search

thaum-xyz / ankhmorpork

@paulfantom's GitOps managed kube cluster running in a cupboard. Built with fancy tools :sparkles:
https://ankhmorpork.thaum.xyz
MIT License
77 stars 10 forks source link

Update dependency devsec.hardening to v9 #412

Closed renovate[bot] closed 10 months ago

renovate[bot] commented 1 year ago

Mend Renovate

This PR contains the following updates:

Package Type Update Change
devsec.hardening galaxy-collection major 8.8.0 -> 9.0.0

Release Notes

dev-sec/ansible-collection-hardening (devsec.hardening) ### [`v9.0.0`](https://togithub.com/dev-sec/ansible-collection-hardening/blob/HEAD/CHANGELOG.md#900-2023-11-16) [Compare Source](https://togithub.com/dev-sec/ansible-collection-hardening/compare/8.8.0...9.0.0) [Full Changelog](https://togithub.com/dev-sec/ansible-collection-hardening/compare/8.8.0...9.0.0) **Breaking changes:** - make it possible to configure more then yes and no for PermitTunnel [#​715](https://togithub.com/dev-sec/ansible-collection-hardening/pull/715) \[[ssh_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/ssh_hardening)] ([rndmh3ro](https://togithub.com/rndmh3ro)) - add role argument spec for os, ssh, mysql [#​687](https://togithub.com/dev-sec/ansible-collection-hardening/pull/687) \[[mysql_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/mysql_hardening)] \[[os_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/os_hardening)] \[[ssh_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/ssh_hardening)] \[[nginx_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/nginx_hardening)] ([rndmh3ro](https://togithub.com/rndmh3ro)) **Implemented enhancements:** - Create role documentation with Automated-Ansible-Role-Documentation [#​694](https://togithub.com/dev-sec/ansible-collection-hardening/issues/694) - Minimize access user paths should be fully configurable [#​689](https://togithub.com/dev-sec/ansible-collection-hardening/issues/689) - Add support for Debian 12 [#​672](https://togithub.com/dev-sec/ansible-collection-hardening/issues/672) - add testing and support for current versions of Fedora and FreeBSD [#​709](https://togithub.com/dev-sec/ansible-collection-hardening/pull/709) \[[os_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/os_hardening)] \[[ssh_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/ssh_hardening)] ([schurzi](https://togithub.com/schurzi)) - feat: workflow for roles readme [#​705](https://togithub.com/dev-sec/ansible-collection-hardening/pull/705) \[[ssh_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/ssh_hardening)] ([Nemental](https://togithub.com/Nemental)) - do not try to drop roles in mysql hardening [#​649](https://togithub.com/dev-sec/ansible-collection-hardening/pull/649) \[[mysql_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/mysql_hardening)] ([rndmh3ro](https://togithub.com/rndmh3ro)) **Fixed bugs:** - nginx conf.d directory is missing on Rocky Linux 8 [#​707](https://togithub.com/dev-sec/ansible-collection-hardening/issues/707) - Default value of `ssh_client_alive_interval` is inconsistent with what documentation says [#​701](https://togithub.com/dev-sec/ansible-collection-hardening/issues/701) - \[devsec.hardening.os_hardening : restart-auditd] fails [#​698](https://togithub.com/dev-sec/ansible-collection-hardening/issues/698) - sshd_hardening role cannot be used to build system images [#​697](https://togithub.com/dev-sec/ansible-collection-hardening/issues/697) - Error: No file was found when using first_found on Ubuntu 20.04 [#​676](https://togithub.com/dev-sec/ansible-collection-hardening/issues/676) - PUBLIC-role breaks mysql-hardening [#​648](https://togithub.com/dev-sec/ansible-collection-hardening/issues/648) - Error deploying the playbook [#​630](https://togithub.com/dev-sec/ansible-collection-hardening/issues/630) - Gather facts when os_hardening role is executed with tags [#​708](https://togithub.com/dev-sec/ansible-collection-hardening/pull/708) \[[os_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/os_hardening)] ([schurzi](https://togithub.com/schurzi)) **Closed issues:** - Dependency Dashboard [#​655](https://togithub.com/dev-sec/ansible-collection-hardening/issues/655) - Add send-to-mailinglist to github release action [#​434](https://togithub.com/dev-sec/ansible-collection-hardening/issues/434) **Merged pull requests:** - update status badges in README [#​714](https://togithub.com/dev-sec/ansible-collection-hardening/pull/714) \[[mysql_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/mysql_hardening)] \[[os_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/os_hardening)] \[[ssh_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/ssh_hardening)] \[[nginx_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/nginx_hardening)] ([schurzi](https://togithub.com/schurzi)) - fix CI test for os_hardening [#​711](https://togithub.com/dev-sec/ansible-collection-hardening/pull/711) \[[os_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/os_hardening)] ([schurzi](https://togithub.com/schurzi)) - fix nginx CI tests [#​710](https://togithub.com/dev-sec/ansible-collection-hardening/pull/710) \[[nginx_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/nginx_hardening)] ([schurzi](https://togithub.com/schurzi)) - fix: roles-readme action default value [#​706](https://togithub.com/dev-sec/ansible-collection-hardening/pull/706) \[[ssh_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/ssh_hardening)] ([Nemental](https://togithub.com/Nemental)) - fix some wrong defaults and types in the readmes [#​703](https://togithub.com/dev-sec/ansible-collection-hardening/pull/703) \[[mysql_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/mysql_hardening)] \[[os_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/os_hardening)] \[[ssh_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/ssh_hardening)] \[[nginx_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/nginx_hardening)] ([rndmh3ro](https://togithub.com/rndmh3ro)) - update links to new Ansible Galaxy [#​702](https://togithub.com/dev-sec/ansible-collection-hardening/pull/702) \[[nginx_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/nginx_hardening)] ([schurzi](https://togithub.com/schurzi)) - Fix typo in login.defs.j2 [#​700](https://togithub.com/dev-sec/ansible-collection-hardening/pull/700) \[[os_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/os_hardening)] ([nejch](https://togithub.com/nejch)) - chore(deps): update actions/checkout action to v4 [#​696](https://togithub.com/dev-sec/ansible-collection-hardening/pull/696) \[[mysql_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/mysql_hardening)] \[[os_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/os_hardening)] \[[ssh_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/ssh_hardening)] \[[nginx_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/nginx_hardening)] ([renovate\[bot\]](https://togithub.com/apps/renovate)) - test debian12 on VM [#​695](https://togithub.com/dev-sec/ansible-collection-hardening/pull/695) ([rndmh3ro](https://togithub.com/rndmh3ro)) - fix descriptions in readme [#​693](https://togithub.com/dev-sec/ansible-collection-hardening/pull/693) \[[os_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/os_hardening)] ([rndmh3ro](https://togithub.com/rndmh3ro)) - feat: customize user paths default [#​692](https://togithub.com/dev-sec/ansible-collection-hardening/pull/692) \[[os_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/os_hardening)] ([S0obi](https://togithub.com/S0obi)) - disable PAM tests [#​691](https://togithub.com/dev-sec/ansible-collection-hardening/pull/691) \[[os_hardening](https://togithub.com/dev-sec/ansible-collection-hardening/labels/os_hardening)] ([rndmh3ro](https://togithub.com/rndmh3ro))

Configuration

πŸ“… Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

β™» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

πŸ”• Ignore: Close this PR and you won't be reminded about this update again.

This PR has been generated by Mend Renovate. View repository job log here.