Skip to main content
Version: v2.18.x

Version 2.7.0 (March 2023)

Version 2.7.0 (March 2023)

Welcome to the Zowe Version 2.7.0 release!

See New features and enhancements for a full list of changes to the functionality. See Bug fixes for a list of issues addressed in this release.

Download v2.7.0 build: Want to try new features as soon as possible? You can download the v2.7.0 build from Zowe.org.

New features and enhancements

Zowe Version 2.7.0 contains the enhancements that are described in the following topics.

find out more

To watch a demo of new enhancements and updated features included in a Zowe V2 minor release, look for the release demo recording in the Zowe V2 System Demo playlist on YouTube.

System demos are typically held the week after a minor release becomes available. Check the Open Mainframe Project Calendar for the latest schedule.

Zowe installation and packaging

The zowe authorized loadlib now contains a new ZIS plug-in as a member named ZWESISDL. This is the ZIS Dynamic Plug-in, and exists for use by other plug-ins that wish to access zowe-common-c utilities at runtime without needing to statically link them in the other plug-in. This plug-in must be referenced in the ZWESIP00 parmlib member before use. The samplib for ZWESIP00 now references this ZWESISDL member and it is recommended that you update your ZWESIP00 member using the samplib if you need to use this plug-in.

Zowe Application Framework

ZSS

A new ZIS plug-in, ZISDYNAMIC, is available within the LOADLIB as ZWESISDL. This plug-in allows for ZIS plug-ins to access utility functions of the zowe-common-c libraries without needing to statically build them into the plug-in itself.

New REST endpoint that maps distributed username to RACF user ID.

Zlux Editor

Added the feature to copy the line content and copy URL link to open a file at a specific line.

Zowe API Mediation Layer

The API ML now supports additional keyring types (#2799) (952bf2b), closes #2799.

OIDC info is now available via webfinger (#2757) (71e88ba), closes #2757.

The API Catalog can now be configured to hide service information (#2743) (2fbbc65), closes #2743.

Zowe CLI

Zowe CLI (Core)

Added support for a CLI-specific environment variable file for users who are not able to set system environment variables. (#1484)

Added support for downloading job spool content in binary and record formats so you have more options in how to view results. (#1607)

Zowe CLI Imperative Framework

Added the ~/.<cli_name>.env.json file to provide environment variables to the Imperative framework during Imperative initialization. This allows sites without environment variable access to specify process specific environment variables. (#943)

Added ProfileInfo.removeKnownProperty to delete profile properties to use as an alternative to the existing ProfileInfo.updateKnownProperty to update a property with an undefined value. To do so, allowed type IProfArgValue to be of type undefined to support removing properties more easily. (#917)

Zowe Explorer

Added Job search label to the Jobs tree to display the current search query. (#2062)

Added feature to copy datasets (partitioned datasets, sequential, members across partitioned datasets) with multi-select capabilities. (#1150)

Bug fixes

Zowe Version 2.7.0 contains the bug fixes that are described in the following topics.

Zowe installation and packaging

When zwe components install detects that the given component is already installed, you will get a message to run zwe components upgrade.

Launcher parameters such as shareAs could not be customized globally due to zowe.launcher schema being wrong with some parameters nested inside another.

Launcher parameters within an individual component were not documented to exist despite the launcher allowing per-component customization.

zwe detects and warns against nodejs lower than version 14 (due to end of life of v12).

Tracing and writing to log files would not work for component scripts when zowe.useConfigmgr=true.

Zowe Application Framework

Zlux App Server

Explicitly prefer ipv4 dns results to be compatible with node 18 since it switched to prefer ipv6 without configuration. This behavior can be cusomized via components.app-server.dns.lookupOrder='ipv4' or ipv6. It defaults to ipv4.

ZSS

Fixed /unixfile/metadata not working when URL encoded spaces were present in file names.

Zlux Editor

Added a few rules for JCL syntax highlighter.

Set USS path to correct directory, when opening the directory or file in new browser tab respectively.

Getting 400 BAD REQUEST in the browser when opening the file or data set in a new browser tab.

When opening New File, editor keeps on using the earlier opened file and its model.

Zowe API Mediation Layer

Updated keyring config (#2828) (c1e1cc9), closes #2828.

Ran gateway instances with own cache storage (#2807) (4d08707), closes #2807.

Fixed stack overflow during cleaning websocket client (#2815) (376f818), closes #2815.

Fixed support of different type of keyrings in proper format (just two slashes) (#2687) (dfb0168), closes #2687.

Addressed WebSocket connection failure (#2805) (232bade), closes #2805.

Enabled Periodical clean of the connection pool (#2797) (7058290), closes #2797.

Recognized profile settings (#2789) (adf5ea5), closes #2789.

Eureka peer connections loop (#2775) (85a27ea), closes #2775.

Reduced the number of WARN logs (#2780) (df0243f), closes #2780.

Fixed bug in Wizard static onboarding method (#2773) (c8d7c66), closes #2773.

Improved handling of SSL errors (#2744) (bb9792b), closes #2744.

Zowe CLI

Zowe CLI (Core)

Enabled option to download output from a submitted job with the -d flag. The -e flag now enables changes to file extension as originally intended. (#729)

Changed default value for modify-jobs option in the Zowe jobs command group to 2.0. This change results in calls to z/OSMF becoming synchronous, and a successful response from the modify, cancel, and delete commands indicates the requested action was completed successfully. (#1459)

Fix in employing --context-lines option for all diff/compare commands. Fixed broken --seqnum option implementation. (#1529)

Updated Imperative to include bug fixes in version 5.8.2.

Zowe CLI Imperative Framework

Fixed --help-examples option failing on command groups. (Zowe CLI #1617)

Fixed npm not found on zowe plugins install when using daemon mode in Windows. (Zowe CLI #1615)

Fixed web help not showing top-level options like --version for the zowe command. (#927)

Removed --help-examples option from CLI help for commands as it only applies to groups. (#928)

Zowe Explorer

Fixed issue where job search queries were not working properly when favorited. (#2122)

Fixed issues where document changes may fail to upload if the environment has a slow filesystem or mainframe connection, or when VS Code exits during an upload operation. (#1948)

Vulnerabilities fixed

Zowe discloses fixed vulnerabilities in a timely manner giving you sufficient time to plan your upgrades. Zowe does not disclose the vulnerabilities fixed in the latest release as we respect the need for at least 45 days to decide when and how you upgrade Zowe. When a new release is published, Zowe publishes the vulnerabilities fixed in the previous release. For more information about the Zowe security policy, see the Security page on the Zowe website.

The following security issues were fixed by the Zowe security group in version 2.6.

  • CVE-2022-40159
  • CVE-2022-42252 (BDSA-2022-3105)
  • CVE-2022-31159
  • CVE-2022-24999 (BDSA-2022-3375)
  • CVE-2022-31690 (BDSA-2022-3109)
  • CVE-2022-31692 (BDSA-2022-3106)
  • BDSA-2022-2580
  • BDSA-2022-2582
  • BDSA-2022-2583
  • CVE-2022-40151 (BDSA-2022-2580)
  • CVE-2022-40152 (BDSA-2022-2582)
  • CVE-2022-3517
  • CVE-2022-37603 (BDSA-2022-3812)
  • CVE-2022-37601 (BDSA-2022-3814)
  • CVE-2022-37599 (BDSA-2022-3811)