From 02069d93fdb2ed8d17afb03246addf60a35ff9fe Mon Sep 17 00:00:00 2001
From: mustard <sussybaka@homelab0ne.xyz>
Date: Wed, 22 Oct 2025 17:07:18 +0200
Subject: [PATCH] fix: relax dev template hardening, add docker +
 docker-compose

---
 fedora-42-dev.yaml | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/fedora-42-dev.yaml b/fedora-42-dev.yaml
index b31385b..ff8340d 100644
--- a/fedora-42-dev.yaml
+++ b/fedora-42-dev.yaml
@@ -1,4 +1,4 @@
-- name: Configure Fedora 42 Gnome Template
+- name: Configure Fedora 42 Dev Template
   hosts: 127.0.0.1
   connection: local
   tasks:
@@ -6,10 +6,10 @@
       ansible.builtin.include_role:
         name: 'baseline'
       vars:
-        umask_changes: true
+        umask_changes: false
         manage_network: true
         allow_ptrace: true
-        use_hardened_malloc: true
+        use_hardened_malloc: false
 
     - name: 'Gnome package stuff'
       ansible.builtin.include_role:
@@ -39,6 +39,8 @@
           - golang-gvisor # outdated, but sufficient for playing around with gvisor
           - glibc-devel
           - opentofu
+          - docker
+          - docker-compose
         state: 'present'
   
     - name: 'Handle SUID binaries'