Wednesday, November 25, 2015

Django 1.7.11 & 1.8.7 security release



The Django project has just released new versions that fix the security issue "CVE-2015-8213: Fixed settings leak possibility in date template filter".

Have questions about Bitnami Django or the security issue? Post to our community forum, and we would be happy to help.


Find out more here: Django blog post.

We want to let Bitnami users know that Django 1.7.11 and Django 1.8.7 installers, virtual machines and cloud images have been updated and released. It is strongly suggested that you update your Django to the latest version. 


Tuesday, November 24, 2015

Bitnami Jenkins now with Docker





We are happy to announce that we now ship Docker pre-installed in all Bitnami Jenkins Virtual Machines and Cloud Images.

What does it mean?

It means that now you will be able to dynamically provision Docker containers as Jenkins on-demand slaves to do your jobs in an isolated environment. The advantage is that you can run each job in a separate and controlled environment, without interfering with other jobs. It also has the ability to automatically destroy those containers when the job finishes.

Do you need Java to test your Java application? Create a slave for your job and install Java without worrying about affecting your CI environment.

How can I configure Jenkins to dynamically provision container slaves?

You can find a step-by-step guide in the following page of the Bitnami wiki:
https://wiki.bitnami.com/Applications/Bitnami_Jenkins/Configure_Jenkins_container_slaves

Basically, the steps are the following (please note these steps are an overview):

  • Step 1: Build a container image with SSH access and specific credentials (more detailed instructions can be found in the previous mentioned wiki page).
  • Step 2: Configure the Docker Jenkins plugin already bundled.
    • Step 2.1: Enter your "Manage Jenkins" panel and then click on "Configure System" 
    • Step 2.2: Search for the "Cloud" section. There, create a new Cloud item and configure it.
  • Step 3: After creating the image and configuring the plugin, create a new job and configure it to restrict where the project can be run to a specific label. That label will be the name you previously set to the Cloud in the Jenkins configuration and will appear as soon as you start writing in the text box.
Now, every time you launch your job, a new Jenkins slave will be provisioned as a container and your build steps will be run inside that container. As soon as the job is finished, your container slave will be automatically dropped.



Fig.1 - Summary of a test build inside a container slave


Ok, fine. I want to test my application written in Java. Do I need to create a specific container with Java preinstalled?

Bitnami can help with easy-to-use, consistent, and up-to-date container images that'll get you up and running in record time. In Bitnami we have base containers for a lot of languages, servers and databases. Our language containers provide an environment already configured to use your application and run your tests using that language. It also comes with all the necessary libraries already compiled. Language-specific containers already in the Bitnami Library are:

  • PHP
  • Ruby

  • NodeJS
  • Java
You can find more information at the Bitnami Docker page, Bitnami Dockerhub or Bitnami Github.

I want to try this as soon as possible, how can I quickly bring up a Jenkins instance with Docker preinstalled?

This feature is currently live, and is included with Bitnami Jenkins 1.631 and later. We recently released Bitnami Jenkins 1.635You can find the virtual machines here and cloud images at Amazon EC2GoogleVMware vCloud Air and Azure.

Have questions about Bitnami Jenkins with Docker and container slaves? Post to our community forum, and we would be happy to help you.


Sunday, November 22, 2015

Bitnami Welcomes Our Newest Software Partner Cloud9!

Most developers recognize Cloud9 as the popular IDE that is bringing software development into the cloud. This flexible development environment comes with a wide variety of functions out of the box, and if it doesn’t currently have what you need there’s an SDK to create your own plugins. We are pleased to announce that users who would like to create their own plugins for the Cloud9 IDE can now get started in just a few clicks using the new Bitnami Cloud9 stack!

The stack comes complete with a working version of the Cloud9 IDE bundled with an SDK that enables developers to come up with their own awesome functionality! Whether you prefer to launch the Cloud9 stack in the cloud, locally, or as a VM, Bitnami has you covered.

Some of the key features of Bitnami Cloud9 stack:
  • Live browser preview: Check and preview your web application in any one of 300+ browser/OS platform combinations.
  • Language tools: Benefit from code completion, outline views and other language tools for PHP, Ruby, Python, JavaScript, Go, and many more languages.
  • Terminal and debugger: Run UNIX commands in your workspace, set breakpoints and inspect variables with the built-in terminal and debugger.
  • Built-in image editor: Use the built-in image editor to crop, resize, rotate or flip images, all in the same browser window.
  • Integration: Connect with Mercurial and Git repositories.
  • SDK: Build plugins to integrate with enterprise workflows or third-party applications using the Cloud9 SDK.
  • Supports over two dozen themes for highlighting your code in over three dozen languages.
  • Easily run your code from the built-in runners conveniently accessed from the run panel.
  • Easily configurable to run in special modes for VIM, Emacs, or Sublime.


Cloud9 SDK is available to launch now in Bitnami! To get started adding awesome new functionality to your Cloud9 IDE in just a few clicks, you can deploy Cloud9 in the cloud, as a virtual machine, or with a local installer. The application is absolutely free, and can be up and running in as little as a few minutes- give it a try now!

Thursday, November 19, 2015

Waiting for Drupal 8? Drupal 8 already available in Bitnami!


Drupal, one of the most famous open source content management platforms, has just released its new stable version Drupal 8.0.0. With over 200 new features and improvements, this is the first supported release of Drupal 8 and is ready for use on production sites. 

If you are not familiar with Bitnami, Bitnami Drupal can be deployed using native installers (for Windows, Linux and Mac OS X), virtual machines and Amazon EC2, Azure, VMware, Google, DigitalOcean and Oracle cloud images. 

You can find more info about this new version and all its features here


Drupal 8 dashboard

Do you have any questions about Bitnami Drupal 8? Post to our community forum, and we would be happy to help you.

Monday, November 16, 2015

Security Notification: libpng multiple buffer overflows CVE-2015-8126

A new security vulnerability was recently discovered in certain versions of libpng. You can find out more about the vulnerability here: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8126

Any Bitnami-packaged applications using affected versions of libpng that were installed or launched after April 9th, 2012 are vulnerable.

We believe it is the utmost importance to quickly address any security issues in applications distributed by Bitnami and our team are working to update all of the affected applications available through Bitnami and other cloud marketplaces.

We also created a patch that can be applied to fix this vulnerability in applications that are already deployed. Please take a moment to update existing installations of Bitnami-packaged applications by following the instructions in our wiki:

https://wiki.bitnami.com/security/2015-11-16_libpng_security_issue_(CVE-2015-8126)

If you have any questions about this process, please post to our community support forum and we will be happy to help!

Thursday, November 12, 2015

Jenkins 1.638 security release

The Jenkins project has just released a new version that fixes multiple security issues, including a fix for the CLI 0-day.

It is strongly suggested that you update your Jenkins website to the latest version.

You can find more info about these issue at this Jenkins Security Advisory.

We have released Bitnami Jenkins 1.638 installers, virtual machines and Amazon EC2, Google, VMware vCloud AirDigitalOcean, Oracle and Azure cloud images that fix these issues.

Have questions about Bitnami Jenkins or the security issue? Post to our community forum, and we would be happy to help you.

Friday, November 6, 2015

Moodle 3.0.0-rc1 now available. New features and improvement


We are happy to announce a new version of Bitnami Moodle Stack.

Moodle, the popular Open Source e-learning platform, has added new interesting features and improvements:
        • Competencies and learning plans
        • Grading interfaces
        • Improvements to moodle.net
        • Element library
        • Navigation
        • Improvements to Moodle Plugins Directory
For more information about Moodle 3.0.0-rc1: https://docs.moodle.org/30/en/New_features

Moodle 3.0.0-rc1 is now ready to install in a few clicks with the Bitnami Moodle 3.0.0-rc1 Installers for Linux, Windows, OS XVirtual Machine images (VMs), Cloud images for Amazon EC2, Azure, Digital Ocean, Oracle and vCloud.


Have questions about Bitnami Moodle? Post to our community forum, and we would be happy to help you.





Thursday, November 5, 2015

Add Automated Quality Checks to Your Development Workflow with Code Dx and Bitnami



Whether you're an independent developer or part of a large enterprise software team, assessing and correcting software quality and security issues is one of those tasks you just can't ignore. One of the best ways to achieve this is with the Bitnami Code Dx Stack, which integrates a set of analysis tools (both open source and commercial) against your code to identify security issues and other weaknesses. The analysis produced by Code Dx then serves as a roadmap for you to begin battle-proofing your software.

This is exactly as awesome as it sounds...but it gets even better when you realize that Code Dx isn't just a static observer/inspector of your code, but can be integrated with every stage of your development workflow in a more proactive role.
  • IDE Integration: If you use Eclipse or Visual Studio, Code Dx comes with ready-to-use plugins for these IDEs. Developers can review Code Dx findings directly in their IDE, switch to the offending lines of code, and fix problems immediately. When software projects use more than one programming language (for example, Java or Python on the server, JavaScript on the client), Code Dx's IDE plugins also collate and centralize results in one place, making it easy to get a handle on the scale and scope of the work involved. Read more about Code Dx’s IDE integration.

  • SCM Integration: If you're using Code Dx in your IDE, you're probably going to fix the problems it identified before committing the code to your SCM. But what if you're using an unsupported IDE, or you're auditing an existing project? If your project uses Git, you can use Code Dx's Git integration to directly analyze a Git repository for quality and security issues. Or, if the project uses Subversion, Mercurial or TFVC, you can upload a zip file containing your source code into Code Dx for analysis. Read more about Code Dx’s SCM integration.
  • CI/CD Integration: If you use build automation, you can integrate Code Dx into your build pipeline and benefit from continuous auditing of your source code. Put simply, this means that once your project is built, you can send it to Code Dx for analysis and optionally choose to break the build/mark it as unstable based on the Code Dx results. If you're using Jenkins, Code Dx has a native Jenkins plugin designed for this, or you can use the Code Dx REST API to achieve the same result with other CI servers. Read about more Code Dx’s CI integration.


Do you like the idea of integrating quality assurance into your development/deployment workflow? Get started right away with the Bitnami Code Dx Stack, available as a native installer on Windows, Mac OS X, and Linux.

Tuesday, November 3, 2015

Neos joins the Bitnami Library!



Neos is now part of the Bitnami App Catalog!



Neos is a next-generation open source content management system made by the Neos community. Based on the PHP framework Flow, Neos is designed to make editing and updating the content on your website simple and intuitive. It is responsive so your website can be too, and makes building SEO into your content plan a breeze. Perhaps most importantly, Neos makes it easy to get started but also comes fully ready to scale up when your business takes off!


Here are some key features that Neos offers:

  • Fine-grained Access Control: selectively control access to certain backend tools and parts of the content
  • Translated Neos User Interface: just click where you want to edit and start typing
  • Integration with Google Analytics
  • Easy content editing and multiple preview modes for different browsers



Neos is now ready to install in a few clicks with the Bitnami Neos Installers for Linux, Virtual Machine images (VMs), Cloud Images for Amazon EC2, Azure , Digital Ocean and vCloud.

You can try Neos launching a free cloud demo server. If you are interested you just have to click on the following button to create a 1 hour free server: