automateyournetwork/aap-lint
workspace/skills/aap-lint/SKILL.md
ansible-lint playbook and role validation — syntax checking, best practice enforcement, project-wide analysis, rule filtering. Use when validating Ansible playbooks, checking code quality, or enforcing automation best practices before deployment.
$ install --global
skillsauthnpx skillsauth add automateyournetwork/netclaw aap-lintInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 20, 2026, 3:29 AM4.4s1 file scanned
SKILL.md
- name:
- aap-lint
- description:
- ansible-lint playbook and role validation — syntax checking, best practice enforcement, project-wide analysis, rule filtering. Use when validating Ansible playbooks, checking code quality, or enforcing automation best practices before deployment.
- version:
- 1.0.0
- license:
- Apache-2.0
- tags:
- [ansible, lint, quality, validation, best-practices, playbook]
- { "openclaw":
- { "requires": { "bins": ["python3", "ansible-lint"] } } }
Ansible Lint Operations
MCP Server
- Repository: sibilleb/AAP-Enterprise-MCP-Server
- Transport: stdio (Python via
uv run ansible-lint.py) - Install:
git clone+uv sync(orpip install -e .) - Requires:
ansible-lintinstalled
Available Tools (9)
| Tool | What It Does |
|------|-------------|
| lint_playbook | Lint playbook content with configurable profiles and output formats |
| lint_file | Lint a specific Ansible file at a given path |
| lint_role | Comprehensive linting of an Ansible role directory |
| list_rules | Display available ansible-lint rules with optional tag filtering |
| list_tags | Show all tags for categorizing lint rules |
| validate_syntax | Quick syntax validation using syntax-specific rules |
| check_best_practices | Evaluate content against best practices with severity categorization |
| analyze_project | Comprehensive report on an entire Ansible project structure |
| get_ansible_lint_version | Return installed ansible-lint version |
Key Concepts
| Concept | What It Means |
|---------|---------------|
| Profile | Lint strictness level (min, basic, moderate, safety, shared, production) |
| Rule | Individual lint check (e.g., yaml[truthy], no-changed-when, fqcn) |
| Tag | Rule category for filtering (e.g., command-shell, formatting, idiom) |
| FQCN | Fully Qualified Collection Name — required in production profiles |
Workflow: Pre-Deployment Playbook Validation
- Syntax check:
validate_syntax— catch YAML and Ansible syntax errors - Best practices:
check_best_practices— evaluate against standards - Full lint:
lint_playbookwith production profile — comprehensive check - Review rules:
list_rules— understand which rules triggered violations - Report: Pass/fail with specific violations and remediation guidance
Workflow: Project-Wide Quality Audit
- Analyze project:
analyze_project— scan entire Ansible project structure - Review findings: Group violations by file, rule, and severity
- Check roles:
lint_rolefor each role directory - Report: Project quality scorecard with violation counts and trends
Integration with Other Skills
| Skill | How They Work Together |
|-------|----------------------|
| aap-automation | Validate playbooks before running them through AAP job templates |
| aap-eda | Lint rulebook playbook actions before EDA activation |
| github-ops | CI/CD lint checks on PR playbook changes |
| gait-session-tracking | Audit trail for lint results and quality gate decisions |
Important Rules
- Lint before deploy — always validate playbooks before AAP job execution
- Profile selection — use
productionprofile for production deployments,basicfor development - No credentials in playbooks — lint catches hardcoded secrets; use AAP credential management instead
Related Skills
automateyournetwork/humanrail-escalation
testing
VerifiedTrustedCommunity
Human-in-the-loop escalation via HumanRail — route low-confidence agent decisions, pre-destructive operation approvals, and ambiguous incident tickets to real human engineers. Human answers are verified and returned as structured output. Workers are paid via Lightning Network. Use when the agent is uncertain, when a destructive change needs explicit human sign-off beyond a ServiceNow CR, or when an ambiguous ticket requires human triage before automated handling.
491SKILL.mdUpdated May 12, 2026
automateyournetwork/eve-ng-node-operations
testing
VerifiedTrustedCommunity
Manage EVE-NG node lifecycle. Use when listing nodes, checking runtime state, creating or deleting nodes, starting or stopping nodes or whole labs, verifying node details, or wiping node NVRAM back to factory defaults.
491SKILL.mdUpdated May 12, 2026
automateyournetwork/eve-ng-lab-management
development
VerifiedTrustedCommunity
Manage EVE-NG labs and platform inventory. Use when listing labs, checking lab metadata, creating or deleting labs, importing or exporting lab archives, checking EVE-NG health or auth, or verifying available node images before build work.
491SKILL.mdUpdated May 12, 2026
automateyournetwork/eve-ng-console-ops
tools
VerifiedTrustedCommunity
Execute live CLI commands on running EVE-NG nodes over telnet console. Use when running show commands, making live config changes, verifying protocol state, testing connectivity, checking console readiness, or interacting with IOS, Junos, VPCS, EOS, or NX-OS nodes.
491SKILL.mdUpdated May 12, 2026