SlideShare a Scribd company logo

The Evolution of Puppet: Key Changes and Modernization Tips

Puppet, profile picture
Puppet

The document provides modernization tips and key changes in Puppet development from 2014 to 2023, emphasizing the importance of using appropriate tools such as the Puppet Development Kit and VS Code extension. It highlights the transition from older practices to newer methodologies, including the shift to EPP templates and the introduction of data types for validation and security. Additionally, it discusses best practices for managing packages, facts, roles and profiles, and the use of custom facts to enhance Puppet configurations.

Technology
1 of 20
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
© Perforce Software, Inc. Puppet Evolution Key Changes and Modernization Tips David Sandilands Puppet Community and Developer Relationship Lead February 2025
© Perforce Software, Inc. • Puppet Development Kit (PDK) • Puppet VS Code extension Use the Right Tools • Dev tools and approaches from Vox Pupuli • AI like GitHub CoPilot (responsibly)
© Perforce Software, Inc. Packages • In 0.x versions of Puppet, some users found having too many package resources slowed everything down. • So they created repos where a profile could install a single package and pull all dependencies down.
© Perforce Software, Inc. Stages DON’T Just DON’T Typical early setups, replicating the flow of scripts. Makes maintenance and expansion hard.
© Perforce Software, Inc. site.pp and Module Defaults • Do not use style defaults outside of site.pp • Legacy style defaults "should occur only at the top scope in your site manifest … because resource defaults propagate through dynamic scope, which can have unpredictable effects far away from where the default was declared." • site.pp can create confusion
© Perforce Software, Inc. Data Types • Introduced during Puppet 4 2015, default to strict in Puppet 8 2023 • Validation and security • AI can be pretty good at putting in data types • Don’t forget an APL returning undef will error on Puppet 8
© Perforce Software, Inc. Overuse of Templates and Content • file_line was introduced in stdlib 2.1 in 2014 around about Puppet 3 • Before that, people used content/templates — or you battled with Augeas • A lot of things were just left hardcoded or unmanaged
© Perforce Software, Inc. params.pp • Before we got to Hiera 5 in 2016 with Puppet 5 • With hiera, we can simplify: • No inherit from another class • No need to use = operator • No case/ifs
© Perforce Software, Inc. Facts • Legacy facts were introduced in 2014 with the inclusion of Facter 2 in Puppet 3.2 • Finally removed (by default) in Puppet 8 • Use the facts['networking']['hostname’] instead of top scoped variables
© Perforce Software, Inc. Use the Full Features of Custom Facts • Most people right as simple script and leave it • Timeouts • Weighted resolutions • Confine and features • Rescue blocks
© Perforce Software, Inc. • augeas • cron • host • mount • scheduled_task • selboolean • selmodule Core Types Removed In Puppet 6 (2018), a number of core types were moved to modules. Make sure you add to Puppetfile and fixtures • ssh_authorized_key • sshkey • yumrepo • zfs • zone • zpool
© Perforce Software, Inc. Roles and Profiles • Way back in 2014, Gary Larizza first talked about roles and profiles • Gary always highlighted the idea that patterns weren’t supposed to be followed religiously
© Perforce Software, Inc. Move from ERB to ERP Templates • EPP v ERB • EPP is faster (due to only scoping facts needed) • EPP provides greater security as it has a limited scope and validates all data • ERB does not validate and drops non-existent variables • EPP comes with render and validate tools • EPP can process Sensitive without unwrapping • Watch out for voxpupuli/erb2epp
© Perforce Software, Inc. Sensitive Data • Keep your data secure throughout • EPP Use hiera-eyaml at rest in hiera • Use Sensitive data in the catalog • Use node_encrypt for transport
© Perforce Software, Inc. Sensitive Templates and Deferred Functions • Puppet 6.20 and later can evaluate Sensitive instead of having to unwrap in the template • As of Puppet 7.17 / 8, deferred functions are lazily evaluated
© Perforce Software, Inc. Trusted Facts and Commands • Introduced in Puppet 6.11 (2021) to access external data or make hiera and classification flexible • Check out puppetlabs/puppet-data-service on G itHub • Puppet Docs: Integration with External Data Provid ers
© Perforce Software, Inc. Lambdas • Inline templates or defined types were common before Puppet 4 • 17 functions create confusion • Just look at the most common • each 2799 • map 425 • filter 233 • reduce 141 • unique 168
© Perforce Software, Inc. Outdated Modules • Use the Forge Compatibility Report to check for outdated modules • Subscribe to individual modules to get notified when there's an update
© Perforce Software, Inc. Get Rid of Unused Code and Modules • voxpupuli/puppet-ghostbuster on GitHub
© Perforce Software, Inc. Testing and Debugging • At least add a compile test, PDK --add-tests • Enforce coverage completion • Use Onceover • Use AI responsibly

More Related Content

PPTX
Can You Help Me Upgrade to Puppet 8? Tips, Tools & Best Practices for Your Up...
Puppet
 
PPTX
The State of Puppet in 2025: A Presentation from Developer Relations Lead Dav...
Puppet
 
PPTX
Puppetizing Your Organization
Robert Nelson
 
PDF
Strategies for Puppet code upgrade and refactoring
Alessandro Franceschi
 
PDF
Modules of the twenties
Puppet
 
PDF
From SaltStack to Puppet and beyond...
Yury Bushmelev
 
KEY
Portable infrastructure with puppet
lkanies
 
PDF
PuppetConf 2017: No Server Left Behind - Miguel Di Ciurcio Filho, Instruct
Puppet
 
Can You Help Me Upgrade to Puppet 8? Tips, Tools & Best Practices for Your Up...
Puppet
 
The State of Puppet in 2025: A Presentation from Developer Relations Lead Dav...
Puppet
 
Puppetizing Your Organization
Robert Nelson
 
Strategies for Puppet code upgrade and refactoring
Alessandro Franceschi
 
Modules of the twenties
Puppet
 
From SaltStack to Puppet and beyond...
Yury Bushmelev
 
Portable infrastructure with puppet
lkanies
 
PuppetConf 2017: No Server Left Behind - Miguel Di Ciurcio Filho, Instruct
Puppet
 

Similar to The Evolution of Puppet: Key Changes and Modernization Tips (20)

PPTX
Accelerate your Journey to Pervasive Automation 05.03.2018
Puppet
 
PPTX
Bolt Dynamic Inventory: Making Puppet Easier
Puppet
 
PDF
PuppetConf track overview: Puppet Applied
Puppet
 
PDF
Puppet Camp Sydney 2015: The (Im)perfect Puppet Module
Puppet
 
PDF
Improving Operations Efficiency with Puppet
Nicolas Brousse
 
PDF
Puppet: From 0 to 100 in 30 minutes
Alessandro Franceschi
 
PDF
Puppet - The IT automation software
agenedy
 
PDF
[Celix] Scaling DevOps with Puppet and Perforce
Perforce
 
PDF
Puppet getting started by Dirk Götz
NETWAYS
 
PDF
PuppetConf track overview: Inside Puppet
Puppet
 
PDF
Puppet overview
joshbeard
 
PDF
Workflow story: Theory versus Practice in large enterprises by Marcin Piebiak
NETWAYS
 
PDF
Workflow story: Theory versus practice in Large Enterprises
Puppet
 
PPTX
Enjoying the Journey from Puppet 3.x to Puppet 4.x (PuppetConf 2016)
Robert Nelson
 
PDF
Puppet Camp Berlin 2015: Nigel Kersten | Puppet Keynote
NETWAYS
 
PDF
Puppet Camp Berlin 2015: Puppet Keynote
Puppet
 
PPTX
Introduction to Puppet Enterprise 2016.5
Puppet
 
PDF
PuppetConf 2016: Enjoying the Journey from Puppet 3.x to 4.x – Rob Nelson, AT&T
Puppet
 
PPTX
Puppet camp amsterdam
Vladimir Lazarenko
 
ODP
Puppet slides for intelligrape
Sharad Aggarwal
 
Accelerate your Journey to Pervasive Automation 05.03.2018
Puppet
 
Bolt Dynamic Inventory: Making Puppet Easier
Puppet
 
PuppetConf track overview: Puppet Applied
Puppet
 
Puppet Camp Sydney 2015: The (Im)perfect Puppet Module
Puppet
 
Improving Operations Efficiency with Puppet
Nicolas Brousse
 
Puppet: From 0 to 100 in 30 minutes
Alessandro Franceschi
 
Puppet - The IT automation software
agenedy
 
[Celix] Scaling DevOps with Puppet and Perforce
Perforce
 
Puppet getting started by Dirk Götz
NETWAYS
 
PuppetConf track overview: Inside Puppet
Puppet
 
Puppet overview
joshbeard
 
Workflow story: Theory versus Practice in large enterprises by Marcin Piebiak
NETWAYS
 
Workflow story: Theory versus practice in Large Enterprises
Puppet
 
Enjoying the Journey from Puppet 3.x to Puppet 4.x (PuppetConf 2016)
Robert Nelson
 
Puppet Camp Berlin 2015: Nigel Kersten | Puppet Keynote
NETWAYS
 
Puppet Camp Berlin 2015: Puppet Keynote
Puppet
 
Introduction to Puppet Enterprise 2016.5
Puppet
 
PuppetConf 2016: Enjoying the Journey from Puppet 3.x to 4.x – Rob Nelson, AT&T
Puppet
 
Puppet camp amsterdam
Vladimir Lazarenko
 
Puppet slides for intelligrape
Sharad Aggarwal
 
Ad

More from Puppet (20)

PPTX
Puppet Community Day: Planning the Future Together
Puppet
 
PPTX
Customizing Reporting with the Puppet Report Processor
Puppet
 
PPTX
Puppet at ConfigMgmtCamp 2025 Sponsor Deck
Puppet
 
PPTX
Let Red be Red and Green be Green: The Automated Workflow Restarter in GitHub...
Puppet
 
PDF
Puppet camp2021 testing modules and controlrepo
Puppet
 
PPTX
Puppetcamp r10kyaml
Puppet
 
PDF
2021 04-15 operational verification (with notes)
Puppet
 
PPTX
Puppet camp vscode
Puppet
 
PDF
Applying Roles and Profiles method to compliance code
Puppet
 
PPTX
KGI compliance as-code approach
Puppet
 
PDF
Enforce compliance policy with model-driven automation
Puppet
 
PDF
Keynote: Puppet camp compliance
Puppet
 
PPTX
Automating it management with Puppet + ServiceNow
Puppet
 
PPTX
Puppet: The best way to harden Windows
Puppet
 
PPTX
Simplified Patch Management with Puppet - Oct. 2020
Puppet
 
PPTX
Accelerating azure adoption with puppet
Puppet
 
PDF
Puppet catalog Diff; Raphael Pinson
Puppet
 
PPTX
ServiceNow and Puppet- better together, Kevin Reeuwijk
Puppet
 
PDF
Take control of your dev ops dumping ground
Puppet
 
PDF
100% Puppet Cloud Deployment of Legacy Software
Puppet
 
Puppet Community Day: Planning the Future Together
Puppet
 
Customizing Reporting with the Puppet Report Processor
Puppet
 
Puppet at ConfigMgmtCamp 2025 Sponsor Deck
Puppet
 
Let Red be Red and Green be Green: The Automated Workflow Restarter in GitHub...
Puppet
 
Puppet camp2021 testing modules and controlrepo
Puppet
 
Puppetcamp r10kyaml
Puppet
 
2021 04-15 operational verification (with notes)
Puppet
 
Puppet camp vscode
Puppet
 
Applying Roles and Profiles method to compliance code
Puppet
 
KGI compliance as-code approach
Puppet
 
Enforce compliance policy with model-driven automation
Puppet
 
Keynote: Puppet camp compliance
Puppet
 
Automating it management with Puppet + ServiceNow
Puppet
 
Puppet: The best way to harden Windows
Puppet
 
Simplified Patch Management with Puppet - Oct. 2020
Puppet
 
Accelerating azure adoption with puppet
Puppet
 
Puppet catalog Diff; Raphael Pinson
Puppet
 
ServiceNow and Puppet- better together, Kevin Reeuwijk
Puppet
 
Take control of your dev ops dumping ground
Puppet
 
100% Puppet Cloud Deployment of Legacy Software
Puppet
 
Ad

Recently uploaded (20)

PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PPTX
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
PDF
GDG Cloud Iasi [PUBLIC] Florian Blaga - Unveiling the Evolution of Cybersecur...
athlonica
 
PDF
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PDF
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
PDF
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PPTX
Cloud computing and distributed systems.
kkkkkhan
 
PDF
Modernizing your data center with Dell and AMD
Principled Technologies
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PDF
GamePlan Trading System Review: Professional Trader's Honest Take
SOFTTECHHUB
 
DOCX
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
GDG Cloud Iasi [PUBLIC] Florian Blaga - Unveiling the Evolution of Cybersecur...
athlonica
 
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
Cloud computing and distributed systems.
kkkkkhan
 
Modernizing your data center with Dell and AMD
Principled Technologies
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
Teaching material agriculture food technology
LiaRayya
 
GamePlan Trading System Review: Professional Trader's Honest Take
SOFTTECHHUB
 
The AUB Centre for AI in Media Proposal.docx
GAONE9
 

The Evolution of Puppet: Key Changes and Modernization Tips

  • 1. © Perforce Software, Inc. Puppet Evolution Key Changes and Modernization Tips David Sandilands Puppet Community and Developer Relationship Lead February 2025
  • 2. © Perforce Software, Inc. • Puppet Development Kit (PDK) • Puppet VS Code extension Use the Right Tools • Dev tools and approaches from Vox Pupuli • AI like GitHub CoPilot (responsibly)
  • 3. © Perforce Software, Inc. Packages • In 0.x versions of Puppet, some users found having too many package resources slowed everything down. • So they created repos where a profile could install a single package and pull all dependencies down.
  • 4. © Perforce Software, Inc. Stages DON’T Just DON’T Typical early setups, replicating the flow of scripts. Makes maintenance and expansion hard.
  • 5. © Perforce Software, Inc. site.pp and Module Defaults • Do not use style defaults outside of site.pp • Legacy style defaults "should occur only at the top scope in your site manifest … because resource defaults propagate through dynamic scope, which can have unpredictable effects far away from where the default was declared." • site.pp can create confusion
  • 6. © Perforce Software, Inc. Data Types • Introduced during Puppet 4 2015, default to strict in Puppet 8 2023 • Validation and security • AI can be pretty good at putting in data types • Don’t forget an APL returning undef will error on Puppet 8
  • 7. © Perforce Software, Inc. Overuse of Templates and Content • file_line was introduced in stdlib 2.1 in 2014 around about Puppet 3 • Before that, people used content/templates — or you battled with Augeas • A lot of things were just left hardcoded or unmanaged
  • 8. © Perforce Software, Inc. params.pp • Before we got to Hiera 5 in 2016 with Puppet 5 • With hiera, we can simplify: • No inherit from another class • No need to use = operator • No case/ifs
  • 9. © Perforce Software, Inc. Facts • Legacy facts were introduced in 2014 with the inclusion of Facter 2 in Puppet 3.2 • Finally removed (by default) in Puppet 8 • Use the facts['networking']['hostname’] instead of top scoped variables
  • 10. © Perforce Software, Inc. Use the Full Features of Custom Facts • Most people right as simple script and leave it • Timeouts • Weighted resolutions • Confine and features • Rescue blocks
  • 11. © Perforce Software, Inc. • augeas • cron • host • mount • scheduled_task • selboolean • selmodule Core Types Removed In Puppet 6 (2018), a number of core types were moved to modules. Make sure you add to Puppetfile and fixtures • ssh_authorized_key • sshkey • yumrepo • zfs • zone • zpool
  • 12. © Perforce Software, Inc. Roles and Profiles • Way back in 2014, Gary Larizza first talked about roles and profiles • Gary always highlighted the idea that patterns weren’t supposed to be followed religiously
  • 13. © Perforce Software, Inc. Move from ERB to ERP Templates • EPP v ERB • EPP is faster (due to only scoping facts needed) • EPP provides greater security as it has a limited scope and validates all data • ERB does not validate and drops non-existent variables • EPP comes with render and validate tools • EPP can process Sensitive without unwrapping • Watch out for voxpupuli/erb2epp
  • 14. © Perforce Software, Inc. Sensitive Data • Keep your data secure throughout • EPP Use hiera-eyaml at rest in hiera • Use Sensitive data in the catalog • Use node_encrypt for transport
  • 15. © Perforce Software, Inc. Sensitive Templates and Deferred Functions • Puppet 6.20 and later can evaluate Sensitive instead of having to unwrap in the template • As of Puppet 7.17 / 8, deferred functions are lazily evaluated
  • 16. © Perforce Software, Inc. Trusted Facts and Commands • Introduced in Puppet 6.11 (2021) to access external data or make hiera and classification flexible • Check out puppetlabs/puppet-data-service on G itHub • Puppet Docs: Integration with External Data Provid ers
  • 17. © Perforce Software, Inc. Lambdas • Inline templates or defined types were common before Puppet 4 • 17 functions create confusion • Just look at the most common • each 2799 • map 425 • filter 233 • reduce 141 • unique 168
  • 18. © Perforce Software, Inc. Outdated Modules • Use the Forge Compatibility Report to check for outdated modules • Subscribe to individual modules to get notified when there's an update
  • 19. © Perforce Software, Inc. Get Rid of Unused Code and Modules • voxpupuli/puppet-ghostbuster on GitHub
  • 20. © Perforce Software, Inc. Testing and Debugging • At least add a compile test, PDK --add-tests • Enforce coverage completion • Use Onceover • Use AI responsibly