From 4f33f2e3c4de1f54bb37cd112693ce8bec16ab35 Mon Sep 17 00:00:00 2001
From: pyllyukko <pyllyukko@maimed.org>
Date: Tue, 17 Dec 2024 15:39:23 +0200
Subject: [PATCH] Try chmodding the Lynis log to avoid EACCESS in
 upload-artifact

---
 .github/workflows/banners.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/banners.yml b/.github/workflows/banners.yml
index c3a89cb6..d4281c43 100644
--- a/.github/workflows/banners.yml
+++ b/.github/workflows/banners.yml
@@ -11,6 +11,8 @@ jobs:
         run: ansible-playbook -v harden.yml --tags lynis --skip-tags slackware,centos
       - name: Run Ansible playbook for banners
         run: ansible-playbook -v harden.yml --tags banners --extra-vars run_lynis_after_hardening=true
+      - name: chmod Lynis log
+        run: chmod -c 644 /var/log/lynis.log
       - name: Archive Lynis log
         uses: actions/upload-artifact@v4
         with: