Improve ansible code so that ansibe-lint shows fewer errors

roles/kerberize/tasks/main.yml

@@ -1,28 +1,30 @@
 - name: Install kerberos packages
-  apt:
+  ansible.builtin.apt:
     name: krb5-user
-    state: latest
 
 - name: Kerberize sshd server
   ansible.builtin.copy:
     dest: /etc/ssh/sshd_config.d/kerberize.conf
+    mode: '0644'
     content: |
       GSSAPIAuthentication yes
-  notify: "reload sshd"
+  notify: "Reload sshd"
 
 - name: Kerberize ssh client, authenticate and delegate credentials
   ansible.builtin.copy:
     dest: /etc/ssh/ssh_config.d/kerberize.conf
+    mode: '0644'
     content: |
       GSSAPIAuthentication yes
       GSSAPIDelegateCredentials yes
 
 - name: Check if firefox is available
-  stat: path=/etc/firefox-esr/firefox-esr.js
+  ansible.builtin.stat:
+    path: /etc/firefox-esr/firefox-esr.js
   register: firefox
 
 - name: Kerberize firefox for sites in the local domain
-  lineinfile:
+  ansible.builtin.lineinfile:
     dest: /etc/firefox-esr/firefox-esr.js
     line: "{{ item }}"
   with_items:
@@ -32,13 +34,15 @@
   when: firefox.stat.exists
 
 - name: Ensures /etc/chromium/policies/managed dir exists
-  file:
+  ansible.builtin.file:
     path: "/etc/chromium/policies/managed"
     state: directory
+    mode: '0755'
 
 - name: Kerberize chromium for sites in the local domain
-  copy:
+  ansible.builtin.copy:
     dest: /etc/chromium/policies/managed/idam.json
+    mode: '0644'
     content: |
       {
         "AuthServerAllowlist": "idam.steinbeis.schule"