From 7d34eb34cea7505840b5caf74f096c08779c25e8 Mon Sep 17 00:00:00 2001 From: Sebastian Rust Date: Fri, 6 Feb 2026 10:29:58 +0100 Subject: [PATCH] fix(cicd): fixed build process --- .gitea/workflows/build.yml | 5 ++++- bootstrap.yml | 2 +- requirements.yml | 4 ++++ 3 files changed, 9 insertions(+), 2 deletions(-) create mode 100644 requirements.yml diff --git a/.gitea/workflows/build.yml b/.gitea/workflows/build.yml index 30d661b..6d0beaa 100644 --- a/.gitea/workflows/build.yml +++ b/.gitea/workflows/build.yml @@ -28,6 +28,9 @@ jobs: python3 -m venv .venv .venv/bin/pip install ansible echo "$PWD/.venv/bin" >> $GITHUB_PATH + - name: install Ansible dependencies + run: | + ansible-galaxy role install -r requirements.yml --roles-path roles - name: Verify playbook syntax run: | @@ -35,7 +38,7 @@ jobs: - name: Build bundle run: | - bundle-playbook bootstrap.yml -o bootstrap.run + bundle-playbook -f bootstrap.yml -o bootstrap.run - name: Generate checksums run: | diff --git a/bootstrap.yml b/bootstrap.yml index 8e66db2..c177d34 100644 --- a/bootstrap.yml +++ b/bootstrap.yml @@ -70,7 +70,7 @@ - role: users become: yes - - role: ssh_hardening + - role: dev-sec.ssh-hardening become: yes post_tasks: diff --git a/requirements.yml b/requirements.yml new file mode 100644 index 0000000..a54a9a9 --- /dev/null +++ b/requirements.yml @@ -0,0 +1,4 @@ +--- +roles: + - name: dev-sec.ssh-hardening + \ No newline at end of file