diff --git a/.yamllint b/.yamllint index 693eec6..4823010 100644 --- a/.yamllint +++ b/.yamllint @@ -9,12 +9,6 @@ ignore: | extends: default rules: - indentation: - # Requiring 4 space indentation - spaces: 4 - # Requiring consistent indentation within a file, either indented or not - indent-sequences: consistent - truthy: disable braces: max-spaces-inside: 1 level: error @@ -32,4 +26,4 @@ rules: trailing-spaces: enable truthy: allowed-values: ['true', 'false'] - check-keys: false + check-keys: true diff --git a/tasks/section_1/cis_1.1.3.x.yml b/tasks/section_1/cis_1.1.3.x.yml index 649657f..84135ae 100644 --- a/tasks/section_1/cis_1.1.3.x.yml +++ b/tasks/section_1/cis_1.1.3.x.yml @@ -39,7 +39,7 @@ when: - item.mount == "/var" - rhel9cis_rule_1_1_3_2 or - rhel9cis_rule_1_1_3_3 + rhel9cis_rule_1_1_3_3 tags: - level1-server - level1-workstation @@ -48,4 +48,3 @@ - skip_ansible_lint - rule_1.1.3.2 - rule_1.1.3.3 - diff --git a/tasks/section_1/cis_1.2.x.yml b/tasks/section_1/cis_1.2.x.yml index 67128a7..452c009 100644 --- a/tasks/section_1/cis_1.2.x.yml +++ b/tasks/section_1/cis_1.2.x.yml @@ -90,9 +90,9 @@ block: - name: "1.2.4 | PATCH | Ensure repo_gpgcheck is globally activated | dnf.conf" ansible.builtin.lineinfile: - path: /etc/dnf/dnf.conf - regexp: '^repo_gpgcheck' - line: repo_gpgcheck=1 + path: /etc/dnf/dnf.conf + regexp: '^repo_gpgcheck' + line: repo_gpgcheck=1 - name: "1.2.4 | AUDIT| Ensure repo_gpgcheck is globally activated | get repo files" ansible.builtin.find: @@ -102,9 +102,9 @@ - name: "1.2.4 | PATCH | Ensure repo_gpgcheck is globally activated | amend repo files" ansible.builtin.replace: - path: "{{ item.path }}" - regexp: '^repo_gpgcheck( |)=( |)0' - replace: repo_gpgcheck=1 + path: "{{ item.path }}" + regexp: '^repo_gpgcheck( |)=( |)0' + replace: repo_gpgcheck=1 loop: "{{ repo_files.files }}" loop_control: label: "{{ item.path }}"