This release alert applies to Itential Platform versions:
- 2023.1.0
- 2022.1.5
Itential modified the treatment of potentially unsafe regular expressions within app-jst and app-workflow-engine to better handle certain string tasks by flagging regular expressions that pose a security threat or vulnerability. Unsafe regular expressions in the string methods for replace, match, search, and split now log an error message at runtime and display pop-up warning at design time indicating the task within a workflow where the unsafe regex occurs.