ansible is vulnerable to information disclosure. The application can leak vulnerable information when the /etc/apt/sources.list
file encounters a line starting with deb http://user:pass@server:port/
. This can then be used to construct a file containing the user and pass fields, thereby leaking credentials.