Release 8.5.0.

CHANGELOG.rst

@@ -6,6 +6,51 @@ Community General Release Notes
 
 This changelog describes changes after version 7.0.0.
 
+v8.5.0
+======
+
+Release Summary
+---------------
+
+Regular feature and bugfix release with security fixes.
+
+Minor Changes
+-------------
+
+- bitwarden lookup plugin - allows to fetch all records of a given collection ID, by allowing to pass an empty value for ``search_value`` when ``collection_id`` is provided (https://github.com/ansible-collections/community.general/pull/8013).
+- icinga2 inventory plugin - adds new parameter ``group_by_hostgroups`` in order to make grouping by Icinga2 hostgroups optional (https://github.com/ansible-collections/community.general/pull/7998).
+- ini_file - support optional spaces between section names and their surrounding brackets (https://github.com/ansible-collections/community.general/pull/8075).
+- java_cert - enable ``owner``, ``group``, ``mode``, and other generic file arguments (https://github.com/ansible-collections/community.general/pull/8116).
+- ldap_attrs - module now supports diff mode, showing which attributes are changed within an operation (https://github.com/ansible-collections/community.general/pull/8073).
+- lxd_container - uses ``/1.0/instances`` API endpoint, if available. Falls back to ``/1.0/containers`` or ``/1.0/virtual-machines``. Fixes issue when using Incus or LXD 5.19 due to migrating to ``/1.0/instances`` endpoint (https://github.com/ansible-collections/community.general/pull/7980).
+- nmcli - allow setting ``MTU`` for ``bond-slave`` interface types (https://github.com/ansible-collections/community.general/pull/8118).
+- proxmox - adds ``startup`` parameters to configure startup order, startup delay and shutdown delay (https://github.com/ansible-collections/community.general/pull/8038).
+- revbitspss lookup plugin - removed a redundant unicode prefix. The prefix was not necessary for Python 3 and has been cleaned up to streamline the code (https://github.com/ansible-collections/community.general/pull/8087).
+
+Security Fixes
+--------------
+
+- cobbler, gitlab_runners, icinga2, linode, lxd, nmap, online, opennebula, proxmox, scaleway, stackpath_compute, virtualbox, and xen_orchestra inventory plugin - make sure all data received from the remote servers is marked as unsafe, so remote code execution by obtaining texts that can be evaluated as templates is not possible (https://www.die-welt.net/2024/03/remote-code-execution-in-ansible-dynamic-inventory-plugins/, https://github.com/ansible-collections/community.general/pull/8098).
+
+Bugfixes
+--------
+
+- aix_filesystem - fix issue with empty list items in crfs logic and option order (https://github.com/ansible-collections/community.general/pull/8052).
+- consul_token - fix token creation without ``accessor_id`` (https://github.com/ansible-collections/community.general/pull/8091).
+- homebrew - error returned from brew command was ignored and tried to parse empty JSON. Fix now checks for an error and raises it to give accurate error message to users (https://github.com/ansible-collections/community.general/issues/8047).
+- ipa_hbacrule - the module uses a string for ``ipaenabledflag`` for new FreeIPA versions while the returned value is a boolean (https://github.com/ansible-collections/community.general/pull/7880).
+- ipa_sudorule - the module uses a string for ``ipaenabledflag`` for new FreeIPA versions while the returned value is a boolean (https://github.com/ansible-collections/community.general/pull/7880).
+- iptables_state - fix idempotency issues when restoring incomplete iptables dumps (https://github.com/ansible-collections/community.general/issues/8029).
+- linode inventory plugin - add descriptive error message for linode inventory plugin (https://github.com/ansible-collections/community.general/pull/8133).
+- pacemaker_cluster - actually implement check mode, which the module claims to support. This means that until now the module also did changes in check mode (https://github.com/ansible-collections/community.general/pull/8081).
+- pam_limits - when the file does not exist, do not create it in check mode (https://github.com/ansible-collections/community.general/issues/8050, https://github.com/ansible-collections/community.general/pull/8057).
+- proxmox_kvm - fixed status check getting from node-specific API endpoint (https://github.com/ansible-collections/community.general/issues/7817).
+
+New Modules
+-----------
+
+- usb_facts - Allows listing information about USB devices
+
 v8.4.0
 ======
 

changelogs/changelog.yaml

@@ -1242,3 +1242,81 @@ releases:
         name: lists_union
         namespace: null
     release_date: '2024-02-26'
+  8.5.0:
+    changes:
+      bugfixes:
+      - aix_filesystem - fix issue with empty list items in crfs logic and option
+        order (https://github.com/ansible-collections/community.general/pull/8052).
+      - consul_token - fix token creation without ``accessor_id`` (https://github.com/ansible-collections/community.general/pull/8091).
+      - homebrew - error returned from brew command was ignored and tried to parse
+        empty JSON. Fix now checks for an error and raises it to give accurate error
+        message to users (https://github.com/ansible-collections/community.general/issues/8047).
+      - ipa_hbacrule - the module uses a string for ``ipaenabledflag`` for new FreeIPA
+        versions while the returned value is a boolean (https://github.com/ansible-collections/community.general/pull/7880).
+      - ipa_sudorule - the module uses a string for ``ipaenabledflag`` for new FreeIPA
+        versions while the returned value is a boolean (https://github.com/ansible-collections/community.general/pull/7880).
+      - iptables_state - fix idempotency issues when restoring incomplete iptables
+        dumps (https://github.com/ansible-collections/community.general/issues/8029).
+      - linode inventory plugin - add descriptive error message for linode inventory
+        plugin (https://github.com/ansible-collections/community.general/pull/8133).
+      - pacemaker_cluster - actually implement check mode, which the module claims
+        to support. This means that until now the module also did changes in check
+        mode (https://github.com/ansible-collections/community.general/pull/8081).
+      - pam_limits - when the file does not exist, do not create it in check mode
+        (https://github.com/ansible-collections/community.general/issues/8050, https://github.com/ansible-collections/community.general/pull/8057).
+      - proxmox_kvm - fixed status check getting from node-specific API endpoint (https://github.com/ansible-collections/community.general/issues/7817).
+      minor_changes:
+      - bitwarden lookup plugin - allows to fetch all records of a given collection
+        ID, by allowing to pass an empty value for ``search_value`` when ``collection_id``
+        is provided (https://github.com/ansible-collections/community.general/pull/8013).
+      - icinga2 inventory plugin - adds new parameter ``group_by_hostgroups`` in order
+        to make grouping by Icinga2 hostgroups optional (https://github.com/ansible-collections/community.general/pull/7998).
+      - ini_file - support optional spaces between section names and their surrounding
+        brackets (https://github.com/ansible-collections/community.general/pull/8075).
+      - java_cert - enable ``owner``, ``group``, ``mode``, and other generic file
+        arguments (https://github.com/ansible-collections/community.general/pull/8116).
+      - ldap_attrs - module now supports diff mode, showing which attributes are changed
+        within an operation (https://github.com/ansible-collections/community.general/pull/8073).
+      - lxd_container - uses ``/1.0/instances`` API endpoint, if available. Falls
+        back to ``/1.0/containers`` or ``/1.0/virtual-machines``. Fixes issue when
+        using Incus or LXD 5.19 due to migrating to ``/1.0/instances`` endpoint (https://github.com/ansible-collections/community.general/pull/7980).
+      - nmcli - allow setting ``MTU`` for ``bond-slave`` interface types (https://github.com/ansible-collections/community.general/pull/8118).
+      - proxmox - adds ``startup`` parameters to configure startup order, startup
+        delay and shutdown delay (https://github.com/ansible-collections/community.general/pull/8038).
+      - revbitspss lookup plugin - removed a redundant unicode prefix. The prefix
+        was not necessary for Python 3 and has been cleaned up to streamline the code
+        (https://github.com/ansible-collections/community.general/pull/8087).
+      release_summary: Regular feature and bugfix release with security fixes.
+      security_fixes:
+      - cobbler, gitlab_runners, icinga2, linode, lxd, nmap, online, opennebula, proxmox,
+        scaleway, stackpath_compute, virtualbox, and xen_orchestra inventory plugin
+        - make sure all data received from the remote servers is marked as unsafe,
+        so remote code execution by obtaining texts that can be evaluated as templates
+        is not possible (https://www.die-welt.net/2024/03/remote-code-execution-in-ansible-dynamic-inventory-plugins/,
+        https://github.com/ansible-collections/community.general/pull/8098).
+    fragments:
+    - 7880-ipa-fix-sudo-and-hbcalrule-idempotence.yml
+    - 7953-proxmox_kvm-fix_status_check.yml
+    - 7998-icinga2-inventory-group_by_hostgroups-parameter.yml
+    - 8.5.0.yml
+    - 8013-bitwarden-full-collection-item-list.yaml
+    - 8029-iptables-state-restore-check-mode.yml
+    - 8038-proxmox-startup.yml
+    - 8048-fix-homebrew-module-error-reporting-on-become-true.yaml
+    - 8057-pam_limits-check-mode.yml
+    - 8073-ldap-attrs-diff.yml
+    - 8075-optional-space-around-section-names.yaml
+    - 8087-removed-redundant-unicode-prefixes.yml
+    - 8091-consul-token-fixes.yaml
+    - 8116-java_cert-enable-owner-group-mode-args.yml
+    - 8118-fix-bond-slave-honoring-mtu.yml
+    - 8133-add-error-message-for-linode-inventory-plugin.yaml
+    - aix_filesystem-crfs-issue.yml
+    - inventory-rce.yml
+    - lxd-instances-api-endpoint-added.yml
+    - pacemaker-cluster.yml
+    modules:
+    - description: Allows listing information about USB devices
+      name: usb_facts
+      namespace: ''
+    release_date: '2024-03-25'