16.3.1 Patch Releases

The Denodo lineage scanner now supports SSL/TLS connections. You can upload truststore and keystore files directly when configuring a Denodo scan plan.

Databricks lineage scans scoped to specific catalogs now correctly limit file and path lineage to the catalog’s storage locations, preventing scans from collecting large volumes of unrelated external storage lineage.

Assets coming from Azure Blob File System are correctly recognized during metadata extraction.

Upgraded third-party dependencies in Lineage Scanning Service and Data Processing Engine for enhanced security and stability.

In self-managed deployments, encryption checks no longer return an INDETERMINATE state due to a missing key alias property.

Monitoring projects on catalog items from a local file system with Spark post-processing plans no longer incorrectly fail model validation.

Date values entered or pasted into ONE Data are now interpreted consistently across supported date formats.

The Stewardship widget now reliably shows all governance roles linked to a business term, instead of loading only some after a manual refresh.

Pushdown profiling of wide tables and views is now more resilient, avoiding intermittent failures and excessive connection-pool log noise.

Fixed an issue where the ONE Web Application could fail to start and remain in a reduced-availability mode due to an error in the job recovery process.

Monitoring metrics no longer display as NaN after switching an environment to maintenance mode and back.

Fixed an issue where Keycloak could fail to start after being upgraded from version 25 to 26 when realms were re-initialized.

Upgraded third-party dependencies in DPE and DPM for enhanced security and stability.

Database backup and restore operations now log their start time, making it easier to determine the exact window during which database connectivity was affected.

Added advanced encryption metrics to DPM, showing whether advanced encryption is enabled and how many connected DPEs have invalid encryption settings.

Upgraded Keycloak components and third-party dependencies for enhanced security.

Upgraded authentication libraries in ONE Web Application, Workflow Service, and Task Service for improved security.

Upgraded third-party dependencies in the following modules for enhanced security and stability: ONE Web Application, Data Processing Engine, Audit Module, Metadata Extraction Service, Lineage Scanning Service.

Reduced memory pressure in Data Processing Engine when processing large XML and JSON documents downloaded from object storage, preventing potential out-of-memory failures.

DQ evaluation on Spark no longer fails with ArrayIndexOutOfBoundsException during sample merging.

ONE AI rule indexing no longer fails entirely when a single rule cannot be processed. Previously, an unsupported variable type (such as FLOAT) on a single rule caused the entire indexing job to fail with a Detection data type of expression …​ failed. error, preventing all rule embeddings from being updated.

Improved SSIS lineage scanner performance and correctness: component queries are now filtered by pipeline_id, and source components are correctly scoped to the requested pipeline.

Mandatory term properties of type referenced object array and referenced object with the valueList:property trait now show the required field indicator (red asterisk) on term editing forms. Previously, the indicator was missing and the requirement was only surfaced as a validation error on publish.

Advanced encryption is now available for secrets passed from Data Processing Module to hybrid Data Processing Engine; standard encryption is considered obsolete. We recommend upgrading at your earliest convenience, see Advanced encryption between DPM and DPE.

Upgraded third-party dependencies in Data Processing Engine, Task and Workflow services for enhanced security and stability.

Metadata Management Module now becomes available reliably after upgrade in Ataccama Cloud environments, even when MinIO is briefly not ready to accept writes.

Improved MinIO stability and security in Ataccama Cloud environments.

Power BI lineage scans no longer stall between workspaces when scanning connections with many workspaces.

Oracle lineage scanner now supports databases using non-default character sets such as Central European or Cyrillic. Previously, scans failed with ORA-17056: Non-supported character set.

Scan plans for dbt connections now display the dbt logo instead of the SAP logo.

Improved database logging in Metadata Extraction Service for faster troubleshooting.

Metadata Management Module now clearly signals when it’s in maintenance mode. Previously, non-admin users would receive a misleading authentication error.

The Stewardship widget on glossary term pages now reliably loads all governance roles on first page load. Previously, the widget would show only basic stewardship information in certain cases until the page was refreshed.

Tasks Overview screen now loads correctly for users who have both the admin role and a custom governance role assigned in Keycloak, instead of failing with a MismatchedInputException error.

Catalog items in monitoring projects no longer intermittently display the record count of a previously viewed catalog item when navigating between them in Configuration & Results.

Filtering by keyword values now works correctly when the search text contains uppercase words such as AND, OR, or NOT.

Searching by indexed properties that belong to a parent entity type works as expected in search configurations.

Faster loading of user and role selection dropdowns in project notifications, observability settings, and DQ firewall configuration, especially in environments with many users.

Date filter inputs no longer change the entered date to an incorrect value in Ataccama Cloud Portal.

Profiling jobs with regex-based detection rules no longer get stuck on columns containing large text values. The maximum input length for regex evaluation can be limited using the MAX_REGEX_INPUT_LENGTH DPE property.

Improved system validation performance and resource management.

System validations correctly respect the configured allowed window constraint.

Upgraded third-party dependencies in DPE for enhanced security.

When selecting an attribute on the home datastore, the diagram now filters to show only datastores connected to that attribute. This option is auto-enabled for large diagrams; you can manage it in the view settings.

Faster attribute display and transformation context loading on large lineage diagrams.

Data Stories visualizations now work correctly with ONE Data catalog items whose underlying tables are re-created during postprocessing exports.

AI rule indexing no longer fails for rules without input variables.

In Ataccama Cloud environments, JAVA_OPTS are correctly configured for DPE when custom trust certificates are enabled.