Did you know you can subscribe to updates to the release notes? Right click and copy this link and paste it into Outlook RSS Feeds or your feed reader of choice.
FlexDeploy 7.0.0.1 - 7.0.0.3 are affected by FLEXDEPLOY-11582. This can cause high memory usage that increases as more builds and deploys are completed. This is especially true for customers with a very large number of properties, target groups, or environments. 7.0.0.4 contains a fix for this.
FlexDeploy 7.0.0.1 - 7.0.0.3 are affected by FLEXDEPLOY-11564. This can cause high cpu and low performance when the system is heavily utilized and the Workflow Execution Threads or Plugin Execution Threads are set to above 10. This is fixed in 7.0.0.4. If you are on 7.0.0.1 - 7.0.0.3, please set your System Settings, Execution settings, Workflow Execution Threads and Plugin Execution Threads to 10 or less.
FlexDeploy 7.0.0.0 - 7.0.0.2 are affected by FLEXDEPLOY-11176. Email approvals can fail with a constraint violation when a user and a group the user is a member of are both mapped to an approval. This is fixed in 7.0.0.3.
FlexDeploy 7.0.0.1 - 7.0.0.2 are affected by FLEXDEPLOY-10711. This prevents export of the Environment State report. This is fixed in 7.0.0.3.
FlexDeploy 7.0.0.0 and 7.0.0.1 are affected by FLEXDEPLOY-10924. This causes a problem when upgrading from FlexDeploy 5.7 or older. Users of versions 5.7 or older should upgrade directly to 7.0.0.2+ (instead of 7.0.0.0/7.0.0.1).
FLEXDEPLOY 7.0.0.0 is affected by FLEXDEPLOY-11430 - Classes in flexagon.fd.model.appmodules were refactored and their imports require changes if they were used in webhook, pipeline, or other groovy scripts. See the Solution for FLEXDEPLOY-11430 page for assistance.
FlexDeploy 7.0.0.4 (3-15-2024)
Version Details
Application Version - 7.0.0.4.315
Docker images:
Due to various security vulnerabilities resolved in this version, we strongly recommend that customers should upgrade to 7.0.0.4 or higher version.
Application Updates
FLEXDEPLOY-11414 - FlexDeploy now supports datetime formats for Dutch, "no" locale code.
FLEXDEPLOY-10623 - Create projects from CSV now allows creation of multiple branches, along with VersionNameSyntax and NextBranchBuildNumber.
FLEXDEPLOY-11491 - The "show more" chip can now always be clicked regardless of whether the input is disabled or not.
Security
Path traversal vulnerability has been resolved and customers are requested to upgrade.
Workflow Execution
FLEXDEPLOY-11143 - Workflow invoke plugin step now allows use of Stop On Error flag. This can be used when running plugin on all endpoints to stop execution on subsequent endpoints if previous execution fails.
Release and Pipeline Management
Copy Pipeline option is now available.
FLEXDEPLOY-11287 A copy id button has been added to the Project and Package cards which are shown on hover on the Release Definition page.
Plugin Updates
PeopleSoft Plugin
FLEXDEPLOY-9648 - The packageBuild operation now executes export scripts (DMS objects) and will save the generated output (DAT) to the artifact folder. The packageDeploy operation now executes import scripts (DMS objects) and will read the data (DAT file) from the artifact folder.
Oracle Visual Builder Plugin
FLEXDEPLOY-10006 - A new plugin input Node Executable Path is now available for plugin operations that use Node.
Oracle Integration Cloud Plugin
FLEXDEPLOY-11102 - If connection is using wallet, connection plan can be used to manage specific wallet file based on environment, and plugin will upload appropriate attachment file. You can also take approach to use attachment file with same name and keep different file in attachment override directory.
FLEXDEPLOY-11209 - For Package-based project file of Integrations type, added an attribute to manage lookup along with an integration. Lookups used by integration will be exported and deployed if selected.
Siebel Plugin
FLEXDEPLOY-11363 - Siebel plugin now supports preemptive authentication for HTTP requests.
JDBC Plugin
FLEXDEPLOY-11095 - Added new input to allow generation of SQL statement execution report. Report file will contain SQL statements executed with results or errors.
Anchore Plugin
FLEXDEPLOY-11019 - Anchore Plugin now supports image scanning using Grype.
Oracle SaaS FSM Plugin
FLEXDEPLOY-11348 - csvExport, csvDownload, and csvDownloadAdvanced operations will no longer make changes to ASM_SETUP_CSV_METADATA.xml to prevent errors at import time.
Resolved Issues
FLEXDEPLOY-11582 - Resolved an issue with FlexDeploy 7.0 which may cause out of memory errors. This applies to 7.0.0.0, 7.0.0.1, 7.0.0.2 and 7.0.0.3.
FLEXDEPLOY-11272 - Resolved an issue where creating a snapshot through REST v1 resulted in NPE when user was not an admin and if they did not have read permission on the release.
FLEXDEPLOY-11316 - Resolved an issue which caused Constraint Violation Error when creating a custom Issue Tracking System.
FLEXDEPLOY-11353 When creating/editing an endpoint, the private key path can now be typed in. Previously, it had to be chosen from a set list found in the .ssh directory within the endpoint user's home directory.
Workflow Execution
FLEXDEPLOY-11561 - Resolved an issue where Workflow completion may fail with "ERROR: duplicate key value violates unique constraint".
FLEXDEPLOY-11561 - Resolved a regression issue where Workflow and Plugin Execution thread pool was not increasing to more than 10 threads.
FLEXDEPLOY-11564 - Improved performance of plugin installation when running multiple workflows against different endpoints.
FLEXDEPLOY-11639 - Resolved an issue where workflow execution may fail with "Parameter 'directory' is not a directory".
Release and Pipelines Management
FLEXDEPLOY-11314 - Resolved and issue where the Release stage execution info popup was only showing the Project's first 50 mapped deploy Target Groups in the Target Group Override dropdown.
FLEXDEPLOY-11320 - Resolved an issue preventing non admins from being able to add tags to Releases.
FLEXDEPLOY-11422 - Resolved an issue where user could not view custom step/gate on the release dashboard unless they had read permission for System Settings (which is available to admins only).
FLEXDEPLOY-11493 - Resolved an issue causing the full screen view of pipeline execution gates and steps to not be scrollable.
FLEXDEPLOY-11559 - Resolved an issue causing a null pointer error when saving Pipeline Variables if they contained an Integer type.
FLEXDEPLOY-11591 - A Release Started outgoing webhook event is now triggered as expected when a Release is created with started status.
Projects
FLEXDEPLOY-11305 - Resolved an issue where if more than 50 deploy target groups were selected on project configuration > general, some were showing target group ids instead of name.
Webhooks
FLEXDEPLOY-11356 - Resolved a regression introduced in 7.0.0.0 that was modifying the FLX_PRISTINE_PAYLOAD variable. As a result, HMAC verification functions would fail if the original content-type was not application/json.
Oracle EBS Plugin
FLEXDEPLOY-11184 - Resolved an issue where file permission change command was failing when file names contained space.
Git Plugin
FLEXDEPLOY-11313 - Git executions now receive more environment variables, like https_proxy, and PATH, which can resolve issues with proxies, and git lfs not working properly.
Oracle Integration Cloud Plugin
FLEXDEPLOY-11384 - Resolved a regression issue from 7.0.0.3 where newly added Integration objects were failing to deploy with NullPointerException.
FLEXDEPLOY-11500 - Resolved an issue where exportConnections and createConnection plan operation may generate incorrect connections.json file.
SonarQube Plugin
FLEXDEPLOY-11562 - Resolved an issue that could cause SonarQube plugin to wait forever if the scan results failed in some cases.
Tomcat Plugin
FLEXDEPLOY-11303 - Resolved a regression from 7.0.0.0 where Tomcat war deployment fails with NullPointerException.
Oracle SaaS FSM Plugin
FLEXDEPLOY-11433 - Resolved an issue where DooProcessVersion and ProcessName were not displaying on DOO_ORCHESTRATION_PROCESS business object in the file catalog.
FlexDeploy 7.0.0.3 (2-17-2024)
Version Details
Application Version - 7.0.0.3.275
Docker images:
JDK upgrade may be required. Please review Incompatible Changes section.
Application Updates
FLEXDEPLOY-10711 - Environment History and Environment State report now have a 'Committed By' column, which indicates the name of the person who has committed the file to source control.
FLEXDEPLOY-10782 - UI colors for row selection, rows with active menus, and rows hovered have been adjusted for better contrast.
FLEXDEPLOY-10928 - Added Comment related methods to FLEXDEPLOY function - createComment, patchComment, deleteComment.
FLEXDEPLOY-11048 - Workflow Execution summary now shows Test success and failed counts instead of Test Case counts. This matches with display of counts on Release Dashboard - Test Gate details.
FLEXDEPLOY-11047 - FlexDeploy Purge now executes on startup and every 24 hours after that.
Security
FLEXDEPLOY-10895 - Updated json-smart in FlexDeploy to resolve vulnerability CVE-2023-1370.
FLEXDEPLOY-7788, FLEXDEPLOY-10386 - Updated Dom4J version used in Jenkins plugin to resolve vulnerabilities CVE-2020-10683 and CVE-2023-45960.
FLEXDEPLOY-10873 - Updated json-path version used in the XPath plugin to resolve vulnerability CVE-2023-51074.
FLEXDEPLOY-10913 - Updated dependencies in the AWS, Docker, and EC2 plugins to resolve vulnerability CVE-2024-21634.
Scheduled Events
FlexDeploy now supports Scheduled Events, which can be used to trigger actions within FlexDeploy or in other applications based on user-defined time intervals. FlexDeploy offers the ability to execute any groovy script functions when the scheduled time is reached. For example, you can setup a Function to send out monthly reports on deployment history of environments over email. See Scheduled Events for more details.
Release and Pipeline Management
FLEXDEPLOY-10032 - Using the LOG function methods in custom gate/step groovy scripts will now display log messages on the release dashboard screen. Logs on screen will automatically refresh. These logs are purged after 90 days by default, however, the interval can be adjusted in the purge settings (within System Settings).
FLEXDEPLOY-4389 - Copy Release action is now available, where user can create a copy of an existing release and selectively copy tags, projects/packages, work items, overridden role members and overridden settings.
FLEXDEPLOY-10803 - Added Release related methods to FLEXDEPLOY function - getReleaseById, getReleaseByName, searchReleases, createReleaseProject, createReleaseProjects, deleteReleaseProject, deleteReleaseProjects, patchReleaseProject, updateReleaseProject, searchReleaseProjects, copyRelease.
Outgoing Webhook
FLEXDEPLOY-11101 - Branch created, branch deleted, branch inactivated, and branch activated are now available as outgoing webhook events.
Plugin Updates
Oracle SaaS FSM Plugin
FLEXDEPLOY-5448 - Oracle SaaS FSM projects can now accept unarchived (unzipped) CSV file packages when sourcing from a source code repository. The csvDownloadAdvanced plugin operation is meant to be used with Oracle FSM projects to automatically export and push unarchived CSV file packages to a source code repository. Build and deploy will continue to execute as normal, even for zipped files. Option of storing unarchived files in a source code repository allows for historical comparison and changes as necessary. See FlexDeploy - Oracle SaaS FSM Plugin Guide for more details.
FLEXDEPLOY-10880 - csvDownloadAdvanced operation now supports multiple export criteria and/or filter criteria via JSON input. Extract CSV input is also now available, when enabled the downloaded CSV file package will be unarchived in the download folder. This input is enabled by default which is a behavior change.
FLEXDEPLOY-10883 - csvExport, csvDownload, and csvDownloadAdvanced operations will clear or update the following attribute values in ASM_SET_CSV_METADATA.xml: ProcessName, ProcessDescription, ProcessDate, MigScopeValueSetId, BatchName, NodeSequence. The listed attributes contain uniquely generated ids or date time information. This is important when exporting from SaaS instance and pushing to a source code repository as to avoid unnecessary commits.
Oracle Integration Cloud Plugin
FLEXDEPLOY-10706 - Integration schedule will be updated during packageDeploy and importIntegration operations, which can be controlled by Update Schedules input or file attribute. Allows for schedule overrides folder input to enable use of different schedule by environment.
FLEXDEPLOY-10425 - New inputs are available to control the number of times integration or connection could retry deployment failures. The inputs are available for packageDeploy, importIntegration and updateConnections operations.
FLEXDEPLOY-10569 - Added new operations to Pause and Resume Integration Schedules.
FLEXDEPLOY-10583 - packageBuild and packageDeploy operations now support migrating connections and lookups as new object types.
Apigee Plugin
FLEXDEPLOY-10720 - Added support to deploy Apigee config, shared-flow and proxy to Apigee X.
SonarQube Plugin
FLEXDEPLOY-10828 - SonarQube URL and token will now be considered during scanning execution.
Node Plugin
FLEXDEPLOY-10915 - Plugin now supports Nodejs Version input to automatically install specific version of nodejs. Node Executable Path takes precedence over Nodejs Version.
FLEXDEPLOY-10914 - Plugin now supports .npmrc configuration as input, which allows for npm configurations to be entered as list of key - value parameters.
Grunt Plugin
FLEXDEPLOY-10911 - Plugin now supports Nodejs Version input to automatically install specific version of nodejs. Node Executable Path takes precedence over Nodejs Version. Additionally, new input for NPM Install Arguments is added to use one or more arguments with npm install command.
FLEXDEPLOY-10914 - Plugin now supports .npmrc configuration as input, which allows for npm configurations to be entered as list of key - value parameters.
Angular Plugin
FLEXDEPLOY-10912 - Plugin now supports Nodejs Version input to automatically install specific version of nodejs. Node Executable Path takes precedence over Nodejs Version. Additionally, new input for NPM Install Arguments is added to use one or more arguments with npm install command.
FLEXDEPLOY-10914 - Plugin now supports .npmrc configuration as input, which allows for npm configurations to be entered as list of key - value parameters.
Oracle Visual Builder Plugin
FLEXDEPLOY-10914 - Plugin now supports .npmrc configuration as input, which allows for npm configurations to be entered as list of key - value parameters.
HP UFT Plugin
FLEXDEPLOY-10837 - The UFT plugin now parses test results when the action type is "User".
Resolved Issues
FLEXDEPLOY-10917 - Landing pages for Customize and Security menu sections now only show pages user has read access to. Previously, all page links were visible and would not work when clicked. Additionally, resolved an issue where only admin users had access to the Resource Types page when all users should have read access.
Https Agent
FLEXDEPLOY-11112 - Optimized use of threads in Https Agent invocation.
Salesforce
FLEXDEPLOY-11031 - Resolved an issue where compare always shows as new file for Azure DevOps Git.
Build Request Form
FLEXDEPLOY-10890 - Adjusted the create release portion of the build request form to handle longer release names.
Project Execution
FLEXDEPLOY-10965 - Scan Results are now displayed when a scan is executed through sub-workflow.
FLEXDEPLOY-10806 - Test Results can now be filtered by Test Name, Test Suite Name and Test Description.
FLEXDEPLOY-11087 - Resolved an issue where workflow executions report files were not captured if the report file was created with 4 or more parent folders under execution report directory.
FLEXDEPLOY-10832 - Resolved an issue that would cause plugin logs to not display if opened while status was queued.
FLEXDEPLOY-10868 - The Workflow Execution Variables screen now gives a brief description of "Other Properties".
Release and Pipeline Management
FLEXDEPLOY-11123 - Resolved an issue where Gate and Step actions were not visible on Release Dashboard for External Users mapped to a Group in a Pipeline Role.
FLEXDEPLOY-10906 - FLEXDEPLOY.createSnapshot(releaseId) function now defaults boolean snapshot inputs as false.
FLEXDEPLOY-10948 - Resolved an issue where Force Complete of release may fail with " FDML-17008: Release [...] can not be completed as there are incomplete pipeline executions. Select Force Complete on the UI or call the forceEndRelease api."
FLEXDEPLOY-10967 - Resolved an issue on release dashboard which sometimes show an error in the UI - Exception while fetching data (/integrationInstances) : java.lang.NumberFormatException: For input string: "undefined".
FLEXDEPLOY-11045 - Resolved an issue on release comment screen that resulted in error "FDML-99001: Internal Error - java.sql.Timestamp cannot be cast to java.math.BigDecimal".
FLEXDEPLOY-11176 - Resolved a regression which affected 7.0.0.0-7.0.0.2 where reply to email approval may fail with ERROR: duplicate key value violates unique constraint "human_task_uk1".
FLEXDEPLOY-9536 - Pipeline approval gate and manual step notifications now include attachments and comments (aka Instructions) from gate or step configurations.
Create Projects from CSV
FLEXDEPLOY-9618 - Create projects from CSV now uses Project GIT Defaults, for example Checkout Folder Script is now set instead of being blank.
FLEXDEPLOY-11170 - Create project from CSV option does not fail now when using Next Branch Build Number as value other than 1.
Integrations
FLEXDEPLOY-11020 - Resolved an issue with Long datatype preventing save of Integration Instances.
Change Management System Integration
FLEXDEPLOY-11154 - Added system setting to adjust change ticket status check interval. Change tickets entered on stage execution information for external gate or on deploy/utility request will be immediately checked for status.
Accessibility
FLEXDEPLOY-10032 - Resolved an issue where 'Skip to main content' link would not show up when navigating to a page from the menu.
Notification Templates
FLEXDEPLOY-11160 - Fixed an index out of bounds error that would seldom occur in the default Notification Template for Work Item Subscriptions.
REST API
FLEXDEPLOY-11177 - Resolved an issue with v1 Project service, where it required workflow id and instances both for patch. Additionally, instances are now appended to existing list of instances during patch operation.
Salesforce Plugin
FLEXDEPLOY-11124 - Resolved an issue with Profile subcomponent 'ObjectPermissions' not getting deployed when permissions were removed.
WebLogic Plugin
FLEXDEPLOY-11135 - Plugin now includes necessary python scripts for running certain WLST functions.
Docker Plugin
FLEXDEPLOY-11149 - Allow escaping commas in the docker file args.
Incompatible Changes
AES Encryption with 256 bit size key is now defaulted and JDK 1.8.0_192 or higher is required. Automated installer will check for compatibility and warn if any issues with JDK version.
FLEXDEPLOY-11106 - All users must now have read permission on a Release to be able to view it. Previously, the user who created the Release was able to view it whether or not they had read permission on the Release.
Oracle FSM Plugin csvDownloadAdvanced operation now unzips downloaded CSV file package.
FlexDeploy 7.0.0.2 (1-20-2024)
Version Details
Application Version - 7.0.0.2.207
Docker images:
Application Updates
FLEXDEPLOY-7768 - Test and scan results are now captured on workflow execution failure also.
FLEXDEPLOY-9526 - All list data definitions now support specifying value, label, and description by separating with ##. For example: label##value##description.
FLEXDEPLOY-10756 - Files located in either the
fdtests
orfdreplacements
folders at project root will be excluded on file discovery for package-based projects.FLEXDEPLOY-10797 - The display for deploying multiple packages on the deployment request form has been divided into a separate row for each package and version. The option to deploy multiple packages was released in version 7.0.0.1 by selecting multiple items in the version field.
FLEXDEPLOY-10892 - Admin Operations actions are now only accessible to admin users. Previously, all users had access to view logs page.
Security
FLEXDEPLOY-10663 - Updated Apache Tomcat to 9.0.84 to resolve vulnerability CVE-2023-46589.
FLEXDEPLOY-10814 - Updated Apache Shiro to resolve vulnerability CVE-2023-46750.
FLEXDEPLOY-10839 - Update xmlsec to resolve vulnerability CVE-2023-44483.
FLEXDEPLOY-10658 - Updated Gradle to resolve vulnerabilities CVE-2023-42445 and CVE-2023-44387.
FLEXDEPLOY-10826 - Updated org.json to resolve vulnerabilities CVE-2023-5072 and CVE-2022-45688.
FLEXDEPLOY-10879 - Updated SSHJ version to resolve vulnerability CVE-2023-48795.
FLEXDEPLOY-9935 - Eliminated dependency of JGit from FlexDeploy and the Git plugin, hence CVE-2023-4759 is no longer vulnerability for FlexDeploy.
Release and Pipeline Management
FLEXDEPLOY-10511 - Pipeline custom gate or step script can now set milliseconds value in SCRIPT_CHECK_INTERVAL_MILLIS variable to control re-execution of script. Re-execution on not completed script happens at 5 minute interval by default.
FLEXDEPLOY-8522 - Pipeline Step Executions will now show status of Not Attempted instead of Pending if they have not been executed.
FLEXDEPLOY-9342 - FD_PIPELINE_ID and FD_PIPELINE_NAME are now available in Workflow Execution if workflow execution is initiated by pipeline.
FLEXDEPLOY-10595 - Project Test Request and Pipeline Test Step now require selection of package for a Package-Based Project. Additionally, when running a Test All step on a release containing multiple packages from the same project, one test request will be submitted for each package. If duplicate test cases exist between the packages, then they will only be executed once.
Accessibility
Added a "Skip to main content" link to direct cursor focus on the main body of the page.
Global search menu does not stay visible now after it is out of focus.
Added Accessibility tab on user profile screen for various settings.
Setting for Non-Persistent popup behavior (popup closes when focus shifts to main page or it can be closed by using Esc key).
Setting for controlling the duration that snack messages appear.
Setting for enabling/disabling animated icons.
SAP
FlexDeploy now tracks the deployment execution status of SAP Transport requests at the file level, ensuring comprehensive visibility and facilitating SAP system refresh (post-clone refresh) activities.
New Plugins
ACCELQ Plugin - see FlexDeploy - ACCELQ Plugin Guide for more details.
Plugin Updates
Oracle EBS Plugin
FLEXDEPLOY-10897 - Added support of Synonyms for EBS XDF object types.
Oracle SaaS FSM Plugin
FLEXDEPLOY-10685 - Oracle SaaS FSM Setup Task file now supports Filter Criteria. This allows for additional filtering of setup task data after export criteria is applied. This is useful when export criteria does not support the attribute(s) needed for your use case. Additionally, csvExport operation has Filter Criteria Preview Mode to help validate Filter Criteria before usage in a deployment process.
Oracle Integration Cloud Plugin
FLEXDEPLOY-10628 - updateConnection operation now has an option to re-activate all integrations using the connection when it's updated. Allows to use specific integrations, all or none.
FLEXDEPLOY-10419 - Attachment Override Directory input is now available for updateConnection operation.
Connection Attachment Override Directory now also supports GLOBAL folder. Attachments placed in GLOBAL folder apply for all environments unless overridden by specific environment folder.
Oracle Visual Builder Plugin
FLEXDEPLOY-10775 - buildApplicationExtension and deployApplicationExtension operations now support additional arguments for "npm install" command. Additionally, it also supports use of specific node version, which will be automatically installed.
Docker Plugin
FLEXDEPLOY-10432 - Updated Docker plugin to support pushing images to Oracle Cloud private and public container registry.
Kubernetes Plugin
FLEXDEPLOY-10517 - Added Additional Arguments input for all the Kubernetes plugin operations, using this input we can utilize different useful flags associated with Kubernetes resource management.
Terraform Plugin
FLEXDEPLOY-10788 - Updated Terraform Plugin operations to support Additional Arguments input.
Git Plugin
FLEXDEPLOY-9852 - Added an input to the git plugin to allow Treeless clone, which may make your full deploy projects more efficient in the amount of time and space used during builds.
Ansible Plugin
FLEXDEPLOY-10276 - Allow user to install multiple roles from ansible galaxy using Install Roles operation.
FLEXDEPLOY-10313 - Added Additional Arguments input to ansible playbook operation.
JDBC Plugin
FLEXDEPLOY-10577 - The Export and Import operations now upper case the table name from the project property, and compares column names case-insensitively.
Resolved Issues
FLEXDEPLOY-9916 - Updated SSHJ to 0.38.0. Set the transport timeout to match the timeout. This could in some cases prevent a timeout issue that would have happened earlier than the timeout set in system settings. Resolves the error "Received SSH_MSG_UNIMPLEMENTED while exchanging keys."
FLEXDEPLOY-9900 - Resolved an issue where home and end key functionality did not work properly on certain inputs.
FLEXDEPLOY-10798 - File Catalog or Package Files - Resolved an issue where evaluating a single file was always using the project's main branch instead of the selected branch in the popup.
FLEXDEPLOY-10830 - Made the package-based build operations resilient to a transient failure caused by a temporary file that could not be deleted.
FLEXDEPLOY-10843 - Topology - Resolved a 6.5 regression preventing users from manually assigning Workflows to Target Groups.
FLEXDEPLOY-10845 - Prevent a potential authentication bypass issue on REST calls. The calls were still authorized, but some REST calls allowed non-secured data to be read without authentication in certain cases. Affects versions 6.0 < 6.0.0.10, 6.5 < 6.5.0.14, 7.0 < 7.0.0.2. This is fixed in versions 6.0.0.10, 6.5.0.14, 7.0.0.2+. Versions < 6.0 are not affected.
FLEXDEPLOY-10864 - Resolved NullPointerException if calling the search REST API without specifying any criteria.
FLEXDEPLOY-10646 - Resolved a regression issue where separating a ListData CSV item with ## would not split the text into the value and label. An enhancement was also added for a third segment for the description. For example: label##value##description.
FLEXDEPLOY-10704 - It is now possible to delete projects that had been built in releases, which were inactivated after everything is purged.
FLEXDEPLOY-10742 - Resolved intermittent purge error: "FDML-99997: Purge Failure - ORA-02292: integrity constraint (FD.EVENT_MESSAGE_LISTENER_FK1) violated."
FLEXDEPLOY-10829 - Incoming Webhooks - Resolved an issue where long Exceptions were not able to be stored in there database properly with error "FDML-99501: Value for [ErrorMessage] can not be larger than 4000."
FLEXDEPLOY-10908 - Resolved workflow dispatch issue where projects with lower sequence were not dispatched when projects with higher sequence were currently running. This issue was introduced in 7.0.0.1.
FLEXDEPLOY-10924 - Resolved an issue where direct upgrade from 5.7 or below to 7.0.0.0 was failing with "unique constraint (FD.FD_PERMISSION_UK1) violated" error.
Salesforce
FLEXDEPLOY-10767 - Resolved an issue where Full Compare fails to include few objects.
FLEXDEPLOY-10768 - Data deployment supports retry of failed records based on Retry Count attribute.
Groovy Functions
FLEXDEPLOY-10900 - Resolved an issue where the FLEXDEPLOY.createRelease function failed with property required error.
FLEXDEPLOY-10904 - Fixed an issue in the FLEXDEPLOY.addProjectsToRelease function causing incorrect error messages for Pipeline Project Groups
Releases
FLEXDEPLOY-10705 - A user can now view a standalone release within a project they don't have access to, as long as they have read access to the release.
FLEXDEPLOY-10642 - Resolved NullPointerException when projects in release have no deploy workflow configured.
FLEXDEPLOY-10733 - Force Deploy on Pipeline Pre-Deploy All step would not correctly show the value on the screen. The label has also been changed to Force Execute.
FLEXDEPLOY-10774 - Replay of gate or step will now pick up new configuration from active pipeline version respectively.
FLEXDEPLOY-10781 - Fixed an issue causing pipeline role checkboxes to behave erratically in certain cases.
Oracle EBS Plugin
FLEXDEPLOY-10666 - EBS Plugin now properly matches .sql files in the cp_sql folder, even if the root cp_sql folder is a substring of the install sql folder.
Oracle Integration Cloud Plugin
FLEXDEPLOY-10355 - Resolved issue where blank lines in connectionPlan.properties caused deployment failure.
FLEXDEPLOY-10356 - Package deploy operation now uses connectionPlan.properties if found in artifacts.
FLEXDEPLOY-10426 - Resolved an issue with retry for update connection failures.
Maven Plugin
FLEXDEPLOY-4734 - The Maven plugin now finds the correct pom when nested projects are located and a checkout folder is used.
Node Plugin
FLEXDEPLOY-5694 - Resolved an issue where Node plugin fails when there is a space in the project checkout folder.
Oracle Service Bus Plugin
FLEXDEPLOY-9369 - The OSB package-based build operation now correctly finds files that are located in multiple layers of folders, even if the project name is used in the file or folder name.
FlexDeploy 7.0.0.1 (12-16-2023)
Version Details
Application Version - 7.0.0.1.114
Docker images:
Application Updates
Salesforce Integration
FLEXDEPLOY-7206 - Salesforce now provides an option to exclude Third-party packages from compare.
Test Automation
FLEXDEPLOY-8756 - Test Name input on project test request popup and pipeline Test Step definition now provides test name suggestions. Suggestion provided from Project Test Automation Configuration and
fdtests
directory YAML files.FLEXDEPLOY-8841 - On package build,
fdtests
folder is automatically saved to artifacts directory from repository root when artifacts are produced.FLEXDEPLOY-9626 - Tests can now be filtered by Tag, a new field available in the Test Automation Configuration YAML. Tags can be selected for filtering from project test request popup, pipeline test and test all steps, and the invoke test workflow operation.
Release and Pipeline Management
FLEXDEPLOY-10187 - Added a link to the created Snapshot on the Promote to Release step dashboard view.
Upload Execution Info Popup has more appropriate default widths for flex fields.
Added indicators on Release Dashboard - External Approval Gate if the CMS instance has Don't Poll enabled. Customers using Don’t Poll can perform integration using Webhooks.
FLEXDEPLOY-10580 - When inactivating a project or package, its standalone release are completed.
Release content can now be filtered using Project Groups as well.
Workflow Execution
Workflow Execution Threads setting can now be updated without needing restart of FlexDeploy server.
If workflow execution threads are exhausted, pending executions for environments higher in sort order will be considered first for execution when threads become available, i.e. preference will be given to environments at the bottom on environments list. For example, if Production is at the bottom of environment list then it will have highest preference for execution.
Deploy priority on Project or Release (defined on content page) will control execution order within specific environment. For example, if there is running execution in Dev environment for Project with priority of 1, then projects with priority of 2 or higher in Dev environment will be queued.
Additionally, new system setting Project Execution Limits is now added to limit max number of concurrent workflow executions by Project. This can be useful if specific project deploys to many targets. This would allow other projects to continue execution and not exhaust all available threads in pool.
Project Execution Limit is controlled by defining limits using project id, project or folder name or name regular expression. See Execution Settings for more details.
Plugin Execution Threads system setting can now be updated without needing restart of FlexDeploy server.
Endpoint now supports max concurrent setting to limit how many plugins can execute on a particular endpoint.
Plugin developers always had ability to limit number of concurrent executions by plugin. This is still supported and configured in plugin.xml but Endpoint max concurrent setting would make more sense now.
Plugin Execution dispatch updated to efficiently utilize available threads in pool.
Plugin logs popup in workflow execution page now displays correct icon status, this is particularly useful when plugin executions are Queued due to Endpoint or Plugin threads limit.
FLEXDEPLOY-8707 - Endpoint test connection now provides additional information on failures. Additionally, server logs will print additional information for debugging in case of endpoint failures.
Replacements Support
FLEXDEPLOY-9721 - Project Replacements Config now supports replacing with random value from CSV File.
FLEXDEPLOY-10617 - Project Replacements Config now supports loading replacement config files from the
fdreplacements
folder in SCM.
HTTPS Agent
FLEXDEPLOY-10715 - Upgraded HTTPS Agent to latest tomcat version 9.0.83. Resolves CVE CVE-2023-46589.
Miscellaneous
FLEXDEPLOY-10164 - GIT Instance now allows configuration for commit link syntax, which will be mostly useful for customers using On-prem Git repository. Commit links are shown in Execution UI and Change Logs. See FlexDeploy - Git Plugin Guide for more details.
FLEXDEPLOY-10710 - Added Abort option on the UI for queued workflow executions. Previously only Running executions were allowed to be Aborted.
FLEXDEPLOY-9518 - Environment State Report now allows viewing attributes 'Workflow Type', 'Workflow Id', 'Workflow Name', 'Workflow Version', 'Package Created By', 'Package Created On', 'Package Updated On', 'Package Updated by', 'Force' (which indicates whether force build or deploy was requested), 'Folder Request Id', 'File Status', 'Work Item Numbers', 'Approved By', 'Snapshot Id'.
FLEXDEPLOY-9819 - Multiple package(s) can now be selected on deploy request form. Only one version of per package is allowed. This is just quicker option to deploy more packages.
FLEXDEPLOY-10235 - Added getTaskById, searchTasks, getPendingTasksByChangeTicket, approveTaskById, rejectTaskById methods in FLEXDEPLOY function. This can be utilized for integration with external tools from Webhooks or Pipeline scripts.
FLEXDEPLOY-10622 - EMAIL Function - Added new methods that allow sending emails with CC, BCC, and allows sending a single email to multiple recipients.
FLEXDEPLOY-10602 Custom issue tracking system integrations now support implementing search related methods, which would enable search from the build request form, package, and release definition.
FLEXDEPLOY-10608 - Added Outgoing Webhook event type for Package Status Updated.
FLEXDEPLOY-10619 - List data for work item fields was throwing an error when trying to open a work item if one the following formats were being used:
["Break Fix","Problem","Project","Request","Risk Remediation"]
[new ListValueDataObject("value1"),
new ListValueDataObject("label2","value2"),
new ListValueDataObject("label3","value3","Description")]
Code Editor
FLEXDEPLOY-9190 - Editor help is now provided in object constructors. Also fixed an issue causing objects instantiated with fully qualified class names to not provide suggestions.
FLEXDEPLOY-10023 - RuntimeException should now have groovy suggestions without the need of an explicit import in the script.
Notifications
FLEXDEPLOY-10435 - Resolved an issue with the mention notification email that would sometimes cause longer text to not wrap and shrink in the new Microsoft Outlook client.
Plugin Updates
Oracle FSM Plugin
FLEXDEPLOY-9725 - Export Criteria now supports adding or removing multiple attributes for a given business object. This would allow for further filtering of data exported for setup task.
Oracle EPM Plugin
FLEXDEPLOY-9401 - Added an operation to download snapshots and updated the import operation to support both package and standard deploys. This enables the plugin to provide a clone capability from an existing snapshot.
Oracle Visual Builder Plugin
FLEXDEPLOY-10188 - buildApplication and deployApplication operations now has an option to set Node.js version and optional arguments for npm install command.
Oracle BI Plugin
FLEXDEPLOY-10575 - Added a plugin input to the OBI Deploy operation to force the last-modified timestamp. If Update Last Modified is checked on a Oracle BI V1 project, any dashboards or scorecards that are deployed will have their sub-items' last-modified times updated as well. On an Oracle BI V2 project, the dashboard and scorecard sub-items can be deployed individually, and the deployed items will have their timestamps updated.
Mule Plugin
Mule plugin can now automatically look up and select the recommended runtime version for CloudHub deployments.
Tricentis Tosca Plugin
FLEXDEPLOY-8598 - Plugin operation now supports the Tosca Distributed Execution approach.
REST Plugin
FLEXDEPLOY-5896 - Added the ability to save values from REST response headers through user defined outputs.
Resolved Issues
Email Communication
FLEXDEPLOY-9686 - Resolved an issue where authorizing as a different user on the Email Settings required a server restart in order to take effect.
GIT Integration
FLEXDEPLOY-10587 - Resolved an issue with Git integration that resulted in error "OutOfMemoryError: Requested array size exceeds VM limit".
Issue Tracking Integration
FLEXDEPLOY-10618 - On-perm Jira installations does not support warn option for validateQuery parameter, which caused issues during issue tracking integration. This value is now set to false to avoid failures.
Projects
FLEXDEPLOY-10469 - Resolved an issue related to Package-based project deployments not tracking execution files when plugin operation was executed from child workflow.
FLEXDEPLOY-8713 - Resolved an issue that caused artifacts purged icon to not show on the project execution tab. There will also be a display message on the artifacts and variables tabs to indicate they were purged.
Workflow Execution
FLEXDEPLOY-10200 - Resolved an issue to convert Unicode character from log that prevents Execution Steps getting displayed.
FLEXDEPLOY-3805 - Resolved an issue where Windows endpoint plugin logs would not show correct working directory.
FLEXDEPLOY-7434 - Resolved file transfer issue for Windows endpoints. Error was "net.schmizz.sshj.sftp.SFTPException: Failure".
Releases
Resolved an issue in the View Variables popup where multiselect values would not be comma separated.
FLEXDEPLOY-10630 - Overriding a scheduled gate would not show the user which performed the override in the Pipeline Execution History popup.
FLEXDEPLOY-10738 - Changing pages within the Snapshot Compare popup would also change the page on the Snapshot List table
Purge
FLEXDEPLO-10638 - Resolved an issue in the purge that caused some objects to be unable to be purged with error: ORA-02292: integrity constraint (FD.WF_EXEC_PKG_OBJ_CUR_STATUS) violated - child record found.
FLEXDEPLOY-10734 - Resolved issues that caused Change History to not be Purged even when it was turned on in purge settings.
Topology
FLEXDEPLOY-10344 - Resolved an issue where Updated by/updated on details were not being displayed on the target properties table.
FLEXDEPLOY-10648 - Resolved an issue where newly configured Environment which was not yet used can not be deleted with error "integrity constraint (FD.ENVIRONMENT_PROPERTY_KEY) violated - child record found".
Salesforce Integration
FLEXDEPLOY-10693 - Resolved Issue with Discover Files for Salesforce Trigger.
Oracle FSM Plugin
FLEXDEPLOY-10635 - Export Criteria set with an empty AttributeName or AttributeValue will be ignored. This previously caused plugin execution failures.
FLEXDEPLOY-10641 - CSV Export/Import reports are saved in FD_REPORTS_DIR with correct extensions. Processlog will also be saved as an additional report.
FLEXDEPLOY-10729 - Task code filter text is automatically trimmed when retrieving setup task suggestions.
FLEXDEPLOY-10730 - Resolved an issue where discover would not take new Task Name if it had changed.
Oracle EBS Plugin
FLEXDEPLOY-9967 - Plugin operations now adds the output of password validation into plugin logs to better understand issues.
Recommended Changes
Add compression="on" compressionMinSize="1024"
in server.xml as shown below. This will help efficient transfer of response data from server to client’s browser.
<Connector port="8000" protocol="HTTP/1.1" connectionTimeout="20000" redirectPort="8443" maxHttpHeaderSize="32768" compression="on" compressionMinSize="1024"/>
FlexDeploy 7.0.0.0 (11-18-2023)
Version Details
This contains all features and fixes that are part of 6.5.0.12.
Application Version - 7.0.0.0.1126
Docker images:
Application Updates
FlexDeploy 7.0.0.0 is significant milestone towards Next Generation UI/UX transformation, building on top of 6.0 and 6.5. This is focused on Release & Pipeline Management as well as Incoming & Outgoing Webhooks. This is not just about consistent and productive UX changes, but many new features are also incorporated.
Next Generation UI/UX
Modern look and feel with new branding is now extended to Release & Pipelines, Incoming & Outgoing Webhook screens.
Folder can now contain folders as well as projects, this was previously not allowed. Additionally, Releases are also now organized in Folders.
FLEXDEPLOY-9754 - Projects - An option for displaying execution data in table format is now available for projects and packages. The setting can be found in the options menu next to saved queries.
FLEXDEPLOY-9755 - Projects - Shows duration next to start time in project execution list.
Release and Pipeline Management
Release Definition
Releases are now available in Global search as well as Recent activity. In addition, Releases can be marked as Favorite and tags can be assigned to it.
Releases are now stored in folders. For Customers upgrading from previous version, all Releases will be placed in FlexDeploy folder.
Release security is now inherited from parent folder, which allows for easier management of security permissions for release. Release can override or inherit security from parent folder(s), which is similar to folder and project security. There is no impact to Customers upgrading from previous versions of FlexDeploy.
Release Settings are now available. These settings as release permissions can be defined at the folder or release level. Release settings include various options like Snapshot name syntax, Auto complete package & release after deployment to production, options to automatically add content based on work items etc. See Release Settings for more details.
FLEXDEPLOY-4174 - Snapshot code committers are not allowed to approve gate. This is configured by release setting.
FLEXDEPLOY-6347 - Snapshot name can be customized now using
Snapshot Name
setting which is defined as Groovy script. Supported variables areCurrentDate
,ReleaseName
,SequenceNumber
(FLEXDEPLOY-8781)
Release content (project/packages) can be managed much more easily now. UX is similar to how package files are managed. This process also allows for searching packages of specific project easily (FLEXDEPLOY-2515).
Release content now can be managed by Release Manager role without any knowledge of necessary project/package. This is accomplished by adding Work Items to release and project/packages are added automatically to release content. This behavior is controlled by
Auto-Add Content Options
release setting, which allows adding content based on package work item mapping, new build or previous build associated with work item.Work Items are always added to release when new snapshots are created or new packages are added. This allows release manages to see list of work items being developed for specific release.
FLEXDEPLOY-4299 - removal of project/package from release content now presents confirmation dialog.
Completed releases can now be started if necessary.
Force Complete option is now available to complete release, which will abort any running executions.
Pipeline Definition
Pipelines are now available in Global search as well as Recent activity.
Pipeline definition edit and version activation is simplified in comparison to previous FlexDeploy version.
Pipeline Groovy now has access to many new functions:
LOG
,EMAIL
,SLACK
,MICROSOFTTEAMS
,REST
.FLEXDEPLOY-4467 - Pipeline property definition now allows for various types like Text Field, Text Area, Number, Checkbox, Decimal, Duration, Date, Date Time, and FlexDeploy selections for Environment, Project, Release, User, Group etc.
Use of Pipeline Roles on various gate and step including error notification can now be scripted. In addition, user can provide just FlexDeploy groups instead of Role(s). (FLEXDEPLOY-5923)
Pipeline Versions now get named with an sequence number instead of current date.
Release Execution and Dashboard
The release execution engine was revamped in 7.0, and should help reduce CPU and memory usage when there are many releases and snapshots in progress. Improvement on execution speed will be noticeable also.
Release execution now allows for skip of specific stages. This is supported via two options. Programmatic option allows users to define Precondition script on stage, script can be implemented as necessary. Another option is via built-in input for Skip Stages, when creating snapshot user can provide zero or more stages to be skipped. (FLEXDEPLOY-5918)
A new gate type, Scan Gate allows a pipeline to ensure that snapshot versions meet defined security vulnerability criteria before promotion.
A new step type, Promote to Release allows a pipeline to send content at this point into a new snapshot in another release.
Snapshot Inputs are a new way to get data into snapshots that can be different for a snapshot, but consistent across release stages.
The Notification Step is now able to send notifications using custom templates. This allows an Apache Velocity template to be filled in with variables unique to the pipeline. (FLEXDEPLOY-7542)
The Wait Step now has a role associated that can skip the wait if needed.
Approval, External Approval, Schedule Gates provide a view in to what will be deployed to help approver make decision on whether to approve or reject.
The release dashboard has a new focused mode as well as a classic mode that looks very similar to the old screen layout. Dashboard allows concise view for a snapshot and easy way to navigate to other snapshots.
Release dashboard actions are now displayed bit differently than before. Only Stage related actions are shown on Stage, and gate/step actions are on specific gate/step.
Actions like abort, approve, reject, override, skip etc. will present confirmation popup to avoid accidental clicks.
Snapshots can be compared with other snapshots as well as environments. Comparison with other snapshots allow for finding newer builds, whereas comparison with environment helps us understand what may deploy if snapshot was promoted to specific environment.
FLEXDEPLOY-3856 - Snapshot content is displayed in deployment order based on configured priority on release definition.
FLEXDEPLOY-4475 - Manual step can now be rejected as well and in addition it allows user to provide notes along with approve/reject action.
FLEXDEPLOY-5790 - Release dashboard now allows view of stage execution information for completed releases as well.
FLEXDEPLOY-7468 - Folder paths are now shown next to the Project names in the Stage Execution Info popup on the Release Dashboard.
Snapshot creation can now be Aborted, this would be useful if Snapshot was stuck in Pending state.
Standalone Release
FlexDeploy 7.0 introduces concept of Standalone release. Standalone releases control the deployment of a single project or package. They are provided to simplify release management when releasing only one item, which may be applicable for emergency releases or it may be part of normal operating mode for some projects. See Standalone Releases for more details.
Release Insights
Release Insights tab is now available similar to Project Insights. Release Insights shows commits and work items in a snapshot range, which helps user analyze development progress.
Comments and Attachments
Comments can now be added on Release as well. Comments added on Pipeline Definition are called Instructions, which are still supported and are also clearly visible on release dashboard. (FLEXDEPLOY-8976)
Comments can be added to future gate and step as well, previously only currently executing gate and step allowed comments.
Attachments are embedded in to comment text and allows for easy upload and download. This is now consistent with other parts of FlexDeploy that supports comments and attachments.
Comments allow for mentions as well. Mentions will generate email to mentioned users.
Release comments including execution (snapshot) comments are visible and searchable in comments tab of release.
Webhooks
Incoming and Outgoing webhook screens are now available in modern look and fell. Also, main screen now shows execution details with links to configuration management.
FLEXDEPLOY-4074 - Added User Created event for Outgoing Webhooks.
FLEXDEPLOY-6346 - Added Task Created, Task Approved and Task Rejected events for Outgoing Webhook.
Added Tag Assigned, Tag Unassigned, Comment Added, Comment Updated, Comment Deleted, Package Created events for Outgoing Webhook.
FLEXDEPLOY-6786 - Webhook groovy script can now use
REST
function.FLEXDEPLOY-3416 - Groovy reserved words and FlexDeploy function names are now not allowed as Webhook Property Names.
Salesforce Integration
FlexDeploy supports Salesforce SSO as an identity provider. Now you can log into FlexDeploy using Salesforce credentials with a simple configuration.
DevSecOps
FLEXDEPLOY-6455 - Prevent XXE injection in FlexDeploy and several plugins.
FLEXDEPLOY-2512 - FlexDeploy now supports mapping FlexDeploy groups to SSO groups and roles. This is similar to what is already supported for LDAP integration. This will allows Customers to seamlessly manage FlexDeploy permissions for users. Note that permissions are controlled by FlexDeploy groups and this allows assigning specific FlexDeploy groups to users based on SSO provider configurations. See SSO Realm Group Mapping for more details.
FLEXDEPLOY-7395 - FlexDeploy now supports two factor authentication (2FA) with external authenticator i.e. Google Authenticator, Authy, Microsoft Authenticator etc. Configure 2FA in your user profile, i.e this is enabled individually by user.
Single Sign-On configurations are now done using Realms UI. Customers using file based SSO configurations will be automatically migrated.
Built-in Local credential store now allows update of encryption key. Customers that may want to update this periodically can do so from Credential Store integrations page.
Replacements Support
Project Replacements offers a simple configuration to adjust and substitute strings in artifact files with environment-specific values prior to deployment. Configured replacements will be executed on all the artifacts before the deployment execution. See Replacements for more details.
Miscellaneous
Change history report is now extended to show changes done for Release, Pipelines, etc.
FLEXDEPLOY-6484 - Users can now subscribe to receive notifications on specific Flex Work Item changes. This only applies to native work items and not external work items like Jira, Azure Boards.
FLEXDEPLOY-6759 - Purge has been added for change history records. This is configurable on Purge Settings page, default value for
Change History Purge Days
is 730.Completed packages can now be activated again if necessary.
Folder tree now contains folders, projects and releases. There is option to filter where only releases or projects can be viewed. Additionally, folders can now contain folders, projects and releases, previously folders and projects were not allowed to be under same parent folder.
FLEXDEPLOY-10022 - Work item search functionality has been added to the build request form and package work items input.
FLEXDEPLOY-9928 - Settings - A new theme setting has been added
Always Float Input Labels
. When true, input labels will float to the top of the input regardless of focus or whether or not a value is provided.FLEXDEPLOY-9258 - Endpoints - Added ability to select private key from list of keys stored on the server when setting up SSH authorization for Endpoints. Additionally, added ability to download the public key paired with the selected private key. Upload public key option has been removed from Endpoint screen.
FLEXDEPLOY-8721 - API tokens for REST API invocations are supported for internal as well as external users. (FLEXDEPLOY-8916)
New REST API added for V2 - see V2 REST API
Plugin Updates
FlexDeploy 7.0 plugins will not work with previous versions of FlexDeploy. In general, first two letters of application (e.g. 7.0) and plugin version should match for compatibility.
The Apigee, Maven, and XPath plugins now require Java 8, this decision was made to resolve security vulnerabilities. Flexagon understands that many customers are forced into using older Java versions by their legacy software, and will attempt to maintain Java 7 compatibility for the near future, as well as Java 6 compatibility for the EBS plugin. We also understand that other customers need to run on newer Java versions. Continue to watch the Plugin Java requirements page for updates. We welcome support tickets for concerns with Java version support.
FLEXDEPLOY-7760 - Resolved Vulnerabilities CVE-2017-18640, CVE-2022-25857, CVE-2022-38749, CVE-2022-38751, CVE-2022-38752, CVE-2022-41854, CVE-2022-38750 for Kubernetes and Helm plugin.
FLEXDEPLOY-7759 - Resolved Vulnerability CVE-2022-4065 for TestNG plugin.
FLEXDEPLOY-7757 - Resolved Vulnerability CVE-2022-31159 for AWS and Docker Plugin.
FLEXDEPLOY-7757 - Resolved Vulnerabilities CVE-2018-1270, CVE-2022-22965, CVE-2014-0225, CVE-2016-9878, CVE-2018-11040, CVE-2013-4152, CVE-2013-6429, CVE-2013-7315, CVE-2014-0054, CVE-2018-1257, CVE-2020-5421, CVE-2022-22950, CVE-2018-11039, CVE-2013-6430, CVE-2022-22968, CVE-2022-22970, CVE-2014-3625, CVE-2014-1904 for AWS and EC2 Plugin.
FLEXDEPLOY-7756 - Resolved Vulnerabilities CVE-2022-36033, CVE-2021-37714, CVE-2022-29599, CVE-2021-26291, CVE-2014-3577, CVE-2020-13956, CVE-2015-5262, CVE-2021-29425, CVE-2017-1000487 for Apigee, Maven and MuleSoft plugin.
FLEXDEPLOY-7761 - Resolved Vulnerabilities CVE-2019-20444, CVE-2019-20445, CVE-2019-16869, CVE-2020-11612, CVE-2021-37136, CVE-2021-37137, CVE-2022-41881, CVE-2021-43797, CVE-2022-41915, CVE-2021-21295, CVE-2021-21409, CVE-2021-21290, CVE-2022-24823 for Oracle SaaS FSM Plugin.
FLEXDEPLOY-7762 - Resolved Vulnerability CVE-2021-42550 for Docker Plugin.
FLEXDEPLOY-7764 - Resolved Vulnerability CVE-2016-5725 for Git Plugin.
FLEXDEPLOY-7773 - Resolved Vulnerability CVE-2018-10237 for Docker, Siebel, Jenkins Plugin.
FLEXDEPLOY-7783 - Resolved Vulnerabilities CVE-2021-36374, CVE-2021-36373, CVE-2020-1945 for Ant Plugin.
FLEXDEPLOY-7788 - Resolved Vulnerabilities CVE-2020-10683 and CVE-2018-1000632 for Jenkins Plugin.
FLEXDEPLOY-7792 - Resolved Vulnerabilities CVE-2020-26939, CVE-2020-0187, CVE-2020-26939, CVE-2016-1000338, CVE-2016-1000342, CVE-2016-1000343, CVE-2016-1000344, CVE-2016-1000352, CVE-2016-1000341, CVE-2016-1000345, CVE-2017-13098, CVE-2020-0187, CVE-2016-1000339, CVE-2020-15522, CVE-2015-7940, CVE-2018-5382, CVE-2013-1624, CVE-2016-1000346 for PeopleSoft, OpenShift, Artifactory XRay, Oracle CPQ, PMD, Siebel, CheckMarx, OWASP Dependency Check, Acunetix, Jenkins Plugin.
FLEXDEPLOY-7793 - Resolved Vulnerabilities CVE-2014-0114, CVE-2019-10086 for various Plugin.
FLEXDEPLOY-7795 - Resolved Vulnerabilities CVE-2018-7489, CVE-2017-7525, CVE-2020-10650, CVE-2020-35490, CVE-2020-35491, CVE-2020-36518, CVE-2022-42003, CVE-2022-42004, CVE-2018-1000873, CVE-2019-14379, CVE-2019-14540, CVE-2019-14892, CVE-2019-14893, CVE-2019-16335, CVE-2019-16942, CVE-2019-16943, CVE-2019-17267, CVE-2019-17531, CVE-2019-20330, CVE-2020-8840, CVE-2020-9546, CVE-2020-9547, CVE-2020-9548, CVE-2020-10672, CVE-2020-10673, CVE-2020-10968, CVE-2020-10969, CVE-2020-11111, CVE-2020-11112, CVE-2020-11113, CVE-2020-11619, CVE-2020-11620, CVE-2020-14060, CVE-2020-14061, CVE-2020-14062, CVE-2020-14195, CVE-2020-24616, CVE-2020-24750, CVE-2020-35728, CVE-2020-36179, CVE-2020-36180, CVE-2020-36181, CVE-2020-36182, CVE-2020-36183, CVE-2020-36184, CVE-2020-36185, CVE-2020-36186, CVE-2020-36187, CVE-2020-36188, CVE-2020-36189, CVE-2021-20190, CVE-2019-12086, CVE-2019-14439, CVE-2020-25649 , CVE-2019-12384, and CVE-2019-12814 for EC2, AWS, Docker, Jenkins Plugin.
FLEXDEPLOY-7798 - Resolved Vulnerability CVE-2020-28491 in AWS Plugin.
FLEXDEPLOY-7801 - Resolved Vulnerabilities CVE-2021-27568 and CVE-2021-31684 for ServiceNow and XPath Plugin.
FLEXDEPLOY-7802 - Resolved Vulnerability CVE-2020-15250 for Docker, TestNG, Cucumber, JUnit Plugin.
FLEXDEPLOY-9152 - Resolved Vulnerability CVE-2023-33201 for various plugins.
FLEXDEPLOY-10004 - Resolved Vulnerability CVE-2023-4586 for Oracle SaaS FSM Plugin.
FLEXDEPLOY-9154 - Resolved Vulnerabilities CVE-2018-11307, CVE-2017-17485 for various plugins.
FLEXDEPLOY-10409 - Updated the Docker Bench Plugin to work with newer versions of Docker Bench.
Resolved Issues
FLEXDEPLOY-6828 - Resolved an issue where workflow input does not default to initial value when workflow is invoked from pipeline. Previously users needed to save stage execution information as workaround.
FLEXDEPLOY-7429 - Resolved an issue where attachments added when initially creating the work item would result in an error.
FLEXDEPLOY-10481 - Dashboards - Panel titles are now capped at 100 characters and overflow correctly.
FLEXDEPLOY-10482 - Dashboards - Resolved an issue where in certain cases editing Panel inputs in the Customize Dashboard Panel would modify inputs of already placed panels of the same type.
FLEXDEPLOY-10457 - Integrations - Integration description length is capped at 255 max now.
FLEXDEPLOY-10429 - Credentials - Resolved an issue where Delete credential was incorrectly disabled if you did not have UPDATE permission on Credentials.
FLEXDEPLOY-10417 - Packages - Resolved an issue where removing files from a package would not add them back as potential files to add to the package without a screen refresh.
FLEXDEPLOY-10403 - Folders - Resolved an issue where limited access users would not see any permission error when creating a folder (folder not created but error was not displayed).
FLEXDEPLOY-10391 - Groovy Code Editor - Resolved issue where editor would sometimes give suggestions for the incorrect function argument.
FLEXDEPLOY-10369 - UI Selection - Resolve an issue where while selecting Autocomplete options by clicking, sometimes additional options would be selected in multi selection input.
FLEXDEPLOY-10337 - Projects - Do not navigate away from project if there is an error deleting a Project.
FLEXDEPLOY-10320 - Saved Queries - Resolved an issue where newly created and modified queries would sometimes not apply all filters and sorts.
FLEXDEPLOY-10073 - Dashboards - Resolved a few overflow/wrapping issues on Recent Activity and Recent Work Items panels.
FLEXDEPLOY-10011 - Workflow Request - Resolved an issue seen during submission of a workflow request incorrectly stating that Workflow Input does not exist.
FLEXDEPLOY-10115 - Post Refresh REST API - Resolved an issue where wrong error message was displayed when trying to refresh an environment with no differences.
Deprecated Features
Groovy Functions
The method
FLEXDEPLOY.createIncidentForWorklowRequest
was deprecated and replaced withFLEXDEPLOY.createIncidentForWorkflowRequest
. The misspelled method will no longer show up as an option in the editor, but will continue to work.Previously deprecated method
FLEXDEPLOY.populateFiles(Long pProjectId, Long pBranchId)
is now hidden from the code editor. It will continue to work, but switching toFLEXDEPLOY.discoverFiles
is recommended.The following
FLEXDEPLOY.Stream
methods are now deprecated.
Long findStreamId(Long pProjectId, String pStreamName); Long createStream(Long pProjectId, ProjectStreamPojo pStream); Long createStream(Long pProjectId, String pStreamName); Long createStream(Long pProjectId, String pStreamName, String pVersionSyntax); void activateStream(Long pProjectId, String pStreamName); void inactivateStream(Long pProjectId, String pStreamName); void patchStream(Long pProjectId, Long pStreamId, ProjectStreamDataObject pStream); void updateStream(Long pProjectId, Long pStreamId, ProjectStreamPojo pStream);
FLEXDEPLOY.Branch
methods replace them.
Long findBranchId(Long pProjectId, String pBranchName); Long createBranch(Long pProjectId, String pBranchName, String pVersionSyntax); Long createBranch(Long pProjectId, ProjectStreamPojo pBranch); Long createBranch(Long pProjectId, String pBranchName); void activateBranch(Long pProjectId, String pBranchName); void inactivateBranch(Long pProjectId, String pBranchName); void patchBranch(Long pProjectId, Long pBranchId, ProjectStreamDataObject pBranch); void updateBranch(Long pProjectId, Long pBranchId, ProjectStreamPojo pBranch);
Plugins
Following plugins are deprecated and will be removed in next major FlexDeploy release.
REST API
Application API (/flexdeploy/rest/v1/application) was previously removed from V1. Application concept was removed in FlexDeploy 6.0.
Snapshot API -
v1/releases/{releaseId}/snapshot
- (GET by ID and Parameters) return data does not containrequestAllFiles
boolean value asPackageName
is sufficient.
The following V1 REST APIs will be removed in FlexDeploy 8.0. Do not start using them. If you are using them, migrate to v2 apis. If you have a concern with a specific api being removed, open a support ticket.
RestTestingToolServices - v1/administration/testautomation/testingtool
RestChangeManagementSystemServices - v1/administration/changemanagementsystem
RestIssueTrackingSystemServices - v1/administration/issuetrackingsystem
RestPluginServices - v1/administration/plugins
RestResourceTypeServices - v1/administration/resourcetypes
RestEndPointServices - v1/topology/endpoint
RestEnvironmentServices - v1/topology/environment
RestInstanceServices - v1/topology/instance
The following V1 REST APIs will be modified and may be removed in FlexDeploy 8.0.
RestWorkflowPropertyServices - v1/workflows/{workflowId}/properties
RestWorkflowServices - v1/workflows
RestSCMDefinitionServices - v1/scm/definition
Incompatible Changes
Release and Pipeline Management
Releases no longer have the state
NOTSTARTED
so if you were using this state in a REST call, useSUSPENDED
orSTARTED
instead. The validation of the release to be ready to run is no longer required forSTARTED
. Instead, creating snapshots contains that validation.The CSV format for Uploading and Download Pipeline Stage Execution Info has changed. Any CSV files in the old format should be discarded. A new CSV file with the correct format can be downloaded from the Stage Execution Info popup in the Release Dashboard.
Background thread names used by execution engine is changed from
gateworker
,stepworker
toreleaseeventprocessor
.FLEXDEPLOY-9981 -
ReleaseProjectDataObject
- Removed theGroupName
attribute, which contained group names (String), and replaced withProjectGroups
attribute, which contains group ids. This affects v2 REST APIs for release and someFLEXDEPLOY
methods.New release created using V1 API will be placed in FlexDeploy folder and will be initialized with Pipeline based on FlexDeploy folder release settings.
FLEXDEPLOY.getPipelineStageExecutionInfo()
return object was changed to remove theworkflowDetailsMetaData
andflexFieldsMetaData
attributes.
Plugins
Groovy Scripts
Several groovy functions available from the
FLEXDEPLOY
object throw different exceptions, which could require a change to a try catch block in your groovy functions. For instance, the release methods that once threwFlexNotFoundException
now throwFlexDeployRowNotFoundException
, consistent with other APIs made more recently.The column “Stream” in the csv file created by
FLEXDEPLOY.getSnapshotCommitDetailInputStreams
andFLEXDEPLOY.downloadSnapshotCommitDetails
is renamed to "Branch"
URL Changes
Application URLs are updated as shown below. If you are referencing these URLs then adjust appropriately. In some cases, internal redirect is setup and previous URLs will continue to work for now.
Page | Old URL | New URL | Redirect? |
---|---|---|---|
Pipelines |
|
| NO |
Releases |
|
| YES |
Release Dashboard |
|
| YES |
Incoming Webhooks |
|
| NO |
Outgoing Webhooks |
|
| NO |