Version 2.18.1 (March 2025)

Welcome to the Zowe Version 2.18.1 release!

See Bug fixes for a list of issues addressed in this release.

Download v2.18.1 build: Want to try new features as soon as possible? You can download the v2.18.1 build from Zowe.org.

Bug fixes

Zowe Version 2.18.1 contains the bug fixes that are described in the following topics.

Zowe CLI

Zowe CLI (Core)

• Added support for the --encoding flag to the zowe upload dir-to-uss command to allow for encoding uploaded directories for command group consistency. (#2356)

Zowe CLI Imperative Framework

• Updated transitive dependencies for technical currency. (#2425)
• Resolved an issue where extraneous base profiles were created in project configurations when a nested profile property was updated. (#2404)
• Fixed an issue where the ProfileInfo.profileManagerWillLoad method failed if profiles were not yet read from disk. (#2284)
• Fixed an issue where the ProfileInfo.updateKnownProperty method could rewrite the team configuration file to disk without any changes when storing a secure value. (#2324)
• Updated the cross-spawn dependency for technical currency. (#2374)
• Fixed issues flagged by Coverity. (#2292)
• Updated dataobject-parser dependency for technical currency. (#2262)
• Updated fs-extra and jsonfile dependencies for technical currency. (#2264)

CICS Plug-in for Zowe CLI

• Removed bundled dependencies from npm package and restored the npm-shrinkwrap file. (#188)

DB2 Plug-in for Zowe CLI

• Updated ibm_db dependency to support Node.js 22 on Windows.

Zowe Explorer

Zowe Explorer (Core)

• See the Zowe Explorer changelog for updates included in this release.

Zowe Explorer API

• See the Zowe Explorer API changelog for updates included in this release.

Zowe Explorer FTP Extension

• See the Zowe Explorer FTP Extension changelog for updates included in this release.

Zowe Explorer ESLint Plug-in

• See the Zowe Explorer ESLint Plug-in changelog for updates included in this release.

Vulnerabilities fixed

Zowe discloses fixed vulnerabilities in a timely manner giving you sufficient time to plan your upgrades. Zowe does not disclose the vulnerabilities fixed in the latest release as we respect the need for at least 45 days to decide when and how you upgrade Zowe. When a new release is published, Zowe publishes the vulnerabilities fixed in the previous release. For more information about the Zowe security policy, see the Security page on the Zowe website.

The following security issues were fixed by the Zowe security group in version 2.18.0.

• BDSA-2024-4117
• BDSA-2024-3717
• BDSA-2024-0402
• BDSA-2024-0625
• BDSA-2024-1160