Cleanup with ruff check (#963)

* Implement improvements suggested by ruff check. * Add ruff check to CI. * Add changelog fragment.
2026-05-07 13:53:06 +00:00 · 2025-10-28 07:21:11 +01:00
parent 6f0c58f483
commit 5420f9baaf
39 changed files with 198 additions and 199 deletions
--- a/plugins/modules/certificate_complete_chain.py
+++ b/plugins/modules/certificate_complete_chain.py
@@ -206,11 +206,10 @@ def is_parent(
            )
        elif isinstance(
            public_key,
-            cryptography.hazmat.primitives.asymmetric.ed25519.Ed25519PublicKey,
-        ):
-            public_key.verify(cert.cert.signature, cert.cert.tbs_certificate_bytes)
-        elif isinstance(
-            public_key, cryptography.hazmat.primitives.asymmetric.ed448.Ed448PublicKey
+            (
+                cryptography.hazmat.primitives.asymmetric.ed25519.Ed25519PublicKey,
+                cryptography.hazmat.primitives.asymmetric.ed448.Ed448PublicKey,
+            ),
        ):
            public_key.verify(cert.cert.signature, cert.cert.tbs_certificate_bytes)
        else:
@@ -365,13 +364,12 @@ def main() -> t.NoReturn:

    # Check chain
    for i, parent in enumerate(chain):
-        if i > 0:
-            if not is_parent(module, chain[i - 1], parent):
-                module.fail_json(
-                    msg=(
-                        f"Cannot verify input chain: certificate #{i + 1}: {format_cert(parent)} is not issuer of certificate #{i}: {format_cert(chain[i - 1])}"
-                    )
+        if i > 0 and not is_parent(module, chain[i - 1], parent):
+            module.fail_json(
+                msg=(
+                    f"Cannot verify input chain: certificate #{i + 1}: {format_cert(parent)} is not issuer of certificate #{i}: {format_cert(chain[i - 1])}"
                )
+            )

    # Load intermediate certificates
    intermediates = CertificateSet(module)