Known issues

• FLEXDEPLOY-13513 - The JMeter plugin included in the 9.0.0.0 zip did not work. You can download a fixed version of the plugin here.

• FLEXDEPLOY-13544 - FlexDeploy 8.0.0.6-8.0.0.8 and 9.0.0.0 are affected by FLEXDEPLOY-13544. A regression in 8.0.0.6 causes the ServiceNow integration to not use the customized URL provided when there are multiple change tickets being checked simultaneously. A 9.0.0.0 patch is available if needed. 8.0.0.9 and 9.0.0.1 contain the fix for it.

• FLEXDEPLOY-13641 - FlexDeploy 9.0.0.0 has an issue where specifying SCM revisions while building a package is not handled correctly. The build fails. There is a 9.0.0.0 patch available.

• FLEXDEPLOY-14318 - If you upgraded from version 7.0 or earlier to 8.0.0.5-8.0.0.12 or 9.0.0.0-9.0.0.4 and use ADF, EBS, Oracle BI, Oracle API Platform, Oracle Forms, PeopleSoft, SAP, Siebel, WebLogic, WebMethods, Wildfly, or Mule Plugins, please verify the Endpoint Selection and Execution settings for workflows utilizing these plugins. Migrating from earlier versions directly to 8.0.0.13 / 9.0.0.5 is recommended.

• FLEXDEPLOY-14330 - FlexDeploy 8.0.0.6-8.0.0.12 and 9.0.0.0-9.0.0.4 are affected by FLEXDEPLOY-14330. A regression in 8.0.0.6 causes CMS tickets to sometimes send the wrong environment code into the isTicketApproved and isTicketRejected. This happens if tickets are waiting for approval in multiple environments and polling is enabled. Patches are available for 9.0 releases. 8.0.0.13 was released to fix this.

• FLEXDEPLOY-14428 - The 9.0.0.5.32 release of the OIC plugin exports all non-project connections when using the package build operation to build an integration. This is resolved in 9.0.0.5.33. The zip file was upgraded to have the newer version, but depending on when you upgraded to the 9.0.0.5 release, you may need to download it separately from the plugins download page.

Launch Webinar Recordings

FlexDeploy 9.0.0.7 (6-14-2025)

Application Updates

Security

• FLEXDEPLOY-10659 - Upgraded the bundled Dependency-Check version in the OWASP Dependency Check Plugin to 12.1.0 to address the following vulnerabilities: CVE-2024-34447, CVE-2024-29857, CVE-2024-25710, CVE-2024-47554, CVE-2023-2976, CVE-2022-45868, CVE-2023-6378, CVE-2023-6378, CVE-2024-45772, and CVE-2024-47554.

• FLEXDEPLOY-14487 – Added three new columns to the Security → Users list: Password Updated On, Password Expires On, and Password Expired. Additionally, users who are locked or have expired passwords are now highlighted in red within the table. On the user details page, subtext has been added below the password field to display the password's last update date and expiration status.

• FLEXDEPLOY-14541 – The Credential Show Usages feature has been enhanced to display usage within OAuth application properties as well. This improvement ensures more accurate visibility into where a credential is used. Additionally, if a credential is referenced by an OAuth application property, a clear error message will now be shown when attempting to delete it, explaining why the deletion is not permitted.

• FLEXDEPLOY-14579 – Upgraded Apache Commons BeanUtils in the Salesforce and Jenkins plugins, as well as the FlexDeploy application, to address vulnerability CVE-2025-48734.

Projects

• FLEXDEPLOY-3284 – FlexDeploy now provides an option to inactivate a successful build when necessary. Users must supply a reason for inactivation. This feature is useful in scenarios where a specific build version should not be deployed. Inactivated builds can be reactivated later if needed.

• FLEXDEPLOY-14291 – FlexDeploy now allows users to add or remove work items from a build execution. This feature is useful for correcting errors such as typos in SCM commit messages that prevented the correct work items from being associated with a build version. Note that changes to work item associations do not affect deployments already performed for that build version; work items associated at the time of deployment will continue to show as deployed, even if they are later removed or added.

• FLEXDEPLOY-13092 - Enhanced build execution performance for projects using Microsoft TFS as the source control system.

• FLEXDEPLOY-14592 - Enhanced build execution performance for projects using PVCS as the source control system.

Release and Pipeline Management

• FLEXDEPLOY-14065 - Enabled Groovy expression support for all Release settings.

• FLEXDEPLOY-14337 - Introduced a new Release setting: Default Build Environment Name, which is used when adding a project or package to a Release.

Topology

• FLEXDEPLOY-14587 - The Topology Target page header will now be pinned to the top of the page while scrolling.

Integrations

• FLEXDEPLOY-7128 – The default value for the Jira REST API pattern used in Jira integration has been updated to "/rest/api/3/issue/{JIRA_ISSUE}". For existing Jira integration instances, we recommend updating the API version to 3 (from the previous default of version 2) if you haven’t already done so. This update enhances the integration between FlexDeploy and Jira for various actions.

• FLEXDEPLOY-11409 – Added support for customizing Commit, File Content, and File Content Commit URLs for TFS integration instances.

• FLEXDEPLOY-14311 – Added support for customizing Commit, File Content, and File Content Commit URLs for Subversion integration instances.

• FLEXDEPLOY-14158 - Added Test connection support for ApigeeX cloud accounts.

Outgoing Webhooks

• FLEXDEPLOY-6374 – Added the pipeline stage execution info field to the Pipeline Stage Completed event payloads for outgoing webhooks.

• FLEXDEPLOY-12318 - New outgoing webhook events have been added - Blackout Window Started and Blackout Window Ended.

OAuth Applications

• FLEXDEPLOY-14482 - Microsoft OAuth applications will now have two authorize options: "Authorize" and "Authorize - Force Consent". Generally the first option can be used but when an app has been authorized the underlying permissions defined in the application change, then the app must be reauthorized with force consent, otherwise the new application permissions will not be applied.

• FLEXDEPLOY-14503 - Added support for connecting to Azure DevOps using Microsoft Entra tokens. New OAuth Application types are available in System Settings -> Integration Settings.

Groovy Functions

• FLEXDEPLOY-5553 – Deprecated pipeline Groovy methods that referenced target groups as "instances." Introduced new methods using the correct "target group" terminology to replace the deprecated ones.

Blueprints

• FLEXDEPLOY-6450 – Blueprints now support the creation of Oracle CPQ projects.

• FLEXDEPLOY-6523 – The Parsing Schema field is no longer required in the APEX Blueprint.

Plugin Updates

• Oracle EBS Plugin

  • FLEXDEPLOY-14566 – Enhanced EBS Forms deployment to better support precompiled .fmx files. FlexDeploy now copies .fmx files directly during deployment, bypassing the compilation process, which is only required for .fmb files.

  • FLEXDEPLOY-6435 – FlexDeploy now provides clear and descriptive error messages when required custom properties, such as the database user and password, are missing or not assigned for the XDF object type.

• OWASP Dependency Check Plugin

  • Added optional input for the NVD API key, used in Dependency-Check version 9 and above, to enable unthrottled access to NVD database updates. Currently 12.1.0 is shipped in the OWASP Dependency Check Plugin.

• Oracle SaaS FSM Plugin

  • FLEXDEPLOY-14374 - A new documentation page Oracle FSM Privileges that describes more granular privileges/roles needed by the FSM Plugin.

• Oracle EPM Plugin

  • FLEXDEPLOY-14518 – Enhanced support for forward slashes (/) in template and dimension names.

• Maven Plugin

  • FLEXDEPLOY-14527 - Added an input to set an alternate Java Home. If it is specified, it is used. Otherwise the endpoint's Java Home is used.

• XPATH Plugin

  • FLEXDEPLOY-14303 – Added a new input option to enforce non-blank output. When enabled, the plugin operation will fail if the generated output is blank.

• Mule Plugin

  • FLEXDEPLOY-14581 - Added the Surefire Report processing jar to allow the Mule plugin to handle running tests.

Resolved Issues

• General

  • FLEXDEPLOY-10709 - Resolved an issue where FlexDeploy with embedded PostgreSQL failed to start Tomcat when JAVA_HOME derived from the Windows Registry contained spaces.

• Migration / Upgrade

  • FLEXDEPLOY-14571 – Resolved an issue where workflow migration from version 5.7 to 8.0 or later could fail with the error: flexagon.fd.model.jaxb.plugindef.Operation.getEndPointSpecification() due to a null "operation" object.

• Security

  • FLEXDEPLOY-14549 – Resolved an issue where local users who had previously logged in with the "Remember Me" option enabled could potentially bypass password expiration and account lockout policies.

  • FLEXDEPLOY-14521 - Resolved an issue causing password expiration emails to be sent to inactive user accounts.

• Projects

  • FLEXDEPLOY-9382 – Resolved an issue that prevented deletion of folders containing prior executions.

  • FLEXDEPLOY-14615 – Resolved a "java.lang.IllegalArgumentException: fromIndex(4) > toIndex(3)" error occurring with PVCS integration during build request submission. Additionally, to improve performance with large repositories, if no previous revision is found, the latest commit will now be searched only within the last 90 days.

• Salesforce

  • FLEXDEPLOY-14372 – Resolved an "Internal Error - java.lang.NullPointerException" that occurred during the commit files operation for Salesforce when deleted files were present in the compare results.

  • FLEXDEPLOY-14556 – Resolved "java.lang.IllegalStateException: Duplicate key... (attempted merging values)" error encountered during discover files from Salesforce when using the SFDX format.

• Change Management

  • FLEXDEPLOY-14458 – Improved the status query process for change tickets from the change management system. Tickets associated with pending tasks are now queried in batches. If a batch query fails, each ticket is queried individually. Additionally, when a ServiceNow integration is configured with a limit of 1, this restriction is bypassed during batch processing.

• Integrations

  • FLEXDEPLOY-14591 – Resolved an issue where the TFS integration test connection feature which incorrectly treated domain.visualstudio.com URLs as invalid due to an improper expectation of a collection name in the URL.

• OAuth Applications

  • FLEXDEPLOY-14533 - Resolved an issue that would sometimes cause OAuth apps in the user profile screen to display the wrong connected status.

• Incoming Webhooks

  • FLEXDEPLOY-14543 - Resolved an issue preventing more than 50 webhook providers being shown in the provider dropdown on the Edit Function screen.

  • FLEXDEPLOY-14560 – Resolved a display-only issue where incoming webhook header and query parameter values containing commas were not shown correctly.

• Blackout Windows

  • FLEXDEPLOY-14565 - Resolved an issue in which blackout window start and end times would not be resolved properly if specifying a timezone. This fix also resolves similar issues on other date time inputs where timezone is allowed, such as request start time on the Workflow Request form.

• Blueprints

  • FLEXDEPLOY-11480 - Resolved an issue where blueprint failed to create SCM Integration Instance if SCM URL contained encoded space (%20).

• Oracle EPM Plugin

  • FLEXDEPLOY-14625 - Resolved an issue with EDMCS template deployments where only the first dimension within an application would be deployed when a package contained multiple dimensions from the same application.

• Oracle SOA Plugin

  • FLEXDEPLOY-14568 – Resolved a composite deployment error (java.lang.NumberFormatException) occurring when using server revision for a composite that has never been deployed. The plugin now correctly deploys the composite with a version of 1.0 in this scenario.

• Oracle Apex Plugin

  • FLEXDEPLOY-14436 - Resolved an issue with exporting APEX applications from version 5.1.4 and earlier where lines in the output file were missing.

• Azure Plugin

  • FLEXDEPLOY-14609 - Resolved an issue where Windows endpoints were not able to execute the build pipeline operation. Using cli version 2.53.1 is recommended.

FlexDeploy 9.0.0.6 (5-11-2025)

Application Updates

General

• FLEXDEPLOY-8030 - FlexDeploy will now render an error banner for critical errors that occur in the application. At this time, critical errors include migration errors during upgrades of the FlexDeploy application and errors with email configuration and processing.

• FLEXDEPLOY-13432 – Oracle Database: Added support for OJDBC17 drivers. For versions prior to 9.0.0.6, it is recommended to continue using OJDBC8 drivers. OJDBC8 and OJDBC17 are both JDBC (Java Database Connectivity) drivers provided by Oracle. The difference between them primarily lies in the version of Java they target and support.

Security

• FLEXDEPLOY-14437 – Updated FlexDeploy Docker images to address the CVE-2025-32433 vulnerability.

• FLEXDEPLOY-14473 - Upgraded Tomcat to 9.0.104 to resolve vulnerabilities CVE-2025-31650 and CVE-2025-31651.

HTTPS Agent

• FLEXDEPLOY-14473 - Upgraded Tomcat to 9.0.104 to resolve vulnerabilities CVE-2025-31650 and CVE-2025-31651.

• FLEXDEPLOY-8606 – Aligned with localhost endpoint behavior: when a new plugin is installed, older versions are deleted, retaining only the two most recent versions.

• FLEXDEPLOY-8607 – Reduced the minimum memory setting for the HTTPS agent process to optimize memory usage on the endpoint.

Projects

• FLEXDEPLOY-14161 – Added support for removing Custom File Type Attributes, even when they are used by project files. All usages of the attribute will be removed as part of the process, with a confirmation prompt shown before the action is performed.

• FLEXDEPLOY-14417 - The responsiveness of the Project Execution List screen has been improved. The changes allow will allow more data to be seen on smaller screens as well as prevent content overlap.

• FLEXDEPLOY-14477 - Enhanced build execution performance for projects using Surround SCM as the source control system.

Release and Pipelines Management

• FLEXDEPLOY-14341 – The 'Test All' and 'Test' pipeline steps now also include Utility projects defined in the Release Definition.

Salesforce

• FLEXDEPLOY-12750 - Packages now support adding dependent profiles and permission sets for a selected set of files in the package rather than only the entire package.

• FLEXDEPLOY-13624 - Salesforce compare result now has a Show Selected Only filter option which can be used to review all selected items before committing/add them to a package.

Compliance and Audit

• FLEXDEPLOY-14310 – Updates to project packages are now recorded in the Change History Report.

• FLEXDEPLOY-14340 – Updates to Ticket Fields on the CMS Provider are now recorded in the Change History Report.

Integrations

• FLEXDEPLOY-1432 - Added Test Connection support for Microsoft TFVC SCM integration in FlexDeploy.

• FLEXDEPLOY-14113 - FlexDeploy now caches access tokens for Thycotic and Delinea Secret Server API calls, improving efficiency and reducing server load.

• FLEXDEPLOY-14438 - Credential values are now cached. The cache lifetime is configurable in System Settings -> General Settings. There is also an option to force clear the credential cache in System Settings as well.

Groovy Functions

• FLEXDEPLOY-4417 – Introduced a new function createOrUpdatePackage to update an existing package or create one if it doesn't exist. Also added getOrCreateBranchId to retrieve the branch Id or create it if it doesn't exist.

• FLEXDEPLOY-13805 – Added support for scheduled start time when using the executeUtility method in the FLEXDEPLOY Functions class to trigger utility executions.

• FLEXDEPLOY-14306 – Introduced a new function getBuildWorkflowExecutionFiles to retrieve file details associated with package build executions. Also introduced getDeployWorkflowExecutionFiles to retrieve file details for package deploy executions.

Purge

• FLEXDEPLOY-14286 - Simplified the purge process for package-based projects, resulting in improved speed and efficiency.

Plugin Updates

• Oracle SaaS FSM Plugin

  • FLEXDEPLOY-13397 - Export and import of lookup files will now correctly bring across DFF values if found.

  • FLEXDEPLOY-13771 - The csvImport operation will now import Value Set values through Oracles REST API when possible. This resolves an issue where the Summary, Allow Posting, and Allow Budgeting fields of Value Set values would not be migrated. A new file attribute has also been added "Disable Missing Values" on Value Set files. When checked, we will disable values that are in the target environment but not found in the Value Set being imported.

  • FLEXDEPLOY-14085 - The FSM Plugin will now retry rest calls while checking csv export and import statuses if the call fails due to connection errors.

  • FLEXDEPLOY-14227 – Added an input option to the csvExport operation that allows the export process to continue with remaining package files even if a failure occurs.

• Oracle EBS Plugin

  • FLEXDEPLOY-6435 – FlexDeploy now displays clear and descriptive error messages when required custom properties for DB user and password are missing or unassigned in SQL and DATAFIX object types.

• Oracle EPM Plugin

  • FLEXDEPLOY-9402 - A validation has been added for snapshot related project property values to align with Oracle's supported characters for snapshot names. The following characters will not be allowed - : \ / * ? " < > |

  • FLEXDEPLOY-14459 - Enterprise Data Management template deployments now support application-level templates. Applications will be discovered in the file catalog and will import both the application and all of its dimensions.

• Oracle Integration Cloud Plugin

  • FLEXDEPLOY-14335 – Added a new exportLibraries operation that accepts a CSV list of Library Identifiers as input for exporting library details.

  • FLEXDEPLOY-14388 – Added a new exportProjects operation that accepts a CSV list of Project Identifiers as input to export the corresponding projects.

  • FLEXDEPLOY-14356 – Added an Export Folder input to the exportConnection, exportLibrary, and exportLookup operations. If an absolute path is provided, it will be used; otherwise, a subfolder within the artifacts directory will be used.

  • FLEXDEPLOY-14454 - exportIntegrations operation now allows use of absolute path for Export Folder input.

• Various Plugins

  • FLEXDEPLOY-14364 - Updated various script-type FlexDeploy plugins (Shell, Windows, PowerShell, Git, Azure, AWS, Docker, EBS, Gradle, Grunt, Helm, Kubernetes, Node, Maven, MSBuild, PMD, Postman, SoapUI, SqlPlus, Terraform, UTPLSQL) to display error messages on the workflow execution summary page upon failure.

Resolved Issues

• General

  • FLEXDEPLOY-14344 – Resolved an issue that triggered the error "ORA-01460: unimplemented or unreasonable conversion requested" when querying long string data in an Oracle database.

• HTTPS Agent

  • FLEXDEPLOY-14341 – Resolved a regression introduced in 9.0.0.2 where plugins were installed on every execution for endpoints using the HTTPS agent. Plugins will now only be installed if a new version is available and the previously installed version has changed on the endpoint.

• Projects

  • FLEXDEPLOY-14144 - Resolved an issue where encrypted workflow variables used in plugin inputs may appear in clear text when viewing the Input in the Plugin Execution Popup.

  • FLEXDEPLOY-14146 - Resolved an issue causing updates to encrypted Workflow Variables in the Run Groovy step to appear in plain text when viewing the Workflow Execution Details.

  • FLEXDEPLOY-14200 - Resolved an issue where error messages from project file discovery weren't visible when a popup was opened.

  • FLEXDEPLOY-14474 - Reverted the change introduced in 9.0.0.5 that required a Force Build for the initial build of a branch and project/package combination. As before, these initial builds will not capture any change logs.

• Release and Pipelines Management

  • FLEXDEPLOY-14479 - Resolved an issue when using a Pipeline Property of type Date that would cause Release execution to fail with the error: No enum constant flexagon.fd.model.enums.release.VariableTypeEnum.DATE.

  • FLEXDEPLOY-14389 – Resolved an issue where selecting an older version of a Project/Package in a release snapshot caused it to be replaced by the latest version during the next scheduled snapshot. The system will now retain the user-selected version and only update to versions newer than the selected one.

  • FLEXDEPLOY-14426 - Resolved an issue that prevented users from switching between tabs on the Approval Gate in the Release Dashboard when using the "Classic" view. This was a regression introduced in version 9.0.0.5 as part of FLEXDEPLOY-14261.

  • FLEXDEPLOY-14450 - Resolved an issue that would sometimes cause an newly added pipeline step to remain in the canvas after cancelling it the configuration popup.

• Topology

  • FLEXDEPLOY-14491 - Resolved an issue that would cause duplicate Salesforce accounts to be selected in Topology Properties if editing and saving the currently selected account.

• Salesforce

  • FLEXDEPLOY-14293 - Updated the Salesforce integration to resolve errors, including “unexpected element (uri: 'http://soap.sforce.com/2006/04/metadata', local: 'externalCredentialPrincipalAccesses')”, which occurred when users clicked Discover Profiles or Permission Sets.

• Integrations

  • FLEXDEPLOY-14281 – Resolved an issue with the "Test Connection" for database credentials with SQL Server, which previously failed with the error: "The data type of connection property socketTimeout is not valid. All the properties for this connection must be of String type."

  • FLEXDEPLOY-14367 - Improved error messaging when deleting CMS provider ticket fields mapped to deploy approvals. Users now see a clear explanation instead of just showing Internal Error - Constraint violation.

• Groovy Functions

  • FLEXDEPLOY-14365 – Resolved an issue where the searchByTag method did not return accurate results for pipeline and webhook scripts. The method now returns the correct results.

  • FLEXDEPLOY-14425 – Resolved a ClassCastException that occurred when processing webhook payloads from GitHub, triggered by an empty or non-JSON head_commit field.

• Groovy Libraries

  • FLEXDEPLOY-14478 - Saving a Groovy Library that uses certain disallowed functions or classes will now trigger an error.

• Oracle EBS Plugin

  • FLEXDEPLOY-14410 – The supported AOL object type list (FDC.FD_AOL_TYPES) has been removed from FlexDeploy constants. This is a potentially breaking change for custom default value scripts that reference this constant. Scripts should now define the required AOL types directly within the script instead of relying on the FlexDeploy constant.

• Salesforce Plugin

  • FLEXDEPLOY-14292 - Resolved an issue where SFDX builds were failing when selecting the Delete option on a package file.

• Oracle Integration Cloud Plugin

  • FLEXDEPLOY-14452 – Resolved an issue where OIC Connections were deployed using the Identifier (code) as the Connection name instead of the Display Name. Builds done with version 9.0.0.6 or later will deploy with the correct name.

• Oracle EPM Plugin

  • FLEXDEPLOY-14430 - Resolved an issue where exporting a template file was throwing a 400 response error.

  • FLEXDEPLOY-14460 - Resolved an issue with the download snapshot operation where a null pointer exception was thrown when the snapshot to download property was not provided.

  • FLEXDEPLOY-14463 - Resolved an issue where builds were continually running and artifacts folder was taking up large amounts of space. 9.0.0.5.x plugin versions are affected.

  • FLEXDEPLOY-14471 - Resolved an issue where snapshot related project property values couldn't be cleared even though they were optional. Now, empty values are supported for these properties when exporting only template files in a project.

• Oracle Database Plugin

  • FLEXDEPLOY-12528 - Resolved an issue where grants were being applied before the corresponding views were created, resulting in the error: “ORA-00942: table or view does not exist.”

• Docker Bench Plugin

  • FLEXDEPLOY-10410 - Docker Bench plugin now generates the scan results.

• REST Plugin

  • FLEXDEPLOY-14177 – Response media type application/zip is now correctly handled, and such responses will be saved as ZIP files instead of text files.

Incompatible Changes

• FLEXDEPLOY-14438 - Credential values are now cached now for 60 minutes. If this causes any issues, you can adjust cache timeout in System Settings -> General Settings. There is also an option to force clear the credential cache in System Settings as well.

• FLEXDEPLOY-14474 - Reverted the change introduced in 9.0.0.5 that required a Force Build for the initial build of a branch and project/package combination. As before, these initial builds will not capture any change logs.

FlexDeploy 9.0.0.5 (4-12-2025)

Application Updates

General

• FLEXDEPLOY-13531 - Blueprints now support the creation of Power BI projects, streamlining setup and configuration for Power BI deployments.

• FLEXDEPLOY-13437 - Improved the performance of the Tasks Report, with significant gains for customers using Oracle Database. The underlying query has been optimized for better performance across all supported platforms.

Security

• FLEXDEPLOY-12551 – Introduced a new global permission: Blackout Window. This permission allows administrators to control who can create, update, or delete blackout windows. Previously, only users with the FlexDeploy Administrator role could manage blackout windows.

• FLEXDEPLOY-12631 – Added a new system setting: Disable 'Just In Time' User Creation. When enabled, users will no longer be automatically created in FlexDeploy upon logging in via an external LDAP or SSO realm. Instead, users must be manually created in advance.

• FLEXDEPLOY-14207 - Upgraded SSHJ to version 0.39 and BouncyCastle to version 1.80 for improved security and compatibility.

Compliance & Audit

• FLEXDEPLOY-14217 - Changes to Credential Store Providers as well as the addition, update, and deletion of properties and credential inputs, are now recorded in the Change History report.

• FLEXDEPLOY-14248 - Changes to custom Property key definition are now captured in the change history report.

Projects

• FLEXDEPLOY-14191 - File paths in File Catalog are now left-truncated so names are always visible.

Release and Pipeline Management

• FLEXDEPLOY-13939 - Groovy libraries and pipeline script variables can now be accessed in the List Data, Default Value, and Validation scripts for Input Fields in the Pipeline Manual Step definition.

• FLEXDEPLOY-14201 - Update Work Items and Update Change Tickets step now display log messages generated during script execution, improving visibility and troubleshooting.

• FLEXDEPLOY-14283 - Work items from intermediate build versions—those between the previous snapshot version and the new one—are now automatically included in the release, ensuring all relevant work items are captured and tracked in the release process.

• FLEXDEPLOY-14329 – The code editor will no longer save drafts for Pipeline Custom Step and Custom Gate scripts, resolving confusion when viewing previous pipeline versions.

• FLEXDEPLOY-14360 - The snapshot comparison popup has been updated to always display "Out of Date" snapshots in the snapshot select dropdown.

Git Integration

• When there is no previous build, FlexDeploy will attempt to identify commits specific to the branch being built. However, this process may not always capture all relevant commits. Previously only first matching commit on the branch was used.

• In scenarios where changes are merged into the main branch via a pull request (PR), the first build on the main branch may require a Force Build, as initial change logs might not be detected. Subsequent builds will behave as expected and correctly capture the change logs.

• If the repository contains no change logs, a Force Build will also not display any changes, and the commit will not be visible on the project executions page.

• These improvements strengthen visibility and traceability across builds, enhancing value stream metrics and tracking processes that rely on Git commits and work item detection through commit messages.

Salesforce

• FLEXDEPLOY-12634 - A new option has been added to include Profiles and Permission Sets during compare.

• FLEXDEPLOY-13995 - Upgraded to Salesforce API Version 63.0 (Spring ’25). The following new metadata types are now supported:

  • DataObjectSearchIndexConf, ExperiencePropertyTypeBundle, CustomFieldDisplay, PricingActionParameters, and PricingRecipe.

• FLEXDEPLOY-14192 - The Salesforce Org Management screen now supports exporting compare results to a CSV or PDF file.

Replacements

• FLEXDEPLOY-14180 - Added support for regex-based replacement with a new option. When isReplaceRegex is set to true in YAML configuration, the replacement string can reference capture groups using $1, where $1 corresponds to the first match group defined using (). If no capture groups are defined, using $1 will result in an error. If isReplaceRegex is not specified, the replacement value is automatically quoted, and $1 will be treated as a literal string rather than referencing a match group.

Purge

• FLEXDEPLOY-14107 - Added support for purging blackout window history records. This is configurable via the Purge Settings page using the Retention Days for Executions property.

System Settings

• FLEXDEPLOY-14076 - Added a setting to automatically delete working directory folders on both the Server and Endpoint that were created more than a specified number of hours ago. By default, this is set to 24 hours, aligning with the previous behavior.

• FLEXDEPLOY-14072 - OAuth applications can now be edited, created, and authorized directly from the application select dropdown on Email Settings.

User Profile

FLEXDEPLOY-14261 – Added two new navigation settings to the Profile - Settings page for improved user experience and customization:

1. Release Definition View Tab – Allows users to choose a default tab ("Content" or "Work Items") when opening the Release Definition page. Previously, the last selected tab was remembered automatically. Now, this behavior is controlled by the new setting. The default is "Content", unless the "Remember Page State" setting is enabled, in which case the last viewed tab will be used.

2. Release Dashboard Deploy Preview Tab – Lets users set a default tab ("Projects," "Work Items," or "Commits") for the deploy preview shown in Approval, Scheduled, or External Approval gates on the Release Dashboard. The default is "Projects", but this too is overridden if "Remember Page State" is enabled.

Code Editor

• FLEXDEPLOY-14309 - Parenthesis are now added automatically when accepting a function or method from the suggestion menu.

HTTPS Agent

• FLEXDEPLOY-14272, FLEXDEPLOY-14326 - Upgraded Tomcat to 9.0.102 to resolve vulnerability CVE-2025-24813.

Plugin Updates

• Oracle EBS Plugin

  • FLEXDEPLOY-14216 - Updated the Deactivate, Activate, and Abort Workflow Services operations to recycle workflow services at the container level.

• Oracle EPM Plugin

  • FLEXDEPLOY-13727 - Oracle EPM projects now support discovery and deployment of dimension-level template files for Enterprise Data Management (EDM) instances.

• Oracle Analytics Cloud Plugin

  • FLEXDEPLOY-12929 - Added support for RPD (Repository) migration. RPDs can now be migrated using new dedicated operations as well as the existing package build and deploy processes. Enhancements include:

    • Support for updating the RPD using XUDML and/or JSON.

    • Ability to update the RPD password during migration.

    • A new operation to download the connection pool JSON, allowing users to modify and store it for use in migrations.

    • These features require the OAC Client Tools to be installed on the migration endpoint.

• Oracle Integration Cloud Plugin

  • FLEXDEPLOY-14204 – The agentDefinition parameter is now applied during the Update Connections step, after the deployment of the Integration or Project, instead of before deployment. This update resolves 412 errors when deploying modified files to Oracle.

  • FLEXDEPLOY-14236 - Added support for OIC Projects with following features:

    • Build and Deploy Projects

    • Update connection properties

    • Download connection plans

    • Activate / Deactivate integrations

    • Start, Stop, Pause, and Resume schedules

    • Sync to SCM

  • FLEXDEPLOY-14355 OIC - The activateIntegration operation now throws an exception if the integration was not able to be activated.

• Oracle Cloud Infrastructure Plugin

  • FLEXDEPLOY-11440 - Enhanced the OCI plugin to use a Private Key Credential instead of a filesystem-based private key file, improving overall security.

• SoapUI Plugin

  • FEXDEPLOY-14181 - SoapUI plugin now fails if test XML file is not provided or does not exist.

• Postman Plugin

  • FLEXDEPLOY-14266 - Postman plugin now fails if postman collection is not provided or does not exist.

• REST Plugin

  • FLEXDEPLOY-14176 - Refined the Display Name and Description for FDR_REQUEST_MEDIA_TYPE and FDR_REQUEST_BODY_MEDIA_TYPE in REST plugin operations to better reflect their purpose.

• Terraform Plugin

  • FLEXDEPLOY-14214 - Introduced a new plugin input to enable or disable property replacement, with the default set to true. Property replacement is automatically disabled when the chdir option is specified.

Resolved Issues

• Migrations

  • FLEXDEPLOY-14318 – Resolved an issue with workflow source migration where plugin-defined endpoint selection and execution details were not being migrated. If you upgraded from version 7.0 or earlier to 8.0.0.12 or 9.0.0.4 or a previous version and using ADF, EBS, Oracle BI, Oracle API Platform, Oracle Forms, PeopleSoft, SAP, Siebel, WebLogic, WebMethods, Wildfly, or Mule Plugins, please verify the Endpoint Selection and Execution settings for workflows utilizing these plugins.

• General

  • FLEXDEPLOY-14223 - Resolved a performance regression present in 9.0.0.0-9.0.0.3 of the pipeline definition and workflow screens.

  • FLEXDEPLOY-14259 - Resolved an issue where property list data scripts would not validate correctly if the script resulted in a list of Strings and nested Arrays.

  • FLEXDEPLOY-14332 - Resolved a regression resulting from FLEXDEPLOY-13011 causing filter date displays to appear as the millisecond value as opposed to a properly formatted date.

• Projects

  • FLEXDEPLOY-10811 - Resolved an issue where plugin execution on Windows SSH Endpoint prints "File Not Found" at the end in plugin logs even after successful execution.

  • FLEXDEPLOY-13583 - Consistent Handling of Hidden Workflow Request Input Values: Workflow request input values are now consistently marked as null for both UI and API requests. While UI forms do not send data for hidden inputs, this update ensures that hidden values are properly marked as null in all scenarios, providing consistent behavior across both UI and API requests.

  • FLEXDEPLOY-14298 - Resolved an issue where the Project Executions page did not consistently display the latest commit.

• Workflow

  • FLEXDEPLOY-14233 - Resolved an issue where the "Invoke Workflow" step input, defined as an expression, was inadvertently encrypted during the save workflow process.

• Release and Pipeline Management

  • FLEXDEPLOY-14246 - Resolved a rare issue where copying stages with several steps would not generate unique step ids or numbers and result in errors when saving.

  • FLEXDEPLOY-14320 - Resolved a styling regression introduced in 9.0.0.2 causing pending stage icons to appear almost invisible on the release dashboard focused view.

  • FLEXDEPLOY-14329 - The code editor will no longer save drafts for the custom script input in Pipeline Custom Step and Custom Gate definitions. This caused confusion when viewing prevision pipeline versions.

  • FLEXDEPLOY-14330 - Resolved a regression in version 8.0.0.6 that could cause External Gate Approvals to not continue, even when the external approval was in an approved status. This issue occurred specifically when using FD_ENVIRONMENT_CODE in the Approval Script.

  • FLEXDEPLOY-14350 - Resolved an issue Approval Gate and Schedule Gate details causing the Work Items tab to be in an indefinite loading state. This issue occurs if more than 50 work items are being deployed in the snapshot.

• Rollback

  • FLEXDEPLOY-14299 - Resolved an issue where package files were not auto-sequenced when creating a package. This caused package-based rollback requests to error on submit, and also affected the REST API.

  • FLEXDEPLOY-14334 - Resolved an issue for Rollback Request Form where the rollback files tab was showing each file twice when the deploy workflow invoked a child workflow.

• Salesforce

  • FLEXDEPLOY-13062 - Resolved an issue where the UI would allow a user to commit files and add them to a package without read permission, and then an error was shown. These actions require project configure and execute permissions.

  • FLEXDEPLOY-14178 - Resolved an issue where dynamic packages were showing as an option to add committed objects to package.

  • FLEXDEPLOY-14293 - Updated the Salesforce integration to address errors such as unexpected element (uri:"http://soap.sforce.com/2006/04/metadata", local:"externalCredentialPrincipalAccesses") when users clicked Discover Profiles or Permission Sets.

  • FLEXDEPLOY-14296 - Resolved an issue where files were being skipped during deployment after the first time they were deployed, even if there were new changes to deploy. This only applied when using SFDX source format within a Salesforce project.

• Work Items

  • FLEXDEPLOY-13895 - Resolved an issue while loading the Work Items list screen that would result in an error being displayed: "API Transaction already in progress".

• Change Management

  • FLEXDEPLOY-14280 - Resolved a regression issue introduced in version 9.0.0.4, where updates to custom ticket fields in the CMS Provider triggered the error: "Change Management System is read-only and cannot be updated or deleted.". Additionally, addressed an issue where the Save button remained disabled after adding a ticket field in the out-of-the-box Change Management System provider..

• Oracle Integration Cloud Plugin

  • FLEXDEPLOY-14203 - Resolved an issue where agent definitions were still being updated even when Input Update Connection Mode was set to NONE. Agent updates now correctly respect this setting and will no longer occur when set to NONE.

  • Plugin input Start Schedules now correctly controls whether the file attribute is used during OIC Integration deployment. If unchecked, the file attribute Start Schedules is ignored as expected.

• PeopleSoft Plugin

  • FLEXDEPLOY-9505 – Resolved an issue where the PeopleSoft plugin deploy operation did not fail despite errors in the log file. The plugin now validates logs and triggers a clear exception when errors are detected, improving both reliability and error visibility.

Incompatible Changes

• GIT Integration

  • A Force Build may be required when initiating the first build for the Git branch and project/package combination, particularly when changes are introduced via pull request merges. In such cases, initial change logs will not be detected.

  • Additionally, if no changes exist in the repository branch, a Force Build will not display any changes, and the associated commit will not appear on the project executions page.

• Other SCM Integrations

  • A Force Build will be required when initiating the first build for the branch and project/package combination.

  • Additionally, if no changes exist in the repository branch, a Force Build will not display any changes, and the associated commit will not appear on the project executions page.

FlexDeploy 9.0.0.4 (3-15-2025)

Application Updates

General

• FLEXDEPLOY-14213 - Upgraded Tomcat to 9.0.102.

Security

• FLEXDEPLOY-14139 - Updated version of pac4j library used for single sign-on.

• FLEXDEPLO.Y-14206 - Update Netty dependencies in the Azure PowerBI plugin to resolve vulnerability CVE-2025-24970.

Compliance & Audit

• Changes made in System Settings > Integration Settings (OAuth Applications) are now captured in the change history report. Additionally, authorize and revoke actions for OAuth Applications are now tracked in the change history report.

• Description change for Workflow and FlexField is now captured in the change history report.

• Changes made in Integration > Providers along with addition and removal of properties is now captured in the change history report.

• Creation and deletion of tags is now captured in the change history report.

• Tag assign and unassign for Project, Package, Work Item, Release, Workflow, Target Group, Environment, and Endpoint is now captured in the change history report.

Release and Pipeline Management

• FLEXDEPLOY-13446 - The "Change History" section has been removed from the Insights tab for Standalone Releases, as there is only one package in a standalone release there will be no changes to the content.

• FLEXDEPLOY-13876 - Added the option to change the status of a change ticket during the "Update Change Tickets" pipeline step. The input can also be a Groovy expression, allowing for the assignment of different statuses based on the change ticket.

• FLEXDEPLOY-14074 - The Projects tab on the Approval, External Approval, and Schedule Gate will now only display snapshot content that is scheduled for deployment or has already been deployed in the stage, aligning with the Work Items and Commits tabs. Utility projects will be excluded. A new column has also been added to indicate whether the content was force-deployed. Once the stage completes, Gates will display the content that was actually deployed during the stage execution. Additionally, performance improvements have been implemented to handle a large number of projects more efficiently.

• Compare snapshot feature now also shows Target Group in the compare result.

• FLEXDEPLOY-14102 – Improved performance for release execution when the snapshot includes a large number of projects.

Integrations

• FLEXDEPLOY-13202 - Integration accounts can now be edited and created directly on the Target Properties page or Plugin Inputs popup.

• FLEXDEPLOY-4323 - Added Test connection support for Oracle CPQ Cloud accounts.

• FLEXDEPLOY-11989 - Added Test connection support for Azure DevOps cloud accounts.

• A new method has been introduced in the abstract ChangeManagementSystem class to update the status of a change ticket. This method will be automatically supported by ServiceNow and Jira ITSM instances. Custom CMS providers must implement this method if they wish to use it with the "Update Change Tickets" step to automatically update ticket statuses.

• FLEXDEPLOY-13893 - Groovy Libraries are now accessible in custom Groovy implementations for Change Management System, Issue Tracking System, and Credential Store providers. Code suggestions are also provided as appropriate in the Groovy code editor for these providers.

• FLEXDEPLOY-14128 - The display name of Account Providers has been changed to a longer format in the Create / Edit Account popup.

Groovy Functions

• FLEXDEPLOY-14152 - Introduced new function ensureWorkItem (FLEXDEPLOY variable) to seamlessly link external work items, such as Jira tickets. This method creates work items for a specified project by verifying their existence within the project's configured Issue Tracking System instances. It validates the provided work item numbers and populates metadata for successfully matched work items into the FlexDeploy database, enabling links to build, release, and other processes.

OAuth Applications

• FLEXDEPLOY-14222 - OAuth applications for Microsoft will now display the Microsoft email address as the "Authorized By" user in the authorized tooltip and application popup.

Reports

• FLEXDEPLOY-14221 - Improved the performance of the Environment State Report when using PostgreSQL database.

FlexDeploy Browser Extension

• The extension manifest version has been upgraded from v2 to v3.

• Due to stricter security requirements in manifest v3, Javascript default values for action properties will no longer work.

• Added support for a security token sent as a request header, which can be verified from your FlexDeploy incoming webhook provider.

• The extension now automatically loads an action for each technology when the extension is opened for the first time (OIC, OBIEE, OTBI, OAC, APEX, ORDS, and Salesforce).

• FLEXDEPLOY-10567 - Oracle Integration Cloud Action - Resolved an issue where sometimes, the list of integrations weren't showing up in the dropdown until the page was refreshed.

  • If the extension isn’t correctly identifying items on the page, a new action may need to be created.

Plugin Updates

• Oracle Integration Cloud Plugin

  • Prior to FlexDeploy 9.0.0.4, OAuthJWTAssertion required using a Java KeyStore for the Private Key and Certificate. When upgrading from FlexDeploy 9.0.0.3 or earlier, the OIC cloud account will automatically migrate to use Private Key and Certificate credentials from the configured KeyStore, eliminating the need to maintain the KeyStore on the file system. As a result, the KeyStore Path, KeyStore Password, Private Key Alias, Private Key Password, and Certificate Algorithm properties are now replaced with the Private Key and Certificate properties.

• Oracle SaaS FSM Plugin

  • Prior to FlexDeploy 9.0.0.4, OAuthJWTAssertion required using a Java KeyStore for the Private Key and Certificate. When upgrading from FlexDeploy 9.0.0.3 or earlier, the Oracle SaaS cloud account will automatically migrate to use Private Key and Certificate credentials from the configured KeyStore, eliminating the need to maintain the KeyStore on the file system. As a result, the KeyStore Path, KeyStore Password, Private Key Alias, Private Key Password, and Certificate Algorithm properties are now replaced with the Private Key and Certificate properties. Additionally, the cloud account provider for the FSM plugin has been renamed to Oracle SaaS Applications & Transactional BI.

  • FLEXDEPLOY-14050 - Introduced a new project property, Stop on Deployment Error, to control whether execution continues or stops in the import operation upon encountering an error.

• Oracle Transactional BI Plugin

  • FLEXDEPLOY-13737 - Plugin target properties like URL, Username, Password are migrated to Oracle SaaS and Transactional BI cloud account which can be configured by customer to use OAuth as necessary. Oracle Transactional BI and Oracle SaaS FSM Plugin share same cloud account.

• Oracle Visual Builder Plugin

  • Prior to FlexDeploy 9.0.0.4, OAuthJWTAssertion required using a Java KeyStore for the Private Key and Certificate. When upgrading from FlexDeploy 9.0.0.3 or earlier, the Oracle Visual Builder cloud account will automatically migrate to use Private Key and Certificate credentials from the configured KeyStore, eliminating the need to maintain the KeyStore on the file system. As a result, the KeyStore Path, KeyStore Password, Private Key Alias, Private Key Password, and Certificate Algorithm properties are now replaced with the Private Key and Certificate properties.

• Oracle EPM Plugin

  • Prior to FlexDeploy 9.0.0.4, OAuthJWTAssertion required using a Java KeyStore for the Private Key and Certificate. When upgrading from FlexDeploy 9.0.0.3 or earlier, the Oracle EPM cloud account will automatically migrate to use Private Key and Certificate credentials from the configured KeyStore, eliminating the need to maintain the KeyStore on the file system. As a result, the KeyStore Path, KeyStore Password, Private Key Alias, Private Key Password, and Certificate Algorithm properties are now replaced with the Private Key and Certificate properties.

  • The Rollback File attribute has been inactivated, as this option is not supported for EPM Plugin.

• Oracle BI, Oracle Transactional BI and Oracle Analytics Cloud

  • Introduced a new target property to set the number of concurrent threads used when discovering and downloading the web catalog, with the default set to 3. You can increase this value if needed, but be cautious—setting it too high may result in hitting rate limits. In that case, lower the value.

• PMD Plugin

  • FLEXDEPLOY-13916 - Updated the PMD version bundled with plugin to 7.10.0, while maintaining support for external 6.X.X versions.

• File Plugin

  • FLEXDEPLOY-14089 - Enhanced the File plugin to properly handle file paths that contain special characters.

Resolved Issues

• FLEXDEPLOY-14105 - Resolved a rare issue where executing an "Order By" clause in certain queries could lead to a database error.

• FLEXDEPLOY-14174 - Resolved an issue when using multiple spaces in table or list search filters.

• Projects

  • FLEXDEPLOY-11948 - The "Deployments" and "Commits" sections are no longer shown under the insights tab for utility projects.

  • FLEXDEPLOY-13272 - Resolved an issue where line additions and deletions were not captured for certain Git commits, even though line changes were present.

  • FLEXDEPLOY-13904 - Resolved an issue where the TEST instance remained mapped to the Project workflow even after all Deploy instances were removed.

  • FLEXDEPLOY-14251 - Resolved a regression introduced in 9.0.0.0 that caused the Re-Build button to not be displayed when viewing the Workflow Execution Details page.

• Workflow Request Form

  • FLEXDEPLOY-13704 - Resolved an issue where the "Hide When" and "Disable When" rules were not working in some cases where the target workflow input was a multiselect list.

• Release and Pipeline Management

  • FLEXDEPLOY-14099 - Resolved an issue causing the Release Dashboard Step details popup to close when changing tabs between Projects, Work Items, and Commits. This only applies to Classic View and the Approval and Schedule Gates.

• Workflows

  • FLEXDEPLOY-12405 – When attempting to delete a workflow mapped to an inactive project, a clear error message is now shown, replacing the previous "Internal Error - Constraint Violation" message.

  • FLEXDEPLOY-14121 - Resolved an issue causing Groovy Library suggestions to not be displayed in the Run Groovy step inside Utility Workflows.

• Topology

  • FLEXDEPLOY-13964 - When attempting to delete a Target Group with execution data, a clear message is now shown.

• Work Items

  • FLEXDEPLOY-14086 - Resolved two Work Item regressions caused in 9.0.0.2

    • Checking the "Open After Create" checkbox in the Create Work Item Popup would not consistently open the Work Item after creation.

    • Deleting a Work Item on the list page would not refresh the list

• Salesforce

  • FLEXDEPLOY-14039 - Resolved an issue where dynamic package content was not updated with files that were newly committed and added from the Salesforce compare screen.

  • FLEXDEPLOY-14145 - Resolved an issue where the MatchingRule subcomponent was not being committed and deployed, despite showing successful messages. The subcomponent is now properly committing to the SCM and deploying to the target org.

• Security

  • FLEXDEPLOY-14059 - Resolved a caching issue causing unique username validation to not always accurately reflect if a username was used or not.

• Groovy Libraries

  • FLEXDEPLOY-14101 - Resolved an issue where deleted Groovy Libraries would still show up in script suggestions.

• Groovy Functions

  • FLEXDEPLOY-12550 - Resolved an issue causing Groovy scripts to sometimes throw an error "FDML-99001: Internal Error - wrong number of arguments." despite the number of arguments being correct.

  • FLEXDEPLOY-14028 - Resolved an issue where certain Groovy scripts could print credentials in clear text.

• Code Editor

  • FLEXDEPLOY-14160 - Resolved an issue causing some imports to not have quick import suggestions. Also resolved imports being suggested when not necessary.

• Integrations

  • FLEXDEPLOY-13927 - Resolved an issue where CMS Provider audit columns were not updated when changing API Text and Field details.

• Integration Settings

  • FLEXDEPLOY-14006 - Resolved an issue regarding OAuth applications not authorizing properly if multiple applications existed with the same client id.

• Outgoing Email

  • FLEXEPLOY-14104 - Resolved an issue with Microsoft Graph Integration where emails sent were placed in the sent folder of the authorizer instead of the "Send As" user. Additionally, improved documentation for Microsoft OAuth and Microsoft OAuth Graph integrations to clarify the process of using shared mailboxes.

• Oracle Integration Cloud

  • FLEXDEPLOY-14219 - Resolved an issue in Discover from Oracle Integration Cloud where the discovery process would fail if no objects (Library, Connection, Integration, or Lookup) were found.

  • FLEXDEPLOY-14080 - Resolved an issue where the test connection failed with an UnrecoverableKeyException when the private key passphrase was blank. It now defaults to the keystore password if no passphrase is provided.

• Oracle SQLcl Plugin

  • FLEXDEPLOY-14009 - The SQLcl plugin now captures execution logs in error message, providing users with better visibility during failure situations.

Incompatible Changes

• PMD plugin now require Java 8. Please ensure Java is updated on your endpoints as needed.

FlexDeploy 9.0.0.3 (2-17-2025)