TYPO3 14.1.1—What’s Changed?

Released: February 20, 2026
Update type: Bugfix and maintenance release

TYPO3 14.1.1 is a maintenance release that addresses security vulnerabilities in third-party dependencies. This update includes patches for known vulnerabilities in several composer packages, including psy/psysh and firebase/php-jwt, ensuring your TYPO3 installation remains secure.

Security Fixes

Third-party package updates — Updated multiple third-party packages with known security vulnerabilities to their latest secure versions.
psy/psysh vulnerability fix — Updated the psy/psysh package to address a known security vulnerability in the interactive console.
firebase/php-jwt compatibility — Updated firebase/php-jwt dependency to allow versions ^6.10.2||^7.0.2, which include important security patches.

Editing & UX Improvements

No editor-facing changes in this release.

Backend & Administration

No backend administration changes in this release.

Technical Changes

Composer updates — Updated composer/composer to v2.9.3 for improved dependency management.
PHPStan pinned version — Pinned phpstan/phpstan to v2.1.32 in root composer.json for consistent static analysis.