October 2025

In October 2025, we released two major updates: GPG Recryption, which automates secure file transfers between systems that use different encryption keys, and User Lifecycle Rules that target specific groups and user tags. Several smaller improvements across Files.com round out the release.

Automatic GPG Recryption Setting

GPG Recryption is a new feature for sharing encrypted data between systems or partners that use different encryption keys.

With GPG Recryption, you can configure a folder to automatically decrypt incoming GPG-encrypted files and re-encrypt them with a different key. Files stay protected end to end while transfers run automatically, even between systems that don't share the same GPG setup.

Like the GPG Encryption and Decryption options, Recryption works with the GPG Key Manager. You don't have to handle keys manually or expose files in plain text. This is useful for partner data transfers, automated workflows, and routine key rotation.

Learn more about GPG Recryption.

User and Group Targeting for User Lifecycle Rules

User Lifecycle Rules now give you more control over which users each rule affects.

You can choose a user tag and/or a Group in the rule's setup. A rule applies only to users who meet all of its conditions, including membership in the chosen group or having the selected tag.

For example, instead of a single rule that disables every password user who hasn't logged in for 120 days, you can define more targeted rules: disable inactive password users in the "Contractors" group after 30 days, disable inactive password users in the "Vendors" group after 90 days, and disable other inactive password users after 120 days.

This lets lifecycle policies match how your organization manages different types of users.

Learn more about Making User Lifecycle Rules More Specific.

Minor Updates

New SCIM Logs Available

Files.com records all SCIM-related requests and responses in JSON format in the SCIM Activity Log. The log lets you verify communication between identity providers and Files.com, and diagnose problems such as failed user creation or attribute mismatches.

For example, if a new hire isn't appearing in Files.com, the SCIM log shows whether the provisioning request failed or was rejected due to a data conflict.

Learn more about SCIM Activity Logging.

Message Retention Timeframe for AS2 Messages

Site Administrators have a new option to choose how long AS2 messages are kept, including their full contents and debugging details. The default is 90 days, and the setting applies site-wide. Message data stays available for audits and reviews, and is removed automatically when the retention window expires.

Learn more about How to Configure AS2.

Automatic Retries for Outbound Emails

Your site now automatically retries sending emails through your Custom SMTP server when the server is unavailable or not accepting mail. Retries continue for up to 4 days, and any updates to your SMTP credentials or server settings are picked up on later attempts. Emails still go out if you switch mail providers or hit a temporary outage.

Learn more about using a Custom SMTP server.

MCP SDK Dependencies Updated

The Files.com MCP SDK has been updated for compatibility with the latest FastMCP and Pydantic releases. The update drops older version dependencies and works with current Python environments. Upgrade to version 1.0.35 or later to pick up these changes.

Learn more about the Model Context Protocol (MCP) Server.

Custom CORS Headers on Public Hosting

You can now enable Cross-Origin Resource Sharing (CORS) headers for Public Hosting folders. With CORS headers enabled, browsers can load hosted files from other domains, so you can embed or display Files.com content on external websites. For example, a company site can fetch and display data from a text file hosted on Files.com without manual updates.

Learn more about Setting up Public Hosting.