Workflow

Watchmaker

Latest version: v0.28.4

Safety actively analyzes 630406 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 16 of 39

2017.09.22

**Summary**:

* [[PR 381][381]] Restricts `wheel` version on Python 2.6 to be less than or
equal to 0.29.0, as `wheel` 0.30.0 removed support for py26.

[381]: https://github.com/plus3it/watchmaker/pull/381

2017.08.11

**Summary**:

* ash-linux-formula
* (el7) Includes a "safety" state for firewalld that ensures SSH inbound
access will remain available, in the event the default zone is set to
"drop"

2017.08.07

**Summary**:

* ash-linux-formula
* (el6) Improve the method of disabling the sysctl option `ip_forward`,
to account for the behavior of the `aws-vpc-nat` rpm
* scap-formula
* (elX) Updates openscap security guide content to version 0.1.34-1

2017.08.01

**Summary**:

* ash-linux-formula
* Modified the FIPS custom execution module to discover the boot
partition and add the `boot=` line to the grub configuration

2017.07.25

**Summary**:

* ash-linux-formula
* Updates the EL7 stig baseline to manage the FIPS state. The state
defaults to `enabled` but can be overridden via a pillar or grain,
`ash-linux:lookup:fips-state`. The grain takes precedence over the
pillar. Valid values are `enabled` or `disabled`
* ash-windows-formula
* Updates the STIG baselines for Windows Server 2016 member servers and
domain controllers with SCAP content from the DISA v1r1 SCAP benchmark
release
* join-domain-formula
* Fixes an issue when joining Windows 2016 servers to a domain, where the
Set-DnsSearchSuffix.ps1 helper would fail because the builtin
PowerShell version does not work when `$null` is used in a ValidateSet.
The equivalent value must now be passed as the string, `"null"`
* scap-formula
* Adds SCAP content for the Window Server 2016 SCAP v1r1 Benchmark

2017.07.08

**Summary**:

* [[Issue 341][341]][[PR 342][342]] Manages selinux around salt state
execution. In some non-interactive execution scenarios, if selinux is
enforcing it can interfere with the execution of privileged commands (that
otherwise work fine when executed interactively). Watchmaker now detects if
selinux is enforcing and temporarily sets it to permissive for the duration
of the salt state execution

[342]: https://github.com/plus3it/watchmaker/pull/342
[341]: https://github.com/plus3it/watchmaker/issues/341

Page 16 of 39

Links

Releases

Has known vulnerabilities

Previous Next

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.