Released 2025-10-02
Bug Fixes
- On relaunch of a SCORM 2004 course, attempt to recover from an inconsistent state caused by a bad exit (prevents loss of bookmarking and suspend data).
- Resolves startup failure when using an environment variable for an encryption setting.
- The V2 API's
GetCourseZipendpoint will now work for AICC stub packages. - [LTI] - Fixed an improper authentication failure that would occur when attempting to send line items to an Engine tenant that had ApiTokenSecrets configured at both the system and tenant level.
Improvements
- Obfuscate the "registration_usage_id" in the "UsageStatistics" database table during PII deletion job.
[Java] - Updated Bouncy Castle libraries to resolve unconstrained resource usage vulnerability (CVE-2025-8916).
- [Media] - Introduces the MediaContentStatementMode setting to provide the option to reduce the quantity of xAPI statements generated from media content.
Dispatch Bug Fixes
- URL encode
contextIdwhen included as acontextproperty inltiMetadatafor LTIconnectorReferenceRequestimports to prevent context ID validation errors when the context ID contains invalid URL characters