The improvement of Debian and Ubuntu support in orcharhino has long been one of the central concerns of the ATIX crew.
The introduction of Debian/Ubuntu errata in orcharhino version 4.0.0 was an important milestone.
Who controls your IT – you or your dependencies?
Read the free white paper to find out how to identify critical dependencies, make your infrastructure resilient and regain full control over operations, updates and automation.
To use this function, the Debian/Ubuntu Erratum Service provides regularly updated erratum lists.
The ATIX crew has now published the source code underlying this service on GitHub under the GPLv2 open source license. The first requests for this were already made at the Open Source Automation Day 2018 during the official presentation of orcharhino 4.0.0 – as an open source company, it is also a matter of course for us to make such an innovation available open source.
The published Erratum service technically consists of two parts:
An “errata parser” that generates errata lists from the Debian Security Announcements (DSA) and the Ubuntu Security Notices (USN), and an “errata server” that provides these via an HTTP interface.
These two parts each run in their own Docker container, which interact with each other via a Docker volume.
The parser is written in Ruby, the server in Python (with twisted and asyncio).
The graphic shows how the Erratum service is addressed in orcharhino:
By publishing the source code, we want to generate added value for the entire open source community.
