing the gap where any algorithm was previously accepted.
- SharePoint Online integration: a new location type using OAuth2 with the Microsoft Graph API simplifies managed file workflows with Microsoft 365.
- Content validation: new content-check event handler replaces and expands the former file-digest handler, letting you assert presence or absence of specific content.
- Custom HTTP User-Agent: define User-Agent for HTTP event handlers and HTTP authentication methods, improving traceability and compatibility.
- Stronger RSA key interoperability: SFTP locations can authenticate with servers that disable legacy ssh-rsa and only allow rsa-sha2-256 / rsa-sha2-512.
- More resilient Purview extension: automatic retries with configurable sdk_timeout, retry_count, and retry_wait, plus an increased default timeout (now 10 minutes).
Security
Administrators can now explicitly align allowed SSH public key algorithms with organizational policies or compliance baselines, reducing unintended acceptance of weaker or undesired algorithms.
Cloud & Integration
SharePoint Online support (Graph API + OAuth2) broadens hybrid and cloud transfer options, allowing direct SharePoint document library ingress/egress inside standard SFTPPlus transfer definitions.
Event Handling & Validation
content-check unifies and extends digest-oriented functionality so you can declare required markers or patterns—or ensure prohibited content is not present—during automated handling chains.
Thank you
Thank you to all customers providing feedback and reporting issues. Your input drives ongoing improvements. For upgrade guidance contact our support team.
You can review the full release notes here.