Releases: Normation/rudder
8.2.4
Notables changes
🆕 New features/Enhancements
- You can now pass parameters to package managers through environment variables using "options" field
🩹 Bug fixes
- Server package on recent rhel like system is fixed ( changes in postgresql packaging )
- Score excludes pending nodes (system update score of pending nodes was included into dashboard
- It was impossible de to apply multiple times the same jinja2 template on a node
- Directive page was slower than before (7.3) it is fixed.
- User may be disabled when using incompatible clean date and login date
🔒 Security
- Fixed add XSS in OpenSCAP plugin (GHSA-3pxp-7gwf-xm2g)
- /var/rudder/tmp was world-readable (GHSA-xjjc-8vw4-c9p2)
- OIDC users api token got their rights from user configuration file instead of their correct provider (GHSA-gr6h-8xj2-w29c)
- Path traversal in technique resource API (GHSA-h66x-c5pj-f5f8)
More
More details about the new features and installation/upgrade procedures can be found in the change logs.
8.1.11
Notables changes
🆕 New features/Enhancements
- You can now pass parameters to package managers through environment variables using "options" field
🩹 Bug fixes
- Server package on recent rhel like system is fixed ( changes in postgresql packaging )
- Score excludes pending nodes (system update score of pending nodes was included into dashboard
- It was impossible de to apply multiple times the same jinja2 template on a node
- Directive page was slower than before (7.3) it is fixed.
- User may be disabled when using incompatible clean date and login date
🔒 Security
- Fixed add XSS in OpenSCAP plugin (GHSA-3pxp-7gwf-xm2g)
- /var/rudder/tmp was world-readable (GHSA-xjjc-8vw4-c9p2)
- OIDC users api token got their rights from user configuration file instead of their correct provider (GHSA-gr6h-8xj2-w29c)
- Path traversal in technique resource API (GHSA-h66x-c5pj-f5f8)
8.1 State and EOL
Since release of 8.2.0 on 29-10-2024, Rudder 8.1 public EOL has been set on 29-01-2025. It is set to 29-04-2025 for our premium subscribers
More
More details about the new features and installation/upgrade procedures can be found in the change logs.
8.2.3
Notables changes
🆕 New features/Enhancements
- You can now install your licenses through rudder package, using install command like this
rudder package install <NAME>-license.tar.gzespecially useful in air gaped environnement
🩹 Bug fixes
- Node software were deleted from inventory when we updated properties and settings of a Node, this may have led to inconsistencies in groups based on software and cve checks
More
More details about the new features and installation/upgrade procedures can be found in the change logs.
8.1.10
Notables changes
🆕 New features/Enhancements
- You can now install your licenses through rudder package, using install command like this
rudder package install <NAME>-license.tar.gzespecially useful in air gaped environnement
🩹 Bug fixes
- Node software were deleted from inventory when we updated properties and settings of a Node, this may have led to inconsistencies in groups based on software and cve checks
More
More details about the new features and installation/upgrade procedures can be found in the change logs.
8.2.2
Notables changes
🆕 New features/Enhancements
- Methods that allows JSON as parameters are not validating that JSON is correct
- You can now choose the timezone in which you schedule your system update campaigns, and timezones are more explicit than before
- Add Windows support to the generic method file_report_content_tail
🩹 Bug fixes
- Since 8.1 (but was more likely to appear in 8.2), we had some errors when saving properties and inventory, this was due to a misconfiguration in our database connection pool. We reworked this, fixing the issue and making Rudder faster
- Node with no rules applied had a Score of F, we changed this so that a node has no score instead to be less pessimistic
- Fixes on new system update module
🔒 Security fixes
- Better handling of migration of user file has algorithm in case of invalid hash
More
More details about the new features and installation/upgrade procedures can be found in the change logs.
8.1.9
Notables changes
🆕 New features/Enhancements
- Methods that allows JSON as parameters are not validating that JSON is correct
- You can now choose the timezone in which you schedule your system update campaigns, and timezones are more explicit than before
- Add Windows support to the generic method file_report_content_tail
🩹 Bug fixes
- Since 8.1 (but was more likely to appear in 8.2), we had some errors when saving properties and inventory, this was due to a misconfiguration in our database connection pool. We reworked this, fixing the issue and making Rudder faster
- Node with no rules applied had a Score of F, we changed this so that a node has no score instead to be less pessimistic
More
More details about the new features and installation/upgrade procedures can be found in the change logs.
8.2.1
Notables changes
🆕 New features/Enhancements
- A new
file_report_content_tailmethod for Windows - A new
acceptanceDateto the nodes API - TUXEDO OS is now correctly detected (but not officially supported)
- The system update campaigns on Windows now trigger an inventory after the upgrade
🩹 Bug fixes
- The settings for new nodes (state and policy mode) were not applied (#25652)
- The OIDC-provisioned user got disabled when provisioning a new user (#25681)
- When upgrading the server with techniques containing invalid syntax, the invalid techniques were disabled (#23959)
- Sometime the properties edition button was not visible (#25762)
- Fix broken reporting in patch management on Windows when reboot was enabled
🔒 Security fixes
- System API token is visible in process list (GHSA-f6p6-974g-ppwm)
More
More details about the new features and installation/upgrade procedures can be found in the change logs.
8.1.8
Notables changes
🆕 New features/Enhancements
- A new
file_report_content_tailmethod for Windows - A new
acceptanceDateto the nodes API - TUXEDO OS is now correctly detected (but not officially supported)
- The system update campaigns on Windows now trigger an inventory after the upgrade
🩹 Bug fixes
- The settings for new nodes (state and policy mode) were not applied (#25652)
- The OIDC-provisioned user got disabled when provisioning a new user (#25681)
- When upgrading the server with techniques containing invalid syntax, the invalid techniques were disabled (#23959)
- Sometime the properties edition button was not visible (#25762)
- Fix broken reporting in patch management on Windows when reboot was enabled
🔒 Security fixes
- Unrecognized API tokens appear as warning in the web app logs (GHSA-7vr3-v7g5-5f5c)
- System API token is visible in process list (GHSA-f6p6-974g-ppwm)
More
More details about the new features and installation/upgrade procedures can be found in the change logs.
8.2.0
Rudder 8.2 new major features includes:
- Security benchmarks ⭐ : A new plugin to apply and check compliance of security benchmarks
- Compliance persistence : keep compliance of nodes that have been shutdown, like workstation and laptops
- Security only campaigns ⭐ : Run patch campaigns that updates only security updates
- CVE on Windows ⭐ : vulnerability analysis is not limited anymore to Linux! Based on missing KBs
- Create group from CVE ⭐ : remediate your vulnerabilities by creating dynamic groups based on CVE presence
- User management in Rudder : user management plugin has been integrated in Rudder Core. With many improvements
This is a first draft of the feature list that will be improved and completed really soon
⭐ : feature only available with a subscription.
More details about the new features and installation/upgrade procedures can be found in the releases notes.
8.2.0~rc1
This is the first release candidate of Rudder 8.2 🚀
The team has worked a lot on fixing 🛠️ new features and polishing them as much as possible.
But this is still a pre-release so expect some bugs and some weird behaviors and you should not use this version in production 💥
A finale version is expected in a couple of weeks, before the end of October, until then, stay tuned!
For more information about Rudder 8.2 content, you can read our release notes