Release Notes

v5.26.7 on the GitHub



  • The Server-Side Encryption feature is supported now in AWS S3 repository.

Rule Services:

  • RuleServices now allows users to customize HTTP Authorization.

Fixed Bugs


  • Various grammatical errors in the WebStudio.
  • No success message is displayed in the WebStudio Editor upon saving a project.
  • Previously deleted projects are displayed in the Workspace if the repository type was changed from flat to non-flat.
  • The "Comment" field is not displayed on Create Project screens for local projects in the Workspace section even if customized comments are enabled.
  • The "Failure in the method 'org.openl.rules.helpers.RulesUtils.copy(java.lang.Object)" error appears during test runs after module updates.
  • The date is displayed incorrectly in the results of running a spreadsheet if the spreadsheet cell refers to a Date array element.

Rule Services:

  • Incorrect combined spreadsheet type generation.


  • A warning is not displayed for caseInsensitive parameters.
  • The expression in the return cell is executed even if the corresponding rule was not matched.
  • The "Ambiguous dispatch" error is not presented to the user if the rule is versioned by 2 properties and the number of versioned tables is even.

Maven Plugin:

  • The OpenL Maven plugin has a memory leak due to log4j2 in WebAppClassLoader.

Updated Libraries

Vulnerabilities fixed: CVE-2023-20861, CVE-2023-1370

  • Spring Framework 5.3.26
  • Spring Boot 2.7.10
  • Jose4j 0.9.3
  • JSON Smart 2.4.10
  • OpenSAML 4.3.0
  • ASM 9.5
  • Apache Thrift 0.18.1
  • Netty 4.1.91.Final
  • Reactor Netty HTTP lib 1.1.6
  • AWS SDK 1.12.447
  • Azure Blob Storage 12.21.1
  • JAXB runtime 2.3.8
  • GreenMail 1.6.14
  • Apache Commons Compress 1.23.0
  • Gson 2.10.1
  • Bouncycastle 1.73
  • Groovy 3.0.17
  • Joda Time 2.12.5
  • XMLSec 2.3.3

Known issues

  • Rule services fails to start if the property log.request-id.header is configured

© Copyright OpenL Tablets, 2004-2024