LoginSign Up
← Back to all sparks
O

OrangeHRM

HR
Velocity0.0

Open-source human resource management software for HR operations.

www.orangehrm.com

Mature open-source HR suite on a slow, module-by-module release cadence

hr-softwareopen-sourceslow-cadencesecurity-maintenancephp-stack
Current state
OrangeHRM releases infrequently and incrementally, adding discrete modules and integrations one at a time — a Claim module (5.5), social/OIDC login plus a GPLv3 relicense (5.6), XLIFF translation import (5.7). The latest two releases (5.8, 5.8.1) are essentially maintenance: bug fixes, security improvements, and broadened PHP/MariaDB/MySQL version support, with no described new features.
Where it's heading
This is a stable, mature product evolving in small, well-spaced steps rather than chasing trends. The cadence has slowed and recent releases lean on security and environment-compatibility upkeep, suggesting consolidation over expansion. Notably absent from the changelog is any AI or automation feature, despite the HR category moving in that direction.
Prediction
Expect continued slow, maintenance-heavy point releases that keep pace with PHP and MySQL versions, with the occasional new module for the Starter and Open Source tiers. No directional shift is visible in the entries.

Recent moves

  1. 1mo ago

    5.8.1: bug fixes and security improvements

    A maintenance patch limited to bug fixes and unspecified security improvements, with supported PHP/MariaDB/MySQL ranges restated. Pure upkeep on the 5.8 line.

    View source ↗
  2. 6mo ago

    5.8: maintenance plus broadened PHP/DB support

    Despite a 'New & Changed Features' header, the release describes no concrete features beyond expanded environment support (PHP up to 8.4, MariaDB up to 12.0), alongside bug fixes and security work. Effectively a compatibility-and-maintenance release.

    View source ↗
  3. 1y ago

    5.7: XLIFF translation import for Starter

    Adds Language Package Import, letting Starter users bring in translations via XLIFF files, plus several API defect fixes including a MySQL 8.4 installation failure. A small but concrete localization capability.

    View source ↗
  4. 2y ago

    5.6.1: SVG sanitization and library security updates

    A security-leaning patch: SVG upload sanitization in corporate branding, password-strength validation in the CLI installer, refreshed front/back-end libraries, and an updated Docker PHP image. Hardening rather than feature work.

    View source ↗
  5. 2y ago

    5.6.0: social/OIDC login and GPLv3 relicense

    Adds social-media authentication via OpenID Connect providers (e.g., Google) for Starter users and relicenses the product to GPLv3. The OIDC login is a real auth feature; the relicense is a governance shift worth noting.

    View source ↗
  6. 2y ago

    5.5.0: new Claim module

    Introduces a Claim module letting Open Source 5.x users create and manage claims, plus assorted bug fixes. A discrete new functional area for the suite.

    View source ↗