CheckMK-Role merge requestshttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests2024-03-28T06:40:44+01:00https://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/147Chore(deps): bump ansible from 9.1.0 to 9.4.02024-03-28T06:40:44+01:00HIFIS BotChore(deps): bump ansible from 9.1.0 to 9.4.0Bumps [ansible](https://github.com/ansible-community/ansible-build-data) from 9.1.0 to 9.4.0.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/43b27d99608988b1d34516836...Bumps [ansible](https://github.com/ansible-community/ansible-build-data) from 9.1.0 to 9.4.0.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/43b27d99608988b1d345168364a3456623f12ea8"><code>43b27d9</code></a> Ansible 9.4.0: Dependencies, changelog and porting guide (<a href="https://github.com/ansible-community/ansible-build-data/issues/380">#380</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/de505a1637261e3f0b3a13e7db1db88d0270dfb5"><code>de505a1</code></a> cd ansible-release: include artifact URL in PR body (<a href="https://github.com/ansible-community/ansible-build-data/issues/377">#377</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/db95db8a068a7ac0e50c10246e7d14f1b9ef68b7"><code>db95db8</code></a> Bump actions/download-artifact from 3 to 4 (<a href="https://github.com/ansible-community/ansible-build-data/issues/370">#370</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/2f081080b006655f024b913d5932e9615cdfaeac"><code>2f08108</code></a> Bump actions/upload-artifact from 3 to 4 (<a href="https://github.com/ansible-community/ansible-build-data/issues/369">#369</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/d21223120bd7c7d08251e50c6168c06951cef759"><code>d212231</code></a> Hotfix the workdir in the Git tagging job of the PyPI publishing workflow</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/4ab3017218c366b12a7ff9b9d5cc2bbd33b50d74"><code>4ab3017</code></a> Ansible 9.3.0: Dependencies, changelog and porting guide (<a href="https://github.com/ansible-community/ansible-build-data/issues/375">#375</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/8e6516288aa29f2568809aa933a6bae26273ced4"><code>8e65162</code></a> Remove purestorage.fusion from Ansible 10 (<a href="https://github.com/ansible-community/ansible-build-data/issues/374">#374</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/4952ad87b16711141cdf079f3d833f0b1cd66e19"><code>4952ad8</code></a> Deprecate netapp.storagegrid (<a href="https://github.com/ansible-community/ansible-build-data/issues/372">#372</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/15d59523ce2da44201f6d6708c8cdc4d9de0d539"><code>15d5952</code></a> Generate changelog both as RST and MarkDown (<a href="https://github.com/ansible-community/ansible-build-data/issues/364">#364</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/68bb47a5ce9924dab00bf1809b34126ef4bd0856"><code>68bb47a</code></a> Bump actions/checkout from 3 to 4 (<a href="https://github.com/ansible-community/ansible-build-data/issues/368">#368</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/ansible-community/ansible-build-data/compare/9.1.0...9.4.0">compare view</a></li>
</ul>
</details>
<br />Huste, TobiasHuste, Tobiashttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/144chore(deps): bump ansible from 9.1.0 to 9.3.02024-03-28T06:40:42+01:00HIFIS Botchore(deps): bump ansible from 9.1.0 to 9.3.0Bumps [ansible](https://github.com/ansible-community/ansible-build-data) from 9.1.0 to 9.3.0.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/4ab3017218c366b12a7ff9b9d...Bumps [ansible](https://github.com/ansible-community/ansible-build-data) from 9.1.0 to 9.3.0.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/4ab3017218c366b12a7ff9b9d5cc2bbd33b50d74"><code>4ab3017</code></a> Ansible 9.3.0: Dependencies, changelog and porting guide (<a href="https://github.com/ansible-community/ansible-build-data/issues/375">#375</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/8e6516288aa29f2568809aa933a6bae26273ced4"><code>8e65162</code></a> Remove purestorage.fusion from Ansible 10 (<a href="https://github.com/ansible-community/ansible-build-data/issues/374">#374</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/4952ad87b16711141cdf079f3d833f0b1cd66e19"><code>4952ad8</code></a> Deprecate netapp.storagegrid (<a href="https://github.com/ansible-community/ansible-build-data/issues/372">#372</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/15d59523ce2da44201f6d6708c8cdc4d9de0d539"><code>15d5952</code></a> Generate changelog both as RST and MarkDown (<a href="https://github.com/ansible-community/ansible-build-data/issues/364">#364</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/68bb47a5ce9924dab00bf1809b34126ef4bd0856"><code>68bb47a</code></a> Bump actions/checkout from 3 to 4 (<a href="https://github.com/ansible-community/ansible-build-data/issues/368">#368</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/5319f6a2906d08ffa098a2febfc88bbedd39affd"><code>5319f6a</code></a> Bump actions/setup-python from 4 to 5 (<a href="https://github.com/ansible-community/ansible-build-data/issues/371">#371</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/05eb58bb8dc7a08eca7b1d8306e64d8dabd99be2"><code>05eb58b</code></a> docs release-process: use GH_USERNAME as a placeholder (<a href="https://github.com/ansible-community/ansible-build-data/issues/367">#367</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/c87ec3a948ba9f6b33d34f0e607808c7752bee18"><code>c87ec3a</code></a> Revert "infinidat.infinibox 1.4.0 is not tagged. (<a href="https://github.com/ansible-community/ansible-build-data/issues/365">#365</a>)" (<a href="https://github.com/ansible-community/ansible-build-data/issues/366">#366</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/ecd20cb95f69a3e8dcb6be373d13433fd047a104"><code>ecd20cb</code></a> infinidat.infinibox 1.4.0 is not tagged. (<a href="https://github.com/ansible-community/ansible-build-data/issues/365">#365</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/51535ac00981248fcfd9f184bf46b7ad5723079b"><code>51535ac</code></a> Initial (Github Actions) Workflows for Ansible Community Package release (#...</li>
<li>Additional commits viewable in <a href="https://github.com/ansible-community/ansible-build-data/compare/9.1.0...9.3.0">compare view</a></li>
</ul>
</details>
<br />Huste, TobiasHuste, Tobiashttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/143chore(deps): [security] bump cryptography from 41.0.7 to 42.0.42024-03-26T06:42:16+01:00HIFIS Botchore(deps): [security] bump cryptography from 41.0.7 to 42.0.4Bumps [cryptography](https://github.com/pyca/cryptography) from 41.0.7 to 42.0.4. **This update includes security fixes.**
<details>
<summary>Vulnerabilities fixed</summary>
<blockquote>
<p><strong>Python Cryptography package vulnerable ...Bumps [cryptography](https://github.com/pyca/cryptography) from 41.0.7 to 42.0.4. **This update includes security fixes.**
<details>
<summary>Vulnerabilities fixed</summary>
<blockquote>
<p><strong>Python Cryptography package vulnerable to Bleichenbacher timing oracle attack</strong>
A flaw was found in the python-cryptography package. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive data.</p>
<p>Patched versions: 42.0.0
Affected versions: < 42.0.0</p>
</blockquote>
<blockquote>
<p><strong>Null pointer dereference in PKCS12 parsing</strong>
Issue summary: Processing a maliciously formatted PKCS12 file may lead OpenSSL
to crash leading to a potential Denial of Service attack</p>
<p>Impact summary: Applications loading files in the PKCS12 format from untrusted
sources might terminate abruptly.</p>
<p>A file in PKCS12 format can contain certificates and keys and may come from an
untrusted source. The PKCS12 specification allows certain fields to be NULL, but
OpenSSL does not correctly check for this case. This can lead to a NULL pointer
dereference that results in OpenSSL crashing. If an application processes PKCS12
files from an untrusted source using the OpenSSL APIs then that application will
be vulnerable to this issue.</p>
<p>OpenSSL APIs that are vulnerable to this are: PKCS12_parse(),
PKCS12_unpack_p7data(), PKCS12_unpack_p7encdata(), PKCS12_unpack_authsafes()
and PKCS12_newpass().</p>
<p>We have also fixed a similar issue in SMIME_write_PKCS7(). However since this
function is related to writing data we do not consider it security significant.</p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
<blockquote>
<p>Patched versions: 42.0.2
Affected versions: < 42.0.2</p>
</blockquote>
<blockquote>
<p><strong>cryptography NULL pointer dereference with pkcs12.serialize_key_and_certificates when called with a non-matching certificate and private key and an hmac_hash override</strong>
If <code>pkcs12.serialize_key_and_certificates</code> is called with both:</p>
<ol>
<li>A certificate whose public key did not match the provided private key</li>
<li>An <code>encryption_algorithm</code> with <code>hmac_hash</code> set (via <code>PrivateFormat.PKCS12.encryption_builder().hmac_hash(...)</code></li>
</ol>
<p>Then a NULL pointer dereference would occur, crashing the Python process.</p>
<p>This has been resolved, and now a <code>ValueError</code> is properly raised.</p>
<p>Patched in <a href="https://github.com/pyca/cryptography/pull/10423">pyca/cryptography#10423</a></p>
<p>Patched versions: 42.0.4
Affected versions: >= 38.0.0, < 42.0.4</p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst">cryptography's changelog</a>.</em></p>
<blockquote>
<p>42.0.4 - 2024-02-20</p>
<pre><code>
* Fixed a null-pointer-dereference and segfault that could occur when creating
a PKCS#12 bundle. Credit to **Alexander-Programming** for reporting the
issue. **CVE-2024-26130**
* Fixed ASN.1 encoding for PKCS7/SMIME signed messages. The fields ``SMIMECapabilities``
and ``SignatureAlgorithmIdentifier`` should now be correctly encoded according to the
definitions in :rfc:`2633` :rfc:`3370`.
<p>.. _v42-0-3:</p>
<p>42.0.3 - 2024-02-15
</code></pre></p>
<ul>
<li>Fixed an initialization issue that caused key loading failures for some
users.</li>
</ul>
<p>.. _v42-0-2:</p>
<p>42.0.2 - 2024-01-30</p>
<pre><code>
* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.2.1.
* Fixed an issue that prevented the use of Python buffer protocol objects in
``sign`` and ``verify`` methods on asymmetric keys.
* Fixed an issue with incorrect keyword-argument naming with ``EllipticCurvePrivateKey``
:meth:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKey.exchange`,
``X25519PrivateKey``
:meth:`~cryptography.hazmat.primitives.asymmetric.x25519.X25519PrivateKey.exchange`,
``X448PrivateKey``
:meth:`~cryptography.hazmat.primitives.asymmetric.x448.X448PrivateKey.exchange`,
and ``DHPrivateKey``
:meth:`~cryptography.hazmat.primitives.asymmetric.dh.DHPrivateKey.exchange`.
<p>.. _v42-0-1:</p>
<p>42.0.1 - 2024-01-24
</code></pre></p>
<ul>
<li>Fixed an issue with incorrect keyword-argument naming with <code>EllipticCurvePrivateKey</code>
:meth:<code>~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKey.sign</code>.</li>
<li>Resolved compatibility issue with loading certain RSA public keys in
:func:<code>~cryptography.hazmat.primitives.serialization.load_pem_public_key</code>.</li>
</ul>
<p>.. _v42-0-0:</p>
<p>42.0.0 - 2024-01-22</p>
<pre><code>
</tr></table>
</code></pre>
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/pyca/cryptography/commit/fe18470f7d05f963e7267e34fdf985d81ea6ceea"><code>fe18470</code></a> Bump for 42.0.4 release (<a href="https://github.com/pyca/cryptography/issues/10445">#10445</a>)</li>
<li><a href="https://github.com/pyca/cryptography/commit/aaa2dd06ed470695de818405a982d4c459869803"><code>aaa2dd0</code></a> Fix ASN.1 issues in PKCS#7 and S/MIME signing (<a href="https://github.com/pyca/cryptography/issues/10373">#10373</a>) (<a href="https://github.com/pyca/cryptography/issues/10442">#10442</a>)</li>
<li><a href="https://github.com/pyca/cryptography/commit/7a4d012991061974da5d9cb7614de65eac94f49b"><code>7a4d012</code></a> Fixes <a href="https://github.com/pyca/cryptography/issues/10422">#10422</a> -- don't crash when a PKCS#12 key and cert don't match (<a href="https://github.com/pyca/cryptography/issues/10423">#10423</a>) ...</li>
<li><a href="https://github.com/pyca/cryptography/commit/df314bb182bdfd661333969a94325e4680d785f6"><code>df314bb</code></a> backport actions m1 switch to 42.0.x (<a href="https://github.com/pyca/cryptography/issues/10415">#10415</a>)</li>
<li><a href="https://github.com/pyca/cryptography/commit/c49a7a5271178c6e8ef36fa1c499f62c63ec19b9"><code>c49a7a5</code></a> changelog and version bump for 42.0.3 (<a href="https://github.com/pyca/cryptography/issues/10396">#10396</a>)</li>
<li><a href="https://github.com/pyca/cryptography/commit/396bcf64c5be826ec00e7d7f45838c858c049cbc"><code>396bcf6</code></a> fix provider loading take two (<a href="https://github.com/pyca/cryptography/issues/10390">#10390</a>) (<a href="https://github.com/pyca/cryptography/issues/10395">#10395</a>)</li>
<li><a href="https://github.com/pyca/cryptography/commit/0e0e46f5f73f477b8ee9682738c42129d5d60177"><code>0e0e46f</code></a> backport: initialize openssl's legacy provider in rust (<a href="https://github.com/pyca/cryptography/issues/10323">#10323</a>) (<a href="https://github.com/pyca/cryptography/issues/10333">#10333</a>)</li>
<li><a href="https://github.com/pyca/cryptography/commit/2202123b50de1b8788f909a3e5afe350c56ad81e"><code>2202123</code></a> changelog and version bump 42.0.2 (<a href="https://github.com/pyca/cryptography/issues/10268">#10268</a>)</li>
<li><a href="https://github.com/pyca/cryptography/commit/f7032bdd409838f67fc2b93343f897fb5f397d80"><code>f7032bd</code></a> bump openssl in CI (<a href="https://github.com/pyca/cryptography/issues/10298">#10298</a>) (<a href="https://github.com/pyca/cryptography/issues/10299">#10299</a>)</li>
<li><a href="https://github.com/pyca/cryptography/commit/002e886f16d8857151c09b11dc86b35f2ac9aec3"><code>002e886</code></a> Fixes <a href="https://github.com/pyca/cryptography/issues/10294">#10294</a> -- correct accidental change to exchange kwarg (<a href="https://github.com/pyca/cryptography/issues/10295">#10295</a>) (<a href="https://github.com/pyca/cryptography/issues/10296">#10296</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/pyca/cryptography/compare/41.0.7...42.0.4">compare view</a></li>
</ul>
</details>
<br />Huste, TobiasHuste, Tobiashttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/136chore(deps): [security] bump ansible-core from 2.16.2 to 2.16.32024-03-25T13:44:43+01:00HIFIS Botchore(deps): [security] bump ansible-core from 2.16.2 to 2.16.3Bumps [ansible-core](https://github.com/ansible/ansible) from 2.16.2 to 2.16.3. **This update includes a security fix.**
<details>
<summary>Vulnerabilities fixed</summary>
<blockquote>
<p><strong>Ansible-core information disclosure flaw<...Bumps [ansible-core](https://github.com/ansible/ansible) from 2.16.2 to 2.16.3. **This update includes a security fix.**
<details>
<summary>Vulnerabilities fixed</summary>
<blockquote>
<p><strong>Ansible-core information disclosure flaw</strong>
An information disclosure flaw was found in ansible-core due to a failure to respect the <code>ANSIBLE_NO_LOG</code> configuration in some scenarios. It was discovered that information is still included in the output in certain tasks, such as loop items. Depending on the task, this issue may include sensitive information, such as decrypted secret values.</p>
<p>Patched versions: 2.16.3
Affected versions: >= 2.16.0b1, < 2.16.3</p>
</blockquote>
</details>
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ansible/ansible/releases">ansible-core's releases</a>.</em></p>
<blockquote>
<h2>v2.16.3</h2>
<h1>Changelog</h1>
<p>See the <a href="https://github.com/ansible/ansible/blob/v2.16.3/changelogs/CHANGELOG-v2.16.rst">full changelog</a> for the changes included in this release.</p>
<h1>Release Artifacts</h1>
<ul>
<li>Built Distribution: <a href="https://files.pythonhosted.org/packages/b0/ec/6b5eed80eac9e3234fc9a9e61356ec2999b70cc23f83453f57e9a0fd3574/ansible_core-2.16.3-py3-none-any.whl">ansible_core-2.16.3-py3-none-any.whl</a> - 2250322 bytes
<ul>
<li>50c9f33a5b2ee645470a77f4bf99cf35d1ffdefef60388910020b0c58534bec1 (SHA256)</li>
</ul>
</li>
<li>Source Distribution: <a href="https://files.pythonhosted.org/packages/00/b9/7d2229459038cdfe84b6e4db76f97acae35cb46917a0d9a7e61d3e300637/ansible-core-2.16.3.tar.gz">ansible-core-2.16.3.tar.gz</a> - 3168893 bytes
<ul>
<li>76a8765a8586064ef073a299562e308fa2c180a75b5f7569bbd0f61d4171cdb3 (SHA256)</li>
</ul>
</li>
</ul>
<h2>v2.16.3rc1</h2>
<h1>Changelog</h1>
<p>See the <a href="https://github.com/ansible/ansible/blob/v2.16.3rc1/changelogs/CHANGELOG-v2.16.rst">full changelog</a> for the changes included in this release.</p>
<h1>Release Artifacts</h1>
<ul>
<li>Built Distribution: <a href="https://files.pythonhosted.org/packages/f3/1a/287aa78525550098a977b93361a2c136778208c929c638f5d090ea3e4e7b/ansible_core-2.16.3rc1-py3-none-any.whl">ansible_core-2.16.3rc1-py3-none-any.whl</a> - 2250371 bytes
<ul>
<li>c9d6702235eb708023105f4f4a5f9f2620503684cdc3115ed3e6e0b9b6930780 (SHA256)</li>
</ul>
</li>
<li>Source Distribution: <a href="https://files.pythonhosted.org/packages/d3/f1/9ad5c3d444e00bd3e5596a8334f51a3f85f9f368201515402ba65ac74d84/ansible-core-2.16.3rc1.tar.gz">ansible-core-2.16.3rc1.tar.gz</a> - 3172729 bytes
<ul>
<li>0c4326d487dae339d0a991e89ff85117afb6507f79b45744e3c3451b6faef5f4 (SHA256)</li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible/ansible/commit/df6c5244ef0b5e484b83e6811e353ca61d9975ee"><code>df6c524</code></a> New release v2.16.3 (<a href="https://github.com/ansible/ansible/issues/82619">#82619</a>)</li>
<li><a href="https://github.com/ansible/ansible/commit/5bef147a5d5e37bb0872da31e515a94e2c145bad"><code>5bef147</code></a> Update Ansible release version to v2.16.3rc1.post0. (<a href="https://github.com/ansible/ansible/issues/82591">#82591</a>)</li>
<li><a href="https://github.com/ansible/ansible/commit/19e82eca024ae63b83f1ebd09ce3629e2dca532b"><code>19e82ec</code></a> New release v2.16.3rc1 (<a href="https://github.com/ansible/ansible/issues/82587">#82587</a>)</li>
<li><a href="https://github.com/ansible/ansible/commit/d817f5e87fcee2c620de6c56e5bbf34317af75d5"><code>d817f5e</code></a> Support <code>action_plugin</code> in plugin_routing_schema (<a href="https://github.com/ansible/ansible/issues/82562">#82562</a>) (<a href="https://github.com/ansible/ansible/issues/82581">#82581</a>)</li>
<li><a href="https://github.com/ansible/ansible/commit/611d0e4dcf6113e676117da95cd113176c1c57be"><code>611d0e4</code></a> Better errors for delegate_to (<a href="https://github.com/ansible/ansible/issues/82319">#82319</a>)</li>
<li><a href="https://github.com/ansible/ansible/commit/50736c45ba6943ab61dab3ea328533ef2b589226"><code>50736c4</code></a> lookups, make file searching use better is_role (<a href="https://github.com/ansible/ansible/issues/82290">#82290</a>)</li>
<li><a href="https://github.com/ansible/ansible/commit/c3b4b3ebe300adbe2eca8333c13001a7858ed021"><code>c3b4b3e</code></a> Run all handlers with the same <code>listen</code> topic when notified from another hand...</li>
<li><a href="https://github.com/ansible/ansible/commit/cfa8caff39d2358ddb7ca0113a085b20c5de02c0"><code>cfa8caf</code></a> [stable-2.16] Role fixes (<a href="https://github.com/ansible/ansible/issues/82339">#82339</a>) (<a href="https://github.com/ansible/ansible/issues/82452">#82452</a>)</li>
<li><a href="https://github.com/ansible/ansible/commit/46d9d4b17c36397f69a42cfe0a1a03c3039ef839"><code>46d9d4b</code></a> ansible-config dedupe ini plugin entries (<a href="https://github.com/ansible/ansible/issues/82498">#82498</a>)</li>
<li><a href="https://github.com/ansible/ansible/commit/9252584e89056c29d2aa1658d761b6121bb1b646"><code>9252584</code></a> ansible-galaxy - fix exit code for failed role import (<a href="https://github.com/ansible/ansible/issues/82193">#82193</a>) (<a href="https://github.com/ansible/ansible/issues/82412">#82412</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/ansible/ansible/compare/v2.16.2...v2.16.3">compare view</a></li>
</ul>
</details>
<br />HIFIS BotHIFIS Bothttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/132chore(deps-dev): [security] bump aiohttp from 3.9.1 to 3.9.22024-03-25T07:18:30+01:00HIFIS Botchore(deps-dev): [security] bump aiohttp from 3.9.1 to 3.9.2Bumps [aiohttp](https://github.com/aio-libs/aiohttp) from 3.9.1 to 3.9.2. **This update includes security fixes.**
<details>
<summary>Vulnerabilities fixed</summary>
<blockquote>
<p><strong>aiohttp is vulnerable to directory traversal</s...Bumps [aiohttp](https://github.com/aio-libs/aiohttp) from 3.9.1 to 3.9.2. **This update includes security fixes.**
<details>
<summary>Vulnerabilities fixed</summary>
<blockquote>
<p><strong>aiohttp is vulnerable to directory traversal</strong></p>
<h3>Summary</h3>
<p>Improperly configuring static resource resolution in aiohttp when used as a web server can result in the unauthorized reading of arbitrary files on the system.</p>
<h3>Details</h3>
<p>When using aiohttp as a web server and configuring static routes, it is necessary to specify the root path for static files. Additionally, the option 'follow_symlinks' can be used to determine whether to follow symbolic links outside the static root directory. When 'follow_symlinks' is set to True, there is no validation to check if a given file path is within the root directory.This can lead to directory traversal vulnerabilities, resulting in unauthorized access to arbitrary files on the system, even when symlinks are not present.</p>
<p>i.e. An application is only vulnerable with setup code like:</p>
<pre><code>app.router.add_routes([
web.static("/static", "static/", follow_symlinks=True), # Remove follow_symlinks to avoid the vulnerability
])
</code></pre>
<h3>Impact</h3>
<p>This is a directory traversal vulnerability with CWE ID 22. When using aiohttp as a web server and enabling static resource resolution with <code>follow_symlinks</code> set to True, it can lead to this vulnerability. This vulnerability has been present since the introduction of the <code>follow_symlinks</code> parameter.</p>
<h3>Workaround</h3>
<p>Even if upgrading to a patched version of aiohttp, we recommend following these steps regardless.</p>
<p>If using <code>follow_symlinks=True</code> outside of a restricted local development environment, disable the option immediately. This option is NOT needed to follow symlinks which point to a location <em>within</em> the static root directory, it is <em>only</em> intended to allow a symlink to break out of the static directory. Even with this CVE fixed, there is still a substantial risk of misconfiguration when using this option on a server that accepts requests from remote users.</p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
<blockquote>
<p>Patched versions: 3.9.2
Affected versions: >= 1.0.5, < 3.9.2</p>
</blockquote>
<blockquote>
<p><strong>aiohttp's HTTP parser (the python one, not llhttp) still overly lenient about separators</strong></p>
<h3>Summary</h3>
<p>Security-sensitive parts of the <em>Python HTTP parser</em> retained minor differences in allowable character sets, that must trigger error handling to robustly match frame boundaries of proxies in order to protect against injection of additional requests. Additionally, validation could trigger exceptions that were not handled consistently with processing of other malformed input.</p>
<h3>Details</h3>
<p>These problems are rooted in pattern matching protocol elements, previously improved by PR #3235 and GHSA-gfw2-4jvh-wgfg:</p>
<ol>
<li>
<p>The expression <code>HTTP/(\d).(\d)</code> lacked another backslash to clarify that the separator should be a literal dot, not just <em>any</em> Unicode code point (result: <code>HTTP/(\d)\.(\d)</code>).</p>
</li>
<li>
<p>The HTTP version was permitting Unicode digits, where only ASCII digits are standards-compliant.</p>
</li>
<li>
<p>Distinct regular expressions for validating HTTP Method and Header field names were used - though both should (at least) apply the common restrictions of rfc9110 <code>token</code>.</p>
</li>
</ol>
<h3>PoC</h3>
<p><code>GET / HTTP/1ö1</code>
<code>GET / HTTP/1.đťź™</code>
<code>GET/: HTTP/1.1</code>
<code>Content-Encoding?: chunked</code></p>
<h3>Impact</h3>
<p>Primarily concerns running an aiohttp server without llhttp:</p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
<blockquote>
<p>Patched versions: 3.9.2
Affected versions: < 3.9.2</p>
</blockquote>
</details>
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/aio-libs/aiohttp/releases">aiohttp's releases</a>.</em></p>
<blockquote>
<h2>3.9.2</h2>
<h2>Bug fixes</h2>
<ul>
<li>
<p>Fixed server-side websocket connection leak.</p>
<p><em>Related issues and pull requests on GitHub:</em>
<a href="https://github.com/aio-libs/aiohttp/issues/7978">#7978</a>.</p>
</li>
<li>
<p>Fixed <code>web.FileResponse</code> doing blocking I/O in the event loop.</p>
<p><em>Related issues and pull requests on GitHub:</em>
<a href="https://github.com/aio-libs/aiohttp/issues/8012">#8012</a>.</p>
</li>
<li>
<p>Fixed double compress when compression enabled and compressed file exists in server file responses.</p>
<p><em>Related issues and pull requests on GitHub:</em>
<a href="https://github.com/aio-libs/aiohttp/issues/8014">#8014</a>.</p>
</li>
<li>
<p>Added runtime type check for <code>ClientSession</code> <code>timeout</code> parameter.</p>
<p><em>Related issues and pull requests on GitHub:</em>
<a href="https://github.com/aio-libs/aiohttp/issues/8021">#8021</a>.</p>
</li>
<li>
<p>Fixed an unhandled exception in the Python HTTP parser on header lines starting with a colon -- by :user:<code>pajod</code>.</p>
<p>Invalid request lines with anything but a dot between the HTTP major and minor version are now rejected.
Invalid header field names containing question mark or slash are now rejected.
Such requests are incompatible with :rfc:<code>9110#section-5.6.2</code> and are not known to be of any legitimate use.</p>
<p><em>Related issues and pull requests on GitHub:</em>
<a href="https://github.com/aio-libs/aiohttp/issues/8074">#8074</a>.</p>
</li>
<li>
<p>Improved validation of paths for static resources requests to the server -- by :user:<code>bdraco</code>.</p>
</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/aio-libs/aiohttp/blob/master/CHANGES.rst">aiohttp's changelog</a>.</em></p>
<blockquote>
<h1>3.9.2 (2024-01-28)</h1>
<h2>Bug fixes</h2>
<ul>
<li>
<p>Fixed server-side websocket connection leak.</p>
<p><em>Related issues and pull requests on GitHub:</em>
:issue:<code>7978</code>.</p>
</li>
<li>
<p>Fixed <code>web.FileResponse</code> doing blocking I/O in the event loop.</p>
<p><em>Related issues and pull requests on GitHub:</em>
:issue:<code>8012</code>.</p>
</li>
<li>
<p>Fixed double compress when compression enabled and compressed file exists in server file responses.</p>
<p><em>Related issues and pull requests on GitHub:</em>
:issue:<code>8014</code>.</p>
</li>
<li>
<p>Added runtime type check for <code>ClientSession</code> <code>timeout</code> parameter.</p>
<p><em>Related issues and pull requests on GitHub:</em>
:issue:<code>8021</code>.</p>
</li>
<li>
<p>Fixed an unhandled exception in the Python HTTP parser on header lines starting with a colon -- by :user:<code>pajod</code>.</p>
<p>Invalid request lines with anything but a dot between the HTTP major and minor version are now rejected.
Invalid header field names containing question mark or slash are now rejected.
Such requests are incompatible with :rfc:<code>9110#section-5.6.2</code> and are not known to be of any legitimate use.</p>
<p><em>Related issues and pull requests on GitHub:</em>
:issue:<code>8074</code>.</p>
</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/aio-libs/aiohttp/commit/24a6d64966d99182e95f5d3a29541ef2fec397ad"><code>24a6d64</code></a> Release v3.9.2 (<a href="https://github.com/aio-libs/aiohttp/issues/8082">#8082</a>)</li>
<li><a href="https://github.com/aio-libs/aiohttp/commit/9118a5831e8a65b8c839eb7e4ac983e040ff41df"><code>9118a58</code></a> [PR <a href="https://github.com/aio-libs/aiohttp/issues/8079">#8079</a>/1c335944 backport][3.9] Validate static paths (<a href="https://github.com/aio-libs/aiohttp/issues/8080">#8080</a>)</li>
<li><a href="https://github.com/aio-libs/aiohttp/commit/435ad46e6c26cbf6ed9a38764e9ba8e7441a0e3b"><code>435ad46</code></a> [PR <a href="https://github.com/aio-libs/aiohttp/issues/3955">#3955</a>/8960063e backport][3.9] Replace all tmpdir fixtures with tmp_path (...</li>
<li><a href="https://github.com/aio-libs/aiohttp/commit/d33bc21414e283c9e6fe7f6caf69e2ed60d66c82"><code>d33bc21</code></a> Improve validation in HTTP parser (<a href="https://github.com/aio-libs/aiohttp/issues/8074">#8074</a>) (<a href="https://github.com/aio-libs/aiohttp/issues/8078">#8078</a>)</li>
<li><a href="https://github.com/aio-libs/aiohttp/commit/0d945d1be08f2ba8475513216a66411f053c3217"><code>0d945d1</code></a> [PR <a href="https://github.com/aio-libs/aiohttp/issues/7916">#7916</a>/822fbc74 backport][3.9] Add more information to contributing page (...</li>
<li><a href="https://github.com/aio-libs/aiohttp/commit/3ec4fa1f0e0a0dad218c75dbe5ed09e22d5cc284"><code>3ec4fa1</code></a> [PR <a href="https://github.com/aio-libs/aiohttp/issues/8069">#8069</a>/69bbe874 backport][3.9] đź“ť Only show changelog draft for non-release...</li>
<li><a href="https://github.com/aio-libs/aiohttp/commit/419d715c42c46daf1a59e0aff61c1f6d10236982"><code>419d715</code></a> [PR <a href="https://github.com/aio-libs/aiohttp/issues/8066">#8066</a>/cba34699 backport][3.9] đź’…đź“ť Restructure the changelog for clarity (#...</li>
<li><a href="https://github.com/aio-libs/aiohttp/commit/a54dab3b36bcf0d815b9244f52ae7bc5da08f387"><code>a54dab3</code></a> [PR <a href="https://github.com/aio-libs/aiohttp/issues/8049">#8049</a>/a379e634 backport][3.9] Set cause for ClientPayloadError (<a href="https://github.com/aio-libs/aiohttp/issues/8050">#8050</a>)</li>
<li><a href="https://github.com/aio-libs/aiohttp/commit/437ac47fe332106a07a2d5335bb89619f1bc23f7"><code>437ac47</code></a> [PR <a href="https://github.com/aio-libs/aiohttp/issues/7995">#7995</a>/43a5bc50 backport][3.9] Fix examples of <code>fallback_charset_resolver</code>...</li>
<li><a href="https://github.com/aio-libs/aiohttp/commit/034e5e34ee11c6138c773d85123490e691e1b708"><code>034e5e3</code></a> [PR <a href="https://github.com/aio-libs/aiohttp/issues/8042">#8042</a>/4b91b530 backport][3.9] Tightening the runtime type check for ssl (...</li>
<li>Additional commits viewable in <a href="https://github.com/aio-libs/aiohttp/compare/v3.9.1...v3.9.2">compare view</a></li>
</ul>
</details>
<br />HIFIS BotHIFIS Bothttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/145chore(deps-dev): bump ansible-lint from 6.22.1 to 24.2.12024-03-22T06:41:51+01:00HIFIS Botchore(deps-dev): bump ansible-lint from 6.22.1 to 24.2.1Bumps [ansible-lint](https://github.com/ansible/ansible-lint) from 6.22.1 to 24.2.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ansible/ansible-lint/releases">ansible-lint's releases</a>.</...Bumps [ansible-lint](https://github.com/ansible/ansible-lint) from 6.22.1 to 24.2.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ansible/ansible-lint/releases">ansible-lint's releases</a>.</em></p>
<blockquote>
<h2>v24.2.1</h2>
<h2>Bugfixes</h2>
<ul>
<li>Fix error suppression when syntax is incorrect (<a href="https://github.com/ansible/ansible-lint/issues/4026">#4026</a>) <a href="https://github.com/audgirka"><code>@​audgirka</code></a></li>
<li>Set global <code>cache_dir_lock</code> (<a href="https://github.com/ansible/ansible-lint/issues/4055">#4055</a>) <a href="https://github.com/guppy0130"><code>@​guppy0130</code></a></li>
<li>[role-name] Handle string role dependencies (<a href="https://github.com/ansible/ansible-lint/issues/4054">#4054</a>) <a href="https://github.com/corubba"><code>@​corubba</code></a></li>
<li>Support for upcoming Ubuntu 24.04 and Fedora 40 (<a href="https://github.com/ansible/ansible-lint/issues/4051">#4051</a>) <a href="https://github.com/mafalb"><code>@​mafalb</code></a></li>
<li>Update documentation for syntax-check[unknown-module] (<a href="https://github.com/ansible/ansible-lint/issues/4049">#4049</a>) <a href="https://github.com/ssbarnea"><code>@​ssbarnea</code></a></li>
<li>Add OpenWRT 23.05 to valid versions (<a href="https://github.com/ansible/ansible-lint/issues/4041">#4041</a>) <a href="https://github.com/jonkerj"><code>@​jonkerj</code></a></li>
<li>Update task name in <code>notify</code> for a task against <code>name[casing]</code> error (<a href="https://github.com/ansible/ansible-lint/issues/4038">#4038</a>) <a href="https://github.com/audgirka"><code>@​audgirka</code></a></li>
<li>accept yum history and info as valid commands (<a href="https://github.com/ansible/ansible-lint/issues/4025">#4025</a>) <a href="https://github.com/konstruktoid"><code>@​konstruktoid</code></a></li>
<li>Add attributes for role argument specs (<a href="https://github.com/ansible/ansible-lint/issues/4018">#4018</a>) <a href="https://github.com/felixfontein"><code>@​felixfontein</code></a></li>
</ul>
<h2>v24.2.0</h2>
<h2>Minor Changes</h2>
<ul>
<li>Drop support for Python 3.9 (<a href="https://github.com/ansible/ansible-lint/issues/4009">#4009</a>) <a href="https://github.com/audgirka"><code>@​audgirka</code></a></li>
</ul>
<h2>Bugfixes</h2>
<ul>
<li>Fix scenario when role has no <code>dependencies</code> section in <code>meta/main.yml</code> (<a href="https://github.com/ansible/ansible-lint/issues/3993">#3993</a>) <a href="https://github.com/audgirka"><code>@​audgirka</code></a></li>
</ul>
<h2>v6.22.2</h2>
<h2>Bugfixes</h2>
<ul>
<li>Fix key error for name[casing] rule (<a href="https://github.com/ansible/ansible-lint/issues/3987">#3987</a>) <a href="https://github.com/ajinkyau"><code>@​ajinkyau</code></a></li>
<li>Allow dashes in legacy role namespaces (<a href="https://github.com/ansible/ansible-lint/issues/3962">#3962</a>) <a href="https://github.com/sur5r"><code>@​sur5r</code></a></li>
<li>Use new ansible-compat verbosity levels (<a href="https://github.com/ansible/ansible-lint/issues/3975">#3975</a>) <a href="https://github.com/ssbarnea"><code>@​ssbarnea</code></a></li>
<li>Remove dependency on newer requests library (<a href="https://github.com/ansible/ansible-lint/issues/3959">#3959</a>) <a href="https://github.com/ssbarnea"><code>@​ssbarnea</code></a></li>
<li>Ignore set-property for systemd command (<a href="https://github.com/ansible/ansible-lint/issues/3949">#3949</a>) <a href="https://github.com/alanbbr"><code>@​alanbbr</code></a></li>
<li>Correct requires_ansible error message (<a href="https://github.com/ansible/ansible-lint/issues/3954">#3954</a>) <a href="https://github.com/ssbarnea"><code>@​ssbarnea</code></a></li>
<li>Improve transformation for <code>no-free-form</code> rule (<a href="https://github.com/ansible/ansible-lint/issues/3945">#3945</a>) <a href="https://github.com/ajinkyau"><code>@​ajinkyau</code></a></li>
<li>Documentation improvement (<a href="https://github.com/ansible/ansible-lint/issues/3946">#3946</a>) <a href="https://github.com/ssbarnea"><code>@​ssbarnea</code></a></li>
<li>docs: fix grammatical issue in philosophy Q&A section (<a href="https://github.com/ansible/ansible-lint/issues/3934">#3934</a>) <a href="https://github.com/davidhulick"><code>@​davidhulick</code></a></li>
<li>Update supported versions of ansible (<a href="https://github.com/ansible/ansible-lint/issues/3930">#3930</a>) <a href="https://github.com/ajinkyau"><code>@​ajinkyau</code></a></li>
<li>Fix backward compatibility (<a href="https://github.com/ansible/ansible-lint/issues/3929">#3929</a>) <a href="https://github.com/McSim85"><code>@​McSim85</code></a></li>
<li>Fix auto capitalization for name[prefix] rule (<a href="https://github.com/ansible/ansible-lint/issues/3922">#3922</a>) <a href="https://github.com/ajinkyau"><code>@​ajinkyau</code></a></li>
<li>Fix role deps check for detecting path names (<a href="https://github.com/ansible/ansible-lint/issues/3923">#3923</a>) <a href="https://github.com/cavcrosby"><code>@​cavcrosby</code></a></li>
<li>Avoid warnings about PATH with pipx installations (<a href="https://github.com/ansible/ansible-lint/issues/3920">#3920</a>) <a href="https://github.com/ssbarnea"><code>@​ssbarnea</code></a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible/ansible-lint/commit/ce2ebd7df4486adde693d7a70f0a9cd1814bce35"><code>ce2ebd7</code></a> Fix error suppression when syntax is incorrect (<a href="https://github.com/ansible/ansible-lint/issues/4026">#4026</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/ee7ede5ee8eb1e595bad193e4ca8ac974e7708bf"><code>ee7ede5</code></a> Bump the dependencies group in /.config with 12 updates (<a href="https://github.com/ansible/ansible-lint/issues/4062">#4062</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/b35bf7e98f274ce04ca7461266f6614d8cb5bb5b"><code>b35bf7e</code></a> Inherit secrets in ack pipeline (<a href="https://github.com/ansible/ansible-lint/issues/4064">#4064</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/7d4659b3557a9663d1fa4b8b60299e18d7afad78"><code>7d4659b</code></a> Update CODEOWNERS (<a href="https://github.com/ansible/ansible-lint/issues/4063">#4063</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/36e2674032ccb6c5f610a1b683c9e8c0b5ec80ab"><code>36e2674</code></a> Set global <code>cache_dir_lock</code> (<a href="https://github.com/ansible/ansible-lint/issues/4055">#4055</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/6d247c1bd68921c5d94832e1d386e82be2d59516"><code>6d247c1</code></a> [role-name] Handle string role dependencies (<a href="https://github.com/ansible/ansible-lint/issues/4054">#4054</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/d65aeedabe39693df00f4d4b722f7f4ae87cf90d"><code>d65aeed</code></a> Support for upcoming Ubuntu 24.04 and Fedora 40 (<a href="https://github.com/ansible/ansible-lint/issues/4051">#4051</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/f7b204d26e4d677661a0c9352b65b082e26aa8e1"><code>f7b204d</code></a> Fix docs build (<a href="https://github.com/ansible/ansible-lint/issues/4058">#4058</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/cb9d760cf0fca236835d87199b4e6888776dcd69"><code>cb9d760</code></a> Bump the dependencies group in /.config with 15 updates (<a href="https://github.com/ansible/ansible-lint/issues/4050">#4050</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/efeda675d142f8c97a4e4c34f2a2516f8abb784c"><code>efeda67</code></a> Update documentation for syntax-check[unknown-module] (<a href="https://github.com/ansible/ansible-lint/issues/4049">#4049</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/ansible/ansible-lint/compare/v6.22.1...v24.2.1">compare view</a></li>
</ul>
</details>
<br />Huste, TobiasHuste, Tobiashttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/141chore(deps-dev): bump yamllint from 1.33.0 to 1.35.12024-03-22T06:41:16+01:00HIFIS Botchore(deps-dev): bump yamllint from 1.33.0 to 1.35.1Bumps [yamllint](https://github.com/adrienverge/yamllint) from 1.33.0 to 1.35.1.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/adrienverge/yamllint/blob/master/CHANGELOG.rst">yamllint's changelog<...Bumps [yamllint](https://github.com/adrienverge/yamllint) from 1.33.0 to 1.35.1.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/adrienverge/yamllint/blob/master/CHANGELOG.rst">yamllint's changelog</a>.</em></p>
<blockquote>
<h2>1.35.1 (2024-02-16)</h2>
<ul>
<li>Restore ignoration of files passed as command-line arguments</li>
<li>Revert API change from version 1.35.0</li>
</ul>
<h2>1.35.0 (2024-02-15)</h2>
<ul>
<li>Fix failure on broken symlinks that should be ignored</li>
<li>API change: <code>linter.run(stream, config)</code> doesn't filter files anymore</li>
<li>Docs: Restore official Read the Docs theme</li>
</ul>
<h2>1.34.0 (2024-02-06)</h2>
<ul>
<li>Config: validate <code>ignore-from-file</code> inside rules</li>
<li>Rule <code>quoted-strings</code>: fix <code>only-when-needed</code> in flow maps and sequences</li>
<li>Rule <code>key-duplicates</code>: add <code>forbid-duplicated-merge-keys</code> option</li>
<li>Rule <code>quoted-strings</code>: add <code>check-keys</code> option</li>
<li>Docs: add GitLab CI example</li>
<li>Rule <code>truthy</code>: adapt forbidden values based on YAML version</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/adrienverge/yamllint/commit/81e9f98ffd059efe8aa9c1b1a42e5cce61b640c6"><code>81e9f98</code></a> yamllint version 1.35.1</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/9235c684960c35db19dc67800d0998869e3ed229"><code>9235c68</code></a> cli: Restore ignoration of files passed as command-line arguments</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/3a13803fb091b39c46ff9dfb46d0753b8a2bd77a"><code>3a13803</code></a> yamllint version 1.35.0</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/23443803539bdfc6ca2b35101cc8beb04fb184c1"><code>2344380</code></a> cli: Cleanly skip broken symlinks that are ignored</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/f66855bf2d73357047118de68ce8224297c3ef5a"><code>f66855b</code></a> build: Restore official Read the Docs theme</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/dd99a1c965b56027e9773442f41d3c58cc53c690"><code>dd99a1c</code></a> yamllint version 1.34.0</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/01df5bf038ed4df3170477aab5ec8949d9bc8260"><code>01df5bf</code></a> truthy: Adapt forbidden values based on YAML version</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/9931ad699ce2be71286bca0b991c8b3427ef6d40"><code>9931ad6</code></a> Undo ruff changes that conflict with flake8</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/57d26917136ae237b2e142e515b1ee06bfc92f91"><code>57d2691</code></a> Revert replacement of flake8 with ruff</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/3cb3a2038569370a2e44bcda28a378dac96c6c10"><code>3cb3a20</code></a> build: enable pygrep-hooks in ruff</li>
<li>Additional commits viewable in <a href="https://github.com/adrienverge/yamllint/compare/v1.33.0...v1.35.1">compare view</a></li>
</ul>
</details>
<br />Huste, TobiasHuste, Tobiashttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/131chore(deps-dev): bump reuse from 3.0.0 to 3.0.12024-03-21T10:34:54+01:00HIFIS Botchore(deps-dev): bump reuse from 3.0.0 to 3.0.1Bumps [reuse](https://github.com/fsfe/reuse-tool) from 3.0.0 to 3.0.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/fsfe/reuse-tool/releases">reuse's releases</a>.</em></p>
<blockquote>
<h2>v...Bumps [reuse](https://github.com/fsfe/reuse-tool) from 3.0.0 to 3.0.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/fsfe/reuse-tool/releases">reuse's releases</a>.</em></p>
<blockquote>
<h2>v3.0.1</h2>
<h3>Fixed</h3>
<ul>
<li><code>.qrc</code> and <code>.ui</code> now have the HTML comment style instead of being marked
uncommentable. (<a href="https://github.com/fsfe/reuse-tool/issues/896">#896</a>)</li>
<li>This reverts behaviour introduced in v3.0.0: the contents of uncommentable
files are scanned for REUSE information again. The contents of binary files
are not. (<a href="https://github.com/fsfe/reuse-tool/issues/896">#896</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/fsfe/reuse-tool/blob/main/CHANGELOG.md">reuse's changelog</a>.</em></p>
<blockquote>
<h2>3.0.1 - 2024-01-19</h2>
<h3>Fixed</h3>
<ul>
<li><code>.qrc</code> and <code>.ui</code> now have the HTML comment style instead of being marked
uncommentable. (<a href="https://github.com/fsfe/reuse-tool/issues/896">#896</a>)</li>
<li>This reverts behaviour introduced in v3.0.0: the contents of uncommentable
files are scanned for REUSE information again. The contents of binary files
are not. (<a href="https://github.com/fsfe/reuse-tool/issues/896">#896</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/fsfe/reuse-tool/commit/b450f17b130ca64bffc66f1f905549e433cb5126"><code>b450f17</code></a> Tidy up change log for 3.0.1</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/b7ee288d332179f6ed0e8f05cad03e292645ae9e"><code>b7ee288</code></a> Bump version: 3.0.0 → 3.0.1</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/03c79606cdc18d4cb79581b5dc44730a98e92fc4"><code>03c7960</code></a> Update reuse.pot</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/50a74741ec8a6a16ec257d40b0634595a6e101f6"><code>50a7474</code></a> Merge pull request <a href="https://github.com/fsfe/reuse-tool/issues/896">#896</a> from carmenbianca/fix-uncommentable</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/27e70a1ff0adf76908eee7ec4d060bf1465f6fba"><code>27e70a1</code></a> Add change log entry</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/23018c250aed395f34811056cc00ff45197ab497"><code>23018c2</code></a> Scan files with uncommentable file extensions anyway</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/b96c88c3e298ce8b9420fc9f8e0f177329313070"><code>b96c88c</code></a> Do not mark commentable files as uncommentable</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/120be9100a5d68e74db10bcaadc7414bf94c6141"><code>120be91</code></a> Update reuse.pot</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/6a74ddfd23fded7d12a13fad54b0ae497801f948"><code>6a74ddf</code></a> Add unreleased to change log</li>
<li><a href="https://github.com/fsfe/reuse-tool/commit/e526972998d7be8db623424659d395f8fd3dc1af"><code>e526972</code></a> Merge branch 'release-3.0.0'</li>
<li>See full diff in <a href="https://github.com/fsfe/reuse-tool/compare/v3.0.0...v3.0.1">compare view</a></li>
</ul>
</details>
<br />HIFIS BotHIFIS Bothttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/127chore(deps): update quay.io/podman/stable docker tag to v4.9.32024-03-21T08:23:43+01:00Renovate Botchore(deps): update quay.io/podman/stable docker tag to v4.9.3This MR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| [quay.io/podman/stable](https://quay.io/podman/stable) ([source](https://github.com/containers/image_build)) | image | minor | `v4.8.2` -> ...This MR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| [quay.io/podman/stable](https://quay.io/podman/stable) ([source](https://github.com/containers/image_build)) | image | minor | `v4.8.2` -> `v4.9.3` |
---
### Configuration
đź“… **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.
â™» **Rebasing**: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 **Ignore**: Close this MR and you won't be reminded about this update again.
---
- [ ] <!-- rebase-check -->If you want to rebase/retry this MR, check this box
---
This MR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy4xMTguMSIsInVwZGF0ZWRJblZlciI6IjM3LjIxNC4wIiwidGFyZ2V0QnJhbmNoIjoibWFpbiJ9-->Renovate BotRenovate Bothttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/146chore(deps-dev): [security] bump black from 23.12.0 to 24.3.02024-03-21T06:43:45+01:00HIFIS Botchore(deps-dev): [security] bump black from 23.12.0 to 24.3.0Bumps [black](https://github.com/psf/black) from 23.12.0 to 24.3.0. **This update includes a security fix.**
<details>
<summary>Vulnerabilities fixed</summary>
<blockquote>
<p><strong>Black vulnerable to Regular Expression Denial of Serv...Bumps [black](https://github.com/psf/black) from 23.12.0 to 24.3.0. **This update includes a security fix.**
<details>
<summary>Vulnerabilities fixed</summary>
<blockquote>
<p><strong>Black vulnerable to Regular Expression Denial of Service (ReDoS)</strong>
Versions of the package black before 24.3.0 are vulnerable to Regular Expression Denial of Service (ReDoS) via the lines_with_leading_tabs_expanded function in the strings.py file. An attacker could exploit this vulnerability by crafting a malicious input that causes a denial of service.</p>
<p>Exploiting this vulnerability is possible when running Black on untrusted input, or if you habitually put thousands of leading tab characters in your docstrings.</p>
<p>Patched versions: 24.3.0
Affected versions: >= 0, < 24.3.0</p>
</blockquote>
</details>
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/psf/black/releases">black's releases</a>.</em></p>
<blockquote>
<h2>24.3.0</h2>
<h3>Highlights</h3>
<p>This release is a milestone: it fixes Black's first CVE security vulnerability. If you
run Black on untrusted input, or if you habitually put thousands of leading tab
characters in your docstrings, you are strongly encouraged to upgrade immediately to fix
<a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21503">CVE-2024-21503</a>.</p>
<p>This release also fixes a bug in Black's AST safety check that allowed Black to make
incorrect changes to certain f-strings that are valid in Python 3.12 and higher.</p>
<h3>Stable style</h3>
<ul>
<li>Don't move comments along with delimiters, which could cause crashes (<a href="https://github.com/psf/black/issues/4248">#4248</a>)</li>
<li>Strengthen AST safety check to catch more unsafe changes to strings. Previous versions
of Black would incorrectly format the contents of certain unusual f-strings containing
nested strings with the same quote type. Now, Black will crash on such strings until
support for the new f-string syntax is implemented. (<a href="https://github.com/psf/black/issues/4270">#4270</a>)</li>
<li>Fix a bug where line-ranges exceeding the last code line would not work as expected
(<a href="https://github.com/psf/black/issues/4273">#4273</a>)</li>
</ul>
<h3>Performance</h3>
<ul>
<li>Fix catastrophic performance on docstrings that contain large numbers of leading tab
characters. This fixes
<a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21503">CVE-2024-21503</a>.
(<a href="https://github.com/psf/black/issues/4278">#4278</a>)</li>
</ul>
<h3>Documentation</h3>
<ul>
<li>Note what happens when <code>--check</code> is used with <code>--quiet</code> (<a href="https://github.com/psf/black/issues/4236">#4236</a>)</li>
</ul>
<h2>24.2.0</h2>
<h3>Stable style</h3>
<ul>
<li>Fixed a bug where comments where mistakenly removed along with redundant parentheses
(<a href="https://github.com/psf/black/issues/4218">#4218</a>)</li>
</ul>
<h3>Preview style</h3>
<ul>
<li>Move the <code>hug_parens_with_braces_and_square_brackets</code> feature to the unstable style
due to an outstanding crash and proposed formatting tweaks (<a href="https://github.com/psf/black/issues/4198">#4198</a>)</li>
<li>Fixed a bug where base expressions caused inconsistent formatting of ** in tenary
expression (<a href="https://github.com/psf/black/issues/4154">#4154</a>)</li>
<li>Checking for newline before adding one on docstring that is almost at the line limit
(<a href="https://github.com/psf/black/issues/4185">#4185</a>)</li>
<li>Remove redundant parentheses in <code>case</code> statement <code>if</code> guards (<a href="https://github.com/psf/black/issues/4214">#4214</a>).</li>
</ul>
<h3>Configuration</h3>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/psf/black/blob/main/CHANGES.md">black's changelog</a>.</em></p>
<blockquote>
<h2>24.3.0</h2>
<h3>Highlights</h3>
<p>This release is a milestone: it fixes Black's first CVE security vulnerability. If you
run Black on untrusted input, or if you habitually put thousands of leading tab
characters in your docstrings, you are strongly encouraged to upgrade immediately to fix
<a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21503">CVE-2024-21503</a>.</p>
<p>This release also fixes a bug in Black's AST safety check that allowed Black to make
incorrect changes to certain f-strings that are valid in Python 3.12 and higher.</p>
<h3>Stable style</h3>
<ul>
<li>Don't move comments along with delimiters, which could cause crashes (<a href="https://github.com/psf/black/issues/4248">#4248</a>)</li>
<li>Strengthen AST safety check to catch more unsafe changes to strings. Previous versions
of Black would incorrectly format the contents of certain unusual f-strings containing
nested strings with the same quote type. Now, Black will crash on such strings until
support for the new f-string syntax is implemented. (<a href="https://github.com/psf/black/issues/4270">#4270</a>)</li>
<li>Fix a bug where line-ranges exceeding the last code line would not work as expected
(<a href="https://github.com/psf/black/issues/4273">#4273</a>)</li>
</ul>
<h3>Performance</h3>
<ul>
<li>Fix catastrophic performance on docstrings that contain large numbers of leading tab
characters. This fixes
<a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21503">CVE-2024-21503</a>.
(<a href="https://github.com/psf/black/issues/4278">#4278</a>)</li>
</ul>
<h3>Documentation</h3>
<ul>
<li>Note what happens when <code>--check</code> is used with <code>--quiet</code> (<a href="https://github.com/psf/black/issues/4236">#4236</a>)</li>
</ul>
<h2>24.2.0</h2>
<h3>Stable style</h3>
<ul>
<li>Fixed a bug where comments where mistakenly removed along with redundant parentheses
(<a href="https://github.com/psf/black/issues/4218">#4218</a>)</li>
</ul>
<h3>Preview style</h3>
<ul>
<li>Move the <code>hug_parens_with_braces_and_square_brackets</code> feature to the unstable style
due to an outstanding crash and proposed formatting tweaks (<a href="https://github.com/psf/black/issues/4198">#4198</a>)</li>
<li>Fixed a bug where base expressions caused inconsistent formatting of ** in tenary
expression (<a href="https://github.com/psf/black/issues/4154">#4154</a>)</li>
<li>Checking for newline before adding one on docstring that is almost at the line limit
(<a href="https://github.com/psf/black/issues/4185">#4185</a>)</li>
<li>Remove redundant parentheses in <code>case</code> statement <code>if</code> guards (<a href="https://github.com/psf/black/issues/4214">#4214</a>).</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/psf/black/commit/552baf822992936134cbd31a38f69c8cfe7c0f05"><code>552baf8</code></a> Prepare release 24.3.0 (<a href="https://github.com/psf/black/issues/4279">#4279</a>)</li>
<li><a href="https://github.com/psf/black/commit/f00093672628d212b8965a8993cee8bedf5fe9b8"><code>f000936</code></a> Fix catastrophic performance in lines_with_leading_tabs_expanded() (<a href="https://github.com/psf/black/issues/4278">#4278</a>)</li>
<li><a href="https://github.com/psf/black/commit/7b5a657285f38126bf28483478bbd9ea928077ec"><code>7b5a657</code></a> Fix --line-ranges behavior when ranges are at EOF (<a href="https://github.com/psf/black/issues/4273">#4273</a>)</li>
<li><a href="https://github.com/psf/black/commit/1abcffc81816257985678f08c61584ed4287f22a"><code>1abcffc</code></a> Use regex where we ignore case on windows (<a href="https://github.com/psf/black/issues/4252">#4252</a>)</li>
<li><a href="https://github.com/psf/black/commit/719e67462c80574c81a96faa144886de6da84489"><code>719e674</code></a> Fix 4227: Improve documentation for --quiet --check (<a href="https://github.com/psf/black/issues/4236">#4236</a>)</li>
<li><a href="https://github.com/psf/black/commit/e5510afc06cd238cd0cba4095283943a870a7e7b"><code>e5510af</code></a> update plugin url for Thonny (<a href="https://github.com/psf/black/issues/4259">#4259</a>)</li>
<li><a href="https://github.com/psf/black/commit/6af7d1109693c4ad3af08ecbc34649c232b47a6d"><code>6af7d11</code></a> Fix AST safety check false negative (<a href="https://github.com/psf/black/issues/4270">#4270</a>)</li>
<li><a href="https://github.com/psf/black/commit/f03ee113c9f3dfeb477f2d4247bfb7de2e5f465c"><code>f03ee11</code></a> Ensure <code>blib2to3.pygram</code> is initialized before use (<a href="https://github.com/psf/black/issues/4224">#4224</a>)</li>
<li><a href="https://github.com/psf/black/commit/e4bfedbec2e8b10cc6b7b31442478f05db0ce06d"><code>e4bfedb</code></a> fix: Don't move comments while splitting delimiters (<a href="https://github.com/psf/black/issues/4248">#4248</a>)</li>
<li><a href="https://github.com/psf/black/commit/d0287e1f7558d97e6c0ebd6dc5bcb5b970e2bf8c"><code>d0287e1</code></a> Make trailing comma logic more concise (<a href="https://github.com/psf/black/issues/4202">#4202</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/psf/black/compare/23.12.0...24.3.0">compare view</a></li>
</ul>
</details>
<br />Huste, TobiasHuste, Tobiashttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/137chore(deps-dev): bump ansible-lint from 6.22.1 to 24.2.02024-03-14T06:41:57+01:00HIFIS Botchore(deps-dev): bump ansible-lint from 6.22.1 to 24.2.0Bumps [ansible-lint](https://github.com/ansible/ansible-lint) from 6.22.1 to 24.2.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ansible/ansible-lint/releases">ansible-lint's releases</a>.</...Bumps [ansible-lint](https://github.com/ansible/ansible-lint) from 6.22.1 to 24.2.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ansible/ansible-lint/releases">ansible-lint's releases</a>.</em></p>
<blockquote>
<h2>v24.2.0</h2>
<h2>Minor Changes</h2>
<ul>
<li>Drop support for Python 3.9 (<a href="https://github.com/ansible/ansible-lint/issues/4009">#4009</a>) <a href="https://github.com/audgirka"><code>@​audgirka</code></a></li>
</ul>
<h2>Bugfixes</h2>
<ul>
<li>Fix scenario when role has no <code>dependencies</code> section in <code>meta/main.yml</code> (<a href="https://github.com/ansible/ansible-lint/issues/3993">#3993</a>) <a href="https://github.com/audgirka"><code>@​audgirka</code></a></li>
</ul>
<h2>v6.22.2</h2>
<h2>Bugfixes</h2>
<ul>
<li>Fix key error for name[casing] rule (<a href="https://github.com/ansible/ansible-lint/issues/3987">#3987</a>) <a href="https://github.com/ajinkyau"><code>@​ajinkyau</code></a></li>
<li>Allow dashes in legacy role namespaces (<a href="https://github.com/ansible/ansible-lint/issues/3962">#3962</a>) <a href="https://github.com/sur5r"><code>@​sur5r</code></a></li>
<li>Use new ansible-compat verbosity levels (<a href="https://github.com/ansible/ansible-lint/issues/3975">#3975</a>) <a href="https://github.com/ssbarnea"><code>@​ssbarnea</code></a></li>
<li>Remove dependency on newer requests library (<a href="https://github.com/ansible/ansible-lint/issues/3959">#3959</a>) <a href="https://github.com/ssbarnea"><code>@​ssbarnea</code></a></li>
<li>Ignore set-property for systemd command (<a href="https://github.com/ansible/ansible-lint/issues/3949">#3949</a>) <a href="https://github.com/alanbbr"><code>@​alanbbr</code></a></li>
<li>Correct requires_ansible error message (<a href="https://github.com/ansible/ansible-lint/issues/3954">#3954</a>) <a href="https://github.com/ssbarnea"><code>@​ssbarnea</code></a></li>
<li>Improve transformation for <code>no-free-form</code> rule (<a href="https://github.com/ansible/ansible-lint/issues/3945">#3945</a>) <a href="https://github.com/ajinkyau"><code>@​ajinkyau</code></a></li>
<li>Documentation improvement (<a href="https://github.com/ansible/ansible-lint/issues/3946">#3946</a>) <a href="https://github.com/ssbarnea"><code>@​ssbarnea</code></a></li>
<li>docs: fix grammatical issue in philosophy Q&A section (<a href="https://github.com/ansible/ansible-lint/issues/3934">#3934</a>) <a href="https://github.com/davidhulick"><code>@​davidhulick</code></a></li>
<li>Update supported versions of ansible (<a href="https://github.com/ansible/ansible-lint/issues/3930">#3930</a>) <a href="https://github.com/ajinkyau"><code>@​ajinkyau</code></a></li>
<li>Fix backward compatibility (<a href="https://github.com/ansible/ansible-lint/issues/3929">#3929</a>) <a href="https://github.com/McSim85"><code>@​McSim85</code></a></li>
<li>Fix auto capitalization for name[prefix] rule (<a href="https://github.com/ansible/ansible-lint/issues/3922">#3922</a>) <a href="https://github.com/ajinkyau"><code>@​ajinkyau</code></a></li>
<li>Fix role deps check for detecting path names (<a href="https://github.com/ansible/ansible-lint/issues/3923">#3923</a>) <a href="https://github.com/cavcrosby"><code>@​cavcrosby</code></a></li>
<li>Avoid warnings about PATH with pipx installations (<a href="https://github.com/ansible/ansible-lint/issues/3920">#3920</a>) <a href="https://github.com/ssbarnea"><code>@​ssbarnea</code></a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible/ansible-lint/commit/a3fc7e4def4c3576a221fd1e0e58c0ee43f73af5"><code>a3fc7e4</code></a> chore: pre-commit autoupdate (<a href="https://github.com/ansible/ansible-lint/issues/4010">#4010</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/4b36ffae7e4bf5624e5f59bc29deae515645c6f6"><code>4b36ffa</code></a> Apply Python 3.10 code changes (<a href="https://github.com/ansible/ansible-lint/issues/4012">#4012</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/1543d4c8dfef023fc5f638c632bad16783eb8d55"><code>1543d4c</code></a> Drop support for Python 3.9 (<a href="https://github.com/ansible/ansible-lint/issues/4009">#4009</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/26ecfa00b945bae5a7f4b3b437cbcb93775d8611"><code>26ecfa0</code></a> Configure codecov for ansible-lint (<a href="https://github.com/ansible/ansible-lint/issues/4011">#4011</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/c98fa0e50703cc81bc8e89ce9d772c280de20523"><code>c98fa0e</code></a> Bump codecov/codecov-action from 3 to 4 (<a href="https://github.com/ansible/ansible-lint/issues/4003">#4003</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/48a7c4f0ab0e15f197d6ca70ce9ed827447d0203"><code>48a7c4f</code></a> Make File Permissions Mode a String (<a href="https://github.com/ansible/ansible-lint/issues/4004">#4004</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/2ce9450bfcc943f0a92188f65017145403fc6115"><code>2ce9450</code></a> Bump the dependencies group in /.config with 10 updates (<a href="https://github.com/ansible/ansible-lint/issues/4006">#4006</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/6a8a4025834a1fb49f13d32ae8350fc2550883d0"><code>6a8a402</code></a> Bump the dependencies group in /.config with 16 updates (<a href="https://github.com/ansible/ansible-lint/issues/4002">#4002</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/a93584a5392dc8496defec0366d54fe4ee9fd094"><code>a93584a</code></a> Rename lock file in GHA (<a href="https://github.com/ansible/ansible-lint/issues/4001">#4001</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/eeac6813708c19e2646848762b56eccc9a3c08d8"><code>eeac681</code></a> Unify requirements files (<a href="https://github.com/ansible/ansible-lint/issues/3989">#3989</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/ansible/ansible-lint/compare/v6.22.1...v24.2.0">compare view</a></li>
</ul>
</details>
<br />Huste, TobiasHuste, Tobiashttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/133chore(deps): bump ansible from 9.1.0 to 9.2.02024-02-28T06:41:15+01:00HIFIS Botchore(deps): bump ansible from 9.1.0 to 9.2.0Bumps [ansible](https://github.com/ansible-community/ansible-build-data) from 9.1.0 to 9.2.0.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/e95e18eb5992b912bfd9c2257...Bumps [ansible](https://github.com/ansible-community/ansible-build-data) from 9.1.0 to 9.2.0.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/e95e18eb5992b912bfd9c2257f1153c317664e7c"><code>e95e18e</code></a> Ansible 9.2.0: Dependencies, changelog and porting guide (<a href="https://github.com/ansible-community/ansible-build-data/issues/361">#361</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/1d660e7851c53685cace98c612d40e045bcc3610"><code>1d660e7</code></a> Remove community.sap from Ansible 10 (<a href="https://github.com/ansible-community/ansible-build-data/issues/360">#360</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/fbeaf1d9470f2304aae580bdba5a5c98c3554602"><code>fbeaf1d</code></a> Remove netapp.um_info from Ansible 10 (<a href="https://github.com/ansible-community/ansible-build-data/issues/359">#359</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/10563a72c4b124deca7952d2f4cbd34ef476a25f"><code>10563a7</code></a> Remove netapp.azure from Ansible 10 (<a href="https://github.com/ansible-community/ansible-build-data/issues/358">#358</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/87282a4535f8c5cc8e4a6a6bb491787e615607c3"><code>87282a4</code></a> Remove netapp.aws from Ansible 10 (<a href="https://github.com/ansible-community/ansible-build-data/issues/357">#357</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/6e0352cc06b2209bdbbb6db8bb240d8262897eb1"><code>6e0352c</code></a> Remove netapp.elementsw from Ansible 10 (<a href="https://github.com/ansible-community/ansible-build-data/issues/356">#356</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/58d2455fee0d0af906bdb113c9154e4f69752ea0"><code>58d2455</code></a> Remove gluster.gluster from Ansible 10 (<a href="https://github.com/ansible-community/ansible-build-data/issues/355">#355</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/c41449431cf974c4d85065c58cf43b39faa446ec"><code>c414494</code></a> Remove hpe.nimble from Ansible 10 (<a href="https://github.com/ansible-community/ansible-build-data/issues/354">#354</a>)</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/d309cad0adbd9351262082697fe00ba22e4b6c14"><code>d309cad</code></a> Ansible 7 and 8 are not compatible with community.docker 3.6.0 due to a new d...</li>
<li><a href="https://github.com/ansible-community/ansible-build-data/commit/db7ed847afc4ec588c163d2572729644b7177681"><code>db7ed84</code></a> Add community.library_inventory_filtering_v1 collection</li>
<li>Additional commits viewable in <a href="https://github.com/ansible-community/ansible-build-data/compare/9.1.0...9.2.0">compare view</a></li>
</ul>
</details>
<br />Huste, TobiasHuste, Tobiashttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/142chore(deps): [security] bump cryptography from 41.0.7 to 42.0.22024-02-22T06:43:15+01:00HIFIS Botchore(deps): [security] bump cryptography from 41.0.7 to 42.0.2Bumps [cryptography](https://github.com/pyca/cryptography) from 41.0.7 to 42.0.2. **This update includes security fixes.**
<details>
<summary>Vulnerabilities fixed</summary>
<blockquote>
<p><strong>Python Cryptography package vulnerable ...Bumps [cryptography](https://github.com/pyca/cryptography) from 41.0.7 to 42.0.2. **This update includes security fixes.**
<details>
<summary>Vulnerabilities fixed</summary>
<blockquote>
<p><strong>Python Cryptography package vulnerable to Bleichenbacher timing oracle attack</strong>
A flaw was found in the python-cryptography package. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive data.</p>
<p>Patched versions: 42.0.0
Affected versions: < 42.0.0</p>
</blockquote>
<blockquote>
<p><strong>Null pointer dereference in PKCS12 parsing</strong>
Issue summary: Processing a maliciously formatted PKCS12 file may lead OpenSSL
to crash leading to a potential Denial of Service attack</p>
<p>Impact summary: Applications loading files in the PKCS12 format from untrusted
sources might terminate abruptly.</p>
<p>A file in PKCS12 format can contain certificates and keys and may come from an
untrusted source. The PKCS12 specification allows certain fields to be NULL, but
OpenSSL does not correctly check for this case. This can lead to a NULL pointer
dereference that results in OpenSSL crashing. If an application processes PKCS12
files from an untrusted source using the OpenSSL APIs then that application will
be vulnerable to this issue.</p>
<p>OpenSSL APIs that are vulnerable to this are: PKCS12_parse(),
PKCS12_unpack_p7data(), PKCS12_unpack_p7encdata(), PKCS12_unpack_authsafes()
and PKCS12_newpass().</p>
<p>We have also fixed a similar issue in SMIME_write_PKCS7(). However since this
function is related to writing data we do not consider it security significant.</p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
<blockquote>
<p>Patched versions: 42.0.2
Affected versions: < 42.0.2</p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst">cryptography's changelog</a>.</em></p>
<blockquote>
<p>42.0.2 - 2024-01-30</p>
<pre><code>
* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.2.1.
* Fixed an issue that prevented the use of Python buffer protocol objects in
``sign`` and ``verify`` methods on asymmetric keys.
* Fixed an issue with incorrect keyword-argument naming with ``EllipticCurvePrivateKey``
:meth:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKey.exchange`,
``X25519PrivateKey``
:meth:`~cryptography.hazmat.primitives.asymmetric.x25519.X25519PrivateKey.exchange`,
``X448PrivateKey``
:meth:`~cryptography.hazmat.primitives.asymmetric.x448.X448PrivateKey.exchange`,
and ``DHPrivateKey``
:meth:`~cryptography.hazmat.primitives.asymmetric.dh.DHPrivateKey.exchange`.
<p>.. _v42-0-1:</p>
<p>42.0.1 - 2024-01-24
</code></pre></p>
<ul>
<li>Fixed an issue with incorrect keyword-argument naming with <code>EllipticCurvePrivateKey</code>
:meth:<code>~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKey.sign</code>.</li>
<li>Resolved compatibility issue with loading certain RSA public keys in
:func:<code>~cryptography.hazmat.primitives.serialization.load_pem_public_key</code>.</li>
</ul>
<p>.. _v42-0-0:</p>
<p>42.0.0 - 2024-01-22</p>
<pre><code>
* **BACKWARDS INCOMPATIBLE:** Dropped support for LibreSSL < 3.7.
* **BACKWARDS INCOMPATIBLE:** Loading a PKCS7 with no content field using
:func:`~cryptography.hazmat.primitives.serialization.pkcs7.load_pem_pkcs7_certificates`
or
:func:`~cryptography.hazmat.primitives.serialization.pkcs7.load_der_pkcs7_certificates`
will now raise a ``ValueError`` rather than return an empty list.
* Parsing SSH certificates no longer permits malformed critical options with
values, as documented in the 41.0.2 release notes.
* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.2.0.
* Updated the minimum supported Rust version (MSRV) to 1.63.0, from 1.56.0.
* We now publish both ``py37`` and ``py39`` ``abi3`` wheels. This should
resolve some errors relating to initializing a module multiple times per
process.
* Support :class:`~cryptography.hazmat.primitives.asymmetric.padding.PSS` for
X.509 certificate signing requests and certificate revocation lists with the
keyword-only argument ``rsa_padding`` on the ``sign`` methods for
:class:`~cryptography.x509.CertificateSigningRequestBuilder` and
:class:`~cryptography.x509.CertificateRevocationListBuilder`.
* Added support for obtaining X.509 certificate signing request signature
algorithm parameters (including PSS) via
</tr></table>
</code></pre>
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/pyca/cryptography/commit/2202123b50de1b8788f909a3e5afe350c56ad81e"><code>2202123</code></a> changelog and version bump 42.0.2 (<a href="https://github.com/pyca/cryptography/issues/10268">#10268</a>)</li>
<li><a href="https://github.com/pyca/cryptography/commit/f7032bdd409838f67fc2b93343f897fb5f397d80"><code>f7032bd</code></a> bump openssl in CI (<a href="https://github.com/pyca/cryptography/issues/10298">#10298</a>) (<a href="https://github.com/pyca/cryptography/issues/10299">#10299</a>)</li>
<li><a href="https://github.com/pyca/cryptography/commit/002e886f16d8857151c09b11dc86b35f2ac9aec3"><code>002e886</code></a> Fixes <a href="https://github.com/pyca/cryptography/issues/10294">#10294</a> -- correct accidental change to exchange kwarg (<a href="https://github.com/pyca/cryptography/issues/10295">#10295</a>) (<a href="https://github.com/pyca/cryptography/issues/10296">#10296</a>)</li>
<li><a href="https://github.com/pyca/cryptography/commit/92fa9f2f606caea5d499c825e832be5bac6f0c23"><code>92fa9f2</code></a> support bytes-like consistently across our asym sign/verify APIs (<a href="https://github.com/pyca/cryptography/issues/10260">#10260</a>) (<a href="https://github.com/pyca/cryptography/issues/1">#1</a>...</li>
<li><a href="https://github.com/pyca/cryptography/commit/6478f7e28be54b51931277235de01b249ceabd96"><code>6478f7e</code></a> explicitly support bytes-like for signature/data in RSA sign/verify (<a href="https://github.com/pyca/cryptography/issues/10259">#10259</a>) ...</li>
<li><a href="https://github.com/pyca/cryptography/commit/4bb8596ae02d95bb054dbcf55e8771379dbe0c19"><code>4bb8596</code></a> fix the release script (<a href="https://github.com/pyca/cryptography/issues/10233">#10233</a>) (<a href="https://github.com/pyca/cryptography/issues/10254">#10254</a>)</li>
<li><a href="https://github.com/pyca/cryptography/commit/337437dc2e62772bde4ad5544f4b1db9ee7572d9"><code>337437d</code></a> 42.0.1 bump (<a href="https://github.com/pyca/cryptography/issues/10252">#10252</a>)</li>
<li><a href="https://github.com/pyca/cryptography/commit/56255de6b2d1a2d2e502b0275231ca81907f33f1"><code>56255de</code></a> allow SPKI RSA keys to be parsed even if they have an incorrect delimiter (<a href="https://github.com/pyca/cryptography/issues/1">#1</a>...</li>
<li><a href="https://github.com/pyca/cryptography/commit/12f038b38af76e36efe8cef09597010c97647e8f"><code>12f038b</code></a> fixes <a href="https://github.com/pyca/cryptography/issues/10237">#10237</a> -- correct EC sign parameter name (<a href="https://github.com/pyca/cryptography/issues/10239">#10239</a>) (<a href="https://github.com/pyca/cryptography/issues/10240">#10240</a>)</li>
<li><a href="https://github.com/pyca/cryptography/commit/4e64baf360a3a89bd92582f59344c12b5c0bd3fd"><code>4e64baf</code></a> 42.0.0 version bump (<a href="https://github.com/pyca/cryptography/issues/10232">#10232</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/pyca/cryptography/compare/41.0.7...42.0.2">compare view</a></li>
</ul>
</details>
<br />Huste, TobiasHuste, Tobiashttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/134chore(deps): [security] bump cryptography from 41.0.7 to 42.0.02024-02-17T06:43:02+01:00HIFIS Botchore(deps): [security] bump cryptography from 41.0.7 to 42.0.0Bumps [cryptography](https://github.com/pyca/cryptography) from 41.0.7 to 42.0.0. **This update includes a security fix.**
<details>
<summary>Vulnerabilities fixed</summary>
<blockquote>
<p><strong>Python Cryptography package vulnerable ...Bumps [cryptography](https://github.com/pyca/cryptography) from 41.0.7 to 42.0.0. **This update includes a security fix.**
<details>
<summary>Vulnerabilities fixed</summary>
<blockquote>
<p><strong>Python Cryptography package vulnerable to Bleichenbacher timing oracle attack</strong>
A flaw was found in the python-cryptography package. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive data.</p>
<p>Patched versions: 42.0.0
Affected versions: < 42.0.0</p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst">cryptography's changelog</a>.</em></p>
<blockquote>
<p>42.0.0 - 2024-01-22</p>
<pre><code>
* **BACKWARDS INCOMPATIBLE:** Dropped support for LibreSSL < 3.7.
* **BACKWARDS INCOMPATIBLE:** Loading a PKCS7 with no content field using
:func:`~cryptography.hazmat.primitives.serialization.pkcs7.load_pem_pkcs7_certificates`
or
:func:`~cryptography.hazmat.primitives.serialization.pkcs7.load_der_pkcs7_certificates`
will now raise a ``ValueError`` rather than return an empty list.
* Parsing SSH certificates no longer permits malformed critical options with
values, as documented in the 41.0.2 release notes.
* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.2.0.
* Updated the minimum supported Rust version (MSRV) to 1.63.0, from 1.56.0.
* We now publish both ``py37`` and ``py39`` ``abi3`` wheels. This should
resolve some errors relating to initializing a module multiple times per
process.
* Support :class:`~cryptography.hazmat.primitives.asymmetric.padding.PSS` for
X.509 certificate signing requests and certificate revocation lists with the
keyword-only argument ``rsa_padding`` on the ``sign`` methods for
:class:`~cryptography.x509.CertificateSigningRequestBuilder` and
:class:`~cryptography.x509.CertificateRevocationListBuilder`.
* Added support for obtaining X.509 certificate signing request signature
algorithm parameters (including PSS) via
:meth:`~cryptography.x509.CertificateSigningRequest.signature_algorithm_parameters`.
* Added support for obtaining X.509 certificate revocation list signature
algorithm parameters (including PSS) via
:meth:`~cryptography.x509.CertificateRevocationList.signature_algorithm_parameters`.
* Added ``mgf`` property to
:class:`~cryptography.hazmat.primitives.asymmetric.padding.PSS`.
* Added ``algorithm`` and ``mgf`` properties to
:class:`~cryptography.hazmat.primitives.asymmetric.padding.OAEP`.
* Added the following properties that return timezone-aware ``datetime`` objects:
:meth:`~cryptography.x509.Certificate.not_valid_before_utc`,
:meth:`~cryptography.x509.Certificate.not_valid_after_utc`,
:meth:`~cryptography.x509.RevokedCertificate.revocation_date_utc`,
:meth:`~cryptography.x509.CertificateRevocationList.next_update_utc`,
:meth:`~cryptography.x509.CertificateRevocationList.last_update_utc`.
These are timezone-aware variants of existing properties that return naĂŻve
``datetime`` objects.
* Deprecated the following properties that return naĂŻve ``datetime`` objects:
:meth:`~cryptography.x509.Certificate.not_valid_before`,
:meth:`~cryptography.x509.Certificate.not_valid_after`,
:meth:`~cryptography.x509.RevokedCertificate.revocation_date`,
:meth:`~cryptography.x509.CertificateRevocationList.next_update`,
:meth:`~cryptography.x509.CertificateRevocationList.last_update`
in favor of the new timezone-aware variants mentioned above.
* Added support for
:class:`~cryptography.hazmat.primitives.ciphers.algorithms.ChaCha20`
on LibreSSL.
* Added support for RSA PSS signatures in PKCS7 with
</tr></table>
</code></pre>
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/pyca/cryptography/commit/4e64baf360a3a89bd92582f59344c12b5c0bd3fd"><code>4e64baf</code></a> 42.0.0 version bump (<a href="https://github.com/pyca/cryptography/issues/10232">#10232</a>)</li>
<li><a href="https://github.com/pyca/cryptography/commit/7cb13a3bc91b7537c6231674fb5b0d2132a7edbe"><code>7cb13a3</code></a> we'll ship 3.2.0 for 42 (<a href="https://github.com/pyca/cryptography/issues/9951">#9951</a>)</li>
<li><a href="https://github.com/pyca/cryptography/commit/605c74e41c75edc717f21afaa5e6a0eee9863a10"><code>605c74e</code></a> Bump x509-limbo and/or wycheproof in CI (<a href="https://github.com/pyca/cryptography/issues/10231">#10231</a>)</li>
<li><a href="https://github.com/pyca/cryptography/commit/97578b98ffc417864e07d0ff9b76c02d2cb4e6da"><code>97578b9</code></a> Bump BoringSSL and/or OpenSSL in CI (<a href="https://github.com/pyca/cryptography/issues/10230">#10230</a>)</li>
<li><a href="https://github.com/pyca/cryptography/commit/972a7b5896a6047ea43a86db87820ab474d898ff"><code>972a7b5</code></a> verification: add test_verify_tz_aware (<a href="https://github.com/pyca/cryptography/issues/10229">#10229</a>)</li>
<li><a href="https://github.com/pyca/cryptography/commit/41daf2d86dd9bf18081802fa5d851a7953810786"><code>41daf2d</code></a> Migrate PKCS7 backend to Rust (<a href="https://github.com/pyca/cryptography/issues/10228">#10228</a>)</li>
<li><a href="https://github.com/pyca/cryptography/commit/d54093e62e7e68c02efbb4d6a09162ddb39bf72f"><code>d54093e</code></a> Remove some skips in tests that aren't needed anymore (<a href="https://github.com/pyca/cryptography/issues/10223">#10223</a>)</li>
<li><a href="https://github.com/pyca/cryptography/commit/71929bd91f34213b9f4a3a0a493c218c35fa25eb"><code>71929bd</code></a> Remove binding that's not used anymore (<a href="https://github.com/pyca/cryptography/issues/10224">#10224</a>)</li>
<li><a href="https://github.com/pyca/cryptography/commit/7ea4b89cea553ce0f641ed29e1ce2e3e34278f1d"><code>7ea4b89</code></a> fixed formatting in changelog (<a href="https://github.com/pyca/cryptography/issues/10225">#10225</a>)</li>
<li><a href="https://github.com/pyca/cryptography/commit/410f4a1ee4cbf46fe7e969bb48fccf261f74bbcd"><code>410f4a1</code></a> Allow brainpool on libressl (<a href="https://github.com/pyca/cryptography/issues/10222">#10222</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/pyca/cryptography/compare/41.0.7...42.0.0">compare view</a></li>
</ul>
</details>
<br />Huste, TobiasHuste, Tobiashttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/140chore(deps-dev): bump yamllint from 1.33.0 to 1.35.02024-02-17T06:41:14+01:00HIFIS Botchore(deps-dev): bump yamllint from 1.33.0 to 1.35.0Bumps [yamllint](https://github.com/adrienverge/yamllint) from 1.33.0 to 1.35.0.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/adrienverge/yamllint/blob/master/CHANGELOG.rst">yamllint's changelog<...Bumps [yamllint](https://github.com/adrienverge/yamllint) from 1.33.0 to 1.35.0.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/adrienverge/yamllint/blob/master/CHANGELOG.rst">yamllint's changelog</a>.</em></p>
<blockquote>
<h2>1.35.0 (2024-02-15)</h2>
<ul>
<li>Fix failure on broken symlinks that should be ignored</li>
<li>API change: <code>linter.run(stream, config)</code> doesn't filter files anymore</li>
<li>Docs: Restore official Read the Docs theme</li>
</ul>
<h2>1.34.0 (2024-02-06)</h2>
<ul>
<li>Config: validate <code>ignore-from-file</code> inside rules</li>
<li>Rule <code>quoted-strings</code>: fix <code>only-when-needed</code> in flow maps and sequences</li>
<li>Rule <code>key-duplicates</code>: add <code>forbid-duplicated-merge-keys</code> option</li>
<li>Rule <code>quoted-strings</code>: add <code>check-keys</code> option</li>
<li>Docs: add GitLab CI example</li>
<li>Rule <code>truthy</code>: adapt forbidden values based on YAML version</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/adrienverge/yamllint/commit/3a13803fb091b39c46ff9dfb46d0753b8a2bd77a"><code>3a13803</code></a> yamllint version 1.35.0</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/23443803539bdfc6ca2b35101cc8beb04fb184c1"><code>2344380</code></a> cli: Cleanly skip broken symlinks that are ignored</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/f66855bf2d73357047118de68ce8224297c3ef5a"><code>f66855b</code></a> build: Restore official Read the Docs theme</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/dd99a1c965b56027e9773442f41d3c58cc53c690"><code>dd99a1c</code></a> yamllint version 1.34.0</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/01df5bf038ed4df3170477aab5ec8949d9bc8260"><code>01df5bf</code></a> truthy: Adapt forbidden values based on YAML version</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/9931ad699ce2be71286bca0b991c8b3427ef6d40"><code>9931ad6</code></a> Undo ruff changes that conflict with flake8</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/57d26917136ae237b2e142e515b1ee06bfc92f91"><code>57d2691</code></a> Revert replacement of flake8 with ruff</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/3cb3a2038569370a2e44bcda28a378dac96c6c10"><code>3cb3a20</code></a> build: enable pygrep-hooks in ruff</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/024b5367b6874200923c77a47b7ed08f3404b205"><code>024b536</code></a> style: silence pygrep-hooks warnings</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/329500a1bcdc794ce6091a5c1923e4793c03b3c2"><code>329500a</code></a> build: enable tryceratops rules in ruff</li>
<li>Additional commits viewable in <a href="https://github.com/adrienverge/yamllint/compare/v1.33.0...v1.35.0">compare view</a></li>
</ul>
</details>
<br />Huste, TobiasHuste, Tobiashttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/135chore(deps-dev): bump yamllint from 1.33.0 to 1.34.02024-02-16T06:41:07+01:00HIFIS Botchore(deps-dev): bump yamllint from 1.33.0 to 1.34.0Bumps [yamllint](https://github.com/adrienverge/yamllint) from 1.33.0 to 1.34.0.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/adrienverge/yamllint/blob/master/CHANGELOG.rst">yamllint's changelog<...Bumps [yamllint](https://github.com/adrienverge/yamllint) from 1.33.0 to 1.34.0.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/adrienverge/yamllint/blob/master/CHANGELOG.rst">yamllint's changelog</a>.</em></p>
<blockquote>
<h2>1.34.0 (2024-02-06)</h2>
<ul>
<li>Config: validate <code>ignore-from-file</code> inside rules</li>
<li>Rule <code>quoted-strings</code>: fix <code>only-when-needed</code> in flow maps and sequences</li>
<li>Rule <code>key-duplicates</code>: add <code>forbid-duplicated-merge-keys</code> option</li>
<li>Rule <code>quoted-strings</code>: add <code>check-keys</code> option</li>
<li>Docs: add GitLab CI example</li>
<li>Rule <code>truthy</code>: adapt forbidden values based on YAML version</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/adrienverge/yamllint/commit/dd99a1c965b56027e9773442f41d3c58cc53c690"><code>dd99a1c</code></a> yamllint version 1.34.0</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/01df5bf038ed4df3170477aab5ec8949d9bc8260"><code>01df5bf</code></a> truthy: Adapt forbidden values based on YAML version</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/9931ad699ce2be71286bca0b991c8b3427ef6d40"><code>9931ad6</code></a> Undo ruff changes that conflict with flake8</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/57d26917136ae237b2e142e515b1ee06bfc92f91"><code>57d2691</code></a> Revert replacement of flake8 with ruff</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/3cb3a2038569370a2e44bcda28a378dac96c6c10"><code>3cb3a20</code></a> build: enable pygrep-hooks in ruff</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/024b5367b6874200923c77a47b7ed08f3404b205"><code>024b536</code></a> style: silence pygrep-hooks warnings</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/329500a1bcdc794ce6091a5c1923e4793c03b3c2"><code>329500a</code></a> build: enable tryceratops rules in ruff</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/f68cae3f1e8bd031ffb0f4b454058bdfbe8aea5a"><code>f68cae3</code></a> style: silence tryceratops warning</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/47bbb26b42920ad10a9c7102d32fe1d90e509ded"><code>47bbb26</code></a> style: apply flake8-copyright rules</li>
<li><a href="https://github.com/adrienverge/yamllint/commit/0d7ae7bf6b852fd739ba385b686ea83ed3164a79"><code>0d7ae7b</code></a> style: fix section heading</li>
<li>Additional commits viewable in <a href="https://github.com/adrienverge/yamllint/compare/v1.33.0...v1.34.0">compare view</a></li>
</ul>
</details>
<br />Huste, TobiasHuste, Tobiashttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/138chore(deps-dev): bump molecule from 6.0.3 to 24.2.02024-02-15T13:11:52+01:00HIFIS Botchore(deps-dev): bump molecule from 6.0.3 to 24.2.0Bumps [molecule](https://github.com/ansible-community/molecule) from 6.0.3 to 24.2.0.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible/molecule/commit/14dc0077dca91b1c388c866b8de49f9ff41e1003"><code>14dc0...Bumps [molecule](https://github.com/ansible-community/molecule) from 6.0.3 to 24.2.0.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible/molecule/commit/14dc0077dca91b1c388c866b8de49f9ff41e1003"><code>14dc007</code></a> Fix background color on matrix command (<a href="https://github.com/ansible-community/molecule/issues/4133">#4133</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/22c1a0e23f39178242df862e9dbcc5c400ebb2f8"><code>22c1a0e</code></a> Update dependencies to include new mkdocs-ansible branding (<a href="https://github.com/ansible-community/molecule/issues/4130">#4130</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/203f06d75f9fbd164580250b862a60c5ce03fbe1"><code>203f06d</code></a> Adding molecule template based on <code>driver.name</code> (<a href="https://github.com/ansible-community/molecule/issues/4126">#4126</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/82652e89a78398692555a7e941c7576872798b03"><code>82652e8</code></a> GHA maintenance (<a href="https://github.com/ansible-community/molecule/issues/4132">#4132</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/b21aa8ac9443ad63b94ecc6658aec03fd2c5a646"><code>b21aa8a</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://github.com/ansible-community/molecule/issues/4129">#4129</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/cf232df5e3f1c8dc0dd0e8c0edf1a3c8234d8806"><code>cf232df</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://github.com/ansible-community/molecule/issues/4125">#4125</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/185ecae0ccee58a4f1f6154f9b91a7778e5f90a8"><code>185ecae</code></a> Bump codecov/codecov-action from 3 to 4 (<a href="https://github.com/ansible-community/molecule/issues/4127">#4127</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/8f7a5ccedc6dc0b638d87e1de9b9398e3f372dcf"><code>8f7a5cc</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://github.com/ansible-community/molecule/issues/4114">#4114</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/64afa3bc96baf55cf41d9ac416536871e6bfdff4"><code>64afa3b</code></a> Bump actions/cache from 3 to 4 (<a href="https://github.com/ansible-community/molecule/issues/4116">#4116</a>)</li>
<li><a href="https://github.com/ansible/molecule/commit/c13bbc7a632338523ec1b52c66c8a138701bb0b2"><code>c13bbc7</code></a> Fix python interpreter for scenario init (<a href="https://github.com/ansible-community/molecule/issues/4111">#4111</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/ansible-community/molecule/compare/v6.0.3...v24.2.0">compare view</a></li>
</ul>
</details>
<br />Huste, TobiasHuste, Tobiashttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/139chore(deps-dev): bump molecule-plugins from 23.4.1 to 23.5.32024-02-15T13:05:23+01:00HIFIS Botchore(deps-dev): bump molecule-plugins from 23.4.1 to 23.5.3Bumps [molecule-plugins](https://github.com/ansible-community/molecule-plugins) from 23.4.1 to 23.5.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ansible-community/molecule-plugins/releases...Bumps [molecule-plugins](https://github.com/ansible-community/molecule-plugins) from 23.4.1 to 23.5.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ansible-community/molecule-plugins/releases">molecule-plugins's releases</a>.</em></p>
<blockquote>
<h2>v23.5.3</h2>
<h2>Bugfixes</h2>
<ul>
<li>update docker collection (<a href="https://github.com/ansible-community/molecule-plugins/issues/217">#217</a>) <a href="https://github.com/zhan9san"><code>@​zhan9san</code></a></li>
<li>Use v6-alpha1 molecule version for tests by <a href="https://github.com/audgirka"><code>@​audgirka</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/180">ansible-community/molecule-plugins#180</a></li>
<li>Prevent empty destroy from deleting other EC2 instances by <a href="https://github.com/Thomas-McKanna"><code>@​Thomas-McKanna</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/170">ansible-community/molecule-plugins#170</a></li>
<li>fix duplicate test names by <a href="https://github.com/alicekaerast"><code>@​alicekaerast</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/197">ansible-community/molecule-plugins#197</a></li>
<li>pass vpc_subnet_id explicitly to avoid amazon.aws error by <a href="https://github.com/danielpodwysocki"><code>@​danielpodwysocki</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/199">ansible-community/molecule-plugins#199</a></li>
<li>Fixes destroy playbook failure if vpc lookup is required by <a href="https://github.com/tkimball83"><code>@​tkimball83</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/184">ansible-community/molecule-plugins#184</a></li>
<li>podman: remove ansible_async_dir setting logic by <a href="https://github.com/grcancelliere"><code>@​grcancelliere</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/182">ansible-community/molecule-plugins#182</a></li>
<li>Add Python 3.12 to test matrix by <a href="https://github.com/cristianonicolai"><code>@​cristianonicolai</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/207">ansible-community/molecule-plugins#207</a></li>
<li>Remove dependency to molecule.test by <a href="https://github.com/cristianonicolai"><code>@​cristianonicolai</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/206">ansible-community/molecule-plugins#206</a></li>
<li>Disable registry login when registry.url is empty by <a href="https://github.com/dometto"><code>@​dometto</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/214">ansible-community/molecule-plugins#214</a></li>
<li>Support the shm_size docker configuration option by <a href="https://github.com/zleinweber"><code>@​zleinweber</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/216">ansible-community/molecule-plugins#216</a></li>
<li>Fixes podman always remove existing containers by <a href="https://github.com/juanvalino"><code>@​juanvalino</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/187">ansible-community/molecule-plugins#187</a></li>
<li>Handle Docker errors correctly by <a href="https://github.com/alicekaerast"><code>@​alicekaerast</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/196">ansible-community/molecule-plugins#196</a></li>
<li>Plugin openstack (2) by <a href="https://github.com/juanlufont"><code>@​juanlufont</code></a> in <a href="https://github.com/ansible-community/molecule-plugins/pull/219">ansible-community/molecule-plugins#219</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/alicekaerast"><code>@​alicekaerast</code></a> made their first contribution in <a href="https://github.com/ansible-community/molecule-plugins/pull/197">ansible-community/molecule-plugins#197</a></li>
<li><a href="https://github.com/pbjhelmert"><code>@​pbjhelmert</code></a> made their first contribution in <a href="https://github.com/ansible-community/molecule-plugins/pull/195">ansible-community/molecule-plugins#195</a></li>
<li><a href="https://github.com/tkimball83"><code>@​tkimball83</code></a> made their first contribution in <a href="https://github.com/ansible-community/molecule-plugins/pull/184">ansible-community/molecule-plugins#184</a></li>
<li><a href="https://github.com/cristianonicolai"><code>@​cristianonicolai</code></a> made their first contribution in <a href="https://github.com/ansible-community/molecule-plugins/pull/205">ansible-community/molecule-plugins#205</a></li>
<li><a href="https://github.com/dometto"><code>@​dometto</code></a> made their first contribution in <a href="https://github.com/ansible-community/molecule-plugins/pull/214">ansible-community/molecule-plugins#214</a></li>
<li><a href="https://github.com/zleinweber"><code>@​zleinweber</code></a> made their first contribution in <a href="https://github.com/ansible-community/molecule-plugins/pull/216">ansible-community/molecule-plugins#216</a></li>
<li><a href="https://github.com/juanvalino"><code>@​juanvalino</code></a> made their first contribution in <a href="https://github.com/ansible-community/molecule-plugins/pull/187">ansible-community/molecule-plugins#187</a></li>
<li><a href="https://github.com/juanlufont"><code>@​juanlufont</code></a> made their first contribution in <a href="https://github.com/ansible-community/molecule-plugins/pull/219">ansible-community/molecule-plugins#219</a></li>
</ul>
<h2>v23.5.0</h2>
<h2>Minor Changes</h2>
<ul>
<li>podman: change ansible_async_dir only when $HOME is redefined (<a href="https://github.com/ansible-community/molecule-plugins/issues/173">#173</a>) <a href="https://github.com/grcancelliere"><code>@​grcancelliere</code></a></li>
<li>Fix ansible-lint errors (<a href="https://github.com/ansible-community/molecule-plugins/issues/169">#169</a>) <a href="https://github.com/apatard"><code>@​apatard</code></a></li>
<li>Add support for vmware_esxi plugin (<a href="https://github.com/ansible-community/molecule-plugins/issues/163">#163</a>) <a href="https://github.com/Tualua"><code>@​Tualua</code></a></li>
<li>Allow for setting EC2 instance profile (<a href="https://github.com/ansible-community/molecule-plugins/issues/164">#164</a>) <a href="https://github.com/Thomas-McKanna"><code>@​Thomas-McKanna</code></a></li>
<li>enhancement: Including files in source distributions with MANIFEST.in (<a href="https://github.com/ansible-community/molecule-plugins/issues/156">#156</a>) <a href="https://github.com/hswong3i"><code>@​hswong3i</code></a></li>
<li>src/molecule_plugins/vagrant/modules/vagrant.py: Get rid of molecule dependency (<a href="https://github.com/ansible-community/molecule-plugins/issues/142">#142</a>) <a href="https://github.com/apatard"><code>@​apatard</code></a></li>
<li>feat: Add runtime entry on docker create playbook (<a href="https://github.com/ansible-community/molecule-plugins/issues/154">#154</a>) <a href="https://github.com/pjrm"><code>@​pjrm</code></a></li>
<li>Enhancement: Generate cookie cutter templates and apply linting on them (<a href="https://github.com/ansible-community/molecule-plugins/issues/123">#123</a>) <a href="https://github.com/wadhah101"><code>@​wadhah101</code></a></li>
<li>Update driver.py documentation according to new plugin name (<a href="https://github.com/ansible-community/molecule-plugins/issues/149">#149</a>) <a href="https://github.com/Tcharl"><code>@​Tcharl</code></a></li>
</ul>
<h2>Bugfixes</h2>
<ul>
<li>Revert "Update tests to use v6-alpha1 molecule version" (<a href="https://github.com/ansible-community/molecule-plugins/issues/178">#178</a>) <a href="https://github.com/ajinkyau"><code>@​ajinkyau</code></a></li>
<li>Update tests to use v6-alpha1 molecule version (<a href="https://github.com/ansible-community/molecule-plugins/issues/177">#177</a>) <a href="https://github.com/ajinkyau"><code>@​ajinkyau</code></a></li>
<li>enhancement: add fqcn to cookicutter files of ec2, containers and docker (<a href="https://github.com/ansible-community/molecule-plugins/issues/168">#168</a>) <a href="https://github.com/bernd-mueller-1"><code>@​bernd-mueller-1</code></a></li>
<li>src/molecule_plugins/vagrant/modules/vagrant.py: Get rid of molecule dependency (<a href="https://github.com/ansible-community/molecule-plugins/issues/142">#142</a>) <a href="https://github.com/apatard"><code>@​apatard</code></a></li>
<li>lint tests (<a href="https://github.com/ansible-community/molecule-plugins/issues/159">#159</a>) <a href="https://github.com/konstruktoid"><code>@​konstruktoid</code></a></li>
<li>Add additional "safe" filters to entries in Vagrantfile (<a href="https://github.com/ansible-community/molecule-plugins/issues/153">#153</a>) <a href="https://github.com/samiam"><code>@​samiam</code></a></li>
<li>fix: Ensure SSH wait polls proper async variable in ec2 create (<a href="https://github.com/ansible-community/molecule-plugins/issues/147">#147</a>) <a href="https://github.com/isuftin"><code>@​isuftin</code></a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/b48ead5d12d80eb90ead14f1958d0e9ef79b8752"><code>b48ead5</code></a> Update release.yml (<a href="https://github.com/ansible-community/molecule-plugins/issues/234">#234</a>)</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/c7771320fdaee1d9fdaaaf7f0e9482dfe84a594e"><code>c777132</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://github.com/ansible-community/molecule-plugins/issues/223">#223</a>)</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/17cc5d10bd21731b85366e7d3201c2bbb0f5a866"><code>17cc5d1</code></a> update docker collection (<a href="https://github.com/ansible-community/molecule-plugins/issues/217">#217</a>)</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/34074275f1e292017c5d354f1f3539cf3d486c5d"><code>3407427</code></a> Plugin openstack (2) (<a href="https://github.com/ansible-community/molecule-plugins/issues/219">#219</a>)</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/fe3ceb6a7d0c33b4e65401c44ae507ac918edb6d"><code>fe3ceb6</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://github.com/ansible-community/molecule-plugins/issues/218">#218</a>)</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/ff13a9033f95e2d85979b93df0edd65a1249190a"><code>ff13a90</code></a> Bump actions/setup-python from 4 to 5 (<a href="https://github.com/ansible-community/molecule-plugins/issues/221">#221</a>)</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/42e68e28defb2bde8442e485da62f80fe8436f84"><code>42e68e2</code></a> Handle Docker errors correctly (<a href="https://github.com/ansible-community/molecule-plugins/issues/196">#196</a>)</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/e9d56496261807a5174c1347123b49e629c2490b"><code>e9d5649</code></a> Fixes podman always remove existing containers (<a href="https://github.com/ansible-community/molecule-plugins/issues/187">#187</a>)</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/4ab4b1a4d8ff21741a70a4a36ad78fd43a0eef25"><code>4ab4b1a</code></a> Support the shm_size docker configuration option (<a href="https://github.com/ansible-community/molecule-plugins/issues/216">#216</a>)</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/af8f72faec0c99c42130621727178c197275fe0d"><code>af8f72f</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://github.com/ansible-community/molecule-plugins/issues/210">#210</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/ansible-community/molecule-plugins/compare/v23.4.1...v23.5.3">compare view</a></li>
</ul>
</details>
<br />Huste, TobiasHuste, Tobiashttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/94Bump molecule-plugins from 23.4.1 to 23.5.02024-02-09T06:41:46+01:00HIFIS BotBump molecule-plugins from 23.4.1 to 23.5.0Bumps [molecule-plugins](https://github.com/ansible-community/molecule-plugins) from 23.4.1 to 23.5.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ansible-community/molecule-plugins/releases...Bumps [molecule-plugins](https://github.com/ansible-community/molecule-plugins) from 23.4.1 to 23.5.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ansible-community/molecule-plugins/releases">molecule-plugins's releases</a>.</em></p>
<blockquote>
<h2>v23.5.0</h2>
<h2>Minor Changes</h2>
<ul>
<li>podman: change ansible_async_dir only when $HOME is redefined (<a href="https://github.com/ansible-community/molecule-plugins/issues/173">#173</a>) <a href="https://github.com/grcancelliere"><code>@​grcancelliere</code></a></li>
<li>Fix ansible-lint errors (<a href="https://github.com/ansible-community/molecule-plugins/issues/169">#169</a>) <a href="https://github.com/apatard"><code>@​apatard</code></a></li>
<li>Add support for vmware_esxi plugin (<a href="https://github.com/ansible-community/molecule-plugins/issues/163">#163</a>) <a href="https://github.com/Tualua"><code>@​Tualua</code></a></li>
<li>Allow for setting EC2 instance profile (<a href="https://github.com/ansible-community/molecule-plugins/issues/164">#164</a>) <a href="https://github.com/Thomas-McKanna"><code>@​Thomas-McKanna</code></a></li>
<li>enhancement: Including files in source distributions with MANIFEST.in (<a href="https://github.com/ansible-community/molecule-plugins/issues/156">#156</a>) <a href="https://github.com/hswong3i"><code>@​hswong3i</code></a></li>
<li>src/molecule_plugins/vagrant/modules/vagrant.py: Get rid of molecule dependency (<a href="https://github.com/ansible-community/molecule-plugins/issues/142">#142</a>) <a href="https://github.com/apatard"><code>@​apatard</code></a></li>
<li>feat: Add runtime entry on docker create playbook (<a href="https://github.com/ansible-community/molecule-plugins/issues/154">#154</a>) <a href="https://github.com/pjrm"><code>@​pjrm</code></a></li>
<li>Enhancement: Generate cookie cutter templates and apply linting on them (<a href="https://github.com/ansible-community/molecule-plugins/issues/123">#123</a>) <a href="https://github.com/wadhah101"><code>@​wadhah101</code></a></li>
<li>Update driver.py documentation according to new plugin name (<a href="https://github.com/ansible-community/molecule-plugins/issues/149">#149</a>) <a href="https://github.com/Tcharl"><code>@​Tcharl</code></a></li>
</ul>
<h2>Bugfixes</h2>
<ul>
<li>Revert "Update tests to use v6-alpha1 molecule version" (<a href="https://github.com/ansible-community/molecule-plugins/issues/178">#178</a>) <a href="https://github.com/ajinkyau"><code>@​ajinkyau</code></a></li>
<li>Update tests to use v6-alpha1 molecule version (<a href="https://github.com/ansible-community/molecule-plugins/issues/177">#177</a>) <a href="https://github.com/ajinkyau"><code>@​ajinkyau</code></a></li>
<li>enhancement: add fqcn to cookicutter files of ec2, containers and docker (<a href="https://github.com/ansible-community/molecule-plugins/issues/168">#168</a>) <a href="https://github.com/bernd-mueller-1"><code>@​bernd-mueller-1</code></a></li>
<li>src/molecule_plugins/vagrant/modules/vagrant.py: Get rid of molecule dependency (<a href="https://github.com/ansible-community/molecule-plugins/issues/142">#142</a>) <a href="https://github.com/apatard"><code>@​apatard</code></a></li>
<li>lint tests (<a href="https://github.com/ansible-community/molecule-plugins/issues/159">#159</a>) <a href="https://github.com/konstruktoid"><code>@​konstruktoid</code></a></li>
<li>Add additional "safe" filters to entries in Vagrantfile (<a href="https://github.com/ansible-community/molecule-plugins/issues/153">#153</a>) <a href="https://github.com/samiam"><code>@​samiam</code></a></li>
<li>fix: Ensure SSH wait polls proper async variable in ec2 create (<a href="https://github.com/ansible-community/molecule-plugins/issues/147">#147</a>) <a href="https://github.com/isuftin"><code>@​isuftin</code></a></li>
</ul>
<h2>Deprecations</h2>
<ul>
<li>deprecated(azure): replace VM type (<a href="https://github.com/ansible-community/molecule-plugins/issues/151">#151</a>) <a href="https://github.com/wadhah101"><code>@​wadhah101</code></a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/c516daca85ec477758de5aafdf5dc00307a3ebd4"><code>c516dac</code></a> Revert "Update tests to use v6-alpha1 molecule version" (<a href="https://github.com/ansible-community/molecule-plugins/issues/178">#178</a>)</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/83383587d7481f2ef36190500392eda4490d07fd"><code>8338358</code></a> Update tests to use v6-alpha1 molecule version (<a href="https://github.com/ansible-community/molecule-plugins/issues/177">#177</a>)</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/e405709b64d81d77560c5247c2cb1b832222cfb7"><code>e405709</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://github.com/ansible-community/molecule-plugins/issues/172">#172</a>)</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/b5509a19465ba39cfedff0e6450524620a2d6d2f"><code>b5509a1</code></a> podman: change ansible_async_dir only when $HOME is redefined (<a href="https://github.com/ansible-community/molecule-plugins/issues/173">#173</a>)</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/76c430934d5790061c0ab35ca32a6208d8c5b816"><code>76c4309</code></a> Fix ansible-lint errors (<a href="https://github.com/ansible-community/molecule-plugins/issues/169">#169</a>)</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/73bc48af6ea00a54ae9e4bcdcf02e918f45c31c8"><code>73bc48a</code></a> enhancement: add fqcn to cookicutter files of ec2, containers and docker (<a href="https://github.com/ansible-community/molecule-plugins/issues/168">#168</a>)</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/3676f28124b03ae136ae09167120d5854e06f043"><code>3676f28</code></a> Fix test roles linting</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/4afb087594a7af3d13e1f41b0d7e649cb2e6d139"><code>4afb087</code></a> Silence FIX related ruff errors</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/f0b4e52350d12bba78725a95098337eeaa83f26d"><code>f0b4e52</code></a> [pre-commit.ci] pre-commit autoupdate</li>
<li><a href="https://github.com/ansible-community/molecule-plugins/commit/cc9404570a8d7bb9519549e7a68bf43f84fc0f0d"><code>cc94045</code></a> Add support for vmware_esxi plugin (<a href="https://github.com/ansible-community/molecule-plugins/issues/163">#163</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/ansible-community/molecule-plugins/compare/v23.4.1...v23.5.0">compare view</a></li>
</ul>
</details>
<br />Huste, TobiasHuste, Tobiashttps://codebase.helmholtz.cloud/hifis-software-deployment/checkmk-role/-/merge_requests/130chore(deps-dev): bump ansible-lint from 6.22.1 to 6.22.22024-02-08T06:42:19+01:00HIFIS Botchore(deps-dev): bump ansible-lint from 6.22.1 to 6.22.2Bumps [ansible-lint](https://github.com/ansible/ansible-lint) from 6.22.1 to 6.22.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ansible/ansible-lint/releases">ansible-lint's releases</a>.</...Bumps [ansible-lint](https://github.com/ansible/ansible-lint) from 6.22.1 to 6.22.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/ansible/ansible-lint/releases">ansible-lint's releases</a>.</em></p>
<blockquote>
<h2>v6.22.2</h2>
<h2>Bugfixes</h2>
<ul>
<li>Fix key error for name[casing] rule (<a href="https://github.com/ansible/ansible-lint/issues/3987">#3987</a>) <a href="https://github.com/ajinkyau"><code>@​ajinkyau</code></a></li>
<li>Allow dashes in legacy role namespaces (<a href="https://github.com/ansible/ansible-lint/issues/3962">#3962</a>) <a href="https://github.com/sur5r"><code>@​sur5r</code></a></li>
<li>Use new ansible-compat verbosity levels (<a href="https://github.com/ansible/ansible-lint/issues/3975">#3975</a>) <a href="https://github.com/ssbarnea"><code>@​ssbarnea</code></a></li>
<li>Remove dependency on newer requests library (<a href="https://github.com/ansible/ansible-lint/issues/3959">#3959</a>) <a href="https://github.com/ssbarnea"><code>@​ssbarnea</code></a></li>
<li>Ignore set-property for systemd command (<a href="https://github.com/ansible/ansible-lint/issues/3949">#3949</a>) <a href="https://github.com/alanbbr"><code>@​alanbbr</code></a></li>
<li>Correct requires_ansible error message (<a href="https://github.com/ansible/ansible-lint/issues/3954">#3954</a>) <a href="https://github.com/ssbarnea"><code>@​ssbarnea</code></a></li>
<li>Improve transformation for <code>no-free-form</code> rule (<a href="https://github.com/ansible/ansible-lint/issues/3945">#3945</a>) <a href="https://github.com/ajinkyau"><code>@​ajinkyau</code></a></li>
<li>Documentation improvement (<a href="https://github.com/ansible/ansible-lint/issues/3946">#3946</a>) <a href="https://github.com/ssbarnea"><code>@​ssbarnea</code></a></li>
<li>docs: fix grammatical issue in philosophy Q&A section (<a href="https://github.com/ansible/ansible-lint/issues/3934">#3934</a>) <a href="https://github.com/davidhulick"><code>@​davidhulick</code></a></li>
<li>Update supported versions of ansible (<a href="https://github.com/ansible/ansible-lint/issues/3930">#3930</a>) <a href="https://github.com/ajinkyau"><code>@​ajinkyau</code></a></li>
<li>Fix backward compatibility (<a href="https://github.com/ansible/ansible-lint/issues/3929">#3929</a>) <a href="https://github.com/McSim85"><code>@​McSim85</code></a></li>
<li>Fix auto capitalization for name[prefix] rule (<a href="https://github.com/ansible/ansible-lint/issues/3922">#3922</a>) <a href="https://github.com/ajinkyau"><code>@​ajinkyau</code></a></li>
<li>Fix role deps check for detecting path names (<a href="https://github.com/ansible/ansible-lint/issues/3923">#3923</a>) <a href="https://github.com/cavcrosby"><code>@​cavcrosby</code></a></li>
<li>Avoid warnings about PATH with pipx installations (<a href="https://github.com/ansible/ansible-lint/issues/3920">#3920</a>) <a href="https://github.com/ssbarnea"><code>@​ssbarnea</code></a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/ansible/ansible-lint/commit/24ac1cdb1ae30a273a844ac869fadd8d7b544ef5"><code>24ac1cd</code></a> Bump actions/cache from 3 to 4 (<a href="https://github.com/ansible/ansible-lint/issues/3986">#3986</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/e53aa1638058cd054f9180fac2bf1ce6b2176130"><code>e53aa16</code></a> Fix key error for name[casing] rule (<a href="https://github.com/ansible/ansible-lint/issues/3987">#3987</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/f45acb21215cf64041c4e767291344888fac8678"><code>f45acb2</code></a> Bump the dependencies group in /.config with 1 update (<a href="https://github.com/ansible/ansible-lint/issues/3983">#3983</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/9c0db1daebe289cedd76e78152f0948d086e3eb4"><code>9c0db1d</code></a> Fix spelling in jinja.md (<a href="https://github.com/ansible/ansible-lint/issues/3971">#3971</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/974c54d517ce7069742d80a6228f1887d0fcb998"><code>974c54d</code></a> Allow dashes in legacy role namespaces (<a href="https://github.com/ansible/ansible-lint/issues/3962">#3962</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/322cde1bfe8cbd61ca29d21a276bba19a9c5c037"><code>322cde1</code></a> Bump the dependencies group in /.config with 47 updates (<a href="https://github.com/ansible/ansible-lint/issues/3979">#3979</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/43719febe324c73d9bcb02a660c43a53742a17bb"><code>43719fe</code></a> Remove lock extra from mkdocs-ansible (<a href="https://github.com/ansible/ansible-lint/issues/3968">#3968</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/ea5ea043c1e749aac9dcbf78866fe25ecad12b8a"><code>ea5ea04</code></a> Use new ansible-compat verbosity levels (<a href="https://github.com/ansible/ansible-lint/issues/3975">#3975</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/7b2f7010006553ba295952ade65dfa29eef60ef2"><code>7b2f701</code></a> Enable toml sort (<a href="https://github.com/ansible/ansible-lint/issues/3969">#3969</a>)</li>
<li><a href="https://github.com/ansible/ansible-lint/commit/aa9788d543e7eefd0e7f0304e93f4744adff0457"><code>aa9788d</code></a> More test dependency maintenance (<a href="https://github.com/ansible/ansible-lint/issues/3964">#3964</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/ansible/ansible-lint/compare/v6.22.1...v6.22.2">compare view</a></li>
</ul>
</details>
<br />Huste, TobiasHuste, Tobias