Release 2026.13 delivers multiple meaningful enhancements to webhook integration security and handover experiences for Salesforce MIAW and NiCE CXone.
API Key Authentication for Webhook Endpoints
Webhook Endpoints now support API key authentication, ensuring that only authorized sources can trigger your AI Agents via webhook.
This provides a built-in mechanism to enforce API caller identity, removing the need for additional network-level controls. By configuring a key directly in the Webhook Endpoint settings, any incoming request missing a valid key will be rejected before reaching your Flow.
This is a straightforward but important addition for teams that use webhook integrations in production and need a clean, low-overhead way to gate access at the endpoint level.
Real-Time Queue Notifications for Handovers to Salesforce MIAW
When end users are transferred to a human agent, the handover experience doesn't have to feel like a black box. Cognigy already supports real-time queue notifications for several Handover Providers, and 2026.13 extends this capability to the Salesforce MIAW (Messaging In App and Web) Handover Provider.

With this update, users can now receive live updates on their position in the queue and an estimated wait time while they wait for an agent to pick up. This reduces abandonment and sets clearer expectations for users without requiring any custom workaround logic in your Flow.

Attachment Support for Handover to NiCE CXone with Cognigy Webchat
Attachment support is now available for the NiCE CXone Handover Provider when customers engage on the Cognigy Webchat.
Upon handover, end users can upload files directly from Webchat and share them with human agents operating in the NiCE CXone contact center. Conversely, file attachments sent by NiCE CXone agents are now rendered inline for the end user within the Webchat interface. This applies to both the Integrated and Non-Integrated NiCE CXone configurations.

Other Improvements
Cognigy.AI
- Added authenticated access for runtime file downloads, ensuring that files stored in third-party storage are accessible only through authenticated requests. For configuration steps, refer to File Storage
- Improved the
httpRequesthelper in Transformer functions to respect the configured execution timeout. When a request exceeds the timeout, an error is thrown and logged. The default timeout is 5 seconds and is configurable viaTRANSFORMER_FUNCTION_EXECUTION_TIMEOUT_MS - Added support for sending LLM requests to the webhook when an error occurs for the AI Agent and LLM Prompt Nodes, such as invalid credentials, for easier LLM call debugging
Cognigy Voice Gateway
- Sorted ElevenLabs legacy voices to the bottom of the voice selection list so that non-legacy voices appear first
Cognigy Webchat
- Updated the Webchat v3 widget to v3.44.0:
- Added the
webchat/close-buttonanalytics event, which fires only when the user closes the chat using the header close button - Added the
disableMobileScrollLockoption to disable host-page scroll locking on mobile
- Added the
For further information, check out our complete Release Notes here.