Hello,
We are currently implementing the WAPT 2.6 Enterprise solution and I have a few questions about certain functions, so I can't find the answers in the documentation.
Regarding the `update_package` function, where and how does it run? Is it possible to schedule it?
If I understand correctly, this function is only a check and necessarily requires human intervention to deploy the update?
Is there a way to automate updates for certain packages, particularly those in your store?
I understand the risk associated with a deployment without human oversight, but for software where updates are very frequent and regularly fix vulnerabilities, waiting for human intervention can itself be a vulnerability.
Thank you in advance for your feedback.
[RESOLVED] Uppate_package functionality
Forum Rules
Community Forum Rules
* English support on www.reddit.com/r/wapt
* French community support is available on this forum
* Please prefix the topic title with [RESOLVED] if it is resolved.
* Please do not edit a topic that is tagged [RESOLVED]. Open a new topic referencing the old one.
* Specify the installed WAPT version, full version, and build number (2.2.1.11957 / 2.2.2.12337 / etc.) as well as the Enterprise/Discovery edition.
* Versions 1.8.2 and earlier are no longer supported. The only questions accepted regarding version 1.8.2 are related to upgrading to a supported version (2.1, 2.2, etc.).
* Specify the server OS (Linux/Windows) and version (Debian Buster/Bullseye - CentOS 7 - Windows Server 2012/2016/2019).
* Specify the OS of the administration/package creation machine and the machine with the problematic agent, if applicable (Windows 7/10/11/Debian 11/etc.).
* Avoid asking multiple questions when opening a topic, otherwise it may be ignored. If there are multiple topics, open separate topics, preferably one after the other and not all at the same time (i.e., do not spam the forum).
* Include code snippets, screenshots, and other images directly in the post. Links to Pastebin, Bitly, and other third-party sites will be systematically removed.
* As with any community forum, support is provided voluntarily by members. If you require commercial support, you can contact Tranquil IT's sales department at 02.40.97.57.55
Community Forum Rules
* English support on www.reddit.com/r/wapt
* French community support is available on this forum
* Please prefix the topic title with [RESOLVED] if it is resolved.
* Please do not edit a topic that is tagged [RESOLVED]. Open a new topic referencing the old one.
* Specify the installed WAPT version, full version, and build number (2.2.1.11957 / 2.2.2.12337 / etc.) as well as the Enterprise/Discovery edition.
* Versions 1.8.2 and earlier are no longer supported. The only questions accepted regarding version 1.8.2 are related to upgrading to a supported version (2.1, 2.2, etc.).
* Specify the server OS (Linux/Windows) and version (Debian Buster/Bullseye - CentOS 7 - Windows Server 2012/2016/2019).
* Specify the OS of the administration/package creation machine and the machine with the problematic agent, if applicable (Windows 7/10/11/Debian 11/etc.).
* Avoid asking multiple questions when opening a topic, otherwise it may be ignored. If there are multiple topics, open separate topics, preferably one after the other and not all at the same time (i.e., do not spam the forum).
* Include code snippets, screenshots, and other images directly in the post. Links to Pastebin, Bitly, and other third-party sites will be systematically removed.
* As with any community forum, support is provided voluntarily by members. If you require commercial support, you can contact Tranquil IT's sales department at 02.40.97.57.55
-
sfonteneau
- WAPT Expert
- Messages: 2318
- Registered: July 10, 2014 - 11:52 PM
- Contact :
The function is executed within the session of the person who launched it, so very often an administratorKevin-LH76 wrote: ↑Feb 8, 2026 - 6:31 PM We are currently implementing the WAPT 2.6 Enterprise solution and I have a few questions about certain functions, so I can't find the answer in the documentation.
Regarding the update_package function, where and how does it run? Is it possible to schedule it?
She connects to the publisher's website to download a new version if available.Kevin-LH76 wrote: ↑Feb 8, 2026 - 6:31 PM If I understand correctly, this function is only a check and necessarily requires human intervention to deploy the update?
Also available via command line:
wapt-get update-package-sources c:\waptdev\tis-firefox
We do not offer it by default intentionally to avoid a "minor security update" like the "crowdstrike" which would automatically crash an entire park with a blue screen, for example.Kevin-LH76 wrote: ↑Feb 8, 2026 - 6:31 PM Is there a way to automate updates for certain packages, especially those in your store?
I understand the risk associated with deployment without human oversight, but for software where updates are very frequent and regularly fix vulnerabilities, waiting for human intervention can itself be a vulnerability.
If you really want to do it, create a script on a Windows machine:
Code: Select all
wapt-get update-package-sources c:\waptdev\tis-firefox
wapt-get wapt-get -i build-upload c:\waptdev\tis-firefox -w C:\pwd-waptdev.txt --wapt-server-passwd=password --wapt-server-user=admin
-
Kevin-LH76
- Messages: 14
- Registration: February 8, 2026 - 5:57 PM
Can this script run on a Linux machine?
We were thinking of running it on the WAPT server, at least for the Defender package, as it receives updates very regularly.
We were thinking of running it on the WAPT server, at least for the Defender package, as it receives updates very regularly.
-
sfonteneau
- WAPT Expert
- Messages: 2318
- Registered: July 10, 2014 - 11:52 PM
- Contact :
Yes and no
Actually, it depends on the package code.
If, for example, the code calls get_msi_properties, then no, because this function is not available under Linux.
The reverse is also true if the code was designed to run only under Linux
Hello,
the idea would be to run the update-package Python script on the server at regular intervals to keep the package as up-to-date as possible (Windows Defender, to be precise). This works through the WAPT interface, but Microsoft updates it regularly.
Regards
the idea would be to run the update-package Python script on the server at regular intervals to keep the package as up-to-date as possible (Windows Defender, to be precise). This works through the WAPT interface, but Microsoft updates it regularly.
Regards
Good morning,sfonteneau wrote: ↑Feb 9, 2026 - 1:19 PM If you really want to do it, create a script on a Windows machine:
Code: Select all
wapt-get update-package-sources c:\waptdev\tis-firefox wapt-get wapt-get -i build-upload c:\waptdev\tis-firefox -w C:\pwd-waptdev.txt --wapt-server-passwd=password --wapt-server-user=admin
Does the proposed code perform the upload regardless of the result, or only if there is indeed an update?
-
sfonteneau
- WAPT Expert
- Messages: 2318
- Registered: July 10, 2014 - 11:52 PM
- Contact :
This test:
Code: Select all
from waptpackage import PackageEntry
from setuphelpers import *
folder_wapt = r'c:\waptdev\tis-test_0_PROD-wapt'
f = PackageEntry(waptfile=folder_wapt)
old_version = f.version
run('wapt-get update-package-sources "%s" --no-ide' % folder_wapt)
n = PackageEntry(waptfile=folder_wapt)
if old_version != n.version:
run('wapt-get wapt-get -i build-upload c:\waptdev\tis-firefox -w C:\pwd-waptdev.txt --wapt-server-passwd=password --wapt-server-user=admin -c c:\Users\username\AppData\Local\waptconsole\waptconsole.ini')
-
Kevin-LH76
- Messages: 14
- Registration: February 8, 2026 - 5:57 PM
Is your code meant to be placed in an audit function of a scheduled package (audit_schedule)?
In your code, there's `password=password`; is it possible to avoid putting the password in plain text?
In your code, there's `password=password`; is it possible to avoid putting the password in plain text?
-
sfonteneau
- WAPT Expert
- Messages: 2318
- Registered: July 10, 2014 - 11:52 PM
- Contact :
Not to be included in an audit package
Put this in a .py file and run it with Python, for example:
That's all
For the password, you can modify the code for the password in a file, for example
Put this in a .py file and run it with Python, for example:
Code: Select all
wapt-get script.pyFor the password, you can modify the code for the password in a file, for example
-
Kevin-LH76
- Messages: 14
- Registration: February 8, 2026 - 5:57 PM
So the agent needs to be installed on the machine running the script?
In all cases, is the password hardcoded into a file?
Can we run it directly on our WAPT server, which is running Red Hat?
In all cases, is the password hardcoded into a file?
Can we run it directly on our WAPT server, which is running Red Hat?
