Skip to content

⚠️ CONFLICT! Lineage pull request for: skeleton #16

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 75 commits into from
Apr 24, 2025
Merged

⚠️ CONFLICT! Lineage pull request for: skeleton #16

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
75 commits
Select commit Hold shift + click to select a range
162e2c2
Fix spelling error in comment
jsf9k Nov 20, 2024
5a3ac91
Adjust the indentation rule for yamllint
mcdonnnj Nov 15, 2021
ac080ed
Update yamllint to disallow non-empty flow collection styles
mcdonnnj Nov 15, 2021
66cdbf5
Add yamllint configuration settings to appease ansible-lint
mcdonnnj Dec 4, 2024
dd102fe
Re-enable the yamllint truthy rule
mcdonnnj Dec 4, 2024
dc891af
Configure quoted strings rule for yamllint
mcdonnnj Dec 4, 2024
03933fe
Add version file and bump_version script
jsf9k Mar 10, 2025
3401551
Bump version from 0.0.1 to 0.0.1-rc.1
jsf9k Mar 10, 2025
5b5a526
Update pre-commit hook versions
mcdonnnj Feb 21, 2025
e0f5911
Merge pull request #198 from cisagov/improvement/fix-spelling-error-i…
jsf9k Mar 27, 2025
b35dec3
Merge pull request #200 from cisagov/improvement/update_yamllint_rules
jsf9k Mar 27, 2025
da028ea
Apply our standard job preamble via cisagov/action-job-preamble
jsf9k Feb 21, 2025
0e93632
Set actions_permissions_config input
jsf9k Feb 21, 2025
8b2ac55
Add a friendly name to the cisagov/action-job-preamble steps
jsf9k Feb 21, 2025
864b5af
Add a Dependabot ignore directive for cisagov/action-job-preamble
jsf9k Feb 22, 2025
8cdce2a
Update input name for cisagov/action-job-preamble
jsf9k Feb 23, 2025
17b93ec
Remove two Dependabot ignore directives
jsf9k Feb 23, 2025
6a9e331
Use cisagov/action-job-preamble in sync-labels.yml workflow
jsf9k Feb 23, 2025
b5b3b9d
Use v1 tag of cisagov/action-job-preamble
jsf9k Feb 23, 2025
3ec1b1f
Re-add comment explaining where the org var comes from
jsf9k Feb 24, 2025
764df0c
Flesh out org var comment even more
jsf9k Feb 25, 2025
c271b40
Subsume GH status checks and context dumping into cisagov/action-job-…
jsf9k Mar 26, 2025
f35dcbc
Merge pull request #201 from cisagov/improvement/use-job-preamble-action
jsf9k Mar 27, 2025
c4b192b
Add a CodeQL workflow to this repository
jsf9k Mar 2, 2025
0032cc2
Update comment to match what is in cisagov/skeleton-docker
jsf9k Mar 3, 2025
0534337
Use cisagov/action-job-preamble
jsf9k Mar 4, 2025
adea10c
Add the CodeQL action to the Dependabot configuration
jsf9k Mar 4, 2025
5dfe5df
Use cisagov/action-job-preamble instead of separate actions
jsf9k Mar 27, 2025
d740ee8
Add a workflow to run actions/dependency-review-action
jsf9k Mar 2, 2025
a446dde
Use cisagov/action-job-preamble
jsf9k Mar 4, 2025
494e116
Add the dependency review action to the Dependabot configuration
jsf9k Mar 4, 2025
3679b7d
Use cisagov/action-job-preamble instead of separate actions
jsf9k Mar 27, 2025
dad12c0
Merge pull request #202 from cisagov/feature/add-gh-actions-codeql-an…
jsf9k Mar 27, 2025
3e6e3bc
Merge pull request #203 from cisagov/feature/add-dependency-review-ac…
jsf9k Mar 27, 2025
4b2bc42
Merge pull request #204 from cisagov/feature/version-all-the-things
jsf9k Mar 27, 2025
ca757aa
Merge pull request #205 from cisagov/maintenance/update_pre-commit_hooks
jsf9k Mar 27, 2025
028f652
Do not disable GitHub permissions monitoring by default
jsf9k Mar 27, 2025
d289ef3
Merge pull request #206 from cisagov/improvement/do-not-disable-perms…
mcdonnnj Mar 27, 2025
af21c8c
Merge remote-tracking branch 'skeleton/develop' into lineage/skeleton
jsf9k Mar 28, 2025
fdab7fd
Fix YAML lines that are too long
jsf9k Mar 28, 2025
ff1428e
Double-quote string
jsf9k Mar 28, 2025
72d2524
Remove redundant quotes
jsf9k Mar 28, 2025
36bc123
Prefer symbolic mode over octal numbers
jsf9k Mar 28, 2025
eb809d9
Use cisagov/action-job-preamble in test job of build workflow
jsf9k Mar 28, 2025
230a8e6
Revert line and add a yamllint ignore directive
jsf9k Mar 28, 2025
c074ab8
Bump version from 0.0.1-rc.1 to 1.0.0
jsf9k Mar 28, 2025
65f9c30
Disable GH permissions monitoring everywhere
jsf9k Apr 8, 2025
2cfc534
Fix typo that was copied and pasted all over the show
jsf9k Apr 8, 2025
ed8fadd
Merge pull request #208 from cisagov/improvement/disable-permissions-…
jsf9k Apr 8, 2025
492b8b6
Merge https://github.com/cisagov/skeleton-generic into lineage/skeleton
Apr 8, 2025
b99c056
Disable GH permissions monitoring in build.yml workflow
jsf9k Apr 8, 2025
e0bf157
Fix typo
jsf9k Apr 9, 2025
9264d9a
Merge pull request #209 from cisagov/improvement/fix-typo
jsf9k Apr 9, 2025
4f8b1d4
Merge https://github.com/cisagov/skeleton-generic into lineage/skeleton
Apr 9, 2025
86341e5
Merge pull request #226 from cisagov/lineage/skeleton
jsf9k Apr 21, 2025
c4d9336
Disable AppArmor before running Molecule tests
jsf9k Feb 21, 2025
10646ca
Add a Dependabot ignore directive for cisagov/action-disable-apparmor
jsf9k Feb 22, 2025
943cf46
Use the v1 tag of cisagov/action-disable-apparmor
jsf9k Feb 25, 2025
7840f25
Add .ansible directory to .gitignore
jsf9k Feb 24, 2025
0b5401f
Remove step to setup QEMU
jsf9k Mar 11, 2025
86f0d01
Use a Molecule config that is shared across scenarios
jsf9k Feb 17, 2025
d601c9c
Merge pull request #223 from cisagov/improvement/disable-apparmor
jsf9k Apr 21, 2025
afbdb12
Merge pull request #224 from cisagov/gitignore
jsf9k Apr 21, 2025
5eaf6c7
Merge pull request #225 from cisagov/improvement/remove-qemu
jsf9k Apr 21, 2025
36aceb5
Merge pull request #222 from cisagov/improvement/shared-molecule-config
jsf9k Apr 21, 2025
9b6b6f1
Remove duplicate entry from dependabot.yml
jsf9k Apr 21, 2025
e770e52
Merge pull request #228 from cisagov/improvement/remove-duplicate-entry
jsf9k Apr 21, 2025
96a1adf
Merge remote-tracking branch 'skeleton/develop' into lineage/skeleton
jsf9k Apr 24, 2025
abf8c5d
Uncomment Dependabot ignore directives from upstream
jsf9k Apr 24, 2025
f3fb67b
Comment out unsupported platforms
jsf9k Apr 24, 2025
2098885
Copy molecule.yml changes from default scenario to non-default scenarios
jsf9k Apr 24, 2025
f521f4a
Prefer symbolic specification of file permissions
jsf9k Apr 24, 2025
f7fc341
Correct indentation
jsf9k Apr 24, 2025
fe07c38
Correct YAML lines that are too long
jsf9k Apr 24, 2025
6ab5dba
Add yamllint ignore directives for long lines
jsf9k Apr 24, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
236 changes: 236 additions & 0 deletions .config/molecule/config.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,236 @@
---
dependency:
name: galaxy
driver:
name: docker
platforms:
- cgroupns_mode: host
command: /lib/systemd/systemd
image: docker.io/geerlingguy/docker-amazonlinux2023-ansible:latest
name: amazonlinux2023-systemd-amd64
platform: amd64
pre_build_image: true
privileged: true
volumes:
- /sys/fs/cgroup:/sys/fs/cgroup:rw
- cgroupns_mode: host
command: /lib/systemd/systemd
image: docker.io/geerlingguy/docker-amazonlinux2023-ansible:latest
name: amazonlinux2023-systemd-arm64
platform: arm64
pre_build_image: true
privileged: true
volumes:
- /sys/fs/cgroup:/sys/fs/cgroup:rw
# These platforms do not provide systemd-resolved.
# - cgroupns_mode: host
# command: /lib/systemd/systemd
# image: docker.io/geerlingguy/docker-debian10-ansible:latest
# name: debian10-systemd-amd64
# platform: amd64
# pre_build_image: true
# privileged: true
# volumes:
# - /sys/fs/cgroup:/sys/fs/cgroup:rw
# - cgroupns_mode: host
# command: /lib/systemd/systemd
# image: docker.io/geerlingguy/docker-debian10-ansible:latest
# name: debian10-systemd-arm64
# platform: arm64
# pre_build_image: true
# privileged: true
# volumes:
# - /sys/fs/cgroup:/sys/fs/cgroup:rw
# - cgroupns_mode: host
# command: /lib/systemd/systemd
# image: docker.io/geerlingguy/docker-debian11-ansible:latest
# name: debian11-systemd-amd64
# platform: amd64
# pre_build_image: true
# privileged: true
# volumes:
# - /sys/fs/cgroup:/sys/fs/cgroup:rw
# - cgroupns_mode: host
# command: /lib/systemd/systemd
# image: docker.io/geerlingguy/docker-debian11-ansible:latest
# name: debian11-systemd-arm64
# platform: arm64
# pre_build_image: true
# privileged: true
# volumes:
# - /sys/fs/cgroup:/sys/fs/cgroup:rw
- cgroupns_mode: host
command: /lib/systemd/systemd
image: docker.io/geerlingguy/docker-debian12-ansible:latest
name: debian12-systemd-amd64
platform: amd64
pre_build_image: true
privileged: true
volumes:
- /sys/fs/cgroup:/sys/fs/cgroup:rw
- cgroupns_mode: host
command: /lib/systemd/systemd
image: docker.io/geerlingguy/docker-debian12-ansible:latest
name: debian12-systemd-arm64
platform: arm64
pre_build_image: true
privileged: true
volumes:
- /sys/fs/cgroup:/sys/fs/cgroup:rw
- cgroupns_mode: host
command: /lib/systemd/systemd
image: docker.io/cisagov/docker-debian13-ansible:latest
name: debian13-systemd-amd64
platform: amd64
pre_build_image: true
privileged: true
volumes:
- /sys/fs/cgroup:/sys/fs/cgroup:rw
- cgroupns_mode: host
command: /lib/systemd/systemd
image: docker.io/cisagov/docker-debian13-ansible:latest
name: debian13-systemd-arm64
platform: arm64
pre_build_image: true
privileged: true
volumes:
- /sys/fs/cgroup:/sys/fs/cgroup:rw
- cgroupns_mode: host
command: /lib/systemd/systemd
image: docker.io/cisagov/docker-kali-ansible:latest
name: kali-systemd-amd64
platform: amd64
pre_build_image: true
privileged: true
volumes:
- /sys/fs/cgroup:/sys/fs/cgroup:rw
- cgroupns_mode: host
command: /lib/systemd/systemd
image: docker.io/cisagov/docker-kali-ansible:latest
name: kali-systemd-arm64
platform: arm64
pre_build_image: true
privileged: true
volumes:
- /sys/fs/cgroup:/sys/fs/cgroup:rw
- cgroupns_mode: host
command: /lib/systemd/systemd
image: docker.io/geerlingguy/docker-fedora39-ansible:latest
name: fedora39-systemd-amd64
platform: amd64
pre_build_image: true
privileged: true
volumes:
- /sys/fs/cgroup:/sys/fs/cgroup:rw
- cgroupns_mode: host
command: /lib/systemd/systemd
image: docker.io/geerlingguy/docker-fedora39-ansible:latest
name: fedora39-systemd-arm64
platform: arm64
pre_build_image: true
privileged: true
volumes:
- /sys/fs/cgroup:/sys/fs/cgroup:rw
- cgroupns_mode: host
command: /lib/systemd/systemd
image: docker.io/geerlingguy/docker-fedora40-ansible:latest
name: fedora40-systemd-amd64
platform: amd64
pre_build_image: true
privileged: true
volumes:
- /sys/fs/cgroup:/sys/fs/cgroup:rw
- cgroupns_mode: host
command: /lib/systemd/systemd
image: docker.io/geerlingguy/docker-fedora40-ansible:latest
name: fedora40-systemd-arm64
platform: arm64
pre_build_image: true
privileged: true
volumes:
- /sys/fs/cgroup:/sys/fs/cgroup:rw
- cgroupns_mode: host
command: /lib/systemd/systemd
image: docker.io/geerlingguy/docker-fedora41-ansible:latest
name: fedora41-systemd-amd64
platform: amd64
pre_build_image: true
privileged: true
volumes:
- /sys/fs/cgroup:/sys/fs/cgroup:rw
- cgroupns_mode: host
command: /lib/systemd/systemd
image: docker.io/geerlingguy/docker-fedora41-ansible:latest
name: fedora41-systemd-arm64
platform: arm64
pre_build_image: true
privileged: true
volumes:
- /sys/fs/cgroup:/sys/fs/cgroup:rw
# These platforms do not provide systemd-resolved.
# - cgroupns_mode: host
# command: /lib/systemd/systemd
# image: docker.io/geerlingguy/docker-ubuntu2004-ansible:latest
# name: ubuntu-20-systemd-amd64
# platform: amd64
# pre_build_image: true
# privileged: true
# volumes:
# - /sys/fs/cgroup:/sys/fs/cgroup:rw
# - cgroupns_mode: host
# command: /lib/systemd/systemd
# image: docker.io/geerlingguy/docker-ubuntu2004-ansible:latest
# name: ubuntu-20-systemd-arm64
# platform: arm64
# pre_build_image: true
# privileged: true
# volumes:
# - /sys/fs/cgroup:/sys/fs/cgroup:rw
# - cgroupns_mode: host
# command: /lib/systemd/systemd
# image: docker.io/geerlingguy/docker-ubuntu2204-ansible:latest
# name: ubuntu-22-systemd-amd64
# platform: amd64
# pre_build_image: true
# privileged: true
# volumes:
# - /sys/fs/cgroup:/sys/fs/cgroup:rw
# - cgroupns_mode: host
# command: /lib/systemd/systemd
# image: docker.io/geerlingguy/docker-ubuntu2204-ansible:latest
# name: ubuntu-22-systemd-arm64
# platform: arm64
# pre_build_image: true
# privileged: true
# volumes:
# - /sys/fs/cgroup:/sys/fs/cgroup:rw
- cgroupns_mode: host
command: /lib/systemd/systemd
image: docker.io/geerlingguy/docker-ubuntu2404-ansible:latest
name: ubuntu-24-systemd-amd64
platform: amd64
pre_build_image: true
privileged: true
volumes:
- /sys/fs/cgroup:/sys/fs/cgroup:rw
- cgroupns_mode: host
command: /lib/systemd/systemd
image: docker.io/geerlingguy/docker-ubuntu2404-ansible:latest
name: ubuntu-24-systemd-arm64
platform: arm64
pre_build_image: true
privileged: true
volumes:
- /sys/fs/cgroup:/sys/fs/cgroup:rw
provisioner:
name: ansible
config_options:
defaults:
# Molecule used to add ${MOLECULE_PROJECT_DIRECTORY}/. to this
# path for us pre-25.2.0, but now we have to do it ourselves.
# See ansible/molecule#4380 and
# https://github.com/ansible/molecule/releases/tag/v25.2.0 for
# more details.
roles_path: ~/.cache/molecule/skeleton-ansible-role/${MOLECULE_SCENARIO_NAME}/roles:${MOLECULE_PROJECT_DIRECTORY}/..:~/.ansible/roles:/usr/share/ansible/roles:/etc/ansible/roles
verifier:
name: testinfra
10 changes: 4 additions & 6 deletions .github/dependabot.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -11,21 +11,19 @@ updates:
# Managed by cisagov/skeleton-generic
- dependency-name: actions/cache
- dependency-name: actions/checkout
- dependency-name: actions/dependency-review-action
- dependency-name: actions/setup-go
- dependency-name: actions/setup-python
- dependency-name: cisagov/action-job-preamble
- dependency-name: cisagov/setup-env-github-action
- dependency-name: crazy-max/ghaction-dump-context
- dependency-name: crazy-max/ghaction-github-labeler
- dependency-name: crazy-max/ghaction-github-status
- dependency-name: GitHubSecurityLab/actions-permissions
- dependency-name: github/codeql-action
- dependency-name: hashicorp/setup-packer
- dependency-name: hashicorp/setup-terraform
- dependency-name: mxschmitt/action-tmate
- dependency-name: step-security/harden-runner
# Managed by cisagov/skeleton-ansible-role
- dependency-name: cisagov/action-disable-apparmor
- dependency-name: docker/setup-buildx-action
- dependency-name: docker/setup-qemu-action
- dependency-name: github/codeql-action
package-ecosystem: github-actions
schedule:
interval: weekly
Expand Down
40 changes: 20 additions & 20 deletions .github/labels.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,69 +2,69 @@
# Rather than breaking up descriptions into multiline strings we disable that
# specific rule in yamllint for this file.
# yamllint disable rule:line-length
- color: "eb6420"
- color: eb6420
description: This issue or pull request is awaiting the outcome of another issue or pull request
name: blocked
- color: "000000"
description: This issue or pull request involves changes to existing functionality
name: breaking change
- color: "d73a4a"
- color: d73a4a
description: This issue or pull request addresses broken functionality
name: bug
- color: "07648d"
- color: 07648d
description: This issue will be advertised on code.gov's Open Tasks page (https://code.gov/open-tasks)
name: code.gov
- color: "0366d6"
- color: 0366d6
description: Pull requests that update a dependency file
name: dependencies
- color: "5319e7"
- color: 5319e7
description: This issue or pull request improves or adds to documentation
name: documentation
- color: "cfd3d7"
- color: cfd3d7
description: This issue or pull request already exists or is covered in another issue or pull request
name: duplicate
- color: "b005bc"
- color: b005bc
description: A high-level objective issue encompassing multiple issues instead of a specific unit of work
name: epic
- color: "000000"
description: Pull requests that update GitHub Actions code
name: github-actions
- color: "0e8a16"
- color: 0e8a16
description: This issue or pull request is well-defined and good for newcomers
name: good first issue
- color: "ff7518"
- color: ff7518
description: Pull request that should count toward Hacktoberfest participation
name: hacktoberfest-accepted
- color: "a2eeef"
- color: a2eeef
description: This issue or pull request will add or improve functionality, maintainability, or ease of use
name: improvement
- color: "fef2c0"
- color: fef2c0
description: This issue or pull request is not applicable, incorrect, or obsolete
name: invalid
- color: "ce099a"
- color: ce099a
description: This pull request is ready to merge during the next Lineage Kraken release
name: kraken 🐙
- color: "a4fc5d"
- color: a4fc5d
description: This issue or pull request requires further information
name: need info
- color: "fcdb45"
- color: fcdb45
description: This pull request is awaiting an action or decision to move forward
name: on hold
- color: "ef476c"
- color: ef476c
description: This issue is a request for information or needs discussion
name: question
- color: "d73a4a"
- color: d73a4a
description: This issue or pull request addresses a security issue
name: security
- color: "00008b"
- color: 00008b
description: This issue or pull request adds or otherwise modifies test code
name: test
- color: "1d76db"
- color: 1d76db
description: This issue or pull request pulls in upstream updates
name: upstream update
- color: "d4c5f9"
- color: d4c5f9
description: This issue or pull request increments the version number
name: version bump
- color: "ffffff"
- color: ffffff
description: This issue will not be incorporated
name: wontfix
2 changes: 1 addition & 1 deletion .github/lineage.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,4 +2,4 @@
lineage:
skeleton:
remote-url: https://github.com/cisagov/skeleton-ansible-role.git
version: '1'
version: "1"
Loading