bolt 3.20.0 → 3.21.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: cc5c8a79673414cca60534c299b63106ad7abe696bc942e7f913deaf57aa893f
-  data.tar.gz: 0db5d813eb99b4d452e92bde9d8518b10c60b5613a18cb310dffbc7c86c87d64
+  metadata.gz: 161a4fa9b8f36d32bd32964eeab21d3df8588e900f18999ee3ea9f0d56d56aec
+  data.tar.gz: bd8e0f955123e73058904f8e22335a516f1f41dcb5e8bdf4e7ad9bc0c01fe212
 SHA512:
-  metadata.gz: 2d67559bf87d79ec2adf72b6cf1d7de11a6b3ad925062ff7251e4be99240e551e9704c2fff1767979351f4485420cd7a62988f4f31c8bfe6cae940272898f564
-  data.tar.gz: 69c73373a0ee02aca8794f66c48cc0c84f9c6ce56c329648915b6cc15714e399f13716f93af439a8362bc1a6c17d736e76e1920d2243fc1f1cf76e7daeb11a49
+  metadata.gz: 7b27fc4df0159d56610a5c2ebadd0a78234bc4e88815b2705f1000400f786079bddbcff37544024a81bc221afc48c60cfd884d2cee7f18018df1644dc7370548
+  data.tar.gz: 42c757fd3f406760d7b8d01809568270e92fb1ff57771ac07d392e26dd04be2f340a845906b7ea039e095e72e66bf37d56762b4e067db12eedb6773ffd47f492

data/lib/bolt/application.rb

@@ -413,6 +413,178 @@ module Bolt
       { plugins: plugins.list_plugins, modulepath: pal.user_modulepath }
     end
 
+    # Applies one or more policies to the specified targets.
+    #
+    # @param policies [String] A comma-separated list of policies to apply.
+    # @param targets [Array[String]] The list of targets to apply the policies to.
+    # @param noop [Boolean] Whether to apply the policies in no-operation mode.
+    # @return [Bolt::ResultSet]
+    #
+    def apply_policies(policies, targets, noop: false)
+      policies = policies.split(',')
+
+      # Validate that the policies are available to the project.
+      unavailable_policies = policies.reject do |policy|
+        @config.policies&.any? do |known_policy|
+          File.fnmatch?(known_policy, policy, File::FNM_EXTGLOB)
+        end
+      end
+
+      if unavailable_policies.any?
+        command = Bolt::Util.powershell? ? 'Get-BoltPolicy' : 'bolt policy show'
+
+        # CODEREVIEW: Phrasing
+        raise Bolt::Error.new(
+          "The following policies are not available to the project: '#{unavailable_policies.join("', '")}'. "\
+          "You must list policies in a project's 'policies' setting before Bolt can apply them to targets. "\
+          "For a list of policies available to the project, run '#{command}'.",
+          'bolt/unavailable-policy-error'
+        )
+      end
+
+      # Validate that the policies are loadable Puppet classes.
+      unloadable_policies = []
+
+      @pal.in_catalog_compiler do |_|
+        environment = Puppet.lookup(:current_environment)
+
+        unloadable_policies = policies.reject do |policy|
+          environment.known_resource_types.find_hostclass(policy)
+        end
+      end
+
+      # CODEREVIEW: Phrasing
+      if unloadable_policies.any?
+        raise Bolt::Error.new(
+          "The following policies cannot be loaded: '#{unloadable_policies.join("', '")}'. "\
+          "Policies must be a Puppet class saved to a project's or module's manifests directory.",
+          'bolt/unloadable-policy-error'
+        )
+      end
+
+      # Execute a single include statement with all the policies to apply them
+      # to the targets. Yay, reusable code!
+      apply(nil, targets, code: "include #{policies.join(', ')}", noop: noop)
+    end
+
+    # Add a new policy to the project.
+    #
+    # @param name [String] The name of the new policy.
+    # @return [Hash]
+    #
+    def new_policy(name)
+      # Validate the policy name
+      unless name =~ Bolt::Module::CONTENT_NAME_REGEX
+        message = <<~MESSAGE.chomp
+          Invalid policy name '#{name}'. Policy names are composed of one or more name segments
+          separated by double colons '::'.
+
+          Each name segment must begin with a lowercase letter, and can only include lowercase
+          letters, digits, and underscores.
+
+          Examples of valid policy names:
+              - #{@config.project.name}
+              - #{@config.project.name}::my_policy
+        MESSAGE
+
+        raise Bolt::ValidationError, message
+      end
+
+      # Validate that we're not running with the default project
+      if @config.project.name.nil?
+        command = Bolt::Util.powershell? ? 'New-BoltProject -Name <NAME>' : 'bolt project init <NAME>'
+        message = <<~MESSAGE.chomp
+          Can't create a policy for the default Bolt project because it doesn't
+          have a name. Run '#{command}' to create a new project.
+        MESSAGE
+        raise Bolt::ValidationError, message
+      end
+
+      prefix, *name_segments, basename = name.split('::')
+
+      # Error if name is not namespaced to project
+      unless prefix == @config.project.name
+        raise Bolt::ValidationError,
+              "Policy name '#{name}' must begin with project name '#{@config.project.name}'. Did "\
+              "you mean '#{@config.project.name}::#{name}'?"
+      end
+
+      # If the policy name is just the project name, use the special init.pp class
+      basename ||= 'init'
+
+      # Policies can be saved in subdirectories in the 'manifests/' directory
+      policy_dir = File.expand_path(File.join(name_segments), @config.project.manifests)
+      policy     = File.expand_path("#{basename}.pp", policy_dir)
+
+      # Ensure the policy does not already exist
+      if File.exist?(policy)
+        raise Bolt::Error.new(
+          "A policy with the name '#{name}' already exists at '#{policy}', nothing to do.",
+          'bolt/existing-policy-error'
+        )
+      end
+
+      # Create the policy directory structure in the current project
+      begin
+        FileUtils.mkdir_p(policy_dir)
+      rescue Errno::EEXIST => e
+        raise Bolt::Error.new(
+          "#{e.message}; unable to create manifests directory '#{policy_dir}'",
+          'bolt/existing-file-error'
+        )
+      end
+
+      # Create the new policy
+      begin
+        File.write(policy, <<~POLICY)
+          class #{name} {
+
+          }
+        POLICY
+      rescue Errno::EACCES => e
+        raise Bolt::FileError.new("#{e.message}; unable to create policy", policy)
+      end
+
+      # Update the project configuration to include the new policy
+      project_config = Bolt::Util.read_yaml_hash(@config.project.project_file, 'project config')
+
+      # Add the 'policies' key if it does not exist and de-dupiclate entries
+      project_config['policies'] ||= []
+      project_config['policies'] <<  name
+      project_config['policies'].uniq!
+
+      begin
+        File.write(@config.project.project_file, project_config.to_yaml)
+      rescue Errno::EACCES => e
+        raise Bolt::FileError.new(
+          "#{e.message}; unable to update project configuration",
+          @config.project.project_file
+        )
+      end
+
+      { name: name, path: policy }
+    end
+
+    # List policies available to the project.
+    #
+    # @return [Hash]
+    #
+    def list_policies
+      unless @config.policies
+        command = Bolt::Util.powershell? ? 'New-BoltPolicy -Name <NAME>' : 'bolt policy new <NAME>'
+
+        raise Bolt::Error.new(
+          "Project configuration file #{@config.project.project_file} does not "\
+          "specify any policies. You can add policies to the project by including "\
+          "a 'policies' key or creating a new policy using the '#{command}' "\
+          "command.",
+          'bolt/no-policies-error'
+        )
+      end
+
+      { policies: @config.policies.uniq, modulepath: pal.user_modulepath }
+    end
+
     # Initialize the current directory as a Bolt project.
     #
     # @param name [String] The name of the project.

data/lib/bolt/bolt_option_parser.rb

@@ -114,6 +114,21 @@ module Bolt
           { flags: OPTIONS[:global],
             banner: PLUGIN_HELP }
         end
+      when 'policy'
+        case action
+        when 'apply'
+          { flags: ACTION_OPTS + %w[compile-concurrency hiera-config noop],
+            banner: POLICY_APPLY_HELP }
+        when 'new'
+          { flags: OPTIONS[:global] + PROJECT_PATHS,
+            banner: POLICY_NEW_HELP }
+        when 'show'
+          { flags: OPTIONS[:global] + PROJECT_PATHS,
+            banner: POLICY_SHOW_HELP }
+        else
+          { flags: OPTIONS[:global],
+            banner: POLICY_HELP }
+        end
       when 'project'
         case action
         when 'init'
@@ -202,6 +217,7 @@ module Bolt
           lookup            Look up a value with Hiera
           plan              Convert, create, show, and run Bolt plans
           plugin            Show available plugins
+          policy            Apply, create, and show policies
           project           Create and migrate Bolt projects
           script            Upload a local script and run it remotely
           secret            Create encryption keys and encrypt and decrypt values
@@ -250,7 +266,7 @@ module Bolt
 
     COMMAND_RUN_HELP = <<~HELP
       #{colorize(:cyan, 'Name')}
-          run
+          command run
 
       #{colorize(:cyan, 'Usage')}
           bolt command run <command> {--targets TARGETS | --query QUERY | --rerun FILTER}
@@ -286,7 +302,7 @@ module Bolt
 
     FILE_DOWNLOAD_HELP = <<~HELP
       #{colorize(:cyan, 'Name')}
-          download
+          file download
 
       #{colorize(:cyan, 'Usage')}
           bolt file download <source> <destination> {--targets TARGETS | --query QUERY | --rerun FILTER}
@@ -309,7 +325,7 @@ module Bolt
 
     FILE_UPLOAD_HELP = <<~HELP
       #{colorize(:cyan, 'Name')}
-          upload
+          file upload
 
       #{colorize(:cyan, 'Usage')}
           bolt file upload <source> <destination> {--targets TARGETS | --query QUERY | --rerun FILTER}
@@ -344,7 +360,7 @@ module Bolt
 
     GROUP_SHOW_HELP = <<~HELP
       #{colorize(:cyan, 'Name')}
-          show
+          group show
 
       #{colorize(:cyan, 'Usage')}
           bolt group show [options]
@@ -395,7 +411,7 @@ module Bolt
 
     INVENTORY_SHOW_HELP = <<~HELP
       #{colorize(:cyan, 'Name')}
-          show
+          inventory show
 
       #{colorize(:cyan, 'Usage')}
           bolt inventory show [options]
@@ -453,7 +469,7 @@ module Bolt
 
     MODULE_ADD_HELP = <<~HELP
       #{colorize(:cyan, 'Name')}
-          add
+          module add
       
       #{colorize(:cyan, 'Usage')}
           bolt module add <module> [options]
@@ -471,7 +487,7 @@ module Bolt
 
     MODULE_GENERATETYPES_HELP = <<~HELP
       #{colorize(:cyan, 'Name')}
-          generate-types
+          module generate-types
 
       #{colorize(:cyan, 'Usage')}
           bolt module generate-types [options]
@@ -486,7 +502,7 @@ module Bolt
 
     MODULE_INSTALL_HELP = <<~HELP
       #{colorize(:cyan, 'Name')}
-          install
+          module install
       
       #{colorize(:cyan, 'Usage')}
           bolt module install [options]
@@ -504,7 +520,7 @@ module Bolt
 
     MODULE_SHOW_HELP = <<~HELP
       #{colorize(:cyan, 'Name')}
-          show
+          module show
 
       #{colorize(:cyan, 'Usage')}
           bolt module show [module name] [options]
@@ -541,7 +557,7 @@ module Bolt
 
     PLAN_CONVERT_HELP = <<~HELP
       #{colorize(:cyan, 'Name')}
-          convert
+          plan convert
 
       #{colorize(:cyan, 'Usage')}
           bolt plan convert <plan name> [options]
@@ -564,7 +580,7 @@ module Bolt
 
     PLAN_NEW_HELP = <<~HELP
       #{colorize(:cyan, 'Name')}
-          new
+          plan new
       
       #{colorize(:cyan, 'Usage')}
           bolt plan new <plan name> [options]
@@ -581,7 +597,7 @@ module Bolt
 
     PLAN_RUN_HELP = <<~HELP
       #{colorize(:cyan, 'Name')}
-          run
+          plan run
 
       #{colorize(:cyan, 'Usage')}
           bolt plan run <plan name> [parameters] [options]
@@ -598,7 +614,7 @@ module Bolt
 
     PLAN_SHOW_HELP = <<~HELP
       #{colorize(:cyan, 'Name')}
-          show
+          plan show
 
       #{colorize(:cyan, 'Usage')}
           bolt plan show [plan name] [options]
@@ -641,7 +657,7 @@ module Bolt
 
     PLUGIN_SHOW_HELP = <<~HELP
       #{colorize(:cyan, 'Name')}
-          show
+          plugin show
 
       #{colorize(:cyan, 'Usage')}
           bolt plugin show [options]
@@ -653,6 +669,55 @@ module Bolt
           Learn more about Bolt plugins at https://pup.pt/bolt-plugins.
     HELP
 
+    POLICY_HELP = <<~HELP
+      #{colorize(:cyan, 'Name')}
+          policy
+
+      #{colorize(:cyan, 'Usage')}
+          bolt policy <action> [options]
+
+      #{colorize(:cyan, 'Description')}
+          Apply, create, and show policies.
+
+      #{colorize(:cyan, 'Actions')}
+          apply         Apply a policy to the specified targets
+          new           Create a new policy in the current project
+          show          Show available policy
+    HELP
+
+    POLICY_APPLY_HELP = <<~HELP
+      #{colorize(:cyan, 'Name')}
+          policy apply
+
+      #{colorize(:cyan, 'Usage')}
+          bolt policy apply <policy> [options]
+
+      #{colorize(:cyan, 'Description')}
+          Apply a policy to the specified targets.
+    HELP
+
+    POLICY_NEW_HELP = <<~HELP
+      #{colorize(:cyan, 'Name')}
+          policy new
+
+      #{colorize(:cyan, 'Usage')}
+          bolt policy new <policy> [options]
+
+      #{colorize(:cyan, 'Description')}
+          Create a new policy in the current project.
+    HELP
+
+    POLICY_SHOW_HELP = <<~HELP
+      #{colorize(:cyan, 'Name')}
+          policy show
+
+      #{colorize(:cyan, 'Usage')}
+          bolt policy show [options]
+
+      #{colorize(:cyan, 'Description')}
+          Show available policies.
+    HELP
+
     PROJECT_HELP = <<~HELP
       #{colorize(:cyan, 'Name')}
           project
@@ -673,7 +738,7 @@ module Bolt
 
     PROJECT_INIT_HELP = <<~HELP
       #{colorize(:cyan, 'Name')}
-          init
+          project init
 
       #{colorize(:cyan, 'Usage')}
           bolt project init [name] [options]
@@ -697,7 +762,7 @@ module Bolt
 
     PROJECT_MIGRATE_HELP = <<~HELP
       #{colorize(:cyan, 'Name')}
-          migrate
+          project migrate
 
       #{colorize(:cyan, 'Usage')}
           bolt project migrate [options]
@@ -729,7 +794,7 @@ module Bolt
 
     SCRIPT_RUN_HELP = <<~HELP
       #{colorize(:cyan, 'Name')}
-          run
+          script run
 
       #{colorize(:cyan, 'Usage')}
           bolt script run <script> [arguments] {--targets TARGETS | --query QUERY | --rerun FILTER}
@@ -770,7 +835,7 @@ module Bolt
 
     SECRET_CREATEKEYS_HELP = <<~HELP
       #{colorize(:cyan, 'Name')}
-          createkeys
+          secret createkeys
 
       #{colorize(:cyan, 'Usage')}
           bolt secret createkeys [options]
@@ -784,7 +849,7 @@ module Bolt
 
     SECRET_DECRYPT_HELP = <<~HELP
       #{colorize(:cyan, 'Name')}
-          decrypt
+          secret decrypt
 
       #{colorize(:cyan, 'Usage')}
           bolt secret decrypt <ciphertext> [options]
@@ -798,7 +863,7 @@ module Bolt
 
     SECRET_ENCRYPT_HELP = <<~HELP
       #{colorize(:cyan, 'Name')}
-          encrypt
+          secret encrypt
 
       #{colorize(:cyan, 'Usage')}
         bolt secret encrypt <plaintext> [options]
@@ -830,7 +895,7 @@ module Bolt
 
     TASK_RUN_HELP = <<~HELP
       #{colorize(:cyan, 'Name')}
-          run
+          task run
 
       #{colorize(:cyan, 'Usage')}
           bolt task run <task name> [parameters] {--targets TARGETS | --query QUERY | --rerun FILTER}
@@ -850,7 +915,7 @@ module Bolt
 
     TASK_SHOW_HELP = <<~HELP
       #{colorize(:cyan, 'Name')}
-          show
+          task show
 
       #{colorize(:cyan, 'Usage')}
           bolt task show [task name] [options]

data/lib/bolt/cli.rb

@@ -44,6 +44,7 @@ module Bolt
       'module'    => %w[add generate-types install show],
       'plan'      => %w[show run convert new],
       'plugin'    => %w[show],
+      'policy'    => %w[apply new show],
       'project'   => %w[init migrate],
       'script'    => %w[run],
       'secret'    => %w[encrypt decrypt createkeys],
@@ -287,6 +288,26 @@ module Bolt
         raise Bolt::CLIError, "Must specify a plan."
       end
 
+      if options[:subcommand] == 'policy'
+        if options[:action] == 'apply' && !options[:object]
+          raise Bolt::CLIError, "Must specify one or more policies to apply."
+        end
+
+        if options[:action] == 'apply' && options[:leftovers].any?
+          raise Bolt::CLIError, "Unknown argument(s) #{options[:leftovers].join(', ')}. "\
+                                "To apply multiple policies, provide a comma-separated list of "\
+                                "policy names."
+        end
+
+        if options[:action] == 'new' && !options[:object]
+          raise Bolt::CLIError, "Must specify a name for the new policy."
+        end
+
+        if options[:action] == 'show' && options[:object]
+          raise Bolt::CLIError, "Unknown argument #{options[:object]}."
+        end
+      end
+
       if options[:subcommand] == 'module' && options[:action] == 'install' && options[:object]
         command = Bolt::Util.powershell? ? 'Add-BoltModule -Module' : 'bolt module add'
         raise Bolt::CLIError, "Invalid argument '#{options[:object]}'. To add a new module to "\
@@ -324,7 +345,9 @@ module Bolt
       end
 
       if options[:noop] &&
-         !(options[:subcommand] == 'task' && options[:action] == 'run') && options[:subcommand] != 'apply'
+         !(options[:subcommand] == 'task' && options[:action] == 'run') &&
+         options[:subcommand] != 'apply' &&
+         options[:action] != 'apply'
         raise Bolt::CLIError,
               "Option '--noop' can only be specified when running a task or applying manifest code"
       end
@@ -631,6 +654,26 @@ module Bolt
         outputter.print_plugin_list(**app.list_plugins)
         SUCCESS
 
+      when 'policy'
+        Bolt::Logger.warn('policy_command', 'This command is experimental and is subject to change.')
+        case action
+        when 'apply'
+          results = outputter.spin do
+            app.apply_policies(options[:object], options[:targets], **options.slice(:noop))
+          end
+          rerun.update(results)
+          app.shutdown
+          outputter.print_apply_result(results)
+          results.ok? ? SUCCESS : FAILURE
+        when 'new'
+          result = app.new_policy(options[:object])
+          outputter.print_new_policy(**result)
+          SUCCESS
+        when 'show'
+          outputter.print_policy_list(**app.list_policies)
+          SUCCESS
+        end
+
       when 'project'
         case action
         when 'init'

data/lib/bolt/config/options.rb

@@ -396,6 +396,15 @@ module Bolt
           _plugin: false,
           _example: { "pkcs7" => { "keysize" => 1024 } }
         },
+        "policies" => {
+          description: "A list of policy names and glob patterns to filter the project's policies by. This option "\
+                       "is used to specify which policies are available to a project and can be applied to targets. "\
+                       "When this option is not configured, policies are not available to the project and cannot "\
+                       "be applied to targets.",
+          type: Array,
+          _plugin: false,
+          _example: ["myproject::apache", "myproject::postgres"]
+        },
         "puppetdb" => {
           description: "A map containing options for [configuring the Bolt PuppetDB "\
                        "client](bolt_connect_puppetdb.md).",
@@ -619,6 +628,7 @@ module Bolt
         plugin-cache
         plugin-hooks
         plugins
+        policies
         puppetdb
         save-rerun
         spinner

data/lib/bolt/config.rb

@@ -439,6 +439,10 @@ module Bolt
       @data['plugin-hooks']
     end
 
+    def policies
+      @data['policies']
+    end
+
     def trusted_external
       @data['trusted-external-command']
     end

data/lib/bolt/outputter/human.rb

@@ -658,6 +658,49 @@ module Bolt
         OUTPUT
       end
 
+      def print_new_policy(name:, path:)
+        if Bolt::Util.powershell?
+          apply_command = "Invoke-BoltPolicy -Name #{name} -Targets <TARGETS>"
+          show_command  = 'Get-BoltPolicy'
+        else
+          apply_command = "bolt policy apply #{name} --targets <TARGETS>"
+          show_command  = 'bolt policy show'
+        end
+
+        print_message(<<~OUTPUT)
+          Created policy '#{name}' at '#{path}'
+          
+          Apply this policy with:
+              #{apply_command}
+          Show available policies with:
+              #{show_command}
+        OUTPUT
+      end
+
+      # Print policies and the modulepath they are loaded from.
+      #
+      # @param policies [Array] The list of available policies.
+      # @param modulepath [Array] The project's modulepath.
+      #
+      def print_policy_list(policies:, modulepath:)
+        info = +''
+
+        info << colorize(:cyan, "Policies\n")
+
+        if policies.any?
+          policies.sort.each { |policy| info << indent(2, "#{policy}\n") }
+        else
+          info << indent(2, "No available policies\n")
+        end
+
+        info << "\n"
+
+        info << colorize(:cyan, "Modulepath\n")
+        info << indent(2, modulepath.join(File::PATH_SEPARATOR).to_s)
+
+        @stream.puts info.chomp
+      end
+
       # Print target names and where they came from.
       #
       # @param adhoc [Hash] Adhoc targets provided on the command line.

data/lib/bolt/outputter/json.rb

@@ -87,6 +87,10 @@ module Bolt
         @stream.puts plan.to_json
       end
 
+      def print_policy_list(**kwargs)
+        print_table(**kwargs)
+      end
+
       def print_plans(**kwargs)
         print_table(**kwargs)
       end
@@ -95,6 +99,10 @@ module Bolt
         print_table(**kwargs)
       end
 
+      def print_new_policy(**kwargs)
+        print_table(**kwargs)
+      end
+
       def print_apply_result(apply_result)
         @stream.puts apply_result.to_json
       end

data/lib/bolt/pal.rb

@@ -238,6 +238,20 @@ module Bolt
       Puppet.override(opts, &block)
     end
 
+    def in_catalog_compiler
+      with_puppet_settings do
+        Puppet.override(bolt_project: @project) do
+          Puppet::Pal.in_tmp_environment('bolt', modulepath: full_modulepath) do |pal|
+            pal.with_catalog_compiler do |compiler|
+              yield compiler
+            end
+          end
+        end
+      rescue Puppet::Error => e
+        raise PALError.from_error(e)
+      end
+    end
+
     def in_plan_compiler(executor, inventory, pdb_client, applicator = nil)
       with_bolt_executor(executor, inventory, pdb_client, applicator) do
         # TODO: remove this call and see if anything breaks when

data/lib/bolt/project.rb

@@ -14,7 +14,8 @@ module Bolt
     attr_reader :path, :data, :inventory_file, :hiera_config,
                 :puppetfile, :rerunfile, :type, :resource_types, :project_file,
                 :downloads, :plans_path, :modulepath, :managed_moduledir,
-                :backup_dir, :plugin_cache_file, :plan_cache_file, :task_cache_file
+                :backup_dir, :plugin_cache_file, :plan_cache_file, :task_cache_file,
+                :manifests
 
     def self.default_project
       create_project(File.expand_path(File.join('~', '.puppetlabs', 'bolt')), 'user')
@@ -116,6 +117,7 @@ module Bolt
       @plan_cache_file   = @path + '.plan_cache.json'
       @task_cache_file   = @path + '.task_cache.json'
       @modulepath        = [(@path + 'modules').to_s]
+      @manifests         = @path + 'manifests'
 
       if (tc = Bolt::Config::INVENTORY_OPTIONS.keys & data.keys).any?
         Bolt::Logger.warn(

data/lib/bolt/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Bolt
-  VERSION = '3.20.0'
+  VERSION = '3.21.0'
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: bolt
 version: !ruby/object:Gem::Version
-  version: 3.20.0
+  version: 3.21.0
 platform: ruby
 authors:
 - Puppet
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2021-10-26 00:00:00.000000000 Z
+date: 2021-12-16 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: addressable