Chef Infra Client 15.9.17 Released!

Hey everyone,

Today we shipped a new release of Chef Infra Client 15 packaged with new platform support, updated resources, and important security updates to libraries we ship as part of Chef Infra Client.

Chef InSpec 4.18.100

Chef InSpec has been updated from 4.18.85 to 4.18.100:

  • Resolved several failures in executing resources
  • Fixed auditd resource processing of action and list
  • Fixed platform detection when running in Habitat
  • "inspec schema" has been revised to be in the JSON Schema draft 7 format
  • Improved the functionality of the oracledb_session resource

Ohai 15.8

Ohai has been updated to 15.8.0 which includes a fix for failures that occurred in the OpenStack plugin (thanks @sawanoboly) and improved parsing of data in the optional_plugins config option (thanks @salzig).

Resource Improvements


The build_essential resource has been updated to better detect if the Xcode CLI Tools package needs to be installed on macOS. macOS 10.15 (Catalina) is now supported with this update. Thank you @w0de for kicking this work off, @jazaval for advice on macOS package parsing, and Microsoft for their work in the macOS cookbook.

rhsm_errata / rhsm_errata_level

The rhsm_errata and rhsm_errata_level resources have been updated to properly function on RHEL 8 systems.


The rhsm_register resource has a new property https_for_ca_consumer that enables using https connections during registration. Thanks for this improvement @jasonwbarnett. This resource has also been updated to properly function on RHEL 8.


Resolved failures in the windows_share resource when setting the path property. Thanks for reporting this issue @Kundan22.

Platform Support

Ubuntu 20.04

Chef Infra Client is now tested on Ubuntu 20.04 (AMD64) with packages available on the Chef Downloads Page.

Ubuntu 18.04 aarch64

Chef Infra Client is now tested on Ubuntu 18.04 aarch64 with packages available on the Chef Downloads Page.

Windows 10

Our Windows 10 Chef Infra Client packages now receive an additional layer of testing to ensure they function as expected.

Security Updates


Ruby has been updated from 2.6.5 to 2.6.6 to resolve the following CVEs:

  • CVE-2020-16255: Unsafe Object Creation Vulnerability in JSON (Additional fix)
  • CVE-2020-10933: Heap exposure vulnerability in the socket library


libarchive has been updated from 3.4.0 to 3.4.2 to resolve multiple security vulnerabilities including the following CVEs:

  • CVE-2019-19221: archive_wstring_append_from_mbs in archive_string.c has an out-of-bounds read because of an incorrect mbrtowc or mbtowc call
  • CVE-2020-9308: archive_read_support_format_rar5.c in libarchive before 3.4.2 attempts to unpack a RAR5 file with an invalid or corrupted header

Get the Build

As always, you can download binaries directly from or by using the mixlib-install command-line utility:

$ mixlib-install download chef -v 15.9.17

Alternatively, you can install Chef Infra Client using one of the following command options:

# In Shell
$ curl | sudo bash -s -- -P chef -v 15.9.17

# In Windows Powershell
. { iwr -useb } | iex; install -project chef -version 15.9.17

If you want to give this version a spin in Test Kitchen, create or add the following to your kitchen.yml file:

  product_name: chef
  product_version: 15.9.17


It took a few days, but 32-bit ARM builds for Raspberry Pi and similar devices are available here: