1.0.7 - 27 Mar 2021
[LC-921] - --blob-files option is rejected if it contains more than 2 optional values
[LC-934] - CLIENT may abend when writing diagnostic log after request timeout
[LC-935] - CLIENT ignores socket connection reset while receiving response body on TLS connection
[LC-947] - Diag log system info RVU is incorrect
[LC-949] - DDL generator does not treat ENVIRONMENT as COBOL reserved word
[LC-951] - Fix for LC-917 broke request signing support
[LC-965] - LWCCOM pagesize command may report valid input as invalid
[LC-974] - Setting isSet: true does not work for JSON object serialization when the object is empty
1.0.6 - 28 AUG 2020
[LC-293] - API editor swagger import: vague mixed content error when Console is accessed via HTTPS and swagger is HTTP
[LC-844] - CLIENT may abend while parsing digest auth header with specific format
[LC-853] - HTTP log file name sequence does not roll over when date changes
[LC-854] - HTTP log version & date directives have incorrect values
[LC-855] - Console HTTP log time ranges should be in GMT to match the log timezone
[LC-874] - A structure element in an array of structures is not serialized if the element is hidden in a previous structure in the array
[LC-875] - Diagnostic log is corrupted if line break occurs at multi-byte character
[LC-881] - HSTS header may be sent intermittently
[LC-888] - --log startup option ignores "event" format specification
[LC-892] - Scaled integers with values exceeding 12 bytes are serialized as "************"
[LC-893] - unsigned long long values > 9223372036854775807 are not de/serialized correctly
[LC-900] - CONSOLE does not detect when filesystem is not TMF audited, resulting in unpredictable behavior
[LC-904] - Process logging configured at debug level may expose sensitive data in HTTP headers
[LC-880] - Implement XSRF protection in the Console
1.0.5 - 04 MAR 2020
[LC-497] - At sign '@' not parsed correctly when used as option value.
[LC-654] - LWCCOM import cert does not replace existing cert with same common name.
[LC-667] - CONSOLE does not shut down when filesystem in use detected.
[LC-673] - Certificate installation dialogs with textarea fields have no Cancel / Install buttons
[LC-678] - Chunked encoded response is not processed correctly after HTTP 401 challenge
[LC-711] - CLIENT may abend if response payload is larger than IPM blob size
[LC-712] - API editor path field requires leading slash and disallows trailing slash
[LC-714] - CLIENT may abend on startup if client certificate file cannot be opened
[LC-718] - Certificate import with duplicate CN does not replace existing certificate.
[LC-719] - Integer with scale values less than 0.1 are serialized as scientific notation
[LC-723] - Schema editor syntax check no longer works.
[LC-726] - Schema editor error tooltip is not always visible
[LC-770] - CLIENT may abend when configured with invalid base-url
[LC-771] - Log configuration file documentation shows invalid level option "trace"
[LC-772] - INVALID-TYPE error is not documented
[LC-777] - Vague error "Deserialization error: Unexpected json type 0" is reported when the payload contains an object when a primitive is expected.
[LC-778] - Azure IoT Hub request signature algorithm leaks memory.
[LC-779] - String encoding validation leaks memory.
[LC-782] - Deserialization error occurs when the wildcard response is not the last response defined for the operation
[LC-783] - INVALID-HDR-VERSION error (103) is missing from documentation and generated DDL
[LC-784] - Credentials file error is logged with incorrect error code.
[LC-785] - API editor does not refresh when a new version of an API is uploaded
[LC-791] - CLIENT does not shut down when API cannot be opened.
[LC-792] - Intermittent ICU load errors on TNS/E
[LC-801] - CLIENT process leaks memory on each request
[LC-802] - Organization field missing in generated CSR
[LC-808] - Client application receives connection reset or timeout error when HTTP 401 response is received and connection is closed
[LC-814] - Console uses mixed content links in page footer
[LC-815] - Upgrade AngularJS to version 1.7.9 to mitigate security vulnerabilities
[LC-837] - Response length is incorrect when response is not chunked encoded and no Content-Length header is returned
[LC-840] - HTTP authentication pre-auth does not work on non-secure (HTTP) connection
[LC-794] - Upgrade to OpenSSL 1.0.2.t
[LC-816] - Allow selection of diagnostic log content using diagnostic log configuration. See Diagnostic Log Configuration
[LC-824] - Add isSet schema property to indicate presence of optional elements. See Working with Optional Elements
[LC-833] - Add hideIfEmpty schema property to omit serialization of empty elements. See Working with Optional Elements
1.0.4 - 05 MAR 2019
[LC-463] - API import accepts any valid JSON file
[LC-468] - Application-supplied Authorization header overwritten when --http-credentials specified
[LC-527] - CLIENT returns parser error for BLOB response.
[LC-532] - CUTILITY -cf report internal errors 9 when there is no whitespace between file name and dammit (!)
[LC-535] - API editor delete method no longer works in Firefox
[LC-542] - Slashes appended to base-url result in multiple slashes on the URI.
[LC-547] - AWS signature is invalid when header, query param, or URI contain embedded spaces.
[LC-554] - Console may log out due to inactivity while using the API editor for a long period without saving.
[LC-558] - ISO8601:full-date support is not available in 1.0.x CLIENT
[LC-565] - LWCCOM create credentials only works when user is prompted for credentials
[LC-579] - DDL generator creates invalid DDL name when the original name contains digits and is longer than 26 characters
[LC-580] - Authorization header is not masked in the diagnostic log
[LC-588] - Swagger import may generate incorrect lengths for path elements/params/headers
[LC-606] - Diagnostic log sensitive data masking warning is not consistently displayed
[LC-608] - Reply buffer reserved area is not null filled.
[LC-609] - Command line error reported when argument contains double dash
[LC-610] - API editor path dialog hangs browser when certain URIs with path components are entered
[LC-613] - Command line consisting only of a comma is reported as command abbreviation
[LC-614] - Diagnostic log delete buttons are enabled when there are no logs
[LC-612] - Diagnostic log is not written when the request is cancelled
[LC-615] - Console returns X-Content-Type-Options, X-Frame-Options, X-XSS-Protection, Strict-Transport-Security security headers.
[LC-628] - Add options to disable TLS 1.0 & 1.1
1.0.3 - 05 OCT 2018