12.16.0

Bugfixes

• Supporting process modal now displays a loading spinner instead of the "No form linked" error while loading form data.

Security improvements

Breaking Change As part of the security improvements, scripting in processes is now restricted by a whitelist. If your application uses custom scripting classes, you may need to whitelist them explicitly.

• A security advisory has been published here.

• Users with administrator privileges previously had access to unnecessary resources through the scripting engine in processes.

• To mitigate this, Valtimo now restricts scripting access by default, allowing only a limited set of methods and classes.

For migration details, see: Whitelisting Scripting classes.