Version 1.28.4 (June 2023)

Welcome to the Zowe Version 1.28.4 release!

See Bug fixes for a list of issues addressed in this release.

Download v1.28.4 build: Want to try new features as soon as possible? You can download the v1.28.4 build from Zowe.org.

Bug fixes

Zowe Version 1.28.4 contains the bug fixes that are described in the following topics.

Zowe API Mediation Layer

• Mitigated storing passwords in the memory (v1). (#2862)

• Corrected the position of the align button in Swagger UI. (#2861)

Zowe CLI

Zowe CLI (Core)

• Updated Imperative to handle if a null command handler is provided. (#991, Zowe CLI #1732)

• Updated Imperative to fix the zowe auth li and zowe auth lo aliases. (#964, Zowe CLI #1732)

Zowe CLI Imperative Framework

• Handle logic for if a null command handler is provided. (#991)

• Fixed the login and logout handlers, fixing the li and lo aliases. (#966)

CICS Plug-in for Zowe CLI

• Updated the xml2js dependency to resolve security vulnerability. (#134)

DB2 Plug-in for Zowe CLI

• Updated ibm_db dependency for better support with Node.js 18. (#127)

MQ Plug-in for Zowe CLI

• Fixed GitHub repository URL in the package.json file. (#49)

Vulnerabilities fixed

Zowe discloses the vulnerabilities in a timely manner but giving the user time to upgrade. The fixed vulnerabilities will be available on the Zowe security page. Zowe won't disclose the vulnerabilities that are fixed in the latest release as we respect the need for at least 45 days to decide when and how users will upgrade Zowe.