Subscribe to our RSS feed or by email to receive automatic notifications when new releases are published.
Get notified when we ship new features and improvements.
6.1.1
Platform 6.1.1 is a maintenance release containing enhancements, bug fixes, and security updates.
Enhancements (12)
This release introduces the following enhancements to the Itential Platform.
| Feature | Description |
|---|---|
| Resource discovery unit tests (ENG-9617) | Added unit tests to resource-discovery list.test.js and validate.test.js. |
| Unused files and dependencies removal (ENG-10705) | Removed all unused files, code, and dependencies in Platform 6. |
| Child job variable masking (ENG-11320) | Updated the Child Job task to support masking of incoming and outgoing variables. |
| Transformation task variable masking (ENG-11321) | All input and output variables configured on a Transformation task are now individually maskable. |
| Task execution actor type restriction (ENG-11352) | Added support for restricting task execution based on actor type. Implemented this functionality for Studio’s getProject method. |
| Redis initial connection timeout config (ENG-11965) | Added a configurable timeout parameter for initial Redis connection during Platform startup. |
| JSON Forms JST dependency removal (ENG-12858) | Removed JSON Forms dependency on the JST library by using HTTP API calls to retrieve and run transformations in dynamic dropdowns. |
| Workflow Engine task worker rate limiting (ENG-13929) | Added rate limiting to the Workflow Engine task worker to improve system stability under high load. |
| TLS version configuration support (ENG-14617) | Added support for configuring minimum and maximum TLS versions (including TLS 1.3) used by theItential Platform web server. |
| Canvas transition color accessibility (ENG-14860) | Updated Success and Loop transition line colors in Canvas to meet accessibility standards. |
| BullMQ shutdown cleanup (ENG-14995) | Configured BullMQ cleanup on shutdown to improve resource management. |
| Web server total_time_ms log field (ENG-15813) | Added total_time_ms field to webserver.log, which measures request-to-response time in milliseconds. |
Bug fixes (27)
Platform 6.1.1 release includes fixes for potential bugs and issues detected in a controlled testing environment before making the software available.
| Feature | Description |
|---|---|
| Studio search with special characters in names (ENG-2571) | Fixed a search issue that prevented templates and transformations containing special characters (e.g., ‘*’) from being found in the Project builder. |
| Unusable shortcuts for transformations within projects (ENG-2891) | Removed unusable shortcuts for transformations within projects. |
| Canvas controls cut off in project editor (ENG-3420) | Fixed an issue where Canvas controls on a transformation were partially cut off when the function tab bar was opened in the Projects editor. |
| JSON Form file upload size error message (ENG-4769) | Improved the error message displayed when uploading files via JSON Form that exceed the maximum size limit. |
| Workflow group with project assets restriction (ENG-4774) | Fixed an issue that incorrectly allowed users to create Workflow Groups with Project assets. |
| Studio read-only banner accuracy (ENG-5403) | The read-only banner now displays only when users truly have read-only access to projects. |
| Device count failure handling (ENG-8269) | Fixed an issue that caused device counts to fail when devices couldn’t be found, and resolved cases where device counts of 0 were not recorded. |
| Integration instance log settings (ENG-8932) | Fixed Integration Instances to correctly refer to their individual log settings rather than the Platform-level log configuration when logging request activity. |
| Compliance report error tooltip (ENG-9267) | Added a tooltip to display quick error messages for items with ‘error’ status in compliance reports. |
| Create group API role assignment (ENG-9372) | Fixed an issue where groups and roles added to a custom group via the create group API were not properly reflected on users in the new group. |
| Health API Vault status check (ENG-9451) | Fixed invalid healthcheck in the Health API to ensure accurate Vault status reporting at the /health/status endpoint. |
| Integration model conversion error handling (ENG-9559) | Fixed an issue where Integration Models that errored during conversion caused subsequent Integration Models to fail to load into the platform. |
| iapGetAdapterQueue debug task (ENG-10281) | Added iapGetAdapterQueue task to improve debugging when the automation gateway adapter produces TimeoutOverflowWarning errors with throttling enabled. |
| JST incoming/outgoing schema issues (ENG-10352) | Fixed multiple JST issues related to special characters in schema $id, property names, and function names that could prevent assignments from being drawn or cause JST runtime failures. Also improved error visibility in the schema editor and added notifications for invalid assignments. |
| Project import createdBy field failure (ENG-10364) | Fixed an issue where projects containing workflows with a createdBy field would fail to import by removing this field during import. |
| Task worker shutdown scheduled task impact (ENG-10795) | Fixed an issue where stopping the task worker affected the ability to handle scheduled tasks until the instance was restarted. |
| Transformation internal function backspace delete (ENG-10848) | Fixed an issue where transformation internal functions disappeared when pressing backspace. |
| JST if-else conditional path evaluation (ENG-11148) | Fixed a JST issue where adding an else-if conditional path from the if…else method did not properly update subsequent conditional paths, causing incorrect evaluation. Added a warning when opening corrupted transformations to notify users. |
| JSON schema date formatting on copy to project (ENG-12405) | Fixed date formatting for JSON schemas when copying assets into a project space. |
| getTriggers deleted JSON form error (ENG-14364) | Fixed an issue with the getTriggers API where schedule triggers referencing non-existent JSON forms returned errors, preventing other triggers from working. |
| Project import asset loss (ENG-14405) | Fixed an issue that caused loss of assets when importing a project. |
| AG Manager task execution crash handling (ENG-14483) | Added additional error handling to prevent crashes during AG Manager task executions. |
| Asset tab task outgoing variable loss (ENG-14897) | Fixed an issue where adding a Child Job, Show JSON Form, Run Command/Analytic Template, or Apply Template task from the Assets tab stripped outgoing variables from the task. |
| Loop-to-outside transition prevention (ENG-14970) | Prevented users from drawing transitions from inside a loop to outside a loop. |
| Operations Manager ancestor job query performance (ENG-15013) | Fixed Operations Manager Jobs page stability issues that occurred with many jobs having more than 1,000 ancestor jobs. Updated the page to minimize database queries and resolved UI issues with the jobs table. |
| Event system and web server separation (ENG-15227) | Separated the Platform Event System from the HTTP Web Server process to eliminate the impact of high event throughput on platform performance. |
| Duplicate key error message (ENG-15538) | Updated error message when duplicate keys cause issues. |
Security fixes (14)
Platform 6.1.1 includes important security updates that address vulnerabilities in third-party packages and enhance data protection measures.
| Feature | Description |
|---|---|
| semver vulnerable version update (ENG-11009) | Updated packages to resolve security vulnerabilities in the semver package. |
| d3-color security update (ENG-11632) | Fixed security vulnerability in the d3-color package. |
| Config Manager XSS in export functions (ENG-13131) | Enhanced Configuration Manager export functions with secure download functionality, including data sanitization and safer DOM manipulation to prevent XSS vulnerabilities across all export operations (device groups, backups, golden configs, templates, compliance plans, and config parsers). |
| Dev Tools repository removal (ENG-13182) | Removed Dev Tools from the repository (not customer-impacting). |
| axios 1.11.0 security update (ENG-15142) | Updated axios to version 1.11.0 to fix security vulnerability. |
| express and body-parser security update (ENG-15175) | Updated express and body-parser to resolve security vulnerabilities. |
| express and body-parser security update (ENG-15176) | Updated express and body-parser to resolve security vulnerabilities. |
| express and body-parser security update (ENG-15177) | Updated express and body-parser to resolve security vulnerabilities. |
| express and body-parser security update (ENG-15178) | Updated express and body-parser to resolve security vulnerabilities. |
| express and body-parser security update (ENG-15179) | Updated express and body-parser to resolve security vulnerabilities. |
| Cookie XSS security update (ENG-15181) | Updated express and body-parser to resolve XSS vulnerability in cookie. |
| express body-parser XSS security update (ENG-15450) | Updated express and body-parser to resolve XSS vulnerability. |
| Emotion @babel/runtime vulnerability (ENG-15510) | Updated emotion dependencies to fix vulnerability in @babel/runtime. |
| Emotion packages and axios security update (ENG-15512) | Upgraded @Emotion packages (css, react, styled) and axios from 1.8.4 to 1.12.2 to address resource allocation security issues. |
