...

FlexDeploy 7.0.0.2 (1-20-2024)

Application Updates

• FLEXDEPLOY-10663 - Updated Apache Tomcat to 9.0.84 to resolve vulnerability CVE-2023-46589.

• FLEXDEPLOY-10814 - Updated Apache Shiro to resolve vulnerability CVE-2023-46750.

• FLEXDEPLOY-10839 - Update XMLSEC to resolve vulnerability CVE-2023-44483.

• FLEXDEPLOY-10658 - Updated Gradle to resolve vulnerabilities CVE-2023-42445 and CVE-2023-44387.

• FLEXDEPLOY-10826 - Updated org.json (JAVA JSON) to resolve vunlerabilities CVE-2023-5072 and CVE-2022-45688.

• FLEXDEPLOY-10879 - Updated SSHJ version to resolve vulnerability CVE-2023-48795.

• FLEXDEPLOY-9935 - Eliminated dependency of JGit from FlexDeploy and the Git plugin, hence CVE-2023-4759 is no longer vulnerability for FlexDeploy.

• FLEXDEPLOY-7768 - Test and scan results are now captured on workflow execution failure also.

• FLEXDEPLOY-9526 - All list data now supports specifying the value, label, and description by separating with ##. For example: label##value##description.

• FLEXDEPLOY-10756 - Files located in either the /fdtests or /fdreplacements folders at repository root will be excluded on file discovery for package-based projects.

• FLEXDEPLOY-10797 - The display for deploying multiple packages on the deployment request form has been divided into a separate row for each package and version. The option to deploy multiple packages was released in version 7.0.0.1 by selecting multiple items in the version field.

• FLEXDEPLOY-10892 - Admin Operations actions are now only accessible to admin users. Previously, all users had access to view logs page.

Release and Pipeline Management

• FLEXDEPLOY-10511 - Pipeline custom gate or step script can now set milliseconds value in SCRIPT_CHECK_INTERVAL_MILLIS variable to control re-execution of script. Re-execution on not completed script happens at 5 minute interval by default.

• FLEXDEPLOY-8522 - Pipeline Step Executions will now show status of Not Attempted instead of Pending if they have not been executed.

• FLEXDEPLOY-9342 - FD_PIPELINE_ID and FD_PIPELINE_NAME are now available in Workflow Execution if workflow execution is initiated by pipeline.

• FLEXDEPLOY-10595 - Project Test Request and Pipeline Test Step now require selection of package if executing on a Package-Based Project. Additionally, when running a Test All step on a release containing multiple packages from the same project, all packages will be tested against. If duplicate test cases exists between the packages, then they will only be run once by one of the test executions.

Accessibility

• Added a "Skip to main content" link to direct cursor focus on the main body of the page.

• Global search menu does not stay visible now after it is out of focus.

• Added Accessibility tab on user profile screen for various settings.

• Added accessibility setting for Non-Persistent popup behavior.

• Added accessibility setting for controlling the duration that snack messages appear.

• Added Accessibility setting for enabling animations.

SAP

• FlexDeploy now tracks the deployment execution status of SAP Transport requests at the file level, ensuring comprehensive visibility and facilitating SAP system refresh (post-clone refresh) activities.

New Plugins

• ACCELQ Plugin - see FlexDeploy - ACCELQ Plugin Guide for more details.

Plugin Updates

• Oracle EBS Plugin

  • FLEXDEPLOY-10897 - Added support of Synonyms for EBS XDF object types.

• Oracle SaaS FSM Plugin

  • FLEXDEPLOY-10685 - Oracle SaaS FSM Setup Task file now supports Filter Criteria. This allows for additional filtering of setup task data after export criteria is applied. This is useful when export criteria does not support the attribute(s) needed for your use case. Additionally, csvExport operation has Filter Criteria Preview Mode to help validate Filter Criteria before usage in a deployment process.

• Oracle Integration Cloud Plugin

  • FLEXDEPLOY-10628 - updateConnection operation now has an option to re-activate all integrations using the connection when it's updated. Allows to use specific integrations, all or none.

  • FLEXDEPLOY-10419 - Attachment Override Directory input is now available for updateConnection operation.

  • Connection Attachment Override Directory now also supports GLOBAL folder, attachments placed in GLOBAL folder apply for all environments unless overridden by specific environment folder.

• Oracle Visual Builder Plugin

  • FLEXDEPLOY-10775 - buildApplicationExtension and deployApplicationExtension operations now support additional arguments for "npm install" command. Additionally, it also supports use of specific node version, which will be automatically installed.

• Docker Plugin

  • FLEXDEPLOY-10432 - Updated Docker plugin to support pushing images to OCI private and public container registry.

• Kubernetes Plugin

  • FLEXDEPLOY-10517 - Added Additional Arguments input for all the Kubernetes plugin operations, using this input we can utilize different useful flags associated with Kubernetes resource management.

• Terraform Plugin

  • FLEXDEPLOY-10788 - Updated Terraform Plugin operations to support Additional Arguments input.

• Git Plugin

  • FLEXDEPLOY-9852 - Added an input to the git plugin to allow Treeless clone, which may make your full deploy projects more efficient in the amount of time and space used during builds.

• Ansible Plugin

  • FLEXDEPLOY-10276 - Allow user to install multiple roles from ansible galaxy using Install Roles operation.

  • FLEXDEPLOY-10313 - Added support for Additional Arguments to ansible playbook operation.

• JDBC Plugin

  • FLEXDEPLOY-10577 - The JDBC Plugin now has more consistent logging. The Export and Import operations upper case the table name from the project property, and compare column names case-insensitively.

Resolved Issues

• FLEXDEPLOY-9916 - Updated SSHJ to 0.38.0. Set the transport timeout to match the timeout. This could in some cases prevent a timeout issue that would have happened earlier than the timeout set in system settings. Resolves the error "Received SSH_MSG_UNIMPLEMENTED while exchanging keys."

• FLEXDEPLOY-9900 - Resolved an issue where home and end key functionality did not work properly on certain inputs.

• FLEXDEPLOY-10767 - Salesforce - Resolved an issue where Full Compare fails to include few objects.

• FLEXDEPLOY-10768 - Salesforce - Data deployment supports retry of failed records based on Retry Count attribute.

• FLEXDEPLOY-10798 - Project Files - Resolved an issue where evaluating a single file was always using the project's main branch instead of the selected branch in the popup.

• FLEXDEPLOY-10830 - Made the package-based build operations resilient to a transient failure caused by a temporary file that could not be deleted.

• FLEXDEPLOY-10843 - Topology - Resolved a 6.5 regression preventing users from manually assigning Workflows to Target Groups.

• FLEXDEPLOY-10845 - Prevent a potential authentication bypass issue on REST calls. The calls were still authorized, but some REST calls allowed non-secured data to be read without authentication in certain cases. Affects versions 6.0 < 6.0.0.10, 6.5 < 6.5.0.14, 7.0 < 7.0.0.2. This is fixed in versions 6.0.0.10, 6.5.0.14, 7.0.0.2, and 8.0.0.0. Versions < 6.0 are not affected.

• FLEXDEPLOY-10864 - Resolved NullPointerException if calling the search REST API without specifying any criteria.

• FLEXDEPLOY-10886 - Email test connection with now print the stacktrace to the flexdeploy logs if the IMAP test connection fails.

• FLEXDEPLOY-10642 - Releases - Resolved NullPointerException when projects in release have no deploy workflow configured.

• FLEXDEPLOY-10733 - Releases - Force Deploy on Pipeline Pre-Deploy All step would not correctly show the value on the screen. The label has also been changed to Force Execute.

• FLEXDEPLOY-10774 - Releases - Replay of gate or step will not pick up new configuration of gate or step respectively.

• FLEXDEPLOY-10781 - Releases - Fixed an issue causing pipeline role checkboxes to behave erratically in certain cases.

• FLEXDEPLOY-10900 - Resolved an issue where the FLEXDEPLOY.createRelease function failed with property required error.

• FLEXDEPLOY-10904 - Fixed an issue in the FLEXDEPLOY.addProjectsToRelease function causing incorrect error messages around Pipeline Project Groups

• FLEXDEPLOY-10646 - Resolved a regression issue where separating a ListData CSV item with ## would not split the text into the value and label. An enhancement was also added for a third segment for the description. For example: label##value##description.

• FLEXDEPLOY-10704 - It is now possible to delete projects that had been built in releases, which were inactivated after everything is purged.

• FLEXDEPLOY-10705 - A user can now view a standalone release within a project they don't have access to, as long as they have read access to the release.

• FLEXDEPLOY-10742 - Resolved intermittent purge error: "FDML-99997: Purge Failure - ORA-02292: integrity constraint (FD.EVENT_MESSAGE_LISTENER_FK1) violated."

• FLEXDEPLOY-10829 - Incoming Webhooks - Resolved an issue where long Exceptions were not able to be stored in there database properly with error "FDML-99501: Value for [ErrorMessage] can not be larger than 4000."

• FLEXDEPLOY-10908 - Resolved workflow dispatch issue where projects with lower sequence were not dispatched when projects with higher sequence were currently running.

• FLEXDEPLOY-10924 - Resolved an issue where upgrade from 5.7 or below to 7.0.0.0 was failing with "unique constraint (FD.FD_PERMISSION_UK1) violated" error.

• Oracle EBS Plugin

  • FLEXDEPLOY-10666 - EBS Plugin now properly matches .sql files in the cp_sql folder, even if the root cp_sql folder is a substring of the install sql folder.

• Oracle Integration Cloud Plugin

  • FLEXDEPLOY-10355 - Resolved issue where blank lines in connectionPlan.properties caused deployment failure.

  • FLEXDEPLOY-10356 - Package deploy operation now uses connectionPlan.properties if found in artifacts.

  • FLEXDEPLOY-10426 - Resolved an issue with retry for update connection failures.

• Maven Plugin

  • FLEXDEPLOY-4734 - The Maven plugin now finds the correct pom when nested projects are located and a checkout folder is used.

• Node Plugin

  • FLEXDEPLOY-5694 - Resolved an issue where Node plugin fails when there is a space in the project checkout folder.

• Oracle Service Bus Plugin

  • FLEXDEPLOY-9369 - The OSB partial build plugin now correctly locates files that are located in multiple layers of folders, even if the project name is used in the file or folder name.

FlexDeploy 7.0.0.1 (12-16-2023)

Application Updates

Salesforce Integration

• FLEXDEPLOY-7206 - Salesforce now provides an option to exclude Third-party packages from compare.

...

• FLEXDEPLOY-8756 - Test Name input on project test request popup and pipeline Test Step definition now provides test name suggestions. Suggestion provided from Project Test Automation Configuration and fdtests directory YAML files.

• FLEXDEPLOY-8841 - On package build, fdtests folder is automatically saved to artifacts directory from repository root when artifacts are produced.

• FLEXDEPLOY-9626 - Tests can now be filtered by Tag, a new field available in the Test Automation Configuration YAML. Tags can be selected for filtering from project test request popup, pipeline test and test all steps, and the invoke test workflow operation.

Release and Pipeline Management

• FLEXDEPLOY-10187 - Added a link to the created Snapshot on the Promote to Release step dashboard view.

• Upload Execution Info Popup has more appropriate default widths for flex fields.

• Added indicators on Release Dashboard - External Approval Gate if the CMS instance has Don't Poll enabled. Customers using Don’t Poll can perform integration using Webhooks.

• FLEXDEPLOY-10580 - When inactivating a project or package, its standalone release are completed.

• Release content can now be filtered using Project Groups as well.

...

• FLEXDEPLOY-10164 - GIT Instance now allows configuration for commit link syntax, which will be mostly useful for customers using On-prem Git repository. Commit links are shown in Execution UI and Change Logs. See FlexDeploy - Git Plugin Guide for more details.

• FLEXDEPLOY-10710 - Added Abort option on the UI for queued workflow executions. Previously only Running executions were allowed to be Aborted.

• FLEXDEPLOY-9518 - Environment State Report now allows viewing attributes 'Workflow Type', 'Workflow Id', 'Workflow Name', 'Workflow Version', 'Package Created By', 'Package Created On', 'Package Updated On', 'Package Updated by', 'Force' (which indicates whether force build or deploy was requested), 'Folder Request Id', 'File Status', 'Work Item Numbers', 'Approved By', 'Snapshot Id'.

• FLEXDEPLOY-9819 - Multiple package(s) can now be selected on deploy request form. Only one version of per package is allowed. This is just quicker option to deploy more packages.

• FLEXDEPLOY-10235 - Added getTaskById, searchTasks, getPendingTasksByChangeTicket, approveTaskById, rejectTaskById methods in FLEXDEPLOY function. This can be utilized for integration with external tools from Webhooks or Pipeline scripts.

• FLEXDEPLOY-10622 - EMAIL Function - Added new methods that allow sending emails with CC, BCC, and allows sending a single email to multiple recipients.

• FLEXDEPLOY-10602 Custom issue tracking system integrations now support implementing search related methods, which would enable search from the build request form, package, and release definition.

• FLEXDEPLOY-10608 - Added Outgoing Webhook event type for Package Status Updated.

• FLEXDEPLOY-10619 - List data for work item fields was throwing an error when trying to open a work item if one the following formats were being used:

  1. ["Break Fix","Problem","Project","Request","Risk Remediation"]

  2. [new ListValueDataObject("value1"),
new ListValueDataObject("label2","value2"),
new ListValueDataObject("label3","value3","Description")]

• Code Editor

  • FLEXDEPLOY-9190 - Editor help is now provided in object constructors. Also fixed an issue causing objects instantiated with fully qualified class names to not provide suggestions.

  • FLEXDEPLOY-10023 - RuntimeException should now have groovy suggestions without the need of an explicit import in the script.

• Notifications

  • FLEXDEPLOY-10435 - Resolved an issue with the mention notification email that would sometimes cause longer text to not wrap and shrink in the new Microsoft Outlook client.

Plugin Updates

• Oracle FSM Plugin

  • FLEXDEPLOY-9725 - Export Criteria now supports adding or removing multiple attributes for a given business object. This would allow for further filtering of data exported for setup task.

• Oracle EPM Plugin

  • FLEXDEPLOY-9401 - Added an operation to download snapshots and updated the import operation to support both package and standard deploys. This enables the plugin to provide a clone capability from an existing snapshot.

• Oracle Visual Builder Plugin

  • FLEXDEPLOY-10188 - buildApplication and deployApplication operations now has an option to set Node.js version and optional arguments for npm install command.

• Oracle BI Plugin

  • FLEXDEPLOY-10575 - Added a plugin input to the OBI Deploy operation to force the last-modified timestamp. If Update Last Modified is checked on a Oracle BI V1 project, any dashboards or scorecards that are deployed will have their sub-items' last-modified times updated as well. On an Oracle BI V2 project, the dashboard and scorecard sub-items can be deployed individually, and the deployed items will have their timestamps updated.

• Mule Plugin

  • Mule plugin can now automatically look up and select the recommended runtime version for CloudHub deployments.

• Tricentis Tosca Plugin

  • FLEXDEPLOY-8598 - Plugin operation now supports the Tosca Distributed Execution approach.

• REST Plugin

  • FLEXDEPLOY-5896 - Added the ability to save values from REST response headers through user defined outputs.

Resolved Issues

• Email Communication

  • FLEXDEPLOY-9686 - Resolved an issue where authorizing as a different user on the Email Settings required a server restart in order to take effect.

• GIT Integration

  • FLEXDEPLOY-10587 - Resolved an issue with Git integration that resulted in error "OutOfMemoryError: Requested array size exceeds VM limit".

• Issue Tracking Integration

  • FLEXDEPLOY-10618 - On-perm Jira installations does not support warn option for validateQuery parameter, which caused issues during issue tracking integration. This value is now set to false to avoid failures.

• Projects

  • FLEXDEPLOY-10469 - Resolved an issue related to Package-based project deployments not tracking execution files when plugin operation was executed from child workflow.

  • FLEXDEPLOY-8713 - Resolved an issue that caused artifacts purged icon to not show on the project execution tab. There will also be a display message on the artifacts and variables tabs to indicate they were purged.

• Workflow Execution

  • FLEXDEPLOY-10200 - Resolved an issue to convert Unicode character from log that prevents Execution Steps getting displayed.

  • FLEXDEPLOY-3805 - Resolved an issue where Windows endpoint plugin logs would not show correct working directory.

  • FLEXDEPLOY-7434 - Resolved file transfer issue for Windows endpoints. Error was "net.schmizz.sshj.sftp.SFTPException: Failure".

• Releases

  • Resolved an issue in the View Variables popup where multiselect values would not be comma separated.

  • FLEXDEPLOY-10630 - Overriding a scheduled gate would not show the user which performed the override in the Pipeline Execution History popup.

  • FLEXDEPLOY-10738 - Changing pages within the Snapshot Compare popup would also change the page on the Snapshot List table

• Purge

  • FLEXDEPLO-10638 - Resolved an issue in the purge that caused some objects to be unable to be purged with error: ORA-02292: integrity constraint (FD.WF_EXEC_PKG_OBJ_CUR_STATUS) violated - child record found.

  • FLEXDEPLOY-10734 - Resolved issues that caused Change History to not be Purged even when it was turned on in purge settings.

• Topology

  • FLEXDEPLOY-10344 - Resolved an issue where Updated by/updated on details were not being displayed on the target properties table.

  • FLEXDEPLOY-10648 - Resolved an issue where newly configured Environment which was not yet used can not be deleted with error "integrity constraint (FD.ENVIRONMENT_PROPERTY_KEY) violated - child record found".

• Salesforce Integration

  • FLEXDEPLOY-10693 - Resolved Issue with Discover Files for Salesforce Trigger.

• Oracle FSM Plugin

  • FLEXDEPLOY-10635 - Export Criteria set with an empty AttributeName or AttributeValue will be ignored. This previously caused plugin execution failures.

  • FLEXDEPLOY-10641 - CSV Export/Import reports are saved in FD_REPORTS_DIR with correct extensions. Processlog will also be saved as an additional report.

  • FLEXDEPLOY-10729 - Task code filter text is automatically trimmed when retrieving setup task suggestions.

  • FLEXDEPLOY-10730 - Resolved an issue where discover would not take new Task Name if it had changed.

• Oracle EBS Plugin

  • FLEXDEPLOY-9967 - Plugin operations now adds the output of password validation into plugin logs to better understand issues.

...

Application Updates

FlexDeploy 7.0.0.0 is significant milestone towards Next Generation UI/UX transformation, building on top of 6.0 and 6.5. This is focused on Release & Pipeline Management as well as Incoming & Outgoing Webhooks. This is not just about consistent and productive UX changes, but many new features are also incorporated.

...

• Modern look and feel with new branding is now extended to Release & Pipelines, Incoming & Outgoing Webhook screens.

• Folder can now contain folders as well as projects, this was previously not allowed. Additionally, Releases are also now organized in Folders.

• FLEXDEPLOY-9754 - Projects - An option for displaying execution data in table format is now available for projects and packages. The setting can be found in the options menu next to saved queries.

• FLEXDEPLOY-9755 - Projects - Shows duration next to start time in project execution list.

Release and Pipeline Management

Release Definition

• Releases are now available in Global search as well as Recent activity. In addition, Releases can be marked as Favorite and tags can be assigned to it.

• Releases are now stored in folders. For Customers upgrading from previous version, all Releases will be placed in FlexDeploy folder.

• Release security is now inherited from parent folder, which allows for easier management of security permissions for release. Release can override or inherit security from parent folder(s), which is similar to folder and project security. There is no impact to Customers upgrading from previous versions of FlexDeploy.

• Release Settings are now available. These settings as release permissions can be defined at the folder or release level. Release settings include various options like Snapshot name syntax, Auto complete package & release after deployment to production, options to automatically add content based on work items etc. See Release Settings for more details.

  • FLEXDEPLOY-4174 - Snapshot code committers are not allowed to approve gate. This is configured by release setting.

  • FLEXDEPLOY-6347 - Snapshot name can be customized now using Snapshot Name setting which is defined as Groovy script. Supported variables are CurrentDate, ReleaseName, SequenceNumber (FLEXDEPLOY-8781)

• Release content (project/packages) can be managed much more easily now. UX is similar to how package files are managed. This process also allows for searching packages of specific project easily (FLEXDEPLOY-2515).

• Release content now can be managed by Release Manager role without any knowledge of necessary project/package. This is accomplished by adding Work Items to release and project/packages are added automatically to release content. This behavior is controlled by Auto-Add Content Options release setting, which allows adding content based on package work item mapping, new build or previous build associated with work item.

• Work Items are always added to release when new snapshots are created or new packages are added. This allows release manages to see list of work items being developed for specific release.

• FLEXDEPLOY-4299 - removal of project/package from release content now presents confirmation dialog.

• Completed releases can now be started if necessary.

• Force Complete option is now available to complete release, which will abort any running executions.

...

• Change history report is now extended to show changes done for Release, Pipelines, etc.

• FLEXDEPLOY-6484 - Users can now subscribe to receive notifications on specific Flex Work Item changes. This only applies to native work items and not external work items like Jira, Azure Boards.

• FLEXDEPLOY-6759 - Purge has been added for change history records. This is configurable on Purge Settings page, default value for Change History Purge Days is 730.

• Completed packages can now be activated again if necessary.

• Folder tree now contains folders, projects and releases. There is option to filter where only releases or projects can be viewed. Additionally, folders can now contain folders, projects and releases, previously folders and projects were not allowed to be under same parent folder.

• FLEXDEPLOY-10022 - Work item search functionality has been added to the build request form and package work items input.

• FLEXDEPLOY-9928 - Settings - A new theme setting has been added Always Float Input Labels. When true, input labels will float to the top of the input regardless of focus or whether or not a value is provided.

• FLEXDEPLOY-9258 - Endpoints - Added ability to select private key from list of keys stored on the server when setting up SSH authorization for Endpoints. Additionally, added ability to download the public key paired with the selected private key. Upload public key option has been removed from Endpoint screen.

• FLEXDEPLOY-8721 - API tokens for REST API invocations are supported for internal as well as external users. (FLEXDEPLOY-8916)

• New REST API added for V2 - see V2 REST API

Plugin Updates

• FlexDeploy 7.0 plugins will not work with previous versions of FlexDeploy. In general, first two letters of application (e.g. 7.0) and plugin version should match for compatibility.

• The Apigee, Maven, and XPath plugins now require Java 8, this decision was made to resolve security vulnerabilities. Flexagon understands that many customers are forced into using older Java versions by their legacy software, and will attempt to maintain Java 7 compatibility for the near future, as well as Java 6 compatibility for the EBS plugin. We also understand that other customers need to run on newer Java versions. Continue to watch the Plugin Java requirements page for updates. We welcome support tickets for concerns with Java version support.

• FLEXDEPLOY-7760 - Resolved Vulnerabilities CVE-2017-18640, CVE-2022-25857, CVE-2022-38749, CVE-2022-38751, CVE-2022-38752, CVE-2022-41854, CVE-2022-38750 for Kubernetes and Helm plugin.

• FLEXDEPLOY-7759 - Resolved Vulnerability CVE-2022-4065 for TestNG plugin.

• FLEXDEPLOY-7757 - Resolved Vulnerability CVE-2022-31159 for AWS and Docker Plugin.

• FLEXDEPLOY-7757 - Resolved Vulnerabilities CVE-2018-1270, CVE-2022-22965, CVE-2014-0225, CVE-2016-9878, CVE-2018-11040, CVE-2013-4152, CVE-2013-6429, CVE-2013-7315, CVE-2014-0054, CVE-2018-1257, CVE-2020-5421, CVE-2022-22950, CVE-2018-11039, CVE-2013-6430, CVE-2022-22968, CVE-2022-22970, CVE-2014-3625, CVE-2014-1904 for AWS and EC2 Plugin.

• FLEXDEPLOY-7756 - Resolved Vulnerabilities CVE-2022-36033, CVE-2021-37714, CVE-2022-29599, CVE-2021-26291, CVE-2014-3577, CVE-2020-13956, CVE-2015-5262, CVE-2021-29425, CVE-2017-1000487 for Apigee, Maven and MuleSoft plugin.

• FLEXDEPLOY-7761 - Resolved Vulnerabilities CVE-2019-20444, CVE-2019-20445, CVE-2019-16869, CVE-2020-11612, CVE-2021-37136, CVE-2021-37137, CVE-2022-41881, CVE-2021-43797, CVE-2022-41915, CVE-2021-21295, CVE-2021-21409, CVE-2021-21290, CVE-2022-24823 for Oracle SaaS FSM Plugin.

• FLEXDEPLOY-7762 - Resolved Vulnerability CVE-2021-42550 for Docker Plugin.

• FLEXDEPLOY-7764 - Resolved Vulnerability CVE-2016-5725 for Git Plugin.

• FLEXDEPLOY-7773 - Resolved Vulnerability CVE-2018-10237 for Docker, Siebel, Jenkins Plugin.

• FLEXDEPLOY-7783 - Resolved Vulnerabilities CVE-2021-36374, CVE-2021-36373, CVE-2020-1945 for Ant Plugin.

• FLEXDEPLOY-7788 - Resolved Vulnerabilities CVE-2020-10683 and CVE-2018-1000632 for Jenkins Plugin.

• FLEXDEPLOY-7792 - Resolved Vulnerabilities CVE-2020-26939, CVE-2020-0187, CVE-2020-26939, CVE-2016-1000338, CVE-2016-1000342, CVE-2016-1000343, CVE-2016-1000344, CVE-2016-1000352, CVE-2016-1000341, CVE-2016-1000345, CVE-2017-13098, CVE-2020-0187, CVE-2016-1000339, CVE-2020-15522, CVE-2015-7940, CVE-2018-5382, CVE-2013-1624, CVE-2016-1000346 for PeopleSoft, OpenShift, Artifactory XRay, Oracle CPQ, PMD, Siebel, CheckMarx, OWASP Dependency Check, Acunetix, Jenkins Plugin.

• FLEXDEPLOY-7793 - Resolved Vulnerabilities CVE-2014-0114, CVE-2019-10086 for various Plugin.

• FLEXDEPLOY-7795 - Resolved Vulnerabilities CVE-2018-7489, CVE-2017-7525, CVE-2020-10650, CVE-2020-35490, CVE-2020-35491, CVE-2020-36518, CVE-2022-42003, CVE-2022-42004, CVE-2018-1000873, CVE-2019-14379, CVE-2019-14540, CVE-2019-14892, CVE-2019-14893, CVE-2019-16335, CVE-2019-16942, CVE-2019-16943, CVE-2019-17267, CVE-2019-17531, CVE-2019-20330, CVE-2020-8840, CVE-2020-9546, CVE-2020-9547, CVE-2020-9548, CVE-2020-10672, CVE-2020-10673, CVE-2020-10968, CVE-2020-10969, CVE-2020-11111, CVE-2020-11112, CVE-2020-11113, CVE-2020-11619, CVE-2020-11620, CVE-2020-14060, CVE-2020-14061, CVE-2020-14062, CVE-2020-14195, CVE-2020-24616, CVE-2020-24750, CVE-2020-35728, CVE-2020-36179, CVE-2020-36180, CVE-2020-36181, CVE-2020-36182, CVE-2020-36183, CVE-2020-36184, CVE-2020-36185, CVE-2020-36186, CVE-2020-36187, CVE-2020-36188, CVE-2020-36189, CVE-2021-20190, CVE-2019-12086, CVE-2019-14439, CVE-2020-25649 , CVE-2019-12384, and CVE-2019-12814 for EC2, AWS, Docker, Jenkins Plugin.

• FLEXDEPLOY-7798 - Resolved Vulnerability CVE-2020-28491 in AWS Plugin.

• FLEXDEPLOY-7801 - Resolved Vulnerabilities CVE-2021-27568 and CVE-2021-31684 for ServiceNow and XPath Plugin.

• FLEXDEPLOY-7802 - Resolved Vulnerability CVE-2020-15250 for Docker, TestNG, Cucumber, JUnit Plugin.

• FLEXDEPLOY-9152 - Resolved Vulnerability CVE-2023-33201 for various plugins.

• FLEXDEPLOY-10004 - Resolved Vulnerability CVE-2023-4586 for Oracle SaaS FSM Plugin.

• FLEXDEPLOY-9154 - Resolved Vulnerabilities CVE-2018-11307, CVE-2017-17485 for various plugins.

• FLEXDEPLOY-10409 - Updated the Docker Bench Plugin to work with newer versions of Docker Bench.

Resolved Issues

• FLEXDEPLOY-6828 - Resolved an issue where workflow input does not default to initial value when workflow is invoked from pipeline. Previously users needed to save stage execution information as workaround.

• FLEXDEPLOY-7429 - Resolved an issue where attachments added when initially creating the work item would result in an error.

• FLEXDEPLOY-10481 - Dashboards - Panel titles are now capped at 100 characters and overflow correctly.

• FLEXDEPLOY-10482 - Dashboards - Resolved an issue where in certain cases editing Panel inputs in the Customize Dashboard Panel would modify inputs of already placed panels of the same type.

• FLEXDEPLOY-10457 - Integrations - Integration description length is capped at 255 max now.

• FLEXDEPLOY-10429 - Credentials - Resolved an issue where Delete credential was incorrectly disabled if you did not have UPDATE permission on Credentials.

• FLEXDEPLOY-10417 - Packages - Resolved an issue where removing files from a package would not add them back as potential files to add to the package without a screen refresh.

• FLEXDEPLOY-10403 - Folders - Resolved an issue where limited access users would not see any permission error when creating a folder (folder not created but error was not displayed).

• FLEXDEPLOY-10391 - Groovy Code Editor - Resolved issue where editor would sometimes give suggestions for the incorrect function argument.

• FLEXDEPLOY-10369 - UI Selection - Resolve an issue where while selecting Autocomplete options by clicking, sometimes additional options would be selected in multi selection input.

• FLEXDEPLOY-10337 - Projects - Do not navigate away from project if there is an error deleting a Project.

• FLEXDEPLOY-10320 - Saved Queries - Resolved an issue where newly created and modified queries would sometimes not apply all filters and sorts.

• FLEXDEPLOY-10073 - Dashboards - Resolved a few overflow/wrapping issues on Recent Activity and Recent Work Items panels.

• FLEXDEPLOY-10011 - Workflow Request - Resolved an issue seen during submission of a workflow request incorrectly stating that Workflow Input does not exist.

• FLEXDEPLOY-10115 - Post Refresh REST API - Resolved an issue where wrong error message was displayed when trying to refresh an environment with no differences.

...

• RestWorkflowPropertyServices - v1/workflows/{workflowId}/properties

• RestWorkflowServices - v1/workflows

• RestSCMDefinitionServices - v1/scm/definition

Incompatible Changes

Release and Pipeline Management

• Releases no longer have the state NOTSTARTED so if you were using this state in a REST call, use SUSPENDED or STARTED instead. The validation of the release to be ready to run is no longer required for STARTED. Instead, creating snapshots contains that validation.

• The CSV format for Uploading and Download Pipeline Stage Execution Info has changed. Any CSV files in the old format should be discarded. A new CSV file with the correct format can be downloaded from the Stage Execution Info popup in the Release Dashboard.

• Background thread names used by execution engine is changed from gateworker, stepworker to releaseeventprocessor.

• FLEXDEPLOY-9981 - ReleaseProjectDataObject - Removed the GroupName attribute, which contained group names (String), and replaced with ProjectGroups attribute, which contains group ids. This affects v2 REST APIs for release and some FLEXDEPLOY methods.

• New release created using V1 API will be placed in FlexDeploy folder and will be initialized with Pipeline based on FlexDeploy folder release settings.

• FLEXDEPLOY.getPipelineStageExecutionInfo() return object was changed to remove the workflowDetailsMetaData and flexFieldsMetaData attributes.

...