Track Resolved Issues

CLM-34990

Sonatype Lifecycle now avoids generating filenames over 1000 characters during SBOM export, which allows for successful SBOM scanning and policy evaluation.

CLM-34858

The Dashboard now loads as expected when the application count exceeds 65,000 in Sonatype Lifecycle using PostgreSQL.

CLM-34788

Application report files are now retained until after policy evaluation, preventing premature deletion and potential errors. This change ensures the report.cache directory can be deleted without encountering file access issues.

CLM-34786

The system no longer makes calls to the HDS when an invalid product license is detected. This change prevents the occurrence of spurious "402 Payment Required" errors for SaaS tenants with valid licenses.

CLM-34766

Pull request comments are now successfully created in Bitbucket Server for organizations with Latin-1 special characters in their names. This fix ensures that the payload for pull request comments uses UTF-8 encoding, resolving issues with automated PRs generated by Lifecycle.

CLM-34690

The BitbucketV1ApiClient.isBranchOnServer method now constructs SCM repository request URLs with correctly formatted query parameters. This ensures proper communication with Bitbucket's API and resolves issues where parameters were incorrectly appended.

CLM-34561

The ThirdPartyScanResultsProcessor now aborts scan processing and displays an error to the user when critical exceptions, such as disk/IO errors, are encountered. This change prevents the system from getting stuck in a processing loop and generating excessively large log files in such scenarios.

CLM-34530

The Expiry Date in the Component Waivers popover, which appears on the Policy Violations tab within the Component Details page, now correctly displays the waiver's expiration date. This fix ensures that the expiry time is properly included in the PolicyWaiverResource DTO mapping.

CLM-34522

When FIPS mode is enabled, the system now logs an error. This enhancement provides improved visibility and aids in diagnosing potential issues related to FIPS compliance.

CLM-32347

The system now gracefully handles ConnectTimeoutException errors that may occur during startup due to HTTP proxy misconfigurations or issues.

NEXUS-46679

The Malware Defense Evaluate API now works as expected for deployments using an H2 database.

SDEV-1958

Reverted some user interface changes to the Priorities page.

CLM-34525

Firewall's LDAP configuration now functions correctly with a Firewall-only license.

CLM-34445

Users must now have CONFIGURE_SYSTEM permissions to create and view success metrics reports.

CLM-34331

The Nexus IQ Server Alpine image now includes curl, ensuring successful health checks.

CLM-34168

CycloneDX files exported from IQ Server now correctly handle the WXwindows license, allowing successful re-importation and scanning.

CLM-31307

IQ Server upgrades from version 175 to 176 and later no longer generate excessive WARN log messages related to policy waiver comparisons across different component formats.

CLM-30536

Users can now navigate back to the "Review Obligations" view from the license view within scan reports.

CLM-30372

CLI scans performed by users with the "Application Evaluator" role no longer fail with "Could not fetch IQ params for application" errors due to insufficient permissions.

CLM-34067

Policy violations without migrated PolicyViolationConstraintFacts are correctly handled, and users will no longer experience an internal error in the violations dashboard.

CLM-33993

Improved SCM integration error handling to prevent connection attempts and null pointer exceptions when configuration is invalid.

CLM-33991

Deleting a user via REST API with no active IQ browser session now succeeds as expected.

CLM-31655

Azure DevOps plugin log no longer shows unexpected invalid cookie header information.

CLM-31489

Skip validation for SPDX scans now works as expected.

CLM-31394

When the violations dashboard is disabled, users now see a descriptive alert in the user interface.

CLM-29686

Added explanatory tooltips to the Daily Automated Pull Request activity table.

CLM-34075

Waivers created for a specific security vulnerability and matcher strategy are no longer incorrectly marked as "unapplied waivers" on unrelated violation.

CLM-33553

Backslashes in package names no longer cause an InvalidPackageURLException during application scans, ensuring proper handling of invalid entries in bom.json.

CLM-33047

Policy violation constraint facts now load properly so that requesting success metrics for certain applications no longer results in a 500 error.

CLM-32350

The Success Metrics report header now correctly reflects the configured successMetricsStageId instead of always displaying all stages.

CLM-29183

The IQ CLI now correctly processes pnpm-lock.yaml files inside archives without throwing a "Not a directory" error.

CLM-29148

You can now configure the maximum number of PostgreSQL connections for on-premises Nexus IQ Server installations using the maxConnections property in the database section of your config.yml.

NEXUS-45401

Resolved an issue that was causing some features of Firewall to not be available when also using SBOM Manager for some license types.

CLM-33896

This release fixes a bug in release 185 that could cause deadlocking to occur under heavy usage causing the application to become unresponsive.

CLM-32560

The insight_brain_ods.lock table no longer contains excess records after we optimized the cluster lock mechanism with PostgreSQL Advisory Locks.

CLM-32392

Improved the performance and reliability of IQ HA support zip generation by optimizing the handling of large file systems.

CLM-32827

Addressed an issue where large numbers of membership mappings could cause high PostgreSQL database CPU usage. Added an index for PostgreSQL databases to improve membership mapping queries.

CLM-32249

The SBOM Manager and Lifecycle PDF Exports now include the timezone info with both Created on and Analyzed on dates.

CLM-30691

Fixed an issue where the Data Insights dashboard failed to load for some users who upgraded from IQ Server versions prior to 173.

SBOM-164

Clarified in documentation that SBOMs cannot use UTF-16. You will need to convert them to UTF-8 for them to be properly ingested.

Repository evaluate/componentMetadata requests are significantly slower in IQ 165

CLM-26884

IQ Server can cause StackOverflowError while executing GET /api/v2/policyViolations/transitive/application

CLM-26738

GET requests to /platform/api/v2/config?property=quarantinedItemCustomMessage is returning a 404

CLM-24225

An error message is seen in the report when the component is removed from the vulnerability.

CLM-25847

Waivers for Violation page can't see the Policy waivers

CLM-26343

Scanning poetry.lock file includes development dependencies

CLM-26855

Scanning conda.txt with clair-scanner-output.json

CLM-27061

Firewall for Artifactory integration issue

CLM-26426

Fix for Policy Violation REST API

CLM-26612

Line Comment Links in Bitbucket PRs

CLM-27080

Bulk import issue

CLM-26837

Optimize persistence of policy violations