This is the newest stable release of ARA, 0.16.0.

***
WARNING: Please note that the next major version of ARA, 1.0, will contain
         backwards incompatible changes due to significant refactor work
         involving core back end code as well as the SQL database schema.
***

This release of ARA is made possible thanks to the following contributions:

- Tristan de Cacqueray from Red Hat resolved an issue where under certain
  circumstances, an empty ARA_LOG_FILE configuration could raise an exception.
- Artem Goncharov from Open Telekom Cloud resolved an issue where configuration
  parameters through environment variables could not taken into account
  properly when using the ara-wsgi and ara-wsgi-sqlite scripts.
- Joshua Harlow from GoDaddy submitted several improvements to performance and
  RAM usage when browsing large reports.
- Sorin Sbarnea from Red Hat contributed documentation on serving static ARA
  reports with nginx and improved the junit export to allow for overrides
- Haikel Guemar from Red Hat identified and fixed usage of reserved key words
  in Python 3.7
- Robert de Bock for suggesting a security improvement around host facts
  and the ansible_env fact.

Other improvements include:

- Improve self-healing when running into a race condition where the playbook
  run is interrupted early enough for the playbook to be created in the
  database but before it's file was saved.
- Prevent ARA's logging configuration from "leaking" into the configuration
  of other python modules at runtime.
- Add a trailing slash to file links in the file tab, resolving an issue
  where reverse proxies might get confused when doing SSL termination.

Security:

Robert de Bock from ING Bank reported that sensitive information might
be stored in environment variables from the Ansible control node and
that as such, there should be a way to prevent the 'ansible_env' host
fact from being recorded by ARA.

As such, we have added a new configuration parameter: ARA_IGNORE_FACTS [1].
ARA_IGNORE_FACTS is a comma-separated list of host facts that ARA will not
record in it's database.
ARA will also sanitize the output of gather_facts and setup tasks to prevent
these facts from displaying in the task results.
By default, only the "ansible_env" fact is ignored due to the high likelihood
of it containing sensitive information.

Maintenance:

- Dropped backwards compatibility layer for supporting Ansible 2.3
- Updated integration jobs to test against the latest versions of Ansible 2.4,
  2.5 and 2.6

[1]: https://ara.readthedocs.io/en/latest/configuration.html#ara-ignore-facts