Let’s explore the exciting realm of AI and its impact on creating high-quality, secure, reliable production-ready Ansible Playbooks. Within this blog post, we highlight the pivotal role played by tools like Ansible Lint and Steampunk Spotter in ensuring the quality and trustworthiness of Ansible content while using AI tools like ChatGPT.
Exploring the potential of AI in production-ready Infrastructure as Code
With the rise of ChatGPT, GitHub Copilot, Amazon CodeWhisperer, Ansible Lightspeed, and other AI tools, the demand for faster and more efficient content generation is growing. However, a question remains: Is AI advanced and reliable enough to produce production-ready Infrastructure as Code, particularly in the case of Ansible Playbooks?
We can achieve favorable outcomes for Ansible and similar tools with the widely recognized ChatGPT. Our objective is to ensure that our playbooks are production-ready and characterized by exceptional quality, reliability, security, and trustworthiness. We can utilize additional tools such as Ansible Lint and Steampunk Spotter to validate our examples.
Building an Ansible Playbook with ChatGPT and Spotter
Let’s embark on a quest to create an Ansible Playbook for setting up an application. Using Ansible, we aim to deploy a Hello World web page within an nginx Docker container. By providing specific requirements to ChatGPT, we obtain a playbook and instructions generated for us:
--- - name: Deploy web page using Ansible and Docker hosts: localhost gather_facts: false become: false tasks: - name: Create temporary directory tempfile: state: directory prefix: web_deploy_ dir: /tmp register: temp_dir - name: Copy index.html file copy: content: | <html> <head> <title>Hello World!</title> </head> <body> <h1>Hello world! I was deployed using Ansible.</h1> </body> </html> dest: "{{ temp_dir.path }}/index.html" - name: Create Docker container for web page docker_container: name: my-web-page image: nginx state: started ports: - "80:80" volumes: - "{{ temp_dir.path }}:/usr/share/nginx/html" - name: Wait for Nginx to start uri: url: "http://localhost/" return_content: yes register: response until: response.status == 200 retries: 10 delay: 2 - name: Display website URL debug: msg: "Web page deployed successfully! Access it at http://localhost/" To ensure a high quality and reliability standard, Steampunk Spotter can help. Spotter is an Ansible Playbook Scanning tool that analyzes and offers recommendations for your playbooks.
We scan the playbook and determine there are unsupported parameters. In this scan, we allow Spotter to scan parameter values in full scan profile mode, including all the checks.
It carefully scans the playbook and highlights various issues, including fully qualified collection names (FQCNs), invalid and deprecated parameters, default parameter value changes, and best practice recommendations. Spotter proves invaluable in maintaining our desired level of excellence, as ChatGPT was not completely correct on this one.
Refining the playbook with Spotter and ChatGPT
Spotter not only detects issues but also provides automated fixes. Utilizing the spotter scan --rewrite command, we can automatically correct FQCN errors within our playbook. It also generates a requirements.yml file, ensuring compatibility between the version of the Ansible collection and the specific Ansible installation on our system.
For any remaining issues that require manual intervention, we turn to ChatGPT for assistance. By establishing a feedback loop with ChatGPT, we gradually achieve improved results. By incorporating Spotter’s output into ChatGPT, we iteratively enhance the playbook, effectively addressing the remaining errors.
We are still determining if the playbook is correct, so we “Spotter it out” again. We scan and find some new and existing results. We take the results and feed them back to ChatGPT and finally, we arrive at an updated playbook.
Leveraging Ansible Lint and finalizing the Playbook
While Steampunk Spotter goes beyond syntax checks and gives us in-depth feedback on our playbook, to ensure an additional level of quality of our syntax, we also subject the refined playbook to a scan using Ansible Lint. Utilizing its reformatting function, we can change the file according to the recommended guidelines. Ansible Lint proves invaluable by adding the necessary quotes to address issues with setting file permissions.
Our playbook reaches its final stage after multiple iterations involving ChatGPT, Spotter, and Lint. Spotter’s scan validates the playbook’s readiness, and we are now fully prepared to execute it confidently.
--- - name: Deploy web page using Ansible and Docker hosts: localhost gather_facts: false become: false tasks: - name: Create temporary directory ansible.builtin.tempfile: state: directory prefix: web_deploy_ register: temp_dir - name: Set permissions for temporary directory ansible.builtin.file: path: "{{ temp_dir.path }}" mode: '0755' - name: Copy index.html file ansible.builtin.copy: content: | <html> <head> <title>Hello World!</title> </head> <body> <h1>Hello world! I was deployed using Ansible.</h1> </body> </html> dest: "{{ temp_dir.path }}/index.html" mode: '0644' - name: Create Docker container for web page community.docker.docker_container: name: my-web-page image: nginx state: started published_ports: 80:80 volumes: - "{{ temp_dir.path }}:/usr/share/nginx/html" - name: Wait for Nginx to start ansible.builtin.uri: url: http://localhost/ return_content: true force: false use_proxy: true validate_certs: true force_basic_auth: false register: response until: response.status == 200 retries: 10 delay: 2 The role of AI tools and the importance of validation
While current AI tools may still need to be fully equipped to create production-ready Ansible Playbooks, there is a clear need to develop specialized tools with narrow intelligence. These generative AI tools and AI assistants hold great promise in delivering more accurate and tailored results for specific domains or purposes, such as learning Ansible or crafting complex playbooks. Expanding the capabilities of general-purpose AI solutions like ChatGPT by incorporating the option to customize results for specific queries can open many possibilities.
Tools like Ansible Lint and Steampunk Spotter are crucial to delivering high-quality, reliable, secure, and trustworthy Ansible content. These tools play a vital role in identifying issues and potential vulnerabilities in playbooks, and the playbooks and rules used to auto-remediate them can serve as excellent training examples for AI models. As we continue to explore the potential of AI in Ansible automation, it is evident that a collaborative effort between human expertise and AI capabilities is the way forward.
For more details and information on this topic, you can check our free webinar: AI-Powered Ansible Playbooks: Transforming the future of automation
With AI’s might and Spotter’s sight, Ansible automation can take flight. We invite you to try Steampunk Spotter!
Top comments (0)