Release and maintenance¶
This section describes the Ansible and ansible-base
releases. Ansible is the package that most users install. ansible-base
is primarily for developers.
Ansible release cycle¶
Ansible is developed and released on a flexible release cycle. This cycle can be extended in order to allow for larger changes to be properly implemented and tested before a new release is made available. See Roadmaps for upcoming release details.
For Ansible version 2.10 or later, the major release is maintained for one release cycle. When the next release comes out (for example, 2.11), the older release (2.10 in this example) is no longer maintained.
If you are using a release of Ansible that is no longer maintained, we strongly encourage you to upgrade as soon as possible in order to benefit from the latest features and security fixes.
Older, unmaintained versions of Ansible can contain unfixed security vulnerabilities (CVE).
You can refer to the porting guides for tips on updating your Ansible
playbooks to run on newer versions. For Ansible 2.10 and later releases, you can install the Ansible package with pip
. See Installing Ansible for details. For older releases, You can download the Ansible release from https://releases.ansible.com/ansible/.
This table links to the release notes for each major Ansible release. These release notes (changelogs) contain the dates and significant changes in each minor release.
Ansible Release | Status |
---|---|
devel | In development (2.11 unreleased, trunk) |
2.10 Release Notes | In development (2.10 alpha/beta) |
2.9 Release Notes | Maintained (security and general bug fixes) |
2.8 Release Notes | Maintained (security fixes) |
2.7 Release Notes | Unmaintained (end of life) |
2.6 Release Notes | Unmaintained (end of life) |
2.5 Release Notes | Unmaintained (end of life) |
<2.5 | Unmaintained (end of life) |
ansible-base release cycle¶
ansible-base
is developed and released on a flexible release cycle.
This cycle can be extended in order to allow for larger changes to be properly
implemented and tested before a new release is made available. See Roadmaps for upcoming release details.
ansible-base
has a graduated maintenance structure that extends to three major releases.
For more information, read about the Development and stable version maintenance workflow or
see the chart in release_schedule for the degrees to which current releases are maintained.
If you are using a release of ansible-base
that is no longer maintained, we strongly
encourage you to upgrade as soon as possible in order to benefit from the
latest features and security fixes.
Older, unmaintained versions of ansible-base
can contain unfixed security
vulnerabilities (CVE).
You can refer to the porting guides for tips on updating your Ansible playbooks to run on newer versions.
You can install ansible-base
with pip
. See Installing Ansible for details.
Note
ansible-base
maintenance continues for 3 releases. Thus the latest release receives
security and general bug fixes when it is first released, security and critical bug fixes when
the next ansible-base
version is released, and only security fixes once the follow on to that version is released.
This table links to the release notes for each major ansible-base
release. These release notes (changelogs) contain the dates and significant changes in each minor release.
ansible-base Release |
Status |
---|---|
devel | In development (2.11 unreleased, trunk) |
2.10 ansible-base Release Notes | Maintained (security and general bug fixes) |
Development and stable version maintenance workflow¶
The Ansible community develops and maintains Ansible and ansible-base
on GitHub.
Collection updates (new modules, plugins, features and bugfixes) will always be integrated in what will become the next version of Ansible. This work is tracked within the individual collection repositories.
Ansible and ansible-base
provide bugfixes and security improvements for the most recent major release. The previous
major release of ansible-base
will only receive fixes for security issues and critical bugs.``ansible-base`` only applies
security fixes to releases which are two releases old. This work is tracked on the
stable-<version>
git branches.
The fixes that land in maintained stable branches will eventually be released as a new version when necessary.
Note that while there are no guarantees for providing fixes for unmaintained releases of Ansible, there can sometimes be exceptions for critical issues.
Changelogs¶
We generate changelogs based on fragments. Here is the generated changelog for 2.9 as an example. When creating new features or fixing bugs, create a changelog fragment describing the change. A changelog entry is not needed for new modules or plugins. Details for those items will be generated from the module documentation.
We’ve got examples and instructions on creating changelog fragments in the Community Guide.
Release candidates¶
Before a new release or version of Ansible or ansible-base
can be done, it will typically go
through a release candidate process.
This provides the Ansible community the opportunity to test these releases and report bugs or issues they might come across.
Ansible and ansible-base
tag the first release candidate (RC1
) which is usually scheduled
to last five business days. The final release is done if no major bugs or
issues are identified during this period.
If there are major problems with the first candidate, a second candidate will
be tagged (RC2
) once the necessary fixes have landed.
This second candidate lasts for a shorter duration than the first.
If no problems have been reported after two business days, the final release is
done.
More release candidates can be tagged as required, so long as there are
bugs that the Ansible or ansible-base
core maintainers consider should be fixed before the
final release.
Feature freeze¶
While there is a pending release candidate, the focus of core developers and maintainers will on fixes towards the release candidate.
Merging new features or fixes that are not related to the release candidate may be delayed in order to allow the new release to be shipped as soon as possible.
Deprecation Cycle¶
Sometimes we need to remove a feature, normally in favor of a reimplementation that we hope does a better job. To do this we have a deprecation cycle. First we mark a feature as ‘deprecated’. This is normally accompanied with warnings to the user as to why we deprecated it, what alternatives they should switch to and when (which version) we are scheduled to remove the feature permanently.
Ansible deprecation cycle¶
Since Ansible is a package of individual collections, the deprecation cycle depends on the collection maintainers. We recommend the collection maintainers deprecate a feature in one Ansible major version and do not remove that feature for one year, or at least until the next major Ansible version. For example, deprecate the feature in 2.10.2, and do not remove the feature until 2.12.0. Collections should use semantic versioning, such that the major collection version cannot be changed within an Ansible major version. Thus the removal should not happen before the next major Ansible release. This is up to each collection maintainer and cannot be guaranteed.
ansible-base deprecation cycle¶
The cycle is normally across 4 feature releases (2.x.y, where the x marks a feature release and the y a bugfix release), so the feature is normally removed in the 4th release after we announce the deprecation. For example, something deprecated in 2.7 will be removed in 2.11, assuming we don’t jump to 3.x before that point. The tracking is tied to the number of releases, not the release numbering.
For modules/plugins, we keep the documentation after the removal for users of older versions.
See also
- Committers Guidelines
- Guidelines for Ansible core contributors and maintainers
- Testing Strategies
- Testing strategies
- Ansible Community Guide
- Community information and contributing
- Development Mailing List
- Mailing list for development topics
- irc.freenode.net
- #ansible IRC chat channel