In SAS Customer Intelligence Studio 6.6, the use of a semicolon in a Code node is ignored. As a result, only a blank value is displayed.

This problem happens when you perform steps similar to the following:

1. In SAS^® Management Console, create a stored process that uses a semicolon as prompt value:
   

   

2. Use this Stored Process in a Code node and select or enter the semicolon as a value:
   

   

After you update the Code node, only a blank value is displayed:

This behavior occurs because functionality was added in SAS^® 9.4M6 to address security vulnerabilities with stored processes. This functionality removes semicolons from most input parameters because semicolons in an input parameter can execute a code injection.

If you have existing code that uses semicolons in input parameters, you can use the STP_UNSAFE_DISABLE environment variable to enable you to continue using semicolons in input parameters. To set the environment variable, add the following line to the sasv9_usermods.cfg configuration file that is used to start the server. (The sasv9_usermods.cfg file is typically located in the SAS-configuration-directory\Lev1\SASApp directory.)

You must restart the SAS^® Object Spawner in order for the setting to take effect.