Document how to decrypt values in vaults for linting

[krichter722]

I'm trying to lint roles with encrypted values. I'd like to make sure that the encrypted values don't make the linter skip files with encrypted values. With 6.8.2 I'm getting a warning Attempting to decrypt but no vault secrets found. With 6.22.0 I'm getting Passed: 0 failure(s), 0 warning(s) on 89 files. Last profile that met the validation criteria was 'production'. which makes me wonder why there's no problem/warning.

The thing is that so far I cannot tell whether how code with encrypted values is treated by ansible-lint. There's only one mention in the docs (https://ansible.readthedocs.io/projects/lint/usage/#vaults) which might mean that values in vaults can be decrypted with ansible-lint , however there's no documentation how to do that. There's a workaround with | default which only make sense if there was an issue with encrypted values. There're mentions in the discussions, but it's always tough to guess what still applies. It seems that the vault-id to be used are controlled by ansible.cfg , but there's no official statement.

It'd be appreciated if that was clarified. Also saying what a software does not do is an insane time saver, I encourage you to state it explicitly if decrypting values is not supported.