CFEngine 3.12.2-3, 3.14.0-2 released (mitigating CVE-2019-10164)

On [2019-07-29 Mon] we released new builds of our Enterprise Hub packages for 3.12.2 and 3.14.0. This release addresses CVE-2019-10164. PostgreSQL versions 10.x before 10.9 and versions 11.x before 11.4 are vulnerable to a stack-based buffer overflow. Any authenticated user can overflow a stack-based buffer by changing the user’s own password to a purpose-crafted value. This often suffices to execute arbitrary code as the PostgreSQL operating system account.


Zenaton Customer Spotlight: Tradee Marketplace

Tradee is a marketplace website and mobile application that allows users to buy, sell, and exchange watches. Tradee was evolving from an online community to a marketplace and needed to implement workflows to enable buyers and sellers to verify their identity and complete their transactions (payment, correspondence and shipping).


Orchestrate a Grocery Order and Delivery Service with Zenaton

Let’s build a “Grocery delivery service” where a customer orders their groceries online and schedules a delivery time. Then a grocery store team member uses an app to collect the grocery items and then a courier service delivers them to the customer. We will build this product with our business logic and combine several SaaS services to save us time.


3 Steps to Modernize Apps with Automation

Modernizing applications to the cloud will not only save time and resources but also help in scaling your offering! Sounds familiar? Well, it has to since everyone is pacing ahead of the cloud curve. So isn’t it an obvious move for those age-old legacy applications to be modernized to cloud? Here is a quick read on how you can go cloud-native.


Writing custom service_methods

CFEngine provides the services promise type to manage the state of a given service. services type promises are an abstraction of agent bundles, they can be used to declare the desired state for a collection of things identified by a name. Most commonly services type promises are used to manage standard operating system services though they can be used for abstracting other logical states.