ansible-workflow
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- Command Execution (LOW): The skill defines guidelines for running tools like ansible-playbook and molecule, which execute shell commands and system automation tasks.\n- Privilege Escalation (LOW): The provided Molecule template includes
privileged: truefor Docker containers. While this is the standard configuration required for testing systemd-based Ansible roles, it represents an elevated permission level on the host.\n- Indirect Prompt Injection (LOW): The skill processes external Ansible playbooks and inventory files which could contain malicious instructions embedded in data or comments.\n - Ingestion points: Playbooks, inventory files (.yml, .ini), and variable files.\n
- Boundary markers: None specified in the instructions to distinguish data from instructions.\n
- Capability inventory: Full system access via Ansible modules including
shell,command, anduri.\n - Sanitization: None; the skill relies on the integrity of the user-provided Ansible source files.
Audit Metadata