Platform 6.3.4 Maintenance Release Notes

Platform 6.3.4 is a maintenance release that includes critical bug fixes, security updates, and feature enhancements. This release addresses customer-reported issues to enhance platform stability and reliability.

Enhancements

Feature	Description
Asset Edit Details Modal Standardization (ENG-19875)	All View Metadata drawers in Studio and Lifecycle Manager are now replaced with a dialog and renamed to Edit Details. In the projects UI, the project navigation bar (left-hand side) and asset editor titlebar (top-right) also now consistently use this dialog for editing asset details.
Auto Keying for Project Asset Migration (ENG-19921)	Workflow references are updated where applicable when moving or copying assets into a project.
Asset More Menu Options Update (ENG-20100)	Updated more menu options across assets to provide consistent and intuitive access to asset actions throughout the platform.
NSO 6.5 and 6.6 Certification (ENG-17515)	Certified NSO Service Manager functions and NSO Adapter against NSO 6.5 and NSO 6.6, ensuring compatibility with the latest Cisco NSO versions.
Platform 6 Index Management Enhancement (ENG-16284)	Enhanced index management for Platform 6 upgrades to improve database performance and reduce upgrade complexity.
Vault Namespace Header Support (ENG-15973)	Implemented support for `X-Vault-Namespace` header for Vault integration, enabling multi-tenancy and namespace isolation.
NSO fetchData Return Limit Adjustment (ENG-8574)	Adjusted NSO `fetchData` return limit to handle larger datasets and improve integration performance with Cisco NSO.
Project Thumbnail File Size Configuration (ENG-10644)	Added configuration for project thumbnail file size in Settings to allow customization based on organizational requirements.

Bug Fixes

Issue	Description
Long Workflow Names in Project Automation References (ENG-21971)	Fixed an issue where workflows in project-based automations displayed "from undefined" instead of the project name in the automation dropdown when the workflow name was very long.
Lifecycle Manager Schema Reference Error (ENG-21853)	Fixed an issue where the OpenAPI specification generated by the `help/openapi` endpoint contained an invalid schema reference, which could cause customer scripts using the spec to fail.
MOP Template Last Updated By Field (ENG-21803)	Fixed issue where 'Last Updated By' field always displayed 'unknown' for MOP Command/Analytic templates. Implemented proper user tracking for template modifications.
Transformation Search with Dash Characters (ENG-21768)	Resolved issue where Transformations search did not work properly for names containing dash characters. Enhanced search query parsing.
Workflow GBAC Restrictions in Global Space (ENG-21621)	Fixed issue in 6.3.3 where Workflow Group-Based Access Control (GBAC) no longer restricted users in global space. Restored proper access control enforcement.
Operations Manager Automations Groups Display Limit (ENG-21576)	Resolved issue where Operations Manager Automations Read/Write Groups only displayed the first 100 groups. Implemented proper pagination and group listing.
Form Validation enumNames Rejection (ENG-21566)	Fixed backend form validation incorrectly rejecting valid forms containing enumNames due to Ajv strict mode. Adjusted validation schema to support enumNames.
Query Task JSON View Output Display (ENG-21383)	Corrected issue where Query Task Post Execution showed incorrect output when JSON View was turned off. Improved output formatting logic.
Validate Form Task JSON Forms Service Crash (ENG-21256)	Fixed issue where Validate Form task would crash the JSON Forms service if validation failed. Implemented proper error handling and service recovery.
Project Thumbnail Upload with Workflows (ENG-20828)	Resolved inability to upload project thumbnail when a workflow exists in the project. Fixed file upload validation logic.
LCM RunAction Task Hang on Invalid Data (ENG-20227)	Fixed issue where LCM `RunAction` task hung when invalid instance data was provided. Added input validation and timeout handling.
ValidateJsonSchema Single Document Limitation (ENG-20193)	Resolved issue where `ValidateJsonSchema` task only validated a single document per schema ID. Enabled multi-document validation support.
Golden Configuration Identifier Key Data Loss (ENG-20147)	Fixed issue where users are not given a warning when entries are dropped.
Golden Configuration Identifier Key Dropdown Blank (ENG-20146)	Fixed issue where undefined array identifier crashes the page.
Golden Configuration Dialog Crash on Right-Click (ENG-20145)	Fixed a bug with JSON config options throwing error when the config is empty.
viewData Inconsistent Behavior (ENG-19226)	The `viewData` task has been updated to improve consistency in how message and body content is parsed and rendered as HTML.
Workflow Loading Performance on P6 (ENG-18902)	Improved workflow loading performance on Platform 6 by optimizing data retrieval and rendering logic.
Manual Trigger Form Crash with Duplicate Labels (ENG-17866)	Fixed page crash when clicking on forms containing items with same label name but different types in Manual Trigger dropdown. Enhanced form validation and conflict resolution.
Job Deletion with Automation Read/Write Groups (ENG-16590)	Resolved issue where jobs could not be deleted when triggered by an automation with read/write groups. Corrected permission checking logic.
JSON Form Text Input Binding (ENG-14982)	Fixed issue where binding for text input in JSON Forms did not work correctly. Restored proper data binding functionality.
JSON Form Element Ordering (ENG-4775)	Resolved issue where JSON form elements appeared out of order when previewing and in the Automation trigger view. Ensured consistent element ordering.
Project Builder Logo Display (ENG-4773)	Fixed issue where Itential logo did not display correctly in Project Builder. Corrected logo asset loading.
JSON Form Builder Table Deletion Confirmation (ENG-4712)	Added confirmation prompt when deleting tables in JSON Form Builder to prevent accidental data loss.
JSON Form Readonly Field Population (ENG-4653)	Resolved inability to populate readonly fields with values in JSON Forms. Enabled value assignment for readonly fields.
Task Swap State Persistence (ENG-4259)	Fixed issue where Swap Task state persisted when opening other tasks. Properly cleared task state on task change.
JST Schema Modification Variable Removal (ENG-3873)	Resolved issue where modifying schema of JST removed any outgoing variables set in workflow. Preserved variable assignments during schema updates.
Duplicate Form Option Values (ENG-3341)	Fixed ability to create forms with duplicate values in options. Implemented duplicate value detection and validation.
Workflow Count Display Accuracy (ENG-2959)	Corrected inaccurate workflow count on the Automation Studio workflow View All page. Fixed counting logic.
Transformation Hotkey Save (ENG-2950)	Resolved issue where saving transformation using hotkeys did not work. Restored keyboard shortcut functionality.
Child/Parent Workflow Visualization (ENG-2946)	Fixed child/parent workflow drill down visualization issue with zoom-to-fit and constellation view. Improved canvas rendering logic.
JST Designer Task Execution Completion (ENG-2293)	Resolved issue where JST Designer did not complete execution of a task even when prior task produced valid output. Fixed task completion detection.

Security Fixes

This release includes important security updates that address vulnerabilities in third-party packages and platform components.

Key ID	Release Note
Data Amplification in undici (ENG-21752)	Fixed Improper Handling of Highly Compressed Data (Data Amplification) vulnerability by updating undici (SNYK-JS-UNDICI-15518068).
Prototype Pollution in immutable (ENG-21364)	Updated immutable package to resolve Prototype Pollution vulnerability (SNYK-JS-IMMUTABLE-15423650).
ReDoS in ajv (JST) (ENG-20534)	Fixed ajv Regular Expression Denial of Service (ReDoS) vulnerability by upgrading to ajv@6.14.0 (SNYK-JS-AJV-15274295).
Resource Allocation in qs (JST Designer) (ENG-20532)	Fixed Allocation of Resources Without Limits or Throttling vulnerability in qs by bumping ajv to 6.14.0 and refreshing the lockfile (SNYK-JS-QS-15268416).
ReDoS in ajv (IAP) (ENG-20498)	Fixed ajv Regular Expression Denial of Service (ReDoS) vulnerability by updating package (SNYK-JS-AJV-15274295).
Resource Allocation in qs (IAP) (ENG-20475)	Upgraded qs to address Allocation of Resources Without Limits or Throttling vulnerability (SNYK-JS-QS-15268416).
Algorithmic Complexity in minimatch (IAP) (ENG-20376)	Updated minimatch package to address Inefficient Algorithmic Complexity vulnerability (SNYK-JS-MINIMATCH-15353389).
ReDoS in ajv (itential-utils) (ENG-20366)	Fixed ajv Regular Expression Denial of Service (ReDoS) vulnerability by updating package (SNYK-JS-AJV-15274295).
Algorithmic Complexity in minimatch (itential-utils) (ENG-20365)	Updated minimatch package to address Inefficient Algorithmic Complexity vulnerability (SNYK-JS-MINIMATCH-15353389).