Moving release and security announcements to Discourse

The volume of posts on our blog has continued to increase as our company and community have grown. While all of the content has been awesome, we’ve received many requests for a dedicated channel about security and release announcements. Today, we’re excited to say we’ve heard you and are adding two specific communication channels to […]

Read More

FIPS Support Now Generally Available in Chef Client 12.8

We recently announced the general availability of Chef Client 12.8 that includes support for running in a FIPS 140-2-compliant mode. FIPS, the Federal Information Processing Standard, is primarily used within the United States Federal Government as a standard for information systems security. This feature helps our government customers, including agencies, contractors and hosting service providers, adopt […]

Read More

Supermarket 2.4.2 Security Release

Supermarket 2.4.2 is now available. This release contains a bug fix and security updates. Supermarket version 2.4.2 is a recommended update for all users running their own instances of Supermarket. Packages are available in the stable repository. If you are using the Supermarket omnibus cookbook, upgrading to this version involves updating your wrapper cookbook’s attributes to `[‘supermarket_omnibus’][‘package_version’] […]

Read More

Chef and OpenSSL Security Advisory 1 March 2016

On March 1, 2016, the OpenSSL team released a new high severity security advisory. Simultaneously, the OpenSSL team also made available new versions of the OpenSSL code containing fixes for the vulnerabilities described in this advisory. After reviewing the vulnerabilities described in this security advisory, the team at Chef has determined that Chef products are not at […]

Read More

Supermarket 2.3.3 Release

Supermarket 2.3.3 is now available. This release contains bug fixes, minor enhancements, and security updates. Supermarket version 2.3.3 is a recommended update for all users running their own instances of Supermarket. Packages are available in the stable repository. If you are using the Supermarket omnibus cookbook, upgrading to this version can be as simple as […]

Read More

OpenSSL Vulnerability CVE-2016-0701 and Chef

On January 28th, 2016, the OpenSSL team released a new high severity security advisory. Simultaneous to the publication of this new high severity security advisory, the OpenSSL team also made available new versions of the OpenSSL code containing fixes for the vulnerabilities described in these advisories. After reviewing the vulnerabilities described in these security advisories, […]

Read More