Introducing Puppet Core - A woman with glasses works at a laptop. Colorful shapes and icons, including a padlock icon, litter the frame.
February 19, 2025

Introducing Puppet Core: Vendor-Backed Platform Automation for Security, Reliability & Stability

Products & Services
Community & Open Source

By

Today, I’m excited to share that Perforce Puppet has launched the first build of Puppet Core! Here’s why the inaugural release of this new product marks a huge step forward for Open Source Puppet users.

Table of Contents

  1. Why Puppet Core?
  2. What’s Included in Puppet Core?
Back to top

Why Puppet Core?

The modern technology landscape is teeming with threats and vulnerabilities, and risk is growing across every phase of software development. Organizations need to adopt software that’s created and supported by trusted, reputable vendors offering SLAs that meet internal and external compliance requirements.

Today, that expectation goes beyond the walls of your organization. Infrastructure resiliency — the ability to secure infrastructure and workflows, enforce hardening measures, and prove continuous compliance — now extends from your own stack to the various elements of your software supply chain. You need commitment from your vendors that they're providing software that doesn’t open you up to even more vulnerabilities.

Puppet Core is proof of that commitment.

This new product ensures Puppet users that their infrastructure management vendor prioritizes security, stability, and reliability with certified software builds, premium features, vendor-backed SLAs, and expert engagement.

Every release of Puppet Core is hardened for security and stability. And like all Perforce enterprise-ready software, Puppet Core is regularly updated and rigorously tested to ensure performance and compatibility for uninterrupted service.

With Puppet Core, organizations can confidently focus on keeping their systems running smoothly instead of wondering if their vendor has their back.

Back to top

What’s Included in Puppet Core?

  • Hardened Puppet binaries housed in a secure repository
  • Guaranteed SLAs for high and critical severity CVEs
  • Core essential agents, including the latest downstream version
  • Requests for fixes and vulnerabilities
  • Security Compliance Enforcement, a premium feature for automatically enforcing hardened infrastructure security baselines aligned to CIS Benchmarks and DISA STIGs
  • Training engagement with Certified Puppet Engineers, including guidance on Puppet Core resources and an introduction to Security Compliance Enforcement

Have questions about Puppet Core Commercial licensing?

DISCOVER PUPPET CORE

Back to top
Image Tzvika Shahaf Headshot

Tzvika Shahaf

VP Product Management, Puppet by Perforce

Tzvika Shahaf is VP of Product Management at Puppet and Sr. Director Product Manager of the Dev Tools Group at Perforce Software. Tzvika is a DevOps veteran with a background in continuous testing & traceability, defined by IDC research as one of the most innovative solutions in the testing intelligence market. Tzvika works with leading Fortune 500 global enterprises to optimize their continuous platform automation and DevOps maturity.