diff options
author | James E. Blair <jim@acmegating.com> | 2022-03-22 16:17:36 -0700 |
---|---|---|
committer | James E. Blair <jim@acmegating.com> | 2022-03-24 14:50:20 -0700 |
commit | 6214731f8bd3ce96b2431c1b87bcf64cf43ff3da (patch) | |
tree | 005abf33db5fd323d5448de7254231c34e9ef33b /zuul/lib | |
parent | dacbf91097c0de308f24a8e22906755e31ed2fc0 (diff) | |
download | zuul-6214731f8bd3ce96b2431c1b87bcf64cf43ff3da.tar.gz |
Fix Ansible plugin loading5.2.0
This corrects a security vulnerability related to loading Ansible
plugins under the `ansible.builtin.*` aliases.
Change-Id: I3a394904765e22080aa038c44bfe26e07a1e86c7
Story: 2009941
Diffstat (limited to 'zuul/lib')
-rw-r--r-- | zuul/lib/ansible-config.conf | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/zuul/lib/ansible-config.conf b/zuul/lib/ansible-config.conf index ab073d5a4..06104d858 100644 --- a/zuul/lib/ansible-config.conf +++ b/zuul/lib/ansible-config.conf @@ -1,7 +1,8 @@ # This file describes the currently supported ansible versions [common] default_version = 2.9 -requirements = ara>=0.16.5,<1.0.0 openstacksdk openshift jmespath google-cloud-storage pywinrm boto3 +# Jinja2 pinned due to 3.1.0 breaking ara +requirements = ara>=0.16.5,<1.0.0 Jinja2<3.1.0 openstacksdk openshift jmespath google-cloud-storage pywinrm boto3 [2.8] # Ansible 2.8.16 breaks the k8s connection plugin |