Code Signing release notes

  • Release version: Zurich
  • Updated July 31, 2025
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Code Signing release notes

    The Code Signing (CS) application in ServiceNow validates scripts and code running on your instance to ensure security and integrity. The Zurich release introduces significant enhancements to improve the code signing process, security controls, and user experience.

    Show full answer Show less

    Key Features

    • Out-of-the-box (OOB) Apps Signatures Plugin: Installs build-time signatures for ServiceNow Store application records, ensuring trusted code verification.
    • Code Signing Guardrails: Strengthened checks during the signing process create more secure workflows.
    • Code Signing Migration Workflow: Automatically identifies and reassigns signatures created with expired or inactive certificates to appropriate records, simplifying maintenance.
    • Quorum-Based Certificate Revocation: Enhances security by requiring multiple stakeholder approvals to revoke certificates, preventing unauthorized or accidental revocations.
    • Health and Status Dashboard: Provides a centralized interface to monitor the health, configuration, and status of the Code Signing environment with actionable guidance.
    • Self-Service Plugin Installation: Customer administrators can now install the Code Signing plugin directly from the ServiceNow Plugin portal without needing support assistance, streamlining deployment.
    • Enhanced Verification for ACC Framework Tables: Supports generating Key Management Framework (KMF) signature files for tables extending Agent Client Collector configurations, enabling attachments to pass code signing verification and be downloaded to MID Servers.
    • UI Enhancements: The Coral theme is now default for portals and mobile/web experiences, offering a refreshed, brand-neutral look with an available dark mode option.

    Activation and Related Features

    Code Signing is an AI Platform feature activated via the Code Signing (com.glide.codesigningenterprise) plugin. It integrates with related ServiceNow security features such as Encryption and Key Management, including Edge Encryption and Cloud Encryption, to provide comprehensive data protection and cryptographic management.

    Benefits for ServiceNow Customers

    • Improved security and trustworthiness of scripts and code through robust signing and verification processes.
    • Simplified management of code signatures and certificates via migration workflows and quorum-based revocation controls.
    • Enhanced visibility into the health of the code signing environment through a dedicated dashboard.
    • Faster, self-service plugin installation accelerates deployment and reduces dependency on support.
    • Better user experience with updated UI themes and support for key tables in the ACC framework.

    The Code Signing (CS) application validates scripts and code that runs on your instance. Code Signing was enhanced and updated in the Zurich release.

    Code Signing highlights for the Zurich release

    Zurich Patch 4
    Code Signing OOB Apps Signatures plugin
    Use this plugin (com.glide.code_signing.oob_apps_signatures) to install build time signatures for all relevant records in trued-up ServiceNow® Store application versions.
    • Use Code Signing Guardrails to improve checks during the signing process to create more secure workflows.
    • Use the Code Signing Migration workflow to identify the signatures that are created with expired or inactive certificates and re-assign them to the appropriate records automatically.
    • Revoke Code Signing certificates securely using a quorum-based approval policy to prevent unauthorized use.
    • Monitor and manage your Code Signing environment with the new Health and Status dashboard.
    • The restructured navigation panel and the renamed pages provide improved accessibility and streamlined functionality.

    New in the Zurich release

    Code Signing Installation using Plugin

    Customer administrators can now install the Code Signing plugin directly from the ServiceNow Plugin portal without the need to contact the Customer Service and Support team to enable the Code Signing framework. This enhancement supports self-service deployment and simplifies the installation process.

    Quorum Controlled Certificate Revocation
    Revoke Code Signing certificates using a quorum-based control policy. Revoke certificates to help prevent them from being used to verify signatures. A quorum-based approval flow promotes added security by requiring approvals from multiple stakeholders, to help prevent unintended or unauthorized certificate revocations.
    Code Signing Health and Status Dashboard
    The new Code Signing Health and Status dashboard provides a centralized, user-friendly interface to monitor the overall health and configuration of your code signing environment. It highlights configuration settings, displays the status of essential components, and offers actionable guidance to help resolve issues effectively.

    UI changes

    Coral theme
    Coral is now the default theme for new portal, web, and mobile experiences with Next Experience or Core UI enabled. This theme provides a fresh look and feel, featuring brand-neutral illustrations to enhance your user experience. A dark theme option is available for web and mobile experiences.

    Changed in this release

    Enhanced Code-Signing Verification for ACC Framework Table
    You can now generate KMF signature files for tables that extend Agent Client Collector Configuration (sn_agent_configuration_file) and Agent Client Collector Plugin (sn_agent_asset). This enhancement allows attachments from the tables to successfully pass code-signing verification and be downloaded to the MID Server when code signing is enabled.

    Activation information

    Code Signing is a ServiceNow AI Platform feature that is available with activation of the Code Signing (com.glide.code_signing_enterprise) plugin. For details, see Configuring Code Signing.

    Related ServiceNow applications and features

    Encryption and Key Management
    Encryption is a cryptographic procedure that converts plain text into cipher text, which helps prevent anyone but the intended recipient from reading that data.
    Key Management Framework
    The Key Management Framework lets you fully customize and manage how cryptographic operations are performed on your instance.
    Edge Encryption
    Edge Encryption encrypts sensitive data on your company premises before sending it over the internet to your instance (encrypted in flight), where it remains encrypted at rest.
    Cloud Encryption with Key Management
    Cloud Encryption offers encrypted storage for the database by using block encryption, with enhanced key management. Cloud Encryption is available with the Platform Encryption subscription bundle.