4.16.0 Release Notes

Name: "Big Foot palevioletred book"
Release Date: August 24th, 2023

• Download the Releases
• Sign up for Release Notes
• Upgrade instructions
• Watch the Live Stream Release Recap

Overview

Check out the new features and enhancements for PagerDuty Runbook Automation and Rundeck Community included in this release.

Runbook Automation Updates

Also includes all Open Source updates from below

Highlights

Secrets Management Integrations through Enterprise Runner

With the latest release, customers can integrate the Runner with Hashicorp Vault and use secrets from Vault in their workflows and to discover nodes. When users navigate to select keys from key Storage, there is now an option to browse and select secrets from Vault that the Runner is integrated with. While the key names and paths are visible in the GUI, the secrets themselves are not sent to the server. The integration between Runners and secrets-management instances now enable customers to automate workflows in secure, remote environments where they have self-hosted secrets-stores:

Runner Key Storage

For further details on configuring and using secrets-management providers with the Enterprise Runner, see this documentation.

Node Inventory Discovery through Enterprise Runner

This release enables the Runner to be used for discovering nodes and populating the node-inventory through the Runner. When users select to add a new Node Source through the GUI, there is now an option to select a Runner to use for discovering Nodes in the remote environment. Through existing Node Source plugins such as Ansible, VMware, Docker and Kubernetes, the Runner will retrieve and send the node data back to the server to be visible in the GUI and targeted for Job and Command execution. This integration allows customers to automate more tasks in their secure and remote environments where inventory can only be discovered within their environment’s perimeter.

For further details on configuring and using node discovery through the Enterprise Runner, see this documentation.

Runner Node Sources

SSHJ Default Node Executor for New Projects

Prior to this release, the out-of-the-box Default Node Executor for projects was the JSCH plugin. However, this plugin no longer supports the latest SSH security standards – such as the most secure RSA algorithms. In order to support these latest standards for SSH security, new projects created within Rundeck and Runbook Automation will use the SSHJ plugin as the Default Node Executor. Customers who are using the JSCH plugin are not required to switch over to SSHJ and we will continue to support the JSCH Node Executor plugin.

Additional Updates

• Fixed: Issues were jobs with runners fail if the cluster member executing the job is not the same member communicating with the runner.
• Fix: System report statistics are not loading
• Support for file and script resource models to be executed in a Runner
• Fix: Cleanup misfire tracker properly when job was deleted
• Fix: AWS PluginGroup within Runbook Automation does not commit saved changes
• Update Jetty due to CVE-2023-26048 - CVE-2023-26049
• Upgrade guava due to CVE-2023-2976
• Fix Add tags with same name in project

Rundeck Open Source Product Updates

• Enable execution of Script file resource model in a remote runner
• Force Reloading of Runner keys
• Fix: Select the correct webhook when saving a new one
• Fix: Button border width causes misaligned input group on hi-dpi screen
• New LDAP setting for "allGroups" is true by default.
• Fix: Expand Timeout Variable on Scheduled Job
• Upgrade hibernate to 5.6.15 bc of compatibility issues with h2 2.0
• Fixes job deletion of a scheduled job
• Runner Key Storage GUI
• Update core storage plugins to hide password fields in UI
• Change default node executor and file copier to use SSHJ
• Fix: Execution state is not synchronized among cluster members when using shared file system log storage
• Remove un-stylish border from notifications
• Upgrade spring security due CVE-2023-34034
• Some jobs do not trigger after disabling/enabling the schedule
• Dark mode updates
• Fix: When clicking "Save" button at webhook can't copy the genereated string
• Update Jetty due to CVE-2023-26048 and CVE-2023-26049
• Fix: Map Different Required Authorizing Roles
• Fix stuck log output on a job with high number of nodes
• Fix: Throwing a precise message when the data column limit is reached
• Fix: rundeck.scm.startup.initDeferred config not defined in remco
• :Flag to enable/disable search for more than 1000 users
• Fixing repeating warn log messages
• Support for setting runner in Node source
• Cleanup: remove unused events fragment

Here is a link to the full list of public PRs

Ansible Plugin Updates

• Node source in the runner

Enterprise Runner Updates

Bundled Runner Version: 0.1.50

• Additional support for File and Script node source plugins
• Runner can support Key Storage plugins
• Runner can execute Node Sources
• Fix usage of maven local repository

Community Contributors

Submit your own Pull Requests to get recognition here!

• Luis Toledo (ltamaster)
• Eric He (ehe-pd)
• Carlos Eduardo (carlosrfranco)
• Greg Schueler (gschueler)
• Antony Velasquez Ruiz (avelasquezr)
• Darwis Narvaez (DarwisNarvaezDev)
• Alberto Hormazabal (ahormazabal)
• Rodrigo Navarro (ronaveva)
• McG (chrismcg14)
• Leonel Juarez (L2JE)
• Jesus Osuna (Jesus-Osuna-M)
• Osman Albarran (Oalbarran94)
• Nathan Fluegel (wayfaringson)

Staff Contributors

• Greg Schueler (gschueler)
• Alberto Hormazabal Cespedes (ahormazabal)
• Alexander Abarca (alexander-variacode)
• Antony Velasquez Ruiz (avelasquezr)
• Carlos Eduardo (carlosrfranco)
• Christopher McCarroll-Gilbert (chrismcg14)
• Darwis Narvaez (DarwisNarvaezDev)
• Eric He (ehe-pd)
• Forrest Evans (fdevans)
• Imad Jafir (imad6639)
• Jake Cohen (jsboak)
• Jason Brooks (jbrookspd)
• Jesus Osuna (Jesus-Osuna-M)
• Leonel Juarez (L2JE)
• Luis Toledo (ltamaster)
• Osman Albarran (Oalbarran94)
• Rodrigo Navarro (ronaveva)
• Stephen Joyner (sjrd218)