Release Notes 2023.1.21
  • 29 Oct 2024
  • Dark
    Light
  • PDF

Release Notes 2023.1.21

  • Dark
    Light
  • PDF

Article summary

2023.1.21 Maintenance Release

Bug Fixes

This maintenance release of IAP includes fixes for bugs that were reported to Itential Product Support.

Key ID Release Note
ENG-338 Customers were not able to select the copy menu item button to copy a backup configuration to their clipboard. Changes to the Rodeo-UI editor fixes the issue by allowing customers to copy backup configurations to their clipboard and not throwing an error in the browser console.
ENG-2881 When editing a JST, an uncaught exception is encountered and the editor becomes unresponsive. Updated the function selection check on load of a transformation to include a check for if the wrapping element was found. This prevents the editor from crashing due to missing DOM elements.
ENG-4645 If multiple childJob tasks with the same variable types are open on the canvas, and the task window is kept open, the tasks will not hold their Input Job Variable selection when the user switches between tasks. Added unique keys to the task variable mapping component to ensure state persistence and prevent this issue.
ENG-4858 IAP would crash in some scenarios when sent invalid SNMP requests. Unexpected session errors and invalid SNMP requests are now gracefully handled, and will not cause a crash.

Improvements

This section highlights featured improvements to functionality in this maintenance release.

Key ID Release Note
ENG-3912 Integration Models with an apiKey schema now support dynamic retrieval via custom extension x-itential-dynamic-retrieval. This enhancement gives IAP the ability to execute workflows that authenticate integrations via dynamic API keys rather than static keys.

Security Changes

This section highlights fixes and measures to prevent and minimize security risks and vulnerabilities.

Key ID Release Note
ENG-353 When using axios version under "1.77" and rodeo version "21.33.7-2022.1.94" in Configuration Manager, these libraries will cause a security issue (Improper Input Validation). Updated axios library to version "1.77" and rodeo to "21.33.7-2022.1.228" to remove the security issue.
ENG-359 When using react-query version "3.391" in Configuration Manager, this library will cause a security issue (Missing Release of Resource after Effective Lifetime).Updated library to @tanstack/react-query version "4.36.1" to remove the security issue.
ENG-361 When using axios version under "1.77" and rodeo version "21.33.7-2022.1.94" in Configuration Manager, these libraries will cause a security issue (Prototype Pollution). Updated axios library to version "1.77" and rodeo to "21.33.7-2022.1.228" to remove the security issue.
ENG-364 When using axios version under "1.77" in Configuration Manager, this library will cause a security issue (Regular Expression Denial of Service). Updated axios library to version "1.77" to remove the security issue.
ENG-5023 Versions of AJV prior to 6.12.3 are susceptible to prototype pollution. The version of AJV installed to Configuration Manager has been upgraded to 6.12.6 to resolve this issue.
ENG-5026 Versions of axios prior to 1.7.4 are susceptible to SSRF (Server-Side Request Forgery) in some scenarios. The version of axios installed to the IAP UI library has been upgraded to 1.7.7 to resolve this issue.
ENG-5838 Versions of semver prior to 7.0.0 are susceptible to ReDos (Regular Expression Denial of Service). The version installed to Adapter NSO has been upgraded to 7.5.2 to resolve this issue.

2023.1.21 Release Versions

Automation Platform Versions

component version
@itential/adapter-automation_gateway 4.29.0-2023.1.15
@itential/adapter-azure_aaa 1.5.1-2023.1.6
@itential/adapter-email 4.2.16-2023.1.2
@itential/adapter-ldap 2.13.12-2023.1.2
@itential/adapter-local_aaa 4.4.1-2023.1.1
@itential/adapter-nso 7.8.39-2023.1.31
@itential/adapter-radius 2.1.10-2023.1.2
@itential/app-admin_essentials 4.1.1-2023.1.53
@itential/app-ag_manager 1.19.0-2023.1.6
@itential/app-automation_catalog 2.13.0-2023.1.5
@itential/app-automation_studio 4.15.0-2023.1.276
@itential/app-configuration_manager 3.102.0-2023.1.51
@itential/app-form_builder 4.12.0-2023.1.4
@itential/app-json_forms 1.36.0-2023.1.38
@itential/app-jst 1.11.0-2023.1.33
@itential/app-lifecycle_manager 1.26.0-2023.1.43
@itential/app-mop 6.12.0-2023.1.23
@itential/app-nso_manager 2.23.7-2023.1.4
@itential/app-operations_manager 1.178.0-2023.1.134
@itential/app-service_catalog 3.13.0-2023.1.3
@itential/app-service_management 2.25.0-2023.1.6
@itential/app-template_builder 2.6.12-2023.1.12
@itential/app-workflow_builder 5.46.0-2023.1.63
@itential/app-workflow_engine 10.2.1-2023.1.108
@itential/audit-trail 1.5.2
@itential/database 1.11.11
@itential/event-system 1.1.31
@itential/iap-ui 1.9.1-2023.1.13
@itential/itential-utils 2.10.1
@itential/logger 2.1.17
@itential/network 3.4.7
@itential/pronghorn-core 14.2.1-2023.1.106
@itential/search 1.2.3-2023.1.2
@itential/service 2.11.9
@itential/tags 3.1.16-2023.1.1

Was this article helpful?

Changing your password will log you out immediately. Use the new password to log back in.
First name must have atleast 2 characters. Numbers and special characters are not allowed.
Last name must have atleast 1 characters. Numbers and special characters are not allowed.
Enter a valid email
Enter a valid password
Your profile has been successfully updated.