Isora v1.7.0
October 9th, 2025
Frontend Release v1.7.0
What's New
Unit Assessments
- Acknowledgment Workflow Visualization
- View this workflow in Step 5 of the Assessment Creation wizard, or when you Publish an assessment and return to Launch it later in the Survey/Assessment Launch Options.
- Use this screen to easily toggle the OU Head Acknowledgment requirement on or off.
UUID Copy & Search Enhancements
- Added a Copy UUID control in the sidebar for quick copying.
- Enhanced the Search Bar to support UUID lookups across multiple inventory entities:
Applications, Assets, Users, Units, and Locations.
Bug Fixes & Improvements
- Fixed an issue where the “Launch Assessment” button was disabled for previously published Unit Assessments — you can now launch published assessments as needed.
- Updated Assessment commands to replace the label “Survey” with “Assessment.”
- Clarified the “Effective Date” label for cancelled assessments.
API Updates
/api/vendorproductdeployments
- When creating a new contact in the Vendor Deployment wizard, the payload now includes the contact’s ID field, ensuring consistency with existing records.
Backend Release v1.7.0
What's New
Unit Assessment Notifications
- Added a new “Survey Completed” notification for Assessment Managers to stay informed as assessments are finalized.
UUID Copy & Search Enhancements
- Mirroring the Frontend update, you can now:
- Use the Copy UUID sidebar control.
- Search by UUID across Applications, Assets, Users, Units, and Locations.
Bug Fixes & Improvements
- Fixed an inconsistency with the “Require OU Head Final Acknowledgement” flag. It now always accepts a True/False value and defaults to True unless explicitly set to False in Launch Options.
- Auditor Role Access: Auditors can now view Application Assessments and Reports for their assigned units.
- Vendor Deployment Wizard: Fixed a bug that created duplicate contacts when selecting an existing one. You can now safely select or create vendor contacts without duplication.
API Updates
Active Exceptions Indicator
We’ve added a new active_exceptions field that provides quick visibility into any active exception requests for:
- Assets
- Third-Party Products
- Applications
This field:
- Returns a compact list of approved and active exceptions.
- Returns an empty array when no active exceptions exist.
Endpoints Updated:
GET /api/appsandGET /api/apps/{id}
GET /api/vendorproductsandGET /api/vendorproducts/{id}
GET /api/hostsandGET /api/hosts/{id}
- Example:
{ "id": string, "...": "...", "active_exceptions": [ { "id": string, "requester": { "id": string, "username": string, "first_name": string, "last_name": string }, "type": string, "type_info": { "id": string, "name": string, "description": string }, "expiration_date": string } ] }
/api/exceptionrequests
- Added a new optional Description text field.
- Example:
{ "id": string, "...": "...", "description": string // optional user-provided field }
/api/surveys
- Responses now include the assessment_type.id field.
- Example:
{ "id": string, "...": "...", "assessment_type": { "id": string, "name": string, "target": int }, }
API Documentation Enhancements
The API documentation now provides return data examples to help developers validate data types and payload structures more reliably.
Updated Endpoints Include:
/api/assessments, /api/assessmentinstructions, /api/risks, /api/riskscales, /api/riskscores, /api/riskcategories, /api/riskpriorities, /api/risktreatments, /api/riskscorecustomattributes, /api/riskscorelogs, /api/exceptionrequests, /api/exceptiontypes, /api/questions, /api/questionanswerchoices, /api/questionanswerresponsegroups, /api/questioncategories, /api/policies, /api/notifications
Access here: https://{instance_URL}/api/schema/redoc/