From d29338eeab590d4e7bf33ca0d9237d778addc658 Mon Sep 17 00:00:00 2001
From: Ali Afif <aliafifmm@gmail.com>
Date: Sun, 4 May 2025 12:14:42 +0330
Subject: [PATCH 1/2] fix: chrony sources not owned by _chrony user

Signed-off-by: Ali Afif <aliafifmm@gmail.com>
---
 tasks/section_2/cis_2.3.3.x.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/tasks/section_2/cis_2.3.3.x.yml b/tasks/section_2/cis_2.3.3.x.yml
index 19177b9..3da0dde 100644
--- a/tasks/section_2/cis_2.3.3.x.yml
+++ b/tasks/section_2/cis_2.3.3.x.yml
@@ -16,8 +16,8 @@
         src: "{{ item }}.j2"
         dest: "/{{ item }}"
         mode: 'go-r'
-        owner: root
-        group: root
+        owner: _chrony
+        group: _chrony
       loop:
         - etc/chrony/sources.d/pool.sources
         - etc/chrony/sources.d/server.sources

From 52de504da2d18bcf3f7181aecc1dea99968475e7 Mon Sep 17 00:00:00 2001
From: Ali Afif <aliafifmm@gmail.com>
Date: Sun, 4 May 2025 12:16:57 +0330
Subject: [PATCH 2/2] fix: typo in '1.2.2.1' task name

Signed-off-by: Ali Afif <aliafifmm@gmail.com>
---
 tasks/section_1/cis_1.2.2.x.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/tasks/section_1/cis_1.2.2.x.yml b/tasks/section_1/cis_1.2.2.x.yml
index 92eb1c7..22664b5 100644
--- a/tasks/section_1/cis_1.2.2.x.yml
+++ b/tasks/section_1/cis_1.2.2.x.yml
@@ -10,7 +10,7 @@
     - NIST800-53R5_SI-2
     - patch
   block:
-    - name: "1.2.2.1 | PATCH | Ensure updates, patches, and additional security software are installedi | Update"
+    - name: "1.2.2.1 | PATCH | Ensure updates, patches, and additional security software are installed | Update"
       ansible.builtin.package:
         name: "*"
         state: latest