|
|
e78f61c5ed
|
Avoid TOCTOU issues, stronger perms on manifest dir, don't allow harvesting to existing dir by default, scan whole file for potential secrets
CI / test (push) Successful in 48s
CI / test (almalinux, docker.io/library/almalinux:9, python3.11) (push) Successful in 11m19s
CI / test (debian, docker.io/library/debian:13, python3) (push) Successful in 20m40s
Lint / test (push) Successful in 48s
|
2026-06-22 11:41:11 +10:00 |
|
|
|
c7a6bfe979
|
Update tests
CI / test (push) Successful in 51s
CI / test (almalinux, docker.io/library/almalinux:9, python3.11) (push) Successful in 11m30s
CI / test (debian, docker.io/library/debian:13, python3) (push) Successful in 19m55s
Lint / test (push) Successful in 44s
|
2026-06-22 11:06:24 +10:00 |
|
|
|
a0914e1369
|
Strict validation of PATH when running as root in case it could contain potentially unsafe binaries
|
2026-06-22 11:06:01 +10:00 |
|
|
|
205c419a7a
|
Sanity check on FQDN name to avoid accidental path traversal and similar woes
|
2026-06-22 10:59:17 +10:00 |
|
|
|
3e8ad600e2
|
Use shlex.quote on remote commands
|
2026-06-22 10:58:20 +10:00 |
|
|
|
0a0f067111
|
Add other common strings that could represent sensitive values to ignore unless in --dangerous mode
|
2026-06-22 10:57:54 +10:00 |
|
|
|
e2b61bcdf1
|
Ensure jinjifying an artifact passes through safe_artifact_file just in case
|
2026-06-22 10:57:08 +10:00 |
|
|
|
03dc467e32
|
Updates to DEVELOPMENT.md re: manifest and validate
|
2026-06-22 10:09:31 +10:00 |
|
|
|
1e61ae2ff9
|
Fix tests for deb build
CI / test (push) Successful in 49s
CI / test (almalinux, docker.io/library/almalinux:9, python3.11) (push) Successful in 11m32s
CI / test (debian, docker.io/library/debian:13, python3) (push) Successful in 20m1s
Lint / test (push) Successful in 44s
|
2026-06-22 10:05:17 +10:00 |
|
|
|
67b92731f6
|
Update tests
Lint / test (push) Waiting to run
CI / test (push) Failing after 49s
CI / test (almalinux, docker.io/library/almalinux:9, python3.11) (push) Has been cancelled
CI / test (debian, docker.io/library/debian:13, python3) (push) Has been cancelled
|
2026-06-22 09:58:54 +10:00 |
|
|
|
0384f8817b
|
Fail closed on SMTP STARTTLS credential failure before sending creds. Ensure diff's manifest dir works now that we don't remove the target location if it exists (temp dir)
|
2026-06-22 09:57:56 +10:00 |
|
|
|
5ffd4ee755
|
Perform harvest validation before trying to manifest from it
|
2026-06-22 09:56:55 +10:00 |
|
|
|
706604df74
|
Stricter validation of harvests to ensure that they meet the schema and don't contain unsafe artifacts (e.g symlinks pointing outside the artifact tree)
|
2026-06-22 09:55:38 +10:00 |
|
|
|
a85e8265f4
|
Don't allow .enroll.ini in CWD, rely on env var or XDG path
|
2026-06-22 09:52:33 +10:00 |
|
|
|
6ee8c60e64
|
Fix the almalinux tests - skip jinjaturtle and systemd in CI
CI / test (push) Successful in 46s
CI / test (almalinux, docker.io/library/almalinux:9, python3.11) (push) Successful in 11m26s
CI / test (debian, docker.io/library/debian:13, python3) (push) Successful in 20m24s
Lint / test (push) Successful in 45s
|
2026-06-21 17:49:51 +10:00 |
|
|
|
ce2652a3b3
|
Handle gracefully debian stuff when testing on rhel-like
CI / test (push) Has been cancelled
Lint / test (push) Has been cancelled
CI / test (almalinux, docker.io/library/almalinux:9, python3.11) (push) Failing after 5m10s
CI / test (debian, docker.io/library/debian:13, python3) (push) Failing after 10m10s
|
2026-06-21 16:15:33 +10:00 |
|
|
|
b704a6c80b
|
Add node before checkout
Lint / test (push) Waiting to run
CI / test (push) Successful in 46s
CI / test (almalinux, docker.io/library/almalinux:9, python3.11) (push) Failing after 3m14s
CI / test (debian, docker.io/library/debian:13, python3) (push) Failing after 11m33s
|
2026-06-21 16:07:03 +10:00 |
|
|
|
b3a9cd3fb9
|
Fix curl on almalinux
Lint / test (push) Waiting to run
CI / test (push) Successful in 46s
CI / test (almalinux, docker.io/library/almalinux:9, python3.11) (push) Failing after 2m9s
CI / test (debian, docker.io/library/debian:13, python3) (push) Failing after 2m28s
|
2026-06-21 16:00:35 +10:00 |
|
|
|
429da3f4c1
|
Attempt to run tests on Alma Linux
Lint / test (push) Waiting to run
CI / test (push) Successful in 46s
CI / test (almalinux, docker.io/library/almalinux:9, python3.11) (push) Failing after 30s
CI / test (debian, docker.io/library/debian:13, python3) (push) Failing after 2m47s
|
2026-06-21 15:57:41 +10:00 |
|
|
|
f21bac7d1c
|
Updates to CHANGELOG and release script
CI / test (push) Successful in 26m56s
Lint / test (push) Successful in 42s
|
2026-06-21 13:40:07 +10:00 |
|
|
|
fc120f02a5
|
More test coverage
|
2026-06-21 13:37:37 +10:00 |
|
|
|
528176ad82
|
Enforce the galaxy requirements in tests
Lint / test (push) Waiting to run
CI / test (push) Has been cancelled
|
2026-06-21 13:15:10 +10:00 |
|
|
|
90e863df40
|
Add DEVELOPMENT.md
|
2026-06-21 13:03:26 +10:00 |
|
|
|
a0ac28f213
|
Support '--enforce' mode in 'enroll diff' with '--target' to use a specific config manager to run to enforce
CI / test (push) Successful in 27m26s
Lint / test (push) Successful in 45s
|
2026-06-21 12:38:10 +10:00 |
|
|
|
5b0e945c99
|
Fix jinjaturtle tests
CI / test (push) Successful in 27m22s
Lint / test (push) Successful in 41s
|
2026-06-21 09:42:19 +10:00 |
|
|
|
d81c32ab7f
|
Require version 1.20.0 or higher of podman container collection, for the platform arg
|
2026-06-21 09:41:56 +10:00 |
|
|
|
c7c8b93e09
|
make tests.sh executable again, whoops
CI / test (push) Failing after 3m49s
Lint / test (push) Successful in 44s
|
2026-06-21 09:30:15 +10:00 |
|
|
|
5bb22afefd
|
Run jinjaturtle unit tests across the three renderers
CI / test (push) Failing after 3m9s
Lint / test (push) Has been cancelled
|
2026-06-21 09:17:29 +10:00 |
|
|
|
582679a523
|
0.7.0b7
CI / test (push) Successful in 20m0s
Lint / test (push) Has been cancelled
|
2026-06-21 09:03:52 +10:00 |
|
|
|
97b64522c6
|
Merge branch 'erb'
|
2026-06-21 09:03:33 +10:00 |
|
|
|
eeb37be567
|
0.7.0b6
CI / test (push) Successful in 19m38s
Lint / test (push) Successful in 44s
|
2026-06-20 18:39:28 +10:00 |
|
|
|
f335077e59
|
Fix salt rendering of yaml/json
|
2026-06-20 18:38:49 +10:00 |
|
|
|
8cbde1423a
|
erb support, and fix notify services in puppet/salt in fqdn mode
|
2026-06-20 18:22:08 +10:00 |
|
|
|
4fd0facaf8
|
0.7.0b5
CI / test (push) Successful in 19m16s
Lint / test (push) Successful in 44s
|
2026-06-20 15:33:47 +10:00 |
|
|
|
5845ff58e4
|
Update pyproject comment
|
2026-06-20 15:33:24 +10:00 |
|
|
|
097022f782
|
Fix notification of individual services when related config changes, even when roles are grouped
CI / test (push) Successful in 19m18s
Lint / test (push) Successful in 42s
|
2026-06-20 15:31:42 +10:00 |
|
|
|
08066595f1
|
README updates
|
2026-06-20 14:36:59 +10:00 |
|
|
|
eb286b1db0
|
0.7.0b4
CI / test (push) Successful in 19m23s
Lint / test (push) Successful in 43s
|
2026-06-20 12:30:39 +10:00 |
|
|
|
ceb86c513c
|
Improve test coverage of salt and puppet
Lint / test (push) Waiting to run
CI / test (push) Has been cancelled
|
2026-06-20 12:30:02 +10:00 |
|
|
|
899724097e
|
Standardise more into CMModule parent class for the 3 child renderers
Lint / test (push) Waiting to run
CI / test (push) Has been cancelled
|
2026-06-20 12:19:04 +10:00 |
|
|
|
7379587a28
|
Don't enforce /etc/enroll if no firewall rules to set in subdir
CI / test (push) Successful in 19m38s
Lint / test (push) Successful in 43s
|
2026-06-19 20:29:12 +10:00 |
|
|
|
d6371ccccd
|
Fixes for ensuring /etc/enroll exists if /etc/enroll/firewall is to be created
|
2026-06-19 20:18:19 +10:00 |
|
|
|
5644062040
|
0.7.0b2
|
2026-06-19 19:12:26 +10:00 |
|
|
|
de42e16510
|
loooots of fixes.
CI / test (push) Failing after 20m26s
Lint / test (push) Successful in 44s
|
2026-06-19 18:55:30 +10:00 |
|
|
|
b8926f9a5f
|
Simplify the over-engineered ansible rendering. Simplify docker image mgmt on Puppet so it doesn't use that awful puppetlabs-docker module
CI / test (push) Successful in 20m26s
Lint / test (push) Successful in 47s
|
2026-06-19 16:32:25 +10:00 |
|
|
|
05b2875c17
|
Oh, Salt now works with JinjaTurtle :)
CI / test (push) Successful in 19m36s
Lint / test (push) Successful in 45s
|
2026-06-18 20:38:50 +10:00 |
|
|
|
adfeb21d4b
|
reintroduce Salt
Lint / test (push) Waiting to run
CI / test (push) Has been cancelled
|
2026-06-18 20:35:38 +10:00 |
|
|
|
0d111caf62
|
Revert "Remove salt"
This reverts commit b149b2e5d7.
|
2026-06-18 20:12:56 +10:00 |
|
|
|
02feff014f
|
Version 0.7.0b1
CI / test (push) Successful in 18m28s
Lint / test (push) Successful in 46s
|
2026-06-18 09:13:03 +10:00 |
|
|
|
37523514b0
|
Make clear that flatpak/snap config manifesting is Ansible only for now
Lint / test (push) Waiting to run
CI / test (push) Has been cancelled
|
2026-06-18 09:12:24 +10:00 |
|
