Tag:
Security
Upgrading Chef Infra: Why Upgrade
By Nick Rycar
Welcome back to Upgrading Chef Infra! Last week we kicked things off with a brief introduction and a review of some key concepts. Today we’ll see how Chef Infra has evolved in recent years, and take a look at improvements that have been implemented throughout major releases.
Read moreSurvey Results: DevSecOps Drives Efficiency, Security, and Agility
Recently, Chef commissioned a survey of security professionals in order to provide greater insight into what security leaders are most concerned with and how collaboration with I&O (Infrastructure & Operations) is needed within enterprise-sized organizations.
Read moreChef InSpec recognized for Compliance Automation Tools in Gartner Report
We believe Gartner provides very useful guidance for organizations struggling with balancing the need to deliver products and services to market faster while having to deal with regulations and compliance requirements that may overburden their teams.
Read moreProduct Announcement: Chef Habitat 1.5 Now Available
By Mike Krasnow
Chef Habitat provides automation capabilities for defining, packaging, and delivering applications to almost any environment with any operating system, on any platform. Over the last year, we’ve seen organizations like Alaska Airlines, Rakuten, Walmart, and Rizing address a broad range of application delivery automation challenges with Habitat.
Read moreChef Confirms No Products Affected by Backdoored RubyGems
By Galen Emery
At Chef, we have a cross-functional security team who evaluates and responds to potential security incidents. Because a significant portion of our code uses Ruby and Ruby libraries (known as “gems”), we have been paying close attention to the reports of malicious code insertion into several gems.
Read moreCloud Security Assessments in AWS
By Nick Rycar
In our most recent webinar, Cloud Security Assessment for AWS Instances, we took a look at how Chef can help to secure environments in Amazon Web Services.
Read moreChef Server 12.4.0 Release Announcement Includes Security Updates
By David McCown
Ohai Chefs, We’re pleased to announce that today we’ve released Chef Server 12.4.0. We have updated the version of Ruby on Rails in oc-id to fix a number of posted CVEs. Chef Server now has a Universe endpoint, which provides the same output as Supermarket or berkshelf-api universe endpoints. More details can be found here.
Read moreChef Management Console 2.1.2 Security Release
By Mark Mzyk
Manage 2.1.2 is now available from the Chef downloads site. Manage 2.1.2 is a security release to address a number of Rails CVEs. It is recommended that all users of the Chef Management Console upgrade. The full change log is availble here: https://manage.chef.
Read moreSupermarket 2.3.2 Security Release
By Mark Mzyk
Supermarket 2.3.2* is now available. This release contains bug fixes, minor enhancements, and security updates. Supermarket version 2.3.2 is a recommended update for all users running their own instances of Supermarket. Packages are available in the stable repository.
Read moreChef Management Console 2.1.0 Release and 2.1.1 Security Release
By Nathan Smith
Manage 2.1.0 and 2.1.1 are now available from the Chef downloads site. Manage 2.1.1 is a security release to address a cross site scripting vulnerability that was discovered to exist in previous versions of Manage, including 2.1.0 and the 1.x series. Manage 2.1.0 is a major version bump from 1.21.1 to 2.1.
Read more