Platform
v4.5 Release Notes
This section contains the release notes for XMPro v4.5 platform, providing information about new features, improvements, and bug fixes across all core products.
Caution
Do not use v4.5.4 if you use spaces in entity names in App Designer. See Known Issues for details.
Warning
Security update: Mitigate high-severity vulnerabilities by upgrading all products to v4.5.1+.
Breaking change: v4.5.4 contains a breaking change to the Azure Terraform deployment.
Known Issues
| Product | Description | Reported | Fixed |
|---|---|---|---|
| App Designer | Team Support 15739: Alert Action button not working as expected when an Action is also defined | v4.4.16 | v4.5.4 |
| App Designer | Bug 20828: Assigning or Sharing a recommendation alert results in an error message when using the Alert Action Block | v4.5.0 | v4.5.3 |
| App Designer | Bug 21266: Data Grid is no longer converting datetimes from UTC time to local | v4.5.0 | v4.5.3 |
| App Designer | Team Support 16872: Data Grid header filter does not apply local timezone formatting like it does to the columns data | v4.4.22 | v4.5.4 |
| App Designer | Team Support 16939: Recommendation Version misleads to a different version on Title Modification | v4.5.3 | v4.5.4 |
| App Designer | Team Support 17330: New input validation restrict previously valid entity names that contain spaces, affecting adding or editing data sources at design-time. | v4.5.4 | v4.5.5 |
| Data Stream Designer | Team Support 16609: Removing 'View Collection' right causes errors, but including it exposes Collection secret | v4.5.1 | v4.5.3 |
| Package Manager | Team Support 15214: Sort Index does not save on Sub Groups | v4.4.19 | v4.5.4 |
| Stream Host | Team Support 16822: Stream Host SignalR connection interruptions require manual intervention to restore connectivity | v4.4.22 | v4.5.4 |
| Stream Host | Team Support 16827: Data Stream Agent continues polling after unpublish with "Error Polling - No Agent instance yet" errors | v4.4.22 | v4.5.4 |
v4.5.5
Date Released: 5 Dec 2025
| Change Type | Description |
|---|---|
| Security |
Product security and stability: We've mitigated a high security vulnerability:
|
| Fix | Team Support 17330: New input validation restrict previously valid entity names that contain spaces, affecting adding or editing data sources at design-time: When you add or edit data sources in App Designer, entity names containing spaces (such as "SQL Query") are rejected by validation, preventing you from saving previously valid configurations. The overly restrictive input validation introduced in v4.5.4 has been removed. Entity names now accept spaces and other characters that match database naming requirements, restoring the ability to use naming patterns that were valid in earlier versions. |
v4.5.4
Date Released: 26 Nov 2025
Caution
Do not use v4.5.4 if you use spaces in entity names in App Designer. See Known Issues for details.
| Change Type | Description |
|---|---|
| Security |
Product security and stability: We've mitigated security vulnerabilities and implemented comprehensive security hardening across the platform:
|
| Feature | Windows Server 2022 deployment capabilities: Introduced a one-click Windows installer that automates the complete deployment of XMPro platform components (Subscription Manager, App Designer, Data Stream Designer, and Stream Host) in under 30 minutes, including all prerequisites, database migrations, IIS configuration, and SSL certificate setup. The installer supports multi-server deployments and air-gapped environments, with comprehensive validation and automated rollback capabilities. |
| Deployment |
Azure Terraform Deployment Enhancements Providing enterprise-grade security, flexibility, and compliance:
|
| Enhancement |
Deployment At Scale - Enhanced Authentication:
|
| Enhancement | Team Support 16908: Data Grid Override Values from Data Source: The Data Grid now supports override values from data sources in "Batch with External Save" mode. You can now configure override values (such as BusinessRoleId) that are automatically included in insert and update payloads, ensuring data integrity when saving grid data externally. |
| Enhancement | Team Support 17151: Recurrence Schedule Handling After Stream Host Restart: When a Stream Host restarts, Data Streams wait for their next scheduled occurrence rather than executing immediately, ensuring predictable execution patterns and not overloading the Stream Host. Execution behavior examples were added to the Recurrent Data Streams article. |
| Fix | Package Manager:
|
| Fix | Team Support 15739: Alert Action Button Execution Order: When you configure an Alert Action button under the Recommendations block with both a dialog action (like "Assign This Recommendation Alert") and a custom action (like navigating to a page or updating a data source), the custom action executes before the dialog opens, making the Alert Action control unusable. The operation order has been corrected so that the dialog now opens first, allowing you to complete the dialog interaction before any custom actions execute. |
| Fix | Team Support 16822: Stream Host SignalR Connection Stability: When network issues occur, you experience SignalR connection interruptions requiring manual intervention to restore connectivity to the Data Stream Designer. SignalR connections now automatically reconnect when network interruptions occur using stateful reconnection, eliminating the need for manual intervention and maintaining your connection to the Data Stream Designer during temporary network issues. |
| Fix | Team Support 16827: Data Stream Agent Polling Error After Unpublish: When you unpublish a recurring Data Stream that contains polling agents (such as SQL Context Provider), the Stream Host continues attempting to poll and reports "Error Polling - No Agent instance yet" errors. This creates confusion and unnecessary error logs in your Stream Host. The Stream Host now terminates all polling operations when a Data Stream is unpublished, ensuring that agent instances are properly cleaned up and no further polling errors occur after unpublishing. |
| Fix | Team Support 16872: Data Grid Header Filter Timezone Formatting: Date filters in Data Grid headers display dates in UTC format while the grid columns show dates in your local timezone, with inaccurate results. Date filters in Data Grid headers now apply the same local timezone formatting as the grid columns, ensuring consistency between what you see in the cells and what you can filter by. |
| Fix | Team Support 16939: Recommendation Version Navigation on Title Modification: When you modify a recommendation title and click Save, the application unexpectedly navigates you to a different recommendation version instead of staying on the current version, causing confusion and making it difficult to verify your changes. The Save operation now maintains your current recommendation version context, allowing you to verify your updates without losing your place in the workflow. |
v4.5.3
Date Released: 29 Sep 2025
| Change Type | Description |
|---|---|
| Security | Enhanced Security Framework: Significant security hardening across the XMPro platform, including protection against clickjacking and reverse tabnabbing attacks, improved error handling and input validation, and resolution of multiple medium-severity vulnerabilities in core dependencies. We've implemented comprehensive security header enforcement across all API controllers in the Application Designer (AD), Data Stream Designer (DS), and Subscription Manager (SM) components, upgraded JavaScript libraries to address known vulnerabilities, and enhanced cookie security attributes. Additional improvements include container-level security updates and strengthened endpoint protection to prevent unauthorized resource enumeration. |
| Enhancement | Deployment At Scale - Enhanced validation and error reporting:
|
| Fix | Bug 20828: Assigning or Sharing a recommendation alert results in an error message when using the Alert Action Block: When you assign or share a recommendation alert using the Alert Action Block, you encounter an error "Unable to assign Recommendation" that prevents the operation from completing. |
| Fix | Bug 21266: Data Grid is no longer converting datetimes from UTC time to local: Date values displayed in Data Grid are shown in UTC time instead of being converted to your local timezone, making it difficult to interpret timestamps correctly. |
| Fix | Team Support 16609: Removing 'View Collection' right causes errors, but including it exposes Collection secret: When you remove "View Collection" permission from a user who should have read-only access to some data streams (to hide the Collection secret), they encounter an error "Unable to fetch Devices" when viewing a category that contains published data streams. |
v4.5.2
Date Released: 15 Aug 2025
| Change Type | Description |
|---|---|
| Feature | Azure Terraform deployment capabilities, replacing previous manual deployment processes with an automated, streamlined infrastructure provisioning experience and delivering major improvements to Azure deployment along with complete documentation. |
v4.5.1
Date Released: 28 Jul 2025
| Change Type | Description |
|---|---|
| Security |
Product security and stability: We've mitigated several high-severity vulnerabilities by upgrading the corresponding NuGet packages:
|
| Deployment |
Container-Based Enhancements:
|
v4.5.0
Date Released: 20 Jul 2025
Common
| Change Type | Description |
|---|---|
| Feature | Containerized Deployment: Both App Designer and Data Stream Designer can now be deployed as containers using Docker and orchestration platforms like Kubernetes. This containerized approach provides consistent deployment environments, improved scalability, and simplified infrastructure management. As an administrator, you can now deploy XMPro applications using modern container orchestration tools, enabling easier scaling, rolling updates, and integration with cloud-native infrastructure while maintaining environment consistency across development, staging, and production. |
| Feature | Deployment At Scale: A comprehensive set of REST APIs for managing application deployments across enterprise environments. These APIs provide programmatic access to export and import applications, manage Git repositories, handle deployment dependencies, and control access through new ManageDeployment permissions with secure CORS configuration. This means you can now automate your deployment processes, integrate XMPro with CI/CD pipelines, and manage large-scale deployments programmatically rather than through manual processes. |
App Designer
| Change Type | Description |
|---|---|
| Enhancement | Enhanced Expression Component: The Expression component can now read data from multiple parent components simultaneously. Previously, expressions were limited to reading from a single parent, which restricted your ability to create complex calculations and data relationships. This enhancement allows you to build more sophisticated expressions that combine data from multiple sources in your application. |
| Fix | Survey Archiving Display: When you archive a survey in a recommendation, the survey would continue to appear active until you manually refreshed the page. This was confusing as it suggested the archiving action hadn't worked. The survey block now updates its display state immediately when archived, providing instant visual feedback that the action was successful. |
| Fix | Timeline URL Navigation: When you click on timeline entries to navigate to specific time periods or events, the URL navigation wasn't working properly, leaving you on the same view regardless of your selection. Timeline navigation now works correctly, allowing you to bookmark specific time periods and navigate directly to timeline events via URL parameters. |
| Fix | Email Notification Links: When you receive email notifications about alerts, clicking the links in the email would take you to the standard alert view instead of the specific alert context. Email notification links now direct you to the appropriate alert view with proper context, making it easier to act on notifications directly from your inbox. |
| Fix | Tree Grid Selection Persistence: When you configure a Tree Grid with multiple selection enabled and set default selections, the defaults wouldn't persist after page load. You would have to manually reselect items each time you visited the page. Tree Grid controls now properly retain their multiple selection defaults on page load, maintaining your configured selections. |
| Fix | Data Grid DateTime Filters: When you set up a Data Grid with DateTime columns, the row filter options didn't match those available for Date columns, limiting your filtering capabilities. DateTime columns now have the same comparison operators as Date columns, giving you consistent filtering options across different date-related data types. |
| Fix | Data Source Field Sorting: When you configure data sources in App Designer, the field list wasn't sorted alphabetically, making it difficult to find specific fields in large datasets. Data source fields are now sorted alphabetically, improving the designer experience when working with complex data structures. |
| Fix | Template Category Persistence: When you assign a template category to an application, the category would sometimes disappear or not save properly. Template categories now persist correctly, ensuring your application organization and categorization remains intact. |
| Fix | Validation Groups: When you use validation groups in App Designer, various issues could occur that prevented proper validation behavior. Validation group functionality has been improved to work reliably across different component configurations. |
| Fix | Notes Auto-Update Prevention: When you work with notes in recommendations, notes would automatically update without prompting you, even when notes were null or previously saved. This could lead to unintended overwrites of your content. Notes now only update when you explicitly save them, preventing accidental data loss and ensuring your notes remain under your control. |
| Fix | Application Name Translations: Application names were inconsistently translated across different products, with some showing incorrect or misleading translations (particularly affecting Portuguese-Brazil). Application names now display consistently and accurately across all products and locales. |
Data Stream Designer
| Change Type | Description |
|---|---|
| Fix | Timeline Form Updates: When you use agents in your data streams, timeline views wouldn't show form updates properly, making it difficult to track changes and modifications. Timeline components now correctly display form updates when agents are involved, providing complete visibility into your data stream modifications and agent interactions. |
Subscription Manager
| Change Type | Description |
|---|---|
| Fix | Language Dropdown Population: When you access the profile settings, the language dropdown would intermittently appear empty, preventing you from changing your language preference. The language dropdown now populates consistently, ensuring you can always modify your language settings when needed. |
| Fix | Company Request Rejections (Non-English): When your system is configured for non-English languages, you were unable to reject company subscription requests, limiting your ability to manage subscriptions in localized environments. Company request rejections now work properly across all supported languages. |
| Fix | Product Description Translations: Product descriptions in Subscription Manager weren't being translated, showing only English text regardless of your selected language. Product descriptions now display in the appropriate language based on your locale settings. |
| Fix | Search Criteria Spacing: When you perform searches in Subscription Manager, extra spaces were being added to search criteria results, affecting the display formatting and potentially impacting search accuracy. Search results now display without unwanted spacing. |
| Fix | Settings Blade Translation Coverage: Various text elements in the settings blade weren't translated, creating an inconsistent user experience in non-English environments. Missing translations have been added to provide complete localization coverage in the settings interface. |
| Fix | Home Page Subscription Messages: Subscription access messages on the SM home page weren't translated, displaying only in English regardless of your language preference. These messages now appear in the appropriate language based on your locale settings. |
| Fix | Password Change Confirmation: When you change your password, the confirmation message wasn't translated, appearing only in English. Password change confirmation messages now display in the appropriate language for your locale. |
| Fix | Spanish Layout Heading Issues: When using Spanish (es-ES) locale, headings weren't being translated correctly, causing display issues and confusion. Spanish headings now translate properly across all interface elements. |
| Fix | Email Template Address Updates: All email notification templates across the platform now use the correct company address. This ensures that automated emails sent from XMPro (including alerts, invitations, and notifications) display the proper contact information, improving professional communication with users and external stakeholders. |
Package Manager
| Change Type | Description |
|---|---|
| Enhancement | Settings Reordering: You can now reorder Groups and Settings within the Package Manager Settings Blade using drag-and-drop functionality. This allows you to organize your agent configuration options in a logical order that makes sense for your specific use case, improving the user experience when configuring agents. |
| Fix | File Type Support: You can now attach any file type when adding Resource references in the Package Manager. Previously, only specific file types were supported, which limited your ability to include custom documentation, configuration files, or other resources with your agent packages. This enhancement removes file type restrictions, giving you greater flexibility in packaging your integrations. |
| Fix | Crash Prevention: When working with connector packages, you previously encountered app crashes when deleting grid controls or creating new connector packages. The application would force close unexpectedly, losing your work. This issue has been resolved, and the Package Manager now handles grid deletions and connector package creation safely without crashing. |
NuGet Packages
Agent Development
No changes to XMPro.XMIoT.Framework.
Connector Development
No changes to XMPro.Integration.Framework, XMPro.Integration.Helpers, or XMPro.Integration.Settings.
Last modified: December 16, 2025