updated lint

Signed-off-by: Mark Bolwell <mark.bollyuk@gmail.com>
2025-12-24 14:23:05 +00:00 · 2023-07-26 16:58:33 +01:00 · 2023-07-26 16:58:33 +01:00 · c9db12b603
commit c9db12b603
parent 495f942b7d
3 changed files with 5 additions and 18 deletions
--- a/.pre-commit-config.yaml
+++ b/.pre-commit-config.yaml
@ -54,16 +54,3 @@ repos:
  rev: v1.32.0  # or higher tag
  hooks:
  - id: yamllint
-
-## To be moved to main link when PR approved - https://github.com/ansible/ansible-sign.git
- repo: https://github.com/ansible-lockdown/ansible-sign.git
-  rev: v0.1.1b
-  hooks:
-  - id: ansible-sign
-    name: Verify Ansible-sign signature
-    description: This hook runs ansible-sign.
-    entry: ansible-sign project gpg-verify .
-    language: python
-    # do not pass files as we need to scan the directory with the MANIFEST.in
-    pass_filenames: false
-    always_run: true
--- a/tasks/auditd.yml
+++ b/tasks/auditd.yml
@ -19,7 +19,7 @@
      - Audit immutable fact
      - Restart auditd

- name: POST | AUDITD | Add Warning count for changes to template file | Warn Count  # noqa: no-handler
+- name: POST | AUDITD | Add Warning count for changes to template file | Warn Count  # noqa no-handler
  ansible.builtin.import_tasks: warning_facts.yml
  vars:
      warn_control_id: 'Auditd template updated, see diff output for details'
--- a/tasks/section_6/cis_6.1.x.yml
+++ b/tasks/section_6/cis_6.1.x.yml
@ -173,7 +173,7 @@

      - name: "6.1.10 | AUDIT | Ensure no unowned files or directories exist | Displaying any unowned files or directories"
        ansible.builtin.debug:
-            msg: "Warning!! Missing owner on items in {{ rhel_09_6_1_10_audit | json_query('results[*].stdout_lines[*]') | flatten }}"
+            msg: "Warning!! Missing owner on items in {{ rhel_09_6_1_10_audit | json_query('results[*].stdout_lines[*]') | flatten }}"  # noqa jinja[invalid]
        when: rhel_09_6_1_10_unowned_files_found

      - name: "6.1.10 | AUDIT | Ensure no unowned files or directories exist | warning"
@ -219,7 +219,7 @@

      - name: "6.1.11 | AUDIT | Ensure no ungrouped files or directories exist | Displaying all ungrouped files or directories"
        ansible.builtin.debug:
-            msg: "Warning!! Missing group on items in {{ rhel_09_6_1_11_audit | json_query('results[*].stdout_lines[*]') | flatten }}"
+            msg: "Warning!! Missing group on items in {{ rhel_09_6_1_11_audit | json_query('results[*].stdout_lines[*]') | flatten }}"  # noqa jinja[invalid]
        when: rhel_09_6_1_11_ungrouped_files_found

      - name: "6.1.11 | AUDIT | Ensure no ungrouped files or directories exist | warning"
@ -275,7 +275,7 @@

      - name: "6.1.13 | AUDIT | Audit SUID executables | Alert SUID executables exist"
        ansible.builtin.debug:
-            msg: "Warning!! SUID set on items in {{ rhel_09_6_1_13_suid_perms | json_query('results[*].stdout_lines[*]') | flatten }}"
+            msg: "Warning!! SUID set on items in {{ rhel_09_6_1_13_suid_perms | json_query('results[*].stdout_lines[*]') | flatten }}"  # noqa jinja[invalid]
        when: rhel9_6_1_13_suid_found

      - name: "6.1.13 | AUDIT | Audit SUID executables | Alert SUID executables exist | warning"
@ -317,7 +317,7 @@

      - name: "6.1.14 | AUDIT | Audit SGID executables | Alert SGID executables exist"
        ansible.builtin.debug:
-            msg: "Warning!! SGID set on items in {{ rhel_09_6_1_14_sgid_perms | json_query('results[*].stdout_lines[*]') | flatten }}"
+            msg: "Warning!! SGID set on items in {{ rhel_09_6_1_14_sgid_perms | json_query('results[*].stdout_lines[*]') | flatten }}"  # noqa jinja[invalid]
        when: rhel9_6_1_14_sgid_found

      - name: "6.1.14 | AUDIT | Audit SGID executables| warning"