all: children: tempest: hosts: controller: null zuul_unreachable: hosts: {} hosts: controller: ansible_connection: ssh ansible_host: 199.204.45.235 ansible_port: 22 ansible_python_interpreter: auto ansible_user: zuul configure_swap_size: 8192 devstack_local_conf: post-config: $NEUTRON_CONF: DEFAULT: global_physnet_mtu: '{{ external_bridge_mtu }}' /etc/magnum/magnum.conf: cluster_template: kubernetes_allowed_network_drivers: calico,cilium kubernetes_default_network_driver: calico nova_client: api_version: 2.15 /etc/manila/manila.conf: generic: connect_share_server_to_tenant_network: true driver_handles_share_servers: true devstack_localrc: ADMIN_PASSWORD: secretadmin DATABASE_PASSWORD: secretdatabase DEBUG_LIBVIRT_COREDUMPS: true DISABLE_AMP_IMAGE_BUILD: true ENABLE_SYSCTL_MEM_TUNING: true ENABLE_SYSCTL_NET_TUNING: true ENABLE_ZSWAP: true ERROR_ON_CLONE: true FIXED_RANGE: 10.1.0.0/20 FLOATING_RANGE: 172.24.5.0/24 GIT_BASE: https://github.com HOST_IP: '{{ hostvars[''controller''][''nodepool''][''private_ipv4''] }}' IPV4_ADDRS_SAFE_TO_USE: 10.1.0.0/20 LIBVIRT_TYPE: '{{ devstack_libvirt_type | default("qemu") }}' LOGFILE: /opt/stack/logs/devstacklog.txt LOG_COLOR: false MAGNUM_GUEST_IMAGE_URL: '{{ image_url }}' MANILA_DEFAULT_SHARE_TYPE_EXTRA_SPECS: snapshot_support=True create_share_from_snapshot_support=True MANILA_ENABLED_BACKENDS: generic MANILA_USE_SERVICE_INSTANCE_PASSWORD: true NETWORK_GATEWAY: 10.1.0.1 NOVA_LIBVIRT_TB_CACHE_SIZE: 128 NOVA_VNC_ENABLED: true OCTAVIA_NODE: api OVN_DBS_LOG_LEVEL: dbg PUBLIC_BRIDGE_MTU: '{{ external_bridge_mtu }}' PUBLIC_NETWORK_GATEWAY: 172.24.5.1 RABBIT_PASSWORD: secretrabbit SERVICE_HOST: '{{ hostvars[''controller''][''nodepool''][''private_ipv4''] }}' SERVICE_PASSWORD: secretservice SWIFT_HASH: 1234123412341234 SWIFT_REPLICAS: 1 SWIFT_START_ALL_SERVICES: false VERBOSE: true VERBOSE_NO_TIMESTAMP: true devstack_plugins: barbican: https://github.com/openstack/barbican magnum: https://review.opendev.org/openstack/magnum magnum-cluster-api: https://github.com/vexxhost/magnum-cluster-api manila: https://github.com/openstack/manila octavia: https://github.com/openstack/octavia ovn-octavia-provider: https://github.com/openstack/ovn-octavia-provider devstack_services: base: false c-api: true c-bak: true c-sch: true c-vol: true dstat: false etcd3: true file_tracker: true g-api: true horizon: false key: true memory_tracker: true mysql: true n-api: true n-api-meta: true n-cond: true n-cpu: true n-novnc: true n-sch: true o-api: true o-da: true o-hk: true octavia: true openstack-cli-server: true ovn-controller: true ovn-northd: true ovs-vswitchd: true ovsdb-server: true placement-api: true q-ovn-agent: true q-svc: true rabbit: true s-account: false s-container: false s-object: false s-proxy: false tempest: false tls-proxy: true extensions_to_txt: auto: true conf: true localrc: true log: true stackenv: true image_url: https://github.com/vexxhost/capo-image-elements/releases/latest/download/ubuntu-22.04-{{ kube_tag }}.qcow2 kube_tag: v1.34.5 network_driver: cilium nodepool: az: nova cloud: public external_id: fe44c3b6-6452-4fb7-8460-99c1a365e156 host_id: c3960d6808d44d1eb7d41ff8f195b627bd14b6a9ca83ea7250fd5db8 interface_ip: 199.204.45.235 label: ubuntu-noble-16 node_properties: {} private_ipv4: 199.204.45.235 private_ipv6: null provider: yul1 public_ipv4: 199.204.45.235 public_ipv6: 2604:e100:1:0:f816:3eff:fe15:b185 region: ca-ymq-1 slot: null zuul_copy_output: /etc/ceph: logs /etc/glusterfs/glusterd.vol: logs /etc/libvirt: logs /etc/lvm: logs /etc/resolv.conf: logs /etc/sudoers: logs /etc/sudoers.d: logs /var/log/ceph: logs /var/log/glusterfs: logs /var/log/libvirt: logs /var/log/mysql: logs /var/log/openvswitch: logs /var/log/postgresql: logs /var/log/rabbitmq: logs /var/log/unbound.log: logs '{{ devstack_conf_dir }}/.localrc.auto': logs '{{ devstack_conf_dir }}/.stackenv': logs '{{ devstack_conf_dir }}/local.conf': logs '{{ devstack_conf_dir }}/localrc': logs '{{ devstack_full_log}}': logs '{{ devstack_log_dir }}/atop': logs '{{ devstack_log_dir }}/devstacklog.txt': logs '{{ devstack_log_dir }}/devstacklog.txt.summary': logs '{{ devstack_log_dir }}/dstat-csv.log': logs '{{ devstack_log_dir }}/qemu.coredump': logs '{{ devstack_log_dir }}/tcpdump.pcap': logs '{{ devstack_log_dir }}/worlddump-latest.txt': logs '{{ stage_dir }}/apache': logs '{{ stage_dir }}/apache_config': logs '{{ stage_dir }}/audit.log': logs '{{ stage_dir }}/core': logs '{{ stage_dir }}/deprecations.log': logs '{{ stage_dir }}/df.txt': logs '{{ stage_dir }}/dpkg-l.txt': logs '{{ stage_dir }}/etc': logs '{{ stage_dir }}/iptables.txt': logs '{{ stage_dir }}/listen53.txt': logs '{{ stage_dir }}/mount.txt': logs '{{ stage_dir }}/performance.json': logs '{{ stage_dir }}/pip2-freeze.txt': logs '{{ stage_dir }}/pip3-freeze.txt': logs '{{ stage_dir }}/rpm-qa.txt': logs '{{ stage_dir }}/services.txt': logs '{{ stage_dir }}/verify_tempest_conf.log': logs zuul_node: az: nova cloud: public external_id: fe44c3b6-6452-4fb7-8460-99c1a365e156 host_id: c3960d6808d44d1eb7d41ff8f195b627bd14b6a9ca83ea7250fd5db8 interface_ip: 199.204.45.235 label: ubuntu-noble-16 node_properties: {} private_ipv4: 199.204.45.235 private_ipv6: null provider: yul1 public_ipv4: 199.204.45.235 public_ipv6: 2604:e100:1:0:f816:3eff:fe15:b185 region: ca-ymq-1 slot: null uuid: null vars: configure_swap_size: 8192 devstack_local_conf: post-config: $NEUTRON_CONF: DEFAULT: global_physnet_mtu: '{{ external_bridge_mtu }}' /etc/magnum/magnum.conf: cluster_template: kubernetes_allowed_network_drivers: calico,cilium kubernetes_default_network_driver: calico nova_client: api_version: 2.15 /etc/manila/manila.conf: generic: connect_share_server_to_tenant_network: true driver_handles_share_servers: true devstack_localrc: ADMIN_PASSWORD: secretadmin DATABASE_PASSWORD: secretdatabase DEBUG_LIBVIRT_COREDUMPS: true DISABLE_AMP_IMAGE_BUILD: true ENABLE_SYSCTL_MEM_TUNING: true ENABLE_SYSCTL_NET_TUNING: true ENABLE_ZSWAP: true ERROR_ON_CLONE: true FIXED_RANGE: 10.1.0.0/20 FLOATING_RANGE: 172.24.5.0/24 GIT_BASE: https://github.com HOST_IP: '{{ hostvars[''controller''][''nodepool''][''private_ipv4''] }}' IPV4_ADDRS_SAFE_TO_USE: 10.1.0.0/20 LIBVIRT_TYPE: '{{ devstack_libvirt_type | default("qemu") }}' LOGFILE: /opt/stack/logs/devstacklog.txt LOG_COLOR: false MAGNUM_GUEST_IMAGE_URL: '{{ image_url }}' MANILA_DEFAULT_SHARE_TYPE_EXTRA_SPECS: snapshot_support=True create_share_from_snapshot_support=True MANILA_ENABLED_BACKENDS: generic MANILA_USE_SERVICE_INSTANCE_PASSWORD: true NETWORK_GATEWAY: 10.1.0.1 NOVA_LIBVIRT_TB_CACHE_SIZE: 128 NOVA_VNC_ENABLED: true OCTAVIA_NODE: api OVN_DBS_LOG_LEVEL: dbg PUBLIC_BRIDGE_MTU: '{{ external_bridge_mtu }}' PUBLIC_NETWORK_GATEWAY: 172.24.5.1 RABBIT_PASSWORD: secretrabbit SERVICE_HOST: '{{ hostvars[''controller''][''nodepool''][''private_ipv4''] }}' SERVICE_PASSWORD: secretservice SWIFT_HASH: 1234123412341234 SWIFT_REPLICAS: 1 SWIFT_START_ALL_SERVICES: false VERBOSE: true VERBOSE_NO_TIMESTAMP: true devstack_plugins: barbican: https://github.com/openstack/barbican magnum: https://review.opendev.org/openstack/magnum magnum-cluster-api: https://github.com/vexxhost/magnum-cluster-api manila: https://github.com/openstack/manila octavia: https://github.com/openstack/octavia ovn-octavia-provider: https://github.com/openstack/ovn-octavia-provider devstack_services: base: false c-api: true c-bak: true c-sch: true c-vol: true dstat: false etcd3: true file_tracker: true g-api: true horizon: false key: true memory_tracker: true mysql: true n-api: true n-api-meta: true n-cond: true n-cpu: true n-novnc: true n-sch: true o-api: true o-da: true o-hk: true octavia: true openstack-cli-server: true ovn-controller: true ovn-northd: true ovs-vswitchd: true ovsdb-server: true placement-api: true q-ovn-agent: true q-svc: true rabbit: true s-account: false s-container: false s-object: false s-proxy: false tempest: false tls-proxy: true extensions_to_txt: auto: true conf: true localrc: true log: true stackenv: true image_url: https://github.com/vexxhost/capo-image-elements/releases/latest/download/ubuntu-22.04-{{ kube_tag }}.qcow2 kube_tag: v1.34.5 network_driver: cilium zuul: _inheritance_path: - '' - '' - '' - '' - '' - '' - '' - '' - '' - '' ansible_version: '9' attempts: 1 branch: main build: 6c3731abe4f8440795707a9ce87eafe0 build_refs: - branch: main change: '876' change_message: "chore(deps): update dependency requests to v2.33.0 [security]\n\nThis PR contains the following updates:\n\n| Package | Change | [Age](https://docs.renovatebot.com/merge-confidence/) | [Confidence](https://docs.renovatebot.com/merge-confidence/) |\n|---|---|---|---|\n| [requests](https://redirect.github.com/psf/requests) ([changelog](https://redirect.github.com/psf/requests/blob/master/HISTORY.md)) | `2.32.3` \u2192 `2.33.0` | ![age](https://developer.mend.io/api/mc/badges/age/pypi/requests/2.33.0?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/pypi/requests/2.32.3/2.33.0?slim=true) |\n\n### GitHub Vulnerability Alerts\n\n#### [CVE-2024-47081](https://redirect.github.com/psf/requests/security/advisories/GHSA-9hjg-9r4m-mvj7)\n\n### Impact\n\nDue to a URL parsing issue, Requests releases prior to 2.32.4 may leak .netrc credentials to third parties for specific maliciously-crafted URLs.\n\n### Workarounds\nFor older versions of Requests, use of the .netrc file can be disabled with `trust_env=False` on your Requests Session ([docs](https://requests.readthedocs.io/en/latest/api/#requests.Session.trust_env)).\n\n### References\n[https://github.com/psf/requests/pull/6965](https://redirect.github.com/psf/requests/pull/6965)\nhttps://seclists.org/fulldisclosure/2025/Jun/2\n\n#### [CVE-2026-25645](https://redirect.github.com/psf/requests/security/advisories/GHSA-gc5v-m9x4-r6x2)\n\n### Impact\nThe `requests.utils.extract_zipped_paths()` utility function uses a predictable filename when extracting files from zip archives into the system temporary directory. If the target file already exists, it is reused without validation. A local attacker with write access to the temp directory could pre-create a malicious file that would be loaded in place of the legitimate one.\n\n### Affected usages\n**Standard usage of the Requests library is not affected by this vulnerability.** Only applications that call `extract_zipped_paths()` directly are impacted.\n\n### Remediation\nUpgrade to at least Requests 2.33.0, where the library now extracts files to a non-deterministic location.\n\nIf developers are unable to upgrade, they can set `TMPDIR` in their environment to a directory with restricted write access.\n\n---\n\n### Release Notes\n\n
\npsf/requests (requests)\n\n### [`v2.33.0`](https://redirect.github.com/psf/requests/blob/HEAD/HISTORY.md#2330-2026-03-25)\n\n[Compare Source](https://redirect.github.com/psf/requests/compare/v2.32.5...v2.33.0)\n\n**Announcements**\n\n- \U0001F4E3 Requests is adding inline types. If you have a typed code base that\n uses Requests, please take a look at [#​7271](https://redirect.github.com/psf/requests/issues/7271). Give it a try, and report\n any gaps or feedback you may have in the issue. \U0001F4E3\n\n**Security**\n\n- CVE-2026-25645 `requests.utils.extract_zipped_paths` now extracts\n contents to a non-deterministic location to prevent malicious file\n replacement. This does not affect default usage of Requests, only\n \ applications calling the utility function directly.\n\n**Improvements**\n\n- Migrated to a PEP 517 build system using setuptools. ([#​7012](https://redirect.github.com/psf/requests/issues/7012))\n\n**Bugfixes**\n\n- Fixed an issue where an empty netrc entry could cause\n malformed authentication to be applied to Requests on\n Python 3.11+. ([#​7205](https://redirect.github.com/psf/requests/issues/7205))\n\n**Deprecations**\n\n- Dropped support for Python 3.9 following its end of support. ([#​7196](https://redirect.github.com/psf/requests/issues/7196))\n\n**Documentation**\n\n- Various typo fixes and doc improvements.\n\n### [`v2.32.5`](https://redirect.github.com/psf/requests/blob/HEAD/HISTORY.md#2325-2025-08-18)\n\n[Compare Source](https://redirect.github.com/psf/requests/compare/v2.32.4...v2.32.5)\n\n**Bugfixes**\n\n- The SSLContext caching feature originally introduced in 2.32.0 has created\n \ a new class of issues in Requests that have had negative impact across a number\n of use cases. The Requests team has decided to revert this feature as long term\n maintenance of it is proving to be unsustainable in its current iteration.\n\n**Deprecations**\n\n- Added support for Python 3.14.\n- Dropped support for Python 3.8 following its end of support.\n\n### [`v2.32.4`](https://redirect.github.com/psf/requests/blob/HEAD/HISTORY.md#2324-2025-06-10)\n\n[Compare Source](https://redirect.github.com/psf/requests/compare/v2.32.3...v2.32.4)\n\n**Security**\n\n- CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted\n \ environment will retrieve credentials for the wrong hostname/machine from a\n netrc file.\n\n**Improvements**\n\n- Numerous documentation improvements\n\n**Deprecations**\n\n- Added support for pypy 3.11 for Linux and macOS.\n- Dropped support for pypy 3.9 following its end of support.\n\n
\n\n---\n\n### Configuration\n\n\U0001F4C5 **Schedule**: Branch creation - \"\" (UTC), Automerge - At any time (no schedule defined).\n\n\U0001F6A6 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.\n\n\u267B **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.\n\n\U0001F515 **Ignore**: Close this PR and you won't be reminded about this update again.\n\n---\n\n - [ ] If you want to rebase/retry this PR, check this box\n\n---\n\nThis PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/vexxhost/magnum-cluster-api).\n\n" change_url: https://github.com/vexxhost/magnum-cluster-api/pull/876 commit_id: ba8c732d24edf4d5e6f416a31cf48019e5e3f0d5 patchset: 94b6ae0fa51aab030a359fdd01dd1a73efd2fd77 project: canonical_hostname: github.com canonical_name: github.com/vexxhost/magnum-cluster-api name: vexxhost/magnum-cluster-api short_name: magnum-cluster-api src_dir: src/github.com/vexxhost/magnum-cluster-api src_dir: src/github.com/vexxhost/magnum-cluster-api topic: null buildset: bfd72f46102b4eceb622ef0dde7299ce buildset_refs: - branch: main change: '876' change_message: "chore(deps): update dependency requests to v2.33.0 [security]\n\nThis PR contains the following updates:\n\n| Package | Change | [Age](https://docs.renovatebot.com/merge-confidence/) | [Confidence](https://docs.renovatebot.com/merge-confidence/) |\n|---|---|---|---|\n| [requests](https://redirect.github.com/psf/requests) ([changelog](https://redirect.github.com/psf/requests/blob/master/HISTORY.md)) | `2.32.3` \u2192 `2.33.0` | ![age](https://developer.mend.io/api/mc/badges/age/pypi/requests/2.33.0?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/pypi/requests/2.32.3/2.33.0?slim=true) |\n\n### GitHub Vulnerability Alerts\n\n#### [CVE-2024-47081](https://redirect.github.com/psf/requests/security/advisories/GHSA-9hjg-9r4m-mvj7)\n\n### Impact\n\nDue to a URL parsing issue, Requests releases prior to 2.32.4 may leak .netrc credentials to third parties for specific maliciously-crafted URLs.\n\n### Workarounds\nFor older versions of Requests, use of the .netrc file can be disabled with `trust_env=False` on your Requests Session ([docs](https://requests.readthedocs.io/en/latest/api/#requests.Session.trust_env)).\n\n### References\n[https://github.com/psf/requests/pull/6965](https://redirect.github.com/psf/requests/pull/6965)\nhttps://seclists.org/fulldisclosure/2025/Jun/2\n\n#### [CVE-2026-25645](https://redirect.github.com/psf/requests/security/advisories/GHSA-gc5v-m9x4-r6x2)\n\n### Impact\nThe `requests.utils.extract_zipped_paths()` utility function uses a predictable filename when extracting files from zip archives into the system temporary directory. If the target file already exists, it is reused without validation. A local attacker with write access to the temp directory could pre-create a malicious file that would be loaded in place of the legitimate one.\n\n### Affected usages\n**Standard usage of the Requests library is not affected by this vulnerability.** Only applications that call `extract_zipped_paths()` directly are impacted.\n\n### Remediation\nUpgrade to at least Requests 2.33.0, where the library now extracts files to a non-deterministic location.\n\nIf developers are unable to upgrade, they can set `TMPDIR` in their environment to a directory with restricted write access.\n\n---\n\n### Release Notes\n\n
\npsf/requests (requests)\n\n### [`v2.33.0`](https://redirect.github.com/psf/requests/blob/HEAD/HISTORY.md#2330-2026-03-25)\n\n[Compare Source](https://redirect.github.com/psf/requests/compare/v2.32.5...v2.33.0)\n\n**Announcements**\n\n- \U0001F4E3 Requests is adding inline types. If you have a typed code base that\n uses Requests, please take a look at [#​7271](https://redirect.github.com/psf/requests/issues/7271). Give it a try, and report\n any gaps or feedback you may have in the issue. \U0001F4E3\n\n**Security**\n\n- CVE-2026-25645 `requests.utils.extract_zipped_paths` now extracts\n contents to a non-deterministic location to prevent malicious file\n replacement. This does not affect default usage of Requests, only\n \ applications calling the utility function directly.\n\n**Improvements**\n\n- Migrated to a PEP 517 build system using setuptools. ([#​7012](https://redirect.github.com/psf/requests/issues/7012))\n\n**Bugfixes**\n\n- Fixed an issue where an empty netrc entry could cause\n malformed authentication to be applied to Requests on\n Python 3.11+. ([#​7205](https://redirect.github.com/psf/requests/issues/7205))\n\n**Deprecations**\n\n- Dropped support for Python 3.9 following its end of support. ([#​7196](https://redirect.github.com/psf/requests/issues/7196))\n\n**Documentation**\n\n- Various typo fixes and doc improvements.\n\n### [`v2.32.5`](https://redirect.github.com/psf/requests/blob/HEAD/HISTORY.md#2325-2025-08-18)\n\n[Compare Source](https://redirect.github.com/psf/requests/compare/v2.32.4...v2.32.5)\n\n**Bugfixes**\n\n- The SSLContext caching feature originally introduced in 2.32.0 has created\n \ a new class of issues in Requests that have had negative impact across a number\n of use cases. The Requests team has decided to revert this feature as long term\n maintenance of it is proving to be unsustainable in its current iteration.\n\n**Deprecations**\n\n- Added support for Python 3.14.\n- Dropped support for Python 3.8 following its end of support.\n\n### [`v2.32.4`](https://redirect.github.com/psf/requests/blob/HEAD/HISTORY.md#2324-2025-06-10)\n\n[Compare Source](https://redirect.github.com/psf/requests/compare/v2.32.3...v2.32.4)\n\n**Security**\n\n- CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted\n \ environment will retrieve credentials for the wrong hostname/machine from a\n netrc file.\n\n**Improvements**\n\n- Numerous documentation improvements\n\n**Deprecations**\n\n- Added support for pypy 3.11 for Linux and macOS.\n- Dropped support for pypy 3.9 following its end of support.\n\n
\n\n---\n\n### Configuration\n\n\U0001F4C5 **Schedule**: Branch creation - \"\" (UTC), Automerge - At any time (no schedule defined).\n\n\U0001F6A6 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.\n\n\u267B **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.\n\n\U0001F515 **Ignore**: Close this PR and you won't be reminded about this update again.\n\n---\n\n - [ ] If you want to rebase/retry this PR, check this box\n\n---\n\nThis PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/vexxhost/magnum-cluster-api).\n\n" change_url: https://github.com/vexxhost/magnum-cluster-api/pull/876 commit_id: ba8c732d24edf4d5e6f416a31cf48019e5e3f0d5 patchset: 94b6ae0fa51aab030a359fdd01dd1a73efd2fd77 project: canonical_hostname: github.com canonical_name: github.com/vexxhost/magnum-cluster-api name: vexxhost/magnum-cluster-api short_name: magnum-cluster-api src_dir: src/github.com/vexxhost/magnum-cluster-api src_dir: src/github.com/vexxhost/magnum-cluster-api topic: null change: '876' change_message: "chore(deps): update dependency requests to v2.33.0 [security]\n\nThis PR contains the following updates:\n\n| Package | Change | [Age](https://docs.renovatebot.com/merge-confidence/) | [Confidence](https://docs.renovatebot.com/merge-confidence/) |\n|---|---|---|---|\n| [requests](https://redirect.github.com/psf/requests) ([changelog](https://redirect.github.com/psf/requests/blob/master/HISTORY.md)) | `2.32.3` \u2192 `2.33.0` | ![age](https://developer.mend.io/api/mc/badges/age/pypi/requests/2.33.0?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/pypi/requests/2.32.3/2.33.0?slim=true) |\n\n### GitHub Vulnerability Alerts\n\n#### [CVE-2024-47081](https://redirect.github.com/psf/requests/security/advisories/GHSA-9hjg-9r4m-mvj7)\n\n### Impact\n\nDue to a URL parsing issue, Requests releases prior to 2.32.4 may leak .netrc credentials to third parties for specific maliciously-crafted URLs.\n\n### Workarounds\nFor older versions of Requests, use of the .netrc file can be disabled with `trust_env=False` on your Requests Session ([docs](https://requests.readthedocs.io/en/latest/api/#requests.Session.trust_env)).\n\n### References\n[https://github.com/psf/requests/pull/6965](https://redirect.github.com/psf/requests/pull/6965)\nhttps://seclists.org/fulldisclosure/2025/Jun/2\n\n#### [CVE-2026-25645](https://redirect.github.com/psf/requests/security/advisories/GHSA-gc5v-m9x4-r6x2)\n\n### Impact\nThe `requests.utils.extract_zipped_paths()` utility function uses a predictable filename when extracting files from zip archives into the system temporary directory. If the target file already exists, it is reused without validation. A local attacker with write access to the temp directory could pre-create a malicious file that would be loaded in place of the legitimate one.\n\n### Affected usages\n**Standard usage of the Requests library is not affected by this vulnerability.** Only applications that call `extract_zipped_paths()` directly are impacted.\n\n### Remediation\nUpgrade to at least Requests 2.33.0, where the library now extracts files to a non-deterministic location.\n\nIf developers are unable to upgrade, they can set `TMPDIR` in their environment to a directory with restricted write access.\n\n---\n\n### Release Notes\n\n
\npsf/requests (requests)\n\n### [`v2.33.0`](https://redirect.github.com/psf/requests/blob/HEAD/HISTORY.md#2330-2026-03-25)\n\n[Compare Source](https://redirect.github.com/psf/requests/compare/v2.32.5...v2.33.0)\n\n**Announcements**\n\n- \U0001F4E3 Requests is adding inline types. If you have a typed code base that\n uses Requests, please take a look at [#​7271](https://redirect.github.com/psf/requests/issues/7271). Give it a try, and report\n any gaps or feedback you may have in the issue. \U0001F4E3\n\n**Security**\n\n- CVE-2026-25645 `requests.utils.extract_zipped_paths` now extracts\n contents to a non-deterministic location to prevent malicious file\n replacement. This does not affect default usage of Requests, only\n \ applications calling the utility function directly.\n\n**Improvements**\n\n- Migrated to a PEP 517 build system using setuptools. ([#​7012](https://redirect.github.com/psf/requests/issues/7012))\n\n**Bugfixes**\n\n- Fixed an issue where an empty netrc entry could cause\n malformed authentication to be applied to Requests on\n Python 3.11+. ([#​7205](https://redirect.github.com/psf/requests/issues/7205))\n\n**Deprecations**\n\n- Dropped support for Python 3.9 following its end of support. ([#​7196](https://redirect.github.com/psf/requests/issues/7196))\n\n**Documentation**\n\n- Various typo fixes and doc improvements.\n\n### [`v2.32.5`](https://redirect.github.com/psf/requests/blob/HEAD/HISTORY.md#2325-2025-08-18)\n\n[Compare Source](https://redirect.github.com/psf/requests/compare/v2.32.4...v2.32.5)\n\n**Bugfixes**\n\n- The SSLContext caching feature originally introduced in 2.32.0 has created\n \ a new class of issues in Requests that have had negative impact across a number\n of use cases. The Requests team has decided to revert this feature as long term\n maintenance of it is proving to be unsustainable in its current iteration.\n\n**Deprecations**\n\n- Added support for Python 3.14.\n- Dropped support for Python 3.8 following its end of support.\n\n### [`v2.32.4`](https://redirect.github.com/psf/requests/blob/HEAD/HISTORY.md#2324-2025-06-10)\n\n[Compare Source](https://redirect.github.com/psf/requests/compare/v2.32.3...v2.32.4)\n\n**Security**\n\n- CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted\n \ environment will retrieve credentials for the wrong hostname/machine from a\n netrc file.\n\n**Improvements**\n\n- Numerous documentation improvements\n\n**Deprecations**\n\n- Added support for pypy 3.11 for Linux and macOS.\n- Dropped support for pypy 3.9 following its end of support.\n\n
\n\n---\n\n### Configuration\n\n\U0001F4C5 **Schedule**: Branch creation - \"\" (UTC), Automerge - At any time (no schedule defined).\n\n\U0001F6A6 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.\n\n\u267B **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.\n\n\U0001F515 **Ignore**: Close this PR and you won't be reminded about this update again.\n\n---\n\n - [ ] If you want to rebase/retry this PR, check this box\n\n---\n\nThis PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/vexxhost/magnum-cluster-api).\n\n" change_url: https://github.com/vexxhost/magnum-cluster-api/pull/876 child_jobs: [] commit_id: ba8c732d24edf4d5e6f416a31cf48019e5e3f0d5 event_id: 75d69f90-2c7d-11f1-8c30-8a49777f72d4 executor: hostname: 0a8996d2b663 inventory_file: /var/lib/zuul/builds/6c3731abe4f8440795707a9ce87eafe0/ansible/inventory.yaml log_root: /var/lib/zuul/builds/6c3731abe4f8440795707a9ce87eafe0/work/logs result_data_file: /var/lib/zuul/builds/6c3731abe4f8440795707a9ce87eafe0/work/results.json src_root: /var/lib/zuul/builds/6c3731abe4f8440795707a9ce87eafe0/work/src work_root: /var/lib/zuul/builds/6c3731abe4f8440795707a9ce87eafe0/work include_vars: [] items: - branch: main change: '876' change_message: "chore(deps): update dependency requests to v2.33.0 [security]\n\nThis PR contains the following updates:\n\n| Package | Change | [Age](https://docs.renovatebot.com/merge-confidence/) | [Confidence](https://docs.renovatebot.com/merge-confidence/) |\n|---|---|---|---|\n| [requests](https://redirect.github.com/psf/requests) ([changelog](https://redirect.github.com/psf/requests/blob/master/HISTORY.md)) | `2.32.3` \u2192 `2.33.0` | ![age](https://developer.mend.io/api/mc/badges/age/pypi/requests/2.33.0?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/pypi/requests/2.32.3/2.33.0?slim=true) |\n\n### GitHub Vulnerability Alerts\n\n#### [CVE-2024-47081](https://redirect.github.com/psf/requests/security/advisories/GHSA-9hjg-9r4m-mvj7)\n\n### Impact\n\nDue to a URL parsing issue, Requests releases prior to 2.32.4 may leak .netrc credentials to third parties for specific maliciously-crafted URLs.\n\n### Workarounds\nFor older versions of Requests, use of the .netrc file can be disabled with `trust_env=False` on your Requests Session ([docs](https://requests.readthedocs.io/en/latest/api/#requests.Session.trust_env)).\n\n### References\n[https://github.com/psf/requests/pull/6965](https://redirect.github.com/psf/requests/pull/6965)\nhttps://seclists.org/fulldisclosure/2025/Jun/2\n\n#### [CVE-2026-25645](https://redirect.github.com/psf/requests/security/advisories/GHSA-gc5v-m9x4-r6x2)\n\n### Impact\nThe `requests.utils.extract_zipped_paths()` utility function uses a predictable filename when extracting files from zip archives into the system temporary directory. If the target file already exists, it is reused without validation. A local attacker with write access to the temp directory could pre-create a malicious file that would be loaded in place of the legitimate one.\n\n### Affected usages\n**Standard usage of the Requests library is not affected by this vulnerability.** Only applications that call `extract_zipped_paths()` directly are impacted.\n\n### Remediation\nUpgrade to at least Requests 2.33.0, where the library now extracts files to a non-deterministic location.\n\nIf developers are unable to upgrade, they can set `TMPDIR` in their environment to a directory with restricted write access.\n\n---\n\n### Release Notes\n\n
\npsf/requests (requests)\n\n### [`v2.33.0`](https://redirect.github.com/psf/requests/blob/HEAD/HISTORY.md#2330-2026-03-25)\n\n[Compare Source](https://redirect.github.com/psf/requests/compare/v2.32.5...v2.33.0)\n\n**Announcements**\n\n- \U0001F4E3 Requests is adding inline types. If you have a typed code base that\n uses Requests, please take a look at [#​7271](https://redirect.github.com/psf/requests/issues/7271). Give it a try, and report\n any gaps or feedback you may have in the issue. \U0001F4E3\n\n**Security**\n\n- CVE-2026-25645 `requests.utils.extract_zipped_paths` now extracts\n contents to a non-deterministic location to prevent malicious file\n replacement. This does not affect default usage of Requests, only\n \ applications calling the utility function directly.\n\n**Improvements**\n\n- Migrated to a PEP 517 build system using setuptools. ([#​7012](https://redirect.github.com/psf/requests/issues/7012))\n\n**Bugfixes**\n\n- Fixed an issue where an empty netrc entry could cause\n malformed authentication to be applied to Requests on\n Python 3.11+. ([#​7205](https://redirect.github.com/psf/requests/issues/7205))\n\n**Deprecations**\n\n- Dropped support for Python 3.9 following its end of support. ([#​7196](https://redirect.github.com/psf/requests/issues/7196))\n\n**Documentation**\n\n- Various typo fixes and doc improvements.\n\n### [`v2.32.5`](https://redirect.github.com/psf/requests/blob/HEAD/HISTORY.md#2325-2025-08-18)\n\n[Compare Source](https://redirect.github.com/psf/requests/compare/v2.32.4...v2.32.5)\n\n**Bugfixes**\n\n- The SSLContext caching feature originally introduced in 2.32.0 has created\n \ a new class of issues in Requests that have had negative impact across a number\n of use cases. The Requests team has decided to revert this feature as long term\n maintenance of it is proving to be unsustainable in its current iteration.\n\n**Deprecations**\n\n- Added support for Python 3.14.\n- Dropped support for Python 3.8 following its end of support.\n\n### [`v2.32.4`](https://redirect.github.com/psf/requests/blob/HEAD/HISTORY.md#2324-2025-06-10)\n\n[Compare Source](https://redirect.github.com/psf/requests/compare/v2.32.3...v2.32.4)\n\n**Security**\n\n- CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted\n \ environment will retrieve credentials for the wrong hostname/machine from a\n netrc file.\n\n**Improvements**\n\n- Numerous documentation improvements\n\n**Deprecations**\n\n- Added support for pypy 3.11 for Linux and macOS.\n- Dropped support for pypy 3.9 following its end of support.\n\n
\n\n---\n\n### Configuration\n\n\U0001F4C5 **Schedule**: Branch creation - \"\" (UTC), Automerge - At any time (no schedule defined).\n\n\U0001F6A6 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.\n\n\u267B **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.\n\n\U0001F515 **Ignore**: Close this PR and you won't be reminded about this update again.\n\n---\n\n - [ ] If you want to rebase/retry this PR, check this box\n\n---\n\nThis PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/vexxhost/magnum-cluster-api).\n\n" change_url: https://github.com/vexxhost/magnum-cluster-api/pull/876 commit_id: ba8c732d24edf4d5e6f416a31cf48019e5e3f0d5 patchset: 94b6ae0fa51aab030a359fdd01dd1a73efd2fd77 project: canonical_hostname: github.com canonical_name: github.com/vexxhost/magnum-cluster-api name: vexxhost/magnum-cluster-api short_name: magnum-cluster-api src_dir: src/github.com/vexxhost/magnum-cluster-api topic: null job: magnum-cluster-api-hydrophone-v1.34.5-cilium jobtags: [] max_attempts: 3 message: Y2hvcmUoZGVwcyk6IHVwZGF0ZSBkZXBlbmRlbmN5IHJlcXVlc3RzIHRvIHYyLjMzLjAgW3NlY3VyaXR5XQoKVGhpcyBQUiBjb250YWlucyB0aGUgZm9sbG93aW5nIHVwZGF0ZXM6Cgp8IFBhY2thZ2UgfCBDaGFuZ2UgfCBbQWdlXShodHRwczovL2RvY3MucmVub3ZhdGVib3QuY29tL21lcmdlLWNvbmZpZGVuY2UvKSB8IFtDb25maWRlbmNlXShodHRwczovL2RvY3MucmVub3ZhdGVib3QuY29tL21lcmdlLWNvbmZpZGVuY2UvKSB8CnwtLS18LS0tfC0tLXwtLS18CnwgW3JlcXVlc3RzXShodHRwczovL3JlZGlyZWN0LmdpdGh1Yi5jb20vcHNmL3JlcXVlc3RzKSAoW2NoYW5nZWxvZ10oaHR0cHM6Ly9yZWRpcmVjdC5naXRodWIuY29tL3BzZi9yZXF1ZXN0cy9ibG9iL21hc3Rlci9ISVNUT1JZLm1kKSkgfCBgMi4zMi4zYCDihpIgYDIuMzMuMGAgfCAhW2FnZV0oaHR0cHM6Ly9kZXZlbG9wZXIubWVuZC5pby9hcGkvbWMvYmFkZ2VzL2FnZS9weXBpL3JlcXVlc3RzLzIuMzMuMD9zbGltPXRydWUpIHwgIVtjb25maWRlbmNlXShodHRwczovL2RldmVsb3Blci5tZW5kLmlvL2FwaS9tYy9iYWRnZXMvY29uZmlkZW5jZS9weXBpL3JlcXVlc3RzLzIuMzIuMy8yLjMzLjA/c2xpbT10cnVlKSB8CgojIyMgR2l0SHViIFZ1bG5lcmFiaWxpdHkgQWxlcnRzCgojIyMjIFtDVkUtMjAyNC00NzA4MV0oaHR0cHM6Ly9yZWRpcmVjdC5naXRodWIuY29tL3BzZi9yZXF1ZXN0cy9zZWN1cml0eS9hZHZpc29yaWVzL0dIU0EtOWhqZy05cjRtLW12ajcpCgojIyMgSW1wYWN0CgpEdWUgdG8gYSBVUkwgcGFyc2luZyBpc3N1ZSwgUmVxdWVzdHMgcmVsZWFzZXMgcHJpb3IgdG8gMi4zMi40IG1heSBsZWFrIC5uZXRyYyBjcmVkZW50aWFscyB0byB0aGlyZCBwYXJ0aWVzIGZvciBzcGVjaWZpYyBtYWxpY2lvdXNseS1jcmFmdGVkIFVSTHMuCgojIyMgV29ya2Fyb3VuZHMKRm9yIG9sZGVyIHZlcnNpb25zIG9mIFJlcXVlc3RzLCB1c2Ugb2YgdGhlIC5uZXRyYyBmaWxlIGNhbiBiZSBkaXNhYmxlZCB3aXRoIGB0cnVzdF9lbnY9RmFsc2VgIG9uIHlvdXIgUmVxdWVzdHMgU2Vzc2lvbiAoW2RvY3NdKGh0dHBzOi8vcmVxdWVzdHMucmVhZHRoZWRvY3MuaW8vZW4vbGF0ZXN0L2FwaS8jcmVxdWVzdHMuU2Vzc2lvbi50cnVzdF9lbnYpKS4KCiMjIyBSZWZlcmVuY2VzCltodHRwczovL2dpdGh1Yi5jb20vcHNmL3JlcXVlc3RzL3B1bGwvNjk2NV0oaHR0cHM6Ly9yZWRpcmVjdC5naXRodWIuY29tL3BzZi9yZXF1ZXN0cy9wdWxsLzY5NjUpCmh0dHBzOi8vc2VjbGlzdHMub3JnL2Z1bGxkaXNjbG9zdXJlLzIwMjUvSnVuLzIKCiMjIyMgW0NWRS0yMDI2LTI1NjQ1XShodHRwczovL3JlZGlyZWN0LmdpdGh1Yi5jb20vcHNmL3JlcXVlc3RzL3NlY3VyaXR5L2Fkdmlzb3JpZXMvR0hTQS1nYzV2LW05eDQtcjZ4MikKCiMjIyBJbXBhY3QKVGhlIGByZXF1ZXN0cy51dGlscy5leHRyYWN0X3ppcHBlZF9wYXRocygpYCB1dGlsaXR5IGZ1bmN0aW9uIHVzZXMgYSBwcmVkaWN0YWJsZSBmaWxlbmFtZSB3aGVuIGV4dHJhY3RpbmcgZmlsZXMgZnJvbSB6aXAgYXJjaGl2ZXMgaW50byB0aGUgc3lzdGVtIHRlbXBvcmFyeSBkaXJlY3RvcnkuIElmIHRoZSB0YXJnZXQgZmlsZSBhbHJlYWR5IGV4aXN0cywgaXQgaXMgcmV1c2VkIHdpdGhvdXQgdmFsaWRhdGlvbi4gQSBsb2NhbCBhdHRhY2tlciB3aXRoIHdyaXRlIGFjY2VzcyB0byB0aGUgdGVtcCBkaXJlY3RvcnkgY291bGQgcHJlLWNyZWF0ZSBhIG1hbGljaW91cyBmaWxlIHRoYXQgd291bGQgYmUgbG9hZGVkIGluIHBsYWNlIG9mIHRoZSBsZWdpdGltYXRlIG9uZS4KCiMjIyBBZmZlY3RlZCB1c2FnZXMKKipTdGFuZGFyZCB1c2FnZSBvZiB0aGUgUmVxdWVzdHMgbGlicmFyeSBpcyBub3QgYWZmZWN0ZWQgYnkgdGhpcyB2dWxuZXJhYmlsaXR5LioqIE9ubHkgYXBwbGljYXRpb25zIHRoYXQgY2FsbCBgZXh0cmFjdF96aXBwZWRfcGF0aHMoKWAgZGlyZWN0bHkgYXJlIGltcGFjdGVkLgoKIyMjIFJlbWVkaWF0aW9uClVwZ3JhZGUgdG8gYXQgbGVhc3QgUmVxdWVzdHMgMi4zMy4wLCB3aGVyZSB0aGUgbGlicmFyeSBub3cgZXh0cmFjdHMgZmlsZXMgdG8gYSBub24tZGV0ZXJtaW5pc3RpYyBsb2NhdGlvbi4KCklmIGRldmVsb3BlcnMgYXJlIHVuYWJsZSB0byB1cGdyYWRlLCB0aGV5IGNhbiBzZXQgYFRNUERJUmAgaW4gdGhlaXIgZW52aXJvbm1lbnQgdG8gYSBkaXJlY3Rvcnkgd2l0aCByZXN0cmljdGVkIHdyaXRlIGFjY2Vzcy4KCi0tLQoKIyMjIFJlbGVhc2UgTm90ZXMKCjxkZXRhaWxzPgo8c3VtbWFyeT5wc2YvcmVxdWVzdHMgKHJlcXVlc3RzKTwvc3VtbWFyeT4KCiMjIyBbYHYyLjMzLjBgXShodHRwczovL3JlZGlyZWN0LmdpdGh1Yi5jb20vcHNmL3JlcXVlc3RzL2Jsb2IvSEVBRC9ISVNUT1JZLm1kIzIzMzAtMjAyNi0wMy0yNSkKCltDb21wYXJlIFNvdXJjZV0oaHR0cHM6Ly9yZWRpcmVjdC5naXRodWIuY29tL3BzZi9yZXF1ZXN0cy9jb21wYXJlL3YyLjMyLjUuLi52Mi4zMy4wKQoKKipBbm5vdW5jZW1lbnRzKioKCi0g8J+ToyBSZXF1ZXN0cyBpcyBhZGRpbmcgaW5saW5lIHR5cGVzLiBJZiB5b3UgaGF2ZSBhIHR5cGVkIGNvZGUgYmFzZSB0aGF0CiAgdXNlcyBSZXF1ZXN0cywgcGxlYXNlIHRha2UgYSBsb29rIGF0IFsjJiM4MjAzOzcyNzFdKGh0dHBzOi8vcmVkaXJlY3QuZ2l0aHViLmNvbS9wc2YvcmVxdWVzdHMvaXNzdWVzLzcyNzEpLiBHaXZlIGl0IGEgdHJ5LCBhbmQgcmVwb3J0CiAgYW55IGdhcHMgb3IgZmVlZGJhY2sgeW91IG1heSBoYXZlIGluIHRoZSBpc3N1ZS4g8J+TowoKKipTZWN1cml0eSoqCgotIENWRS0yMDI2LTI1NjQ1IGByZXF1ZXN0cy51dGlscy5leHRyYWN0X3ppcHBlZF9wYXRoc2Agbm93IGV4dHJhY3RzCiAgY29udGVudHMgdG8gYSBub24tZGV0ZXJtaW5pc3RpYyBsb2NhdGlvbiB0byBwcmV2ZW50IG1hbGljaW91cyBmaWxlCiAgcmVwbGFjZW1lbnQuIFRoaXMgZG9lcyBub3QgYWZmZWN0IGRlZmF1bHQgdXNhZ2Ugb2YgUmVxdWVzdHMsIG9ubHkKICBhcHBsaWNhdGlvbnMgY2FsbGluZyB0aGUgdXRpbGl0eSBmdW5jdGlvbiBkaXJlY3RseS4KCioqSW1wcm92ZW1lbnRzKioKCi0gTWlncmF0ZWQgdG8gYSBQRVAgNTE3IGJ1aWxkIHN5c3RlbSB1c2luZyBzZXR1cHRvb2xzLiAoWyMmIzgyMDM7NzAxMl0oaHR0cHM6Ly9yZWRpcmVjdC5naXRodWIuY29tL3BzZi9yZXF1ZXN0cy9pc3N1ZXMvNzAxMikpCgoqKkJ1Z2ZpeGVzKioKCi0gRml4ZWQgYW4gaXNzdWUgd2hlcmUgYW4gZW1wdHkgbmV0cmMgZW50cnkgY291bGQgY2F1c2UKICBtYWxmb3JtZWQgYXV0aGVudGljYXRpb24gdG8gYmUgYXBwbGllZCB0byBSZXF1ZXN0cyBvbgogIFB5dGhvbiAzLjExKy4gKFsjJiM4MjAzOzcyMDVdKGh0dHBzOi8vcmVkaXJlY3QuZ2l0aHViLmNvbS9wc2YvcmVxdWVzdHMvaXNzdWVzLzcyMDUpKQoKKipEZXByZWNhdGlvbnMqKgoKLSBEcm9wcGVkIHN1cHBvcnQgZm9yIFB5dGhvbiAzLjkgZm9sbG93aW5nIGl0cyBlbmQgb2Ygc3VwcG9ydC4gKFsjJiM4MjAzOzcxOTZdKGh0dHBzOi8vcmVkaXJlY3QuZ2l0aHViLmNvbS9wc2YvcmVxdWVzdHMvaXNzdWVzLzcxOTYpKQoKKipEb2N1bWVudGF0aW9uKioKCi0gVmFyaW91cyB0eXBvIGZpeGVzIGFuZCBkb2MgaW1wcm92ZW1lbnRzLgoKIyMjIFtgdjIuMzIuNWBdKGh0dHBzOi8vcmVkaXJlY3QuZ2l0aHViLmNvbS9wc2YvcmVxdWVzdHMvYmxvYi9IRUFEL0hJU1RPUlkubWQjMjMyNS0yMDI1LTA4LTE4KQoKW0NvbXBhcmUgU291cmNlXShodHRwczovL3JlZGlyZWN0LmdpdGh1Yi5jb20vcHNmL3JlcXVlc3RzL2NvbXBhcmUvdjIuMzIuNC4uLnYyLjMyLjUpCgoqKkJ1Z2ZpeGVzKioKCi0gVGhlIFNTTENvbnRleHQgY2FjaGluZyBmZWF0dXJlIG9yaWdpbmFsbHkgaW50cm9kdWNlZCBpbiAyLjMyLjAgaGFzIGNyZWF0ZWQKICBhIG5ldyBjbGFzcyBvZiBpc3N1ZXMgaW4gUmVxdWVzdHMgdGhhdCBoYXZlIGhhZCBuZWdhdGl2ZSBpbXBhY3QgYWNyb3NzIGEgbnVtYmVyCiAgb2YgdXNlIGNhc2VzLiBUaGUgUmVxdWVzdHMgdGVhbSBoYXMgZGVjaWRlZCB0byByZXZlcnQgdGhpcyBmZWF0dXJlIGFzIGxvbmcgdGVybQogIG1haW50ZW5hbmNlIG9mIGl0IGlzIHByb3ZpbmcgdG8gYmUgdW5zdXN0YWluYWJsZSBpbiBpdHMgY3VycmVudCBpdGVyYXRpb24uCgoqKkRlcHJlY2F0aW9ucyoqCgotIEFkZGVkIHN1cHBvcnQgZm9yIFB5dGhvbiAzLjE0LgotIERyb3BwZWQgc3VwcG9ydCBmb3IgUHl0aG9uIDMuOCBmb2xsb3dpbmcgaXRzIGVuZCBvZiBzdXBwb3J0LgoKIyMjIFtgdjIuMzIuNGBdKGh0dHBzOi8vcmVkaXJlY3QuZ2l0aHViLmNvbS9wc2YvcmVxdWVzdHMvYmxvYi9IRUFEL0hJU1RPUlkubWQjMjMyNC0yMDI1LTA2LTEwKQoKW0NvbXBhcmUgU291cmNlXShodHRwczovL3JlZGlyZWN0LmdpdGh1Yi5jb20vcHNmL3JlcXVlc3RzL2NvbXBhcmUvdjIuMzIuMy4uLnYyLjMyLjQpCgoqKlNlY3VyaXR5KioKCi0gQ1ZFLTIwMjQtNDcwODEgRml4ZWQgYW4gaXNzdWUgd2hlcmUgYSBtYWxpY2lvdXNseSBjcmFmdGVkIFVSTCBhbmQgdHJ1c3RlZAogIGVudmlyb25tZW50IHdpbGwgcmV0cmlldmUgY3JlZGVudGlhbHMgZm9yIHRoZSB3cm9uZyBob3N0bmFtZS9tYWNoaW5lIGZyb20gYQogIG5ldHJjIGZpbGUuCgoqKkltcHJvdmVtZW50cyoqCgotIE51bWVyb3VzIGRvY3VtZW50YXRpb24gaW1wcm92ZW1lbnRzCgoqKkRlcHJlY2F0aW9ucyoqCgotIEFkZGVkIHN1cHBvcnQgZm9yIHB5cHkgMy4xMSBmb3IgTGludXggYW5kIG1hY09TLgotIERyb3BwZWQgc3VwcG9ydCBmb3IgcHlweSAzLjkgZm9sbG93aW5nIGl0cyBlbmQgb2Ygc3VwcG9ydC4KCjwvZGV0YWlscz4KCi0tLQoKIyMjIENvbmZpZ3VyYXRpb24KCvCfk4UgKipTY2hlZHVsZSoqOiBCcmFuY2ggY3JlYXRpb24gLSAiIiAoVVRDKSwgQXV0b21lcmdlIC0gQXQgYW55IHRpbWUgKG5vIHNjaGVkdWxlIGRlZmluZWQpLgoK8J+apiAqKkF1dG9tZXJnZSoqOiBEaXNhYmxlZCBieSBjb25maWcuIFBsZWFzZSBtZXJnZSB0aGlzIG1hbnVhbGx5IG9uY2UgeW91IGFyZSBzYXRpc2ZpZWQuCgrimbsgKipSZWJhc2luZyoqOiBXaGVuZXZlciBQUiBpcyBiZWhpbmQgYmFzZSBicmFuY2gsIG9yIHlvdSB0aWNrIHRoZSByZWJhc2UvcmV0cnkgY2hlY2tib3guCgrwn5SVICoqSWdub3JlKio6IENsb3NlIHRoaXMgUFIgYW5kIHlvdSB3b24ndCBiZSByZW1pbmRlZCBhYm91dCB0aGlzIHVwZGF0ZSBhZ2Fpbi4KCi0tLQoKIC0gWyBdIDwhLS0gcmViYXNlLWNoZWNrIC0tPklmIHlvdSB3YW50IHRvIHJlYmFzZS9yZXRyeSB0aGlzIFBSLCBjaGVjayB0aGlzIGJveAoKLS0tCgpUaGlzIFBSIHdhcyBnZW5lcmF0ZWQgYnkgW01lbmQgUmVub3ZhdGVdKGh0dHBzOi8vbWVuZC5pby9yZW5vdmF0ZS8pLiBWaWV3IHRoZSBbcmVwb3NpdG9yeSBqb2IgbG9nXShodHRwczovL2RldmVsb3Blci5tZW5kLmlvL2dpdGh1Yi92ZXh4aG9zdC9tYWdudW0tY2x1c3Rlci1hcGkpLgo8IS0tcmVub3ZhdGUtZGVidWc6ZXlKamNtVmhkR1ZrU1c1V1pYSWlPaUkwTWk0NU1pNHhJaXdpZFhCa1lYUmxaRWx1Vm1WeUlqb2lORE11TmpZdU5DSXNJblJoY21kbGRFSnlZVzVqYUNJNkltMWhhVzRpTENKc1lXSmxiSE1pT2x0ZGZRPT0tLT4K override_checkout: master patchset: 94b6ae0fa51aab030a359fdd01dd1a73efd2fd77 pipeline: check playbook_context: playbook_projects: trusted/project_0/github.com/vexxhost/zuul-config: canonical_name: github.com/vexxhost/zuul-config checkout: main commit: 9052b5a7781b3346e4cffd452a54448cbff54d8b trusted/project_1/opendev.org/zuul/zuul-jobs: canonical_name: opendev.org/zuul/zuul-jobs checkout: master commit: c75fe6ef19c05b98349573c971950c51bbf24758 trusted/project_2/github.com/vexxhost/zuul-jobs: canonical_name: github.com/vexxhost/zuul-jobs checkout: main commit: a6e68243e02ef030ce5e75f8b67630880c475f33 untrusted/project_0/opendev.org/openstack/devstack: canonical_name: opendev.org/openstack/devstack checkout: master commit: 416d27e89e0c1891921fee2a692086eb8fcd0307 untrusted/project_1/opendev.org/openstack/openstack-zuul-jobs: canonical_name: opendev.org/openstack/openstack-zuul-jobs checkout: master commit: 3d5175f90e389f3240a8400a792abaaeb51bee3b untrusted/project_2/github.com/vexxhost/zuul-config: canonical_name: github.com/vexxhost/zuul-config checkout: main commit: 9052b5a7781b3346e4cffd452a54448cbff54d8b untrusted/project_3/opendev.org/zuul/zuul-jobs: canonical_name: opendev.org/zuul/zuul-jobs checkout: master commit: c75fe6ef19c05b98349573c971950c51bbf24758 untrusted/project_4/github.com/vexxhost/zuul-jobs: canonical_name: github.com/vexxhost/zuul-jobs checkout: main commit: a6e68243e02ef030ce5e75f8b67630880c475f33 untrusted/project_5/github.com/vexxhost/magnum-cluster-api: canonical_name: github.com/vexxhost/magnum-cluster-api checkout: main commit: ba8c732d24edf4d5e6f416a31cf48019e5e3f0d5 playbooks: - path: untrusted/project_5/github.com/vexxhost/magnum-cluster-api/zuul.d/playbooks/hydrophone/run.yml roles: - checkout: master checkout_description: job override ref link_name: ansible/playbook_0/role_1/devstack link_target: untrusted/project_0/opendev.org/openstack/devstack role_path: ansible/playbook_0/role_1/devstack/roles - checkout: master checkout_description: job override ref link_name: ansible/playbook_0/role_2/openstack-zuul-jobs link_target: untrusted/project_1/opendev.org/openstack/openstack-zuul-jobs role_path: ansible/playbook_0/role_2/openstack-zuul-jobs/roles - checkout: master checkout_description: job override ref link_name: ansible/playbook_0/role_4/zuul-jobs link_target: untrusted/project_3/opendev.org/zuul/zuul-jobs role_path: ansible/playbook_0/role_4/zuul-jobs/roles - checkout: main checkout_description: zuul branch link_name: ansible/playbook_0/role_5/zuul-jobs link_target: untrusted/project_4/github.com/vexxhost/zuul-jobs role_path: ansible/playbook_0/role_5/zuul-jobs/roles post_playbooks: - path: untrusted/project_5/github.com/vexxhost/magnum-cluster-api/zuul.d/playbooks/hydrophone/post.yml roles: - checkout: master checkout_description: job override ref link_name: ansible/post_playbook_0/role_1/devstack link_target: untrusted/project_0/opendev.org/openstack/devstack role_path: ansible/post_playbook_0/role_1/devstack/roles - checkout: master checkout_description: job override ref link_name: ansible/post_playbook_0/role_2/openstack-zuul-jobs link_target: untrusted/project_1/opendev.org/openstack/openstack-zuul-jobs role_path: ansible/post_playbook_0/role_2/openstack-zuul-jobs/roles - checkout: master checkout_description: job override ref link_name: ansible/post_playbook_0/role_4/zuul-jobs link_target: untrusted/project_3/opendev.org/zuul/zuul-jobs role_path: ansible/post_playbook_0/role_4/zuul-jobs/roles - checkout: main checkout_description: zuul branch link_name: ansible/post_playbook_0/role_5/zuul-jobs link_target: untrusted/project_4/github.com/vexxhost/zuul-jobs role_path: ansible/post_playbook_0/role_5/zuul-jobs/roles - path: untrusted/project_0/opendev.org/openstack/devstack/playbooks/post.yaml roles: - checkout: master checkout_description: playbook branch link_name: ansible/post_playbook_1/role_0/devstack link_target: untrusted/project_0/opendev.org/openstack/devstack role_path: ansible/post_playbook_1/role_0/devstack/roles - checkout: master checkout_description: job override ref link_name: ansible/post_playbook_1/role_1/openstack-zuul-jobs link_target: untrusted/project_1/opendev.org/openstack/openstack-zuul-jobs role_path: ansible/post_playbook_1/role_1/openstack-zuul-jobs/roles - checkout: master checkout_description: job override ref link_name: ansible/post_playbook_1/role_3/zuul-jobs link_target: untrusted/project_3/opendev.org/zuul/zuul-jobs role_path: ansible/post_playbook_1/role_3/zuul-jobs/roles - checkout: main checkout_description: zuul branch link_name: ansible/post_playbook_1/role_4/zuul-jobs link_target: untrusted/project_4/github.com/vexxhost/zuul-jobs role_path: ansible/post_playbook_1/role_4/zuul-jobs/roles - path: trusted/project_0/github.com/vexxhost/zuul-config/playbooks/base/post.yaml roles: - checkout: master checkout_description: job override ref link_name: ansible/post_playbook_2/role_1/zuul-jobs link_target: trusted/project_1/opendev.org/zuul/zuul-jobs role_path: ansible/post_playbook_2/role_1/zuul-jobs/roles - checkout: main checkout_description: zuul branch link_name: ansible/post_playbook_2/role_2/zuul-jobs link_target: trusted/project_2/github.com/vexxhost/zuul-jobs role_path: ansible/post_playbook_2/role_2/zuul-jobs/roles - path: trusted/project_0/github.com/vexxhost/zuul-config/playbooks/base/post-logs.yaml roles: - checkout: master checkout_description: job override ref link_name: ansible/post_playbook_3/role_1/zuul-jobs link_target: trusted/project_1/opendev.org/zuul/zuul-jobs role_path: ansible/post_playbook_3/role_1/zuul-jobs/roles - checkout: main checkout_description: zuul branch link_name: ansible/post_playbook_3/role_2/zuul-jobs link_target: trusted/project_2/github.com/vexxhost/zuul-jobs role_path: ansible/post_playbook_3/role_2/zuul-jobs/roles pre_playbooks: - path: trusted/project_0/github.com/vexxhost/zuul-config/playbooks/base/pre.yaml roles: - checkout: master checkout_description: job override ref link_name: ansible/pre_playbook_0/role_1/zuul-jobs link_target: trusted/project_1/opendev.org/zuul/zuul-jobs role_path: ansible/pre_playbook_0/role_1/zuul-jobs/roles - checkout: main checkout_description: zuul branch link_name: ansible/pre_playbook_0/role_2/zuul-jobs link_target: trusted/project_2/github.com/vexxhost/zuul-jobs role_path: ansible/pre_playbook_0/role_2/zuul-jobs/roles - path: untrusted/project_0/opendev.org/openstack/devstack/playbooks/pre.yaml roles: - checkout: master checkout_description: playbook branch link_name: ansible/pre_playbook_1/role_0/devstack link_target: untrusted/project_0/opendev.org/openstack/devstack role_path: ansible/pre_playbook_1/role_0/devstack/roles - checkout: master checkout_description: job override ref link_name: ansible/pre_playbook_1/role_1/openstack-zuul-jobs link_target: untrusted/project_1/opendev.org/openstack/openstack-zuul-jobs role_path: ansible/pre_playbook_1/role_1/openstack-zuul-jobs/roles - checkout: master checkout_description: job override ref link_name: ansible/pre_playbook_1/role_3/zuul-jobs link_target: untrusted/project_3/opendev.org/zuul/zuul-jobs role_path: ansible/pre_playbook_1/role_3/zuul-jobs/roles - checkout: main checkout_description: zuul branch link_name: ansible/pre_playbook_1/role_4/zuul-jobs link_target: untrusted/project_4/github.com/vexxhost/zuul-jobs role_path: ansible/pre_playbook_1/role_4/zuul-jobs/roles - path: untrusted/project_5/github.com/vexxhost/magnum-cluster-api/zuul.d/playbooks/hydrophone/pre.yml roles: - checkout: master checkout_description: job override ref link_name: ansible/pre_playbook_2/role_1/devstack link_target: untrusted/project_0/opendev.org/openstack/devstack role_path: ansible/pre_playbook_2/role_1/devstack/roles - checkout: master checkout_description: job override ref link_name: ansible/pre_playbook_2/role_2/openstack-zuul-jobs link_target: untrusted/project_1/opendev.org/openstack/openstack-zuul-jobs role_path: ansible/pre_playbook_2/role_2/openstack-zuul-jobs/roles - checkout: master checkout_description: job override ref link_name: ansible/pre_playbook_2/role_4/zuul-jobs link_target: untrusted/project_3/opendev.org/zuul/zuul-jobs role_path: ansible/pre_playbook_2/role_4/zuul-jobs/roles - checkout: main checkout_description: zuul branch link_name: ansible/pre_playbook_2/role_5/zuul-jobs link_target: untrusted/project_4/github.com/vexxhost/zuul-jobs role_path: ansible/pre_playbook_2/role_5/zuul-jobs/roles post_review: false post_timeout: null pre_timeout: null project: canonical_hostname: github.com canonical_name: github.com/vexxhost/magnum-cluster-api name: vexxhost/magnum-cluster-api short_name: magnum-cluster-api src_dir: src/github.com/vexxhost/magnum-cluster-api projects: github.com/novnc/novnc: canonical_hostname: github.com canonical_name: github.com/novnc/novnc checkout: master checkout_description: job override ref commit: 8e1ebdffba02e651c399dacef841f8941f6ad6e4 name: novnc/novnc required: true short_name: novnc src_dir: src/github.com/novnc/novnc github.com/vexxhost/magnum-cluster-api: canonical_hostname: github.com canonical_name: github.com/vexxhost/magnum-cluster-api checkout: main checkout_description: zuul branch commit: ba8c732d24edf4d5e6f416a31cf48019e5e3f0d5 name: vexxhost/magnum-cluster-api required: false short_name: magnum-cluster-api src_dir: src/github.com/vexxhost/magnum-cluster-api opendev.org/openstack/barbican: canonical_hostname: opendev.org canonical_name: opendev.org/openstack/barbican checkout: master checkout_description: job override ref commit: f8a331a40eb21e6c8f37e07794d57aa98b120af9 name: openstack/barbican required: true short_name: barbican src_dir: src/opendev.org/openstack/barbican opendev.org/openstack/cinder: canonical_hostname: opendev.org canonical_name: opendev.org/openstack/cinder checkout: master checkout_description: job override ref commit: 81c48732b13b4512ca63ac0fc91ccd7b0eec2863 name: openstack/cinder required: true short_name: cinder src_dir: src/opendev.org/openstack/cinder opendev.org/openstack/devstack: canonical_hostname: opendev.org canonical_name: opendev.org/openstack/devstack checkout: master checkout_description: job override ref commit: 416d27e89e0c1891921fee2a692086eb8fcd0307 name: openstack/devstack required: true short_name: devstack src_dir: src/opendev.org/openstack/devstack opendev.org/openstack/glance: canonical_hostname: opendev.org canonical_name: opendev.org/openstack/glance checkout: master checkout_description: job override ref commit: 5192128670c67b0d1d4209e88eef97c01c638185 name: openstack/glance required: true short_name: glance src_dir: src/opendev.org/openstack/glance opendev.org/openstack/keystone: canonical_hostname: opendev.org canonical_name: opendev.org/openstack/keystone checkout: master checkout_description: job override ref commit: e5aa2e928db86352d961229893f12c3c7040cdb5 name: openstack/keystone required: true short_name: keystone src_dir: src/opendev.org/openstack/keystone opendev.org/openstack/magnum: canonical_hostname: opendev.org canonical_name: opendev.org/openstack/magnum checkout: master checkout_description: job override ref commit: c62b9e62d1b7a12ece8ae96fe59613a0246e888a name: openstack/magnum required: true short_name: magnum src_dir: src/opendev.org/openstack/magnum opendev.org/openstack/manila: canonical_hostname: opendev.org canonical_name: opendev.org/openstack/manila checkout: master checkout_description: job override ref commit: 7a7b225371ae05386207707cd55fe237a6e2ed92 name: openstack/manila required: true short_name: manila src_dir: src/opendev.org/openstack/manila opendev.org/openstack/neutron: canonical_hostname: opendev.org canonical_name: opendev.org/openstack/neutron checkout: master checkout_description: job override ref commit: 89c1cecfb711e873923f3b6f0af51c44423e8899 name: openstack/neutron required: true short_name: neutron src_dir: src/opendev.org/openstack/neutron opendev.org/openstack/nova: canonical_hostname: opendev.org canonical_name: opendev.org/openstack/nova checkout: master checkout_description: job override ref commit: cfd5474c6438ad7cdb553357a37df5f2150d37ed name: openstack/nova required: true short_name: nova src_dir: src/opendev.org/openstack/nova opendev.org/openstack/octavia: canonical_hostname: opendev.org canonical_name: opendev.org/openstack/octavia checkout: master checkout_description: job override ref commit: b2e084e8734255a5a7027fd2b8c7ae6831ce8f2f name: openstack/octavia required: true short_name: octavia src_dir: src/opendev.org/openstack/octavia opendev.org/openstack/os-test-images: canonical_hostname: opendev.org canonical_name: opendev.org/openstack/os-test-images checkout: master checkout_description: job override ref commit: 5d0367e03788764f41da8effffa14e3eac513201 name: openstack/os-test-images required: true short_name: os-test-images src_dir: src/opendev.org/openstack/os-test-images opendev.org/openstack/ovn-octavia-provider: canonical_hostname: opendev.org canonical_name: opendev.org/openstack/ovn-octavia-provider checkout: master checkout_description: job override ref commit: 83b1d9f26be4f4bcd941a5b339a8858ef250e24f name: openstack/ovn-octavia-provider required: true short_name: ovn-octavia-provider src_dir: src/opendev.org/openstack/ovn-octavia-provider opendev.org/openstack/placement: canonical_hostname: opendev.org canonical_name: opendev.org/openstack/placement checkout: master checkout_description: job override ref commit: e3db398fba279721121892323e6260c6932797c1 name: openstack/placement required: true short_name: placement src_dir: src/opendev.org/openstack/placement opendev.org/openstack/python-magnumclient: canonical_hostname: opendev.org canonical_name: opendev.org/openstack/python-magnumclient checkout: master checkout_description: job override ref commit: bfc9dbc2aa9a113c12e591a87f774a6d986a981f name: openstack/python-magnumclient required: true short_name: python-magnumclient src_dir: src/opendev.org/openstack/python-magnumclient opendev.org/openstack/requirements: canonical_hostname: opendev.org canonical_name: opendev.org/openstack/requirements checkout: master checkout_description: job override ref commit: 2897d874a900d28bbeb8ed59a78193477c76296c name: openstack/requirements required: true short_name: requirements src_dir: src/opendev.org/openstack/requirements opendev.org/openstack/swift: canonical_hostname: opendev.org canonical_name: opendev.org/openstack/swift checkout: master checkout_description: job override ref commit: 8d6d3976dd7901dc4c0858ebb593004064ad520f name: openstack/swift required: true short_name: swift src_dir: src/opendev.org/openstack/swift ref: refs/pull/876/head resources: {} tenant: oss timeout: 7200 topic: null voting: true zuul_copy_output: /etc/ceph: logs /etc/glusterfs/glusterd.vol: logs /etc/libvirt: logs /etc/lvm: logs /etc/resolv.conf: logs /etc/sudoers: logs /etc/sudoers.d: logs /var/log/ceph: logs /var/log/glusterfs: logs /var/log/libvirt: logs /var/log/mysql: logs /var/log/openvswitch: logs /var/log/postgresql: logs /var/log/rabbitmq: logs /var/log/unbound.log: logs '{{ devstack_conf_dir }}/.localrc.auto': logs '{{ devstack_conf_dir }}/.stackenv': logs '{{ devstack_conf_dir }}/local.conf': logs '{{ devstack_conf_dir }}/localrc': logs '{{ devstack_full_log}}': logs '{{ devstack_log_dir }}/atop': logs '{{ devstack_log_dir }}/devstacklog.txt': logs '{{ devstack_log_dir }}/devstacklog.txt.summary': logs '{{ devstack_log_dir }}/dstat-csv.log': logs '{{ devstack_log_dir }}/qemu.coredump': logs '{{ devstack_log_dir }}/tcpdump.pcap': logs '{{ devstack_log_dir }}/worlddump-latest.txt': logs '{{ stage_dir }}/apache': logs '{{ stage_dir }}/apache_config': logs '{{ stage_dir }}/audit.log': logs '{{ stage_dir }}/core': logs '{{ stage_dir }}/deprecations.log': logs '{{ stage_dir }}/df.txt': logs '{{ stage_dir }}/dpkg-l.txt': logs '{{ stage_dir }}/etc': logs '{{ stage_dir }}/iptables.txt': logs '{{ stage_dir }}/listen53.txt': logs '{{ stage_dir }}/mount.txt': logs '{{ stage_dir }}/performance.json': logs '{{ stage_dir }}/pip2-freeze.txt': logs '{{ stage_dir }}/pip3-freeze.txt': logs '{{ stage_dir }}/rpm-qa.txt': logs '{{ stage_dir }}/services.txt': logs '{{ stage_dir }}/verify_tempest_conf.log': logs