This is probably something that should be addressed via code management or
audits, rather than via puppet. It can't really know e intentions, so if
someone wants to exec 'rm -fR' it will gleefully let it happen. It's on you
to trust your developers and have a pipeline to test things. Canary nodes
t
Look for assert_private in puppetlabs-stdlib module. Maybe its what you are
looking for.
Thomas
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to puppet-users+un
Hi all,
We're currently on PE 3.8.4.
We need to be able to manage sudoers permissions with Puppet, but control
things so sudoers permissions can only be granted within a specific module.
So permissions could be included via 'include foo::bar' from anywhere, but
the actual sudoers permissions u
