.png?sv=2022-11-02&spr=https&st=2024-11-21T09%3A45%3A40Z&se=2024-11-21T09%3A55%3A40Z&sr=c&sp=r&sig=mt8vFtGagsKX0Ht2F8igk8PTmVVBZPpjgD3Xp923Ajs%3D){kind=logo}
2023.1.21 Maintenance Release
- 20 Nov 2024
-
DarkLight
-
PDF
2023.1.21 Maintenance Release
- Updated on 20 Nov 2024
-
DarkLight
-
PDF
Article summary
Did you find this summary helpful?
Thank you for your feedback
Release Notes
Bug Fixes
This maintenance release of IAP includes fixes for bugs that were reported to Itential Product Support.
| Key ID | Release Note |
|---|---|
| ENG-338 | Customers were not able to select the copy menu item button to copy a backup configuration to their clipboard. Changes to the Rodeo-UI editor fixes the issue by allowing customers to copy backup configurations to their clipboard and not throwing an error in the browser console. |
| ENG-2881 | When editing a JST, an uncaught exception is encountered and the editor becomes unresponsive. Updated the function selection check on load of a transformation to include a check for if the wrapping element was found. This prevents the editor from crashing due to missing DOM elements. |
| ENG-4645 | If multiple childJob tasks with the same variable types are open on the canvas, and the task window is kept open, the tasks will not hold their Input Job Variable selection when the user switches between tasks. Added unique keys to the task variable mapping component to ensure state persistence and prevent this issue. |
| ENG-4858 | IAP would crash in some scenarios when sent invalid SNMP requests. Unexpected session errors and invalid SNMP requests are now gracefully handled, and will not cause a crash. |
Improvements
This section highlights featured improvements to functionality in this maintenance release.
| Key ID | Release Note |
|---|---|
| ENG-3912 | Integration Models with an apiKey schema now support dynamic retrieval via custom extension x-itential-dynamic-retrieval. This enhancement gives IAP the ability to execute workflows that authenticate integrations via dynamic API keys rather than static keys. |
Security Changes
This section highlights fixes and measures to prevent and minimize security risks and vulnerabilities.
| Key ID | Release Note |
|---|---|
| ENG-353 | When using axios version under "1.77" and rodeo version "21.33.7-2022.1.94" in Configuration Manager, these libraries will cause a security issue (Improper Input Validation). Updated axios library to version "1.77" and rodeo to "21.33.7-2022.1.228" to remove the security issue. |
| ENG-359 | When using react-query version "3.391" in Configuration Manager, this library will cause a security issue (Missing Release of Resource after Effective Lifetime).Updated library to @tanstack/react-query version "4.36.1" to remove the security issue. |
| ENG-361 | When using axios version under "1.77" and rodeo version "21.33.7-2022.1.94" in Configuration Manager, these libraries will cause a security issue (Prototype Pollution). Updated axios library to version "1.77" and rodeo to "21.33.7-2022.1.228" to remove the security issue. |
| ENG-364 | When using axios version under "1.77" in Configuration Manager, this library will cause a security issue (Regular Expression Denial of Service). Updated axios library to version "1.77" to remove the security issue. |
| ENG-5023 | Versions of AJV prior to 6.12.3 are susceptible to prototype pollution. The version of AJV installed to Configuration Manager has been upgraded to 6.12.6 to resolve this issue. |
| ENG-5026 | Versions of axios prior to 1.7.4 are susceptible to SSRF (Server-Side Request Forgery) in some scenarios. The version of axios installed to the IAP UI library has been upgraded to 1.7.7 to resolve this issue. |
| ENG-5838 | Versions of semver prior to 7.0.0 are susceptible to ReDos (Regular Expression Denial of Service). The version installed to Adapter NSO has been upgraded to 7.5.2 to resolve this issue. |
2023.1.21 Release Versions
Automation Platform Versions
| component | version |
|---|---|
| @itential/adapter-automation_gateway | 4.29.0-2023.1.15 |
| @itential/adapter-azure_aaa | 1.5.1-2023.1.6 |
| @itential/adapter-email | 4.2.16-2023.1.2 |
| @itential/adapter-ldap | 2.13.12-2023.1.2 |
| @itential/adapter-local_aaa | 4.4.1-2023.1.1 |
| @itential/adapter-nso | 7.8.39-2023.1.31 |
| @itential/adapter-radius | 2.1.10-2023.1.2 |
| @itential/app-admin_essentials | 4.1.1-2023.1.53 |
| @itential/app-ag_manager | 1.19.0-2023.1.6 |
| @itential/app-automation_catalog | 2.13.0-2023.1.5 |
| @itential/app-automation_studio | 4.15.0-2023.1.276 |
| @itential/app-configuration_manager | 3.102.0-2023.1.51 |
| @itential/app-form_builder | 4.12.0-2023.1.4 |
| @itential/app-json_forms | 1.36.0-2023.1.38 |
| @itential/app-jst | 1.11.0-2023.1.33 |
| @itential/app-lifecycle_manager | 1.26.0-2023.1.43 |
| @itential/app-mop | 6.12.0-2023.1.23 |
| @itential/app-nso_manager | 2.23.7-2023.1.4 |
| @itential/app-operations_manager | 1.178.0-2023.1.134 |
| @itential/app-service_catalog | 3.13.0-2023.1.3 |
| @itential/app-service_management | 2.25.0-2023.1.6 |
| @itential/app-template_builder | 2.6.12-2023.1.12 |
| @itential/app-workflow_builder | 5.46.0-2023.1.63 |
| @itential/app-workflow_engine | 10.2.1-2023.1.108 |
| @itential/audit-trail | 1.5.2 |
| @itential/database | 1.11.11 |
| @itential/event-system | 1.1.31 |
| @itential/iap-ui | 1.9.1-2023.1.13 |
| @itential/itential-utils | 2.10.1 |
| @itential/logger | 2.1.17 |
| @itential/network | 3.4.7 |
| @itential/pronghorn-core | 14.2.1-2023.1.106 |
| @itential/search | 1.2.3-2023.1.2 |
| @itential/service | 2.11.9 |
| @itential/tags | 3.1.16-2023.1.1 |
Was this article helpful?
