From 168bc10c9f6d385102ecdda8eca8a8f13877462a Mon Sep 17 00:00:00 2001 From: Loren Gordon Date: Mon, 8 May 2023 11:39:00 -0700 Subject: [PATCH] Releases watchmaker 0.27.1 --- .bumpversion.cfg | 2 +- CHANGELOG.md | 34 ++++++++++++++++++++++++++++++---- docs/conf.py | 2 +- setup.cfg | 2 +- 4 files changed, 33 insertions(+), 7 deletions(-) diff --git a/.bumpversion.cfg b/.bumpversion.cfg index fdae167e9..dd944a9b3 100644 --- a/.bumpversion.cfg +++ b/.bumpversion.cfg @@ -1,5 +1,5 @@ [bumpversion] -current_version = 0.27.0 +current_version = 0.27.1 commit = False tag = False tag_name = {new_version} diff --git a/CHANGELOG.md b/CHANGELOG.md index a2c7a6289..5cfc03195 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,5 +1,30 @@ # Changelog +## [0.27.1](https://github.com/plus3it/watchmaker/releases/tag/0.27.1) + +**Released**: 2023.05.08 + +**Summary**: + +* Fixes typo in upload of Windows standalone binary to GitHub Releases +* Documents known/spurious EL8 findings that scanning utilities may flag + erroneously +* Fixes the check that skips reinstalling salt when the correct version is + already installed +* Publishes EL8 scap scans as a release artifact to `watchmaker.cloudarmor.io`, + alongside the standalone binaries +* Updates scap pillar in default salt content to run scans properly on CentOS + Stream and scap version 1.3 +* ash-linux-formula + - Fixes oscap remediation on CentOS Stream 8 and Oracle Linux 8 + - Addresses numerous additional STIG findings on EL8 systems that were not + addressed with oscap remediation + - Attempts to address EL8 issue with aws-cli, where fapolicyd blocks execution +* forescout-secure-connector-formula + - Establishes symlink so logs are written to `/var/log` partition +* scap-formula + - Updates openscap content to v0.1.67, using scap 1.3 datastreams + ## [0.27.0](https://github.com/plus3it/watchmaker/releases/tag/0.27.0) **Released**: 2023.03.31 @@ -9,10 +34,11 @@ * Releases support for EL8 platforms, to include Red Hat 8, CentOS 8 Stream, and Oracle Linux 8. Future work may also add support for Rocky Linux 8 and Alma Linux 8 - - CAVEAT: With this release, the Watchmaker standalone binary for EL8 - **does not** work when the system is FIPS-enabled. The problem is not yet - entirely understood. Further investigation is needed before this issue - can be resolved + - CAVEAT: With this release, on FIPS-enabled EL8 systems, please use the + [PyPi install or the source install methods](https://watchmaker.cloudarmor.io/en/stable/installation.html). + Currently, the standalone method for EL8 **does not** work when the system + is FIPS-enabled. The problem is not yet entirely understood. Further investigation + is needed before this issue can be resolved * Updates salt worker to avoid re-installing salt when `salt-call --version` matches the `salt_version` in the Watchmaker config * Updates EL7 findings documentation to line up with latest stig version diff --git a/docs/conf.py b/docs/conf.py index 531cb032c..06d49046f 100644 --- a/docs/conf.py +++ b/docs/conf.py @@ -92,7 +92,7 @@ # built documents. # # The short X.Y version. -version = '0.27.0' +version = '0.27.1' # The full version, including alpha/beta/rc tags. release = version diff --git a/setup.cfg b/setup.cfg index 424b16d26..85cd593d2 100644 --- a/setup.cfg +++ b/setup.cfg @@ -3,7 +3,7 @@ [metadata] name = watchmaker description = Applied Configuration Management -version = 0.27.0 +version = 0.27.1 long_description = file: README.md, CHANGELOG.md long_description_content_type = text/markdown author = Plus3IT Maintainers of Watchmaker