Linting.

Signed-off-by: Bernd Grobauer <[email protected]>
ansible-lockdown · Sep 22, 2023 · b766a87 · b766a87
1 parent a5a1a2d
commit b766a87
Show file tree

Hide file tree

Showing 2 changed files with 8 additions and 10 deletions.
diff --git a/tasks/prelim.yml b/tasks/prelim.yml
@@ -1,11 +1,10 @@
 ---
 - name: "PRELIM | Set default values for facts"
   ansible.builtin.set_fact:
-    control_1_6_1_4_was_run: false
-    ubtu22cis_apparmor_enforce_only: false
+      control_1_6_1_4_was_run: false
+      ubtu22cis_apparmor_enforce_only: false
   changed_when: false
 
-
 - name: "PRELIM | Register if snap being used"
   ansible.builtin.shell: df -h | grep -wc "/snap"
   changed_when: false

diff --git a/tasks/section_1/cis_1.6.x.yml b/tasks/section_1/cis_1.6.x.yml
@@ -66,8 +66,8 @@
   block:
       - name: "1.6.1.4 | PATCH | Ensure all AppArmor Profiles are enforcing | Make sure that 1.6.1.3 is not run"
         ansible.builtin.set_fact:
-          control_1_6_1_4_was_run: true
-          ubtu22cis_apparmor_enforce_only: true
+            control_1_6_1_4_was_run: true
+            ubtu22cis_apparmor_enforce_only: true
         changed_when: false
 
       - name: "1.6.1.4 | PATCH | Ensure all AppArmor Profiles are enforcing | Get pre apply enforce count"
@@ -108,16 +108,16 @@
   block:
       - name: "1.6.1.3 | AUDIT | Ensure all AppArmor Profiles are in enforce or complain | Set ubtu22cis_apparmor_enforce_only true for GOSS"
         ansible.builtin.set_fact:
-          ubtu22cis_apparmor_enforce_only: true
+            ubtu22cis_apparmor_enforce_only: true
         changed_when: false
         when:
-          - ubtu22cis_apparmor_mode == "enforce"
+            - ubtu22cis_apparmor_mode == "enforce"
       - name: "1.6.1.3 | AUDIT | Ensure all AppArmor Profiles are in enforce or complain | Set ubtu22cis_apparmor_enforce_only false for GOSS"
         ansible.builtin.set_fact:
-          ubtu22cis_apparmor_enforce_only: false
+            ubtu22cis_apparmor_enforce_only: false
         changed_when: false
         when:
-          - ubtu22cis_apparmor_mode == "complain"
+            - ubtu22cis_apparmor_mode == "complain"
       - name: "1.6.1.3 | PATCH | Ensure all AppArmor Profiles are in enforce or complain mode | Get pre apply enforce count"
         ansible.builtin.shell: apparmor_status |  grep "profiles are in {{ubtu22cis_apparmor_mode}} mode" | tr -d -c 0-9
         changed_when: false
@@ -151,4 +151,3 @@
       - patch
       - rule_1.6.1.3
       - apparmor
-