• Fixed a rare issue where propagating access expiration would fail if a user had direct and group-sourced access to a GitLab or GitHub repository.
  • Fixed resource users not being revoked from resources when their access is expired. Other relationships (group users, group resources, nested groups) were not affected.
  • Updated date range dropdown styling
  • Fixed bulk editing styles when in dark mode
  • Fixed a pagination bug on the UAR group review tab.
  • Added validation for Content-Type headers on POST and PUT requests, ensuring they are set to "application/json" to prevent invalid request formats.
  • Added skip-manager's name and image to escalate modal
  • Fixed sync status modal not using full width of table
  • Fixed a race condition issue in sync that would cause it to fail entirely.
  • Support access levels in bundle groups REST API (https://docs.opal.dev/reference/getbundlegroups)
  • Added links for user team and title cells
  • Redesigned KBar search interface (command+k / control+k)
  • Updated styles for Add Event Streaming Connection modal
  • Fixed issue where external id was not copyable in the AWS SSO create screen
  • Minor updates to UAR decision selection
  • Fixed scalability of request details view when there are long answers or many custom fields.
  • Bundles API Delete endpoints will not 404 when attempting to delete an already deleted resource
  • Fixed a pagination bug on the risk center.
  • Fixed bug with 'Duplicate Request' button and custom fields.
  • Fixed an issue where access review notes weren't being properly saved in certain scenarios.
  • Updated styles for create / edit modals for UAR for better dark mode compatibility
  • New filter design in Risk Center for improved accessibility and visual clarity
  • Deprecated USERS_ADDED_TO_RESOURCES, RESOURCE_USERS_UPDATED, and USERS_REMOVED_FROM_RESOURCES events and migrated them to ROLE_ASSIGNMENT_CREATED, ROLE_ASSIGNMENTS_UPDATED, and ROLE_ASSIGNMENTS_DELETED, respectively
  • Added the ability to use Access Rules directly in Access Requests and Visibility Configuration
  • UARs can now be used to review Groups & Resources that Access Rules contain
  • Fixed bug in Snowflake where sync errors occur when there are child roles created with double-quotes
  • Updated direct access only checkbox in resource users
  • Added IDP Status of a user to resources users table
  • Fixed bug where stopped UARs could not be exported
  • Fixed bug where admins couldn't clear all access expiring notifications
  • Fixed bug in Snowflake where a single quote in the resource or role names would cause a 422 SQL syntax error
  • Fixed bug where catalog truncates app name
  • Add ability to leave comments for requests
  • Fixed an issue with Table selection not registering