lint changes

alexanderbazhenoff · Mar 23, 2024 · c988023 · c988023
1 parent 3e5e68d
commit c988023
Show file tree

Hide file tree

Showing 10 changed files with 28 additions and 14 deletions.
diff --git a/.github/workflows/mega_linter.yml b/.github/workflows/mega_linter.yml
@@ -8,6 +8,11 @@ on: # yamllint disable-line rule:truthy
       - master
 permissions: read-all
 
+env:
+  APPLY_FIXES: all
+  APPLY_FIXES_EVENT: all
+  APPLY_FIXES_MODE: commit
+
 concurrency:
   group: ${{ github.ref }}-${{ github.workflow }}
   cancel-in-progress: true
@@ -17,9 +22,9 @@ jobs:
     name: MegaLinter
     runs-on: ubuntu-latest
     permissions:
-      contents: read
+      contents: write
       issues: write
-      pull-requests: read
+      pull-requests: write
       statuses: write
 
     steps:
@@ -30,8 +35,17 @@ jobs:
           fetch-depth: 0
 
       - name: MegaLinter
-        uses: oxsecurity/megalinter@latest
+        uses: oxsecurity/megalinter@latest   # kics-scan ignore-line
         id: ml
         env:
           VALIDATE_ALL_CODEBASE: true
-          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Archive production artifacts
+        uses: actions/upload-artifact@v4
+        if: success() || failure()
+        with:
+          name: MegaLinter reports
+          path: |
+            megalinter-reports
+            mega-linter.log
diff --git a/roles/bareos/tasks/pkg_management/install_dnf.yml b/roles/bareos/tasks/pkg_management/install_dnf.yml
@@ -3,7 +3,7 @@
 - name: "install dnf | Install packages"   # noqa package-latest
   ansible.builtin.dnf:
     name: "{{ item }}"
-    state: latest
+    state: latest   # kics-scan ignore-line
     update_cache: true
   register: install_yum_results
   until: install_yum_results is succeeded

diff --git a/roles/bareos/tasks/pkg_management/install_yum.yml b/roles/bareos/tasks/pkg_management/install_yum.yml
@@ -3,7 +3,7 @@
 - name: "install yum | Install packages"   # noqa package-latest
   ansible.builtin.yum:
     name: "{{ item }}"
-    state: latest
+    state: latest   # kics-scan ignore-line
     update_cache: true
   register: install_yum_results
   until: install_yum_results is succeeded

diff --git a/roles/postgresql/examples/install_postgresql16_with_pgadmin.yml b/roles/postgresql/examples/install_postgresql16_with_pgadmin.yml
@@ -13,8 +13,8 @@
       vars:
         postgresql_version: 16
         install_pgadmin: true
-        pgadmin_email: a.bazhenov@tm-industries.ru
-        pgadmin_password: Postgresql4Space
+        pgadmin_email: admin@domain.com
+        pgadmin_password: my_pgadmin_password   # kics-scan ignore-line
         postgresql_conf:
           port: 5432
           max_connections: 1000

diff --git a/roles/postgresql/molecule/default/side_effect.yml b/roles/postgresql/molecule/default/side_effect.yml
@@ -15,7 +15,7 @@
         role_subject: users
         postgresql_users:
           - name: test
-            password: my_password
+            password: my_password   # kics-scan ignore-line
 
     - name: "default >>> side effect | Include postgresql role to create database"
       ansible.builtin.include_role:

diff --git a/roles/postgresql/tasks/pkg_management/install_apk.yml b/roles/postgresql/tasks/pkg_management/install_apk.yml
@@ -3,7 +3,7 @@
 - name: "install apk | Install packages"
   community.general.apk:
     name: "{{ item.package }}"
-    state: latest
+    state: latest   # kics-scan ignore-line
     update_cache: True
   register: install_results
   until: install_results is succeeded

diff --git a/roles/postgresql/tasks/pkg_management/install_apt.yml b/roles/postgresql/tasks/pkg_management/install_apt.yml
@@ -3,7 +3,7 @@
 - name: "install apt | Install packages"   # noqa package-latest
   ansible.builtin.apt:
     name: "{{ item.package }}"
-    state: latest
+    state: latest   # kics-scan ignore-line
     update_cache: True
   register: install_results
   until: install_results is succeeded

diff --git a/roles/postgresql/tasks/pkg_management/install_dnf.yml b/roles/postgresql/tasks/pkg_management/install_dnf.yml
@@ -3,7 +3,7 @@
 - name: "install dnf | Install packages"   # noqa package-latest
   ansible.builtin.dnf:
     name: "{{ item.package }}"
-    state: latest
+    state: latest   # kics-scan ignore-line
     update_cache: True
     disable_gpg_check: "{{ item.disable_gpg_check | default(False) }}"
   register: install_results

diff --git a/roles/postgresql/tasks/pkg_management/install_yum.yml b/roles/postgresql/tasks/pkg_management/install_yum.yml
@@ -3,7 +3,7 @@
 - name: "install yum | Install packages"   # noqa package-latest
   ansible.builtin.yum:
     name: "{{ item.package }}"
-    state: latest
+    state: latest   # kics-scan ignore-line
     update_cache: True
     disablerepo: "{{ item.disable_repo | default(omit) }}"
     enablerepo: "{{ item.enable_repo | default(omit) }}"

diff --git a/roles/postgresql/tasks/server_packages_redhat.yml b/roles/postgresql/tasks/server_packages_redhat.yml
@@ -30,7 +30,7 @@
 - name: "server packages redhat | Install repo package to check versioned postgresql package is available"
   ansible.builtin.dnf:
     name: "{{ postgresql_packages[1].package }}"
-    state: latest   # noqa package-latest
+    state: latest   # noqa package-latest # kics-scan ignore-line
     update_cache: True
     disable_gpg_check: "{{ postgresql_packages[1].disable_gpg_check | default(False) }}"
   ignore_errors: True