--- kind: pipeline type: docker name: run updates steps: - name: setup ansible image: alpine environment: PASS: from_secret: pass commands: - sed -i "1s/^/[all:vars]\nansible_become_pass = $PASS\n/" servers.ini - name: run updates image: plugins/ansible settings: inventory: servers.ini playbook: site.yml ssh_common_args: -o "StrictHostKeyChecking no" private_key: from_secret: key