diff --git a/Dockerfile b/Dockerfile
index d9afe8d..341e6b7 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -1,4 +1,4 @@
-FROM vaultwarden/server:1.32.5-alpine
+FROM vaultwarden/server:1.32.7-alpine
 
 RUN apk update && \
     apk add --no-cache \
@@ -12,3 +12,5 @@ RUN apk update && \
     /var/tmp/*
 
 COPY --chmod=755 ./docker_entrypoint.sh /usr/local/bin/docker_entrypoint.sh
+
+ENV EXPERIMENTAL_CLIENT_FEATURE_FLAGS=extension-refresh
diff --git a/manifest.json b/manifest.json
index db8fadf..1af841d 100644
--- a/manifest.json
+++ b/manifest.json
@@ -1,8 +1,8 @@
 {
   "id": "vaultwarden",
   "title": "Vaultwarden",
-  "version": "1.32.5",
-  "release-notes": "* Updated to the latest upstream code with notable changes:\n  - This release further fixed some CVE Reports reported by a third party security auditor and we recommend everybody to update to the latest version as soon as possible.\n  - Full change log available [here](https://github.com/dani-garcia/vaultwarden/releases/tag/1.32.5)",
+  "version": "1.32.7",
+  "release-notes": "* Updated to the latest upstream code with notable changes:\n  - This release contains a security fix for the following CVE [GHSA-g65h-982x-4m5m](https://github.com/dani-garcia/vaultwarden/security/advisories/GHSA-g65h-982x-4m5m).\n  - New extension design is now enabled by default.\n  - Full change log available [here](https://github.com/dani-garcia/vaultwarden/releases/tag/1.32.7)",
   "license": "AGPLv3",
   "wrapper-repo": "https://github.com/Start9Labs/vaultwarden-startos",
   "upstream-repo": "https://github.com/dani-garcia/vaultwarden",
diff --git a/scripts/procedures/migrations.ts b/scripts/procedures/migrations.ts
index d8c10b9..ba59f25 100644
--- a/scripts/procedures/migrations.ts
+++ b/scripts/procedures/migrations.ts
@@ -3,7 +3,7 @@ import { manifest } from "../generated/manifest.ts";
 
 export const migration: T.ExpectedExports.migration = migrations.fromMapping(
   {
-    // 1.32.5 No migration needed
+    // 1.32.7 No migration needed
   },
   manifest.version,
 );