0684df0dd1
This change prevents malicious user to use dangerous ansible variable through host vars by using extra vars to force the default with highest variables precedence . Change-Id: Iaf5679bbfa43ff05d1d466106aa32d17c23c1f51
7 lines
206 B
YAML
7 lines
206 B
YAML
---
|
|
security:
|
|
- |
|
|
The add_host module attributes that can be used to bypass localhost
|
|
command execution are now also blacklisted using extra-vars to prevent
|
|
abuse through untrusted host_vars.
|