diff options
| author | Kenyon Ralph <kenyon@kenyonralph.com> | 2022-10-27 11:31:08 -0700 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2022-10-27 14:31:08 -0400 |
| commit | 0bacea70c4ad73cd7839762dad33924f744aabc8 (patch) | |
| tree | 4e0af07580a976c5379f86cd5cb0d5099487717f | |
| parent | 6ee089bc80dff30a9a01165bef4e88f87d91daad (diff) | |
| download | ansible-0bacea70c4ad73cd7839762dad33924f744aabc8.tar.gz | |
plugins/lookup/pipe: docs typo fixes (#79222)
| -rw-r--r-- | lib/ansible/plugins/lookup/pipe.py | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/lib/ansible/plugins/lookup/pipe.py b/lib/ansible/plugins/lookup/pipe.py index a190d2a301..54df3fc078 100644 --- a/lib/ansible/plugins/lookup/pipe.py +++ b/lib/ansible/plugins/lookup/pipe.py @@ -20,14 +20,14 @@ DOCUMENTATION = r""" so if you need to different permissions you must change the command or run Ansible as another user. - Alternatively you can use a shell/command task that runs against localhost and registers the result. - Pipe lookup internally invokes Popen with shell=True (this is required and intentional). - This type of invocation is considered as security issue if appropriate care is not taken to sanitize any user provided or variable input. + This type of invocation is considered a security issue if appropriate care is not taken to sanitize any user provided or variable input. It is strongly recommended to pass user input or variable input via quote filter before using with pipe lookup. See example section for this. Read more about this L(Bandit B602 docs,https://bandit.readthedocs.io/en/latest/plugins/b602_subprocess_popen_with_shell_equals_true.html) """ EXAMPLES = r""" -- name: raw result of running date command" +- name: raw result of running date command ansible.builtin.debug: msg: "{{ lookup('ansible.builtin.pipe', 'date') }}" |