- This week has been cleaning up lots of loose ends and planning for Q3/4, but we’re working on finalizing an update for the Chef Infra course on learn.chef.io , starting some additional courses, and are also finalizing which digital events we’ll be sponsoring. I’ll have lots more detail next week! (edited)
This week’s releases
- Automate made a nice release for folks using the new Desktop dashboard which now features functional filters: https://discourse.chef.io/t/automate-2-version-20200707173044-released/17380
- https://downloads.chef.io/ has been rebuilt for 2020. now with less scrolling and less chance of accidentally consuming the "current" build
- Jenkins cookbook 8.0 was released with fixes for Chef Infra Client 16 as well as some modernization for new releases of Jenkins: https://github.com/chef-cookbooks/jenkins/blob/master/CHANGELOG.md#800-2020-07-14
- kitchen-dokken 2.10.0 was released with a fix from @ramereth to support the multiple_converge option when you want to check idempotency. This release also adds a new 'memory_limit' config
- kitchen-ec2 3.7.1 is out with improvements for how we search for centos images, which prevent you from accidentally getting non-official images. Keep in mind there is NO official CentOS 8 image. This release also adds Cascading Subnet Filter support with Spot Instances and removes 2 unused deps.
- I posted a new unofficial macOS 10.15.5 vagrant box for vmware and virtualbox: https://app.vagrantup.com/tas50/boxes/macos_10.15 that replaces the previous 10.15.3 box
- cookbook-omnifetch 0.10 was released with support for manifest v2. This prevents failures when using policyfiles with a segmentless cookbook
- knife-cloud 4.0.2 shipped with support for using jumphosts with bootstrap for any knife plugins that utilize the knife-cloud framework
- Last, but not least Cookstyle 6.11 and 6.12 shipped. These releases bumped to RuboCop 0.88 which has some pretty significant perf / memory optimizations, 5 new Chef Infra cops, and some improvements for detection on existing cops https://discourse.chef.io/t/cookstyle-6-12-released-with-3-new-chef-cops/17415 https://discourse.chef.io/t/cookstyle-6-11-released-with-2-new-chef-cops/17375
- Continued work to support reporting inspec runtime execution failures from the context of audit cb
- Added api docs for event feed
- Lots of other general docs updates and cleanup
For the Desktop work:
- Updated desktop detail view to not have any canned data
- Working on Desktop rollouts
- Resolved a ui calendar bug on compliance that led to the incorrect date being selected sometimes
- Data feed docs were added
- Refactoring the event feed to allow for new events
Greetings from the Habitat team!
- Fixed ctrl-c in windows native studio.
- Fixed issue where a service could miss file uploads if it was offline at the time of upload
- Started some refactoring/cleanup of Builders datastore code
- Backfilling tests around our build manifests
- Resolving edge cases in build order generation caught by the tests
If you've ever ctrl-c'd out of habit in a windows studio, you know how nice that first bullet point is going to be.
Chef Infra Server
Last week was a little slow for us with some being sick and some being out.
- We reproduced an issue with FIPS and sig_v4 that we will be working on in the next week.
- We are working on removing solr and java8 from the Chef Infra Server 14 build.
That is all for us.
Chef Infra Client
- Working on some review and under the hood tweaks to allow for true remote ohai for Target Mode
- Continued DNF fixes
- Lots of small tweaks to our rspec tests to get our builds green and keep them green
- Work refactoring macos_userdefaults, which is going to become very important now that apple has removed the ability to manage profiles directly on a machine
- Merged in a new windows_firewall_profile resource, which is pretty handy for setting up your firewall. That combined with windows_firewall_rule makes it pretty feature complete now
- Worked a bit on making it so Workstation can ship with knife "hashed" and then each gem install will automatically rehash. This prevents knife from needing to search through the entire install each time looking for knife plugins and is a pretty massive speedup on windows hosts. The Chef part is done and now I just need to play around with chef-cli and the workstation installer to see if it'll actually work
- oh and we're going to support DSS host keys again with knife-ssh. If you have those you really shouldn't, but it'll work again. Sorry for the breakage
We're ready to release InSpec 4.22 , there's some docs work remaining plus Release Engineering maintenance happening at the moment, so we plan to release early next week.This release contains: * When a runtime error occurs while loading a profile, instead of immediately terminating, InSpec now reports the profile as "failed".
- Updated the service resource in preparation of the coming macOS 11 Big Sur release.
- Fixed a bug where having a = character in a CLI input would truncate the value passed to InSpec
- Fixed a bug where the apt resource did not handle the presence of apt-cdrom type repos.
There's some nice PRs in-flight and we'll probably be looking at another release as soon as we get 4.22 out
- This week in Workstation, we released an update to chef analyze report that includes an --anonymize flag. This flag will hash any cookbook, node, or file names, so that customers can more safely share reports with the Workstation team. This is available in current channel.We have also updated Test Kitchen with fixes, including one that makes it respect root_path in all cases where it's provided.Finally, we're getting a new Workstation release together to include these changes plus relevant releases from @tas50 's announcements above. This will go out early next week, and should see us return to our per-sprint (2 week) release cycle which was disrupted by ChefConf.
- New release of PHP with support for modern platforms. This ended up being quite the effort since that cookbook hadn't been touched in a while
- New Apache2 release that includes a mod_php resource now, which removes one of the major blockers upgrading to the new resource driven cookbook
- Lots of work happening in the filesystem and vagrant cookbooks.
- ramereth is continuing work on the nagios cookbook making it resource driven
- Apache/PHP blockers done!
- Merged https://gitlab.com/cinc-project/distribution/client/-/merge_requests/38 which will provide source tarballs of Cinc Client that can be used by downstream distributions
- Published chef-universal-mingw32 gems which are required for Cinc workstation https://gitlab.com/cinc-project/distribution/client/-/merge_requests/52
- @Tensibai rebased https://gitlab.com/cinc-project/distribution/client/-/merge_requests/42 which fixes and provides a proper Biome build of Cinc Client. Still working out a few issues unfortunately with the build.
- Merged https://gitlab.com/cinc-project/distribution/workstation/-/merge_requests/4 which fixes additional dist issues and also now properly creates a cinc binary with a chef wrapper
- Still working out issues with building a Windows build.
- Since the Windows build is taking longer than expect, will plan on starting a build for 20.7.81 in the next day or two
- work continues, albeit slowly, on adding more coverage to integration tests, curious folks can have a look here: https://github.com/bobchaos/bootstrap_integration_test/tree/win_omnibus