Release Update 11/22/2024

Salesforce

Salesforce Code Analyser version Upgrade

Salesforce Code Analyzer has been upgraded to version 4.7.0. This incorporates PMD version 7.6.0, and updates to the RetireJS vulnerability database and AppExchange-specific PMD rule engine (pmd-appexchange).

SDLC

Live Pipeline Logs for GHA Workflow

Real-time streaming of logs from workflow steps in GitHub Actions (GHA) Pipeline workflows has been enabled. This allows the output of each step to be monitored as it runs, providing immediate visibility into the process, and enables quick addressing of any failures that may occur during execution.

The streaming logs can be found displayed in the Console Output section, where ongoing logs are accessible along with comprehensive insights, summaries, job logs, and raw output related to the workflow.

Streamlining Log Export Functionality for Pipeline Logs in Job Engine Workflows

An enhancement has been implemented to the logging mechanism for job engine steps within the pipeline activity logs. Logs that are smaller than 750KB are automatically stored in the Pipeline Activity Logs collection, which allows for immediate access and review. Whereas, the logs exceeding 750KB will remain in the artifact service and will require user action for downloading through a “Download Activity Log” button available in the console.

Pipeline Parameters for Job Engine Pipeline Workflows

A capability for pipeline-level parameters has been introduced for the Run Job and Run Script steps within Job Engine Pipeline workflows. This allows for the creation and management of parameters that are specific to individual pipelines, rather than relying solely on parameters defined globally in the tool registry. With this functionality, sensitive information can be securely stored in a vault and referenced within pipeline configurations.

Furthermore, role-based access controls will be incorporated into these parameters, ensuring that only authorized users have access to and can utilize them within their respective pipelines.

Note: Currently, pipeline-level parameters are supported only for job engine workflows. We intend to extend this capability to all pipelines in the near future. This will enhance security and usability in managing sensitive data within automated workflows.

Additional Capabilities

• A built-in option has been introduced to specify a sub-folder name within the repository when pushing artifacts to JFrog Artifactory, when using Docker CLI Pipeline steps. This capability will enable users to define a target directory structure within their repositories, facilitating better management and organization of artifacts.

• Users can select their preferred container size when starting a Wiz scan. The default setting will be medium, but users will have the option to choose from several predefined sizes, including micro, small, large, and extra large.