-
Notifications
You must be signed in to change notification settings - Fork 2
/
pillar.example
239 lines (236 loc) · 6.02 KB
/
pillar.example
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
# -*- coding: utf-8 -*-
# vim: ft=yaml
---
ssf:
### Your local configuration
formulas_path: '/local/path/to/formulas/directory'
user: 'your_user'
group: 'your_group'
git:
### Override the tracking branch for the upstream repo
### Default shown below will be used if left commented out
# branch:
# upstream: upstream
### Add extra options to the `git commit`, such as turning off GPG signing
commit:
# Use this to modify the author of the commit propagated throughout the
# affected formulas. Override via. pillar/config. A blank value here
# avoids using the `--author` setting entirely, which is the default.
# The enclosed double-quotes are required to avoid the following error:
# -bash: syntax error near unexpected token `newline'
author: '"Foo Bar <foobar@example.com>"'
options: '--no-gpg-sign'
### Your GitHub configuration
github:
user: 'your_github_username'
### Local file to capture the GitHub API response when automatically
### creating the PR, prevents spamming the Salt output;
### Default shown below will be used if left commented out
# file_api_response: github_api_response
### All `git`-related states default to `False`; enable here as required
### When testing this formula, the layout below is recommended:
### - Branch is prepared, changes are added/removed and a commit is prepared
### - The commit isn't pushed, neither directly nor via. a newly created PR
states:
prepare:
active: true
add_rm:
active: true
commit_push:
active: true
# push:
# active: true
# via_PR: false
create_PR:
# active: true
### This is a necessary override since the default script does not
### contain a GitHub API token; copy the file to `your_directory`
### and simply add your personal token at the top of the script
source: 'salt://ssf/files/your_directory/git/git_30_create_PR.sh'
### Any customisations to the formulas can be made here
### Usually, this is unnecessary but a likely override could be an upstream tracking
### branch that doesn't match the default values
semrel_formulas:
ssf:
context:
git:
# Override the names of the local tracking branches to use
branch:
upstream: 'my_upstream_tracking_branch'
github:
# Override the configuration of the remotes
remote:
# The upstream formula repo
upstream:
name: 'upstream'
branch: 'master'
# Your fork of the repo
fork:
name: 'origin'
branch: 'master'
### No formulas or files are active by default
### State the formulas and files to work through when running the formula
active:
semrel_formulas:
- ad
- aegir
- airflow
- apache
- apt
- apt-cacher
- backupninja
- bareos
- bind
- caddy
- carbon-relay-ng
- cert
- charles
- chrony
- collectd
- consul
- cron
- dbeaver
- deepsea
- devstack
- dhcpd
- diaspora
- django
- dnsmasq
- docker
- eclipse
- epel
- exim
- fail2ban
- firewalld
- golang
- grafana
- haproxy
- hostsfile
- icinga2
- influxdb
- iptables
- iscsi
- java
- jetbrains-appcode
- jetbrains-clion
- jetbrains-datagrip
- jetbrains-goland
- jetbrains-intellij
- jetbrains-phpstorm
- jetbrains-pycharm
- jetbrains-resharper
- jetbrains-rider
- jetbrains-rubymine
- jetbrains-webstorm
- keepalived
- kubernetes
- letsencrypt
- libvirt
- locale
- logrotate
- lvm
- lynis
- mattermost
- maven
- mongodb
- mysql
- nextcloud
- nfs
- nginx
- nifi
- node
- nsd
- ntp
- nut
- openldap
- openntpd
- openssh
- openvpn
- packages
- pam-mount
- php
- postfix
- postgres
- powerdns
- proftpd
- prometheus
- rabbitmq
- redis
- rkhunter
- rlang
- rng-tools
- rspamd
- rstudio
- rundeck
- salt
- snmp
- splunkforwarder
- sqldeveloper
- sqlplus
- ssf
- stack
- strongswan
- stunnel
- sudoers
- suricata
- sysctl
- syslog-ng
- sysstat
- systemd
- telegraf
- template
- test
- timezone
- tomcat
- ufw
- unbound
- users
- varnish
- vault
- vim
- vsftpd
- wireguard
- zabbix
- zookeeper
semrel_files:
- .github/workflows/commitlint.yml
- .github/workflows/kitchen.yml
- .github/workflows/kitchen.vagrant.yml
- .github/workflows/kitchen.windows.yml
- bin/install-hooks
- bin/kitchen
- docs/CONTRIBUTING.rst
- docs/TOFS_pattern.rst
- formula/_mapdata/_mapdata.jinja
- formula/_mapdata/init.sls
- formula/libmapstack.jinja
- formula/libmatchers.jinja
- formula/libsaltcli.jinja
- formula/libtofs.jinja
- formula/map.jinja
- inspec/controls/_mapdata.rb
- inspec/inspec.yml
- inspec/README.md
- test/integration/share/inspec.yml
- test/integration/share/README.md
- test/integration/share/libraries/system.rb
- test/salt/pillar/top.sls
- .gitignore
- .cirrus.yml
- .gitlab-ci.yml
- .pre-commit-config.yaml
- .rstcheck.cfg
- .rubocop.yml
- .salt-lint
- .travis.yml
- .yamllint
- CODEOWNERS
- commitlint.config.js
- Gemfile
- Gemfile.lock
- kitchen.yml
- kitchen.vagrant.yml
- kitchen.windows.yml
- pre-commit_semantic-release.sh
- release-rules.js
- release.config.js