CSFJ- July 2024
Summary π
In this release note, weβve improved the contract creation UI, security by masking sensitive data, and redesigned error pages and icons. As for bug fixes, XSS vulnerabilities, OAuth errors, and unauthorized access issue has been resolved.
Improvements
Improved UI for adding new signers IMPROVED
Previously on the contract creation view, it was essential to define numbers of signers after click βCreate,β then move to a dialog to fill in signer details.
Now users are taken directly to the contract details screen, where they can add signers.
Improved security IMPROVED
We have improved the security of our system by masking sensitive data. This includes IP Addresses, name, phone numbers and secrets.
Redesigned icon for 'no result' in dashboard IMPROVED
We have replaced old icon with magnifier icon.
Redesigned error pages for detailed information IMPROVED
Error pages are redesigned to view issue with respective message like license expired, Atlassian reload required, version mismatch. Applied for a view for both light and dark mode.
Bug Fixes
Fixed XSS vulnerability FIXED
We have resolved a stored XSS vulnerability in the "Person" name field on contract pages.
Fixed OAuth error FIXED
We resolved an issue where users encountered a 400 Bad Request
error.
Fixed unauthorized access issue FIXED
We have fixed an issue where Jira Service Desk customers with "customer" privileges could access contracts linked to their requests without authorization. Now, only authorized users can access and manage contracts.