Contents

JIRA Reference

Scope

Module

Story Description

AMP-757

Limit Shipment Batches to one carrier

Shipping

Within Shipment Batches, each batch is now limited to one shipping carrier.

AMP-834

Adding the "Created By" column to the Weight Events by Month

Reports

Within the Weight Events by Month report, a new column is added to display the user who created the weight event.

AMP-1017

Updates made to the Registration Renewal/Amendment forms

Client Portal

Within the Registration renewal and amendment forms, the copy displayed under the consent section has been updated to represent Ample Organic’s terms and conditions more accurately.

JIRA Reference

Scope

Story Description

AMP-663

Output encoding CSVs for vulnerabilities

Through CSV injection, malicious commands could be executed on a victim’s computer, gain unauthorized access, or exfiltrate data that the victim has access to.

This security update encodes all CSVs for vulnerabilities in report generation for the following fields

= symbol is replaced with [EQUAL]

+ symbol is replaced with [PLUS]

@ symbol is replaced with [AT]

AMP-664

Validations for user-inputted fields

The following user-inputted fields now have a backend validation that contains a deny list [<, >, =, \]

AMP-668

The frameable response added to combat clickjacking

Implemented “Content-Security-Policy” (CSP) header to be used with the ‘frame-ancestors’ directive to restrict framing.

This security update added the CSP header to every response header to prevent possible clickjacking.

AMP-890

Restricting file types for image and document uploading

Within Ample Organics, there are no restrictions to the file types that the user can upload.

For image uploads, the following extensions are accepted (JPG, JPEG, PNG, PDF).

For file/document uploads, the following extensions are accepted (DOC, DOCX, ODT, ODS, PDF, XLS, XLSX, TXT, CSV).

JIRA Reference

Scope

Module

Story Description

AMP-884

Fix sorting and pagination logic for Sales Channels

Settings

When an environment contains more than 25 Sales Channels, the sorting functionality is not working as expected on the different pages.

This bug fix resolves the issue of the sorting applied on different pages of Sales Channels.

AMP-933

Disable the ability to return orders multiple times

Orders

When an order has been placed and shipped, the CSR can use the “Return Order” functionality for anything that is returned.

This bug fix prevents the ability of a CSR to return the order multiple times.

AMP-937

Fix the rounding issue when performing Mass Packaging Runs with the “Set Quantity Total” option

Production

When a user is performing a Mass Packaging Run, the EA Unit Net Weight and Total Weight Packaged should be calculated the same regardless of whether they use the “Set quantity per EA Unit” or the “Set quantity Totals” option.

This bug fix increases the number of decimals used during calculations for a more accurate total weight reduction.

AMP-938

Disable the ability to re-set picking when no bottles are picked

Orders

When an order has been placed and a bottle has been picked, the CSR can use the “Reset Picking” functionality to unpick the bottle.

This bug fix removes the “Reset Picking” functionality if the order does not contain any picked bottles.

AMP-1022

Fix Total Grams Orders when Prescription Deduction is updated

Dashboard

Within Ample Organic’s dashboard, the Total Grams Ordered displays the total amount of grams (prescription deduction from each product) per day. If the prescription deduction is updated, the dashboard is reflected by using the updated Prescription Deduction values.

This bug fix ensures the dashboard is using the original Prescription Deduction of the product at the time of purchase.