Restrict Ansible script module using sudoers on the remote node

Question

I have a playbook that performs some prechecks on the database as the Oracle user. The remote node is an AIX server and so I created a shell script that is ran via the playb

Answer 1

Q: "This also runs if the sudoers entry is just ansible ALL=(oracle) NOPASSWD: ALL"

A: Quoting from Privilege escalation must be general:

"You cannot limit privilege escalation permissions to certain commands..."