v5.2.2

🔧 Fixes

• fix: Frontend crashes on 2FA QR-code generation (thanks to @Sturdzza for contributing)
• fix: Sessions view is empty when there are custom events applied as filters

v5.2.1

Important

If you're updating to this version from v5.1.x, please read the release notes for the v5.2.0 release as it contains important migrations you'll need to do.

🔧 Fixes

• Fix failing frontend build

v5.2.0

Warning

This release includes breaking changes for self-hosted installations.

If you are upgrading from Swetrix CE v5.1.x, you must update your configuration and run the database migration below. Please read the upgrade instructions carefully before starting, otherwise your installation will not work correctly.

🔥 Major updates

Import historical data from 3rd party analytics services

Swetrix allows you to import historical analytics data from other platforms so you can switch without losing your history. Imported data appears alongside your live-tracked data in dashboards, charts, and reports. It's tagged internally so it can be identified and, if needed, removed later without affecting your live-tracked data.

In this release, the following providers are supported for import:

• Google Analytics 4
• Fathom Analytics
• Plausible Analytics
• Simple Analytics
• Umami

👉 Learn more about this feature on our Data Import documentation page.

Shout out to @prohtex for the suggestion.

SEO insights & Google Search Console integration

The SEO dashboard gives you a complete view of your website's search engine performance, powered by your the Google Search Console integration. It combines GSC data with your referral analytics to show search queries, top pages, branded traffic, and optimisation opportunities - all in one place.

👉 Learn more about the SEO dashboard, and the set-up instructions for Swetrix CE.

Experiments (A/B testing)

Experiments (A/B Testing) allow you to test different variations of your application to see which one performs better. You can use experiments to optimize conversion rates, user engagement, and other key metrics.

👉 Learn more about Experiments.

Bot blocking controls

Swetrix automatically filters out automated traffic so the numbers in your dashboard reflect real visitors. In previous versions we've offered basic bot protection that worked by utilising user-agent matching against common crawlers & bots.

This release introduces Strict level bot protection, that does additional checks against the following attack vectors:

• User-Agent checks: We match the User-Agent header against a comprehensive list of known bots (Googlebot, Bingbot, AhrefsBot, curl, headless tools, etc.) maintained by the isbot project.
• Headless browser fingerprint: Headless and automation frameworks like HeadlessChrome, Puppeteer, Playwright, etc.
• Suspicious headers checks: Real browsers always send Accept, Accept-Language, and Accept-Encoding headers. If two or more of these are missing on a pageview, custom event, error, or heartbeat request, the request is treated as a bot.
• Vulnerability-scan paths (probe paths): Ignore crawlers that search for hidden dotfiles (/.env, /.git/config, etc.), server internals, build / config leaks or common scanner probes.
• Referrer spam checks: We maintain a snapshot of the matomo-org/referrer-spam-list (~2,300 known spam hosts). If the request's Referer (or Origin) matches any of those hosts, or is a subdomain of one, the request is dropped.
• Datacenter IP checks: Ignores traffic that comes from cloud / hosting providers (AWS, GCP, OVH, Hetzner, etc.) - since usually most of this traffic are bots or scrapers. This feature requires a paid IP Geolocation database to work on Swetrix CE. This feature is available to all Cloud customers.

Additionally to these checks, we've also added a per-project report of exactly how many requests were blocked and why.

👉 Learn more about the bot protection feature.

Improved funnels

Funnels now display Top sources and Top countries for every step, as well clearer conversion rates and drop off.

You can also click on any funnel step to see the sessions that got into this step, allowing you to investigate them further and understand why they dropped off.

Click on chart to see sessions of this period

Similarly to funnels, you can click on any data point on the main chart to pull up a detailed list of all sessions that occurred during that specific timeframe. This is an excellent way to drill down into the behavior of individual visitors on a given day or hour.

You can go further and click on any of those sessions to see how long it lasted, what pages were visited, error occured and why they dropped off.

🙂 Minor changes

• Stored 2FA recovery codes are now hashed
• New Swetrix logo
• User password is not required to delete the account
• [Swetrix CAPTCHA] Add Hungarian language support (thanks to @AndrisBorbas)
• In line with recent surge of NPM supply chain attacks, we've reduced the amount of non-essential dependencies
• Add password strength meter to the signup and user settings pages
• Migrate i18n from ?lng= query to /{lang}/ path-based URLs
• Reduce 'Direct / None' referrers by inferring it from UTMs as a backup
• Added 'Network intelligence' feature, which detects ISP, Usage type and similar metrics. Only available if you pass a custom paid IP geolocation model. Right now it's hidden in the UI.
• App-wide UI improvements - better colours, typography, accessibility. Made some components like sessions or error tracking UI more clean and minimal.

🔧 Fixes

• fix: HTTP exception when user applied custom event related filters on an All time period
• fix: Use cancellable billboard resize timer to avoid post-destroy errors
• fix: Analytics dashboard -> Details modal is hard to read on mobile
• fix: Shared project admins are not able to manage project members
• Feature flags evaluation fixes & improvements
• Stylistic fixes to the dashboard when it's rendered in embedded mode

Upgrading to Swetrix CE v5.2 from v5.1.x

Important

This upgrade requires a database migration.

Before running the migration, make sure you have a recent backup of your data. This helps prevent data loss if something goes wrong during the upgrade.

Important

Swetrix CE v5.2 also updates the self-hosting Docker configuration.

If you installed Swetrix by cloning the selfhosting repository, run git pull in your selfhosting directory to get the latest compose.yaml. If you maintain your own copy of the file, update the image versions manually.

Existing installations must also add a non-empty ClickHouse password to .env:

CLICKHOUSE_PASSWORD=your-random-password-here

The value can be any strong random password. Keep the same value in .env; Docker Compose passes it to both ClickHouse and the Swetrix API.

1. Update your Swetrix services

Before running the migration, update your compose.yaml file to use the latest Swetrix CE v5.2 images:

• frontend: swetrix/swetrix-fe:v5.2.1
• backend: swetrix/swetrix-api:v5.2.1

Also make sure your compose.yaml includes the latest self-hosting dependency versions from this release, including the updated ClickHouse image.

Then pull and start the updated services from your selfhosting directory:

docker compose pull
docker compose up -d

2. Run the database migration

Once the updated containers are running, execute the migration script from your selfhosting directory:

docker compose exec swetrix-api node migrations/clickhouse/selfhosted_2026_03_31_data_import.js
docker compose exec swetrix-api node migrations/clickhouse/selfhosted_2026_04_28_gsc.js
docker compose exec swetrix-api node migrations/clickhouse/2026_03_19_isp_network.js
docker compose exec swetrix-api node migrations/clickhouse/2026_04_26_bot_blocks.js
docker compose exec swetrix-api node migrations/clickhouse/2026_05_01_captcha_remove_manually_passed.js
docker compose exec swetrix-api node migrations/clickhouse/2026_05_01_unify_events.js

If the command finishes without any Query ERROR messages, the migration completed successfully. Please don't worry if the migration takes long to execute - it depends on how much data you have accumulated.

3. Restart Swetrix

After the migration has completed, restart your services:
docker compose restart

Then go to your Swetrix dashboard and make sure that your data is intact and that it's working properly.

If everything is looking good, please run the following migration:

docker compose exec swetrix-api node migrations/clickhouse/2026_05_04_drop_legacy_tables.js

It will remove legacy data tables (in v5.2 we migrated into a unified `eve...

tracker-node@3.2.0

Changelog:

• Add a new query string (qs) parameter to trackViews and track methods, that's being used to properly identify referrers if they're not set (to reduce the amount of Direct / None you can see in the traffic sources of the dashboard). Learn more.

tracker-js@4.2.0

Changelog:

• Add a new query string (qs) parameter to trackViews and track methods, that's being used to properly identify referrers if they're not set (to reduce the amount of Direct / None you can see in the traffic sources of the dashboard). Learn more.

v5.1.1

🔧 Fixes

• fix: Profiles did not support custom event filters (if you applied a custom event filters and opened Profiles tab - it would always be empty, even if sessions of this profiles had this event)
• fix: User flow panel is always reporting "No data"
• fix: Dashboard - infinite reload on project pin/unpin
• fix: Reuse traffic chart tooltip styles across all other charts
• fix: Unresponsive custom metrics (in Segments view)
• fix: Broken funnels tooltip layout
• fix: Report 'Visitors' instead of 'Pageviews' for Pages / Hosts panels

v5.1.0

Warning

This release contains breaking changes that require migrations and changes to your configuration, please read these instructions carefully if you are upgrading from a previous version, otherwise your installation will not work properly.

🔥 Major updates

• 2FA support

🙂 Minor changes

• Improve onboarding & empty projects pages - now you will see a block with detailed info & links on how to add tracking to your website
• Add top 1/3/5/10 dropdown to the custom events chart to reduce noise
• 'Today' period chart now includes the whole day till 23:00, not just the period from the start of the day until now
• Add more integrations guides with different platforms to the docs
• Relax custom event limitations - now you can track any string up to 256 chars (before this change custom events were limited to letters & numbers only)
• App is crashing when you go offline. As a temporary solution, instead of the scary crash page it now displays a "No internet connection" page
• Session pageflow > Mark live sessions as "Session in progress" for more clarity
• Increase account max password length to 72 chars
• Dark theme & UI components improvements

🔧 Fixes

• fix: ECONNREFUSED when trying to use Swetrix CE on localhost deployments
• fix: Changing period does not update sessions in the profile view
• fix: Sometimes ALL annotations were always visible when the 'Today' period is selected, even if they're outside of that timeframe
• fix: Session & Profile detals are not displaying locale, UTM, region & city data properly
• fix: Don't expose CAPTCHA secret key on public projects
• fix: When custom event filter is applied, sometimes you might see data like UTM metrics as null rows
• fix: Filters > Page selector is extremely laggy if there are a lot of pages present
• chore: Update dependencies

Upgrading to Swetrix v5.1 (from v5.0.3)

Important

You will need to perform a database migration. Please make sure you read these instructions through to the end to make sure you've updated properly and to avoid losing any data.

1. Run database migration scripts

Warning

Please make sure you always back up your data! Especially before migrating, to prevent data loss if something goes wrong.

In order to upgrade to Swetrix v5.1.0, you will need to run database migrations scripts. But first, your compose.yaml file should be set to the latest Swetrix versions and they are already installed on your machine.

To perform the migrations, you need to run the following command in your selfhosting folder:

docker compose exec swetrix-api node migrations/clickhouse/selfhosted_2026_03_04_2fa.js

If you don't see any Query ERROR messages written to your console, this indicates that the migrations went well and Swetrix v5.1.0 is ready to use.

After performing the migration, you can run docker compose restart and Swetrix should be good to go!

🎉 That's it, enjoy selfhosting Swetrix! Join our Discord community for more updates & discussions about Swetrix.

v5.0.3

🙂 Minor changes

• Reworked the onboarding flow - to make it more appealing and showcase Swetrix features
• Reworked the dark theme UI - it's now darker and more consistent across UI components
• Migrate to a new icon library (before that change we were using 3 separate icon sets, now it's just one)
• Updates to the map component in the analytics dashboard - add + / - buttons for easier zoom, rework full screen navigation
• Simplify user settings page

🔧 Fixes

• Fullscreen map view was not closable for mobile device users

v5.0.2

🔧 Fixes

• Style inconsistencies of some components in dark mode

v5.0.1

🔧 Fixes

• Fix a faulty migration that prevents v5 from booting up properly