CheckMK-Role merge requestshttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests2024-02-15T13:05:23+01:00https://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/139chore(deps-dev): bump molecule-plugins from 23.4.1 to 23.5.32024-02-15T13:05:23+01:00HIFIS Botchore(deps-dev): bump molecule-plugins from 23.4.1 to 23.5.3Bumps [molecule-plugins](https://github.com/ansible-community/molecule-plugins) from 23.4.1 to 23.5.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ansible-community/molecule-plugins/releases...Bumps [molecule-plugins](https://github.com/ansible-community/molecule-plugins) from 23.4.1 to 23.5.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ansible-community/molecule-plugins/releases">molecule-plugins's releases</a>.</em></p>
<blockquote>
<h2>v23.5.3</h2>
<h2>Bugfixes</h2>
<ul>
<li>update docker collection (<a href="https://github.com/ansible-community/molecule-plugins/issues/217">#217</a>) <a href="https://github.com/zhan9san"><code>@zhan9san</code></a></li>
<li>Use v6-alpha1 molecule version for tests by <a href="https://github.com/audgirka"><code>@audgirka</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/180">ansible-community/molecule-plugins#180</a></li>
<li>Prevent empty destroy from deleting other EC2 instances by <a href="https://github.com/Thomas-McKanna"><code>@Thomas-McKanna</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/170">ansible-community/molecule-plugins#170</a></li>
<li>fix duplicate test names by <a href="https://github.com/alicekaerast"><code>@alicekaerast</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/197">ansible-community/molecule-plugins#197</a></li>
<li>pass vpc_subnet_id explicitly to avoid amazon.aws error by <a href="https://github.com/danielpodwysocki"><code>@danielpodwysocki</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/199">ansible-community/molecule-plugins#199</a></li>
<li>Fixes destroy playbook failure if vpc lookup is required by <a href="https://github.com/tkimball83"><code>@tkimball83</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/184">ansible-community/molecule-plugins#184</a></li>
<li>podman: remove ansible_async_dir setting logic by <a href="https://github.com/grcancelliere"><code>@grcancelliere</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/182">ansible-community/molecule-plugins#182</a></li>
<li>Add Python 3.12 to test matrix by <a href="https://github.com/cristianonicolai"><code>@cristianonicolai</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/207">ansible-community/molecule-plugins#207</a></li>
<li>Remove dependency to molecule.test by <a href="https://github.com/cristianonicolai"><code>@cristianonicolai</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/206">ansible-community/molecule-plugins#206</a></li>
<li>Disable registry login when registry.url is empty by <a href="https://github.com/dometto"><code>@dometto</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/214">ansible-community/molecule-plugins#214</a></li>
<li>Support the shm_size docker configuration option by <a href="https://github.com/zleinweber"><code>@zleinweber</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/216">ansible-community/molecule-plugins#216</a></li>
<li>Fixes podman always remove existing containers by <a href="https://github.com/juanvalino"><code>@juanvalino</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/187">ansible-community/molecule-plugins#187</a></li>
<li>Handle Docker errors correctly by <a href="https://github.com/alicekaerast"><code>@alicekaerast</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/196">ansible-community/molecule-plugins#196</a></li>
<li>Plugin openstack (2) by <a href="https://github.com/juanlufont"><code>@juanlufont</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/219">ansible-community/molecule-plugins#219</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/alicekaerast"><code>@alicekaerast</code></a> made their first contribution in <a href="https://github.com/ansible-community/molecule-plugins/pull/197">ansible-community/molecule-plugins#197</a></li>
<li><a href="https://github.com/pbjhelmert"><code>@pbjhelmert</code></a> made their first contribution in <a href="https://github.com/ansible-community/molecule-plugins/pull/195">ansible-community/molecule-plugins#195</a></li>
<li><a href="https://github.com/tkimball83"><code>@tkimball83</code></a> made their first contribution in <a href="https://github.com/ansible-community/molecule-plugins/pull/184">ansible-community/molecule-plugins#184</a></li>
<li><a href="https://github.com/cristianonicolai"><code>@cristianonicolai</code></a> made their first contribution in <a href="https://github.com/ansible-community/molecule-plugins/pull/205">ansible-community/molecule-plugins#205</a></li>
<li><a href="https://github.com/dometto"><code>@dometto</code></a> made their first contribution in <a href="https://github.com/ansible-community/molecule-plugins/pull/214">ansible-community/molecule-plugins#214</a></li>
<li><a href="https://github.com/zleinweber"><code>@zleinweber</code></a> made their first contribution in <a href="https://github.com/ansible-community/molecule-plugins/pull/216">ansible-community/molecule-plugins#216</a></li>
<li><a href="https://github.com/juanvalino"><code>@juanvalino</code></a> made their first contribution in <a href="https://github.com/ansible-community/molecule-plugins/pull/187">ansible-community/molecule-plugins#187</a></li>
<li><a href="https://github.com/juanlufont"><code>@juanlufont</code></a> made their first contribution in <a href="https://github.com/ansible-community/molecule-plugins/pull/219">ansible-community/molecule-plugins#219</a></li>
</ul>
<h2>v23.5.0</h2>
<h2>Minor Changes</h2>
<ul>
<li>podman: change ansible_async_dir only when $HOME is redefined (<a href="https://github.com/ansible-community/molecule-plugins/issues/173">#173</a>) <a href="https://github.com/grcancelliere"><code>@grcancelliere</code></a></li>
<li>Fix ansible-lint errors (<a href="https://github.com/ansible-community/molecule-plugins/issues/169">#169</a>) <a href="https://github.com/apatard"><code>@apatard</code></a></li>
<li>Add support for vmware_esxi plugin (<a href="https://github.com/ansible-community/molecule-plugins/issues/163">#163</a>) <a href="https://github.com/Tualua"><code>@Tualua</code></a></li>
<li>Allow for setting EC2 instance profile (<a href="https://github.com/ansible-community/molecule-plugins/issues/164">#164</a>) <a href="https://github.com/Thomas-McKanna"><code>@Thomas-McKanna</code></a></li>
<li>enhancement: Including files in source distributions with MANIFEST.in (<a href="https://github.com/ansible-community/molecule-plugins/issues/156">#156</a>) <a href="https://github.com/hswong3i"><code>@hswong3i</code></a></li>
<li>src/molecule_plugins/vagrant/modules/vagrant.py: Get rid of molecule dependency (<a href="https://github.com/ansible-community/molecule-plugins/issues/142">#142</a>) <a href="https://github.com/apatard"><code>@apatard</code></a></li>
<li>feat: Add runtime entry on docker create playbook (<a href="https://github.com/ansible-community/molecule-plugins/issues/154">#154</a>) <a href="https://github.com/pjrm"><code>@pjrm</code></a></li>
<li>Enhancement: Generate cookie cutter templates and apply linting on them (<a href="https://github.com/ansible-community/molecule-plugins/issues/123">#123</a>) <a href="https://github.com/wadhah101"><code>@wadhah101</code></a></li>
<li>Update driver.py documentation according to new plugin name (<a href="https://github.com/ansible-community/molecule-plugins/issues/149">#149</a>) <a href="https://github.com/Tcharl"><code>@Tcharl</code></a></li>
</ul>
<h2>Bugfixes</h2>
<ul>
<li>Revert "Update tests to use v6-alpha1 molecule version" (<a href="https://github.com/ansible-community/molecule-plugins/issues/178">#178</a>) <a href="https://github.com/ajinkyau"><code>@ajinkyau</code></a></li>
<li>Update tests to use v6-alpha1 molecule version (<a href="https://github.com/ansible-community/molecule-plugins/issues/177">#177</a>) <a href="https://github.com/ajinkyau"><code>@ajinkyau</code></a></li>
<li>enhancement: add fqcn to cookicutter files of ec2, containers and docker (<a href="https://github.com/ansible-community/molecule-plugins/issues/168">#168</a>) <a href="https://github.com/bernd-mueller-1"><code>@bernd-mueller-1</code></a></li>
<li>src/molecule_plugins/vagrant/modules/vagrant.py: Get rid of molecule dependency (<a href="https://github.com/ansible-community/molecule-plugins/issues/142">#142</a>) <a href="https://github.com/apatard"><code>@apatard</code></a></li>
<li>lint tests (<a href="https://github.com/ansible-community/molecule-plugins/issues/159">#159</a>) <a href="https://github.com/konstruktoid"><code>@konstruktoid</code></a></li>
<li>Add additional "safe" filters to entries in Vagrantfile (<a href="https://github.com/ansible-community/molecule-plugins/issues/153">#153</a>) <a href="https://github.com/samiam"><code>@samiam</code></a></li>
<li>fix: Ensure SSH wait polls proper async variable in ec2 create (<a href="https://github.com/ansible-community/molecule-plugins/issues/147">#147</a>) <a href="https://github.com/isuftin"><code>@isuftin</code></a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/b48ead5d12d80eb90ead14f1958d0e9ef79b8752"><code>b48ead5</code></a> Update release.yml (<a href="https://github.com/ansible-community/molecule-plugins/issues/234">#234</a>)</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/c7771320fdaee1d9fdaaaf7f0e9482dfe84a594e"><code>c777132</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://github.com/ansible-community/molecule-plugins/issues/223">#223</a>)</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/17cc5d10bd21731b85366e7d3201c2bbb0f5a866"><code>17cc5d1</code></a> update docker collection (<a href="https://github.com/ansible-community/molecule-plugins/issues/217">#217</a>)</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/34074275f1e292017c5d354f1f3539cf3d486c5d"><code>3407427</code></a> Plugin openstack (2) (<a href="https://github.com/ansible-community/molecule-plugins/issues/219">#219</a>)</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/fe3ceb6a7d0c33b4e65401c44ae507ac918edb6d"><code>fe3ceb6</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://github.com/ansible-community/molecule-plugins/issues/218">#218</a>)</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/ff13a9033f95e2d85979b93df0edd65a1249190a"><code>ff13a90</code></a> Bump actions/setup-python from 4 to 5 (<a href="https://github.com/ansible-community/molecule-plugins/issues/221">#221</a>)</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/42e68e28defb2bde8442e485da62f80fe8436f84"><code>42e68e2</code></a> Handle Docker errors correctly (<a href="https://github.com/ansible-community/molecule-plugins/issues/196">#196</a>)</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/e9d56496261807a5174c1347123b49e629c2490b"><code>e9d5649</code></a> Fixes podman always remove existing containers (<a href="https://github.com/ansible-community/molecule-plugins/issues/187">#187</a>)</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/4ab4b1a4d8ff21741a70a4a36ad78fd43a0eef25"><code>4ab4b1a</code></a> Support the shm_size docker configuration option (<a href="https://github.com/ansible-community/molecule-plugins/issues/216">#216</a>)</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/af8f72faec0c99c42130621727178c197275fe0d"><code>af8f72f</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://github.com/ansible-community/molecule-plugins/issues/210">#210</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/ansible-community/molecule-plugins/compare/v23.4.1...v23.5.3">compare view</a></li>
</ul>
</details>
<br />Huste, TobiasHuste, Tobiashttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/138chore(deps-dev): bump molecule from 6.0.3 to 24.2.02024-02-15T13:11:52+01:00HIFIS Botchore(deps-dev): bump molecule from 6.0.3 to 24.2.0Bumps [molecule](https://github.com/ansible-community/molecule) from 6.0.3 to 24.2.0.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible/molecule/commit/14dc0077dca91b1c388c866b8de49f9ff41e1003"><code>14dc0...Bumps [molecule](https://github.com/ansible-community/molecule) from 6.0.3 to 24.2.0.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible/molecule/commit/14dc0077dca91b1c388c866b8de49f9ff41e1003"><code>14dc007</code></a> Fix background color on matrix command (<a href="https://github.com/ansible-community/molecule/issues/4133">#4133</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/22c1a0e23f39178242df862e9dbcc5c400ebb2f8"><code>22c1a0e</code></a> Update dependencies to include new mkdocs-ansible branding (<a href="https://github.com/ansible-community/molecule/issues/4130">#4130</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/203f06d75f9fbd164580250b862a60c5ce03fbe1"><code>203f06d</code></a> Adding molecule template based on <code>driver.name</code> (<a href="https://github.com/ansible-community/molecule/issues/4126">#4126</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/82652e89a78398692555a7e941c7576872798b03"><code>82652e8</code></a> GHA maintenance (<a href="https://github.com/ansible-community/molecule/issues/4132">#4132</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/b21aa8ac9443ad63b94ecc6658aec03fd2c5a646"><code>b21aa8a</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://github.com/ansible-community/molecule/issues/4129">#4129</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/cf232df5e3f1c8dc0dd0e8c0edf1a3c8234d8806"><code>cf232df</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://github.com/ansible-community/molecule/issues/4125">#4125</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/185ecae0ccee58a4f1f6154f9b91a7778e5f90a8"><code>185ecae</code></a> Bump codecov/codecov-action from 3 to 4 (<a href="https://github.com/ansible-community/molecule/issues/4127">#4127</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/8f7a5ccedc6dc0b638d87e1de9b9398e3f372dcf"><code>8f7a5cc</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://github.com/ansible-community/molecule/issues/4114">#4114</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/64afa3bc96baf55cf41d9ac416536871e6bfdff4"><code>64afa3b</code></a> Bump actions/cache from 3 to 4 (<a href="https://github.com/ansible-community/molecule/issues/4116">#4116</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/c13bbc7a632338523ec1b52c66c8a138701bb0b2"><code>c13bbc7</code></a> Fix python interpreter for scenario init (<a href="https://github.com/ansible-community/molecule/issues/4111">#4111</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/ansible-community/molecule/compare/v6.0.3...v24.2.0">compare view</a></li>
</ul>
</details>
<br />Huste, TobiasHuste, Tobiashttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/136chore(deps): [security] bump ansible-core from 2.16.2 to 2.16.32024-03-25T13:44:43+01:00HIFIS Botchore(deps): [security] bump ansible-core from 2.16.2 to 2.16.3Bumps [ansible-core](https://github.com/ansible/ansible) from 2.16.2 to 2.16.3. **This update includes a security fix.**
<details>
<summary>Vulnerabilities fixed</summary>
<blockquote>
<p><strong>Ansible-core information disclosure flaw<...Bumps [ansible-core](https://github.com/ansible/ansible) from 2.16.2 to 2.16.3. **This update includes a security fix.**
<details>
<summary>Vulnerabilities fixed</summary>
<blockquote>
<p><strong>Ansible-core information disclosure flaw</strong>
An information disclosure flaw was found in ansible-core due to a failure to respect the <code>ANSIBLE_NO_LOG</code> configuration in some scenarios. It was discovered that information is still included in the output in certain tasks, such as loop items. Depending on the task, this issue may include sensitive information, such as decrypted secret values.</p>
<p>Patched versions: 2.16.3
Affected versions: >= 2.16.0b1, < 2.16.3</p>
</blockquote>
</details>
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ansible/ansible/releases">ansible-core's releases</a>.</em></p>
<blockquote>
<h2>v2.16.3</h2>
<h1>Changelog</h1>
<p>See the <a href="https://github.com/ansible/ansible/blob/v2.16.3/changelogs/CHANGELOG-v2.16.rst">full changelog</a> for the changes included in this release.</p>
<h1>Release Artifacts</h1>
<ul>
<li>Built Distribution: <a href="https://files.pythonhosted.org/packages/b0/ec/6b5eed80eac9e3234fc9a9e61356ec2999b70cc23f83453f57e9a0fd3574/ansible_core-2.16.3-py3-none-any.whl">ansible_core-2.16.3-py3-none-any.whl</a> - 2250322 bytes
<ul>
<li>50c9f33a5b2ee645470a77f4bf99cf35d1ffdefef60388910020b0c58534bec1 (SHA256)</li>
</ul>
</li>
<li>Source Distribution: <a href="https://files.pythonhosted.org/packages/00/b9/7d2229459038cdfe84b6e4db76f97acae35cb46917a0d9a7e61d3e300637/ansible-core-2.16.3.tar.gz">ansible-core-2.16.3.tar.gz</a> - 3168893 bytes
<ul>
<li>76a8765a8586064ef073a299562e308fa2c180a75b5f7569bbd0f61d4171cdb3 (SHA256)</li>
</ul>
</li>
</ul>
<h2>v2.16.3rc1</h2>
<h1>Changelog</h1>
<p>See the <a href="https://github.com/ansible/ansible/blob/v2.16.3rc1/changelogs/CHANGELOG-v2.16.rst">full changelog</a> for the changes included in this release.</p>
<h1>Release Artifacts</h1>
<ul>
<li>Built Distribution: <a href="https://files.pythonhosted.org/packages/f3/1a/287aa78525550098a977b93361a2c136778208c929c638f5d090ea3e4e7b/ansible_core-2.16.3rc1-py3-none-any.whl">ansible_core-2.16.3rc1-py3-none-any.whl</a> - 2250371 bytes
<ul>
<li>c9d6702235eb708023105f4f4a5f9f2620503684cdc3115ed3e6e0b9b6930780 (SHA256)</li>
</ul>
</li>
<li>Source Distribution: <a href="https://files.pythonhosted.org/packages/d3/f1/9ad5c3d444e00bd3e5596a8334f51a3f85f9f368201515402ba65ac74d84/ansible-core-2.16.3rc1.tar.gz">ansible-core-2.16.3rc1.tar.gz</a> - 3172729 bytes
<ul>
<li>0c4326d487dae339d0a991e89ff85117afb6507f79b45744e3c3451b6faef5f4 (SHA256)</li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible/ansible/commit/df6c5244ef0b5e484b83e6811e353ca61d9975ee"><code>df6c524</code></a> New release v2.16.3 (<a href="https://github.com/ansible/ansible/issues/82619">#82619</a>)</li>
<li><a href="https://github.com/ansible/ansible/commit/5bef147a5d5e37bb0872da31e515a94e2c145bad"><code>5bef147</code></a> Update Ansible release version to v2.16.3rc1.post0. (<a href="https://github.com/ansible/ansible/issues/82591">#82591</a>)</li>
<li><a href="https://github.com/ansible/ansible/commit/19e82eca024ae63b83f1ebd09ce3629e2dca532b"><code>19e82ec</code></a> New release v2.16.3rc1 (<a href="https://github.com/ansible/ansible/issues/82587">#82587</a>)</li>
<li><a href="https://github.com/ansible/ansible/commit/d817f5e87fcee2c620de6c56e5bbf34317af75d5"><code>d817f5e</code></a> Support <code>action_plugin</code> in plugin_routing_schema (<a href="https://github.com/ansible/ansible/issues/82562">#82562</a>) (<a href="https://github.com/ansible/ansible/issues/82581">#82581</a>)</li>
<li><a href="https://github.com/ansible/ansible/commit/611d0e4dcf6113e676117da95cd113176c1c57be"><code>611d0e4</code></a> Better errors for delegate_to (<a href="https://github.com/ansible/ansible/issues/82319">#82319</a>)</li>
<li><a href="https://github.com/ansible/ansible/commit/50736c45ba6943ab61dab3ea328533ef2b589226"><code>50736c4</code></a> lookups, make file searching use better is_role (<a href="https://github.com/ansible/ansible/issues/82290">#82290</a>)</li>
<li><a href="https://github.com/ansible/ansible/commit/c3b4b3ebe300adbe2eca8333c13001a7858ed021"><code>c3b4b3e</code></a> Run all handlers with the same <code>listen</code> topic when notified from another hand...</li>
<li><a href="https://github.com/ansible/ansible/commit/cfa8caff39d2358ddb7ca0113a085b20c5de02c0"><code>cfa8caf</code></a> [stable-2.16] Role fixes (<a href="https://github.com/ansible/ansible/issues/82339">#82339</a>) (<a href="https://github.com/ansible/ansible/issues/82452">#82452</a>)</li>
<li><a href="https://github.com/ansible/ansible/commit/46d9d4b17c36397f69a42cfe0a1a03c3039ef839"><code>46d9d4b</code></a> ansible-config dedupe ini plugin entries (<a href="https://github.com/ansible/ansible/issues/82498">#82498</a>)</li>
<li><a href="https://github.com/ansible/ansible/commit/9252584e89056c29d2aa1658d761b6121bb1b646"><code>9252584</code></a> ansible-galaxy - fix exit code for failed role import (<a href="https://github.com/ansible/ansible/issues/82193">#82193</a>) (<a href="https://github.com/ansible/ansible/issues/82412">#82412</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/ansible/ansible/compare/v2.16.2...v2.16.3">compare view</a></li>
</ul>
</details>
<br />HIFIS BotHIFIS Bothttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/132chore(deps-dev): [security] bump aiohttp from 3.9.1 to 3.9.22024-03-25T07:18:30+01:00HIFIS Botchore(deps-dev): [security] bump aiohttp from 3.9.1 to 3.9.2Bumps [aiohttp](https://github.com/aio-libs/aiohttp) from 3.9.1 to 3.9.2. **This update includes security fixes.**
<details>
<summary>Vulnerabilities fixed</summary>
<blockquote>
<p><strong>aiohttp is vulnerable to directory traversal</s...Bumps [aiohttp](https://github.com/aio-libs/aiohttp) from 3.9.1 to 3.9.2. **This update includes security fixes.**
<details>
<summary>Vulnerabilities fixed</summary>
<blockquote>
<p><strong>aiohttp is vulnerable to directory traversal</strong></p>
<h3>Summary</h3>
<p>Improperly configuring static resource resolution in aiohttp when used as a web server can result in the unauthorized reading of arbitrary files on the system.</p>
<h3>Details</h3>
<p>When using aiohttp as a web server and configuring static routes, it is necessary to specify the root path for static files. Additionally, the option 'follow_symlinks' can be used to determine whether to follow symbolic links outside the static root directory. When 'follow_symlinks' is set to True, there is no validation to check if a given file path is within the root directory.This can lead to directory traversal vulnerabilities, resulting in unauthorized access to arbitrary files on the system, even when symlinks are not present.</p>
<p>i.e. An application is only vulnerable with setup code like:</p>
<pre><code>app.router.add_routes([
web.static("/static", "static/", follow_symlinks=True), # Remove follow_symlinks to avoid the vulnerability
])
</code></pre>
<h3>Impact</h3>
<p>This is a directory traversal vulnerability with CWE ID 22. When using aiohttp as a web server and enabling static resource resolution with <code>follow_symlinks</code> set to True, it can lead to this vulnerability. This vulnerability has been present since the introduction of the <code>follow_symlinks</code> parameter.</p>
<h3>Workaround</h3>
<p>Even if upgrading to a patched version of aiohttp, we recommend following these steps regardless.</p>
<p>If using <code>follow_symlinks=True</code> outside of a restricted local development environment, disable the option immediately. This option is NOT needed to follow symlinks which point to a location <em>within</em> the static root directory, it is <em>only</em> intended to allow a symlink to break out of the static directory. Even with this CVE fixed, there is still a substantial risk of misconfiguration when using this option on a server that accepts requests from remote users.</p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
<blockquote>
<p>Patched versions: 3.9.2
Affected versions: >= 1.0.5, < 3.9.2</p>
</blockquote>
<blockquote>
<p><strong>aiohttp's HTTP parser (the python one, not llhttp) still overly lenient about separators</strong></p>
<h3>Summary</h3>
<p>Security-sensitive parts of the <em>Python HTTP parser</em> retained minor differences in allowable character sets, that must trigger error handling to robustly match frame boundaries of proxies in order to protect against injection of additional requests. Additionally, validation could trigger exceptions that were not handled consistently with processing of other malformed input.</p>
<h3>Details</h3>
<p>These problems are rooted in pattern matching protocol elements, previously improved by PR #3235 and GHSA-gfw2-4jvh-wgfg:</p>
<ol>
<li>
<p>The expression <code>HTTP/(\d).(\d)</code> lacked another backslash to clarify that the separator should be a literal dot, not just <em>any</em> Unicode code point (result: <code>HTTP/(\d)\.(\d)</code>).</p>
</li>
<li>
<p>The HTTP version was permitting Unicode digits, where only ASCII digits are standards-compliant.</p>
</li>
<li>
<p>Distinct regular expressions for validating HTTP Method and Header field names were used - though both should (at least) apply the common restrictions of rfc9110 <code>token</code>.</p>
</li>
</ol>
<h3>PoC</h3>
<p><code>GET / HTTP/1ö1</code>
<code>GET / HTTP/1.𝟙</code>
<code>GET/: HTTP/1.1</code>
<code>Content-Encoding?: chunked</code></p>
<h3>Impact</h3>
<p>Primarily concerns running an aiohttp server without llhttp:</p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
<blockquote>
<p>Patched versions: 3.9.2
Affected versions: < 3.9.2</p>
</blockquote>
</details>
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/aio-libs/aiohttp/releases">aiohttp's releases</a>.</em></p>
<blockquote>
<h2>3.9.2</h2>
<h2>Bug fixes</h2>
<ul>
<li>
<p>Fixed server-side websocket connection leak.</p>
<p><em>Related issues and pull requests on GitHub:</em>
<a href="https://github.com/aio-libs/aiohttp/issues/7978">#7978</a>.</p>
</li>
<li>
<p>Fixed <code>web.FileResponse</code> doing blocking I/O in the event loop.</p>
<p><em>Related issues and pull requests on GitHub:</em>
<a href="https://github.com/aio-libs/aiohttp/issues/8012">#8012</a>.</p>
</li>
<li>
<p>Fixed double compress when compression enabled and compressed file exists in server file responses.</p>
<p><em>Related issues and pull requests on GitHub:</em>
<a href="https://github.com/aio-libs/aiohttp/issues/8014">#8014</a>.</p>
</li>
<li>
<p>Added runtime type check for <code>ClientSession</code> <code>timeout</code> parameter.</p>
<p><em>Related issues and pull requests on GitHub:</em>
<a href="https://github.com/aio-libs/aiohttp/issues/8021">#8021</a>.</p>
</li>
<li>
<p>Fixed an unhandled exception in the Python HTTP parser on header lines starting with a colon -- by :user:<code>pajod</code>.</p>
<p>Invalid request lines with anything but a dot between the HTTP major and minor version are now rejected.
Invalid header field names containing question mark or slash are now rejected.
Such requests are incompatible with :rfc:<code>9110#section-5.6.2</code> and are not known to be of any legitimate use.</p>
<p><em>Related issues and pull requests on GitHub:</em>
<a href="https://github.com/aio-libs/aiohttp/issues/8074">#8074</a>.</p>
</li>
<li>
<p>Improved validation of paths for static resources requests to the server -- by :user:<code>bdraco</code>.</p>
</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/aio-libs/aiohttp/blob/master/CHANGES.rst">aiohttp's changelog</a>.</em></p>
<blockquote>
<h1>3.9.2 (2024-01-28)</h1>
<h2>Bug fixes</h2>
<ul>
<li>
<p>Fixed server-side websocket connection leak.</p>
<p><em>Related issues and pull requests on GitHub:</em>
:issue:<code>7978</code>.</p>
</li>
<li>
<p>Fixed <code>web.FileResponse</code> doing blocking I/O in the event loop.</p>
<p><em>Related issues and pull requests on GitHub:</em>
:issue:<code>8012</code>.</p>
</li>
<li>
<p>Fixed double compress when compression enabled and compressed file exists in server file responses.</p>
<p><em>Related issues and pull requests on GitHub:</em>
:issue:<code>8014</code>.</p>
</li>
<li>
<p>Added runtime type check for <code>ClientSession</code> <code>timeout</code> parameter.</p>
<p><em>Related issues and pull requests on GitHub:</em>
:issue:<code>8021</code>.</p>
</li>
<li>
<p>Fixed an unhandled exception in the Python HTTP parser on header lines starting with a colon -- by :user:<code>pajod</code>.</p>
<p>Invalid request lines with anything but a dot between the HTTP major and minor version are now rejected.
Invalid header field names containing question mark or slash are now rejected.
Such requests are incompatible with :rfc:<code>9110#section-5.6.2</code> and are not known to be of any legitimate use.</p>
<p><em>Related issues and pull requests on GitHub:</em>
:issue:<code>8074</code>.</p>
</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/aio-libs/aiohttp/commit/24a6d64966d99182e95f5d3a29541ef2fec397ad"><code>24a6d64</code></a> Release v3.9.2 (<a href="https://github.com/aio-libs/aiohttp/issues/8082">#8082</a>)</li>
<li><a href="https://github.com/aio-libs/aiohttp/commit/9118a5831e8a65b8c839eb7e4ac983e040ff41df"><code>9118a58</code></a> [PR <a href="https://github.com/aio-libs/aiohttp/issues/8079">#8079</a>/1c335944 backport][3.9] Validate static paths (<a href="https://github.com/aio-libs/aiohttp/issues/8080">#8080</a>)</li>
<li><a href="https://github.com/aio-libs/aiohttp/commit/435ad46e6c26cbf6ed9a38764e9ba8e7441a0e3b"><code>435ad46</code></a> [PR <a href="https://github.com/aio-libs/aiohttp/issues/3955">#3955</a>/8960063e backport][3.9] Replace all tmpdir fixtures with tmp_path (...</li>
<li><a href="https://github.com/aio-libs/aiohttp/commit/d33bc21414e283c9e6fe7f6caf69e2ed60d66c82"><code>d33bc21</code></a> Improve validation in HTTP parser (<a href="https://github.com/aio-libs/aiohttp/issues/8074">#8074</a>) (<a href="https://github.com/aio-libs/aiohttp/issues/8078">#8078</a>)</li>
<li><a href="https://github.com/aio-libs/aiohttp/commit/0d945d1be08f2ba8475513216a66411f053c3217"><code>0d945d1</code></a> [PR <a href="https://github.com/aio-libs/aiohttp/issues/7916">#7916</a>/822fbc74 backport][3.9] Add more information to contributing page (...</li>
<li><a href="https://github.com/aio-libs/aiohttp/commit/3ec4fa1f0e0a0dad218c75dbe5ed09e22d5cc284"><code>3ec4fa1</code></a> [PR <a href="https://github.com/aio-libs/aiohttp/issues/8069">#8069</a>/69bbe874 backport][3.9] 📝 Only show changelog draft for non-release...</li>
<li><a href="https://github.com/aio-libs/aiohttp/commit/419d715c42c46daf1a59e0aff61c1f6d10236982"><code>419d715</code></a> [PR <a href="https://github.com/aio-libs/aiohttp/issues/8066">#8066</a>/cba34699 backport][3.9] 💅📝 Restructure the changelog for clarity (#...</li>
<li><a href="https://github.com/aio-libs/aiohttp/commit/a54dab3b36bcf0d815b9244f52ae7bc5da08f387"><code>a54dab3</code></a> [PR <a href="https://github.com/aio-libs/aiohttp/issues/8049">#8049</a>/a379e634 backport][3.9] Set cause for ClientPayloadError (<a href="https://github.com/aio-libs/aiohttp/issues/8050">#8050</a>)</li>
<li><a href="https://github.com/aio-libs/aiohttp/commit/437ac47fe332106a07a2d5335bb89619f1bc23f7"><code>437ac47</code></a> [PR <a href="https://github.com/aio-libs/aiohttp/issues/7995">#7995</a>/43a5bc50 backport][3.9] Fix examples of <code>fallback_charset_resolver</code>...</li>
<li><a href="https://github.com/aio-libs/aiohttp/commit/034e5e34ee11c6138c773d85123490e691e1b708"><code>034e5e3</code></a> [PR <a href="https://github.com/aio-libs/aiohttp/issues/8042">#8042</a>/4b91b530 backport][3.9] Tightening the runtime type check for ssl (...</li>
<li>Additional commits viewable in <a href="https://github.com/aio-libs/aiohttp/compare/v3.9.1...v3.9.2">compare view</a></li>
</ul>
</details>
<br />HIFIS BotHIFIS Bothttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/131chore(deps-dev): bump reuse from 3.0.0 to 3.0.12024-03-21T10:34:54+01:00HIFIS Botchore(deps-dev): bump reuse from 3.0.0 to 3.0.1Bumps [reuse](https://github.com/fsfe/reuse-tool) from 3.0.0 to 3.0.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/fsfe/reuse-tool/releases">reuse's releases</a>.</em></p>
<blockquote>
<h2>v...Bumps [reuse](https://github.com/fsfe/reuse-tool) from 3.0.0 to 3.0.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/fsfe/reuse-tool/releases">reuse's releases</a>.</em></p>
<blockquote>
<h2>v3.0.1</h2>
<h3>Fixed</h3>
<ul>
<li><code>.qrc</code> and <code>.ui</code> now have the HTML comment style instead of being marked
uncommentable. (<a href="https://github.com/fsfe/reuse-tool/issues/896">#896</a>)</li>
<li>This reverts behaviour introduced in v3.0.0: the contents of uncommentable
files are scanned for REUSE information again. The contents of binary files
are not. (<a href="https://github.com/fsfe/reuse-tool/issues/896">#896</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/fsfe/reuse-tool/blob/main/CHANGELOG.md">reuse's changelog</a>.</em></p>
<blockquote>
<h2>3.0.1 - 2024-01-19</h2>
<h3>Fixed</h3>
<ul>
<li><code>.qrc</code> and <code>.ui</code> now have the HTML comment style instead of being marked
uncommentable. (<a href="https://github.com/fsfe/reuse-tool/issues/896">#896</a>)</li>
<li>This reverts behaviour introduced in v3.0.0: the contents of uncommentable
files are scanned for REUSE information again. The contents of binary files
are not. (<a href="https://github.com/fsfe/reuse-tool/issues/896">#896</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/fsfe/reuse-tool/commit/b450f17b130ca64bffc66f1f905549e433cb5126"><code>b450f17</code></a> Tidy up change log for 3.0.1</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/b7ee288d332179f6ed0e8f05cad03e292645ae9e"><code>b7ee288</code></a> Bump version: 3.0.0 → 3.0.1</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/03c79606cdc18d4cb79581b5dc44730a98e92fc4"><code>03c7960</code></a> Update reuse.pot</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/50a74741ec8a6a16ec257d40b0634595a6e101f6"><code>50a7474</code></a> Merge pull request <a href="https://github.com/fsfe/reuse-tool/issues/896">#896</a> from carmenbianca/fix-uncommentable</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/27e70a1ff0adf76908eee7ec4d060bf1465f6fba"><code>27e70a1</code></a> Add change log entry</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/23018c250aed395f34811056cc00ff45197ab497"><code>23018c2</code></a> Scan files with uncommentable file extensions anyway</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/b96c88c3e298ce8b9420fc9f8e0f177329313070"><code>b96c88c</code></a> Do not mark commentable files as uncommentable</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/120be9100a5d68e74db10bcaadc7414bf94c6141"><code>120be91</code></a> Update reuse.pot</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/6a74ddfd23fded7d12a13fad54b0ae497801f948"><code>6a74ddf</code></a> Add unreleased to change log</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/e526972998d7be8db623424659d395f8fd3dc1af"><code>e526972</code></a> Merge branch 'release-3.0.0'</li>
<li>See full diff in <a href="https://github.com/fsfe/reuse-tool/compare/v3.0.0...v3.0.1">compare view</a></li>
</ul>
</details>
<br />HIFIS BotHIFIS Bothttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/129chore(deps-dev): bump reuse from 2.1.0 to 3.0.02024-01-18T09:29:09+01:00HIFIS Botchore(deps-dev): bump reuse from 2.1.0 to 3.0.0Bumps [reuse](https://github.com/fsfe/reuse-tool) from 2.1.0 to 3.0.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/fsfe/reuse-tool/releases">reuse's releases</a>.</em></p>
<blockquote>
<h2>v...Bumps [reuse](https://github.com/fsfe/reuse-tool) from 2.1.0 to 3.0.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/fsfe/reuse-tool/releases">reuse's releases</a>.</em></p>
<blockquote>
<h2>v3.0.0</h2>
<h2>3.0.0 - 2024-01-17</h2>
<p>This release contains a lot of small improvements and changes without anything
big per se. Rather, it is made in advance of a release which will contain a
single feature: <a href="https://github.com/fsfe/reuse-tool/issues/779">REUSE.toml</a>, a
replacement for <code>.reuse/dep5</code>. <code>.reuse/dep5</code> will still be supported as a
deprecated feature for some time.</p>
<p>That future 3.1 release will have some alpha testing in advance.</p>
<h3>Added</h3>
<ul>
<li>Implement handling LicenseRef in <code>download</code> and <code>init</code>. (<a href="https://github.com/fsfe/reuse-tool/issues/697">#697</a>)</li>
<li>Declared support for Python 3.12. (<a href="https://github.com/fsfe/reuse-tool/issues/846">#846</a>)</li>
<li>More file types are recognised:
<ul>
<li>TCL (<code>.tcl</code>) (<a href="https://github.com/fsfe/reuse-tool/issues/871">#871</a>)</li>
<li>Julia (<code>.jl</code>) (<a href="https://github.com/fsfe/reuse-tool/issues/815">#815</a>)</li>
<li>Modern Fortran (<code>.f90</code>) (<a href="https://github.com/fsfe/reuse-tool/issues/836">#836</a>)</li>
<li>Bazel (<code>.bzl</code>) (<a href="https://github.com/fsfe/reuse-tool/issues/870">#870</a>)</li>
<li>GNU Linker script (<code>.ld</code>) (<a href="https://github.com/fsfe/reuse-tool/issues/862">#862</a>)</li>
<li>Assembly code (<code>.s</code>) (<a href="https://github.com/fsfe/reuse-tool/issues/862">#862</a>)</li>
<li>Empty placeholders (<code>.empty</code>) (<a href="https://github.com/fsfe/reuse-tool/issues/862">#862</a>)</li>
<li>ShellCheck configuration (<code>.shellcheckrc</code>) (<a href="https://github.com/fsfe/reuse-tool/issues/862">#862</a>)</li>
<li>Pylint in-project configuration (<code>pylintrc</code>) (<a href="https://github.com/fsfe/reuse-tool/issues/862">#862</a>)</li>
<li>Lisp schemes (<code>.sld</code>, <code>.sls</code>, <code>.sps</code>) (<a href="https://github.com/fsfe/reuse-tool/issues/875">#875</a>)</li>
</ul>
</li>
<li>Added comment styles:
<ul>
<li><code>csingle</code> for Zig (<code>.zig</code>) and Hare (<code>.ha</code>) (<a href="https://github.com/fsfe/reuse-tool/issues/889">#889</a>)</li>
</ul>
</li>
<li>Display recommendations for steps to fix found issues during a lint. (<a href="https://github.com/fsfe/reuse-tool/issues/698">#698</a>)</li>
<li>Add support for Pijul VCS. Pijul support is not added to the Docker image.
(<a href="https://github.com/fsfe/reuse-tool/issues/858">#858</a>)</li>
<li>When running <code>annotate</code> on a file with an unrecognised file path, the tool
currently exits early. To automatically create a .license file for
unrecognised files, <code>--fallback-dot-license</code> has been added. (<a href="https://github.com/fsfe/reuse-tool/issues/823">#823</a>, <a href="https://github.com/fsfe/reuse-tool/issues/851">#851</a>,
<a href="https://github.com/fsfe/reuse-tool/issues/853">#853</a>, <a href="https://github.com/fsfe/reuse-tool/issues/859">#859</a>; this took a while to get right.)</li>
<li>Ignore <code>.sl</code> directory as used by <a href="https://sapling-scm.com/">Sapling SCM</a>.
(<a href="https://github.com/fsfe/reuse-tool/issues/867">#867</a>)</li>
</ul>
<h3>Changed</h3>
<ul>
<li>Alpine Docker image now uses 3.18 as base. (<a href="https://github.com/fsfe/reuse-tool/issues/846">#846</a>)</li>
<li>The Git submodule detection was made less naïve. Where previously it detected
a directory with a <code>.git</code> file as a submodule, it now uses the git command to
detect submodules. This helps detect (quoted from Git man page)
"[repositories] that were cloned independently and later added as a submodule
or old setups", which "have the submodule's git directory inside the submodule
instead of embedded into the superproject's git directory". (<a href="https://github.com/fsfe/reuse-tool/issues/687">#687</a>)</li>
<li>No longer scan binary or uncommentable files for their contents in search of
REUSE information. (<a href="https://github.com/fsfe/reuse-tool/issues/825">#825</a>)</li>
<li><code>--force-dot-license</code> and <code>--skip-unrecognised</code> are now mutually exclusive on</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/fsfe/reuse-tool/blob/main/CHANGELOG.md">reuse's changelog</a>.</em></p>
<blockquote>
<h2>3.0.0 - 2024-01-17</h2>
<p>This release contains a lot of small improvements and changes without anything
big per se. Rather, it is made in advance of a release which will contain a
single feature: <a href="https://github.com/fsfe/reuse-tool/issues/779">REUSE.toml</a>, a
replacement for <code>.reuse/dep5</code>. <code>.reuse/dep5</code> will still be supported as a
deprecated feature for some time.</p>
<p>That future 3.1 release will have some alpha testing in advance.</p>
<h3>Added</h3>
<ul>
<li>Implement handling LicenseRef in <code>download</code> and <code>init</code>. (<a href="https://github.com/fsfe/reuse-tool/issues/697">#697</a>)</li>
<li>Declared support for Python 3.12. (<a href="https://github.com/fsfe/reuse-tool/issues/846">#846</a>)</li>
<li>More file types are recognised:
<ul>
<li>TCL (<code>.tcl</code>) (<a href="https://github.com/fsfe/reuse-tool/issues/871">#871</a>)</li>
<li>Julia (<code>.jl</code>) (<a href="https://github.com/fsfe/reuse-tool/issues/815">#815</a>)</li>
<li>Modern Fortran (<code>.f90</code>) (<a href="https://github.com/fsfe/reuse-tool/issues/836">#836</a>)</li>
<li>Bazel (<code>.bzl</code>) (<a href="https://github.com/fsfe/reuse-tool/issues/870">#870</a>)</li>
<li>GNU Linker script (<code>.ld</code>) (<a href="https://github.com/fsfe/reuse-tool/issues/862">#862</a>)</li>
<li>Assembly code (<code>.s</code>) (<a href="https://github.com/fsfe/reuse-tool/issues/862">#862</a>)</li>
<li>Empty placeholders (<code>.empty</code>) (<a href="https://github.com/fsfe/reuse-tool/issues/862">#862</a>)</li>
<li>ShellCheck configuration (<code>.shellcheckrc</code>) (<a href="https://github.com/fsfe/reuse-tool/issues/862">#862</a>)</li>
<li>Pylint in-project configuration (<code>pylintrc</code>) (<a href="https://github.com/fsfe/reuse-tool/issues/862">#862</a>)</li>
<li>Lisp schemes (<code>.sld</code>, <code>.sls</code>, <code>.sps</code>) (<a href="https://github.com/fsfe/reuse-tool/issues/875">#875</a>)</li>
</ul>
</li>
<li>Added comment styles:
<ul>
<li><code>csingle</code> for Zig (<code>.zig</code>) and Hare (<code>.ha</code>) (<a href="https://github.com/fsfe/reuse-tool/issues/889">#889</a>)</li>
</ul>
</li>
<li>Display recommendations for steps to fix found issues during a lint. (<a href="https://github.com/fsfe/reuse-tool/issues/698">#698</a>)</li>
<li>Add support for Pijul VCS. Pijul support is not added to the Docker image.
(<a href="https://github.com/fsfe/reuse-tool/issues/858">#858</a>)</li>
<li>When running <code>annotate</code> on a file with an unrecognised file path, the tool
currently exits early. To automatically create a .license file for
unrecognised files, <code>--fallback-dot-license</code> has been added. (<a href="https://github.com/fsfe/reuse-tool/issues/823">#823</a>, <a href="https://github.com/fsfe/reuse-tool/issues/851">#851</a>,
<a href="https://github.com/fsfe/reuse-tool/issues/853">#853</a>, <a href="https://github.com/fsfe/reuse-tool/issues/859">#859</a>; this took a while to get right.)</li>
<li>Ignore <code>.sl</code> directory as used by <a href="https://sapling-scm.com/">Sapling SCM</a>.
(<a href="https://github.com/fsfe/reuse-tool/issues/867">#867</a>)</li>
</ul>
<h3>Changed</h3>
<ul>
<li>Alpine Docker image now uses 3.18 as base. (<a href="https://github.com/fsfe/reuse-tool/issues/846">#846</a>)</li>
<li>The Git submodule detection was made less naïve. Where previously it detected
a directory with a <code>.git</code> file as a submodule, it now uses the git command to
detect submodules. This helps detect (quoted from Git man page)
"[repositories] that were cloned independently and later added as a submodule
or old setups", which "have the submodule's git directory inside the submodule
instead of embedded into the superproject's git directory". (<a href="https://github.com/fsfe/reuse-tool/issues/687">#687</a>)</li>
<li>No longer scan binary or uncommentable files for their contents in search of
REUSE information. (<a href="https://github.com/fsfe/reuse-tool/issues/825">#825</a>)</li>
<li><code>--force-dot-license</code> and <code>--skip-unrecognised</code> are now mutually exclusive on
<code>annotate</code>. (<a href="https://github.com/fsfe/reuse-tool/issues/852">#852</a>)</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/fsfe/reuse-tool/commit/52de3427330581f818af98dee28df1cdf7a1c7e2"><code>52de342</code></a> Bump version: 2.1.0 → 3.0.0</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/b713b39caff76bece7a5d3f72e32e7606c09d9d7"><code>b713b39</code></a> Tidy up change log for 3.0.0</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/e75f4a6a7c028d0ba41f6cf7f9fe4fed3a4ee9e2"><code>e75f4a6</code></a> Translated using Weblate (Esperanto)</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/99bb71e465a171e4ae4834c3e564c2376185f02c"><code>99bb71e</code></a> Update reuse.pot</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/e63220706f01fc764229ecbe31e5ecf577babbf1"><code>e632207</code></a> Merge pull request <a href="https://github.com/fsfe/reuse-tool/issues/874">#874</a> from Apteryks/fix-lisp-comments</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/59d9c94c86e9202883a8f3acdd42a0402ebfd929"><code>59d9c94</code></a> Move CSingleCommentStyle to alphabetic position</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/9a3f5af3ef9c65612e617b25b3f22fba7f9c6b0f"><code>9a3f5af</code></a> Allow specifying a regexp for matching a single line comment.</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/e51e337aa068d36deaf4ea5c1a93f6459e8e1ea8"><code>e51e337</code></a> Merge pull request <a href="https://github.com/fsfe/reuse-tool/issues/887">#887</a> from perillo/fix-spdx-python-tool-link</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/252d619b4e706213692c8a03069a42fa3da1ec3c"><code>252d619</code></a> Merge pull request <a href="https://github.com/fsfe/reuse-tool/issues/889">#889</a> from perillo/add-zig-support</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/4e8e0c5e2f497c64ccf367608bdced6093900a0e"><code>4e8e0c5</code></a> Add support for Zig and fix Hare comment style</li>
<li>Additional commits viewable in <a href="https://github.com/fsfe/reuse-tool/compare/v2.1.0...v3.0.0">compare view</a></li>
</ul>
</details>
<br />HIFIS BotHIFIS Bothttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/128chore(deps): [security] bump jinja2 from 3.1.2 to 3.1.32024-01-12T07:17:10+01:00HIFIS Botchore(deps): [security] bump jinja2 from 3.1.2 to 3.1.3Bumps [jinja2](https://github.com/pallets/jinja) from 3.1.2 to 3.1.3. **This update includes a security fix.**
<details>
<summary>Vulnerabilities fixed</summary>
<blockquote>
<p><strong>Jinja vulnerable to HTML attribute injection when p...Bumps [jinja2](https://github.com/pallets/jinja) from 3.1.2 to 3.1.3. **This update includes a security fix.**
<details>
<summary>Vulnerabilities fixed</summary>
<blockquote>
<p><strong>Jinja vulnerable to HTML attribute injection when passing user input as keys to xmlattr filter</strong>
The <code>xmlattr</code> filter in affected versions of Jinja accepts keys containing spaces. XML/HTML attributes cannot contain spaces, as each would then be interpreted as a separate attribute. If an application accepts keys (as opposed to only values) as user input, and renders these in pages that other users see as well, an attacker could use this to inject other attributes and perform XSS. Note that accepting keys as user input is not common or a particularly intended use case of the <code>xmlattr</code> filter, and an application doing so should already be verifying what keys are provided regardless of this fix.</p>
<p>Patched versions: 3.1.3
Affected versions: < 3.1.3</p>
</blockquote>
</details>
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/pallets/jinja/releases">jinja2's releases</a>.</em></p>
<blockquote>
<h2>3.1.3</h2>
<p>This is a fix release for the 3.1.x feature branch.</p>
<ul>
<li>Fix for <a href="https://github.com/pallets/jinja/security/advisories/GHSA-h5c8-rqwp-cp95">GHSA-h5c8-rqwp-cp95</a>. You are affected if you are using <code>xmlattr</code> and passing user input as attribute keys.</li>
<li>Changes: <a href="https://jinja.palletsprojects.com/en/3.1.x/changes/#version-3-1-3">https://jinja.palletsprojects.com/en/3.1.x/changes/#version-3-1-3</a></li>
<li>Milestone: <a href="https://github.com/pallets/jinja/milestone/15?closed=1">https://github.com/pallets/jinja/milestone/15?closed=1</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/pallets/jinja/blob/main/CHANGES.rst">jinja2's changelog</a>.</em></p>
<blockquote>
<h2>Version 3.1.3</h2>
<p>Released 2024-01-10</p>
<ul>
<li>Fix compiler error when checking if required blocks in parent templates are
empty. :pr:<code>1858</code></li>
<li><code>xmlattr</code> filter does not allow keys with spaces. GHSA-h5c8-rqwp-cp95</li>
<li>Make error messages stemming from invalid nesting of <code>{% trans %}</code> blocks
more helpful. :pr:<code>1918</code></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/pallets/jinja/commit/d9de4bb215fd1cc8092a410fb834c7c4060b1fc1"><code>d9de4bb</code></a> release version 3.1.3</li>
<li><a href="https://github.com/pallets/jinja/commit/50124e16561f17f6c1ec85a692f6551418971cdc"><code>50124e1</code></a> skip test pypi</li>
<li><a href="https://github.com/pallets/jinja/commit/9ea7222ef3f184480be0d0884e30ccfb4172b17b"><code>9ea7222</code></a> use trusted publishing</li>
<li><a href="https://github.com/pallets/jinja/commit/da703f7aae36b1e88baaa20de334d7ff6378fdde"><code>da703f7</code></a> use trusted publishing</li>
<li><a href="https://github.com/pallets/jinja/commit/bce174692547464512383ec40e0f8338b8811983"><code>bce1746</code></a> use trusted publishing</li>
<li><a href="https://github.com/pallets/jinja/commit/7277d8068be593deab3555c7c14f974ada373af1"><code>7277d80</code></a> update pre-commit hooks</li>
<li><a href="https://github.com/pallets/jinja/commit/5c8a10522421270f66376a24ec8e0d6812bc4b14"><code>5c8a105</code></a> Make nested-trans-block exceptions nicer (<a href="https://github.com/pallets/jinja/issues/1918">#1918</a>)</li>
<li><a href="https://github.com/pallets/jinja/commit/19a55db3b411343309f2faaffaedbb089e841895"><code>19a55db</code></a> Make nested-trans-block exceptions nicer</li>
<li><a href="https://github.com/pallets/jinja/commit/716795349a41d4983a9a4771f7d883c96ea17be7"><code>7167953</code></a> Merge pull request from GHSA-h5c8-rqwp-cp95</li>
<li><a href="https://github.com/pallets/jinja/commit/7dd3680e6eea0d77fde024763657aa4d884ddb23"><code>7dd3680</code></a> xmlattr filter disallows keys with spaces</li>
<li>Additional commits viewable in <a href="https://github.com/pallets/jinja/compare/3.1.2...3.1.3">compare view</a></li>
</ul>
</details>
<br />HIFIS BotHIFIS Bothttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/127chore(deps): update quay.io/podman/stable docker tag to v4.9.32024-03-21T08:23:43+01:00Renovate Botchore(deps): update quay.io/podman/stable docker tag to v4.9.3This MR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| [quay.io/podman/stable](https://quay.io/podman/stable) ([source](https://github.com/containers/image_build)) | image | minor | `v4.8.2` -> ...This MR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| [quay.io/podman/stable](https://quay.io/podman/stable) ([source](https://github.com/containers/image_build)) | image | minor | `v4.8.2` -> `v4.9.3` |
---
### Configuration
📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.
♻ **Rebasing**: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 **Ignore**: Close this MR and you won't be reminded about this update again.
---
- [ ] <!-- rebase-check -->If you want to rebase/retry this MR, check this box
---
This MR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy4xMTguMSIsInVwZGF0ZWRJblZlciI6IjM3LjIxNC4wIiwidGFyZ2V0QnJhbmNoIjoibWFpbiJ9-->Renovate BotRenovate Bothttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/126chore: bump default checkmk agent to 2.2.0p172024-01-04T11:29:34+01:00Huste, Tobiaschore: bump default checkmk agent to 2.2.0p17Huste, TobiasHuste, Tobiashttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/124Bump molecule from 6.0.2 to 6.0.32023-12-14T09:01:18+01:00HIFIS BotBump molecule from 6.0.2 to 6.0.3Bumps [molecule](https://github.com/ansible-community/molecule) from 6.0.2 to 6.0.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ansible-community/molecule/releases">molecule's releases</a>....Bumps [molecule](https://github.com/ansible-community/molecule) from 6.0.2 to 6.0.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ansible-community/molecule/releases">molecule's releases</a>.</em></p>
<blockquote>
<h2>v6.0.3</h2>
<h2>Bugfixes</h2>
<ul>
<li>Change molecule_inventory in podman example to remove ansible warning (<a href="https://github.com/ansible-community/molecule/issues/4086">#4086</a>) <a href="https://github.com/buckaroogeek"><code>@buckaroogeek</code></a></li>
<li>Update collection structure image in the docs (<a href="https://github.com/ansible-community/molecule/issues/4098">#4098</a>) <a href="https://github.com/ajinkyau"><code>@ajinkyau</code></a></li>
<li>Enable ansible-lint (<a href="https://github.com/ansible-community/molecule/issues/4069">#4069</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Correct git-archival settings (<a href="https://github.com/ansible-community/molecule/issues/4071">#4071</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Docs: highlight importance of <code>ansible_collections</code> at root dir (<a href="https://github.com/ansible-community/molecule/issues/4060">#4060</a>) <a href="https://github.com/felher"><code>@felher</code></a></li>
<li>Skip create step when created == true (<a href="https://github.com/ansible-community/molecule/issues/4038">#4038</a>) <a href="https://github.com/mluzarreta"><code>@mluzarreta</code></a></li>
<li>Address ansible-lint reported issues (<a href="https://github.com/ansible-community/molecule/issues/4056">#4056</a>) <a href="https://github.com/muellerbe"><code>@muellerbe</code></a></li>
<li>Add podman driver option to podman config (<a href="https://github.com/ansible-community/molecule/issues/4062">#4062</a>) <a href="https://github.com/brandor5"><code>@brandor5</code></a></li>
<li>Fix docker and podman examples to work with multiple platforms (<a href="https://github.com/ansible-community/molecule/issues/4068">#4068</a>) <a href="https://github.com/clickthisnick"><code>@clickthisnick</code></a></li>
<li>Update docs to remove references to Docker being the default driver (<a href="https://github.com/ansible-community/molecule/issues/4065">#4065</a>) <a href="https://github.com/Qalthos"><code>@Qalthos</code></a></li>
<li>Fix forbidden implicit octal value (<a href="https://github.com/ansible-community/molecule/issues/4049">#4049</a>) <a href="https://github.com/jooola"><code>@jooola</code></a></li>
<li>Pin linkchecker version (<a href="https://github.com/ansible-community/molecule/issues/4050">#4050</a>) <a href="https://github.com/zhan9san"><code>@zhan9san</code></a></li>
<li>Update getting-started.md (<a href="https://github.com/ansible-community/molecule/issues/4030">#4030</a>) <a href="https://github.com/aogier"><code>@aogier</code></a></li>
<li>Address documentation username typo (<a href="https://github.com/ansible-community/molecule/issues/4031">#4031</a>) <a href="https://github.com/iamgini"><code>@iamgini</code></a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible/molecule/commit/96603d91dbc3d7e139295ac94ef7497d28ee1658"><code>96603d9</code></a> Change molecule_inventory in podman example to remove ansible warning (<a href="https://github.com/ansible-community/molecule/issues/4086">#4086</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/8caa504cd7fa81311b416e77b4efc162e9cbdbd4"><code>8caa504</code></a> Update collection structure image in the docs (<a href="https://github.com/ansible-community/molecule/issues/4098">#4098</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/92733ac37ff3e2e3d19de7d05c46dbcb6716b552"><code>92733ac</code></a> Bump actions/setup-python from 4 to 5 (<a href="https://github.com/ansible-community/molecule/issues/4097">#4097</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/daab275695578070546bb238ece9e59f816067d6"><code>daab275</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://github.com/ansible-community/molecule/issues/4101">#4101</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/ff5f02430c9028ca3b1cc5d7d3347b5837e27431"><code>ff5f024</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://github.com/ansible-community/molecule/issues/4094">#4094</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/631cc737e98c8f8f48883af8d91284cca22c0e56"><code>631cc73</code></a> Change linkchecker in tox.ini to run against docs dir (<a href="https://github.com/ansible-community/molecule/issues/4093">#4093</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/89e66c0316ec837df81a1ac480624c024d82e392"><code>89e66c0</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://github.com/ansible-community/molecule/issues/4092">#4092</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/fdab679eb7a6d12ba463a64561910471ae7e2edd"><code>fdab679</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://github.com/ansible-community/molecule/issues/4089">#4089</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/af72703df92e6b28cd3bf84afb413901f61898ce"><code>af72703</code></a> Add Python 3.12 to test matrix (<a href="https://github.com/ansible-community/molecule/issues/4084">#4084</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/feb6a81ae5c50046cf6e1637cc5677a6abe2f530"><code>feb6a81</code></a> Move test folder to project root (<a href="https://github.com/ansible-community/molecule/issues/4070">#4070</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/ansible-community/molecule/compare/v6.0.2...v6.0.3">compare view</a></li>
</ul>
</details>
<br />HIFIS BotHIFIS Bothttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/122Bump ansible-lint from 6.22.0 to 6.22.12023-12-15T11:23:34+01:00HIFIS BotBump ansible-lint from 6.22.0 to 6.22.1Bumps [ansible-lint](https://github.com/ansible/ansible-lint) from 6.22.0 to 6.22.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ansible/ansible-lint/releases">ansible-lint's releases</a>.</...Bumps [ansible-lint](https://github.com/ansible/ansible-lint) from 6.22.0 to 6.22.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ansible/ansible-lint/releases">ansible-lint's releases</a>.</em></p>
<blockquote>
<h2>v6.22.1</h2>
<h2>Bugfixes</h2>
<ul>
<li>Look for ansible binary in the same path as we are (<a href="https://github.com/ansible/ansible-lint/issues/3903">#3903</a>) <a href="https://github.com/FliegenKLATSCH"><code>@FliegenKLATSCH</code></a></li>
<li>Avoid stacktrace with broken ansible.cfg files (<a href="https://github.com/ansible/ansible-lint/issues/3916">#3916</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Avoid jinja[invalid] with ansible.builtin.mandatory filter (<a href="https://github.com/ansible/ansible-lint/issues/3917">#3917</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Remove support for deprecated include (<a href="https://github.com/ansible/ansible-lint/issues/3722">#3722</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Fix use of versioned github action (<a href="https://github.com/ansible/ansible-lint/issues/3762">#3762</a>) <a href="https://github.com/karl-johan-grahn"><code>@karl-johan-grahn</code></a></li>
<li>Fix few URLs in README.md (<a href="https://github.com/ansible/ansible-lint/issues/3915">#3915</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Correct some usage examples for <code>package_latest</code> (<a href="https://github.com/ansible/ansible-lint/issues/3914">#3914</a>) <a href="https://github.com/pablomh"><code>@pablomh</code></a></li>
<li>Add option to allow running with missing plugins and collection dependencies (<a href="https://github.com/ansible/ansible-lint/issues/3913">#3913</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Avoid warnings from loading of deprecated modules (<a href="https://github.com/ansible/ansible-lint/issues/3715">#3715</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Log ignored exception details to debug log (<a href="https://github.com/ansible/ansible-lint/issues/3900">#3900</a>) <a href="https://github.com/bluecmd"><code>@bluecmd</code></a></li>
<li>GitHub Action: properly respect the <code>working_directory</code> argument (<a href="https://github.com/ansible/ansible-lint/issues/3905">#3905</a>) <a href="https://github.com/ptoscano"><code>@ptoscano</code></a></li>
<li>Allow to set <code>max_fail_percentage</code> as templated integer (<a href="https://github.com/ansible/ansible-lint/issues/3901">#3901</a>) <a href="https://github.com/rebtoor"><code>@rebtoor</code></a></li>
<li>Fix setuptools-scm versioning (<a href="https://github.com/ansible/ansible-lint/issues/3887">#3887</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Add Fedora 39 to <code>meta.json</code> (<a href="https://github.com/ansible/ansible-lint/issues/3893">#3893</a>) <a href="https://github.com/jsf9k"><code>@jsf9k</code></a></li>
<li>Use python 3.10 as primary version target (<a href="https://github.com/ansible/ansible-lint/issues/3886">#3886</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible/ansible-lint/commit/90fb69aed7be912f50e07ec0fd5ec5a02008a8fa"><code>90fb69a</code></a> Look for ansible binary in the same path the linter (<a href="https://github.com/ansible/ansible-lint/issues/3903">#3903</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/b0b1e694ae77173fe829c14cbfa802c2f3f76847"><code>b0b1e69</code></a> Avoid stacktrace with broken ansible.cfg files (<a href="https://github.com/ansible/ansible-lint/issues/3916">#3916</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/58e4ba5ede02b1749d278d04309f2fcb234d4db2"><code>58e4ba5</code></a> Avoid jinja[invalid] with ansible.builtin.mandatory filter (<a href="https://github.com/ansible/ansible-lint/issues/3917">#3917</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/868ebacf69c410b52ccb1a256c15dc84682490dc"><code>868ebac</code></a> Remove support for deprecated include (<a href="https://github.com/ansible/ansible-lint/issues/3722">#3722</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/d7c9bffc5f5e68eafc70e930057fa0c56c4b0a97"><code>d7c9bff</code></a> Fix use of versioned github action (<a href="https://github.com/ansible/ansible-lint/issues/3762">#3762</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/74c041b75e34ebe7cc4f744339da0f06838bc1a0"><code>74c041b</code></a> Fix few URLs in README.md (<a href="https://github.com/ansible/ansible-lint/issues/3915">#3915</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/7a846e463b299f9d4af0e9584435922ec8daecaa"><code>7a846e4</code></a> Correct some usage examples for <code>package_latest</code> (<a href="https://github.com/ansible/ansible-lint/issues/3914">#3914</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/7a2ac159818511d879d0857cdc9ffe519a915406"><code>7a2ac15</code></a> Add option to allow running with missing plugins and collection dependencies ...</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/f2d1cddb837cc6bc7dfe9f75fd7355ac356b4eab"><code>f2d1cdd</code></a> Update vscode config (<a href="https://github.com/ansible/ansible-lint/issues/3894">#3894</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/99344cac04232794482c21902ed4f47a715a804d"><code>99344ca</code></a> Avoid warnings from loading of deprecated modules (<a href="https://github.com/ansible/ansible-lint/issues/3715">#3715</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/ansible/ansible-lint/compare/v6.22.0...v6.22.1">compare view</a></li>
</ul>
</details>
<br />Renovate BotRenovate Bothttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/121Bump ansible from 9.0.1 to 9.1.02024-01-04T11:18:38+01:00HIFIS BotBump ansible from 9.0.1 to 9.1.0Bumps [ansible](https://github.com/ansible-community/ansible-build-data) from 9.0.1 to 9.1.0.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/274d88126600c018875c292bd...Bumps [ansible](https://github.com/ansible-community/ansible-build-data) from 9.0.1 to 9.1.0.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/274d88126600c018875c292bda664eab924b7502"><code>274d881</code></a> Ansible 9.1.0: Dependencies, changelog and porting guide (<a href="https://github.com/ansible-community/ansible-build-data/issues/340">#340</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/2691da9366443dbdf2408f267efd98c83dd5ba4f"><code>2691da9</code></a> Pin <code>cisco.dnac</code> and <code>cisco.meraki</code> due to compatibility issues (<a href="https://github.com/ansible-community/ansible-build-data/issues/339">#339</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/49f44ae98b9bd351b2b1366db6cbdaf532f65bd8"><code>49f44ae</code></a> Add mkdocs configuration for the release docs (<a href="https://github.com/ansible-community/ansible-build-data/issues/326">#326</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/5fcabf1882d51d232dc2e8335ffdfe9d1b3ae5e6"><code>5fcabf1</code></a> 10: constrain collections that need a.netcommon v6</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/fe2fd45fbc8946f6f95e5f9fd96aa98f77bb9229"><code>fe2fd45</code></a> 10: constrain ansible.utils to <3.0.0</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/b3b3a2fcf736496bb54f3ce4756c9b7f6a884c16"><code>b3b3a2f</code></a> Ansible 10: Remove constraint on cloud.common (<a href="https://github.com/ansible-community/ansible-build-data/issues/336">#336</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/d92b2c298ea3b8fd177d85c779a07e830094ecf1"><code>d92b2c2</code></a> Fix typo</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/8f306eb2c63a55d08440c37c5eaf2249db6562d3"><code>8f306eb</code></a> Remove community.azure from Ansible 10</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/0a5c5c39c4738600c603408f7279fb7a18dd764c"><code>0a5c5c3</code></a> new-ansible-and-freezes: fix changelog block indentation (<a href="https://github.com/ansible-community/ansible-build-data/issues/332">#332</a>)</li>
<li>See full diff in <a href="https://github.com/ansible-community/ansible-build-data/compare/9.0.1...9.1.0">compare view</a></li>
</ul>
</details>
<br />Huste, TobiasHuste, Tobiashttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/120chore(deps): update quay.io/podman/stable docker tag to v4.8.22024-01-04T11:12:06+01:00Renovate Botchore(deps): update quay.io/podman/stable docker tag to v4.8.2This MR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| [quay.io/podman/stable](https://cirrus-ci.com/task/4510298153943040) ([source](https://github.com/containers/podman)) | image | minor | `v4...This MR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| [quay.io/podman/stable](https://cirrus-ci.com/task/4510298153943040) ([source](https://github.com/containers/podman)) | image | minor | `v4.7.2` -> `v4.8.2` |
---
### Release Notes
<details>
<summary>containers/podman (quay.io/podman/stable)</summary>
### [`v4.8.2`](https://github.com/containers/podman/releases/tag/v4.8.2)
[Compare Source](https://github.com/containers/podman/compare/v4.8.1...v4.8.2)
##### Bugfixes
- Fixed a bug in the MacOS pkginstaller where Podman machine was using a different QEMU binary than the one installed using the installer, if it existed on the system ([#​20808](https://github.com/containers/podman/issues/20808)).
- Fixed a bug on Windows (WSL) with the first-time install of user-mode networking when using the init command, as opposed to set ([#​20921](https://github.com/containers/podman/issues/20921)).
##### Quadlet
- Fixed a bug where Kube image build failed when starting service with missing image ([#​20432](https://github.com/containers/podman/issues/20432)).
### [`v4.8.1`](https://github.com/containers/podman/releases/tag/v4.8.1)
[Compare Source](https://github.com/containers/podman/compare/v4.8.0...v4.8.1)
##### Bugfixes
- Fixed a bug on Windows (WSL) where wsl.conf/resolv.conf was not restored when user-mode networking was disabled after being enabled ([#​20625](https://github.com/containers/podman/issues/20625)).
- Fixed a bug where currently if user specifies `podman kube play --replace`, the pod is removed on the client side, not the server side ([#​20705](https://github.com/containers/podman/discussions/20705)).
- Fixed a bug where `podman machine rm -f` would cause a deadlock when running with WSL.
- Fixed `database is locked` errors with the new sqlite database backend ([#​20809](https://github.com/containers/podman/issues/20809)).
- Fixed a bug where `podman-remote exec` would fail if the server API version is older than 4.8.0 ([#​20821](https://github.com/containers/podman/issues/20821)).
- Fixed a bug where Podman would not run any command on systems with a symlinked $HOME ([#​20872](https://github.com/containers/podman/issues/20872)).
### [`v4.8.0`](https://github.com/containers/podman/releases/tag/v4.8.0)
[Compare Source](https://github.com/containers/podman/compare/v4.7.2...v4.8.0)
##### Features
- Podman machine now supports HyperV as a provider on Windows. This option can be set via the `CONTAINERS_MACHINE_PROVIDER` environment variable, or via containers.conf. HyperV requires Powershell to be run as Admin. Note that running WSL and HyperV machines at the same time is not supported.
- The `podman build` command now supports Containerfiles with heredoc syntax.
- The `podman login` and `podman logout` commands now support a new option, `--compat-auth-file`, which allows for editing Docker-compatible config files ([#​18617](https://github.com/containers/podman/issues/18617)).
- The `podman machine init` and `podman machine set` commands now support a new option, `--usb`, which sets allows USB passthrough for the QEMU provider ([#​16707](https://github.com/containers/podman/issues/16707)).
- The `--ulimit` option now supports setting -1 to indicate the maximum limit allowed for the current process ([#​19319](https://github.com/containers/podman/issues/19319)).
- The `podman play kube` command now supports the `BUILDAH_ISOLATION` environment variable to change build isolation when the `--build` option is set ([#​20024](https://github.com/containers/podman/issues/20024)).
- The `podman volume create` command now supports `--opt o=size=XYZ` on tmpfs file systems ([#​20449](https://github.com/containers/podman/issues/20449)).
- The `podman info` command for remote calls now reports client information even if the remote connection is unreachable
- Added a new field, `privileged`, to containers.conf, which sets the defaults for the `--privileged` flag when creating, running or exec'ing into a container.
- The `podman kube play` command now supports setting DefaultMode for volumes ([#​19313](https://github.com/containers/podman/issues/19313)).
- The `--opt` option to the `podman network create` command now accepts a new driver specific option, `vrf`, which assigns a VRF to the bridge interface.
- A new option `--rdt-class=COS` has been added to the `podman create` and `podman run` commands that enables assigning a container to a Class Of Service (COS). The COS has to be pre-configured based on a pseudo-filesystem created by the *resctrl* kernel driver that enables interacting with the Intel RDT CAT feature.
- The `podman kube play` command now supports a new option, `--publish-all`, which exposes all containerPorts on the host.
- The --filter option now supports `label!=`, which filters for containers without the specified label.
##### Upcoming Deprecations
- We are beginning development on Podman 5.0, which will include a number of breaking changes and deprecations. We are still finalizing what will be done, but a preliminary list is below. Please note that none of these changes are present in Podman 4.8; this is a preview of upcoming changes.
- Podman 5.0 will deprecate the BoltDB database backend. Exact details on the transition to SQLite are still being decided - expect more news here soon.
- The containers.conf configuration file will be broken up into multiple separate files, ensuring that it will never be rewritten by Podman.
- Support for the CNI network backend and Cgroups V1 are being deprecated and gated by build tags. They will not be enabled in Podman builds by default.
- A variety of small breaking changes to the REST API are planned, both to improve Docker compatibility and to better support `containers.conf` settings when creating and managing containers.
##### Changes
- Podman now defaults to sqlite as its database backend. For backwards compatibility, if a boltdb database already exists on the system, Podman will continue using it.
- RHEL Subscriptions from the host now flow through to quay.io/podman/\* images.
- The `--help` option to the `podman push` command now shows the compression algorithm used.
- The remote Podman client’s `commit` command now shows progress messages ([#​19947](https://github.com/containers/podman/issues/19947)).
- The `podman kube play` command now sets the pod hostname to the node/machine name when hostNetwork=true in k8s yaml ([#​19321](https://github.com/containers/podman/issues/19321)).
- The `--tty,-t` option to the `podman exec` command now defines the TERM environment variable even if the container is not running with a terminal ([#​20334](https://github.com/containers/podman/issues/20334)).
- Podman now also uses the `helper_binaries_dir` option in containers.conf to lookup the init binary (catatonit).
- Podman healthcheck events are now logged as notices.
- Podman machines no longer automatically update, preventing accidental service interruptions ([#​20122](https://github.com/containers/podman/issues/20122)).
- The amount of CPUs a podman machine uses now defaults to available cores/2 ([#​17066](https://github.com/containers/podman/issues/17066)).
- Podman machine now prohibits using provider names as machine names. `applehv`, `qemu`, `wsl`, and `hyperv` are no longer valid Podman machine names
##### Quadlet
- Quadlet now supports the `UIDMap`, `GIDMap`, `SubUIDMap`, and `SubGIDMap` options in .container files.
- Fixed a bug where symlinks were not resolved in search paths ([#​20504](https://github.com/containers/podman/issues/20504)).
- Quadlet now supports the `ReadOnlyTmpfs` option.
- The VolatileTmpfs option is now deprecated.
- Quadlet now supports systemd specifiers in User and Group keys.
- Quadlet now supports `ImageName` for .image files.
- Quadlet now supports a new option, `--force`, to the stop command.
- Quadlet now supports the `oneshot` service type for .kube files, which allows yaml files without containers.
- Quadlet now supports podman level arguments ([#​20246](https://github.com/containers/podman/issues/20246)).
- Fixed a bug where Quadlet would crash when specifying non key-value options ([#​20104](https://github.com/containers/podman/issues/20104)).
- Quadlet now removes anonymous volumes when removing a container ([#​20070](https://github.com/containers/podman/issues/20070)).
- Quadlet now supports a new unit type, `.image`.
##### Bugfixes
- Fixed a bug where mounted volumes on Podman machines on MacOS would have a max open files limit ([#​16106](https://github.com/containers/podman/issues/16106)).
- Fixed a bug where setting both the `--uts` and `--network` options to `host` did not fill /etc/hostname with the host's name ([#​20448](https://github.com/containers/podman/issues/20448)).
- Fixed a bug where the remote Podman client’s `build` command would incorrectly parse https paths ([#​20475](https://github.com/containers/podman/issues/20475)).
- Fixed a bug where running Docker Compose against a WSL podman machine would fail ([#​20373](https://github.com/containers/podman/issues/20373)).
- Fixed a race condition where parallel tagging and untagging of images would fail ([#​17515](https://github.com/containers/podman/issues/17515)).
- Fixed a bug where the `podman exec` command would leak sessions when the specified command does not existFixed a bug where the `podman exec` command would leak sessions when the specified command does not exist ([#​20392](https://github.com/containers/podman/issues/20392)).
- Fixed a bug where the `podman history` command did not display the size of certain layers ([#​20375](https://github.com/containers/podman/issues/20375)).
- Fixed a bug where a container with a custom user namespace and `--restart always/on-failure` would not correctly cleanup the netnsm on restart, resulting in leaked ips and network namespaces ([#​18615](https://github.com/containers/podman/issues/18615)).
- Fixed a bug where remote calls to the `podman top` command would incorrectly parse options ([#​19176](https://github.com/containers/podman/issues/19176)).
- Fixed a bug where the `--read-only-tmpfs` option to the `podman run` command was incorrectly handled when the `--read-only` option was set ([#​20225](https://github.com/containers/podman/issues/20225)).
- Fixed a bug where creating containers in parallel may cause a deadlock if both containers attempt to use the same named volume ([#​20313](https://github.com/containers/podman/issues/20313)).
- Fixed a bug where a container restarted by the Podman service would occasionally not mount its storage ([#​17042](https://github.com/containers/podman/issues/17042)).
- Fixed a bug where the `--filter` option to the `podman images` command would not correctly filter ids, digests, or intermediates ([#​19966](https://github.com/containers/podman/issues/19966)).
- Fixed a bug where setting the `--replace` option to the `podman run` command would print both the old and new container ID. Now, only the new container ID is printed.
- Fixed a bug where the `podman machine ls` command would show Creation time as LastUp time for machines that have never been booted. Now, new machines show `Never`, with the json value being ZeroTime.
- Fixed a bug in the `podman build` command where the default pull policy was not set to `missing` ([#​20125](https://github.com/containers/podman/issues/20125)).
- Fixed a bug where setting the static or volume directory in `containers.conf` would lead to cleanup errors ([#​19938](https://github.com/containers/podman/issues/19938)).
- Fixed a bug where the `podman kube play` command exposed all containerPorts on the host ([#​17028](https://github.com/containers/podman/issues/17028)).
- Fixed a bug where the `podman farm update` command did not verify farm and connection existence before updating ([#​20080](https://github.com/containers/podman/issues/20080)).
- Fixed a bug where remote Podman calls would not honor the `--connection` option while the `CONTAINER_HOST` environment variable was set. The active destination is not resolved with the correct priority, that is, CLI flags, env vars, ActiveService from containers.conf, RemoteURI ([#​15588](https://github.com/containers/podman/issues/15588)).
- Fixed a bug where the `--env-host` option was not honoring the default from containers.conf
##### API
- Fixed a bug in the Compat Image Prune endpoint where the dangling filter was set twice ([#​20469](https://github.com/containers/podman/issues/20469)).
- Fixed a bug in the Compat API where attempting to connect a container to a network while the connection already exists returned a 200 status code. It now correctly returns a 500 error code.
- Fixed a bug in the Compat API where some responses would not have compatible error details if progress data had not been sent yet ([#​20013](https://github.com/containers/podman/issues/20013)).
- The Libpod Pull endpoint now supports a new option, compatMode which causes the streamed JSON payload to be identical to the Compat endpoint.
- Fixed a bug in the Libpod Container Create endpoint where it would return an incorrect status code if the image was not found. The endpoint now correctly returns 404.
- The Compat Network List endpoint should see a significant performance improvement ([#​20035](https://github.com/containers/podman/issues/20035)).
##### Misc
- Updated Buildah to v1.33.2
- Updated the containers/storage library to v1.51.0
- Updated the containers/image library to v5.29.0
- Updated the containers/common library to v0.57.0
- Updated the containers/libhvee library to v0.5.0
- Podman Machine now runs with gvproxy v0.7.1
</details>
---
### Configuration
📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.
♻ **Rebasing**: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 **Ignore**: Close this MR and you won't be reminded about this update again.
---
- [ ] <!-- rebase-check -->If you want to rebase/retry this MR, check this box
---
This MR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy43NC4wIiwidXBkYXRlZEluVmVyIjoiMzcuODkuMiIsInRhcmdldEJyYW5jaCI6Im1haW4ifQ==-->Renovate BotRenovate Bothttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/119Bump ansible from 8.4.0 to 9.0.12023-11-27T06:34:40+01:00HIFIS BotBump ansible from 8.4.0 to 9.0.1Bumps [ansible](https://github.com/ansible-community/ansible-build-data) from 8.4.0 to 9.0.1.
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a href="https://github.com/ansible-community/ansible-build-data/commits/9.0.1">...Bumps [ansible](https://github.com/ansible-community/ansible-build-data) from 8.4.0 to 9.0.1.
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a href="https://github.com/ansible-community/ansible-build-data/commits/9.0.1">compare view</a></li>
</ul>
</details>
<br />HIFIS BotHIFIS Bothttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/118Bump yamllint from 1.32.0 to 1.33.02023-11-24T15:29:09+01:00HIFIS BotBump yamllint from 1.32.0 to 1.33.0Bumps [yamllint](https://github.com/adrienverge/yamllint) from 1.32.0 to 1.33.0.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/adrienverge/yamllint/blob/master/CHANGELOG.rst">yamllint's changelog<...Bumps [yamllint](https://github.com/adrienverge/yamllint) from 1.32.0 to 1.33.0.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/adrienverge/yamllint/blob/master/CHANGELOG.rst">yamllint's changelog</a>.</em></p>
<blockquote>
<h2>1.33.0 (2023-11-09)</h2>
<ul>
<li>Add support for Python 3.12, drop support for Python 3.7</li>
<li>Rule <code>document-end</code>: fix spurious "missing document end"</li>
<li>Rule <code>empty-values</code>: add <code>forbid-in-block-sequences</code> option</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/adrienverge/yamllint/commit/8713140e99914c0cb6e07364daedfb140847c3c5"><code>8713140</code></a> yamllint version 1.33.0</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/a26dd0084cc065d81611aa601bcdabbc7d9c5977"><code>a26dd00</code></a> empty-values: Add forbid-in-block-sequences option</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/e1d45c3ae56aadbc58f098f05c3600cf95e9b2a1"><code>e1d45c3</code></a> CI: Add support for Python 3.12</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/f63e56fd982e8dcee9f7849f80926e032cdabebd"><code>f63e56f</code></a> style: Use f-strings wherever possible</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/816d575228a075a4599fdc3027797c483e96cdfa"><code>816d575</code></a> style: Apply a couple refurb suggestions</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/3e643724ce7ab3ad7c6007ce349223995b31eeb5"><code>3e64372</code></a> tests: Apply pyupgrade suggestions</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/41ec303df70d2fbc8db2d44782cf7f948534055a"><code>41ec303</code></a> ci: Update GitHub Actions</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/40ce4c21df53dd6c4c9c150d0871df06ad619b1e"><code>40ce4c2</code></a> Drop support for Python 3.7</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/a68c3aa69e298ea20bdfb51ac388d5bfc4c347aa"><code>a68c3aa</code></a> document-end: Fix spurious "missing document end"</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/7f2c0715456939ac6196d8f457c6c540086f3608"><code>7f2c071</code></a> build: Fix license identifier according to license notice in source files</li>
<li>See full diff in <a href="https://github.com/adrienverge/yamllint/compare/v1.32.0...v1.33.0">compare view</a></li>
</ul>
</details>
<br />HIFIS BotHIFIS Bothttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/116Bump ansible-lint from 6.20.0 to 6.22.02023-11-27T06:42:52+01:00HIFIS BotBump ansible-lint from 6.20.0 to 6.22.0Bumps [ansible-lint](https://github.com/ansible/ansible-lint) from 6.20.0 to 6.22.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ansible/ansible-lint/releases">ansible-lint's releases</a>.</...Bumps [ansible-lint](https://github.com/ansible/ansible-lint) from 6.20.0 to 6.22.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ansible/ansible-lint/releases">ansible-lint's releases</a>.</em></p>
<blockquote>
<h2>v6.22.0</h2>
<h2>Minor Changes</h2>
<ul>
<li>Enable YAML 1.2 support for non-ansible files (<a href="https://github.com/ansible/ansible-lint/issues/3809">#3809</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
</ul>
<h2>Bugfixes</h2>
<ul>
<li>Require ruamel.yaml >= 0.18.5 (<a href="https://github.com/ansible/ansible-lint/issues/3880">#3880</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Improve logging regarding to yaml loading and dumping (<a href="https://github.com/ansible/ansible-lint/issues/3875">#3875</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Avoid creating new load method in our custom formatter (<a href="https://github.com/ansible/ansible-lint/issues/3874">#3874</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Support <code>ruamel-yaml >= 0.18.2</code> (<a href="https://github.com/ansible/ansible-lint/issues/3869">#3869</a>) <a href="https://github.com/hswong3i"><code>@hswong3i</code></a></li>
</ul>
<h2>v6.21.1</h2>
<h2>Bugfixes</h2>
<ul>
<li>Avoid exception caused by accidental unloading of core rules (<a href="https://github.com/ansible/ansible-lint/issues/3857">#3857</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Document pre-commit access to ansible community bundle (<a href="https://github.com/ansible/ansible-lint/issues/3856">#3856</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Fix bug with auto-fix ending too soon (<a href="https://github.com/ansible/ansible-lint/issues/3855">#3855</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
</ul>
<h2>v6.21.0</h2>
<h2>Minor Changes</h2>
<ul>
<li>Allow linting plugin EXAMPLES as playbooks (<a href="https://github.com/ansible/ansible-lint/issues/3309">#3309</a>) <a href="https://github.com/Qalthos"><code>@Qalthos</code></a></li>
</ul>
<h2>Bugfixes</h2>
<ul>
<li>Add support for Rocky (<a href="https://github.com/ansible/ansible-lint/issues/3843">#3843</a>) <a href="https://github.com/facorazza"><code>@facorazza</code></a></li>
<li>Update supported Ubuntu versions in <code>meta.json</code> (<a href="https://github.com/ansible/ansible-lint/issues/3845">#3845</a>) <a href="https://github.com/mcdonnnj"><code>@mcdonnnj</code></a></li>
<li>Avoid false positives for handler in roles handlers directory (<a href="https://github.com/ansible/ansible-lint/issues/3838">#3838</a>) <a href="https://github.com/ajinkyau"><code>@ajinkyau</code></a></li>
<li>Hide stacktrace when loading invalid yaml (<a href="https://github.com/ansible/ansible-lint/issues/3844">#3844</a>) <a href="https://github.com/ajinkyau"><code>@ajinkyau</code></a></li>
<li>Add some platforms to <code>meta.json</code> (<a href="https://github.com/ansible/ansible-lint/issues/3841">#3841</a>) <a href="https://github.com/mcdonnnj"><code>@mcdonnnj</code></a></li>
<li>Temporary avoid auto-fixing YAML files not owned by ansible (<a href="https://github.com/ansible/ansible-lint/issues/3837">#3837</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Add environment variable for skipping schema update (<a href="https://github.com/ansible/ansible-lint/issues/3835">#3835</a>) <a href="https://github.com/ajinkyau"><code>@ajinkyau</code></a></li>
<li>Avoid creating temporary YAML files inside source tree (<a href="https://github.com/ansible/ansible-lint/issues/3819">#3819</a>) <a href="https://github.com/Qalthos"><code>@Qalthos</code></a></li>
<li>Document environment variables (<a href="https://github.com/ansible/ansible-lint/issues/3833">#3833</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Update schemas (<a href="https://github.com/ansible/ansible-lint/issues/3832">#3832</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Support complex requirements in argument_specs.yml (<a href="https://github.com/ansible/ansible-lint/issues/3823">#3823</a>) <a href="https://github.com/tapetersen"><code>@tapetersen</code></a></li>
<li>Fix SARIF-formatter severity levels (<a href="https://github.com/ansible/ansible-lint/issues/3824">#3824</a>) <a href="https://github.com/4ch1m"><code>@4ch1m</code></a></li>
<li>Add play level autofix for key-order rule (<a href="https://github.com/ansible/ansible-lint/issues/3815">#3815</a>) <a href="https://github.com/ajinkyau"><code>@ajinkyau</code></a></li>
<li>Add support for python 3.12 (<a href="https://github.com/ansible/ansible-lint/issues/3813">#3813</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Update SPDX license list (<a href="https://github.com/ansible/ansible-lint/issues/3814">#3814</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Use checkout action in install docs (<a href="https://github.com/ansible/ansible-lint/issues/3810">#3810</a>) <a href="https://github.com/gma"><code>@gma</code></a></li>
<li>Fix actions-tagger arguments (<a href="https://github.com/ansible/ansible-lint/issues/3808">#3808</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
</ul>
<h2>v6.20.3</h2>
<h2>Bugfixes</h2>
<ul>
<li>Fix wget command arguments in github action (<a href="https://github.com/ansible/ansible-lint/issues/3806">#3806</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Update some platform versions in meta.json (<a href="https://github.com/ansible/ansible-lint/issues/3800">#3800</a>) <a href="https://github.com/masoud-maghsoudi"><code>@masoud-maghsoudi</code></a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible/ansible-lint/commit/4113104583a59ba2d1f04fee3b049c5f43f6578c"><code>4113104</code></a> Require ruamel.yaml >= 0.18.5 (<a href="https://github.com/ansible/ansible-lint/issues/3880">#3880</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/348c3859951115c30cfbcdc4a3b54ebb4d5147df"><code>348c385</code></a> Enable YAML 1.2 support for non-ansible files (<a href="https://github.com/ansible/ansible-lint/issues/3809">#3809</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/11828f3970d0a44c4c035ad801cfd13e5581de27"><code>11828f3</code></a> Update test dependencies (<a href="https://github.com/ansible/ansible-lint/issues/3877">#3877</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/7b9041bcd929a7c89dab829ab26cecde48f57831"><code>7b9041b</code></a> Improve logging regarding to yaml loading and dumping (<a href="https://github.com/ansible/ansible-lint/issues/3875">#3875</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/bbc7f8cb86bc8fbe2e3a7565e44075c488493531"><code>bbc7f8c</code></a> Avoid creating new load method in our custom formatter (<a href="https://github.com/ansible/ansible-lint/issues/3874">#3874</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/4b94326d70340e5982eac534ac3ae490b079533a"><code>4b94326</code></a> Update test dependencies (<a href="https://github.com/ansible/ansible-lint/issues/3873">#3873</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/c9fd91075fe91c7c6bbbe7712601eefc89549676"><code>c9fd910</code></a> Update linters (<a href="https://github.com/ansible/ansible-lint/issues/3870">#3870</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/824d58fc35c63e413ed0f0a97976e3949d934eae"><code>824d58f</code></a> Support <code>ruamel-yaml >= 0.18.2</code> (<a href="https://github.com/ansible/ansible-lint/issues/3869">#3869</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/3f4d196ced5d5837abda525e67f64910220c5e80"><code>3f4d196</code></a> Bump actions/setup-node from 3 to 4 (<a href="https://github.com/ansible/ansible-lint/issues/3866">#3866</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/b4d48101af3a26f66e304db200e80716fdf8b719"><code>b4d4810</code></a> Avoid exception caused by accidental unloading of core rules (<a href="https://github.com/ansible/ansible-lint/issues/3857">#3857</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/ansible/ansible-lint/compare/v6.20.0...v6.22.0">compare view</a></li>
</ul>
</details>
<br />HIFIS BotHIFIS Bothttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/105chore(deps): update quay.io/podman/stable docker tag to v4.7.22023-11-24T14:59:26+01:00Renovate Botchore(deps): update quay.io/podman/stable docker tag to v4.7.2This MR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| [quay.io/podman/stable](https://github.com/containers/podman) | image | minor | `v4.6.1` -> `v4.7.2` |
---
### Release Notes
<details>
<...This MR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| [quay.io/podman/stable](https://github.com/containers/podman) | image | minor | `v4.6.1` -> `v4.7.2` |
---
### Release Notes
<details>
<summary>containers/podman (quay.io/podman/stable)</summary>
### [`v4.7.2`](https://github.com/containers/podman/releases/tag/v4.7.2)
[Compare Source](https://github.com/containers/podman/compare/v4.7.0...v4.7.2)
##### Security
- Fixed [GHSA-jq35-85cj-fj4p](https://github.com/moby/moby/security/advisories/GHSA-jq35-85cj-fj4p).
##### Bugfixes
- WSL: Fixed `podman compose` command.
- Fixed a bug in `podman compose` to try all configured providers before throwing an error ([#​20502](https://github.com/containers/podman/issues/20502)).
### [`v4.7.0`](https://github.com/containers/podman/releases/tag/v4.7.0)
[Compare Source](https://github.com/containers/podman/compare/v4.6.2...v4.7.0)
##### Security
- Now the io.containers.capabilities LABEL in an image can be an empty string.
##### Features
- New command set: `podman farm [create,list,remove,update]` has been created to "farm" out builds to machines running Podman for different architectures.
- New command: `podman compose` as a thin wrapper around an external compose provider such as docker-compose or podman-compose.
- FreeBSD: `podman run --device` is now supported.
- Linux: Add a new `--module` flag for Podman.
- Podmansh: Timeout is now configurable using the `podmansh_timeout` option in containers.conf.
- SELinux: Add support for confined users to create containers but restrict them from creating privileged containers.
- WSL: Registers shared socket bindings on Windows, to allow other WSL distributions easy remote access ([#​15190](https://github.com/containers/podman/issues/15190)).
- WSL: Enabling user-mode-networking on older WSL2 generations will now detect an error with upgrade guidance.
- The `podman build` command now supports two new options: `--layer-label` and `--cw`.
- The `podman kube generate` command now supports generation of k8s DaemonSet kind ([#​18899](https://github.com/containers/podman/issues/18899)).
- The `podman kube generate` and `podman kube play` commands now support the k8s `TerminationGracePeriodSeconds` field ([RH BZ#2218061](https://bugzilla.redhat.com/show_bug.cgi?id=2218061)).
- The `podman kube generate` and `podman kube play` commands now support `securityContext.procMount: Unmasked` ([#​19881](https://github.com/containers/podman/issues/19881)).
- The `podman generate kube` command now supports a `--podman-only` flag to allow podman-only reserved annotations to be used in the generated YAML file. These annotations cannot be used by Kubernetes.
- The `podman kube generate` now supports a `--no-trunc` flag that supports YAML files with annotations longer than 63 characters. Warning: if an annotation is longer than 63 chars, then the generated yaml file is not Kubernetes compatible.
- An infra name annotation `io.podman.annotations.infra.name` is added in the generated yaml when the `pod create` command has `--infra-name` set. This annotation can also be used with `kube play` when wanting to customize the infra container name ([#​18312](https://github.com/containers/podman/issues/18312)).
- The syntax of `--uidmap` and `--gidmap` has been extended to lookup the parent user namespace and to extend default mappings ([#​18333](https://github.com/containers/podman/issues/18333)).
- The `podman kube` commands now support the `List` kind ([#​19052](https://github.com/containers/podman/issues/19052)).
- The `podman kube play` command now supports environment variables in kube.yaml ([#​15983](https://github.com/containers/podman/issues/15983)).
- The `podman push` and `podman manifest push` commands now support the `--force-compression` optionto prevent reusing other blobs ([#​18860](https://github.com/containers/podman/issues/18660)).
- The `podman manifest push` command now supports `--add-compression` to push with compressed variants.
- The `podman manifest push` command now honors the `add_compression` field from containers.conf if `--add-compression` is not set.
- The `podman run` and `podman create --mount` commands now support the `ramfs` type ([#​19659](https://github.com/containers/podman/issues/19659)).
- When running under systemd (e.g., via Quadlet), Podman will extend the start timeout in 30 second steps up to a maximum of 5 minutes when pulling an image.
- The `--add-host` option now accepts the special string `host-gateway` instead of an IP Address, which will be mapped to the host IP address.
- The `podman generate systemd` command is deprecated. Use Quadlet for running containers and pods under systemd.
- The `podman secret rm` command now supports an `--ignore` option.
- The `--env-file` option now supports multiline variables ([#​18724](https://github.com/containers/podman/issues/18724)).
- The `--read-only-tmpfs` flag now affects /dev and /dev/shm as well as /run, /tmp, /var/tmp ([#​12937](https://github.com/containers/podman/issues/12937)).
- The Podman `--mount` option now supports bind mounts passed as globs.
- The `--mount` option can now be specified in containers.conf using the `mounts` field.
- The `podman stats` now has an `--all` option to get all containers stats ([#​19252](https://github.com/containers/podman/issues/19252)).
- There is now a new `--sdnotify=healthy` policy where Podman sends the READY message once the container turns healthy ([#​6160](https://github.com/containers/podman/issues/6160)).
- Temporary files created when dealing with images in `/var/tmp` will automatically be cleaned up on reboot.
- There is now a new filter option `since` for `podman volume ls` and `podman volume prune` ([#​19228](https://github.com/containers/podman/issues/19228)).
- The `podman inspect` command now has tab-completion support ([#​18672](https://github.com/containers/podman/issues/18672)).
- The `podman kube play` command now has support for the use of reserved annotations in the generated YAML.
- The progress bar is now displayed when decompressing a Podman machine image ([#​19240](https://github.com/containers/podman/issues/19240)).
- The `podman secret inspect` command supports a new option `--showsecret` which will output the actual secret.
- The `podman secret create` now supports a `--replace` option, which allows you to modify secrets without replacing containers.
- The `podman login` command can now read the secret for a registry from its secret database created with `podman secret create` ([#​18667](https://github.com/containers/podman/issues/18667)).
- The remote Podman client’s `podman play kube` command now works with the `--userns` option ([#​17392](https://github.com/containers/podman/pull/17392)).
##### Changes
- The `/tmp` and `/var/tmp` inside of a `podman kube play` will no longer be `noexec`.
- The limit of inotify instances has been bumped from 128 to 524288 for podman machine ([#​19848](https://github.com/containers/podman/issues/19848)).
- The `podman kube play` has been improved to only pull a newer image for the "latest" tag ([#​19801](https://github.com/containers/podman/issues/19801)).
- Pulling from an `oci` transport will use the optional name for naming the image.
- The `podman info` command will always display the existence of the Podman socket.
- The echo server example in socket_activation.md has been rewritten to use quadlet instead of `podman generate systemd`.
- Kubernetes support table documentation correctly show volumes support.
- The `podman auto-update` manpage and documentation has been updated and now includes references to Quadlet.
##### Quadlet
- Quadlet now supports setting Ulimit values.
- Quadlet now supports setting the PidsLimit option in a container.
- Quadlet unit files allow DNS field in Network group and DNS, DNSSearch, and DNSOption field in Container group ([#​19884](https://github.com/containers/podman/issues/19884)).
- Quadlet now supports ShmSize option in unit files.
- Quadlet now recursively calls in user directories for unit files.
- Quadlet now allows the user to set the service working directory relative to the YAML or Unit files ([17177](https://github.com/containers/podman/discussions/17177)).
- Quadlet now allows setting user-defined names for `Volume` and `Network` units via the `VolumeName` and `NetworkName` directives, respectively.
- Kube quadlets can now support autoupdate.
##### Bugfixes
- Fixed an issue where containers were being restarted after a `podman kill`.
- Fixed a bug where events could report incorrect healthcheck results ([#​19237](https://github.com/containers/podman/issues/19237)).
- Fixed a bug where running a container in a pod didn't fail if volumes or mounts were specified in the containers.conf file.
- Fixed a bug where pod cgroup limits were not being honored after a reboot ([#​19175](https://github.com/containers/podman/issues/19175)).
- Fixed a bug where `podman rm -af` could fail to remove containers under some circumstances ([#​18874](https://github.com/containers/podman/issues/18874)).
- Fixed a bug in rootless to clamp oom_score_adj to current value if it is too low ([#​19829](https://github.com/containers/podman/issues/19829)).
- Fixed a bug where `--hostuser` was being parsed in base 8 instead of base 10 ([#​19800](https://github.com/containers/podman/issues/19800)).
- Fixed a bug where `kube down` would error when an object did not exist ([#​19711](https://github.com/containers/podman/issues/19711)).
- Fixed a bug where containers created via DOCKER API without specifying StopTimeout had StopTimeout defaulting to 0 seconds ([#​19139](https://github.com/containers/podman/issues/19139)).
- Fixed a bug in `podman exec` to set umask to match the container it's execing into ([#​19713](https://github.com/containers/podman/issues/19713)).
- Fixed a bug where `podman kube play` failed to set a container's Umask to the default `0022`.
- Fixed a bug to automatically reassign Podman's machine ssh port on Windows when it conflicts with in-use system ports ([#​19554](https://github.com/containers/podman/issues/19554)).
- Fixed a bug where locales weren't passed to conmon correctly, resulting in a crash if some characters were specified over CLI ([containers/common/#​272](https://github.com/containers/conmon/issues/272)).
- Fixed a bug where `podman top` would sometimes not print the full output ([#​19504](https://github.com/containers/podman/issues/19504)).
- Fixed a bug were `podman logs --tail` could return incorrect lines when the k8s-file logger is used ([#​19545](https://github.com/containers/podman/issues/19545)).
- Fixed a bug where `podman stop` did not ignore cidfile not existing when user specified --ignore flag ([#​19546](https://github.com/containers/podman/issues/19546)).
- Fixed a bug where a container with an image volume and an inherited mount from the `--volumes-from` option that used the same path could not be created ([#​19529](https://github.com/containers/podman/issues/19529)).
- Fixed a bug where `podman cp` via STDIN did not delete temporary files ([#​19496](https://github.com/containers/podman/issues/19496)).
- Fixed a bug where Compatibility API did not accept timeout=-1 for stopping containers ([#​17542](https://github.com/containers/podman/issues/17542)).
- Fixed a bug where `podman run --rmi` did not remove the container ([#​15640](https://github.com/containers/podman/issues/15640)).
- Fixed a bug to recover from inconsistent podman-machine states with QEMU ([#​16054](https://github.com/containers/podman/issues/16054)).
- Fixed a bug where CID Files on remote clients are not removed when container is removed ([#​19420](https://github.com/containers/podman/issues/19420)).
- Fixed a bug in `podman inspect` to show a `.NetworkSettings.SandboxKey` path for containers created with --net=none ([#​16716](https://github.com/containers/podman/issues/16716)).
- Fixed a concurrency bug in `podman machine start` using the QEMU provider ([#​18662](https://github.com/containers/podman/issues/18662)).
- Fixed a bug in `podman run` and `podman create` where the command fails if the user specifies a non-existent authfile path ([#​18938](https://github.com/containers/podman/issues/18938)).
- Fixed a bug where some distributions added extra quotes around the distribution name removed from `podman info` output ([#​19340](https://github.com/containers/podman/issues/19340)).
- Fixed a crash validating --device argument for create and run ([#​19335](https://github.com/containers/podman/issues/19335)).
- Fixed a bug where `.HostConfig.PublishAllPorts` always evaluates to `false` when inspecting a container created with `--publish-all`.
- Fixed a bug in `podman image trust` command to allow using the local policy.json file ([#​19073](https://github.com/containers/podman/issues/19073)).
- Fixed a bug where the cgroup file system was not correctly mounted when running without a network namespace in rootless mode ([#​20073](https://github.com/containers/podman/issues/20073)).
- Fixed a bug where the `--syslog` flag was not passed to the cleanup process.
##### API
- Fixed a bug with parsing of the pull query parameter for the compat /build endpoint ([#​17778](https://github.com/containers/podman/issues/17778)).
##### Misc
- Updated Buildah to v1.32.0.
### [`v4.6.2`](https://github.com/containers/podman/releases/tag/v4.6.2)
[Compare Source](https://github.com/containers/podman/compare/v4.6.1...v4.6.2)
##### Changes
- Fixed a performance issue when calculating diff sizes in overlay. The `podman system df` command should see a significant performance improvement ([#​19467](https://github.com/containers/podman/issues/19467)).
##### Bugfixes
- Fixed a bug where containers in a pod would use the pod restart policy over the set container restart policy ([#​19671](https://github.com/containers/podman/issues/19671)).
##### API
- Fixed a bug in the Compat Build endpoint where the pull query parameter did not parse 0/1 as a boolean ([#​17778](https://github.com/containers/podman/issues/17778)).
##### Misc
- Updated the containers/storage library to v1.48.1
</details>
---
### Configuration
📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.
♻ **Rebasing**: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 **Ignore**: Close this MR and you won't be reminded about this update again.
---
- [ ] <!-- rebase-check -->If you want to rebase/retry this MR, check this box
---
This MR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNi45Ny4zIiwidXBkYXRlZEluVmVyIjoiMzcuMzEuMiIsInRhcmdldEJyYW5jaCI6Im1haW4ifQ==-->HIFIS BotHIFIS Bothttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/104Bump ansible-lint from 6.19.0 to 6.20.02023-09-20T13:25:23+02:00HIFIS BotBump ansible-lint from 6.19.0 to 6.20.0Bumps [ansible-lint](https://github.com/ansible/ansible-lint) from 6.19.0 to 6.20.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ansible/ansible-lint/releases">ansible-lint's releases</a>.</...Bumps [ansible-lint](https://github.com/ansible/ansible-lint) from 6.19.0 to 6.20.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ansible/ansible-lint/releases">ansible-lint's releases</a>.</em></p>
<blockquote>
<h2>v6.20.0</h2>
<h2>Minor Changes</h2>
<ul>
<li>Respect cgroup CPU limits when running inside containers (<a href="https://github.com/ansible/ansible-lint/issues/3749">#3749</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Rename --write option to --fix (<a href="https://github.com/ansible/ansible-lint/issues/3748">#3748</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Add auto-fixing implementation for <code>no-free-form</code> rule (<a href="https://github.com/ansible/ansible-lint/issues/3725">#3725</a>) <a href="https://github.com/ajinkyau"><code>@ajinkyau</code></a></li>
<li>Add auto-fixing implementation for <code>partial-become</code> rule (<a href="https://github.com/ansible/ansible-lint/issues/3692">#3692</a>) <a href="https://github.com/shatakshiiii"><code>@shatakshiiii</code></a></li>
<li>Add auto-fixing implementation for <code>no-jinja-when</code> rule (<a href="https://github.com/ansible/ansible-lint/issues/3721">#3721</a>) <a href="https://github.com/shatakshiiii"><code>@shatakshiiii</code></a></li>
</ul>
<h2>Bugfixes</h2>
<ul>
<li>Fix the detection of role vars missing role prefix (<a href="https://github.com/ansible/ansible-lint/issues/3750">#3750</a>) <a href="https://github.com/cavcrosby"><code>@cavcrosby</code></a></li>
<li>Clarify auto-fix arguments use (<a href="https://github.com/ansible/ansible-lint/issues/3751">#3751</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Avoid IndexError exception with jinja transform (<a href="https://github.com/ansible/ansible-lint/issues/3747">#3747</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Fix docs typo (<a href="https://github.com/ansible/ansible-lint/issues/3746">#3746</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Add /bin/bash executable to example correct code for pipefail rule (<a href="https://github.com/ansible/ansible-lint/issues/3731">#3731</a>) <a href="https://github.com/Perdu"><code>@Perdu</code></a></li>
<li>Properly avoid <code>pipx</code> venv path to be included in altered path warning (<a href="https://github.com/ansible/ansible-lint/issues/3730">#3730</a>) <a href="https://github.com/chrysle"><code>@chrysle</code></a></li>
<li>Fix transform exception with local_action with old syntax (<a href="https://github.com/ansible/ansible-lint/issues/3743">#3743</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Support only_upgrade (<a href="https://github.com/ansible/ansible-lint/issues/3734">#3734</a>) <a href="https://github.com/soroshsabz"><code>@soroshsabz</code></a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible/ansible-lint/commit/eb35080762b018b2240da5e39b94376e311c3ef9"><code>eb35080</code></a> Fix the detection of role vars missing role prefix (<a href="https://github.com/ansible/ansible-lint/issues/3750">#3750</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/0d61898cfe3bca32b644dac1ee90866be9df7596"><code>0d61898</code></a> Clarify auto-fix arguments use (<a href="https://github.com/ansible/ansible-lint/issues/3751">#3751</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/94599dc3b788e959f468d0273774ec6ee7b1b709"><code>94599dc</code></a> Respect cgroup CPU limits when running inside containers (<a href="https://github.com/ansible/ansible-lint/issues/3749">#3749</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/f6b480308a59fbf2072ed93782a5b10e98f0e29a"><code>f6b4803</code></a> Rename --write option to --fix (<a href="https://github.com/ansible/ansible-lint/issues/3748">#3748</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/66378f6c88dc90cf8a1ae8b08f326dc81444508d"><code>66378f6</code></a> Avoid IndexError exception with jinja transform (<a href="https://github.com/ansible/ansible-lint/issues/3747">#3747</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/46ee8d7b4a6047601f6d644f733e284bd189cfb3"><code>46ee8d7</code></a> Fix docs typo (<a href="https://github.com/ansible/ansible-lint/issues/3746">#3746</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/14941dffa81bba2b978a2c0873c2da835fda0ca2"><code>14941df</code></a> Add /bin/bash executable to example correct code for pipefail rule (<a href="https://github.com/ansible/ansible-lint/issues/3731">#3731</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/1cdfc55fa0ef8b61221e7a50a7fcd6ad5b641c63"><code>1cdfc55</code></a> Properly avoid <code>pipx</code> venv path to be included in altered path warning (<a href="https://github.com/ansible/ansible-lint/issues/3730">#3730</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/d0162aa8bbbb65fffed3e42c1a371ba322a6b619"><code>d0162aa</code></a> Fix transform exception with local_action with old syntax (<a href="https://github.com/ansible/ansible-lint/issues/3743">#3743</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/3f387020f4d6fdb8a6feba97dec8d19374403177"><code>3f38702</code></a> Update test dependencies (<a href="https://github.com/ansible/ansible-lint/issues/3745">#3745</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/ansible/ansible-lint/compare/v6.19.0...v6.20.0">compare view</a></li>
</ul>
</details>
<br />HIFIS BotHIFIS Bothttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/103Bump ansible from 8.3.0 to 8.4.02023-09-13T12:39:47+02:00HIFIS BotBump ansible from 8.3.0 to 8.4.0Bumps [ansible](https://github.com/ansible/ansible) from 8.3.0 to 8.4.0.
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a href="https://github.com/ansible/ansible/commits">compare view</a></li>
</ul>
</details>
<br />Bumps [ansible](https://github.com/ansible/ansible) from 8.3.0 to 8.4.0.
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a href="https://github.com/ansible/ansible/commits">compare view</a></li>
</ul>
</details>
<br />HIFIS BotHIFIS Bothttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/102Bump ansible-lint from 6.18.0 to 6.19.02023-09-13T12:59:19+02:00HIFIS BotBump ansible-lint from 6.18.0 to 6.19.0Bumps [ansible-lint](https://github.com/ansible/ansible-lint) from 6.18.0 to 6.19.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ansible/ansible-lint/releases">ansible-lint's releases</a>.</...Bumps [ansible-lint](https://github.com/ansible/ansible-lint) from 6.18.0 to 6.19.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ansible/ansible-lint/releases">ansible-lint's releases</a>.</em></p>
<blockquote>
<h2>v6.19.0</h2>
<h2>Minor Changes</h2>
<ul>
<li>Add auto transform for no-log-password rule (<a href="https://github.com/ansible/ansible-lint/issues/3708">#3708</a>) <a href="https://github.com/ajinkyau"><code>@ajinkyau</code></a></li>
<li>Add auto-fixing implementation for key-order[task] rule (<a href="https://github.com/ansible/ansible-lint/issues/3705">#3705</a>) <a href="https://github.com/ajinkyau"><code>@ajinkyau</code></a></li>
<li>Add auto-fixing implementation for <code>jinja[spacing]</code> rule (<a href="https://github.com/ansible/ansible-lint/issues/3691">#3691</a>) <a href="https://github.com/ajinkyau"><code>@ajinkyau</code></a></li>
<li>Make schema validation messages more explicit (<a href="https://github.com/ansible/ansible-lint/issues/3701">#3701</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Transform for deprecated-local-action rule (<a href="https://github.com/ansible/ansible-lint/issues/3689">#3689</a>) <a href="https://github.com/ajinkyau"><code>@ajinkyau</code></a></li>
</ul>
<h2>Bugfixes</h2>
<ul>
<li>Require ansible-compat>=4.1.10 (<a href="https://github.com/ansible/ansible-lint/issues/3723">#3723</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Skip altered path warning for <code>ansible-lint</code> installed by <code>pipx</code> (<a href="https://github.com/ansible/ansible-lint/issues/3720">#3720</a>) <a href="https://github.com/chrysle"><code>@chrysle</code></a></li>
<li>Update transform for <code>key-order</code> rule (<a href="https://github.com/ansible/ansible-lint/issues/3719">#3719</a>) <a href="https://github.com/ajinkyau"><code>@ajinkyau</code></a></li>
<li>Allow installation of pre-release collection version as dependencies (<a href="https://github.com/ansible/ansible-lint/issues/3716">#3716</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Avoid deprecated-bare-vars false positive with file paths (<a href="https://github.com/ansible/ansible-lint/issues/3709">#3709</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Limit sequence-of-sequence indents to a single space (<a href="https://github.com/ansible/ansible-lint/issues/3671">#3671</a>) <a href="https://github.com/Qalthos"><code>@Qalthos</code></a></li>
<li>Avoid no-handlers false positives (<a href="https://github.com/ansible/ansible-lint/issues/3702">#3702</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Add missing word to risky-shell-pipe docs (<a href="https://github.com/ansible/ansible-lint/issues/3704">#3704</a>) <a href="https://github.com/roock"><code>@roock</code></a></li>
<li>Avoid yamllint truthy violations with github workflows (<a href="https://github.com/ansible/ansible-lint/issues/3698">#3698</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Avoid false positive with var-name rule on roles (<a href="https://github.com/ansible/ansible-lint/issues/3697">#3697</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Include links to documentation for schema validation errors (<a href="https://github.com/ansible/ansible-lint/issues/3684">#3684</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Schema update (<a href="https://github.com/ansible/ansible-lint/issues/3693">#3693</a>) <a href="https://github.com/cidrblock"><code>@cidrblock</code></a></li>
<li>Use yaml.load_all for multiple yaml document (<a href="https://github.com/ansible/ansible-lint/issues/3679">#3679</a>) <a href="https://github.com/shatakshiiii"><code>@shatakshiiii</code></a></li>
<li>Ignore user configured value for any_unparsed_is_failed (<a href="https://github.com/ansible/ansible-lint/issues/3680">#3680</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
<li>Update rulebook schema (<a href="https://github.com/ansible/ansible-lint/issues/3681">#3681</a>) <a href="https://github.com/ssbarnea"><code>@ssbarnea</code></a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible/ansible-lint/commit/fc898ee7befba9ba93dbe7b24f896e76f46e085e"><code>fc898ee</code></a> Require ansible-compat>=4.1.10 (<a href="https://github.com/ansible/ansible-lint/issues/3723">#3723</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/1c1788b686f4652ed10a8ef8e1b25ab72cae68a4"><code>1c1788b</code></a> Skip altered path warning for <code>ansible-lint</code> installed by <code>pipx</code> (<a href="https://github.com/ansible/ansible-lint/issues/3720">#3720</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/50ff7115c1b48a4364ef63e8376472fe53ed5f68"><code>50ff711</code></a> Update transform for <code>key-order</code> rule (<a href="https://github.com/ansible/ansible-lint/issues/3719">#3719</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/d803b1f3e00d2472bfdb95aa1489284dea329fc7"><code>d803b1f</code></a> Allow installation of pre-release collection version as dependencies (<a href="https://github.com/ansible/ansible-lint/issues/3716">#3716</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/46af24d1d36cf549a382ea5b2263e23a3dd09f53"><code>46af24d</code></a> Add auto transform for no-log-password rule (<a href="https://github.com/ansible/ansible-lint/issues/3708">#3708</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/8550aea696a00a332e81463b7f7cffec534e6c95"><code>8550aea</code></a> chore: pre-commit autoupdate (<a href="https://github.com/ansible/ansible-lint/issues/3710">#3710</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/2bb0a446799eb3912861f583841538c94d8b68b0"><code>2bb0a44</code></a> Bump actions/checkout from 3 to 4 (<a href="https://github.com/ansible/ansible-lint/issues/3712">#3712</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/be1a74ae31995bf4008c451a497379708947c5de"><code>be1a74a</code></a> Avoid deprecated-bare-vars false positive with file paths (<a href="https://github.com/ansible/ansible-lint/issues/3709">#3709</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/a3d9caee9ae0aff9d95e16bba5a06d2aa6138acf"><code>a3d9cae</code></a> Add auto-fixing implementation for key-order[task] rule (<a href="https://github.com/ansible/ansible-lint/issues/3705">#3705</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/5e80a5bf9f8dc018edc9ee663b14dfbb585bd283"><code>5e80a5b</code></a> Limit sequence-of-sequence indents to a single space (<a href="https://github.com/ansible/ansible-lint/issues/3671">#3671</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/ansible/ansible-lint/compare/v6.18.0...v6.19.0">compare view</a></li>
</ul>
</details>
<br />HIFIS BotHIFIS Bot