General Fixes & Improvements
This release focuses on stabilizing the core platform features (especially user management, workflow configuration, and the Try View) while implementing important security enhancements.
Automation Builder
- Improved User Management Idempotency: Builder now handles duplicate user creation or deletion events idempotently, preventing errors when multiple events are received for the same operation.
- Workflow Agentic Skill Referencing Fix: Resolved an issue where users were unable to reference the current version of an Agentic Skill within a workflow.
Studio
- Workspace Selection Visibility: The workspace selection dropdown in Settings is now visible for all user roles, not just Administrators, improving accessibility.
- Simplified RBAC Permissions Applied: The updated, simplified Role-Based Access Control (RBAC) permissions have been fully applied to the frontend, streamlining access management.
- Try View Document Classification Upload Fix: Resolved an issue where the upload button was missing in the Try View for Document Classification skills.
- Try View API Documentation Update: The API tabs within the Try View have been updated to reflect the latest endpoints for various skill types, providing accurate documentation for integration.
- Try View Empty State for DIE Skill: Implemented an empty state display for the Document Information Extraction (DIE) skill in the Try View, improving user guidance when no data is present.
- HITL Bounding Box Display Fix: Corrected an issue where bounding boxes were not visually displayed on documents within the Human-in-the-Loop (HITL) interface, even though the backend endpoint was returning the data.
Security Enhancements
- WebSocket Origin Validation: Implemented a minor improvement to the websocket origin validation to ensure proper protocol checks.
- Path Traversal Vulnerability Fix: Addressed a medium-severity path traversal vulnerability in the
WorkflowCredentialsPageiframesrcthat could allow partial control of the iframe source.