Fix Ansible plugin loading5.2.0

This corrects a security vulnerability related to loading Ansible plugins under the `ansible.builtin.*` aliases. Change-Id: I3a394904765e22080aa038c44bfe26e07a1e86c7 Story: 2009941
author: James E. Blair <jim@acmegating.com> 2022-03-22 16:17:36 -0700
committer: James E. Blair <jim@acmegating.com> 2022-03-24 14:50:20 -0700
commit: 6214731f8bd3ce96b2431c1b87bcf64cf43ff3da (patch)
tree: 005abf33db5fd323d5448de7254231c34e9ef33b /zuul/lib
parent: dacbf91097c0de308f24a8e22906755e31ed2fc0 (diff)
download: zuul-6214731f8bd3ce96b2431c1b87bcf64cf43ff3da.tar.gz
1 files changed, 2 insertions, 1 deletions
diff --git a/zuul/lib/ansible-config.conf b/zuul/lib/ansible-config.conf
index ab073d5a4..06104d858 100644
--- a/zuul/lib/ansible-config.conf
+++ b/zuul/lib/ansible-config.conf
@@ -1,7 +1,8 @@
 # This file describes the currently supported ansible versions
 [common]
 default_version = 2.9
-requirements = ara>=0.16.5,<1.0.0 openstacksdk openshift jmespath google-cloud-storage pywinrm boto3
+# Jinja2 pinned due to 3.1.0 breaking ara
+requirements = ara>=0.16.5,<1.0.0 Jinja2<3.1.0 openstacksdk openshift jmespath google-cloud-storage pywinrm boto3
 
 [2.8]
 # Ansible 2.8.16 breaks the k8s connection plugin
author	James E. Blair <jim@acmegating.com>	2022-03-22 16:17:36 -0700
committer	James E. Blair <jim@acmegating.com>	2022-03-24 14:50:20 -0700
commit	6214731f8bd3ce96b2431c1b87bcf64cf43ff3da (patch)
tree	005abf33db5fd323d5448de7254231c34e9ef33b /zuul/lib
parent	dacbf91097c0de308f24a8e22906755e31ed2fc0 (diff)
download	zuul-6214731f8bd3ce96b2431c1b87bcf64cf43ff3da.tar.gz