Bolt is an open source orchestration tool that automates the manual work it takes to maintain your infrastructure on an as-needed basis or as part of a greater orchestration workflow. It can be installed on your local workstation and connects directly to remote nodes with SSH or WinRM, so you are not required to install any agent software.
This version is EoL upstream and does not receive any fixes. hiera-eyaml also lacks one major version:
[root@pe ~]# /opt/puppetlabs/bolt/bin/bolt --version
3.30.0
[root@pe ~]# /opt/puppetlabs/bolt/bin/eyaml --version
Welcome to eyaml 3.4.0
Usage:
eyaml subcommand [global-opts] [subcommand-opts]
Available subcommands:
edit: edit an eyaml file
encrypt: encrypt some data
recrypt: recrypt an eyaml file
version: show version information
createkeys: create a set of keys with which to encrypt/decrypt eyaml data
decrypt: decrypt some data
For more help on an individual command, use --help on that command
Installed Plugins:
[root@pe ~]#
[root@pe ~]# /opt/puppetlabs/bolt/bin/gem info log4r
*** LOCAL GEMS ***
log4r (1.1.10)
Author: Colby Gutierrez-Kraybill
Homepage: http://log4r.rubyforge.org
Installed at: /opt/puppetlabs/bolt/lib/ruby/gems/2.7.0
Log4r, logging framework for ruby
[root@pe ~]#
Which has a dead upstream. The last release is from 2012, the website is down and the source code isn't available anymore, only the rubygems.org artifacts.
Expected Behavior
Don't ship outdated dependencies. At least not those that are dead upstream.
Describe the Bug
latest bolt ships quite old dependencies. My biggest concern is Ruby:
This version is EoL upstream and does not receive any fixes. hiera-eyaml also lacks one major version:
Also the list of outdated gems is quite high:
In particular I want to point out:
Which has a dead upstream. The last release is from 2012, the website is down and the source code isn't available anymore, only the rubygems.org artifacts.
Expected Behavior
Don't ship outdated dependencies. At least not those that are dead upstream.
Steps to Reproduce
Steps to reproduce the behavior:
Environment
Additional Context
Add any other context about the problem here.