Open navigation menu

Dify

Dify

Open Source

Application development and workflow platform for LLM apps with plugin and enterprise features.

Curated by Tiberiu ArvaVerified

Modified Apache 2.0Version 1.15.0Released 2026-06-25148,466

Strengths

  • App + workflow surface in one stack
  • Built-in BaaS-style app publishing
  • Plugin architecture

Practitioner note

Good fit for teams that want one self-hostable surface for apps, workflows, and model operations, but the license and commercial boundary need review before standardising widely.

Warning

Dify: Dify's modified Apache 2.0 restricts multi-tenant deployment and requires retaining Dify branding without a commercial license.

Governance posture

Reviewed 2026-05-26
PartialData residency

Self-hosted is customer-controlled; Dify Cloud region not publicly documented.

Source
YesDeployment model

Docker/Kubernetes self-hosted, Dify Cloud SaaS, or enterprise on-prem. (self-hosted, saas, on-prem)

Source
UnknownAudit logging

No dedicated audit-log documentation confirmed on public Dify docs.

YesSOC 2

SOC 2 Type II (Sensiba), second consecutive year.

Source
YesISO 27001

ISO 27001:2022 (Johanson), second consecutive year.

Source
UnknownISO 42001

Not mentioned in Dify's public compliance documentation.

N/AEU AI Act

Application/workflow platform tooling; deployer carries obligations for systems built with it. (role: not-applicable)

YesLicense risk

Modified Apache-2.0 — adds multi-tenant and branding restrictions, outside OSI Apache-2.0. (medium)

Source

Change history

Source-backed and auto-detected events for this tool, newest first.

  1. ReleaseHigh impact

    Dify 1.15.0 introduced difyctl for terminal, script, and CI workflow runs, added richer human-in-the-loop workflow forms, and fixed CVE-2026-41948 in plugin-daemon forwarding.

    Release 1.15.0 · langgenius/dify
  2. ReleaseHigh impact

    Dify 1.14.1 hardened self-hosted SECRET_KEY handling, protected internal metrics endpoints, fixed tenant-isolation issues, and refreshed dependencies for CVE-2026-42208 and related risks.

    Security hardening, workflow stability, and cleaner self-hosted deployments · langgenius/dify · GitHub
  3. Release

    Dify 1.14.0 introduced collaborative workflow editing with synced graph updates and presence indicators, while keeping collaboration disabled by default for self-hosted deployments.

    Release v1.14.0 · langgenius/dify · GitHub
  4. Release
    Dify 1.13.3 ships workflow and retrieval stability fixes

    Dify v1.13.3 shipped on March 27 with workflow, streaming, and knowledge-retrieval stability fixes, reinforcing its push toward more reliable production orchestration.

    Releases · langgenius/dify

Explore the category

Compare this tool against the rest of its category and the cloud platform foundation layer.