Update to trixie

mail_system/tasks/clamav.yml

@@ -2,49 +2,50 @@
 # we run freshclam (with daemons stopped) and then starting the daemons should work
 # (avoiding 'clamav-daemon not started: "ConditionPathExistsGlob=/var/lib/clamav/daily.{c[vl]d,inc} was not met"')
 
-- name: install clamav
-  apt:
+- name: Install clamav
+  ansible.builtin.apt:
     name: "{{ packages }}"
   vars:
     packages:
-    - clamav
-    - clamav-daemon
-    - clamav-freshclam
+      - clamav
+      - clamav-daemon
+      - clamav-freshclam
 
-- name: stop clamav daemons
-  systemd:
+- name: Stop clamav daemons
+  ansible.builtin.systemd:
     name: "{{ item }}"
     state: stopped
   loop:
     - clamav-freshclam
     - clamav-daemon
 
-- name: run freshclam
-  shell: freshclam
+- name: Run freshclam
+  ansible.builtin.command: freshclam
+  register: out
+  changed_when: out.rc != 0
 
-- name: start clamav daemons
-  systemd:
+- name: Start clamav daemons
+  ansible.builtin.systemd:
     name: "{{ item }}"
     state: started
   loop:
     - clamav-daemon
     - clamav-freshclam
 
-- name: install clamav-unofficial-sigs, clamdscan
-  apt:
+- name: Install clamdscan
+  ansible.builtin.apt:
     name: "{{ packages }}"
   vars:
     packages:
-    - clamav-unofficial-sigs
-    - clamdscan
+      - clamdscan
 
-- name: set clamav BytecodeSecurity to Paranoid
-  lineinfile:
+- name: Set clamav BytecodeSecurity to Paranoid
+  ansible.builtin.lineinfile:
     path: /etc/clamav/clamd.conf
     regexp: '^BytecodeSecurity'
     line: 'BytecodeSecurity Paranoid'
 
-- name: restart clamav-daemon
-  systemd:
+- name: Restart clamav-daemon
+  ansible.builtin.systemd:
     name: clamav-daemon
     state: restarted