CIS 1.3.1.4 missing variable in v2.0.0 branch

[kbknapp]

Describe the Issue

Failed to run due to an undefined variable (control_1_3_1_4_was_run)

Expected Behavior

No error for an undefined variable.

Actual Behavior

Running server-level-1 gives the following:

fatal: [localhost]: FAILED! => {"msg": "The conditional check 'not control_1_3_1_4_was_run' failed. The error was: error while evaluating conditional (not control_1_3_1_4_was_run): 'control_1_3_1_4_was_run' is undefined\n\nThe error appears to be in '/tmp/UBUNTU22-CIS/tasks/section_1/cis_1.3.1.x.yml': line 137, column 7, but may\nbe elsewhere in the file depending on the exact syntax problem.\n\nThe offending line appears to be:\n\n  block:\n    - name: \"1.3.1.3 | AUDIT | Ensure all AppArmor Profiles are in enforce or complain | Set ubtu22cis_apparmor_enforce_only true for GOSS\"\n      ^ here\n"}
    metal-stage1-cmp.incus.metal-stage0:
    metal-stage1-cmp.incus.metal-stage0: PLAY RECAP *********************************************************************
    metal-stage1-cmp.incus.metal-stage0: localhost                  : ok=66   changed=20   unreachable=0    failed=1    skipped=65   rescued=0    ignored=0

Control(s) Affected

1.3.1.4

Environment (please complete the following information):

• branch being used: benchmark_v2.0.0

Possible Solution

In prelim.yml:

 name: PRELIM | AUDIT | Set default values for facts
 ansible.builtin.set_fact:
+   control_1_3_1_4_was_run: false
   control_1_6_1_4_was_run: false
   ubtu22cis_apparmor_enforce_only: false
 changed_when: false

[uk-bolly]

Hi @kbknapp

Thank you so much for your feedback on this other branch this has really assisted. The branch has now been merged with devel and all being well we will get released to main in around two weeks.

Kindest regards

uk-bolly