Skip to main content
In this lesson we’ll demonstrate how to use the VS Code Ansible extension together with ansible-lint to validate syntax, indentation, and common logic issues before running playbooks. Treat this workflow as a final quality gate that improves reliability and maintainability of automation code. What you’ll learn:
  • How the VS Code Ansible extension provides real-time diagnostics and autocompletion.
  • How ansible-lint enforces best practices (FQCNs, naming, etc.).
  • A typical edit → lint → fix → run cycle for a small playbook.
A presentation slide titled "Agenda." It lists four steps for improving Ansible playbooks: use the VS Code Ansible extension and ansible-lint; check syntax, indentation, and logic; run a final quality gate before deployment; and turn a good playbook into a great one.
Scenario Imagine joining a DevOps automation team that has accumulated many playbooks written by different engineers. Your objective is to restore consistency, avoid regressions, and make playbooks easier to review. The combination of the Red Hat Ansible extension for VS Code and ansible-lint helps enforce those standards with minimal friction. This demo follows a straightforward workflow:
  1. Create a working folder and a sample inventory/playbook.
  2. Observe real-time validation in VS Code.
  3. Introduce an intentional error to see diagnostic feedback.
  4. Run ansible-lint and apply its suggestions.
  5. Execute the validated playbook.
A presentation slide titled "Demo" showing six numbered steps for creating and validating a sample playbook in VS Code. The steps list creating a working folder and sample playbook, checking real-time validation, introducing a deliberate error to observe feedback, reviewing linting results, fixing detected issues, and executing the validated playbook.
Getting started — create the project folder and files 
student@control:~$ mkdir validation
student@control:~$ cd validation/
student@control:~/validation$ vim inventory
student@control:~/validation$ vim ansible.cfg
Example minimal inventory (one host named servera): 
servera
Minimal ansible.cfg to use the local inventory and enable privilege escalation: 
[defaults]
inventory = inventory

[privilege_escalation]
become = True
become_method = sudo
become_user = root
become_ask_pass = False
Open the validation folder in VS Code and create playbook.yml.
A dark-themed Visual Studio Code welcome screen with the Explorer sidebar showing project files. A "New File" dialog suggesting "playbook.yml" is open, with walkthroughs and a "Build with agent mode" panel on the right.
Authoring the initial playbook The Ansible extension in VS Code will provide autocompletion for hosts (from your inventory), modules, and module parameters. Below is a small playbook with a deliberate mistake in the debug task to trigger diagnostics. 
---
- name: validation
  hosts: servera
  tasks:
    - name: install httpd
      dnf:
        name: httpd
        state: latest
    - name: start httpd
      ansible.builtin.service:
        name: httpd
        state: started
    - name: show message
      debug: dsada
      msg: "itsworked"
What VS Code/extension reports
  • The editor will highlight the incorrect debug: dsada usage and show a diagnostic explaining that the module call and parameter structure are invalid.
  • Hovering the module name or using Peek Definition shows inline module docs and expected parameters.
Fix the debug task to use the module properly: 
---
- name: validation
  hosts: servera
  tasks:
    - name: install httpd
      dnf:
        name: httpd
        state: latest

    - name: start httpd
      ansible.builtin.service:
        name: httpd
        state: started

    - name: show message
      debug:
        msg: "it worked"
Running ansible-lint from the editor If you configure ansible-lint integration in VS Code (or run it from the terminal), linting will recommend best practices that don’t necessarily stop execution but improve consistency and readability—e.g., using fully qualified collection names (FQCNs) and consistent task naming. Apply simple lint feedback: use FQCNs and consistent task naming 
---
- name: validation
  hosts: servera
  tasks:
    - name: install_httpd
      ansible.builtin.dnf:
        name: httpd
        state: latest

    - name: start_httpd
      ansible.builtin.service:
        name: httpd
        state: started

    - name: show_message
      ansible.builtin.debug:
        msg: "it worked"
Detecting misspelled modules Introduce an intentional module-name typo to see how the extension reports unknown modules: 
---
- name: validation
  hosts: servera
  tasks:
    - name: install_httpd
      dnff:
        name: httpd
        state: latest

    - name: start_httpd
      ansible.builtin.service:
        name: httpd
        state: started

    - name: show_message
      ansible.builtin.debug:
        msg: "it worked"
The extension and ansible-lint will warn that dnff is not a known module—this usually indicates a misspelling or a missing collection. Correct it back to ansible.builtin.dnf. Final lint-clean playbook After applying corrections and following lint suggestions (task names, FQCNs, newline at EOF), your playbook should be clean and readable: 
---
- name: Validation
  hosts: servera
  tasks:
    - name: Install httpd
      ansible.builtin.dnf:
        name: httpd
        state: latest

    - name: Start httpd
      ansible.builtin.service:
        name: httpd
        state: started

    - name: Show message
      ansible.builtin.debug:
        msg: "it worked"
Run the playbook from the terminal: 
student@control:~/validation$ ansible-playbook /home/student/validation/playbook.yml
Example successful output (trimmed): 
TASK [Show message] ****************************************************************
ok: [servera] => {
    "msg": "it worked"
}

PLAY RECAP ************************************************************************
servera                   : ok=4    changed=2    unreachable=0    failed=0
Common ansible-lint suggestions and example fixes
Lint RecommendationWhy it mattersExample fix
Use FQCN (ansible.builtin.module)Avoids ambiguity when multiple collections provide modulesChange dnf: to ansible.builtin.dnf:
Consistent task namingImproves readability in logs and reportsUse Install httpd instead of mixed styles
Avoid unused vars or misleading messagesPrevents confusion and accidental errorsEnsure debug: uses msg: correctly
Ensure YAML structure is correctPrevents runtime errors and invalid playbooksUse proper indentation and module parameter blocks
Use the extension to jump to module documentation or use “Peek Definition” in VS Code—this gives immediate access to module options and examples without leaving the editor.
Tips and references
  • Click module names in VS Code to open module docs or press Peek Definition for inline summaries.
  • Hover over parameters to read short descriptions and expected types.
  • If you run ansible-lint locally, ensure it’s installed in the environment that VS Code uses (e.g., same Python interpreter or virtualenv).
Further reading This concludes the demo showing how real-time diagnostics in VS Code and ansible-lint together raise playbook quality and reduce deployment risk.

Watch Video