diff --git a/.github/workflows/automatus-cs8.yaml b/.github/workflows/automatus-cs8.yaml index 0af1ab1df12..56843a7fb07 100644 --- a/.github/workflows/automatus-cs8.yaml +++ b/.github/workflows/automatus-cs8.yaml @@ -63,6 +63,8 @@ jobs: validate-ubuntu: name: Run Tests needs: build-content + permissions: + actions: write runs-on: ubuntu-20.04 steps: - name: Install Deps @@ -172,6 +174,7 @@ jobs: if: ${{ steps.ctf.outputs.CTF_OUTPUT_SIZE != '0' }} uses: geekyeggo/delete-artifact@v4 with: + token: ${{ github.token }} name: ${{ env.DATASTREAM }} useGlob: false - name: Fail in case of ERROR present in logs_bash/test_suite.log or logs_ansible/test_suite.log diff --git a/.github/workflows/automatus-cs9.yaml b/.github/workflows/automatus-cs9.yaml index f87a7659077..ed9a23882e1 100644 --- a/.github/workflows/automatus-cs9.yaml +++ b/.github/workflows/automatus-cs9.yaml @@ -63,6 +63,8 @@ jobs: validate-ubuntu: name: Run Tests needs: build-content + permissions: + actions: write runs-on: ubuntu-20.04 steps: - name: Install Deps @@ -172,6 +174,7 @@ jobs: if: ${{ steps.ctf.outputs.CTF_OUTPUT_SIZE != '0' }} uses: geekyeggo/delete-artifact@v4 with: + token: ${{ github.token }} name: ${{ env.DATASTREAM }} useGlob: false - name: Fail in case of ERROR present in logs_bash/test_suite.log or logs_ansible/test_suite.log diff --git a/.github/workflows/automatus-sle15.yaml b/.github/workflows/automatus-sle15.yaml index 1c6fc748928..48ce4e4c778 100644 --- a/.github/workflows/automatus-sle15.yaml +++ b/.github/workflows/automatus-sle15.yaml @@ -71,6 +71,8 @@ jobs: validate-ubuntu: name: Run Tests needs: build-content + permissions: + actions: write runs-on: ubuntu-20.04 steps: - name: Install Deps @@ -180,6 +182,7 @@ jobs: if: ${{ steps.ctf.outputs.CTF_OUTPUT_SIZE != '0' }} uses: geekyeggo/delete-artifact@v4 with: + token: ${{ github.token }} name: ${{ env.DATASTREAM }} useGlob: false - name: Fail in case of ERROR present in logs_bash/test_suite.log or logs_ansible/test_suite.log diff --git a/.github/workflows/automatus.yaml b/.github/workflows/automatus.yaml index 3fdbaab7d6b..d287274876b 100644 --- a/.github/workflows/automatus.yaml +++ b/.github/workflows/automatus.yaml @@ -61,6 +61,8 @@ jobs: validate-ubuntu: name: Run Tests needs: build-content + permissions: + actions: write runs-on: ubuntu-20.04 steps: - name: Install Deps @@ -170,6 +172,7 @@ jobs: if: ${{ steps.ctf.outputs.CTF_OUTPUT_SIZE != '0' }} uses: geekyeggo/delete-artifact@v4 with: + token: ${{ github.token }} name: ssg-${{steps.product.outputs.prop}}-ds.xml useGlob: false - name: Fail in case of ERROR present in logs_bash/test_suite.log or logs_ansible/test_suite.log diff --git a/linux_os/guide/services/fapolicyd/fapolicy_default_deny/ansible/shared.yml b/linux_os/guide/services/fapolicyd/fapolicy_default_deny/ansible/shared.yml index 16aa203f3ea..46ef09f7b0c 100644 --- a/linux_os/guide/services/fapolicyd/fapolicy_default_deny/ansible/shared.yml +++ b/linux_os/guide/services/fapolicyd/fapolicy_default_deny/ansible/shared.yml @@ -7,7 +7,7 @@ - name: {{{ rule_title }}} - Ensure a Final Rule Denying Everything ansible.builtin.copy: content: | - # Red Hat KCS 7003854 (https://access.redhat.com/solutions/7003854) + # Red Hat KCS 7003854 (https://access.redhat.com/solutions/7003854) test deny perm=any all : all dest: /etc/fapolicyd/rules.d/99-deny-everything.rules owner: root diff --git a/linux_os/guide/system/network/network-nftables/set_nftables_loopback_traffic/ansible/shared.yml b/linux_os/guide/system/network/network-nftables/set_nftables_loopback_traffic/ansible/shared.yml index 991936f9fd8..c1f05563bc9 100644 --- a/linux_os/guide/system/network/network-nftables/set_nftables_loopback_traffic/ansible/shared.yml +++ b/linux_os/guide/system/network/network-nftables/set_nftables_loopback_traffic/ansible/shared.yml @@ -16,11 +16,7 @@ register: ipv6_status - name: Check sysctl value of net.ipv6.conf.all.disable_ipv6 -{{% if product == "rhel7" %}} - ansible.builtin.sysctl: -{{% else %}} ansible.posix.sysctl: -{{%endif %}} name: net.ipv6.conf.all.disable_ipv6 state: present value: "1"