Ubuntu Pro Client version 32.3 released

Whether you’re an enterprise customer deploying systems at scale or want security patching for your personal Ubuntu LTS at home, the Ubuntu Pro Client (pro) is the command-line tool that will help you manage your Ubuntu Pro services.

The Ubuntu Pro Client comes pre-installed on every Ubuntu system. You can run pro help in your terminal window to see a list of the Pro services and commands available.

Useful Links

• GitHub: GitHub - canonical/ubuntu-pro-client: Ubuntu Pro Client for offerings from Canonical
• Documentation: https://canonical-ubuntu-pro-client.readthedocs-hosted.com/en/latest/

Last week we released version 32.3 of pro to:

• 16.04 Xenial Xerus
• 18.04 Bionic Beaver
• 20.04 Focal Fossa
• 22.04 Jammy Jellyfish
• 23.10 Mantic Minotaur
• 24.04 Noble Numbat

You can install the latest version by running sudo apt update && sudo apt install ubuntu-pro-client.

Version 32.3 includes several features and bug fixes. The most notable are detailed in this post.

API additions

Ubuntu Pro Client is more than a human-friendly CLI. It includes an API that can be used as a Python library or via the pro api subcommand with structured JSON input and output.

Release 32.3 brings several new functions:

• u.pro.attach.token.full_token_attach.v1
• u.pro.detach.v1
• u.pro.services.disable.v1
• u.pro.services.enable.v1
• u.pro.services.dependencies.v1

Additionally, the following functions received improvements:

• u.pro.status.is_attached.v1 includes new fields related to contract status. We now recommend using the field is_attached_and_contract_valid for most purposes.
• u.pro.security.fix.*.plan.v1 will now ensure the ESM apt cache is up to date before deciding if a fix is available in ESM.

All of these functions are documented in our API reference.

AppArmor confinement progress

In version 31 we confined one of our systemd services (apt-news.service) using AppArmor for the first time. In version 32.3 we are continuing our commitment to security by adding AppArmor confinement to another widely run service: esm-cache.service.

Better airgapped status detection

We fixed a bug where pro wouldn’t accurately detect that services were enabled in some airgapped environments.

More relevant APT News

Previously some APT News messages regarding security patches were shown to users who already had the patch applied, causing unnecessary confusion. This release brings the capability to only show APT News regarding security patches to users who do not already have the patch applied.

Many other improvements not listed here made it into 32.3. The full changelog can be seen on Launchpad.

Please report any bugs or feature requests via GitHub issue.