From 60562e85d5a2aca462541644dc63e1036b8674df Mon Sep 17 00:00:00 2001 From: Marcin Bojko Date: Sat, 6 Mar 2021 07:42:34 +0100 Subject: [PATCH] Version 2.2.2 --- CHANGELOG.md | 26 +++++++++++++++++++++++++- linux_mint.yaml | 32 +++++++++++++++++++++++++------- mint20.yaml | 48 +++++++++++++++++++++--------------------------- 3 files changed, 71 insertions(+), 35 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index e068a99..e19c876 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,10 +1,34 @@ # Changelog "linux_mint" +## Version 2.2.2 [2021-03-05] + +* added section `packages_remove` to be removed as step 1 as obsolete packages. +* [PIP] added `kube-hunter` [https://github.com/aquasecurity/kube-hunter](https://github.com/aquasecurity/kube-hunter) +* [APPLICATION] added `kube-bench` [https://github.com/aquasecurity/kube-bench](https://github.com/aquasecurity/kube-bench) +* [APPLICATION] upgraded `docker-compose` to version 1.28.5 +* [APPLICATION] upgraded `k3s` to version 1.19.8 +* [APPLICATION] upgraded `lens` to version 4.1.4 +* [APPLICATION] upgraded `minikube` to version 1.18.1 +* [APPLICATION] upgraded `polaris` to version 3.1.5 +* [APPLICATION] upgraded `amass` to version 3.11.8 +* [APPLICATION] upgraded `dockle` to version 0.3.11 +* [APPLICATION] upgraded `hadolint` to version 1.23.0 +* [APPLICATION] upgraded `rke` to version 1.2.6 +* [APPLICATION] upgraded `vault` to version 1.6.3 +* [VSCODE] added `eriklynd.json-tools` extension +* [VSCODE] added `formulahendry.docker-explorer` extension +* [VSCODE] added `nhoizey.gremlins` extension +* [VSCODE] added `wholroyd.HCL` extension +* [VSCODE] added `piotrpalarz.vscode-gitignore-generator` extension +* [VSCODE] remove `joffreykern.markdown-toc` extension +* [VSCODE] remove `jansenfuller.crayon-vscode` extension + ## Version 2.2.1 [2021-02-21] -* [APPLICATION] upgrade `dockle` to version 0.3.9 +* [APPLICATION] upgraded `dockle` to version 0.3.9 * added `install_npm` variable * added `npm` packages in `npm` section of values file +* [NPM] added `dockerfilelint` ## Version 2.2.0 [2021-02-20] diff --git a/linux_mint.yaml b/linux_mint.yaml index f86ba0d..fa25af6 100644 --- a/linux_mint.yaml +++ b/linux_mint.yaml @@ -80,7 +80,7 @@ - "Install optional packages : {{ install_optional|bool }}" - "Install deb packages : {{ install_deb|bool }}" - "Install_flatpak packages : {{ install_flatpak|bool }}" - - "Install_npm packages : {{ install_npm|bool }}" + - "Install_npm packages : {{ install_npm|bool }}" - "Install vscode extensions : {{ install_vscode_extensions|bool }} " - "Install zsh : {{ install_zsh|bool }}" - "Config for Ansible : {{ config_ansible }}" @@ -135,26 +135,44 @@ loop: "{{ repositories_remove }}" retries: "{{ retries_count }}" delay: 3 - register: repositories_remove - until: repositories_remove is success + register: r_repositories_remove + until: r_repositories_remove is success any_errors_fatal: false tags: - repositories - base -# remove absolete keys + - obsolete +# remove obsolete keys - name: remove_obsolete_apt_keys apt_key: id: "{{ item }}" state: absent loop: "{{ keys_remove }}" - register: remove_keys + register: r_remove_keys retries: "{{ retries_count }}" delay: "{{ delay_time }}" - until: remove_keys is success - any_errors_fatal: true + until: r_remove_keys is success + any_errors_fatal: false tags: - keys - base + - obsolete +# remove obsolete packages + - name: remove_obsolete_apt_packages + apt: + name: "{{ item }}" + state: absent + loop: "{{ packages_remove }}" + register: r_remove_packages + retries: "{{ retries_count }}" + delay: "{{ delay_time }}" + until: r_remove_packages is success + when: packages_remove is defined + any_errors_fatal: false + tags: + - packages + - base + - obsolete # Install apt pgp keys (files) - name: install_apt_keys apt_key: diff --git a/mint20.yaml b/mint20.yaml index 0db8eb9..78db470 100644 --- a/mint20.yaml +++ b/mint20.yaml @@ -112,7 +112,7 @@ repositories_remove: filename: forticlient codename: focal - repo: deb https://packagecloud.io/github/git-lfs/linuxmint/ ulyana main - filename: github_git-lfs + filename: github_git-lfs, - repo: ppa:ubuntuhandbook1/shutter filename: shutter - repo: ppa:synapse-core/testing @@ -141,6 +141,8 @@ keys_keyserver: id: ACCAF35C keys_remove: - 5E54716D +packages_remove: +- ansible packages_essential: - apt-transport-https - mc @@ -154,7 +156,7 @@ packages_essential: - xz-utils packages: - synaptic -- ansible +- ansible-base - azure-cli - google-cloud-sdk - gcsfuse @@ -310,16 +312,17 @@ deb: - https://github.com/BoostIO/boost-releases/releases/download/v0.16.1/boostnote_0.16.1_amd64.deb - https://github.com/Eugeny/terminus/releases/download/v1.0.134/terminus-1.0.134-linux.deb - https://github.com/TheGoddessInari/hamsket/releases/download/0.6.2/hamsket_0.6.2_amd64.deb -- https://github.com/kubernetes/minikube/releases/download/v1.17.1/minikube_1.17.1-0_amd64.deb +- https://github.com/kubernetes/minikube/releases/download/v1.18.1/minikube_1.18.1-0_amd64.deb - https://wdl1.pcfg.cache.wpscdn.com/wpsdl/wpsoffice/download/linux/10161/wps-office_11.1.0.10161.XA_amd64.deb - https://github.com/wagoodman/dive/releases/download/v0.9.2/dive_0.9.2_linux_amd64.deb - https://github.com/balena-io/etcher/releases/download/v1.5.116/balena-etcher-electron_1.5.116_amd64.deb -- https://github.com/goodwithtech/dockle/releases/download/v0.3.9/dockle_0.3.9_Linux-64bit.deb +- https://github.com/goodwithtech/dockle/releases/download/v0.3.11/dockle_0.3.11_Linux-64bit.deb - http://archive.ubuntu.com/ubuntu/pool/universe/p/pygtk/python-gtk2_2.24.0-5.1ubuntu2_amd64.deb - https://github.com/kaikramer/keystore-explorer/releases/download/v5.4.4/kse_5.4.4_all.deb - http://archive.ubuntu.com/ubuntu/pool/universe/n/nmap/zenmap_7.60-1ubuntu5_all.deb - https://downloads.raspberrypi.org/imager/imager_1.5_amd64.deb -- https://github.com/lensapp/lens/releases/download/v4.1.2/Lens-4.1.2.amd64.deb +- https://github.com/lensapp/lens/releases/download/v4.1.4/Lens-4.1.4.amd64.deb +- https://github.com/aquasecurity/kube-bench/releases/download/v0.5.0/kube-bench_0.5.0_linux_amd64.deb flatpak: - name: https://flathub.org/repo/appstream/com.getpostman.Postman.flatpakref npm: @@ -340,13 +343,14 @@ pip: - jmespath - jsonlint - gittyleaks +- kube-hunter unpack: - url: https://get.helm.sh/helm-v3.5.2-linux-amd64.tar.gz destination: helm source: helm destination_file: helm3.tar.gz folder: linux-amd64 -- url: https://github.com/OWASP/Amass/releases/download/v3.11.5/amass_linux_amd64.zip +- url: https://github.com/OWASP/Amass/releases/download/v3.11.8/amass_linux_amd64.zip destination: amass source: amass folder: amass_linux_amd64 @@ -363,7 +367,7 @@ downloads: - url: https://releases.hashicorp.com/terraform/0.14.7/terraform_0.14.7_linux_amd64.zip destination: terraform skip_tree: false -- url: https://releases.hashicorp.com/vault/1.6.2/vault_1.6.2_linux_amd64.zip +- url: https://releases.hashicorp.com/vault/1.6.3/vault_1.6.3_linux_amd64.zip destination: vault skip_tree: false - url: https://github.com/terraform-linters/tflint/releases/download/v0.24.1/tflint_linux_amd64.zip @@ -372,36 +376,25 @@ downloads: - url: https://github.com/ffuf/ffuf/releases/download/v1.0.2/ffuf_1.0.2_linux_amd64.tar.gz destination: ffluf skip_tree: false -- url: https://github.com/FairwindsOps/polaris/releases/download/3.1.3/polaris_3.1.3_linux_amd64.tar.gz +- url: https://github.com/FairwindsOps/polaris/releases/download/3.1.5/polaris_3.1.5_linux_amd64.tar.gz destination: polaris skip_tree: false files: -- url: https://github.com/docker/compose/releases/download/1.28.4/docker-compose-Linux-x86_64 +- url: https://github.com/docker/compose/releases/download/1.28.5/docker-compose-Linux-x86_64 destination: docker-compose - url: https://github.com/bcicen/ctop/releases/download/v0.7.5/ctop-0.7.5-linux-amd64 destination: ctop -- url: https://github.com/rancher/rke/releases/download/v1.2.5/rke_linux-amd64 +- url: https://github.com/rancher/rke/releases/download/v1.2.6/rke_linux-amd64 destination: rke - url: https://github.com/dannagle/PacketSender/releases/download/v7.0.5/PacketSender_v7.0.5.AppImage destination: packetsender desktop_file: ./files/apps/packetsender/packetsender.desktop -- url: https://github.com/k3s-io/k3s/releases/download/v1.19.7%2Bk3s1/k3s +- url: https://github.com/k3s-io/k3s/releases/download/v1.19.8%2Bk3s1/k3s destination: k3s - url: https://github.com/rancher/k3d/releases/download/v4.2.0/k3d-linux-amd64 destination: k3d -- url: https://github.com/hadolint/hadolint/releases/download/v1.22.1/hadolint-Linux-x86_64 +- url: https://github.com/hadolint/hadolint/releases/download/v1.23.0/hadolint-Linux-x86_64 destination: hadolint -#mitogen: -# config: -# - section: defaults -# option: strategy -# value: mitogen_linear -# - section: defaults -# option: strategy_plugins -# value: /etc/ansible/mitogen/ansible_mitogen/plugins/strategy -# download: -# - urls: https://networkgenomics.com/try/mitogen-0.2.9.tar.gz -# dest_path: /etc/ansible/mitogen ansible: cfg: /etc/ansible/ansible.cfg config: @@ -442,8 +435,6 @@ dconf: value: "['']" - key: "/org/cinnamon/desktop/keybindings/custom-keybindings" state: absent -#- key: "/org/cinnamon/desktop/keybindings/custom-keybindings/custom1" -# state: absent - key: "/org/cinnamon/desktop/keybindings/custom-keybindings/custom0/binding" state: present value: "['space']" @@ -471,14 +462,14 @@ vscode: - DavidAnson.vscode-markdownlint - DotJoshJohnson.xml - emmanuelbeziat.vscode-great-icons +- eriklynd.json-tools - exiasr.hadolint - florianloch.text-transform +- formulahendry.docker-explorer - gep13.chocolatey-vscode - golang.go - hashicorp.terraform - huntertran.auto-markdown-toc -- jansenfuller.crayon-vscode -- joffreykern.markdown-toc - marcostazi.VS-code-vagrantfile - medo64.render-crlf - mohsen1.prettify-json @@ -500,7 +491,9 @@ vscode: - ms-vsliveshare.vsliveshare-audio - ms-vsliveshare.vsliveshare-pack - p1c2u.docker-compose +- nhoizey.gremlins - PascalReitermann93.vscode-yaml-sort +- piotrpalarz.vscode-gitignore-generator - pgourlain.erlang - puppet.puppet-vscode - rebornix.ruby @@ -509,6 +502,7 @@ vscode: - tht13.html-preview-vscode - timonwong.shellcheck - vscoss.vscode-ansible +- wholroyd.HCL - wholroyd.jinja - yzane.markdown-pdf sysctl: