Release Notes
Bug Fixes
This patch release of Itential Platform includes fixes for bugs that were reported to Itential Product Support.
| Key ID |
Release Note |
| ENG-9372 |
Fixed an issue where groups and roles added to a custom group with the create group API were not properly reflected on a user in the new group. |
| ENG-9520 |
Itential servers in an HA (high availability) cluster occasionally showed different sets of custom roles. Updated the itential/service and itential/logger to enable service and startup errors to reach log files. All startup and shutdown notification logs are now logged with the system. |
| ENG-9813 |
When viewing a transformation containing a nested function step with an empty args array, opening the function causes rendering and runtime issues. Added additional checks to address rendering and runtime issues when viewing a transformation with a nested function step in this state. |
| ENG-10364 |
When exporting a project with workflows from a devenvironment and then importing it to staging environment, the workflows were missing post-import. Fixed an issue where projects containing workflows with a createdBy field would fail to import by removing this field during the import process. |
| ENG-10679 |
Integration tasks added to workflows would remain in a running state indefinitely. To resolve this issue, modified the lifecycle logic for adding integration configs to the global.config when the Platform starts up. |
| ENG-10795 |
The run window on a task would stop working when job execution was disabled and then immediately re-enabled from Admin Essentials. Fixed an issue where the action of stopping the task worker affected the ability to handle scheduled tasks on an instance until the instance was restarted. |
Security Changes
This section highlights fixes and measures to prevent and minimize security risks and vulnerabilities.
| Key ID |
Release Note |
| ENG-9790 |
When running security scans, it reported a package dependency in Operations Manager was vulnerable to Prototype Pollution. Removed a duplicate package dependency to resolve the security issue. |
| ENG-10284 |
When running security scans, it showed improper verification of the cryptographic signature. Upgraded the @node-saml/passport-saml package to version 5.0.1 to resolve security vulnerability. |
| ENG-10287 |
When running security scans, it showed affected versions of the body-parser package were vulnerable to Asymetric Resource Consumption (Amplification). Updated the package to version 1.20.3 to fix security vulnerability. |
| ENG-11010 |
When running security scans, it showed affected versions of the ip package in Operations Manager were vulnerable to Server Side Request Forgery (SSRF) risks. Updated ip to version 2.0.8 to resolve security vulnerability. |
| ENG-11011 |
When running security scans, it showed affected versions of the cross-spawn package in Operations Manager were vulnerable to Regular Expression Denial of Service (ReDoS). Updated the package to version 7.0.5 to resolve security vulnerability. |
Automation Platform Versions
| component |
version |
| @itential/adapter-automation_gateway |
4.31.4-2023.2.3 |
| @itential/adapter-azure_aaa |
1.7.5-2023.2.2 |
| @itential/adapter-email |
4.2.20-2023.2.0 |
| @itential/adapter-ldap |
2.14.3-2023.2.2 |
| @itential/adapter-local_aaa |
4.5.2-2023.2.0 |
| @itential/adapter-nso |
7.9.4-2023.2.14 |
| @itential/adapter-radius |
2.2.2-2023.2.0 |
| @itential/app-admin_essentials |
5.4.10-2023.2.18 |
| @itential/app-ag_manager |
1.20.3-2023.2.2 |
| @itential/app-automation_catalog |
2.13.7-2023.2.2 |
| @itential/app-automation_studio |
4.69.3-2023.2.206 |
| @itential/app-configuration_manager |
3.117.5-2023.2.28 |
| @itential/app-form_builder |
4.15.3-2023.2.6 |
| @itential/app-json_forms |
1.42.3-2023.2.25 |
| @itential/app-jst |
1.15.11-2023.2.14 |
| @itential/app-lifecycle_manager |
1.38.4-2023.2.15 |
| @itential/app-mop |
6.21.1-2023.2.18 |
| @itential/app-nso_manager |
2.25.2-2023.2.5 |
| @itential/app-operations_manager |
1.215.10-2023.2.64 |
| @itential/app-service_catalog |
3.14.1-2023.2.3 |
| @itential/app-service_management |
3.0.2-2023.2.3 |
| @itential/app-template_builder |
2.9.1-2023.2.8 |
| @itential/app-workflow_builder |
5.55.2-2023.2.21 |
| @itential/app-workflow_engine |
11.9.6-2023.2.47 |
| @itential/database |
2.0.8 |
| @itential/iap-ui |
1.14.3-2023.2.7 |
| @itential/itential-utils |
3.2.1 |
| @itential/logger |
4.1.0 |
| @itential/network |
4.2.0 |
| @itential/pronghorn-core |
15.8.10-2023.2.73 |
| @itential/search |
1.3.3-2023.2.0 |
| @itential/service |
3.3.1 |
| @itential/tags |
3.2.2-2023.2.0 |