From a936791cd0f4b4c02eb6294a3156ee784bf23c6a Mon Sep 17 00:00:00 2001
From: Grimmauld <Grimmauld@grimmauld.de>
Date: Fri, 31 Jan 2025 12:18:38 +0100
Subject: [PATCH] fix + not needing to be escaped in posix regex

---
 cfg/2.0.0/definitions.yaml | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/cfg/2.0.0/definitions.yaml b/cfg/2.0.0/definitions.yaml
index fb5b83d..91447ad 100644
--- a/cfg/2.0.0/definitions.yaml
+++ b/cfg/2.0.0/definitions.yaml
@@ -5517,7 +5517,7 @@ groups:
           test_items:
             - flag: |
                 Chain OUTPUT (policy DROP 0 packets, 0 bytes)
-                pkts bytes target prot opt in out source destination
+                pkts bytes targ/etc/groupet prot opt in out source destination
                 0 0 ACCEPT all -- * lo 0.0.0.0/0 0.0.0.0/0
         remediation: |
           Run the following commands to implement the loopback rules:
@@ -8268,7 +8268,7 @@ groups:
 
       - id: 6.2.2
         description: 'Ensure no legacy "+" entries exist in /etc/passwd'
-        audit: "grep '^\\+:' /etc/passwd"
+        audit: "grep '^+:' /etc/passwd"
         tests:
           test_items:
             - flag: ""
@@ -8281,7 +8281,7 @@ groups:
 
       - id: 6.2.3
         description: 'Ensure no legacy "+" entries exist in /etc/shadow'
-        audit: "grep '^\\+:' /etc/shadow"
+        audit: "grep '^+:' /etc/shadow"
         tests:
           test_items:
             - flag: ""
@@ -8294,7 +8294,7 @@ groups:
 
       - id: 6.2.4
         description: 'Ensure no legacy "+" entries exist in /etc/group'
-        audit: "grep '^\\+:' /etc/group"
+        audit: "grep '^+:' /etc/group"
         tests:
           test_items:
             - flag: ""