Important
The Platform 6.1.0 artifacts have been removed from the Itential Artifact Repository. We apologize for any inconvenience.
Platform 6.1.0 introduces Canvas Data Mocking and Debug Mode, a new feature that enhances workflow development and testing capabilities. For complete details about this feature and its benefits, see our Platform 6.1 Feature Release Announcement.
The release notes below cover additional bug fixes, security updates, and improvements included in this release.
Improvements
This release introduces the following enhancements to the Itential Platform.
| Key ID | Release Note |
|---|---|
| ENG-5655 | The AG Manager now advertises configuration changes to the Platform dynamically and waits for adapters to come online during platform startup, ensuring more reliable resource discovery without requiring restarts. |
| ENG-9617 | Added unit tests to resource-discovery list.test.js and validate.test.js. |
| ENG-10705 | Removed all unused files, code, and dependencies in Platform 6. |
| ENG-11320 | Updated the Child Job task to support masking of incoming and outgoing variables. |
| ENG-11321 | All input and output variables configured on a Transformation task are now individually maskable. |
| ENG-11352 | Added support for restricting task execution based on actor type. Implemented this functionality for Studio's getProject method. |
| ENG-11965 | Added a configurable timeout parameter for initial Redis connection during Platform startup. |
| ENG-12858 | Removed JSON Forms dependency on the JST library by using HTTP API calls to retrieve and run transformations in dynamic dropdowns. |
| ENG-13929 | Added rate limiting to the Workflow Engine task worker to improve system stability under high load. |
| ENG-14617 | Added support for configuring minimum and maximum TLS versions (including TLS 1.3) used by the IAP web server. |
| ENG-14860 | Updated Success and Loop transition line colors in Canvas to meet accessibility standards. |
| ENG-14995 | Configured BullMQ cleanup on shutdown to improve resource management. |
| ENG-15813 | Added total_time_ms field to webserver.log, which measures request-to-response time in milliseconds. |
Bug Fixes
The Platform 6.1 release includes fixes for potential bugs and issues detected in a controlled testing environment before making the software available.
| Key ID | Release Note |
|---|---|
| ENG-2571 | Fixed a search issue that prevented templates and transformations containing special characters (e.g., '*') from being found in the Project builder. |
| ENG-2891 | Removed unusable shortcuts for transformations within projects. |
| ENG-3420 | Fixed an issue where Canvas controls on a transformation were partially cut off when the function tab bar was opened in the Projects editor. |
| ENG-4769 | Improved the error message displayed when uploading files via JSON Form that exceed the maximum size limit. |
| ENG-4774 | Fixed an issue that incorrectly allowed users to create Workflow Groups with Project assets. |
| ENG-5403 | The read-only banner now displays only when users truly have read-only access to projects. |
| ENG-8269 | Fixed an issue that caused device counts to fail when devices couldn't be found, and resolved cases where device counts of 0 were not recorded. |
| ENG-8932 | Fixed Integration Instances to correctly refer to their individual log settings rather than the Platform-level log configuration when logging request activity. |
| ENG-9267 | Added a tooltip to display quick error messages for items with 'error' status in compliance reports. |
| ENG-9372 | Fixed an issue where groups and roles added to a custom group via the create group API were not properly reflected on users in the new group. |
| ENG-9451 | Fixed invalid healthcheck in the Health API to ensure accurate Vault status reporting at the /health/status endpoint. |
| ENG-9559 | Fixed an issue where Integration Models that errored during conversion caused subsequent Integration Models to fail to load into the platform. |
| ENG-10281 | Added iapGetAdapterQueue task to improve debugging when the automation gateway adapter produces TimeoutOverflowWarning errors with throttling enabled. |
| ENG-10352 | Fixed multiple JST issues related to special characters in schema $id, property names, and function names that could prevent assignments from being drawn or cause JST runtime failures. Also improved error visibility in the schema editor and added notifications for invalid assignments. |
| ENG-10364 | Fixed an issue where projects containing workflows with a createdBy field would fail to import by removing this field during import. |
| ENG-10795 | Fixed an issue where stopping the task worker affected the ability to handle scheduled tasks until the instance was restarted. |
| ENG-10848 | Fixed an issue where transformation internal functions disappeared when pressing backspace. |
| ENG-11148 | Fixed a JST issue where adding an else-if conditional path from the if...else method did not properly update subsequent conditional paths, causing incorrect evaluation. Added a warning when opening corrupted transformations to notify users. |
| ENG-12405 | Fixed date formatting for JSON schemas when copying assets into a project space. |
| ENG-14364 | Fixed an issue with the getTriggers API where schedule triggers referencing non-existent JSON forms returned errors, preventing other triggers from working. |
| ENG-14405 | Fixed an issue that caused loss of assets when importing a project. |
| ENG-14483 | Added additional error handling to prevent crashes during AG Manager task executions. |
| ENG-14897 | Fixed an issue where adding a Child Job, Show JSON Form, Run Command/Analytic Template, or Apply Template task from the Assets tab stripped outgoing variables from the task. |
| ENG-14970 | Prevented users from drawing transitions from inside a loop to outside a loop. |
| ENG-15013 | Fixed Operations Manager Jobs page stability issues that occurred with many jobs having more than 1,000 ancestor jobs. Updated the page to minimize database queries and resolved UI issues with the jobs table. |
| ENG-15227 | Separated the Platform Event System from the HTTP Web Server process to eliminate the impact of high event throughput on platform performance. |
Security Fixes
Platform 6.1.0 includes important security updates that address vulnerabilities in third-party packages and enhance data protection measures.
| Key ID | Release Note |
|---|---|
| ENG-11009 | Updated packages to resolve security vulnerabilities in the semver package. |
| ENG-11632 | Fixed security vulnerability in the d3-color package. |
| ENG-13131 | Enhanced Configuration Manager export functions with secure download functionality, including data sanitization and safer DOM manipulation to prevent XSS vulnerabilities across all export operations (device groups, backups, golden configs, templates, compliance plans, and config parsers). |
| ENG-13182 | Removed Dev Tools from the repository (not customer-impacting). |
| ENG-15142 | Updated axios to version 1.11.0 to fix security vulnerability. |
| ENG-15175 | Updated express and body-parser to resolve security vulnerabilities. |
| ENG-15176 | Updated express and body-parser to resolve security vulnerabilities. |
| ENG-15177 | Updated express and body-parser to resolve security vulnerabilities. |
| ENG-15178 | Updated express and body-parser to resolve security vulnerabilities. |
| ENG-15179 | Updated express and body-parser to resolve security vulnerabilities. |
| ENG-15181 | Updated express and body-parser to resolve XSS vulnerability in cookie. |
| ENG-15450 | Updated express and body-parser to resolve XSS vulnerability. |
| ENG-15510 | Updated emotion dependencies to fix vulnerability in @babel/runtime. |
| ENG-15512 | Upgraded @Emotion packages (css, react, styled) and axios from 1.8.4 to 1.12.2 to address resource allocation security issues. |