This update will include many bug fixes. We recently pushed an update that helped with XSS Security, so we worked on the backend input code for every scenario where a user could enter data in a software field.

Enhancements:

• Security with XSS - 'Cross Site Scripting' Cross-site scripting (also known as XSS) is a web security vulnerability that allows an attacker to compromise the interactions that users have with an application. Cross-site scripting vulnerabilities normally allow an attacker to masquerade as a victim user, to carry out any actions that the user is able to perform and to access any of the user's data.
• Pagination: Worked on violations pagination to keep the look the same as other pagination pages as well as kept the speed of the table working quickly. Worked on email pagination in regards to 'labels'
• Aging report: We added the date to the top of the report/CSV. We added 2 columns, lot/unit number and date per invoice.
• Printing request: we are now supporting an image type of .webp
• Committee Page: We enhanced the user-friendliness of creating a new committee and adding users so it's more intuitive with an alert that lets the user know what's going on. We also made it so that each committee/board that is created now going forward will link to a custom email group and text group. If the committee/board is edited in any way, the group will also reflect the edits.
• My team: where new users' logins are created for boards etc. we added a help tooltip to explain the different user types
• Defaulted the send email function to the 'bcc' instead of the 'to' just to help with accidental confusion.
• Report Enhancements: Owner login report - we made a total at the bottom and made this report owner-based instead of unit-based. Revenue by category report - we made the total clickable to see more details. Past due report - We added verbiage on the exported reports that says a date when the report was generated. We also added a filter at the top to filter the category of

New Features:

• (no new features for this update)

Bug Fixes:

• Bank Account Deposit Report: Link to payments
• results of the campaign weren't showing
• couldn't add a contractor
• Helped bring back accounting transactions that were lost due to users deleting transactions during bank account re-connections
• 'app&' ampere symbol was showing on some tables/reports
• Login error 'page mode is invalid'
• Email error saying 'missing email address', also fixed issue with sending emails to a bcc group but it wasn't sending
• Accounting tools: error 'account ID not found'
• Limited user permissions: we worked on making sure these were working properly with new buttons we've added in the last few months regarding Website edits of events, news, forms, and settings. fixed a bug with the ability to read the GL, as well as not allowing them to make changes to the new reconciliation tool
• Templates were removing the formatting and reverting to running paragraphs.
• Fixed a specific scenario with the 'delete email' function where it was deleting the entire inbox.

Security Enhancements and Report Updates  - Watch Video

I discussed the recent security enhancement focusing on cross-site scripting, which led to bug fixes over the past week. Additionally, we made small enhancements like pagination improvements and report updates, including the aging report and revenue by category report. Check the email for more details and a link to learn about the security enhancement.