Regular channel changelog version 19722.7

IAM-9395: Table columns are now resized uniformly across the Advanced Identity Cloud admin console.

IAM-9429: If your production environment is configured for deferred release, you can use the new /environment/promotion/promote endpoint to check if running a promotion will trigger a release upgrade.

IAM-9516: The tenant administrator profile page now prompts for re-authentication when adding or removing an MFA device.

OPENIDM-19400: New Prometheus metric for the availability of connector servers, for example:

OPENIDM-20341: Identity management scripts now natively support Base64 encoding using the btoa (encode) and atob (decode) global script bindings.

OPENIDM-20790: The openidm/sync/mappings endpoint now supports paging using either offsets or cookies.

OPENIDM-20933: Improved task scanner exception handling. If the task scanner encounters a task that results in an exception, it now aborts only that task and continues processing the remaining tasks. Previously, the scanner would abort the entire process when any task caused an exception.

OPENIDM-20937: New provisioner metric idm_icf_pending. Includes all the same tags as idm_icf*.

OPENIDM-21170: Metrics for router filters now use router_filter for the metric name and include a name tag to identify the specific filter.

OPENIDM-21171: Metrics for managed identity script hooks now use managed-script-hook for the metric name, object to tag the identity object, and script-hook to tag the script hook.

OPENIDM-21172: Metrics for custom endpoints now use the new custom_endpoint metric name and include a name tag based on the custom endpoint configuration name after the hyphen. For example, a custom endpoint configuration endpoint-onboardCustomer.json will generate metrics with a name tag/label of "onboardCustomer". The policy service makes use of an internal scripted endpoint based on the file policy.js, and its metric name is policy-js.

OPENIDM-21233: The openidm/health/ready endpoint has been enhanced to include the number of waiting requests. A new set of metrics have been added to provide a historical accounting of IDM health.

FRAAS-28885^[1]: ESV secret useInPlaceholders attribute is now taken into account by promotion integrity checks.

IAM-9466: Annotation comments added to sub-nodes are now saved correctly.

IAM-9496: The tooltip in journey comments now correctly displays the creator’s name without overflow.

IAM-9527: The hosted account pages logo now correctly uses the height specified in the theme.

OPENICF-3277: The SaaS REST connector no longer throws a NullPointerException when attributes are missing in the request payload.

OPENIDM-20525: The cn and telephoneNumber schema for alpha_user and bravo_user are now scope: public and searchable: true. This schema change applies to tenants created on or after December 3, 2025. Existing tenants are unchanged.

OPENIDM-20863: Default values for multivalue mappings are now copied by value to prevent unintended mutations during runtime.

OPENIDM-21421: Updating the configuration of an inactive provisioner no longer throws an IllegalStateException.

OPENIDM-21454: Every failed record from a live sync is now stored in the dead-letter queue with a unique entry ID.