6.3.2

Platform 6.3.2 is a maintenance release containing enhancements, bug fixes, and security updates.

FeatureDescription
Canvas Debug Mode UI Updates (ENG-18749)Updated Canvas Debug Mode color scheme and icon design in both Studio and Operations Manager for improved visibility and user experience.
MOP Template Description Support (ENG-18502)Enabled setting descriptions for Command Templates and Analytic Templates during asset creation in projects, improving documentation capabilities.
NSO 6.5+ Transaction Comments (ENG-18189)Added support for NSO 6.5+ transaction comments (set_trans_comment) to enhance integration capabilities with Cisco NSO.
Principal Caching Enhancements (ENG-18680)Implemented principal caching security improvements to enhance authentication performance and security posture.
X-Forwarded-For Header Logging (ENG-16748)Added X-Forwarded-For header logging in Platform Webserver logs to improve request tracing and security auditing.
FeatureDescription
LCM runAction Task Recursion (ENG-19162)Fixed issue where using LCM’s runAction task in a workflow caused discover references to infinitely recurse, crashing Studio. Improved task reference handling to prevent infinite loops.
Date Range Filter Crash (ENG-19075)Resolved Operations Manager crash caused by invalid input in Date Range Filter. Enhanced input validation to prevent system crashes.
Workflow Engine Scheduler Race Condition (ENG-19016)Fixed race condition in Workflow Engine scheduler that could cause timing-related execution issues. Improved thread safety and synchronization.
Run Windows Static Time Entries (ENG-19004)Restored functionality for static time entries in Run Windows that were non-functional in version 6.3.1.
Radix Argument Error (ENG-18970)Fixed production error “toString() radix argument must be between 2 and 36” by implementing proper input validation for number conversion operations.
Large File Import Size Limitation (ENG-18953)Addressed issues with moving assets inside folders or importing large project files due to 15MB size limitation. Improved handling for large file operations.
Zoom to Selection Context Menu (ENG-18861)Restored missing ‘Zoom to Selection’ option in task context menu on Operations Manager canvas.
Zoom to Selection Centering (ENG-18859, ENG-16346)Fixed issue where ‘Zoom to Selection’ feature did not properly center the selected items on canvas in both Studio and Operations Manager.
IAP UI Login Performance (ENG-18707)Resolved slow login performance issue inItential Platform UI that persisted after upgrade to 6.3.0. Optimized authentication workflow for improved response times.
MOP Template Metadata Dialog (ENG-18501)Fixed issue where clicking the save button on metadata dialog for MOP Command Template or Analytic Template in projects caused import failures.
MOP Template Description Export (ENG-18500)Resolved issue where descriptions for MOP Command Templates and Analytic Templates were not included during project export.
Workflow Description Persistence (ENG-18497)Fixed issue where workflow description set during asset creation did not persist, and description field was missing in global space.
Transformation Extract Output (ENG-18486)Corrected issue where Transformation task did not properly set Extract Output when outgoing schemas were modified. Ensured proper output mapping.
Workflow Promotion Issues (ENG-18475)Fixed issue where workflows were missing after promoting a project from development to staging environment. Improved project promotion reliability.
Studio Task Palette Filter (ENG-18463)Resolved task palette filter misbehavior when palette was displayed in wide mode. Improved filter behavior across different display configurations.
Generate Example Inputs Data Loss (ENG-18405)Fixed issue where clicking “Generate Example Inputs” button wiped existing user data. Implemented proper data preservation logic.
Project Folder Creation (ENG-18401)Resolved inability to create folders within projects. Restored folder creation functionality.
NSO 6.5+ Host Header Validation (ENG-18156)Improved handling of HTTP 400 errors caused by strict Host header validation in NSO 6.5+. Enhanced compatibility with newer NSO versions.
Studio Canvas Task Corruption (ENG-17868)Fixed race condition that could place corrupted tasks on Studio canvas. Improved task placement synchronization.
Workflow Start Error State (ENG-17841)Resolved error state occurring on workflow Start node when variables were empty. Improved empty variable handling.
SLA Duration Input Validation (ENG-17838)Fixed issue where duration input in workflow’s SLA/Pre-Automation Fields broke on invalid inputs. Added proper input validation.
JSON Forms Yang Widget Rendering (ENG-17639)Resolved rendering failures for JSON Forms utilizing Yang Widget. Ensured proper widget initialization and display.
Auth Methods Access Handling (ENG-16755)Fixed improper failure behavior when attempting to access authentication methods without proper permissions. Improved error handling and messaging.
JSON Form Builder Default Value (ENG-16304)Fixed inability to set default value of 0 in number fields within JSON Form Builder. Corrected value validation logic.
Event Listener Job Multi-Cluster (ENG-15292)Resolved failures of eventListenerJob task in multi-IAP clusters depending on number ofItential Platform instances. Improved cluster-aware task execution.
Command Template Regex in Transformation (ENG-14421)Fixed production issue with command template regex processing in transformations. Improved regex handling and validation.
Run Templates Diff Task (ENG-13661)Addressed issues preventing proper execution of Run Templates Diff task. Restored full task functionality.
Child Job Data Inconsistency (ENG-12562)Fixed inconsistent data display between canvas and Job Details view for P6 child jobs. Ensured consistent data representation.
JST Schema Property Names (ENG-12304)Resolved JST failure when schema property names contained the # character. Improved special character handling in schema properties.
JST Step Context Order (ENG-12294)Fixed JST errors occurring when step context order did not match data flow. Improved context resolution logic.
JST Designer Infer Functionality (ENG-11251)Resolved inconsistencies in JST Designer infer functionality including addition of empty "" property and data type mismatches. Improved schema inference accuracy.
Transformation Corruption (ENG-10647)Fixed production issue where transformations became corrupted and non-functional. Implemented safeguards against transformation corruption.
Integration Thread Count Limit (ENG-9078)Removed maximum threshold for IAP_INTEGRATION_THREAD_COUNT configuration to allow proper scaling for high-throughput scenarios.
Schema Combination Option Renaming (ENG-7533)Fixed issue where renaming an option in a schema combination cleared all added fields for that option. Preserved field data during rename operations.
Transformation Canvas Scrollbar (ENG-7413)Resolved production issue where transformation canvas scrollbar was not viewable. Improved UI layout and scrollbar visibility.
Transformation Function Closure (ENG-7269)Fixed issue where closing a function while parent transformation was open would offset transitions. Improved state management for nested transformations.

This release includes important security updates that address vulnerabilities in third-party packages and platform components.

FeatureDescription
Prototype Pollution in axios (ENG-19229)Updated axios package in itential-utils to resolve prototype pollution vulnerability. Enhanced input validation to prevent prototype chain manipulation.
Arbitrary Code Injection in jsonpath (ENG-19223)Updated jsonpath package to address arbitrary code injection vulnerability. Implemented proper input sanitization for JSONPath expressions.
Node.js Version Upgrade (ENG-18855)Upgraded Node.js versions in Platform Image to address security vulnerabilities and improve runtime security posture.
XSS in @remix-run/router (ENG-18425)Updated @remix-run/router package to resolve Cross-site Scripting (XSS) vulnerability. Enhanced input sanitization in routing components.
Incomplete Filtering in validator (ENG-17677)Updated validator package to address incomplete filtering of special elements vulnerability. Improved input validation and sanitization.