animatco
commented
2 months ago I would agree, that it would make life easier for those wanting to always have the latest version of the code with-out regression testing. One point though from a security standpoint, never run code with out going through it and testing on a segregated network . You always need to check that the code is what you are expecting and not something that can be dangerous or malevolent. This is in general for any code you may use that you did not write.
Feature Request or Enhancement
Summary of Request Providing a shell script or any tool to upgrade defaults/main.yml vars for custom needs.
Describe Alternatives You've Considered You provide default values for your vars in defaults/main.yml, that we can adapt for our needs. I already did the migration from 1.1.1 to 1.2.0, then 1.2.0 to 1.3.0, and this is painful and time consuming to check if each task in the previous version has the same task number, variable name, variable value in the new version. Is it possible to provide a script that will generate a new variable file based on a provided file to have an easier way to implement new versions of CIS hardening for Windows ?