Summary
This is a patch release that updates dependencies to fix known security vulnerabilities (CVEs), as well as fixing a known issue in the previous release
See attached for Snyk scan report.
Change Log:
- [Security] Libraries updated to comply with latest CVE scans.
- [Bugfix] Session leak with logout of a password device - an ERROR message is generated when attempting this
Backwards Compatibility
- This release is backwards compatible with prior release Connect 1.0.31
- This release is compatible with latest releases of all Haventec Services:
- Java SDK 1.1.4
- Node SDK 1.0.9
- Authenticate 1.2.79 to 1.2.79.1
- Console 1.2.71 to 1.2.71.2
- Haventec IAM 15.0.2 and 15.1.1
Release Steps
- Verify pre-release system integrity by
- Perform system functional tests
- Check that there are no errors in logs
- Verify performance and response times are expected
- Perform the release to deploy Connect
- Verify post-release system integrity by:
- Perform system functional tests
- Check that there are no errors in logs
- Verify performance and response times are expected.
Rollback Steps
- Deploy previous version of Connect
- Verify system integrity by:
- Perform system functional tests
- Check that there are no errors in logs
- Verify performance and response times are expected.
Comments
0 comments
Please sign in to leave a comment.