• The Accounts Payable Operations application facilitates invoice ingestion, invoice posting, and invoice payment with third-party applications using an integration framework.
• The Accounts Payable Operations application facilitates invoice ingestion, invoice posting, and invoice payment with third-party applications using an integration framework.
• Work on integration error tasks through the Accounts Payable Operations integration framework. You can access these tasks from the home page.
• Perform bulk imports of invoice and invoice line data through scheduled jobs.

• Currency groupings on invoice and invoice lines are transformed based on the user system locale settings.
• Send notifications to suppliers of duplicate invoices by matching the supplier name in an invoice with the supplier table.

• Process credit notes issued by suppliers using the Credit memo invoice type for a PO invoice or Non-PO invoice.
• Credit memo invoices can be created from the supplier collaboration portal.
• The pre-trained model framework is used Document Intelligence is enhanced to improve invoice extraction accuracy.

• Provide feedback at any stage of the workflow.
• Update the feedback responses directly from the source record by using the side-panel feature.
• View and manage the feedback workflows that are raised against the records from a centralized dashboard.
• View the change history, which enables a quick comparison of the pre-feedback and post-feedback.
• Reopen the feedback if the responses are deemed unsatisfactory.
• Monitor the feedback and follow up with the record owners through an intuitive dashboard.
• Collaborate effectively with the reviewer, respondent, and other stakeholders through a sidebar discussion chat.
• Initiate and link further actions as outcomes of the feedback, such as creating an issue or linking to an existing one.
• Configure a feedback integration setup for any record type, including the custom tables where you can define the table or record type to create feedback from.

Risk administrators can also add multiple RAMs for a single object. For example, a compliance case table can be assessed using separate criteria for IT and corporate compliance, which enables a comprehensive understanding of risks across different domains.

• Add controls from a control taxonomy by using the Create from control objective option during control assessment.
• Identify and create ad-hoc controls by using the Create control option when responding to risk mitigation tasks.
• Add the controls from control taxonomy by using the Create from control objective option when responding to risk mitigation tasks.
• Identify and map the risks from risk taxonomy by using the Create from risk statement option while defining the risk assessment scope.

• Use the Comments field to provide a brief response for the group factors in Risk Workspace. You can configure the comments from the group factors in the RAM form.
• Eliminate the need for assessors to navigate manually through the entire page to locate the areas that require attention. When moving to the next assessment stage on the risk assessment form, the application automatically scrolls to the unresponded factors.
• Reassign the in-progress assessments in bulk to new assessors in the absence of the current assessor. This feature helps to redistribute assignments, especially in cases of restructuring or emergency medical leave, and enables bulk reassignment as needed.
• Initiate a sidebar discussion for the risk event and issue record types. Your team gets a dedicated space to discuss events or issues. This space enhances the clarity and efficiency in the risk management processes.
• Use the Reviewer field on the risk response task page to inform the assessor about the reviewer's details.
• Use drop-down options for factor choices on the risk assessment form to enhance readability.
• Enable a horizontal layout for factor choices on the risk assessment form to minimize scrolling.
• Use a simplified navigation with a single breadcrumb trail from the advanced risk assessment homepage to the main page. Your team doesn't need to open multiple tabs.
• Use a vertical list view that is grouped by the related list for a manual, automated, and calculated metrics definition record.
• Collapse section headers within the advanced risk assessment to reduce scrolling on the advanced risk assessment page and optimize the screen space for accommodating more content.

• A description for the application configuration, primary features, and optional features.
• Shows primary features, optional features, and dependencies associated with AppV2.
• Shows the configurations and features available.
• Shows user scenarios when the install is blocked, the application configuration isn’t licensed, or primary and optional features aren’t licensed.

• Business applications by TCO score
• Business application TCO by cost type and planned disposition for FY:Q (Current quarter)
• Top 10 business applications with the highest cost for FY:Q (Current quarter)

• The Reopen AVITs if detected (sn_sbom_resp.reopen_avits_if_detected) system property is activated. This system property is activated by default.
• The AVIT with the associated vulnerability is detected again by a third-party integration's vulnerability scans or the component with the vulnerability is part of a subsequent SBOM upload.
• The substate of the Closed AVIT is not one of the following: Mitigation Control in Place, Not Affected, or False Positive. AVITs with these substates are not reopened by the system property.

Deactivate the system property only if you do not want Closed AVITs to reopen automatically.

• Update the state of AVITs.
• Request an exception in bulk.
• Mark AVITs as false positive in bulk.
• Assign AVITs to an assignment group for remediation.

• XML and JSON formats are supported for CycloneDX up to and including version 1.4.
• JSON format is supported for SPDX up to and including version 2.3.

Performance enhancements in the SBOM Workspace for the BOM Entities and Components pages. You might experience faster load times for the Home and Components modules in the SBOM Workspace.

Enhancements to the (OAuth) authentication credentials on the GitHub Configuration page.

• HTTP Source request and Source response details for Dynamic Application Security Testing (DAST) scans are displayed on the HTTP Request/Response related list.
• Solution recommendations from Veracode are displayed on the Findings related list.
• HTTP Source request, Source response, and recommendations are displayed on the Details tab In the Vulnerability Response workspaces.
• The Description column is supported on the Application Vulnerable Item [sn_vul_app_vulnerable_item] table.

• Invicti Application List Application - Import applications that are scanned by Invicti.
• Invicti Scan List Integration - Import data about the date and time a scan was run.
• Invicti Application Vulnerable Item Integration - Import Invicti vulnerable item data.

• Added PURL validation for the OSV.dev integration. Invalid PURLs are ignored during file processing.
• If available, OSV.dev fixed version information is displayed on a related list on the AVIT record.
• SBOM application vulnerable items (AVITs) show component information in enhanced SBOM workspace views.
• Disabled Remediation Task rules for SBOM AVITs in the SBOM Workspace. You can edit rules for SBOM AVITs in the Vulnerability Manager Workspace in Vulnerability Response.
• Expanded SBOM Workspace access enables you to view the SBOM inventory with the SBOM Core application.

After upgrades and deployments of new applications or integrations, run quick start tests to verify that Application Vulnerability Response works as expected. If you customized Application Vulnerability Response, copy the quick start tests and configure them for your customizations.

Configure new fields in the dependency assessment with the admin role and mark them as required or optional using the UI policy. In addition to UI policy configuration, you can also customize the UI view and UX view rules for the BIA dependency and BIA dependency groups. It offers you the flexibility to modify the display and functionality of the dependency assessment based on your specific requirements.

In previous releases, the Required Recovery Timeframe validation was required for all impact categories. However, starting with version 6.1.x of the BCM application, it's now required only for the Applications impact category. This change is controlled by the UI policy.

Manage multiple recovery tasks by editing various fields, including State, Actual start, Actual end, Assigned to, and Assigned group at the same time in the recovery tasks list. It helps the event task users update multiple tasks simultaneously, saving time and effort. If a task was closed by mistake, the event task users with edit access to the event record can reopen it for editing and make necessary corrections, maintaining accuracy and completeness in the recovery process.

Additionally, the Closed failed task state has been implemented on the Event task form. When a task is transitioned to the Closed failed state, the entire exercise is paused until the user with edit access to the event record unblocks the task and changes its state to Closed complete. The event task users can then resolve any issues or failures before continuing with the exercise.

• Display the streamlined and responsive Customer Activity component in the CSM Configurable Workspace. Enhancements include an updated date picker, customer activity time group headers and card layout, and new activity icons.
• Display the Generative AI-driven summaries for historical interactions instead of full transcripts.

After upgrades and deployments of new applications or integrations, run quick start tests to verify that Customer Service Management works as expected. If you customized Customer Service Management, copy the quick start tests and configure them for your customizations.

View and analyze costs for a Kubernetes cluster on cloud and narrow down your results by using various filters such as time period, cost type, and grouping options like Kubernetes cluster, Kubernetes namespace, and tag category.

• Create a space for your team to manage any kind of work such as projects, campaigns, or surveys.
• Create unlimited Boards to plan tasks and Docs to manage meeting notes and related documentation within Spaces.
• Organize Boards and Docs of a Space into folders.
• Associate Boards and tasks to organizational goals so that team members have direct visibility into the alignment of their work with overall strategy.

• Track work in the form of Tasks, Defects, or custom work item types. Some examples of custom work item types are Milestone, Meeting, and Activity.
• Visualize work in customizable List, Gantt, and Kanban views.
• Create custom fields for task records such as Dropdown, Date, Text, Label, URL, Reference and others.

• Create unlimited pages with rich-text formatting.
• Tag users to their action items by @-mentioning them.
• Insert media and URLs.
• Add reference to CWM tasks or other ServiceNow AI Platform records such as Issues, Incidents, or Risks.
• Collaborate with other users with the feature of live user presence.

• Use system-generated recommendations for a remediation task that is related to an issue. User responses are recorded in the action history of the remediation task.
• Use system-generated recommendations that are listed on the Details tab of an issue. You can refer to the top three recommendations when assigning an issue in the Assigned to field.

Editing activated policies is supported in Security Posture Control. Versions are tracked and version numbers are displayed on the policy record and its related test results in Configuration Compliance.

After upgrades and deployments of new applications or integrations, run quick start tests to verify that Configuration Compliance still works. If you customized Configuration Compliance, copy the quick start tests and configure them for your customizations.

• Access CMDB Data Manager from CMDB Workspace where it's built using UI Builder (UIB) components. CMDB Data Manager is now fully integrated into the CMDB Workspace.
• Use Data Certification in CMDB Workspace where it's built using UI Builder (UIB). Data Certification is now fully available by using the Certification policy type in CMDB Data Manager in CMDB Workspace.
• Remediate de-duplication tasks consistently and in bulk by creating libraries of de-duplication templates in CMDB Workspace. De-duplication functionality is now built using UI Builder (UIB) components and is fully integrated into the CMDB Workspace.

After upgrades and deployments of new applications or integrations, run quick start tests to verify that CMDB works as expected. If you customized CMDB, copy the quick start tests and configure them for your customizations.

• Update the state of CVITs.
• Request an exception in bulk.
• Mark CVITs as false positive in bulk.
• Assign CVITs to an assignment group for remediation.

After upgrades and deployments of new applications or integrations, run quick start tests to verify that Container Vulnerability Response works as expected. If you customized Container Vulnerability Response, copy the quick start tests and configure them for your customizations.

Connect new and existing products and services with the related assets and configurations by using the product instance identifier.

Link the install base items to an asset class, configuration item class, and product model class by using the Model Category field.

Synchronize the State field across both the asset class and install base class to maintain the consistency of states between both entities. The synchronization of the State fields depends on the states that you select in the life-cycle fields.

Comply with the Common Service Data model framework by establishing a link between the existing State field and the new life-cycle fields on the install base form.

Create an install base item by using the Specification field on the install Base form during order fulfillment.

Support life-cycle management workflows for sold products by using the fields that are added to the Sold products table.

Configure the metadata for the lead-to-cash entities by mapping the entities and configurations.

Use the lead-to-cash operations like Create Instance, Delta, Effect, and Commit Instance to compose and build workflows for a seamless flow of information between entities. To learn more, see LeadtoCashCore - Scoped.

Manage the life cycle of your sold products by activating the Customer Life Cycle Management workflows (com.snc.customer_lifecycle_mgmt_workflows) store application.

Update the existing products and services by triggering the sold product to order and the order to sold product flows. You use the Modify, Suspend, Resume, and Disconnect actions on the sold product related list on the accounts page to trigger this flow.

Change the current configuration of the sold product on the Configurator UI by performing the Modify action.

Make a definite or indefinite suspension of a sold product by using the Suspend action.

Restart the services of a disconnected or suspended sold product by using the Resume action.

Make the sold product inactive by disconnecting a sold product and its full hierarchy.

• Monitor the performance, security, and compliance of the digital workplace through the DEX Dashboard unified workspace.
• Monitor the performance and security of installed and web/SaaS applications on user devices.
• Monitor real-time performance metrics including CPU, memory, disk usage, and I/O read/write operations for comprehensive insights into system resource utilization.
• Monitor user activity, as well as identify and track active and affected users.
• Set criteria and thresholds that trigger alerts when performance metrics deviate from specified parameters, which facilitates effective system monitoring and management.
• Ensure comprehensive and accurate data collection by facilitating CMDB Population through Enhanced Discovery.
• Provide detailed tracking and management capabilities for software assets through software inventory.

• Ensure the consistent, secure, and compliant usage of the application by establishing guidelines and rules. These DEX policies enable you to minimize data breach risks, improve data quality and accuracy, and optimize application performance and availability.
• Evaluate devices based on predetermined sets of rules and criteria related to aspects like CPU usage, memory usage, IO usage, firewall status, network tests, network bytes, and logged-in users to assess performance, security, and compliance.

Establish a continuous communication channel for employees to enable them to easily access self-service options and receive timely notifications from the Service Desk.

• Conduct self-diagnostics including network speed tests and device health.
• Empower employees with timely notifications of vital announcements.
• Explore ServiceNow Employee Center for a wide range of functionalities and management capabilities.
• Enrich user interaction through chat-based support and prompt responses by integrating Virtual Agent.

• Use the Desktop Assistant dashboard to monitor device connections and user logins. Track the current Desktop Assistant version on devices, ensuring your team stays updated.

  The Desktop Assistant dashboard is also available as part of the Service Operations Workspace to enhance the user experience and provide enriched data for administrators.

• Use single-line uninstaller commands to facilitate cleaner file deletion and improve the upgrade process.

• See all your solution cards, ordered by severity, on the redesigned DPM Workspace homepage.
• Log in to DPM for the first time to see auto-generated solution cards based on your user name in certain tables. After your first login, you're encouraged to personalize your DPM homepage.
  Note:

  With the sn_dpm.dpm_admin role, you can update the homepage solutions table to tailor the solution cards that users see at the first login to the DPM Workspace (before personalization).

• Add or remove solution cards to personalize your DPM homepage. You can also adjust the Needs attention thresholds for each solution to see which needs the most attention. The severity levels are good, moderate, or severe.
• Your personalized list of solutions is kept in the dpm_home_page_item table so that they're displayed every time you log in. This table updates each time you personalize your homepage.

You can add and remove solution cards in any combination, but the total solution cards can’t exceed 1000 on the DPM homepage.

• Configure the user experience by showing or hiding the available item types in DPM:
  • Services
  • Technical services
  • Business services
  • Application services
  • Service offerings
  • Business applications
• Update the available item types table to hide or show solution types on the DPM homepage and in the personal portfolios. Examples of solution types are cmdb_ci_service and cmdb_ci_business_app.
  Note:

  When a solution type is hidden, that solution is omitted from the following areas of DPM:

  • The auto-generated solution card results.
  • The personalization options of add and remove items.
  • The set status conditions when updating thresholds.
  • The page filters.

• Find tables and BAPIs faster in the connected ERP system using AI Search.
• Create read operation entities using BAPIs or by the previous method of reading specified ERP tables on the system of record to retrieve data from the ERP system.
• Specify input and output parameters to customize the data you're reading or updating. ERP Canvas automatically includes required parameters in the query.
• Send data to update the ERP system using BAPIs.

• Edit the HTML and CSS source code
• Clear the entire canvas of content with a single click
• Configure cell border color, width, and style
• Configure image and video horizontal alignment

• The Include users field enables a campaign manager to specify an audience.
• The Frequency field includes the Once option.

• Access to all approval tasks in one place under My tasks on the Now Mobile app.
• View task details to approve or reject a request.

After upgrading and deploying new applications or integrations, run quick start tests to verify that Employee Center works as expected. If you customized Employee Center, copy the quick start tests and configure them for your customizations.

• Assign a group task to yourself
• Record the time taken to complete a task
• Handle part requirements
• Manage asset actions
• Access knowledge articles

• Patient Monitoring
• Patient Implant
• Surgical Instrument
• Clinical Device
• Lab Equipment
• Diagnostic Imaging
• Therapeutic Device
• Dental Equipment
• Operational Equipment

• Schedule complex multi-territory assignments where an agent might be responsible for multiple territories over a longer batch processing period.
• Assign tasks to agents regardless of whether they’re primary or secondary members of a single or multiple territories.
• Optimize task scheduling by defining the capacity of your agents or work type.
• Provide smoother intra-day operations and efficient resource allocation when a single agent might need to handle multiple territories within the same day or across different shifts.
• Use new objectives such as Maximize Assignment to Earlier Shifts, Minimize Highest Priority Task Start Times, and Minimize SLA Violation when you're creating a policy.
• Use the improved configuration process for batch and intra-day scheduling,which provides common settings for both types while maintaining specific configurations where needed. With this process, you can eliminate duplication and ensure an efficient setup.
• Improve your schedule accuracy and adherence and also reduce scheduling changes when intra-day is running through two new system properties.

• Enable dispatchers to run Schedule Optimization throughout the day as scheduling conditions change.
• Create crews that are based on territory memberships.
• View your contractor capacity by territory in the calendar view.
• View agents on the calendar by their availability in the territory.
• Create personal events for Field Service agents to show when they are unavailable for non-work order reasons like an appointment or a phone call they have scheduled.
• Change the amount of time shown on the calendar to time intervals of 15, 30, 45, or 60 minutes.
• Send messages to agents to discuss work order tasks.
• Make bulk updates for your calendar events to save time.
• Source one or more parts from a preferred stockroom or assignment group and then transfer them to your personal stockroom to ensure the prompt completion of work order tasks.

• Create territory-specific crews to streamline territory management, task scheduling, and resource allocation.
• Link multiple geographies to one territory by using a composite geography capability that simplifies the representation of complex areas and enables you to have more data management flexibility.
• Manage the territories, customized hour ranges, tasks, and agent schedules for your internal agents and contractors so that you can allocate your resources accurately.

• Create work order task summaries during any state of the work order task to track progress.
• Create task closure summaries when completing tasks on the mobile application to provide notes for future reference.

• Debit card dispute cases
• Credit card cases with incorrect billing

• Out of Box Catalogs: Order a variety of AWS, Microsoft Azure or Google Cloud Platform Out Of Box cloud resources directly from the Employee Center, including Linux/Windows VMs, load balancers, firewalls, Microsoft Azure functions, scalable web servers, DynamoDB databases, and S3 storage buckets. Use these Out Of Box Catalogs for Cloud Service requests and automation from Cloud Services.

  In addition, you can publish your own catalog items for all supported cloud providers. You can also publish legacy and custom catalog items from Cloud Provisioning and Governance to Employee Center.

  For more information, see Set up Amazon Web Services on Cloud Services Catalog, Set up Microsoft Azure Cloud on Cloud Services Catalog and Setting up Google Cloud Platform on Cloud Services Catalog.

• Domain separation: Use the domain separation feature, now supported in the Cloud Services Catalog application, to manage multiple domains securely and seamlessly.
• CSC Cloud Services request process: Use the Request processes and pages for ordering Cloud Services.
• Stacks management: Manage deployed cloud resources through intuitive categorization, sorting, and status filtering options on the My Stacks management page.
• Resources management: Discover and interact with resources, empowering ownership and management through designated operators on the My Resources management page.
• Integrations: Use Azure DevOps CICD Pipeline Integration or Ansible Integration.
• Cloud setup: Use Microsoft Azure, AWS or Google Cloud Platform for your Cloud setup.

• IBM WebSEAL TD
• Azure availability set
• NetApp Server and Cluster
• Generate Software Bill Of Material [SBOM]
• Bring Your Own License (BYOL) for AWS, Azure, GCP
• Database Administrator (DBA) report
• Citrix NetScaler load balancer
• Microsoft SQL Server Integration Services (SSIS)
• SQL Server Analysis Services (SSAS)
• SAP Sybase ASE DB Catalog
• AWS Certificate Manager (1.15.0)
• GCP Certificate Manager (1.15.0)
• Azure Key Vault certificate (1.15.0)
• Java KeyStore and Windows Certificate Store (1.15.0)

• Use Stream Connect Message Replication to replicate data between your local Apache Kafka environment and ServiceNow. With Stream Connect Message Replication, you no longer need a third-party replicator and can manage message replications from your ServiceNow instance.
• Use Stream Connect Message Replication to enable a MID Server to create the access certificates required to connect to the Hermes Messaging Service. The MID Server can automatically generate the necessary certificates, so you don't need to configure them manually.
• Send messages with an updated Kafka Producer step. Select a topic from a drop-down list and configure values for the message header.

• Submit catalog item [submit_catalog_item]
• Submit order guide [submit_order_guide]
• Mark when complete [mark_when_complete]
• Approval [sysapproval.approver]

You can quickly write drafts of knowledge articles based on cases, HR cases, or incidents with Now Assist. Generating article content with artificial intelligence (AI) enables agents to write efficiently as they address common user concerns. Articles can be created in CSM Configurable Workspace, Service Operations Workspace for ITSM, Agent Workspace for HR Case Management, Core UI, or in the Now Assist panel.

Use OpenShift on Linux for containerized MID Servers. The corresponding Linux docker recipe has been updated. The containerized MID Server can run rootless by using existing auto-scaling capabilities with persistent storage.

• View the team members with strong skills and those that need attention.
• Get an overview of different skills that your team members possess along and the number of people with each skill, plus the skills by team member.
• Help your employees use different tools provided by Employee Growth and Development such as learning, growth plans, mentoring to build new skills or to bridge existing skill gaps.

• Support for all Mobile Platform Washington DC features.
• Integration with Mobile Publishing so that admins can see their custom branded apps within the MAB UI.
• A push notification management category has been added to show which notifications are used for each mobile app.
• Automatic population of table fields in downstream records to streamline proper configuration.

• Unified configuration experience for both web-UI and mobile platforms in a centralized  location.
• Enhanced visualizations for charts and the introduction of a pie chart visualization.
• Compatibility with many data sources including ServiceNow® Usage Insights, ServiceNow® Health Log Analytics, ServiceNow® Performance Analytics indicators, and customized data sources.
• Ability to apply theming options, including the dark theme, by using variables to customize the look-and-feel of the  mobile dashboards. For more information, see the Accessibility information section found in these release notes.

• App generation
• Catalog item generation
• Feedback summarization
• KB generation
• Playbook generation

• Generate and update the case resolution notes through generative AI. The resolution notes provide a summary of the steps that were taken to resolve the case.
• Require your agents to write a minimum of 200 words on the case so that generative AI generates the resolution notes automatically.

Display reports according to the persona with different roles. Separate reports are displayed for the BCM Professional and IRM Professional users in the Operational Resilience application Home page.

Create an OT knowledge base to provide a self-service platform for OT knowledge users to store, share, and manage content that is about OT incidents.

Create a knowledge article directly from an OT incident record to save the information about an OT incident and its resolution.

Create a knowledge article in the Industrial Workspace to help point an article's contents to the needs and solutions that aren’t directly related to an OT incident.

Report a knowledge gap from an OT incident if you can't find the relevant knowledge articles about the incident.

Approve requests to publish or retire a knowledge article, as a knowledge manager, to keep the knowledge base up to date.

Assign feedback tasks, as a knowledge manager, to help ensure that the feedback task is addressed and the related knowledge article is updated.

• cmdb_ot_isa_viewer
• cmdb_ot_viewer
• sn_vul.close_vi_vg
• sn_vul.remediation_owner

Give your users the experience of secured Soft PIN enrollment. While enrolling for the Soft PIN verification, they can view the number of days in which the Soft PIN expires. While resetting the Soft PIN, users view the rules that their Soft PIN must comply with. Also, users get email and ServiceNow® Virtual Agent notifications when their passwords are about to expire.

As a Password Reset administrator, you can configure the Soft PIN expiration settings such as setting the number of days when the passwords expire, the frequency of sending password expiration reminder emails, and history policies on Soft PIN.

These settings are enabled by default even if you've upgraded Password Reset from the previous version.

View the security score for your Password Reset processes. Based on the score, you get notifications for potential configuration improvements to the processes.

While creating the Password Reset process, view security scores for the process. If you see any deviations between the maximum attainable and current scores, you get an email with an actionable list of recommendations to improve the configuration. You get informative messages indicating whether the process configuration is ideal.

Evaluate configurations for identification and verification steps. If your configurations are less secure, get process-wise actionable suggestions on how to improve the strength.

• Decision activities
• Archive processes
• Field picker

• Customize widgets to view the financial details, such as allocated budget, EAC, Variance, a breakdown of planned costs, and actuals to date by cost type.
• Export your Costs and Baseline comparison information as Microsoft Excel or CSV formats. Use these files to share the financial performance of your planning items to relevant business stakeholders, even if they don't have access to your ServiceNow instance.
• Create expense lines to capture any unplanned costs to meet your work requirements without associating them to any forecasted planned costs.
• Delete descoped cost plans using the row context menu icon () to manage your financials efficiently.
• Save your preferences to retain the customizations you have made, such as viewing or hiding columns and viewing time scope.

• Assign the highest and lowest ranks to the planning items using the Move to top and Move to bottom options respectively from the row context menu icon ().
• Delete planning items using the Delete option from the row context menu icon ().
• View and manage the item details quickly from the side panel using the Preview record icon () in the List view of the Prioritization tab.

• Add tags to your planning items to categorize them based on your requirement. Any tagging additions or removals made to a record are automatically synced across all views in the Planning page.
• Filter the planning items by the assigned tags.
• Use inline editing in the List view of the Prioritization tab for adding and removing the tags to your planning items.

• The type of the planning item is displayed on the item’s details page so that you can identify what the item is, such as a demand or a project.
• When creating a planning item, the Planned start date field and the Planned end date field are populated automatically with the Approved start date value and the Approved end date value respectively.

• Enable the Sync tags option on the Table Map form for each planning item table to synchronize the tags from alignment to the execution tables and vice versa. By default, the value is set to true. If there are any existing tags, the tags are automatically synced from alignment to the execution tables and vice versa.
• The Flow type mapping for planned dates of the Demand [dmn_demand] table is updated to both alignment to execution and execution to alignment.

• Repeating patterns​: Detects unnecessary repeating sequence of steps.
• Extreme duration: Identifies outliers to analyze records that fall outside the typical range of time to transition from one step to another.
• Extreme repetition: Identifies outliers to analyze records that fall outside the typical range of repetitions within the same step.
• Slow duration: Identifies situations where a cluster of records have similar durations and a higher average duration compared to other groups of records. This detector also offers a breakdown of the significance of the identified cluster, providing further insights into the root cause​.

• Ability to capture and share notes related to improvement opportunities directly. Notes have pre-filled contextual information including a tag referring to an improvement opportunity for quick sharing.
• View all the actions taken on improvement opportunities, such as notes, CIMs, automation requests, and saved filter sets.
• On a focused Project metrics dashboard, tracks a project's efficiency (average duration for completion) over time through a trend line and the distribution of records against the time taken for process completion through a histogram.

• From a particular node, view the statistics of all records arriving from a previous stage and all the records going to the next stage, which enables you to identify the immediate inflow and outflow of records without having to adjust the arc and node sliders in a huge graph.

Visualize the costs and analyze the total expenses for your organization’s strategies and goals using the Next Experience user interface in the Strategic Spend Tracking for PPM dashboard.

When you upgrade Strategic Spend Tracking for PPM to v1.1.0, the dashboard is automatically migrated to the Next Experience UI. You can access the new dashboard by navigating to All > Strategic Spend Tracking for PPM > Analytics. For more information on the Next Experience user interface, see Next Experience UI.

• Access and modify project details directly from the Details page without having to navigate through multiple views.
• View all the details related to a project in the Next Experience by enhancing the Details page.

• View financial details such as allocated budget, total latest costs (EAC), Variance (the difference between budget and EAC), breakdown of planned costs, and actuals to-date by cost type through customizable widgets.
• Share the financial performance of projects with relevant business stakeholders who might not have access to your ServiceNow instance by exporting project cost or baseline comparison information as Excel or CSV formats.
• Capture unplanned expenses that aren’t related to any projected planned costs by creating expense lines.
• Efficiently manage your financials by deleting any de-scoped cost plans.
• View, track, and link the purchase requests and their expenses for your projects with an integration solution of Financials with Advanced Work Assignment for Source-to-Pay Operations.
• Save user preferences to retain the customizations made to view or hide columns, time scope viewing, and so on.

Enable constituents to view a running summary and value of all requested benefits through the benefits summary widget in the Government Service Portal. The benefits summary widget displays the benefit and the estimated benefit amount that is determined by the eligibility criteria. Agents can also use the benefit summary widget to view the benefit breakdown when fulfilling social benefit requests in the Social Benefits Playbook workspace​.

• Reassign or unassign resource allocations using the row context menu.
• Drag and drop the work assignments among the users with same planning attributes to reassign work.

Trigger attended bot processes, also known as attended automations, from the ServiceNow forms, playbooks, workspaces, and so on.

To trigger this bot process from the ServiceNow form, select the Enable Embedded Task Automation check box in the Attended Bot Process form. After enabling this check box, two additional tabs, Process Field Parameters and Attended Configuration, are available on the Bot Process form. For more information about the Bot Process form, see Bot Process form in RPA Hub.

On the Process Field Parameters tab, create dynamic parameters that are used in the bot process. Process field parameters are used for setting a value or getting the value of a field on a particular form. For more information about creating process field parameters, see Create a process field parameter in RPA Hub. You can also create a parameter from the Field Parameter Mappings tab by selecting the Create parameter button from the Attended Configurations menu. For more information, see Map a table field to a bot process field parameter in RPA Hub.

In the RPA Hub workspace, create an attended configuration record. For more information about creating an attended configuration record, see Create an attended configuration record in RPA Hub.

On the Field Parameter Mappings tab, map the form fields to the process field parameters that are used in the automations. This process enables an easy data flow during the execution of a bot process. For more information about mapping field parameters, see Map a table field to a bot process field parameter in RPA Hub.

Activate the attended configuration record to trigger the attended bot process. For more information, see Activate an attended configuration record in RPA Hub.

• AttendedConfigurations component: Segregate the execution of the automations in a single automation project and call the respective logic according to the action invoked. For more information, see Use the AttendedConfigurations component.
• GetProcessFieldParameters component: Fetch the values of the ServiceNow form fields associated in the Field Parameter Mapping of the corresponding attended configuration record in RPA Hub. For more information, see Use the GetProcessFieldParameters component.
• GetRecordContextID component: Fetch the current record sys_id of the ServiceNow form, from where the automation is triggered. For more information, see Use the GetRecordContextID component.
• SetProcessFieldParameters component: Update the values of the ServiceNow form fields associated in the Field Parameter Mapping of the corresponding attended configuration record in RPA Hub. For more information, see Use the SetProcessFieldParameters component.

Create an external credential vault record in RPA Hub to register your external credential vault for further usage by the robot. For more information, see Create an external credential vault record in RPA Hub.

A new External Credential check box is available in the credential set form, an application credential form, and a TOTP authenticator form. If this check box is selected, the credentials or TOTP seed is fetched from a configured external credential vault. If the check box is selected in the TOTP authenticator form, the seed is fetched from a configured external credential vault. For more information about these forms, see Create a credential set within a bot process, Create an application credential set in RPA Hub, and Create a TOTP authenticator in RPA Hub .

If the application credential record has the External Credential check box enabled, then the SetApplicationCredential component in RPA Desktop Design Studio doesn’t set the credentials and displays an error. For more information about the SetApplicationCredential component, see Use the SetApplicationCredential component.

Use the steps listed in the Steps to configure an external credential vault in RPA Hub topic to guide you through all the tasks of configuring an external credential vault in RPA Hub.

In RPA Hub, you can configure the output type as flat files for the execution logs that are generated on the robot machine.

On the Bot Process form, select an output type of the execution log file from the Output Type field from the Log Settings section. This field appears when the Track Execution Logs option is selected and when the Robot Machine is selected from the Storage field.

The location of the flat files is Users\<Userprofile>\ServiceNow RPA Logs\.executionlogs\{InstanceName}\.archive\{ProcessJob number} in the machine on which you have installed the attended or unattended robot.

If the size of the flat file exceeds 10 MB, it splits into multiple flat files with the log sequence appended to the file names until it executes the automation. A flat file doesn't log the data of input or output ports in a component or method that you have selected as Mark Data as Sensitive in the RPA Desktop Design Studio.

• Change Life Cycle Stage Status of a Bot Process Action to modify the life cycle stage status of a bot process that is not retired.
• Stop Process Action and Stop Process subflow to stop a bot process. If the robot pool option is enabled for the bot process, it stops all the robots assigned to the pool. If Graceful Stop is enabled, it provides a capability for robots to exit the automation smoothly. Graceful Stop is not applicable for bot processes with the robot pool option enabled.

In RPA Desktop Design Studio, the WaitForAnyScreen method appears in the Object Explorer pane when you double-click the Universal App connector object under the Global Objects pane.

The WaitForAnyScreen method finds an application screen within a specified duration, and then you can enable it to pass the control to another method. You can set up multiple application screens that appear in an order on the method, and the WaitForAnyScreen method tries to find a screen starting from the first application screen by matching the screen match rules. If the method doesn't find a screen, it tries to find the next screen in the order. However, if the method finds a screen, it completes execution and doesn't proceed to the screens next in the order. If the method doesn't find any screen within the specified duration, you may optionally enable it to pass the control to another component through the ELSE port.

• Playbook for Office 365 - Malicious File Detected
• Playbook for Repeat Detection
• Playbook for Spoofed Emails (using the same Display name)
• Playbook for Endpoint Detection
• Playbook for Possible Password Spray
• Playbook for T1003 - Detect Credential Dumping Tools
• Playbook for Email Domain Spoofing Detection
• Playbook for Typo Squatted Domain
• Playbook for Credential Sniffing
• Playbook for T1070 - Windows Events Logs Cleared
• Playbook for OSquery of External Address in /etc/hosts file
• Playbook for User Deleting Bash History - Cloud
• Playbook for Successful VPN Attempts from the Service Accounts - Corp/Cloud
• Playbook for Attempted Access to Deactivated Accounts
• Playbook for T1003 - Defense Evasion - Mimikatz DCShadow
• Playbook for T1003 - Credential Dumping - Mimikatz DCSync
• Playbook for Okta User Login Failures from Multiple IPs
• Playbook for ModSec Brute force by IP Burst

• Usage and definition metrics for security incidents to capture MTTR (Mean time to repair).
• Enable or disable the Post Incident Review (PIR) report generation for child security incidents.

• Monitor scan requests
• Report security incidents as a risk event, which will be tracked by the Risk Management team
• Create a customer service case for the security incident, which will be tracked by the Customer Service Management (CSM) team

Policy enhancements:

• Edit activated policies, save changes, publish changes, and exit edit mode with UI actions in policies. Versions are tracked and version numbers are displayed on the policy records and their related test results.
• Close existing related test results (findings) if you publish a new version of a policy or delete a policy. If you choose to close test results, test result and remediation task states transition in accordance with the state transition processes of the Configuration Compliance application. See Test result and remediation task state transitions in the Security Posture Control application for more information.
• Query the Security Posture Control product with Software as an Entity type. Look for any discrepancies that exist between the installed software reported by your vulnerability scanner products and the software reported by scanners and already accounted for in Software Asset Management (SAM) and other ServiceNow® products.

Policy condition builder enhancements:

• Select the OR condition to search for and monitor diverse types of assets from a single policy.
• Select Reported only by as a Connection and choose specific Sources (third-party service graph connectors and ServiceNow products) to report on your assets. Monitor only those assets that are reported by the specific ServiceNow® products and third-party sources you select.

Select CMDB metadata as a Connection in the condition builder and search for the following assets:

• Devices with host names that have specific patterns with matches regex operator for the host name Property. For example, if you enter lp manually, you can look for all laptops with 'lp' as the second and third characters in the host name.
• Assets that have been discovered for the first time with the First seen timestamp Property.
• Devices based on specific models and model information with the Model name, Has model info, and Model data conditions. This data can help you with security control coverage.
• Assets that were Last seen Within the last n days. Enter the number of days up to 30. For example, enter 3 to monitor assets by 'last logon' from Active Directory in the last three days.

• Define custom policies based on asset metadata, security tool configuration data, and vulnerabilities to monitor asset compliance with your internal security standards.
• Chain policies together so you can monitor assets in hierarchical categories.
• Filter assets by using custom fields in your CMDB CI classes in policies.
• Exclude assets from your audits and monitoring that match other policies or assets with approved exceptions in Integrated Risk Management (IRM).

• Portal Object widget: Display quick actions and key information of a record in the widget, which displays the information based on the sys_id of a record.
• Portal Taxonomy topics widget: Display the first level of taxonomy topics as cards in the widget. When users access these cards, they’re redirected to a page that displays knowledge articles and catalog items related to a taxonomy topic.

• Undo
• Redo
• Font color
• Text highlight
• Indent
• Outdent
• Hyperlink
• Unlink
• Table
• Image
• Code sample

A unified profile through the Unified Consumer feature, which includes both the external (snc_external) and internal (snc_internal) user roles, provides access to all menus on the Consumer Service Portal. Previously, access to specific menus depended on whether the user profile had the external or internal role.

• The draft service or offering record is deleted, including all edits made to the draft record.
• The service or offering is checked back in and none of your changes are implemented. The Manage Offerings step shows the offering in the "Published" state.
• The approval flow isn't triggered. 

Enable catalog item requesters to save the drafts of the catalog item forms on the portals, such as the ServiceNow® Employee Center and ServiceNow® Service Portal, and on the Now® Mobile app.

Requesters can save the drafts when they come across situations, such as lengthy forms and requesters that don't have enough information to submit the record but don't want to discard the forms. They can save the draft and start editing from wherever they left off. Requesters can access the saved drafts from the My Request widget in a new Drafts tab.

Set values in Catalog UI Policy Actions for questions in a catalog item without the need to script. The value that you set for the question is displayed when the specified condition is met. You can set the values using Catalog UI Policy Actions in the ServiceNow AI Platform and using dynamic behavior in Catalog Builder.

For example, on a catalog item to order a company phone, you might want to automatically set the color to black if the storage size selected is 1 TB because that's the only option available. You can now configure this behavior without the need to write any scripts.

Set field messages for the questions in a catalog item without the need to script. Field messages appear below the question as helpful text when a specified condition is met. You can set the field messages using the Catalog UI Policy Actions in the ServiceNow AI Platform and using the dynamic behavior in Catalog Builder.

For example, you can set a warning message to be displayed on the type of laptop question to read Advanced laptop would need department head approval when the type that you chose is Advanced.

• Storage
• Wireless access point
• DB server
• IP telephone
• Multicast/broadcast
• Terminal station
• Door control panel
• IP camera

• Display or hide various sections.
• On the landing page, collapse the list view for donuts cards by default, which reduces the page load time, and expand the list view by selecting any donut card.

• From the list view that opens by selecting a donut area on the landing page, access the record information for the following records:
  • Incident
  • Problem
  • Interaction
  • Change
  • Request
  Note:

  You can preview and update the record information in the workspace view.
• From any record page, copy the record page URL to easily access the record and share it with other agents and other stakeholders if required.

• Manage problems and problem tasks through their life cycle.
• Share problem workarounds or fixes with related incidents.
• Create known error articles to help deflect incidents.

• Copy the page URL to the clipboard to quickly share the link to other agents or stakeholders.
• Preview the records of the reference key fields on the same page, or open the record in a separate tab.
• Update the incident information in the Summary section and Impact summary section of the Overview tab.
• Preview caller information from the caller card on the Record information side panel.
• View the assets, recent interaction, and incident information that are specific to the caller.
• The incident information such as priority, state, configuration item and opened, is moved from the header of the incident record page to the Summary section of the Overview tab to increase the workspace view area.

• Propose, promote, create, and manage major incidents.
• View the number of impacted callers and their locations on the world map.
• Identify and create a major incident automatically based on major incident trigger rules.
• Communicate with the business stakeholders and end users by sending status updates and notifications to inform them about the impact and progress of the major incident.
• Collaborate with the business stakeholders to discuss the issues and help with resolving the major incident.
• Resolve major incidents.

• Configure major incident trigger rules to create, propose, or promote major incidents automatically.
• Assign playbooks to manage major incident process.
• Assign a Major Incident Manager role to users for managing major incidents.
• Configure email notifications that are sent to the stakeholders and end users.
• Configure the communications, such as email and SMS messages, sent to the stakeholders and end users.
• Configure communication plan definitions, tasks, collaboration tasks, and channels for effective communication with stakeholders and end users.
• Configure timelines for generating post incident reports.

• MI playbook
• Advanced MI playbook

Secure public widgets that accept the table input parameter by specifying the tables from which the widget can access and return data for guest users.

Close all notifications at once instead of having to close them individually by selecting Clear All. Portal administrators can use the glide.service-portal.notification.threshold system property to configure the number of notifications that must appear before displaying the Clear All option. The default value is five.

• Use inline editing to allow real-time updates and modify feedback or product idea details.
• Edit multiple rows at once and eliminate the need to modify each record individually.

• Understand the popularity of feedback using Votes field and prioritize the feedback to make informed decisions. These votes are directly received from the idea portal.
• Identify and prioritize feedback with the Importance field on feedback records and make informed decisions based on the feedback.

• Group and sort feedback with feedback filters.
• As a product manager, create and organize product feedback based on filter criteria, and focus on feedback that is important to you.

• Using the Business Capability lens, enterprise architects can plan, prioritize, and roadmap the work in the Strategic Planning Workspace based on the business capabilities and business applications by aligning with the strategy.
• Using the Project Program lens, program managers and portfolio managers can plan, prioritize, and roadmap work in programs.

• Add tags to your planning items to categorize them based on your requirement. Any tagging additions or removals made to a record are automatically synced across all views in the Planning page and the Scoring page.
• Filter the planning items by the assigned tags.
• Use inline editing in the List view of the Prioritization tab when adding and removing the tags to your planning items.

• Quickly view and manage the item details from the side panel using the Preview record icon () in the List view of the Prioritization tab and the Scoring page.
• The type of planning item is displayed on the item’s details page so that you can identify what the item is, such as a demand or a project.
• When creating a planning item, the Planned start date field and the Planned end date field are populated automatically with the Approved start date value and the Approved end date value respectively.

• Assign the highest and lowest ranks to the planning items using the Move to top option and the Move to bottom option respectively from the row context menu icon ().
• Delete planning items using the Delete option from the row context menu icon ().

• Track how current and future work contribute to meeting a primary or non-primary target by associating the target with work items. When you create a primary goal or target relationship with an item that already has a primary relationship, the existing association becomes a non-primary and a new primary relationship is created.
• Associate multiple planning items at a time to a goal or target from the enhanced Align work model, the item’s side panel, or the item’s full details page. You can also remove the existing association with the goal or target from the side panel or full details page of the goal or target.
• View and manage an association between a planning item and a goal or target using the View aligned work option in the row context menu icon (). The Aligned work tab introduced in an item’s side panel helps you add or remove an association between work items and a goal or target
• Search the aligned work items of the goal or target from the item’s side panel by the name, owner, or type of the work items.
• The list of goals and targets appear in the expanded mode by default in both the List view and the Hierarchy view so you can view all goals and targets in a hierarchical manner when accessing the page.
• The user preferences are saved automatically to retain the customizations, such as to view or hide columns and the width of the columns, so that you don’t need to set your preferences the next time you access the Goals page.
• When creating a target, the Contributors field on the Target form is automatically populated with the contributors of its goal.
• Run the Create Goals Demo Data with Target Breakdowns scheduled job to create a target breakdowns demo data for the targets.
• For cumulative targets with the breakdown interval set to Quarterly and Yearly, the Target values are populated automatically for each quarterly and yearly breakdown respectively. For example, for a cumulative target created to achieve $10M in the year 2024, the target breakdowns Q1-24, Q2-24, Q3-24, and Q4-24 are created with the Target values $2.5M, $5M, $7.5M, and $10M respectively.

• Customize widgets to view the financial details, such as allocated budget, EAC, Variance, a breakdown of planned costs, and actuals to date by cost type.
• Export Costs or Baseline comparison information as Microsoft Excel or CSV formats. Use these files to share the financial performance of your planning items to relevant business stakeholders, even if they don't have access to your ServiceNow instance.
• Create expense lines to capture any unplanned costs to meet your work requirements without associating them to any forecasted planned costs. For more information, see Add or edit expense lines.
• Delete any de-scoped cost plans using the row context menu icon () to manage your financials.
• Save your preferences to retain the customizations you have made, such as viewing or hiding columns and viewing time scope.

• Apply filters on the Scoring page to view the required data set. These filters are saved as your preferences. This also helps you view the same data set and continue your planning when you log back in.
• When a demand is converted to a project, the score and rank of the item are automatically copied to the newly created project.

For more information, see Export planning items data from Scoring to Excel or CSV and Export data of portfolio plan items from Prioritization to Excel or CSV.

• The Program field has been added to all planning item tables and the Program and Portfolio fields have been added to the Epic [rm_epic] table to support the Project Program lens.
• Enable the Sync tags option on the Table Map form for each planning item table to synchronize the tags from alignment to the execution tables and vice versa. By default, the value is set to true. If there are any existing tags, the tags are automatically synced from alignment to the execution tables and vice versa. For more information about the Table Map form, see Table map form.
• The Flow type mapping for planned dates of the Demand [dmn_demand] table is updated to both alignment to execution and execution to alignment.

• Create a supplier offboarding case to offboard a supplier.
• Create a Due Diligence request if the GRC: Third-party Risk Due Diligence Request [com.sn_tprm_onboarding] plugin is installed.
• Displays a list of pending supplier cases and tasks.
• Ability to check contract and invoices.
• Maintain communication with the internal stakeholders and the supplier throughout the offboarding process.

View supplier risk assessment details from the My active items widget in the Supplier Collaboration Portal. In the My active items widget, the Risk Assessments tile shows assessments only if you've installed the Third-party Risk Management [com.sn_vdr_risk_asmt] plugin. Select the Risk Assessments tile to open the Assessment Summary page, which displays a list of risk assessments for a supplier and for an engagement.

A new Risk tab has been added on the Supplier record page in the Source-to-Pay Workspace. The Risk tab displays supplier risk assessment details, such as third-party name and process information, summary reports, risk intelligence scores, and tracking data for issues and tasks. The Risk tab is displayed only if you have installed the Third-party Risk Management [com.sn_vdr_risk_asmt] and GRC: Vendor Risk Management Workspace (com.sn_vdr_risk_asmt_workspace) plugins.

A new table, Organization Tax Details (sn_fin_org_tax_detail) has been added that enables you to store multiple tax registration details for each individual supplier. This table has been added in the Finance Common Architecture (com.sn_fin) plugin.

• If you have installed only the Risk Assessments Integration for Supplier Lifecycle Operations [com.snc.sn_supplier_tprm] plugin, the Perform risk assessment playbook triggers the flow that includes activities to verify the eligibility of the supplier by creating risk assessments.
• If you have installed both the Risk Assessments for Supplier Lifecycle Operations [com.snc.sn_supplier_tprm] and GRC: Third-party Risk Due Diligence Request [com.sn_tprm_onboarding] plugins, the Perform risk assessment playbook triggers the flow that includes activities to create a due diligence request, complete Inherent Risk Questionnaire (IRQ) assessments, and conduct risk assessments for a third-party or an engagement.

• Cable - Optical fiber cables link sites with open endpoints, indicating that they don't terminate directly to equipment.
• Strand - Strands are the individual wires within the cables.
• Channel - Channelization involves sub-rating the available bandwidth into smaller bandwidths.

• Implement Now Assist in Virtual Agent conversations in Microsoft Teams and mobile channels.
• Test and preview topics in either the mweb or nowassistpanel channel.
• Added enhancements to Now Assist in Virtual Agent.
• Create or manage LLM virtual agents using a new option on the Conversational Interfaces admin console or the new Assistants tab.
• Filter analytics indicators in Now Assist in Virtual Agent Analytics using the new Assistant multi-select filter.
• Enable Genius Results generated by Now Assist in portal search from a link within the Review section of .
• When a user types an irrelevant utterance in the middle of a topic, unified search sees whether there are any results found.

• Create topics that use LLM instead of Natural Language Understanding (NLU).
• Analyze Now LLM responses to utterances while testing LLM topics.
• Get in-depth testing details for LLM topics using the new Topic discovery and Edit variables tabs.

• Input Collector user input control:
  • Use the new Input Collector control in LLM topics to gather data from users and create instructions with generative AI.
  • Drag nodes in and out of the Input Collector instead of deleting and adding new ones.
  • Drag nodes from one Input Collector to another if you have multiple Input Collectors on your canvas.
  • Use the From and To drop-down lists to reorder inputs from the node on the table view.
  • Activate the Confirmation message option in the Input Collector to summarize your inputs. Submit the inputs or restart the input collection process, by selecting Yes or No options, or entering a reply in plain language.
• Secure Text user input control: Use the Secure Text control in LLM topics to gather and encrypt sensitive text, email, and other types of input from users.
• Date Time user input control: Input DD-MM-YYYY format to the Date Time user input for regions using that format.

• com.glide.cs.gen_ai.enable_mid_topic_ai_search
• sn_nowassist_va.enable_mid_topic_ai_search_catalog_result

• Carousel user input control: Use the Carousel user input control in a LLM-enabled Virtual Agent topic to present a prompt and a horizontal series of labeled images.
• Dynamic choice user input control property sheet: Use the Allow the user to select more than one choice field to allow users to choose multiple choices from the list display.
• Latency feedback system property: The com.glide.cs.message.processing.enabled system property notifies requesters with a temporary latency message whenever the LLM is processing their request in the Virtual Agent web client and Now Assist panel. This system property is off by default and the latency message varies depending on the LLM call.
• Use Virtual Agent API to support Now Assist experience across multiple provider channels. See Enable Now Assist experience in Virtual Agent API for more information.
• Use Bot Interconnect to support Now Assist enabled primary and secondary bot use cases.

• LLM topic migration: The topic migration workflow in Virtual Agent Designer allows you to convert your existing NLU/Keyword topics into new large language-model (LLM) topics. The topic migration workflow is available to admin and topic_migration_admin roles.
• Dynamic Choice user input control: Using a script, requesters can view their previously selected choice values and also view and search through secondary field data.
• LLM assistant associations: Any topic type can be associated with an LLM assistant. LLM topic blocks and custom controls that are not associated with an assistant, but are used within a topic that is associated with an LLM assistant, now display in the Topics page when filtering by the LLM assistant.
• Now Assist in Virtual Agent guided setup entry point from Virtual Agent Designer: Selecting either Settings or Manage on the Virtual Agent Designer Topics page opens the Conversational Interfaces Guided Setup workflow.
• Assistant drop-down list: The Assistant drop-down list appears in the chat test window when testing from a single topic when the Include topic discovery option is selected or when testing active LLM assistant topics from the Virtual Agent Topics page. When a topic is associated with just one LLM assistant, the Assistant drop-down list defaults to that assistant name. If you have multiple assistants, select which assistant you want to work with using the Assistant drop-down list.
• New Virtual Agent translation table: The Text Translations for Dynamic Translation [sys_cs_dynamic_translation_text] table stores copies of the translations found in the Message [sys_ui_message] table and previously dynamically translated messages.
• Promote or demote Virtual Agent LLM topics: Organize promoted LLM topics by assigning relative order values in the Promoted Skills [sys_cs_context_profile_promoted_skill] table.
• Topic Properties tab: Setup Topics will remain associated with an Assistant in the topic Properties tab.
• Topic creation form: Configure channels in LLM topics under Who can access this topic in the Advanced section of the Properties tab.

• Create a topic form: Associate LLM-enabled Topics, Setup topics, Topic blocks, Small talk topics, and Custom controls with the Now Assist in Virtual Agent LLM assistant.
• LLM topic testing: Provide feedback to the Now LLM using thumbs-up and thumbs-down controls when testing Text, Static choice list, Dynamic choice list, Boolean, Date time, and Carousel user inputs.
• Insert a header card in a Static Choice or Dynamic Choice control: Toggle the Header card switch in the Advanced properties section of the LLM-enabled Static choice list and Dynamic choice list user inputs, to add photos or YouTube videos.
• Genius Results in chat preview window: Genius Results for LLM topics show skill (topic) discovery, knowledge base (KB) articles, and catalog items in the Analyze test phrases tab of the chat preview window.
• Topic migration updates: On the topic migration workflow's Publish (optional) page, select the LLM topic link to be redirected to that topic in Virtual Agent Designer through a new browser tab or window. Any edits that you make in Virtual Agent Designer are reflected in the topic migration's Publish (optional) page after refreshing.
• Topic migration error log updates: New error messages were added to the topic migration workflow in Virtual Agent Designer and existing error messages were updated.
• NDS cards in Virtual Agent: Next Experience Design System (NDS) cards carousel now appears to requesters in the Virtual Agent whenever multiple results are found from a Genius Result. Feedback with thumbs up or thumbs down is possible on each NDS card.
• Proactive Triggers work with LLM topics: Proactive Triggers can be used with LLM topics if Now Assist in Virtual Agent is set up.

• Update the state of VITs.
• Request an exception in bulk.
• Mark VITs as false positive in bulk.
• Update preferred solution for vulnerable items.
• Assign VITs to an assignment group for remediation.
• Remove assignments for vulnerable items.

After upgrades and deployments of new applications or integrations, run quick start tests to verify that Vulnerability Response still works. If you customized Vulnerability Response, copy the quick start tests and configure them for your customizations.

Update vulnerable items with the most recent and accurate data from the last open detection by setting the system property sn_vul.show_last_open_detection to true. The vulnerable items' IP address, SSL, Port, Protocol, DNS name, NetBIOS name, and Description values are updated with the last open detection values during ingestion and the change of configuration item (CI) (Reapply of CI lookup rule). To apply this update to the existing VITs, execute the Update Last Open Detection Value To VITs scheduled job. This ensures that the last open detection values are correctly updated on all the existing VITs.

• Key metrics from Governance, Risk, and Compliance (GRC) that offers a comprehensive overview of your organization's cybersecurity posture.
• Direct access to the GRC dashboard through the Cybersecurity Executive Dashboard for seamless navigation and integration of essential risk and compliance information.
• Operational Technology metrics that provide a comprehensive security perspective across both IT and OT environments, facilitating thorough risk management and monitoring.
• An enhanced user experience with an intuitive and distinguishable dashboard design that scales effectively to accommodate the evolving needs of your organization.
• Improved accuracy and reliability in metrics to ensure that the data presented in the dashboards is accurate, supporting better decision-making and strategic planning.

Enhancements to the (OAuth) authentication credentials on the GitHub Configuration page.

• HTTP Source request and Source response details for Dynamic Application Security Testing (DAST) scans are displayed on the HTTP Request/Response related list.
• Solution recommendations from Veracode are displayed on the Findings related list.
• HTTP Source request, Source response, and recommendations are displayed on the Details tab In the Vulnerability Response workspaces.
• The Description column is supported on the Application Vulnerable Item [sn_vul_app_vulnerable_item] table.

Beginning with v21.0.5 of Vulnerability Response, there’s an update in the solution creation process for Rapid7 InsightVM. Previously, solutions were generated based on the information provided in the solution_summary, solution_fix, and solution_type fields. However, with this update, Rapid7 InsightVM utilizes the solution_id sent by the scanner to create solutions even if the solution_summary, solution_fix, or solution_type fields are empty.