PingCentral 2.3 (April 2025)
FIPS-compliant mode now available
New PASS-7036
Administrators can now enable PingCentral to run in FIPS-compliant mode, which guarantees that all cryptographic algorithms and protocols meet the U.S. federal standard for security compliance.
To enable this option,
access the <PingCentral_install>/conf/application.propertiespingcentral.fips.enabled property value to true.
Learn more in Configuring PingCentral to run in FIPS-compliant mode.
PingCentral is currently running FIPS 140-3. Learn more about this version in FIPS 140-3.
Spring Security upgrade
Improved PASS-7022
Spring Security has been upgraded from version 5.3.31 to 5.3.39 to prevent future false-positive scan alerts. You can find more information in CVE-2024-38816: Path traversal vulnerability in functional web frameworks in the Spring documentation.
d3-color upgrade
Improved PASS-7031
The d3-color package has been upgraded from version 1.4.1 to 3.1.0, where the security vulnerability was fixed.
Promotion approval requests enhanced
Improved PASS-7033
Those who approve promotions can now determine if a promotion approval request is for a new or existing application by viewing the newly added detail on the Promotion Approvals page. Last Promoted or Last Updated now displays next to the date and timestamp that indicates when the application was last promoted or updated.