mirror of
https://github.com/dev-sec/ansible-collection-hardening
synced 2024-11-10 09:14:18 +00:00
66 lines
1.2 KiB
YAML
66 lines
1.2 KiB
YAML
---
|
|
dependency:
|
|
name: galaxy
|
|
options:
|
|
role-file: molecule/os_hardening/requirements.yml
|
|
driver:
|
|
name: docker
|
|
platforms:
|
|
- name: instance
|
|
image: "rndmh3ro/docker-${MOLECULE_DISTRO}-ansible:latest"
|
|
command: ${MOLECULE_DOCKER_COMMAND:-/lib/systemd/systemd}
|
|
volumes:
|
|
- /sys/fs/cgroup:/sys/fs/cgroup:rw
|
|
privileged: true
|
|
cgroupns_mode: host
|
|
pre_build_image: true
|
|
environment:
|
|
container: docker
|
|
security_opts:
|
|
- apparmor=unconfined
|
|
env:
|
|
http_proxy: "${http_proxy}"
|
|
https_proxy: "${https_proxy}"
|
|
no_proxy: "${no_proxy}"
|
|
container: docker
|
|
provisioner:
|
|
name: ansible
|
|
options:
|
|
diff: true
|
|
config_options:
|
|
defaults:
|
|
interpreter_python: auto_silent
|
|
callback_whitelist: profile_tasks, timer, yaml
|
|
verifier:
|
|
name: ansible
|
|
|
|
scenario:
|
|
create_sequence:
|
|
- dependency
|
|
- create
|
|
- prepare
|
|
check_sequence:
|
|
- dependency
|
|
- destroy
|
|
- create
|
|
- prepare
|
|
- converge
|
|
- check
|
|
- destroy
|
|
converge_sequence:
|
|
- dependency
|
|
- create
|
|
- prepare
|
|
- converge
|
|
destroy_sequence:
|
|
- destroy
|
|
test_sequence:
|
|
- dependency
|
|
- destroy
|
|
- syntax
|
|
- create
|
|
- prepare
|
|
- converge
|
|
- idempotence
|
|
- verify
|
|
- destroy
|