security: ansible log secret displayed as cleartext

When you run the playbook secrete used during the deployment are visible in log. If you use ARA as logger, it's worse as the secrete could be recorded.

Some hint that could be explored:

• https://serverfault.com/questions/681832/how-can-i-stop-ansible-from-writing-passwords-to-the-logfiles no_log
• https://www.redhat.com/en/blog/ansible-playbooks-secrets no_log
• https://harshanu.space/en/tech/ansible-redact/ better approach with callback plugin.

using no_log may not be the better approach so, because it will hide the task change or description, could be upload, or middle-ware task that deploy and hide secret and sensitive data.

that is then replaced - by let's say ********** - whenever it appears in the log output