Skip to content

Commit e8af9ec

Browse files
author
jsf9k
committed
# Conflicts: # .config/molecule/config.yml # .github/dependabot.yml
2 parents 4422bd7 + 3260b69 commit e8af9ec

File tree

14 files changed

+299
-119
lines changed

14 files changed

+299
-119
lines changed

.config/molecule/config.yml

Lines changed: 70 additions & 81 deletions
Original file line numberDiff line numberDiff line change
@@ -4,7 +4,8 @@ dependency:
44
driver:
55
name: docker
66
platforms:
7-
- cgroupns_mode: host
7+
- &common_amd64_platform_config
8+
cgroupns_mode: host
89
command: /lib/systemd/systemd
910
image: docker.io/geerlingguy/docker-amazonlinux2023-ansible:latest
1011
name: amazonlinux2023-systemd-amd64
@@ -13,11 +14,12 @@ platforms:
1314
privileged: true
1415
volumes:
1516
- /sys/fs/cgroup:/sys/fs/cgroup:rw
16-
- cgroupns_mode: host
17-
command: /lib/systemd/systemd
18-
image: docker.io/geerlingguy/docker-amazonlinux2023-ansible:latest
17+
18+
- &common_arm64_platform_config
19+
<<: *common_amd64_platform_config
1920
name: amazonlinux2023-systemd-arm64
2021
platform: arm64
22+
<<<<<<< HEAD
2123
pre_build_image: true
2224
privileged: true
2325
volumes:
@@ -61,89 +63,73 @@ platforms:
6163
# - /sys/fs/cgroup:/sys/fs/cgroup:rw
6264
- cgroupns_mode: host
6365
command: /lib/systemd/systemd
66+
=======
67+
68+
- <<: *common_amd64_platform_config
69+
image: docker.io/geerlingguy/docker-debian10-ansible:latest
70+
name: debian10-systemd-amd64
71+
72+
- <<: *common_arm64_platform_config
73+
image: docker.io/geerlingguy/docker-debian10-ansible:latest
74+
name: debian10-systemd-arm64
75+
76+
- <<: *common_amd64_platform_config
77+
image: docker.io/geerlingguy/docker-debian11-ansible:latest
78+
name: debian11-systemd-amd64
79+
80+
- <<: *common_arm64_platform_config
81+
image: docker.io/geerlingguy/docker-debian11-ansible:latest
82+
name: debian11-systemd-arm64
83+
84+
- <<: *common_amd64_platform_config
85+
>>>>>>> 3260b69086d7e880c2f70a524857bbc72b59b44f
6486
image: docker.io/geerlingguy/docker-debian12-ansible:latest
6587
name: debian12-systemd-amd64
66-
platform: amd64
67-
pre_build_image: true
68-
privileged: true
69-
volumes:
70-
- /sys/fs/cgroup:/sys/fs/cgroup:rw
71-
- cgroupns_mode: host
72-
command: /lib/systemd/systemd
88+
89+
- <<: *common_arm64_platform_config
7390
image: docker.io/geerlingguy/docker-debian12-ansible:latest
7491
name: debian12-systemd-arm64
75-
platform: arm64
76-
pre_build_image: true
77-
privileged: true
78-
volumes:
79-
- /sys/fs/cgroup:/sys/fs/cgroup:rw
80-
- cgroupns_mode: host
81-
command: /lib/systemd/systemd
82-
image: docker.io/cisagov/docker-debian13-ansible:latest
92+
93+
- <<: *common_amd64_platform_config
94+
image: docker.io/geerlingguy/docker-debian13-ansible:latest
8395
name: debian13-systemd-amd64
84-
platform: amd64
85-
pre_build_image: true
86-
privileged: true
87-
volumes:
88-
- /sys/fs/cgroup:/sys/fs/cgroup:rw
89-
- cgroupns_mode: host
90-
command: /lib/systemd/systemd
91-
image: docker.io/cisagov/docker-debian13-ansible:latest
96+
97+
- <<: *common_arm64_platform_config
98+
image: docker.io/geerlingguy/docker-debian13-ansible:latest
9299
name: debian13-systemd-arm64
93-
platform: arm64
94-
pre_build_image: true
95-
privileged: true
96-
volumes:
97-
- /sys/fs/cgroup:/sys/fs/cgroup:rw
98-
- cgroupns_mode: host
99-
command: /lib/systemd/systemd
100+
101+
- <<: *common_amd64_platform_config
102+
image: docker.io/cisagov/docker-debian14-ansible:latest
103+
name: debian14-systemd-amd64
104+
105+
- <<: *common_arm64_platform_config
106+
image: docker.io/cisagov/docker-debian14-ansible:latest
107+
name: debian14-systemd-arm64
108+
109+
- <<: *common_amd64_platform_config
100110
image: docker.io/cisagov/docker-kali-ansible:latest
101111
name: kali-systemd-amd64
102-
platform: amd64
103-
pre_build_image: true
104-
privileged: true
105-
volumes:
106-
- /sys/fs/cgroup:/sys/fs/cgroup:rw
107-
- cgroupns_mode: host
108-
command: /lib/systemd/systemd
112+
113+
- <<: *common_arm64_platform_config
109114
image: docker.io/cisagov/docker-kali-ansible:latest
110115
name: kali-systemd-arm64
111-
platform: arm64
112-
pre_build_image: true
113-
privileged: true
114-
volumes:
115-
- /sys/fs/cgroup:/sys/fs/cgroup:rw
116-
- cgroupns_mode: host
117-
command: /lib/systemd/systemd
116+
117+
- <<: *common_amd64_platform_config
118118
image: docker.io/geerlingguy/docker-fedora41-ansible:latest
119119
name: fedora41-systemd-amd64
120-
platform: amd64
121-
pre_build_image: true
122-
privileged: true
123-
volumes:
124-
- /sys/fs/cgroup:/sys/fs/cgroup:rw
125-
- cgroupns_mode: host
126-
command: /lib/systemd/systemd
120+
121+
- <<: *common_arm64_platform_config
127122
image: docker.io/geerlingguy/docker-fedora41-ansible:latest
128123
name: fedora41-systemd-arm64
129-
platform: arm64
130-
pre_build_image: true
131-
privileged: true
132-
volumes:
133-
- /sys/fs/cgroup:/sys/fs/cgroup:rw
134-
- cgroupns_mode: host
135-
command: /lib/systemd/systemd
124+
125+
- <<: *common_amd64_platform_config
136126
image: docker.io/geerlingguy/docker-fedora42-ansible:latest
137127
name: fedora42-systemd-amd64
138-
platform: amd64
139-
pre_build_image: true
140-
privileged: true
141-
volumes:
142-
- /sys/fs/cgroup:/sys/fs/cgroup:rw
143-
- cgroupns_mode: host
144-
command: /lib/systemd/systemd
128+
129+
- <<: *common_arm64_platform_config
145130
image: docker.io/geerlingguy/docker-fedora42-ansible:latest
146131
name: fedora42-systemd-arm64
132+
<<<<<<< HEAD
147133
platform: arm64
148134
pre_build_image: true
149135
privileged: true
@@ -170,22 +156,25 @@ platforms:
170156
# - /sys/fs/cgroup:/sys/fs/cgroup:rw
171157
- cgroupns_mode: host
172158
command: /lib/systemd/systemd
159+
=======
160+
161+
- <<: *common_amd64_platform_config
162+
image: docker.io/geerlingguy/docker-ubuntu2204-ansible:latest
163+
name: ubuntu-22-systemd-amd64
164+
165+
- <<: *common_arm64_platform_config
166+
image: docker.io/geerlingguy/docker-ubuntu2204-ansible:latest
167+
name: ubuntu-22-systemd-arm64
168+
169+
- <<: *common_amd64_platform_config
170+
>>>>>>> 3260b69086d7e880c2f70a524857bbc72b59b44f
173171
image: docker.io/geerlingguy/docker-ubuntu2404-ansible:latest
174172
name: ubuntu-24-systemd-amd64
175-
platform: amd64
176-
pre_build_image: true
177-
privileged: true
178-
volumes:
179-
- /sys/fs/cgroup:/sys/fs/cgroup:rw
180-
- cgroupns_mode: host
181-
command: /lib/systemd/systemd
173+
174+
- <<: *common_arm64_platform_config
182175
image: docker.io/geerlingguy/docker-ubuntu2404-ansible:latest
183176
name: ubuntu-24-systemd-arm64
184-
platform: arm64
185-
pre_build_image: true
186-
privileged: true
187-
volumes:
188-
- /sys/fs/cgroup:/sys/fs/cgroup:rw
177+
189178
provisioner:
190179
name: ansible
191180
config_options:

.github/dependabot.yml

Lines changed: 13 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -12,6 +12,7 @@ updates:
1212
- dependency-name: actions/cache
1313
- dependency-name: actions/checkout
1414
- dependency-name: actions/dependency-review-action
15+
- dependency-name: actions/labeler
1516
- dependency-name: actions/setup-go
1617
- dependency-name: actions/setup-python
1718
- dependency-name: cisagov/action-job-preamble
@@ -21,9 +22,21 @@ updates:
2122
- dependency-name: hashicorp/setup-packer
2223
- dependency-name: hashicorp/setup-terraform
2324
- dependency-name: mxschmitt/action-tmate
25+
<<<<<<< HEAD
2426
# Managed by cisagov/skeleton-ansible-role
2527
- dependency-name: cisagov/action-disable-apparmor
2628
- dependency-name: docker/setup-buildx-action
29+
=======
30+
# # Managed by cisagov/skeleton-ansible-role
31+
# - dependency-name: cisagov/action-disable-apparmor
32+
# - dependency-name: docker/setup-buildx-action
33+
labels:
34+
# dependabot default we need to replicate
35+
- dependencies
36+
# This matches our label definition in .github/labels.yml as opposed to
37+
# dependabot's default of `github_actions`.
38+
- github-actions
39+
>>>>>>> 3260b69086d7e880c2f70a524857bbc72b59b44f
2740
package-ecosystem: github-actions
2841
schedule:
2942
interval: weekly

.github/labeler.yml

Lines changed: 70 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,70 @@
1+
---
2+
# Each entry in this file is a label that will be applied to pull requests
3+
# if there is a match based on the matching rules for the entry. Please see
4+
# the actions/labeler documentation for more information:
5+
# https://github.com/actions/labeler#match-object
6+
#
7+
# Note: Verify that the label you want to use is defined in the
8+
# crazy-max/ghaction-github-labeler configuration file located at
9+
# .github/labels.yml.
10+
11+
# Enable if Ansible playbooks are used in the repository.
12+
ansible:
13+
- changed-files:
14+
- any-glob-to-any-file:
15+
- defaults/**/*.yml
16+
- handlers/**/*.yml
17+
- meta/**/*.yml
18+
- tasks/**/*.yml
19+
- vars/**/*.yml
20+
dependencies:
21+
- changed-files:
22+
- any-glob-to-any-file:
23+
# Add any dependency files used.
24+
- .pre-commit-config.yaml
25+
- meta/**/*.yml
26+
- requirements*.txt
27+
documentation:
28+
- changed-files:
29+
- any-glob-to-any-file:
30+
- "**/*.md"
31+
github-actions:
32+
- changed-files:
33+
- any-glob-to-any-file:
34+
- .github/workflows/**
35+
# Enable if Packer is used in the repository.
36+
# packer:
37+
# - changed-files:
38+
# - any-glob-to-any-file:
39+
# - "**/*.pkr.hcl"
40+
# Enable if Python is used in the repository.
41+
python:
42+
- changed-files:
43+
- any-glob-to-any-file:
44+
- "**/*.py"
45+
# Enable if Terraform is used in the repository.
46+
# terraform:
47+
# - changed-files:
48+
# - any-glob-to-any-file:
49+
# - "**/*.tf"
50+
test:
51+
- changed-files:
52+
- any-glob-to-any-file:
53+
# Add any test-related files or paths.
54+
- .ansible-lint
55+
- .bandit.yml
56+
- .config/molecule/config.yml
57+
- .flake8
58+
- .isort.cfg
59+
- .mdl_config.yaml
60+
- .yamllint
61+
- molecule/**
62+
upstream update:
63+
- head-branch:
64+
# Any Lineage pull requests should use this branch.
65+
- lineage/skeleton
66+
version bump:
67+
- changed-files:
68+
- any-glob-to-any-file:
69+
# Ensure this matches your version tracking file(s).
70+
- version.txt

.github/labels.yml

Lines changed: 6 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -2,6 +2,9 @@
22
# Rather than breaking up descriptions into multiline strings we disable that
33
# specific rule in yamllint for this file.
44
# yamllint disable rule:line-length
5+
- color: f15a53
6+
description: Pull requests that update Ansible code
7+
name: ansible
58
- color: eb6420
69
description: This issue or pull request is awaiting the outcome of another issue or pull request
710
name: blocked
@@ -50,6 +53,9 @@
5053
- color: fcdb45
5154
description: This pull request is awaiting an action or decision to move forward
5255
name: on hold
56+
- color: 3772a4
57+
description: Pull requests that update Python code
58+
name: python
5359
- color: ef476c
5460
description: This issue is a request for information or needs discussion
5561
name: question

.github/workflows/build.yml

Lines changed: 8 additions & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -99,16 +99,16 @@ jobs:
9999
# this workflow.
100100
permissions_monitoring_config: ${{ vars.ACTIONS_PERMISSIONS_CONFIG }}
101101
- id: setup-env
102-
uses: cisagov/setup-env-github-action@develop
103-
- uses: actions/checkout@v4
102+
uses: cisagov/setup-env-github-action@v1
103+
- uses: actions/checkout@v5
104104
- id: setup-python
105-
uses: actions/setup-python@v5
105+
uses: actions/setup-python@v6
106106
with:
107107
python-version: ${{ steps.setup-env.outputs.python-version }}
108108
# We need the Go version and Go cache location for the actions/cache step,
109109
# so the Go installation must happen before that.
110110
- id: setup-go
111-
uses: actions/setup-go@v5
111+
uses: actions/setup-go@v6
112112
with:
113113
# There is no expectation for actual Go code so we disable caching as
114114
# it relies on the existence of a go.sum file.
@@ -222,6 +222,7 @@ jobs:
222222
# - debian11-systemd
223223
- debian12-systemd
224224
- debian13-systemd
225+
- debian14-systemd
225226
- fedora41-systemd
226227
- fedora42-systemd
227228
- kali-systemd
@@ -260,10 +261,10 @@ jobs:
260261
# this workflow.
261262
permissions_monitoring_config: ${{ vars.ACTIONS_PERMISSIONS_CONFIG }}
262263
- id: setup-env
263-
uses: cisagov/setup-env-github-action@develop
264-
- uses: actions/checkout@v4
264+
uses: cisagov/setup-env-github-action@v1
265+
- uses: actions/checkout@v5
265266
- id: setup-python
266-
uses: actions/setup-python@v5
267+
uses: actions/setup-python@v6
267268
with:
268269
python-version: ${{ steps.setup-env.outputs.python-version }}
269270
- uses: actions/cache@v4

.github/workflows/codeql-analysis.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -114,7 +114,7 @@ jobs:
114114
permissions_monitoring_config: ${{ vars.ACTIONS_PERMISSIONS_CONFIG }}
115115

116116
- name: Checkout repository
117-
uses: actions/checkout@v4
117+
uses: actions/checkout@v5
118118

119119
# Initializes the CodeQL tools for scanning.
120120
- name: Initialize CodeQL

.github/workflows/dependency-review.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -89,7 +89,7 @@ jobs:
8989
permissions_monitoring_config: ${{ vars.ACTIONS_PERMISSIONS_CONFIG }}
9090
- id: checkout-repo
9191
name: Checkout the repository
92-
uses: actions/checkout@v4
92+
uses: actions/checkout@v5
9393
- id: dependency-review
9494
name: Review dependency changes for vulnerabilities and license changes
9595
uses: actions/dependency-review-action@v4

0 commit comments

Comments
 (0)