Operational Sustainability Risk Management release notes

  • Release version: Store
  • Updated June 11, 2026
  • 1 minute to read

    • Version history for the Operational Sustainability Risk Management application on the ServiceNow Store.

    Important:
    For details on system requirements and family compatibility, view the application listing on the ServiceNow Store website.

    Version history

    Version 22.3.0 - June 2026 (Australia)
    Changed: This release includes security enhancements that strengthen access controls across the application.
    Version 22.0.0 - March 2026
    Changed: Updated the name of the application to "Operational Sustainability Risk Management"
    Version 21.0.1 - December 2025 (Zurich)
    Fixed: Strengthened security controls related to read-only fields
    Version 19.1.1 - November 2024
    • Fixed:
      • Improved workspace experience for users with low vision or those who rely on assistive technology, such as screen readers. This includes optimizing zoom capabilities.
      • Replaced the usage of the 'State' field with the 'Status' field in the Risk assessment flow in ESG Workspace.
    Version 18.1.0 - June 2024
    • Changed:
      • Updated dependency of this app to latest version (18.1.0) of Environmental Social Governance Management
      • Updated dependency of this app to latest version (18.1.2) of GRC: Advanced Risk
      • Updated event mappings of declarative actions with Form controller
    Version 18.0.2 - February 2024
    • ESGM now includes risk assessment, adapted from the robust capabilities in our industry-leading Integrated Risk Management solution, so you can model climate, social, privacy, and other ESG risks. ​The ability to understand and communicate ESG risks is key to effective ESG programs. ESG risks are now part of many compliance disclosure requirements, but the people who understand the risk considerations are distributed around the organization. ESG/sustainability teams are not risk experts either. These people need a simple way to ask for and record risk information, both quantitative numbers like losses, and qualitative insights that may be written up manually. Auditors will need to see the backups to the risk calculations the teams assert in their disclosures, so the information must be archived reliably and with data integrity.
    • The ESG risk management application provides both types of risk assessments and is employed for assessing both entities and material topics. Object-based assessments focus on material topics, while risk-based assessments are applied to entities providing straightforward quantitative and qualitative risk assessment embedded in first-line user workflows to help them easily contribute to accurate risk assessment and make risk-informed decisions as they perform their usual work.