Quality Clouds 18.2.0 Release Notes


Release date: April 6th, 2018

Highlights

New best practice implemented 

ServiceNow

The following new ServiceNow best practice have now been implemented:

IDDescriptionSeverityArea of impactAffected elementCovered by Quality CloudsCovered by free scan utility
102Workflows with over 50 activitiesMediumPerformanceWorkflow

(tick)

(tick)
103Workflows with over 10 Timer activitiesMediumPerformanceWorkflow(tick)(tick)
241Document Object Model (DOM) manipulation in Catalog UI Policies.
HighManageabilityCatalog UI policy(tick)(tick)
245

Catalog UI Policies using GlideRecord.

HighPerformanceCatalog UI policy(tick)(tick)
246Synchronous AJAX call (getReference, getXMLWait) in Catalog UI Policies.HighPerformanceCatalog UI policy(tick)(tick)
252Catalog UI Policies with hard-coded sys_ids.MediumManageabilityCatalog UI policy(tick)(tick)

JavaScript

The following JavaScript best practice have now been implemented for Catalog UI Policy:

IDDescriptionSeverityArea of impactAffected elementCovered by Quality CloudsCovered by free scan utility
200Javascript - Optimize LoopsHighPerformanceCatalog UI policy(tick)(tick)
202Javascript - Use === comparisonWarningManageabilityCatalog UI policy(tick)(tick)
205JavaScript - Avoid unrestricted targetOrigin on cross-domain messagingHighSecurityCatalog UI policy(tick)(tick)
206Javascript - Avoid use of Function ConstructorsHighSecurityCatalog UI policy(tick)(tick)
207Javascript - Avoid use of WebDBHighSecurityCatalog UI policy(tick)(tick)
208Javascript - Avoid use of debugger statementsHighSecurityCatalog UI policy(tick)(tick)


Quality Clouds 

The following Quality Clouds recommendations have been implemented:

IDDescriptionSeverityArea of impactAffected elementCovered by Quality CloudsCovered by free scan utility
3000Possible PII usage in configuration elementHighSecurityAll CE typesOnly for clients with GDPR add-on enabled(error)
3001Possible extra-sensitive PII usage in configuration elementHighSecurityAll CE typesOnly for clients with GDPR add-on enabled(error)
4000Possible use of private dataWarningSecurityAll CE types(tick)(tick)

General Data Protection Regulation (GDPR) checks added 

The new release includes the following checks:

  • one generally available check for potential use of private data 
  • two checks for Personally Identifiable Information (PII) available for clients with GDPR add-on enabled - see the information in the table above.

All the checks are available for the PII element labels in the following languages:

  • English
  • French
  • Spanish 
  • German

Updates to the code monitor dashboard

The following elements are now included in the configuration elements compared between two instances:

  • Access Control
  • Business Rule
  • Catalog Client Script
  • Catalog Item
  • Client Script
  • Data Policy
  • Data Source Configuration
  • Dictionary Entry
  • Dictionary Entry Override
  • Email Notification
  • Inactivity Monitor
  • Notification Email Script
  • REST Service Definition
  • Script Include
  • Service Portal Widget
  • System Properties Table
  • Transform Map
  • Transform Script
  • UI Action
  • UI Policy
  • UI Style
  • User Preference
  • WebService Definition
  • Widget Angular Provider

Additionally, whenever there is a difference between code compared, this is highlighted by a warning icon.

New configuration item types included in analysis 

The following configuration element types are now included in the analysis:

  • Workflows
  • Catalog UI Policies
  • Catalog Variables
  • Catalog Variable Sets
  • Catalog Categories
  • Record Producers

New Update Set 

New update set contains the access control lists (ACLs) needed to access the new tables scanned for the new Configuration Element types. 

Contact us to obtain the Update Set.

Issues resolved in version 18.2.0