Enhanced security for trial accounts
We’ve implemented enhanced security measures for trial accounts to provide a safer environment while you explore Uploadcare’s features. These measures help protect both our platform and your applications from potentially malicious files.
File type restrictions for trial accounts
Trial accounts now have restrictions on uploading certain file types that could pose security risks. This change ensures that you can safely evaluate our service while maintaining platform security.
Affected file types
Trial accounts are restricted from uploading executable, system-related, and potentially unsafe file types during the trial period.
Safe file types available
Trial accounts have full access to all common file types for web development, content creation, and document management, including:
- Images: All standard formats (JPEG, PNG, GIF, WebP, SVG, etc.)
- Videos: All popular formats (MP4, WebM, MOV, AVI, etc.)
- Audio: All standard formats (MP3, WAV, FLAC, OGG, etc.)
- Documents: PDFs, Office documents, text files, etc.
- Fonts: TTF, OTF, WOFF, WOFF2, etc.
What this means for you
During your trial
- You can upload and work with all file types commonly used in web development and content creation
- All core Uploadcare features remain fully available for supported file types
After upgrading to a paid plan
- All file type restrictions are automatically removed
- You gain access to upload any file type supported by our platform
- Your existing files and configurations remain unchanged
Technical implementation
- For developers integrating with our API the change is transparent and doesn’t require changes to your integration code.
- Attempts to upload restricted file types will result in a
fileTypeForbiddenErrorerror in Upload API. - Malware protection works independently of the file type restrictions and is not affected by this change.
Subdomains rollout
We have started implementing unique CDN subdomains for each project, replacing the generic https://ucarecdn.com/ domain.
The default CNAME has been updated to use a subdomain in the format https://<HASH>.ucarecd.net/<UUID>/, where each project is assigned a unique subdomain (replacing the <HASH>).
Potential breaking change
If your application has hardcoded logic or Content Security Policy (CSP) settings tied to ucarecdn.com, you may experience issues with file uploads or thumbnail rendering.
We recommend locking that in the File Uploader configuration:
An example for jQuery Uploader configuration:
Introducing subdomains will enable enhanced access control, facilitate signed URLs without requiring a custom CNAME, enforce usage restrictions, and help prevent abuse.
Existing customers will keep access to the legacy CDN domain type https://ucarecdn.com/, together with new ones.
New customers will only have access to new subdomain names.
Deprecation notice: jQuery File Uploader
{widget}
We’re announcing that the jQuery File Uploader package is officially deprecated as of September 1, 2025. Moving forward, we will no longer release updates or new versions of this widget. Support will also be discontinued, except in cases where critical security vulnerabilities need to be addressed.
If you’re using jQuery File Uploader in your project, we recommend considering our web-component-based File Uploader, which contains all the latest features and updates.
We understand that this might affect your workflows, and we are committed to providing as much support as possible during this transition. If you have any questions or concerns, please reach out to our support.
Update File Uploader now to avoid disruptions in Google Drive uploads
{widget}
Due to upcoming Google Drive security updates, any existing Google Drive integration with Uploadcare widgets running versions older than File Uploader v1.17.0 or jQuery widget v3.22.1 will stop functioning. These older versions will no longer support uploads from Google Drive.
To avoid any disruptions, please update to the latest version of the File Uploader or jQuery widget by July 25.
Please check whether your version requires migration. Then follow the step-by-step instructions in the migration guide.
If you have any technical challenges, send a request to our support.
Lightweight output format for PDF conversion
{conversion}
We’ve added small.jpg as an output format for PDF-to-JPG conversions.
It’s optimized for generating low-size multi-page PDFs (100+ pages) previews.
https://uploadcare.com/docs/transformations/file-conversion/#jpg-output-format-for-pdfs
File Uploader mask for Cloud editor
{widget}
We’ve added support for defining a custom overlay mask in the Cloud editor using the cloudImageEditor.maskHref option.
This mask helps users crop their images to meet specific upload requirements — for example, when preparing avatars, profile pictures, or documents.
https://uploadcare.com/docs/file-uploader/image-editor/#custom-masks
File Uploader modes update
{widget}
We’ve improved the File Uploader modes:
All updates are also available in the Get Started configurator in your Dashboard.
https://github.com/uploadcare/file-uploader/releases/tag/v1.15.0
Google Photos Picker integration updated
{widget}
We’ve updated and verified our integration with the Google Photos Picker API for File Uploader, adhering to recent guidelines from Google. End-users will continue to enjoy smooth and secure uploads from Google Photos, with no additional steps required on your part.
Filter by MIME type
{dashboard}
We’ve enhanced server-side MIME type filtering, giving you more flexibility to customize which file types can be uploaded. Now you have precise control to allow or block specific formats directly from the Dashboard.
Unsafe content moderation
{dashboard}
Uploadcare now supports automatic image moderation, allowing you to detect and filter unwanted, or offensive images in real time. Enable the Scan images on upload toggle in the Dashboard to automatically review all uploaded images, and customize moderation by selecting specific content categories.