We are delighted to announce the availability of version 20210713164523 of Chef Automate 2.
New Features
- You can now search and delete the Policyfiles from Chef Infra Server. Navigate to the Policyfiles tab: Infrastructure > Chef Infra Server > Server Name > Organization > Policyfiles. (#5321, #5307)
Compliance Profile Updates
- Compliance profiles are updated to version 1.0.0/20210707133250, which includes the following profile (#5297):
Server motd regular expression bug fix - centOS 8.
Fix for - RHEL 7 v 2.2.0 - 5.3.1 control.
Fix for - Tomcat 8 V 1.1.0 - Bug Fix (Fixed Nokogiri dependency ).
Fix for - Server does not find files in /etc/sudoers.d - CentOS 8.
Fix for - Expand user shell timeout check to scan files in /etc/profiles.d - CentOS 8.
STIG Windows 2012/2012 R2 Domain Controller v3.1.0.
Bug Fixes
- Fixed the User Preference Settings in Chef Automate (#5284)
Security Improvements
We have made the following security improvements (Examples: New Security Configurations): (#5286)
Enabled Strict-Transport-Security header in API
Enabled Cross-site scripting (XSS) filters in browsers
Disabled Content Sniffing
Enabled X-Content-Type-Options header
Enabled X-XSS-Protection header
Enabled HTTP Strict-Transport-Security header
Chef Product Versions
This release uses:
- Chef Habitat version: 1.6.181/20201030172917
- Chef Habitat Builder version: 8997/20200812161534
- Chef Infra Server version: 14.4.4/20210520120637
- Chef InSpec version: 4.24.32/20210112215549
Service Versions
This release uses:
- Postgres: 9.6.11
- ElasticSearch: 6.8.14
- Nginx: 1.19.2
- Haproxy: 2.2.2
View the package manifest for the latest release.
How to Upgrade
By default Chef Automate 2 will automatically upgrade to this new version. If you have disabled automatic upgrades you can manually initiate an upgrade by running:
chef-automate upgrade run
As always, we welcome your feedback and invite you to contact us directly or share your feedback online. Thanks for using Chef Automate 2!