Meeting notes for July 30th, 2020

Below are the meeting notes for this week's Community Meeting, a text-based meeting held weekly in #community-meetings on our community slack, which you can join:


benny Vasquez shared

This week I’ve only got one thing to call attention to. In case you haven’t been following the blog, we’ve been running a series around upgrading Chef Infra Client in a production environment. Our friend @dmontanez wrote the most recent installment, and it’s a great walkthrough: Upgrading Chef Infra Client

This week’s releases

Chef Infra Client

tas50 shared

Chef Infra Client 15.13.8 shipped with the latest InSpec, a new deprecation warning to get folks ready for Chef Infra Client 16 and a few nice minor fixes:

we released Chef Infra Client 16.3.38 and then 16.3.45

  • InSpec updated to 4.22.1
  • New windows_firewall_profile resource
  • Near full rewrite of macos_userdefaults resource
  • A pile of knife fixes

Other releases

tas50 shared

We released knife-google 5.0.5 which cleans up some of the aliases for distros. We removed a large number of very very deprecated releases

knife-opc 0.4.6 was released which fixes multiple failures that could occur when running knife opc user edit USERNAME

chef-vault-testfixtures 3.1.1 was released which now works with chef-vault 4.x

ChefDK 4.10 shipped with several of those previously mentioned fixes like Chef Infra Client 15.13, knife-opc, and knife-google. It also packages up several other knife and kitchen plugin updates from the last few months. Keep in mind at this point you're missing a TON of functionality that ships in Workstation, but if you 100% MUST be on DK for some reason it's updated:


Chef Automate

Alex Pop shared

  • Merged changes to make the Compliance control title and tag suggestions much faster.
  • Fixed a UI bug for the Infra nodes status filtering in Run History to work.
  • Major refactor of the API proto files in prep for linting them.
  • Completed the work to capture InSpec profiles and runtime errors and report them in automate.
  • Released audit cookbook 9.5.0 to catch runtime errors and send them to Automate.
  • Improved deployment and operation of the Automate services.
  • Merged a change to accommodate more space for numbers in the data tables.

Chef Habitat

sdmacfarlane shared

Greetings from the Habitat team! This week we've been:

  • Writing a design document for the new build scheduler
  • Working on improving the retry logic in hab the hab cli
  • Refactoring around our keys code
  • Working on standing up a long lived supervisor perf environment
  • Making improvements to Windows user querying

Chef Infra Server

prajakta shared

Hello Chefs!!!!

  • The aws sig_v4 work is ready for review. It is passing all of the build and tests.
  • Work is in progress upgrading rails from 4.2.11 to 6.0.3.
  • Work is in progress to pin chef-client to 15.12.22 consistently in Chef Server.
  • We are currently investigating the issue that shows 500's with sel_conn_closed in erchef while trying to connect to the search provider. (Tracked at: )

We are in the "finishing touches" phase of release. That said, there are still plenty of moving parts and we are not in a position to provide timeframe estimates with a high degree of specificity. While we do not have a more specific timeframe than end of quarter at the moment, we are confident that it will land in Q3

Chef Infra Client

tas50 shared

  • Released 15/16 client versions
  • Troubleshooted a regression in client -> server protocol negotiation and released 16.3.45 to resolve that regression
  • Prepped a new Cookstyle released with 2 new cops for macos_userdefaults changes in 16.3
  • Started refactor work on osx_profile resource
  • Started investigating how we could potentially talk directly to the OS on macOS instead of shelling out to tools like defaults

Chef Inspec

schwad shared

Hello everyone from Team InSpec! No big release this week, but we have some merged and in-flight work that looks to be cooking up a release for next week.

  • @fzipi very kindly has contributed two PRs (and just joined community slack so be sure to say hi! helping to suppress sensitive mysql and postgres session outputs from logs and fixing and issue with os family naming. Thanks!
  • Bugfix to ensure when you truncate a failure message, it only renders the “TRUNCATED” text when it’s actually been truncated.
  • Extend service resource support to Scientific Linux

Also, I know this has been talked about, but if you’ve done InSpec work with the Chef learning in the past, be sure to check it out again! Learn Chef was overhauled not long ago and is definitely worth a revisit!

Chef Workstation

tball shared

This week the Workstation team has:

  • Reverted a PR in Test Kitchen that was breaking all Windows users. That updated version of Test Kitchen will be released early next week in the bi-weekly Chef Workstation release. It was fixing support for root_path and we want that fix, so we'll take another stab at that next sprint.
  • Added documentation for chef report and chef capture to
  • Added hab version output to chef -v and the Chef Workstation App
  • Planning work for our next Chef Workstation feature

Sous Chefs

ramereth shared

ruby_rbenv 2.5.0 released:

  • Add support for Ubuntu 20.04
  • Fix dependency issue for suse

nginx has been released at 10.1.1:

  • Change resource logging to use Chef::Log instead of the log resource. Resource update status reporting may change. The log resource always implies the surrounding resource was updated.
  • Update the resource documentation to clarify extra variables properties
  • Automated PR: Standardising Files (various PRs)

openvpn has been released at 5.1.1:

In progress PRs:

In addition, @ramereth has been continuing work on updating the nagios cookbook to library/resource based along with updates to the latest apache2 cookbook.

I'm also hoping to have additional OSUOSL students help with Sous Chefs cookbooks that we use so be on the look out!

Cinc Updates

ramereth shared

Cinc Client:

Cinc Auditor:

Cinc Server:

See you next week!

This topic was automatically closed after 3 days. New replies are no longer allowed.