feat(pre-commit): Added linting

2025-07-27 22:46:23 +02:00
parent 2882abfc0b
commit 6eef96b302
18 changed files with 57 additions and 25 deletions
--- a/roles/common/files/ssh/root/sshd_config
+++ b/roles/common/files/ssh/root/sshd_config
@@ -16,4 +16,3 @@ TrustedUserCAKeys /etc/ssh/vault-ca.pub
 UseDNS yes
 AcceptEnv LANG LC_*
 Subsystem	sftp	/usr/lib/openssh/sftp-server
-
--- a/roles/common/handlers/main.yml
+++ b/roles/common/handlers/main.yml
@@ -3,4 +3,4 @@
  service:
    name: sshd
    state: restarted
-  become: yes
+  become: true
--- a/roles/k3s_agent/handlers/main.yml
+++ b/roles/k3s_agent/handlers/main.yml
@@ -3,4 +3,4 @@
  service:
    name: k3s
    state: restarted
-  become: yes
+  become: true
--- a/roles/k3s_agent/tasks/main.yml
+++ b/roles/k3s_agent/tasks/main.yml
@@ -1,2 +1,3 @@
 ---
- include_tasks: installation.yml
+- name: Install k3s agent
+  include_tasks: installation.yml
--- a/roles/k3s_server/handlers/main.yml
+++ b/roles/k3s_server/handlers/main.yml
@@ -3,4 +3,4 @@
  service:
    name: k3s
    state: restarted
-  become: yes
+  become: true
--- a/roles/k3s_server/tasks/pull_token.yml
+++ b/roles/k3s_server/tasks/pull_token.yml
@@ -21,6 +21,6 @@
  run_once: true

 - name: Encrypt k3s token
-  ansible.builtin.shell: cd ../; ansible-vault encrypt "{{ playbook_dir }}/{{k3s_server_token_vault_file}}"
+  ansible.builtin.shell: cd ../; ansible-vault encrypt "{{ playbook_dir }}/{{ k3s_server_token_vault_file }}"
  delegate_to: localhost
  run_once: true
--- a/roles/k3s_storage/handlers/main.yml
+++ b/roles/k3s_storage/handlers/main.yml
@@ -3,4 +3,4 @@
  service:
    name: k3s
    state: restarted
-  become: yes
+  become: true
--- a/roles/kubernetes_argocd/tasks/main.yml
+++ b/roles/kubernetes_argocd/tasks/main.yml
@@ -25,7 +25,9 @@
        name: argocd-server
        namespace: "{{ argocd_namespace }}"
      register: rollout_status
-      until: rollout_status.resources[0].status.readyReplicas is defined and rollout_status.resources[0].status.readyReplicas == rollout_status.resources[0].spec.replicas
+      until: >
+        rollout_status.resources[0].status.readyReplicas is defined and
+        rollout_status.resources[0].status.readyReplicas == rollout_status.resources[0].spec.replicas
      retries: 30
      delay: 10

--- a/roles/proxmox/tasks/06_hardware_acceleration.yml
+++ b/roles/proxmox/tasks/06_hardware_acceleration.yml
@@ -3,15 +3,12 @@
  ansible.builtin.lineinfile:
    path: /etc/default/grub
    regexp: "^GRUB_CMDLINE_LINUX_DEFAULT="
-    line: 'GRUB_CMDLINE_LINUX_DEFAULT="quiet intel_iommu=on iommu=pt pcie_acs_override=downstream,multifunction initcall_blacklist=sysfb_init video=simplefb:off video=vesafb:off video=efifb:off video=vesa:off disable_vga=1 vfio_iommu_type1.allow_unsafe_interrupts=1 kvm.ignore_msrs=1 modprobe.blacklist=radeon,nouveau,nvidia,nvidiafb,nvidia-gpu,snd_hda_intel,snd_hda_codec_hdmi,i915"'
-    backup: true
-  register: iommu_result
-
- name: Set GRUB_CMDLINE_LINUX_DEFAULT for PCI passthrough
-  ansible.builtin.lineinfile:
-    path: /etc/default/grub
-    regexp: "^GRUB_CMDLINE_LINUX_DEFAULT="
-    line: 'GRUB_CMDLINE_LINUX_DEFAULT="quiet intel_iommu=on iommu=pt pcie_acs_override=downstream,multifunction initcall_blacklist=sysfb_init video=simplefb:off video=vesafb:off video=efifb:off video=vesa:off disable_vga=1 vfio_iommu_type1.allow_unsafe_interrupts=1 kvm.ignore_msrs=1 modprobe.blacklist=radeon,nouveau,nvidia,nvidiafb,nvidia-gpu,snd_hda_intel,snd_hda_codec_hdmi,i915"'
+    line: >
+      GRUB_CMDLINE_LINUX_DEFAULT="quiet intel_iommu=on iommu=pt
+      pcie_acs_override=downstream,multifunction initcall_blacklist=sysfb_init
+      video=simplefb:off video=vesafb:off video=efifb:off video=vesa:off
+      disable_vga=1 vfio_iommu_type1.allow_unsafe_interrupts=1 kvm.ignore_msrs=1
+      modprobe.blacklist=radeon,nouveau,nvidia,nvidiafb,nvidia-gpu,snd_hda_intel,snd_hda_codec_hdmi,i915"
    backup: true
  register: iommu_result

@@ -34,7 +31,7 @@
  # notify:
  #   - Reboot Node

- name: update grub configuration
+- name: Update grub configuration
  ansible.builtin.command: update-grub
  when: iommu_result.changed or vfio_result.changed
  # notify:
--- a/roles/proxmox/tasks/15_create_secret.yml
+++ b/roles/proxmox/tasks/15_create_secret.yml
@@ -17,7 +17,7 @@

 - name: Setup secret name
  ansible.builtin.set_fact:
-    vm_name_secret: "{{ proxmox_secrets_prefix }}_{{ vm_name | replace('-','_') }}"
+    vm_name_secret: "{{ proxmox_secrets_prefix }}_{{ vm_name | replace('-', '_') }}"

 - name: Check if variable is in vault
  ansible.builtin.set_fact:
@@ -30,7 +30,7 @@

 - name: Set new secret
  ansible.builtin.set_fact:
-    new_vault_data: "{{ vault_data | combine({ vm_name_secret: cipassword }) }}"
+    new_vault_data: "{{ vault_data | combine({vm_name_secret: cipassword}) }}"
  when: not variable_exists

 - name: Write updated Vault content to file (temporary plaintext)