Skills
skills/aj-geddes/useful-ai-prompts/ansible-automation/Gen Agent Trust Hub

ansible-automation

Pass

Audited by Gen Agent Trust Hub on Mar 5, 2026

Risk Level: SAFECREDENTIALS_UNSAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [CREDENTIALS_UNSAFE]: The example inventory configuration in references/inventory-and-variables.md references the sensitive local file path ~/.ssh/id_rsa for authentication.
  • [EXTERNAL_DOWNLOADS]: The Ansible roles in references/playbook-structure-and-best-practices.md download the official Docker GPG key and repository configuration from Docker's official Ubuntu servers.
  • [COMMAND_EXECUTION]: The skill provides a Bash script references/ansible-deployment-script.md that executes ansible-playbook with various parameters. Additionally, the Ansible roles utilize modules such as apt, sysctl, user, and docker_container which perform system-level modifications and command execution on target hosts.
  • [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface as it interpolates external variables (e.g., {{ environment }}, {{ app_repo_url }}) into Ansible playbooks and Jinja2 templates without explicit sanitization logic.
  • Ingestion points: Variable files (inventory/group_vars/webservers.yml), inventory files, and Jinja2 template inputs (references/configuration-template.md).
  • Boundary markers: None present; the skill relies on standard Ansible template interpolation.
  • Capability inventory: Full system administration capabilities including package management, user creation, file system modification, and container orchestration.
  • Sanitization: No specific validation or sanitization of variable content is implemented before template processing.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 5, 2026, 10:23 AM