• Strengthen Content Security Policy (CSP) for air-gapped Opal deployment environments.
• Improve the UX in slack when there are too many search results.

• Added actions to the inbox view for requests.
• Fixed a bug related to expiring nested group access that resulted in excessive expiration notifications.

• Improve performance when selecting owners in the approval stages.
• Fixed a bug allowing expired resources to get extended access.
• Fixed a bug preventing groups from being given access to Anthropic workspaces.
• Fixed a bug that sometimes caused request configuration priorities to be out of order.
• Moved access rule conditions into a modal instead of the left sidebar on Access Rule UARs,
• Fixes a bug where listing assignments could be extremely slow.
• Improve retry handling for rate-limited requests from Freshservice.
• Improve rate-limit error handling by auto-retrying requests for Jira ticketing integration.

• Fixed Azure US Government integration to use the correct endpoint.
• (Airgapped On-Prem Only) Avoid browser calls to initialize Pendo for airgapped environments.

• Adds option to revoke all unreviewed access at the end of an Access Review
• Updated the request details screen to show the approver chain after a request has been completed

Bug Fixes

• Fixed a bug where group-group creation could fail

Improved

• Improved Slack handler performance

• Improved performance for apps dropdown query

Self-hosted only

• Hide Opal Status banner for on-premise deployments

Bug Fixes

• Fixed poor performance when loading items with visibility restrictions. Some users were seeing timeouts as a result of this bug.

Added

• Added Google Chat notification support for access requests being approved, denied, and cancelled

Improved

• Improved race condition handling between scheduled & real time sync
• Improved Salesforce setup documentation
• Improved visibility of import items button for native apps by moving it into the assets table
• Made handling of role conditions more explicit in GCP, favoring creating new role bindings rather than attaching to existing bindings

Bug Fixes

• Fixed a bug where the requested role would not be included in request audit tickets
• Fixed an issue where Opal would not retry push-only custom app webhooks on 5xx, 429 and 408 errors
• Fixed a bug where flakiness in the Azure API on listing application templates could result in entitlement sync failing for Azure Enterprise Apps
• Fixed a bug where Jira would erroneously find multiple users in certain cases
• Fixed an issue in the request UI to prevent expired delegations from displaying as reviewers
• Fixed scroll on settings pages

Bug fixes

• Fixed a bug where flakiness in the Azure API on listing application templates could result in entitlement sync failing for Azure Enterprise Apps.