Quality Clouds 18.2.0 Release Notes

Release date: April 6th, 2018

Highlights #

New best practice implemented  #

ServiceNow #

The following new ServiceNow best practice have now been implemented:

ID	Description	Severity	Area of impact	Affected element	Covered by Quality Clouds	Covered by free scan utility
102	Workflows with over 50 activities	Medium	Performance	Workflow
103	Workflows with over 10 Timer activities	Medium	Performance	Workflow
241	Document Object Model (DOM) manipulation in Catalog UI Policies.	High	Manageability	Catalog UI policy
245	Catalog UI Policies using GlideRecord.	High	Performance	Catalog UI policy
246	Synchronous AJAX call (getReference, getXMLWait) in Catalog UI Policies.	High	Performance	Catalog UI policy
252	Catalog UI Policies with hard-coded sys_ids.	Medium	Manageability	Catalog UI policy

JavaScript #

The following JavaScript best practice have now been implemented for Catalog UI Policy:

ID	Description	Severity	Area of impact	Affected element	Covered by Quality Clouds	Covered by free scan utility
200	Javascript – Optimize Loops	High	Performance	Catalog UI policy
202	Javascript – Use === comparison	Warning	Manageability	Catalog UI policy
205	JavaScript – Avoid unrestricted targetOrigin on cross-domain messaging	High	Security	Catalog UI policy
206	Javascript – Avoid use of Function Constructors	High	Security	Catalog UI policy
207	Javascript – Avoid use of WebDB	High	Security	Catalog UI policy
208	Javascript – Avoid use of debugger statements	High	Security	Catalog UI policy

Quality Clouds  #

The following Quality Clouds recommendations have been implemented:

ID	Description	Severity	Area of impact	Affected element	Covered by Quality Clouds	Covered by free scan utility
3000	Possible PII usage in configuration element	High	Security	All CE types	Only for clients with GDPR add-on enabled
3001	Possible extra-sensitive PII usage in configuration element	High	Security	All CE types	Only for clients with GDPR add-on enabled
4000	Possible use of private data	Warning	Security	All CE types

General Data Protection Regulation (GDPR) checks added  #

The new release includes the following checks:

• one generally available check for potential use of private data 
• two checks for Personally Identifiable Information (PII) available for clients with GDPR add-on enabled – see the information in the table above.

All the checks are available for the PII element labels in the following languages:

• English
• French
• Spanish 
• German

Updates to the code monitor view #

The following elements are now included in the configuration elements compared between two instances:

• Access Control
• Business Rule
• Catalog Client Script
• Catalog Item
• Client Script
• Data Policy
• Data Source Configuration
• Dictionary Entry
• Dictionary Entry Override
• Email Notification
• Inactivity Monitor
• Notification Email Script
• REST Service Definition
• Script Include
• Service Portal Widget
• System Properties Table
• Transform Map
• Transform Script
• UI Action
• UI Policy
• UI Style
• User Preference
• WebService Definition
• Widget Angular Provider

Additionally, whenever there is a difference between code compared, this is highlighted by a warning icon.

New configuration item types included in analysis  #

The following configuration element types are now included in the analysis:

• Workflows
• Catalog UI Policies
• Catalog Variables
• Catalog Variable Sets
• Catalog Categories
• Record Producers

New Update Set  #

New update set contains the access control lists (ACLs) needed to access the new tables scanned for the new Configuration Element types. 

Contact us to obtain the Update Set.

Issues resolved in version 18.2.0 #