On Fri, 13 Jan 2017 00:18:09 +0000 Peter Robinson <pbrobinson@xxxxxxxxx> wrote: > On Thu, Jan 12, 2017 at 8:44 PM, Kevin Fenzi <kevin@xxxxxxxxx> wrote: > > Greetings. > > > > When ansible 2.0 was released there were some changes in playbook > > handling made. For this reason, we created a backwards compatible > > package with ansible 1.9 to ease the transition for those that > > needed more time to adjust their playbooks. > > > > Late last year it looked like there would be a final release in the > > 1.9 series addressing some security issues. However, the most > > recent round of security issues found in 2.x are difficult to > > impossible to backport to 1.9 so there will not be a final 1.9 > > release. > > > > Since it has now been 1 year since ansible 2.0 was released, and > > since ansible 1.9 has known security vulnerabilities, backporting > > fixes is impossible, we will be retiring the ansible1.9 package > > from EPEL. > > > > All ansible 1.9 users are urged to update to 2.x as soon as > > possible. > > Will the mainline 2 package obsolete the old package to ensure it > doesn''t hang around? Well, I am a bit leary of doing that. There may be people using the 1.9 packages that are aware of the security issues and still wish to keep using it longer for whatever reasons. kevin
Attachment:
pgphPPAlBqzsg.pgp
Description: OpenPGP digital signature
_______________________________________________ epel-devel mailing list -- epel-devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to epel-devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
