[PR #11918/89d82ab9 backport][stable-12] scaleway: fix NoneType error in get_resources() (#11924 )

scaleway: fix NoneType error in get_resources() (#11918) * scaleway: fix NoneType error in get_resources() when API returns empty or non-JSON response * add changelog fragment for #11918 * Update changelogs/fragments/11361-scaleway-get-resources-none-type.yml --------- (cherry picked from commit 89d82ab9df) Co-authored-by: RealCharlesChia <161665317+RealCharlesChia@users.noreply.github.com> Co-authored-by: RealCharlesChia <RealCharlesChia@users.noreply.github.com> Co-authored-by: Felix Fontein <felix@fontein.de>
Prepare 12.6.1.
2026-04-28 17:36:49 +00:00 · 2026-04-27 21:13:47 +02:00 · 2026-04-22 20:51:30 +02:00 · 2026-04-22 20:50:32 +02:00 · 2026-04-22 20:17:17 +02:00 · 2026-04-20 17:03:32 +02:00
1408 changed files with 32099 additions and 10373 deletions
--- a/.azure-pipelines/azure-pipelines.yml
+++ b/.azure-pipelines/azure-pipelines.yml
@@ -29,6 +29,7 @@ schedules:
    always: true
    branches:
      include:
+        - stable-12
        - stable-11
  - cron: 0 11 * * 0
    displayName: Weekly (old stable branches)
@@ -69,6 +70,19 @@ stages:
            - test: 2
            - test: 3
            - test: 4
+  - stage: Sanity_2_21
+    displayName: Sanity 2.21
+    dependsOn: []
+    jobs:
+      - template: templates/matrix.yml
+        parameters:
+          nameFormat: Test {0}
+          testFormat: 2.21/sanity/{0}
+          targets:
+            - test: 1
+            - test: 2
+            - test: 3
+            - test: 4
  - stage: Sanity_2_20
    displayName: Sanity 2.20
    dependsOn: []
@@ -95,19 +109,6 @@ stages:
            - test: 2
            - test: 3
            - test: 4
-  - stage: Sanity_2_18
-    displayName: Sanity 2.18
-    dependsOn: []
-    jobs:
-      - template: templates/matrix.yml
-        parameters:
-          nameFormat: Test {0}
-          testFormat: 2.18/sanity/{0}
-          targets:
-            - test: 1
-            - test: 2
-            - test: 3
-            - test: 4
 ### Units
  - stage: Units_devel
    displayName: Units devel
@@ -124,6 +125,19 @@ stages:
            - test: '3.12'
            - test: '3.13'
            - test: '3.14'
+            - test: '3.15'
+  - stage: Units_2_21
+    displayName: Units 2.21
+    dependsOn: []
+    jobs:
+      - template: templates/matrix.yml
+        parameters:
+          nameFormat: Python {0}
+          testFormat: 2.21/units/{0}/1
+          targets:
+            - test: 3.9
+            - test: "3.12"
+            - test: "3.14"
  - stage: Units_2_20
    displayName: Units 2.20
    dependsOn: []
@@ -148,18 +162,6 @@ stages:
            - test: 3.8
            - test: "3.11"
            - test: "3.13"
-  - stage: Units_2_18
-    displayName: Units 2.18
-    dependsOn: []
-    jobs:
-      - template: templates/matrix.yml
-        parameters:
-          nameFormat: Python {0}
-          testFormat: 2.18/units/{0}/1
-          targets:
-            - test: 3.8
-            - test: "3.11"
-            - test: "3.13"

 ## Remote
  - stage: Remote_devel_extra_vms
@@ -170,10 +172,10 @@ stages:
        parameters:
          testFormat: devel/{0}
          targets:
-            - name: Alpine 3.22
-              test: alpine/3.22
-            # - name: Fedora 42
-            #   test: fedora/42
+            - name: Alpine 3.23
+              test: alpine/3.23
+            # - name: Fedora 44
+            #   test: fedora/44
            - name: Ubuntu 22.04
              test: ubuntu/22.04
            - name: Ubuntu 24.04
@@ -188,16 +190,36 @@ stages:
        parameters:
          testFormat: devel/{0}
          targets:
-            - name: macOS 15.3
-              test: macos/15.3
-            - name: RHEL 10.0
-              test: rhel/10.0
-            - name: RHEL 9.6
-              test: rhel/9.6
-            - name: FreeBSD 14.3
-              test: freebsd/14.3
-            - name: FreeBSD 13.5
-              test: freebsd/13.5
+            - name: macOS 26.3
+              test: macos/26.3
+            - name: RHEL 10.1
+              test: rhel/10.1
+            - name: RHEL 9.7
+              test: rhel/9.7
+            # TODO: enable this ASAP!
+            # - name: FreeBSD 15.0
+            #   test: freebsd/15.0
+            # TODO: enable this ASAP!
+            # - name: FreeBSD 14.4
+            #   test: freebsd/14.4
+          groups:
+            - 1
+            - 2
+            - 3
+  - stage: Remote_2_21
+    displayName: Remote 2.21
+    dependsOn: []
+    jobs:
+      - template: templates/matrix.yml
+        parameters:
+          testFormat: 2.21/{0}
+          targets:
+            # - name: macOS 26.3
+            #   test: macos/26.3
+            - name: RHEL 10.1
+              test: rhel/10.1
+            # - name: RHEL 9.7
+            #   test: rhel/9.7
          groups:
            - 1
            - 2
@@ -210,8 +232,10 @@ stages:
        parameters:
          testFormat: 2.20/{0}
          targets:
-            - name: RHEL 10.0
-              test: rhel/10.0
+            - name: macOS 15.3
+              test: macos/15.3
+            - name: RHEL 10.1
+              test: rhel/10.1
            - name: FreeBSD 14.3
              test: freebsd/14.3
          groups:
@@ -226,34 +250,14 @@ stages:
        parameters:
          testFormat: 2.19/{0}
          targets:
-            - name: RHEL 9.5
-              test: rhel/9.5
-            - name: RHEL 10.0
-              test: rhel/10.0
+            - name: RHEL 10.1
+              test: rhel/10.1
            - name: FreeBSD 14.2
              test: freebsd/14.2
          groups:
            - 1
            - 2
            - 3
-  - stage: Remote_2_18
-    displayName: Remote 2.18
-    dependsOn: []
-    jobs:
-      - template: templates/matrix.yml
-        parameters:
-          testFormat: 2.18/{0}
-          targets:
-            - name: macOS 14.3
-              test: macos/14.3
-            - name: RHEL 9.4
-              test: rhel/9.4
-            - name: FreeBSD 14.1
-              test: freebsd/14.1
-          groups:
-            - 1
-            - 2
-            - 3

 ### Docker
  - stage: Docker_devel
@@ -264,10 +268,10 @@ stages:
        parameters:
          testFormat: devel/linux/{0}
          targets:
-            - name: Fedora 42
-              test: fedora42
-            - name: Alpine 3.22
-              test: alpine322
+            - name: Fedora 44
+              test: fedora44
+            - name: Alpine 3.23
+              test: alpine323
            - name: Ubuntu 22.04
              test: ubuntu2204
            - name: Ubuntu 24.04
@@ -276,6 +280,26 @@ stages:
            - 1
            - 2
            - 3
+  - stage: Docker_2_21
+    displayName: Docker 2.21
+    dependsOn: []
+    jobs:
+      - template: templates/matrix.yml
+        parameters:
+          testFormat: 2.21/linux/{0}
+          targets:
+            - name: Fedora 43
+              test: fedora43
+            # - name: Alpine 3.23
+            #   test: alpine323
+            # - name: Ubuntu 22.04
+            #   test: ubuntu2204
+            - name: Ubuntu 24.04
+              test: ubuntu2404
+          groups:
+            - 1
+            - 2
+            - 3
  - stage: Docker_2_20
    displayName: Docker 2.20
    dependsOn: []
@@ -308,24 +332,6 @@ stages:
            - 1
            - 2
            - 3
-  - stage: Docker_2_18
-    displayName: Docker 2.18
-    dependsOn: []
-    jobs:
-      - template: templates/matrix.yml
-        parameters:
-          testFormat: 2.18/linux/{0}
-          targets:
-            - name: Fedora 40
-              test: fedora40
-            - name: Alpine 3.20
-              test: alpine320
-            - name: Ubuntu 24.04
-              test: ubuntu2404
-          groups:
-            - 1
-            - 2
-            - 3

 ### Community Docker
  - stage: Docker_community_devel
@@ -343,7 +349,7 @@ stages:
            - name: Debian 13 Trixie
              test: debian-13-trixie/3.13
            - name: ArchLinux
-              test: archlinux/3.13
+              test: archlinux/3.14
          groups:
            - 1
            - 2
@@ -361,6 +367,18 @@ stages:
 #          testFormat: devel/generic/{0}/1
 #          targets:
 #            - test: '3.9'
+#            - test: '3.13'
+#            - test: '3.15'
+#  - stage: Generic_2_21
+#    displayName: Generic 2.21
+#    dependsOn: []
+#    jobs:
+#      - template: templates/matrix.yml
+#        parameters:
+#          nameFormat: Python {0}
+#          testFormat: 2.21/generic/{0}/1
+#          targets:
+#            - test: '3.9'
 #            - test: '3.12'
 #            - test: '3.14'
 #  - stage: Generic_2_20
@@ -384,44 +402,33 @@ stages:
 #          testFormat: 2.19/generic/{0}/1
 #          targets:
 #            - test: '3.9'
-#            - test: '3.13'
-#  - stage: Generic_2_18
-#    displayName: Generic 2.18
-#    dependsOn: []
-#    jobs:
-#      - template: templates/matrix.yml
-#        parameters:
-#          nameFormat: Python {0}
-#          testFormat: 2.18/generic/{0}/1
-#          targets:
-#            - test: '3.8'
 #            - test: '3.13'

  - stage: Summary
    condition: succeededOrFailed()
    dependsOn:
      - Sanity_devel
+      - Sanity_2_21
      - Sanity_2_20
      - Sanity_2_19
-      - Sanity_2_18
      - Units_devel
+      - Units_2_21
      - Units_2_20
      - Units_2_19
-      - Units_2_18
      - Remote_devel_extra_vms
      - Remote_devel
+      - Remote_2_21
      - Remote_2_20
      - Remote_2_19
-      - Remote_2_18
      - Docker_devel
+      - Docker_2_21
      - Docker_2_20
      - Docker_2_19
-      - Docker_2_18
      - Docker_community_devel
 # Right now all generic tests are disabled. Uncomment when at least one of them is re-enabled.
 #      - Generic_devel
+#      - Generic_2_21
 #      - Generic_2_20
 #      - Generic_2_19
-#      - Generic_2_18
    jobs:
      - template: templates/coverage.yml
--- a/.azure-pipelines/scripts/combine-coverage.py
+++ b/.azure-pipelines/scripts/combine-coverage.py
@@ -11,8 +11,7 @@ Keep in mind that Azure Pipelines does not enforce unique job display names (onl
 It is up to pipeline authors to avoid name collisions when deviating from the recommended format.
 """

-from __future__ import (absolute_import, division, print_function)
-__metaclass__ = type
+from __future__ import annotations

 import os
 import re
@@ -24,12 +23,12 @@ def main():
    """Main program entry point."""
    source_directory = sys.argv[1]

-    if '/ansible_collections/' in os.getcwd():
+    if "/ansible_collections/" in os.getcwd():
        output_path = "tests/output"
    else:
        output_path = "test/results"

-    destination_directory = os.path.join(output_path, 'coverage')
+    destination_directory = os.path.join(output_path, "coverage")

    if not os.path.exists(destination_directory):
        os.makedirs(destination_directory)
@@ -38,27 +37,27 @@ def main():
    count = 0

    for name in os.listdir(source_directory):
-        match = re.search('^Coverage (?P<attempt>[0-9]+) (?P<label>.+)$', name)
-        label = match.group('label')
-        attempt = int(match.group('attempt'))
+        match = re.search("^Coverage (?P<attempt>[0-9]+) (?P<label>.+)$", name)
+        label = match.group("label")
+        attempt = int(match.group("attempt"))
        jobs[label] = max(attempt, jobs.get(label, 0))

    for label, attempt in jobs.items():
-        name = 'Coverage {attempt} {label}'.format(label=label, attempt=attempt)
+        name = f"Coverage {attempt} {label}"
        source = os.path.join(source_directory, name)
        source_files = os.listdir(source)

        for source_file in source_files:
            source_path = os.path.join(source, source_file)
-            destination_path = os.path.join(destination_directory, source_file + '.' + label)
-            print('"%s" -> "%s"' % (source_path, destination_path))
+            destination_path = os.path.join(destination_directory, source_file + "." + label)
+            print(f'"{source_path}" -> "{destination_path}"')
            shutil.copyfile(source_path, destination_path)
            count += 1

-    print('Coverage file count: %d' % count)
-    print('##vso[task.setVariable variable=coverageFileCount]%d' % count)
-    print('##vso[task.setVariable variable=outputPath]%s' % output_path)
+    print(f"Coverage file count: {count}")
+    print(f"##vso[task.setVariable variable=coverageFileCount]{count}")
+    print(f"##vso[task.setVariable variable=outputPath]{output_path}")


-if __name__ == '__main__':
+if __name__ == "__main__":
    main()
--- a/.azure-pipelines/scripts/publish-codecov.py
+++ b/.azure-pipelines/scripts/publish-codecov.py
@@ -15,7 +15,6 @@ import pathlib
 import shutil
 import subprocess
 import tempfile
-import typing as t
 import urllib.request


@@ -23,7 +22,7 @@ import urllib.request
 class CoverageFile:
    name: str
    path: pathlib.Path
-    flags: t.List[str]
+    flags: list[str]


@dataclasses.dataclass(frozen=True)
@@ -34,8 +33,8 @@ class Args:

 def parse_args() -> Args:
    parser = argparse.ArgumentParser()
-    parser.add_argument('-n', '--dry-run', action='store_true')
-    parser.add_argument('path', type=pathlib.Path)
+    parser.add_argument("-n", "--dry-run", action="store_true")
+    parser.add_argument("path", type=pathlib.Path)

    args = parser.parse_args()

@@ -46,32 +45,36 @@ def parse_args() -> Args:
    return Args(**kwargs)


-def process_files(directory: pathlib.Path) -> t.Tuple[CoverageFile, ...]:
+def process_files(directory: pathlib.Path) -> tuple[CoverageFile, ...]:
    processed = []
-    for file in directory.joinpath('reports').glob('coverage*.xml'):
-        name = file.stem.replace('coverage=', '')
+    for file in directory.joinpath("reports").glob("coverage*.xml"):
+        name = file.stem.replace("coverage=", "")

        # Get flags from name
-        flags = name.replace('-powershell', '').split('=')  # Drop '-powershell' suffix
-        flags = [flag if not flag.startswith('stub') else flag.split('-')[0] for flag in flags]  # Remove "-01" from stub files
+        flags = name.replace("-powershell", "").split("=")  # Drop '-powershell' suffix
+        flags = [
+            flag if not flag.startswith("stub") else flag.split("-")[0] for flag in flags
+        ]  # Remove "-01" from stub files

        processed.append(CoverageFile(name, file, flags))

    return tuple(processed)


-def upload_files(codecov_bin: pathlib.Path, files: t.Tuple[CoverageFile, ...], dry_run: bool = False) -> None:
+def upload_files(codecov_bin: pathlib.Path, files: tuple[CoverageFile, ...], dry_run: bool = False) -> None:
    for file in files:
        cmd = [
            str(codecov_bin),
-            '--name', file.name,
-            '--file', str(file.path),
+            "--name",
+            file.name,
+            "--file",
+            str(file.path),
        ]
        for flag in file.flags:
-            cmd.extend(['--flags', flag])
+            cmd.extend(["--flags", flag])

        if dry_run:
-            print(f'DRY-RUN: Would run command: {cmd}')
+            print(f"DRY-RUN: Would run command: {cmd}")
            continue

        subprocess.run(cmd, check=True)
@@ -79,11 +82,11 @@ def upload_files(codecov_bin: pathlib.Path, files: t.Tuple[CoverageFile, ...], d

 def download_file(url: str, dest: pathlib.Path, flags: int, dry_run: bool = False) -> None:
    if dry_run:
-        print(f'DRY-RUN: Would download {url} to {dest} and set mode to {flags:o}')
+        print(f"DRY-RUN: Would download {url} to {dest} and set mode to {flags:o}")
        return

    with urllib.request.urlopen(url) as resp:
-        with dest.open('w+b') as f:
+        with dest.open("w+b") as f:
            # Read data in chunks rather than all at once
            shutil.copyfileobj(resp, f, 64 * 1024)

@@ -92,14 +95,14 @@ def download_file(url: str, dest: pathlib.Path, flags: int, dry_run: bool = Fals

 def main():
    args = parse_args()
-    url = 'https://ansible-ci-files.s3.amazonaws.com/codecov/linux/codecov'
-    with tempfile.TemporaryDirectory(prefix='codecov-') as tmpdir:
-        codecov_bin = pathlib.Path(tmpdir) / 'codecov'
+    url = "https://ansible-ci-files.s3.amazonaws.com/codecov/linux/codecov"
+    with tempfile.TemporaryDirectory(prefix="codecov-") as tmpdir:
+        codecov_bin = pathlib.Path(tmpdir) / "codecov"
        download_file(url, codecov_bin, 0o755, args.dry_run)

        files = process_files(args.path)
        upload_files(codecov_bin, files, args.dry_run)


-if __name__ == '__main__':
+if __name__ == "__main__":
    main()
--- a/.azure-pipelines/scripts/time-command.py
+++ b/.azure-pipelines/scripts/time-command.py
@@ -5,8 +5,7 @@

 """Prepends a relative timestamp to each input line from stdin and writes it to stdout."""

-from __future__ import (absolute_import, division, print_function)
-__metaclass__ = type
+from __future__ import annotations

 import sys
 import time
@@ -16,14 +15,14 @@ def main():
    """Main program entry point."""
    start = time.time()

-    sys.stdin.reconfigure(errors='surrogateescape')
-    sys.stdout.reconfigure(errors='surrogateescape')
+    sys.stdin.reconfigure(errors="surrogateescape")
+    sys.stdout.reconfigure(errors="surrogateescape")

    for line in sys.stdin:
-        seconds = time.time() - start
-        sys.stdout.write('%02d:%02d %s' % (seconds // 60, seconds % 60, line))
+        seconds = int(time.time() - start)
+        sys.stdout.write(f"{seconds // 60:02}:{seconds % 60:02} {line}")
        sys.stdout.flush()


-if __name__ == '__main__':
+if __name__ == "__main__":
    main()
--- a/.devcontainer/devcontainer.json
+++ b/.devcontainer/devcontainer.json
@@ -0,0 +1,34 @@
+{
+  "name": "community.general devcontainer",
+  "image": "mcr.microsoft.com/devcontainers/python:3.14-bookworm",
+  "features": {
+    "ghcr.io/devcontainers/features/docker-in-docker:2": {}
+  },
+  "customizations": {
+    "vscode": {
+      "settings": {
+        "terminal.integrated.shell.linux": "/bin/bash",
+        "python.pythonPath": "/usr/local/bin/python",
+        "editor.defaultFormatter": "charliermarsh.ruff",
+        "editor.formatOnSave": true,
+        "files.autoSave": "afterDelay",
+        "files.eol": "\n",
+        "files.insertFinalNewline": true,
+        "files.trimFinalNewlines": true,
+        "files.trimTrailingWhitespace": true
+      },
+      "extensions": [
+        "charliermarsh.ruff",
+        "ms-python.python",
+        "ms-python.vscode-pylance",
+        "redhat.ansible",
+        "redhat.vscode-yaml",
+        "trond-snekvik.simple-rst"
+      ]
+    }
+  },
+  "remoteUser": "vscode",
+  "postCreateCommand": ".devcontainer/setup.sh",
+  "workspaceFolder": "/workspace/ansible_collections/community/general",
+  "workspaceMount": "source=${localWorkspaceFolder},target=/workspace/ansible_collections/community/general,type=bind"
+}
--- a/.devcontainer/devcontainer.json.license
+++ b/.devcontainer/devcontainer.json.license
@@ -0,0 +1,3 @@
+GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https: //www.gnu.org/licenses/gpl-3.0.txt)
+SPDX-License-Identifier: GPL-3.0-or-later
+SPDX-FileCopyrightText: 2025 Alexei Znamensky <russoz@gmail.com>
--- a/.devcontainer/requirements-dev.txt
+++ b/.devcontainer/requirements-dev.txt
@@ -0,0 +1,10 @@
+# GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https://www.gnu.org/licenses/gpl-3.0.txt)
+# SPDX-License-Identifier: GPL-3.0-or-later
+# SPDX-FileCopyrightText: 2025 Alexei Znamensky <russoz@gmail.com>
+
+nox
+ruff
+antsibull-nox
+pre-commit
+ansible-core
+andebox
--- a/.devcontainer/setup.sh
+++ b/.devcontainer/setup.sh
@@ -0,0 +1,17 @@
+#!/usr/bin/env bash
+# Copyright (c) Ansible Project
+# GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https://www.gnu.org/licenses/gpl-3.0.txt)
+# SPDX-License-Identifier: GPL-3.0-or-later
+
+set -x
+sudo chown -R vscode:vscode /workspace/
+
+pip install -U pip
+pip install -r .devcontainer/requirements-dev.txt
+pip install -r tests/unit/requirements.txt
+
+export ANSIBLE_COLLECTIONS_PATH=/workspace:${ANSIBLE_COLLECTIONS_PATH}
+ansible-galaxy collection install -v -r tests/unit/requirements.yml
+ansible-galaxy collection install -v -r tests/integration/requirements.yml
+
+pre-commit install
--- a/.git-blame-ignore-revs
+++ b/.git-blame-ignore-revs
@@ -10,3 +10,6 @@ eaa5e07b2866e05b6c7b5628ca92e9cb1142d008

 # Code reformatting
 340ff8586d4f1cb6a0f3c934eb42589bcc29c0ea
+e530d2906a1f61df89861286ac57c951a247f32c
+b769b0bc01520d12699d3911e1fc290b813cde40
+dd9c86dfc094131f223ffb59e5a3d9f2dfc5875d
--- a/.github/BOTMETA.yml
+++ b/.github/BOTMETA.yml
@@ -65,6 +65,9 @@ files:
  $callbacks/log_plays.py: {}
  $callbacks/loganalytics.py:
    maintainers: zhcli
+  $callbacks/loganalytics_ingestion.py:
+    ignore: zhcli
+    maintainers: pboushy vsh47 wtcline-intc
  $callbacks/logdna.py: {}
  $callbacks/logentries.py: {}
  $callbacks/logstash.py:
@@ -133,6 +136,8 @@ files:
  $doc_fragments/hwc.py:
    labels: hwc
    maintainers: $team_huawei
+  $doc_fragments/_icinga2_api.py:
+    maintainers: cfiehe
  $doc_fragments/nomad.py:
    maintainers: chris93111 apecnascimento
  $doc_fragments/pipx.py:
@@ -216,6 +221,10 @@ files:
    maintainers: resmo
  $filters/to_time_unit.yml:
    maintainers: resmo
+  $filters/to_toml.py:
+    maintainers: milliams
+  $filters/to_toml.yml:
+    maintainers: milliams
  $filters/to_weeks.yml:
    maintainers: resmo
  $filters/to_yaml.py:
@@ -303,7 +312,7 @@ files:
  $lookups/lmdb_kv.py:
    maintainers: jpmens
  $lookups/merge_variables.py:
-    maintainers: rlenferink m-a-r-k-e alpex8
+    maintainers: rlenferink m-a-r-k-e alpex8 cfiehe
  $lookups/onepass:
    labels: onepassword
    maintainers: samdoran
@@ -358,6 +367,8 @@ files:
    keywords: cloud huawei hwc
    labels: huawei hwc_utils networking
    maintainers: $team_huawei
+  $module_utils/_icinga2.py:
+    maintainers: cfiehe
  $module_utils/identity/keycloak/keycloak.py:
    maintainers: $team_keycloak
  $module_utils/identity/keycloak/keycloak_clientsecret.py:
@@ -368,6 +379,13 @@ files:
  $module_utils/jenkins.py:
    labels: jenkins
    maintainers: russoz
+  $module_utils/_crypt.py:
+    maintainers: russoz
+  $module_utils/_lxc.py:
+    maintainers: russoz
+  $module_utils/_lvm.py:
+    labels: lvm
+    maintainers: russoz
  $module_utils/manageiq.py:
    labels: manageiq
    maintainers: $team_manageiq
@@ -592,6 +610,8 @@ files:
  $modules/filesystem.py:
    labels: filesystem
    maintainers: pilou- abulimov quidame
+  $modules/file_remove.py:
+    maintainers: shahargolshani
  $modules/flatpak.py:
    maintainers: $team_flatpak
  $modules/flatpak_remote.py:
@@ -627,6 +647,10 @@ files:
    maintainers: adrianmoisey
  $modules/github_repo.py:
    maintainers: atorrescogollo
+  $modules/github_secrets.py:
+    maintainers: konstruktoid
+  $modules/github_secrets_info.py:
+    maintainers: konstruktoid
  $modules/gitlab_:
    keywords: gitlab source_control
    maintainers: $team_gitlab
@@ -642,10 +666,10 @@ files:
    maintainers: zvaraondrej
  $modules/gitlab_milestone.py:
    maintainers: gpongelli
-  $modules/gitlab_project_variable.py:
-    maintainers: markuman
  $modules/gitlab_instance_variable.py:
    maintainers: benibr
+  $modules/gitlab_project_variable.py:
+    maintainers: markuman
  $modules/gitlab_runner.py:
    maintainers: SamyCoenen
  $modules/gitlab_user.py:
@@ -705,6 +729,8 @@ files:
    maintainers: $team_huawei huaweicloud
  $modules/ibm_sa_:
    maintainers: tzure
+  $modules/icinga2_downtime.py:
+    maintainers: cfiehe
  $modules/icinga2_feature.py:
    maintainers: nerzhul
  $modules/icinga2_host.py:
@@ -743,6 +769,8 @@ files:
    maintainers: obourdon hryamzik
  $modules/ip_netns.py:
    maintainers: bregman-arie
+  $modules/ip2location_info.py:
+    maintainers: ip2location
  $modules/ipa_:
    maintainers: $team_ipa
    ignore: fxfitz
@@ -750,14 +778,14 @@ files:
    maintainers: abakanovskii
  $modules/ipa_dnsrecord.py:
    maintainers: $team_ipa jwbernin
-  $modules/ipbase_info.py:
-    maintainers: dominikkukacka
  $modules/ipa_pwpolicy.py:
    maintainers: adralioh
  $modules/ipa_service.py:
    maintainers: cprh
  $modules/ipa_vault.py:
    maintainers: jparrill
+  $modules/ipbase_info.py:
+    maintainers: dominikkukacka
  $modules/ipify_facts.py:
    maintainers: resmo
  $modules/ipinfoio_facts.py:
@@ -817,16 +845,22 @@ files:
    maintainers: elfelip Gaetan2907
  $modules/keycloak_authentication_required_actions.py:
    maintainers: Skrekulko
+  $modules/keycloak_authentication_v2.py:
+    maintainers: thomasbargetz
  $modules/keycloak_authz_authorization_scope.py:
    maintainers: mattock
-  $modules/keycloak_authz_permission.py:
-    maintainers: mattock
  $modules/keycloak_authz_custom_policy.py:
    maintainers: mattock
+  $modules/keycloak_authz_permission.py:
+    maintainers: mattock
  $modules/keycloak_authz_permission_info.py:
    maintainers: mattock
+  $modules/keycloak_client.py:
+    maintainers: koke1997
  $modules/keycloak_client_rolemapping.py:
    maintainers: Gaetan2907
+  $modules/keycloak_client_rolescope.py:
+    maintainers: desand01
  $modules/keycloak_clientscope.py:
    maintainers: Gaetan2907
  $modules/keycloak_clientscope_type.py:
@@ -837,6 +871,8 @@ files:
    maintainers: fynncfchen johncant
  $modules/keycloak_component.py:
    maintainers: fivetide
+  $modules/keycloak_component_info.py:
+    maintainers: desand01
  $modules/keycloak_group.py:
    maintainers: adamgoossens
  $modules/keycloak_identity_provider.py:
@@ -846,25 +882,23 @@ files:
  $modules/keycloak_realm_info.py:
    maintainers: fynncfchen
  $modules/keycloak_realm_key.py:
-    maintainers: mattock
+    maintainers: mattock koke1997
+  $modules/keycloak_realm_localization.py:
+    maintainers: danekja
+  $modules/keycloak_realm_rolemapping.py:
+    maintainers: agross mhuysamen Gaetan2907
  $modules/keycloak_role.py:
    maintainers: laurpaum
  $modules/keycloak_user.py:
    maintainers: elfelip
-  $modules/keycloak_user_federation.py:
-    maintainers: laurpaum
-  $modules/keycloak_userprofile.py:
-    maintainers: yeoldegrove
-  $modules/keycloak_component_info.py:
-    maintainers: desand01
-  $modules/keycloak_client_rolescope.py:
-    maintainers: desand01
-  $modules/keycloak_user_rolemapping.py:
-    maintainers: bratwurzt
-  $modules/keycloak_realm_rolemapping.py:
-    maintainers: agross mhuysamen Gaetan2907
  $modules/keycloak_user_execute_actions_email.py:
    maintainers: mariusbertram
+  $modules/keycloak_user_federation.py:
+    maintainers: laurpaum
+  $modules/keycloak_user_rolemapping.py:
+    maintainers: bratwurzt koke1997
+  $modules/keycloak_userprofile.py:
+    maintainers: yeoldegrove
  $modules/keyring.py:
    maintainers: ahussey-redhat
  $modules/keyring_info.py:
@@ -907,6 +941,8 @@ files:
    labels: logentries
  $modules/logentries_msg.py:
    maintainers: jcftang
+  $modules/logrotate.py:
+    maintainers: a-gabidullin
  $modules/logstash_plugin.py:
    maintainers: nerzhul
  $modules/lvg.py:
@@ -929,6 +965,10 @@ files:
    maintainers: conloos
  $modules/lxd_project.py:
    maintainers: we10710aa
+  $modules/lxd_storage_pool_info.py:
+    maintainers: smcavoy
+  $modules/lxd_storage_volume_info.py:
+    maintainers: smcavoy
  $modules/macports.py:
    ignore: ryansb
    keywords: brew cask darwin homebrew macosx macports osx
@@ -1305,8 +1345,11 @@ files:
  $modules/snap_alias.py:
    labels: snap
    maintainers: russoz
+  $modules/snap_connect.py:
+    labels: snap
+    maintainers: russoz
  $modules/snmp_facts.py:
-    maintainers: ogenstad ujwalkomarla
+    maintainers: ogenstad ujwalkomarla lalten
  $modules/solaris_zone.py:
    keywords: beadm dladm illumos ipadm nexenta omnios openindiana pfexec smartos solaris sunos zfs zpool
    labels: solaris
@@ -1323,6 +1366,8 @@ files:
    maintainers: farhan7500 gautamphegde
  $modules/ssh_config.py:
    maintainers: gaqzi Akasurde
+  $modules/sssd_info.py:
+    maintainers: a-gabidullin
  $modules/stacki_host.py:
    labels: stacki_host
    maintainers: bsanders bbyhuy
@@ -1479,22 +1524,24 @@ files:
    ignore: matze
    labels: zypper
    maintainers: $team_suse
-  $plugin_utils/ansible_type.py:
-    maintainers: vbotka
  $modules/zypper_repository_info.py:
    labels: zypper
    maintainers: $team_suse TobiasZeuch181
+  $plugin_utils/ansible_type.py:
+    maintainers: vbotka
  $plugin_utils/keys_filter.py:
    maintainers: vbotka
  $plugin_utils/unsafe.py:
    maintainers: felixfontein
+  $plugin_utils/_tags.py:
+    maintainers: felixfontein
  $tests/a_module.py:
    maintainers: felixfontein
  $tests/ansible_type.py:
    maintainers: vbotka
  $tests/fqdn_valid.py:
    maintainers: vbotka
-#########################
+  #########################
  docs/docsite/rst/filter_guide.rst: {}
  docs/docsite/rst/filter_guide_abstract_informations.rst: {}
  docs/docsite/rst/filter_guide_abstract_informations_counting_elements_in_sequence.rst:
@@ -1533,6 +1580,8 @@ files:
    maintainers: russoz
  docs/docsite/rst/guide_deps.rst:
    maintainers: russoz
+  docs/docsite/rst/guide_ee.rst:
+    maintainers: russoz
  docs/docsite/rst/guide_iocage.rst:
    maintainers: russoz felixfontein
  docs/docsite/rst/guide_iocage_inventory.rst:
@@ -1563,7 +1612,7 @@ files:
    maintainers: russoz
  docs/docsite/rst/test_guide.rst:
    maintainers: felixfontein
-#########################
+  #########################
  tests/:
    labels: tests
  tests/integration:
@@ -1590,7 +1639,7 @@ macros:
  plugin_utils: plugins/plugin_utils
  tests: plugins/test
  team_ansible_core:
-  team_aix: MorrisA bcoca d-little flynn1973 gforster kairoaraujo marvin-sinister mator molekuul ramooncamacho wtcross
+  team_aix: MorrisA bcoca d-little flynn1973 gforster kairoaraujo marvin-sinister molekuul ramooncamacho wtcross
  team_bsd: JoergFiedler MacLemon bcoca dch jasperla mekanix opoplawski overhacked tuxillo
  team_consul: sgargan apollo13 Ilgmi
  team_cyberark_conjur: jvanderhoof ryanprior
@@ -1611,7 +1660,7 @@ macros:
  team_redfish: mraineri tomasg2012 xmadsen renxulei rajeevkallur bhavya06 jyundt
  team_rhsm: cnsnyder ptoscano
  team_scaleway: remyleone abarbare
-  team_solaris: bcoca fishman jasperla jpdasma mator scathatheworm troy2914 xen0l
+  team_solaris: bcoca fishman jasperla jpdasma scathatheworm troy2914 xen0l
  team_suse: commel evrardjp lrupp AnderEnder alxgu andytom sealor
  team_virt: joshainglis karmab Thulium-Drake Ajpantuso
  team_wdc: mikemoerk
--- a/.github/ISSUE_TEMPLATE/bug_report.yml
+++ b/.github/ISSUE_TEMPLATE/bug_report.yml
@@ -146,7 +146,7 @@ body:
    attributes:
      label: Code of Conduct
      description: |
-        Read the [Ansible Code of Conduct](https://docs.ansible.com/ansible/latest/community/code_of_conduct.html?utm_medium=github&utm_source=issue_form--ansible-collections) first.
+        Read the [Ansible Code of Conduct](https://docs.ansible.com/projects/ansible/latest/community/code_of_conduct.html?utm_medium=github&utm_source=issue_form--ansible-collections) first.
      options:
        - label: I agree to follow the Ansible Code of Conduct
          required: true
--- a/.github/ISSUE_TEMPLATE/config.yml
+++ b/.github/ISSUE_TEMPLATE/config.yml
@@ -7,7 +7,7 @@
 blank_issues_enabled: false  # default: true
 contact_links:
  - name: Security bug report
-    url: https://docs.ansible.com/ansible-core/devel/community/reporting_bugs_and_features.html?utm_medium=github&utm_source=issue_template_chooser_ansible_collections
+    url: https://docs.ansible.com/projects/ansible-core/devel/community/reporting_bugs_and_features.html?utm_medium=github&utm_source=issue_template_chooser_ansible_collections
    about: |
      Please learn how to report security vulnerabilities here.

@@ -16,12 +16,12 @@ contact_links:
      a prompt response.

      For more information, see
-      https://docs.ansible.com/ansible/latest/community/reporting_bugs_and_features.html
+      https://docs.ansible.com/projects/ansible/latest/community/reporting_bugs_and_features.html
  - name: Ansible Code of Conduct
-    url: https://docs.ansible.com/ansible/latest/community/code_of_conduct.html?utm_medium=github&utm_source=issue_template_chooser_ansible_collections
+    url: https://docs.ansible.com/projects/ansible/latest/community/code_of_conduct.html?utm_medium=github&utm_source=issue_template_chooser_ansible_collections
    about: Be nice to other members of the community.
  - name: Talks to the community
-    url: https://docs.ansible.com/ansible/latest/community/communication.html?utm_medium=github&utm_source=issue_template_chooser#mailing-list-information
+    url: https://docs.ansible.com/projects/ansible/latest/community/communication.html?utm_medium=github&utm_source=issue_template_chooser#mailing-list-information
    about: Please ask and answer usage questions here
  - name: Working groups
    url: https://github.com/ansible/community/wiki
--- a/.github/ISSUE_TEMPLATE/documentation_report.yml
+++ b/.github/ISSUE_TEMPLATE/documentation_report.yml
@@ -122,7 +122,7 @@ body:
    attributes:
      label: Code of Conduct
      description: |
-        Read the [Ansible Code of Conduct](https://docs.ansible.com/ansible/latest/community/code_of_conduct.html?utm_medium=github&utm_source=issue_form--ansible-collections) first.
+        Read the [Ansible Code of Conduct](https://docs.ansible.com/projects/ansible/latest/community/code_of_conduct.html?utm_medium=github&utm_source=issue_form--ansible-collections) first.
      options:
        - label: I agree to follow the Ansible Code of Conduct
          required: true
--- a/.github/ISSUE_TEMPLATE/feature_request.yml
+++ b/.github/ISSUE_TEMPLATE/feature_request.yml
@@ -66,7 +66,7 @@ body:
    attributes:
      label: Code of Conduct
      description: |
-        Read the [Ansible Code of Conduct](https://docs.ansible.com/ansible/latest/community/code_of_conduct.html?utm_medium=github&utm_source=issue_form--ansible-collections) first.
+        Read the [Ansible Code of Conduct](https://docs.ansible.com/projects/ansible/latest/community/code_of_conduct.html?utm_medium=github&utm_source=issue_form--ansible-collections) first.
      options:
        - label: I agree to follow the Ansible Code of Conduct
          required: true
--- a/.github/pull_request_template.md
+++ b/.github/pull_request_template.md
@@ -4,7 +4,7 @@
 <!--- HINT: Include "Fixes #nnn" if you are fixing an existing issue -->

 <!--- Please do not forget to include a changelog fragment:
-      https://docs.ansible.com/ansible/devel/community/collection_development_process.html#creating-changelog-fragments
+      https://docs.ansible.com/projects/ansible/devel/community/collection_development_process.html#creating-changelog-fragments
      No need to include one for docs-only or test-only PR, and for new plugin/module PRs.
      Read about more details in CONTRIBUTING.md.
      -->
--- a/.github/workflows/ansible-test.yml
+++ b/.github/workflows/ansible-test.yml
@@ -30,6 +30,7 @@ jobs:
      matrix:
        ansible:
          - '2.17'
+          - '2.18'
    runs-on: ubuntu-latest
    steps:
      - name: Perform sanity testing
@@ -63,6 +64,12 @@ jobs:
            python: '3.10'
          - ansible: '2.17'
            python: '3.12'
+          - ansible: '2.18'
+            python: '3.8'
+          - ansible: '2.18'
+            python: '3.11'
+          - ansible: '2.18'
+            python: '3.13'

    steps:
      - name: >-
@@ -144,6 +151,52 @@ jobs:
          #   docker: default
          #   python: '3.12'
          #   target: azp/generic/1/
+          # 2.18
+          - ansible: '2.18'
+            docker: fedora40
+            python: ''
+            target: azp/posix/1/
+          - ansible: '2.18'
+            docker: fedora40
+            python: ''
+            target: azp/posix/2/
+          - ansible: '2.18'
+            docker: fedora40
+            python: ''
+            target: azp/posix/3/
+          - ansible: '2.18'
+            docker: ubuntu2404
+            python: ''
+            target: azp/posix/1/
+          - ansible: '2.18'
+            docker: ubuntu2404
+            python: ''
+            target: azp/posix/2/
+          - ansible: '2.18'
+            docker: ubuntu2404
+            python: ''
+            target: azp/posix/3/
+          - ansible: '2.18'
+            docker: alpine320
+            python: ''
+            target: azp/posix/1/
+          - ansible: '2.18'
+            docker: alpine320
+            python: ''
+            target: azp/posix/2/
+          - ansible: '2.18'
+            docker: alpine320
+            python: ''
+            target: azp/posix/3/
+          # Right now all generic tests are disabled. Uncomment when at least one of them is re-enabled.
+          # - ansible: '2.18'
+          #   docker: default
+          #   python: '3.8'
+          #   target: azp/generic/1/
+          # - ansible: '2.18'
+          #   docker: default
+          #   python: '3.13'
+          #   target: azp/generic/1/

    steps:
      - name: >-
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -24,7 +24,7 @@ jobs:

    steps:
      - name: Checkout repository
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
        with:
          persist-credentials: false

--- a/.github/workflows/docs.yml
+++ b/.github/workflows/docs.yml
@@ -25,7 +25,7 @@ jobs:
    name: "Validate generated Ansible output"
    steps:
      - name: Check out collection
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
        with:
          persist-credentials: false
      - name: Run nox
--- a/.github/workflows/nox.yml
+++ b/.github/workflows/nox.yml
@@ -21,7 +21,7 @@ jobs:
    name: "Run extra sanity tests"
    steps:
      - name: Check out collection
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
        with:
          persist-credentials: false
      - name: Run nox
--- a/.mypy.ini
+++ b/.mypy.ini
@@ -14,6 +14,8 @@ warn_redundant_casts = True
 # warn_return_any = True
 warn_unreachable = True

+exclude = tests/integration/targets/django_.*/files/.*
+
 [mypy-ansible.*]
 # ansible-core has partial typing information
 follow_untyped_imports = True
@@ -24,6 +26,10 @@ follow_untyped_imports = True
 # 3. That have no types and type stubs.
 [mypy-aerospike.*]
 ignore_missing_imports = True
+[mypy-antsibull_nox.*]
+ignore_missing_imports = True
+[mypy-asyncore.*]
+ignore_missing_imports = True
 [mypy-boto3.*]
 ignore_missing_imports = True
 [mypy-bs4.*]
@@ -38,6 +44,8 @@ ignore_missing_imports = True
 ignore_missing_imports = True
 [mypy-crypt.*]
 ignore_missing_imports = True
+[mypy-daemon.*]
+ignore_missing_imports = True
 [mypy-datadog.*]
 ignore_missing_imports = True
 [mypy-dbus.*]
@@ -62,6 +70,8 @@ ignore_missing_imports = True
 ignore_missing_imports = True
 [mypy-github3.*]
 ignore_missing_imports = True
+[mypy-gssapi.*]
+ignore_missing_imports = True
 [mypy-hashids.*]
 ignore_missing_imports = True
 [mypy-heroku3.*]
@@ -122,6 +132,10 @@ ignore_missing_imports = True
 ignore_missing_imports = True
 [mypy-nomad.*]
 ignore_missing_imports = True
+[mypy-nopackagewiththisname.*]
+ignore_missing_imports = True
+[mypy-nox.*]
+ignore_missing_imports = True
 [mypy-oci.*]
 ignore_missing_imports = True
 [mypy-oneandone.*]
@@ -144,6 +158,8 @@ ignore_missing_imports = True
 ignore_missing_imports = True
 [mypy-pingdom.*]
 ignore_missing_imports = True
+[mypy-pkg_resources.*]
+ignore_missing_imports = True
 [mypy-portage.*]
 ignore_missing_imports = True
 [mypy-potatoes_that_will_never_be_there.*]
@@ -174,6 +190,8 @@ ignore_missing_imports = True
 ignore_missing_imports = True
 [mypy-rpm.*]
 ignore_missing_imports = True
+[mypy-ruamel.yaml.*]
+ignore_missing_imports = True
 [mypy-salt.*]
 ignore_missing_imports = True
 [mypy-selinux.*]
@@ -186,6 +204,10 @@ ignore_missing_imports = True
 ignore_missing_imports = True
 [mypy-sha.*]
 ignore_missing_imports = True
+[mypy-smtpd.*]
+ignore_missing_imports = True
+[mypy-smtpd_tls.*]
+ignore_missing_imports = True
 [mypy-SoftLayer.*]
 ignore_missing_imports = True
 [mypy-spotinst_sdk.*]
@@ -198,10 +220,14 @@ ignore_missing_imports = True
 ignore_missing_imports = True
 [mypy-thycotic.*]
 ignore_missing_imports = True
+[mypy-tomlkit.*]
+ignore_missing_imports = True
 [mypy-univention.*]
 ignore_missing_imports = True
 [mypy-vexatapi.*]
 ignore_missing_imports = True
+[mypy-voluptuous.*]
+ignore_missing_imports = True
 [mypy-websocket.*]
 ignore_missing_imports = True
 [mypy-XenAPI.*]
--- a/.pre-commit-config.yaml
+++ b/.pre-commit-config.yaml
@@ -0,0 +1,13 @@
+# GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https://www.gnu.org/licenses/gpl-3.0.txt)
+# SPDX-License-Identifier: GPL-3.0-or-later
+# SPDX-FileCopyrightText: 2025 Alexei Znamensky <russoz@gmail.com>
+
+repos:
+  - repo: https://github.com/astral-sh/ruff-pre-commit
+    # Ruff version.
+    rev: v0.15.9
+    hooks:
+      # Run the linter.
+      - id: ruff-check
+      # Run the formatter.
+      - id: ruff-format
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
--- a/CHANGELOG.rst
+++ b/CHANGELOG.rst
--- a/CONTRIBUTING.md
+++ b/CONTRIBUTING.md
@@ -6,7 +6,7 @@ SPDX-License-Identifier: GPL-3.0-or-later

 # Contributing

-We follow [Ansible Code of Conduct](https://docs.ansible.com/ansible/latest/community/code_of_conduct.html) in all our contributions and interactions within this repository.
+We follow [Ansible Code of Conduct](https://docs.ansible.com/projects/ansible/latest/community/code_of_conduct.html) in all our contributions and interactions within this repository.

 If you are a committer, also refer to the [collection's committer guidelines](https://github.com/ansible-collections/community.general/blob/main/commit-rights.md).

@@ -20,38 +20,43 @@ so you can cooperate to create a better solution together.
 * If you are interested in starting with an easy issue, look for [issues with an `easyfix` label](https://github.com/ansible-collections/community.general/labels/easyfix).
 * Often issues that are waiting for contributors to pick up have [the `waiting_on_contributor` label](https://github.com/ansible-collections/community.general/labels/waiting_on_contributor).

-## Open pull requests
+## Review pull requests

 Look through currently [open pull requests](https://github.com/ansible-collections/community.general/pulls).
+
 You can help by reviewing them. Reviews help move pull requests to merge state. Some good pull requests cannot be merged only due to a lack of reviews. And it is always worth saying that good reviews are often more valuable than pull requests themselves.
-Note that reviewing does not only mean code review, but also offering comments on new interfaces added to existing plugins/modules, interfaces of new plugins/modules, improving language (not everyone is a native english speaker), or testing bugfixes and new features!
+Note that reviewing does not only mean code review, but also offering comments on new interfaces added to existing plugins/modules, interfaces of new plugins/modules, improving language (not everyone is a native English speaker), or testing bugfixes and new features!

 Also, consider taking up a valuable, reviewed, but abandoned pull request which you could politely ask the original authors to complete yourself.

+## Open pull requests
+
+Please read our ['Contributing to collections'](https://docs.ansible.com/projects/ansible/devel/dev_guide/developing_collections_contributing.html#contributing-to-a-collection-community-general) guide.
+
 * Try committing your changes with an informative but short commit message.
 * Do not squash your commits and force-push to your branch if not needed. Reviews of your pull request are much easier with individual commits to comprehend the pull request history. All commits of your pull request branch will be squashed into one commit by GitHub upon merge.
-* Do not add merge commits to your PR. The bot will complain and you will have to rebase ([instructions for rebasing](https://docs.ansible.com/ansible/latest/dev_guide/developing_rebasing.html)) to remove them before your PR can be merged. To avoid that git automatically does merges during pulls, you can configure it to do rebases instead by running `git config pull.rebase true` inside the repository checkout.
-* Make sure your PR includes a [changelog fragment](https://docs.ansible.com/ansible/devel/community/collection_development_process.html#creating-a-changelog-fragment).
+* Do not add merge commits to your PR. The bot will complain and you will have to rebase ([instructions for rebasing](https://docs.ansible.com/projects/ansible/latest/dev_guide/developing_rebasing.html)) to remove them before your PR can be merged. To avoid that git automatically does merges during pulls, you can configure it to do rebases instead by running `git config pull.rebase true` inside the repository checkout.
+* Make sure your PR includes a [changelog fragment](https://docs.ansible.com/projects/ansible/devel/community/collection_development_process.html#creating-a-changelog-fragment).
  * You must not include a fragment for new modules or new plugins. Also you shouldn't include one for docs-only changes. (If you're not sure, simply don't include one, we'll tell you whether one is needed or not :) )
  * Please always include a link to the pull request itself, and if the PR is about an issue, also a link to the issue. Also make sure the fragment ends with a period, and begins with a lower-case letter after `-`. (Again, if you don't do this, we'll add suggestions to fix it, so don't worry too much :) )
 * Note that we format the code with `ruff format`. If your change does not match the formatters expectations, CI will fail and your PR will not get merged. See below for how to format code with antsibull-nox.

-You can also read [our Quick-start development guide](https://github.com/ansible/community-docs/blob/main/create_pr_quick_start_guide.rst).
+You can also read the Ansible community's [Quick-start development guide](https://docs.ansible.com/projects/ansible/devel/community/create_pr_quick_start.html).

 ## Test pull requests

-If you want to test a PR locally, refer to [our testing guide](https://github.com/ansible/community-docs/blob/main/test_pr_locally_guide.rst) for instructions on how do it quickly.
+If you want to test a PR locally, refer to [our testing guide](https://docs.ansible.com/projects/ansible/devel/community/collection_contributors/collection_test_pr_locally.html) for instructions on how do it quickly.

 If you find any inconsistencies or places in this document which can be improved, feel free to raise an issue or pull request to fix it.

 ## Format code; and run sanity or unit tests locally (with antsibull-nox)

-The easiest way to format the code, and to run sanity and unit tests locally is to use [antsibull-nox](https://ansible.readthedocs.io/projects/antsibull-nox/).
+The easiest way to format the code, and to run sanity and unit tests locally is to use [antsibull-nox](https://docs.ansible.com/projects/antsibull-nox/).
 (If you have [nox](https://nox.thea.codes/en/stable/) installed, it will automatically install antsibull-nox in a virtual environment for you.)

 ### Format code

-The following commands show how to run ansible-test sanity tests:
+The following commands show how to run ruff format:

 ```.bash
 # Run all configured formatters:
@@ -101,7 +106,7 @@ If you replace `-Re` with `-e`, then the virtual environments will be re-created
 Instead of using antsibull-nox, you can also run sanity and unit tests with ansible-test directly.
 This also allows you to run integration tests.

-You have to check out the repository into a specific path structure to be able to run `ansible-test`. The path to the git checkout must end with `.../ansible_collections/community/general`. Please see [our testing guide](https://github.com/ansible/community-docs/blob/main/test_pr_locally_guide.rst) for instructions on how to check out the repository into a correct path structure. The short version of these instructions is:
+You have to check out the repository into a specific path structure to be able to run `ansible-test`. The path to the git checkout must end with `.../ansible_collections/community/general`. Please see [our testing guide](https://docs.ansible.com/projects/ansible/devel/community/collection_contributors/collection_test_pr_locally.html) for instructions on how to check out the repository into a correct path structure. The short version of these instructions is:

 ```.bash
 mkdir -p ~/dev/ansible_collections/community
@@ -128,6 +133,7 @@ ansible-test sanity --docker -v plugins/modules/system/pids.py tests/integration
 Note that for running unit tests, you need to install required collections in the same folder structure that `community.general` is checked out in.
 Right now, you need to install [`community.internal_test_tools`](https://github.com/ansible-collections/community.internal_test_tools).
 If you want to use the latest version from GitHub, you can run:
+
 ```
 git clone https://github.com/ansible-collections/community.internal_test_tools.git ~/dev/ansible_collections/community/internal_test_tools
 ```
@@ -150,6 +156,7 @@ ansible-test units --docker -v --python 3.8 tests/unit/plugins/modules/net_tools
 Note that for running integration tests, you need to install required collections in the same folder structure that `community.general` is checked out in.
 Right now, depending on the test, you need to install [`ansible.posix`](https://github.com/ansible-collections/ansible.posix), [`community.crypto`](https://github.com/ansible-collections/community.crypto), and [`community.docker`](https://github.com/ansible-collections/community.docker):
 If you want to use the latest versions from GitHub, you can run:
+
 ```
 mkdir -p ~/dev/ansible_collections/ansible
 git clone https://github.com/ansible-collections/ansible.posix.git ~/dev/ansible_collections/ansible/posix
@@ -162,11 +169,13 @@ The following commands show how to run integration tests:
 #### In Docker

 Integration tests on Docker have the following parameters:
+
 - `image_name` (required): The name of the Docker image. To get the list of supported Docker images, run
  `ansible-test integration --help` and look for _target docker images_.
 - `test_name` (optional): The name of the integration test.
  For modules, this equals the short name of the module; for example, `pacman` in case of `community.general.pacman`.
  For plugins, the plugin type is added before the plugin's short name, for example `callback_yaml` for the `community.general.yaml` callback.
+
 ```.bash
 # Test all plugins/modules on fedora40
 ansible-test integration -v --docker fedora40
@@ -187,6 +196,31 @@ ansible-test integration -v lookup_flattened

 If you are unsure about the integration test target name for a module or plugin, you can take a look in `tests/integration/targets/`. Tests for plugins have the plugin type prepended.

+## Devcontainer
+
+Since community.general 12.2.0, the project repository supports [devcontainers](https://containers.dev/). In short, it is a standard mechanism to
+create a container that is then used during the development cycle. Many tools are pre-installed in the container and will be already available
+to you as a developer. A number of different IDEs support that configuration, the most prominent ones being VSCode and PyCharm.
+
+See the files under [.devcontainer](.devcontainer) for details on what is deployed inside that container.
+
+Beware of:
+
+- By default, the devcontainer installs the latest version of `ansible-core`.
+  When testing your changes locally, keep in mind that the collection must support older versions of
+  `ansible-core` and, depending on what is being tested, results may vary.
+- Integration tests executed directly inside the devcontainer without isolation (see above) may fail if
+  they expected to be run in full fledged VMs. On the other hand, the devcontainer setup allows running
+  containers inside the container (the `docker-in-docker` feature).
+- The devcontainer is built with a directory structure such that
+  `.../ansible_collections/community/general` contains the project repository, so `ansible-test` and
+  other standard tools should work without any additional setup
+- By default, the devcontainer installs `pre-commit` and configures it to perform `ruff check` and
+  `ruff format` on the Python files, prior to commiting. That configuration is going to be used by
+  `git` even outside the devcontainer. To prevent errors, you have to either install `pre-commit` in
+  your computer, outside the devcontainer, or run `pre-commit uninstall` from within the devcontainer
+  before quitting it.
+
 ## Creating new modules or plugins

 Creating new modules and plugins requires a bit more work than other Pull Requests.
@@ -196,14 +230,14 @@ Creating new modules and plugins requires a bit more work than other Pull Reques

 2. Please do not add more than one plugin/module in one PR, especially if it is the first plugin/module you are contributing.
   That makes it easier for reviewers, and increases the chance that your PR will get merged. If you plan to contribute a group
-   of plugins/modules (say, more than a module and a corresponding ``_info`` module), please mention that in the first PR. In
+   of plugins/modules (say, more than a module and a corresponding `_info` module), please mention that in the first PR. In
   such cases, you also have to think whether it is better to publish the group of plugins/modules in a new collection.

 3. When creating a new module or plugin, please make sure that you follow various guidelines:

-   - Follow [development conventions](https://docs.ansible.com/ansible/devel/dev_guide/developing_modules_best_practices.html);
-   - Follow [documentation standards](https://docs.ansible.com/ansible/devel/dev_guide/developing_modules_documenting.html) and
-     the [Ansible style guide](https://docs.ansible.com/ansible/devel/dev_guide/style_guide/index.html#style-guide);
+   - Follow [development conventions](https://docs.ansible.com/projects/ansible/devel/dev_guide/developing_modules_best_practices.html);
+   - Follow [documentation standards](https://docs.ansible.com/projects/ansible/devel/dev_guide/developing_modules_documenting.html) and
+     the [Ansible style guide](https://docs.ansible.com/projects/ansible/devel/dev_guide/style_guide/index.html#style-guide);
   - Make sure your modules and plugins are [GPL-3.0-or-later](https://www.gnu.org/licenses/gpl-3.0-standalone.html) licensed
     (new module_utils can also be [BSD-2-clause](https://opensource.org/licenses/BSD-2-Clause) licensed);
   - Make sure that new plugins and modules have tests (unit tests, integration tests, or both); it is preferable to have some tests
--- a/LICENSES/PSF-2.0.txt
+++ b/LICENSES/PSF-2.0.txt
@@ -1,48 +0,0 @@
-PYTHON SOFTWARE FOUNDATION LICENSE VERSION 2
--------------------------------------------
-
-1. This LICENSE AGREEMENT is between the Python Software Foundation
-("PSF"), and the Individual or Organization ("Licensee") accessing and
-otherwise using this software ("Python") in source or binary form and
-its associated documentation.
-
-2. Subject to the terms and conditions of this License Agreement, PSF hereby
-grants Licensee a nonexclusive, royalty-free, world-wide license to reproduce,
-analyze, test, perform and/or display publicly, prepare derivative works,
-distribute, and otherwise use Python alone or in any derivative version,
-provided, however, that PSF's License Agreement and PSF's notice of copyright,
-i.e., "Copyright (c) 2001, 2002, 2003, 2004, 2005, 2006, 2007, 2008, 2009, 2010,
-2011, 2012, 2013, 2014, 2015, 2016, 2017, 2018, 2019, 2020, 2021 Python Software Foundation;
-All Rights Reserved" are retained in Python alone or in any derivative version
-prepared by Licensee.
-
-3. In the event Licensee prepares a derivative work that is based on
-or incorporates Python or any part thereof, and wants to make
-the derivative work available to others as provided herein, then
-Licensee hereby agrees to include in any such work a brief summary of
-the changes made to Python.
-
-4. PSF is making Python available to Licensee on an "AS IS"
-basis.  PSF MAKES NO REPRESENTATIONS OR WARRANTIES, EXPRESS OR
-IMPLIED.  BY WAY OF EXAMPLE, BUT NOT LIMITATION, PSF MAKES NO AND
-DISCLAIMS ANY REPRESENTATION OR WARRANTY OF MERCHANTABILITY OR FITNESS
-FOR ANY PARTICULAR PURPOSE OR THAT THE USE OF PYTHON WILL NOT
-INFRINGE ANY THIRD PARTY RIGHTS.
-
-5. PSF SHALL NOT BE LIABLE TO LICENSEE OR ANY OTHER USERS OF PYTHON
-FOR ANY INCIDENTAL, SPECIAL, OR CONSEQUENTIAL DAMAGES OR LOSS AS
-A RESULT OF MODIFYING, DISTRIBUTING, OR OTHERWISE USING PYTHON,
-OR ANY DERIVATIVE THEREOF, EVEN IF ADVISED OF THE POSSIBILITY THEREOF.
-
-6. This License Agreement will automatically terminate upon a material
-breach of its terms and conditions.
-
-7. Nothing in this License Agreement shall be deemed to create any
-relationship of agency, partnership, or joint venture between PSF and
-Licensee.  This License Agreement does not grant permission to use PSF
-trademarks or trade name in a trademark sense to endorse or promote
-products or services of Licensee, or any third party.
-
-8. By copying, installing or otherwise using Python, Licensee
-agrees to be bound by the terms and conditions of this License
-Agreement.
--- a/README.md
+++ b/README.md
@@ -6,7 +6,7 @@ SPDX-License-Identifier: GPL-3.0-or-later

 # Community General Collection

-[![Documentation](https://img.shields.io/badge/docs-brightgreen.svg)](https://docs.ansible.com/ansible/devel/collections/community/general/)
+[![Documentation](https://img.shields.io/badge/docs-brightgreen.svg)](https://docs.ansible.com/projects/ansible/devel/collections/community/general/)
 [![Build Status](https://dev.azure.com/ansible/community.general/_apis/build/status/CI?branchName=stable-12)](https://dev.azure.com/ansible/community.general/_build?definitionId=31)
 [![EOL CI](https://github.com/ansible-collections/community.general/actions/workflows/ansible-test.yml/badge.svg?branch=stable-12)](https://github.com/ansible-collections/community.general/actions)
 [![Nox CI](https://github.com/ansible-collections/community.general/actions/workflows/nox.yml/badge.svg?branch=stable-12)](https://github.com/ansible-collections/community.general/actions)
@@ -15,15 +15,15 @@ SPDX-License-Identifier: GPL-3.0-or-later

 This repository contains the `community.general` Ansible Collection. The collection is a part of the Ansible package and includes many modules and plugins supported by Ansible community which are not part of more specialized community collections.

-You can find [documentation for this collection on the Ansible docs site](https://docs.ansible.com/ansible/latest/collections/community/general/).
+You can find [documentation for this collection on the Ansible docs site](https://docs.ansible.com/projects/ansible/latest/collections/community/general/).

 Please note that this collection does **not** support Windows targets. Only connection plugins included in this collection might support Windows targets, and will explicitly mention that in their documentation if they do so.

 ## Code of Conduct

-We follow [Ansible Code of Conduct](https://docs.ansible.com/ansible/latest/community/code_of_conduct.html) in all our interactions within this project.
+We follow [Ansible Code of Conduct](https://docs.ansible.com/projects/ansible/latest/community/code_of_conduct.html) in all our interactions within this project.

-If you encounter abusive behavior violating the [Ansible Code of Conduct](https://docs.ansible.com/ansible/latest/community/code_of_conduct.html), please refer to the [policy violations](https://docs.ansible.com/ansible/latest/community/code_of_conduct.html#policy-violations) section of the Code of Conduct for information on how to raise a complaint.
+If you encounter abusive behavior violating the [Ansible Code of Conduct](https://docs.ansible.com/projects/ansible/latest/community/code_of_conduct.html), please refer to the [policy violations](https://docs.ansible.com/projects/ansible/latest/community/code_of_conduct.html#policy-violations) section of the Code of Conduct for information on how to raise a complaint.

 ## Communication

@@ -33,13 +33,13 @@ If you encounter abusive behavior violating the [Ansible Code of Conduct](https:
  * [Social Spaces](https://forum.ansible.com/c/chat/4): gather and interact with fellow enthusiasts.
  * [News & Announcements](https://forum.ansible.com/c/news/5): track project-wide announcements including social events.

-* The Ansible [Bullhorn newsletter](https://docs.ansible.com/ansible/devel/community/communication.html#the-bullhorn): used to announce releases and important changes.
+* The Ansible [Bullhorn newsletter](https://docs.ansible.com/projects/ansible/devel/community/communication.html#the-bullhorn): used to announce releases and important changes.

-For more information about communication, see the [Ansible communication guide](https://docs.ansible.com/ansible/devel/community/communication.html).
+For more information about communication, see the [Ansible communication guide](https://docs.ansible.com/projects/ansible/devel/community/communication.html).

 ## Tested with Ansible

-Tested with the current ansible-core 2.17, ansible-core 2.18, ansible-core 2.19, ansible-core 2.20 releases and the current development version of ansible-core. Ansible-core versions before 2.17.0 are not supported. This includes all ansible-base 2.10 and Ansible 2.9 releases.
+Tested with the current ansible-core 2.17, ansible-core 2.18, ansible-core 2.19, ansible-core 2.20, ansible-core 2.21 releases and the current development version of ansible-core. Ansible-core versions before 2.17.0 are not supported. This includes all ansible-base 2.10 and Ansible 2.9 releases.

 ## External requirements

@@ -47,7 +47,7 @@ Some modules and plugins require external libraries. Please check the requiremen

 ## Included content

-Please check the included content on the [Ansible Galaxy page for this collection](https://galaxy.ansible.com/ui/repo/published/community/general/) or the [documentation on the Ansible docs site](https://docs.ansible.com/ansible/latest/collections/community/general/).
+Please check the included content on the [Ansible Galaxy page for this collection](https://galaxy.ansible.com/ui/repo/published/community/general/) or the [documentation on the Ansible docs site](https://docs.ansible.com/projects/ansible/latest/collections/community/general/).

 ## Using this collection

@@ -76,7 +76,7 @@ You can also install a specific version of the collection, for example, if you n
 ansible-galaxy collection install community.general:==X.Y.Z
 ```

-See [Ansible Using collections](https://docs.ansible.com/ansible/latest/user_guide/collections_using.html) for more details.
+See [Ansible Using collections](https://docs.ansible.com/projects/ansible/latest/user_guide/collections_using.html) for more details.

 ## Contributing to this collection

@@ -90,13 +90,13 @@ You don't know how to start? Refer to our [contribution guide](https://github.co

 The current maintainers are listed in the [commit-rights.md](https://github.com/ansible-collections/community.general/blob/stable-12/commit-rights.md#people) file. If you have questions or need help, feel free to mention them in the proposals.

-You can find more information in the [developer guide for collections](https://docs.ansible.com/ansible/devel/dev_guide/developing_collections.html#contributing-to-collections), and in the [Ansible Community Guide](https://docs.ansible.com/ansible/latest/community/index.html).
+You can find more information in the [developer guide for collections](https://docs.ansible.com/projects/ansible/devel/dev_guide/developing_collections.html#contributing-to-collections), and in the [Ansible Community Guide](https://docs.ansible.com/projects/ansible/latest/community/index.html).

 Also for some notes specific to this collection see [our CONTRIBUTING documentation](https://github.com/ansible-collections/community.general/blob/stable-12/CONTRIBUTING.md).

 ### Running tests

-See [here](https://docs.ansible.com/ansible/devel/dev_guide/developing_collections.html#testing-collections).
+See [here](https://docs.ansible.com/projects/ansible/devel/dev_guide/developing_collections.html#testing-collections).

 ## Collection maintenance

@@ -110,7 +110,7 @@ It is necessary for maintainers of this collection to be subscribed to:
 * The collection itself (the `Watch` button → `All Activity` in the upper right corner of the repository's homepage).
 * The "Changes Impacting Collection Contributors and Maintainers" [issue](https://github.com/ansible-collections/overview/issues/45).

-They also should be subscribed to Ansible's [The Bullhorn newsletter](https://docs.ansible.com/ansible/devel/community/communication.html#the-bullhorn).
+They also should be subscribed to Ansible's [The Bullhorn newsletter](https://docs.ansible.com/projects/ansible/devel/community/communication.html#the-bullhorn).

 ## Publishing New Version

@@ -129,9 +129,9 @@ See [this issue](https://github.com/ansible-collections/community.general/issues
 ## More information

 - [Ansible Collection overview](https://github.com/ansible-collections/overview)
- [Ansible User guide](https://docs.ansible.com/ansible/latest/user_guide/index.html)
- [Ansible Developer guide](https://docs.ansible.com/ansible/latest/dev_guide/index.html)
- [Ansible Community code of conduct](https://docs.ansible.com/ansible/latest/community/code_of_conduct.html)
+- [Ansible User guide](https://docs.ansible.com/projects/ansible/latest/user_guide/index.html)
+- [Ansible Developer guide](https://docs.ansible.com/projects/ansible/latest/dev_guide/index.html)
+- [Ansible Community code of conduct](https://docs.ansible.com/projects/ansible/latest/community/code_of_conduct.html)

 ## Licensing

@@ -139,6 +139,6 @@ This collection is primarily licensed and distributed as a whole under the GNU G

 See [LICENSES/GPL-3.0-or-later.txt](https://github.com/ansible-collections/community.general/blob/stable-12/COPYING) for the full text.

-Parts of the collection are licensed under the [BSD 2-Clause license](https://github.com/ansible-collections/community.general/blob/stable-12/LICENSES/BSD-2-Clause.txt), the [MIT license](https://github.com/ansible-collections/community.general/blob/stable-12/LICENSES/MIT.txt), and the [PSF 2.0 license](https://github.com/ansible-collections/community.general/blob/stable-12/LICENSES/PSF-2.0.txt).
+Parts of the collection are licensed under the [BSD 2-Clause license](https://github.com/ansible-collections/community.general/blob/stable-12/LICENSES/BSD-2-Clause.txt) and the [MIT license](https://github.com/ansible-collections/community.general/blob/stable-12/LICENSES/MIT.txt).

 All files have a machine readable `SDPX-License-Identifier:` comment denoting its respective license(s) or an equivalent entry in an accompanying `.license` file. Only changelog fragments (which will not be part of a release) are covered by a blanket statement in `REUSE.toml`. This conforms to the [REUSE specification](https://reuse.software/spec/).
--- a/antsibull-nox.toml
+++ b/antsibull-nox.toml
@@ -20,8 +20,15 @@ stable_branches = [ "stable-*" ]
 [sessions]

 [sessions.lint]
+code_files = ["."]  # consider all Python files in the collection
 run_isort = false
 run_black = false
+run_ruff_autofix = true
+ruff_autofix_config = "ruff.toml"
+ruff_autofix_select = [
+    "I",
+    "RUF022",
+]
 run_ruff_check = true
 ruff_check_config = "ruff.toml"
 run_ruff_format = true
--- a/changelogs/changelog.yaml
+++ b/changelogs/changelog.yaml
--- a/changelogs/fragments/11361-scaleway-get-resources-none-type.yml
+++ b/changelogs/fragments/11361-scaleway-get-resources-none-type.yml
@@ -0,0 +1,2 @@
+bugfixes:
+  - scaleway_image_info, scaleway_ip_info, scaleway_organization_info, scaleway_security_group_info, scaleway_server_info, scaleway_snapshot_info, scaleway_volume_info - fix ``NoneType`` error when the Scaleway API returns an empty or non-JSON response body (https://github.com/ansible-collections/community.general/issues/11361, https://github.com/ansible-collections/community.general/pull/11918).
--- a/changelogs/fragments/11909-fix-favicon-url.yml
+++ b/changelogs/fragments/11909-fix-favicon-url.yml
@@ -0,0 +1,2 @@
+minor_changes:
+  - "mattermost, rocketchat, slack - update default ``icon_url`` to ansible favicon (https://github.com/ansible-collections/community.general/pull/11909)."
--- a/changelogs/fragments/12.6.1.yml
+++ b/changelogs/fragments/12.6.1.yml
@@ -0,0 +1 @@
+release_summary: Regular bugfix release.
--- a/commit-rights.md
+++ b/commit-rights.md
@@ -7,7 +7,7 @@ SPDX-License-Identifier: GPL-3.0-or-later
 Committers Guidelines for community.general
 ===========================================

-This document is based on the [Ansible committer guidelines](https://github.com/ansible/ansible/blob/b57444af14062ec96e0af75fdfc2098c74fe2d9a/docs/docsite/rst/community/committer_guidelines.rst) ([latest version](https://docs.ansible.com/ansible/devel/community/committer_guidelines.html)).
+This document is based on the [Ansible committer guidelines](https://github.com/ansible/ansible/blob/b57444af14062ec96e0af75fdfc2098c74fe2d9a/docs/docsite/rst/community/committer_guidelines.rst) ([latest version](https://docs.ansible.com/projects/ansible/devel/community/committer_guidelines.html)).

 These are the guidelines for people with commit privileges on the Ansible Community General Collection GitHub repository. Please read the guidelines before you commit.

@@ -45,7 +45,7 @@ Individuals with direct commit access to this collection repository are entruste
  - Do not commit directly.
  - Do not merge your own PRs. Someone else should have a chance to review and approve the PR merge. You have a small amount of leeway here for very minor changes.
  - Do not forget about non-standard / alternate environments. Consider the alternatives. Yes, people have bad/unusual/strange environments (like binaries from multiple init systems installed), but they are the ones who need us the most.
-  - Do not drag your community team members down. Discuss the technical merits of any pull requests you review. Avoid negativity and personal comments. For more guidance on being a good community member, read the [Ansible Community Code of Conduct](https://docs.ansible.com/ansible/latest/community/code_of_conduct.html).
+  - Do not drag your community team members down. Discuss the technical merits of any pull requests you review. Avoid negativity and personal comments. For more guidance on being a good community member, read the [Ansible Community Code of Conduct](https://docs.ansible.com/projects/ansible/latest/community/code_of_conduct.html).
  - Do not forget about the maintenance burden. High-maintenance features may not be worth adding.
  - Do not break playbooks. Always keep backwards compatibility in mind.
  - Do not forget to keep it simple. Complexity breeds all kinds of problems.
--- a/docs/docsite/extra-docs.yml
+++ b/docs/docsite/extra-docs.yml
@@ -8,6 +8,9 @@ sections:
    toctree:
      - filter_guide
      - test_guide
+  - title: Deployment Guides
+    toctree:
+      - guide_ee
  - title: Technology Guides
    toctree:
      - guide_alicloud
--- a/docs/docsite/reformat-yaml.py
+++ b/docs/docsite/reformat-yaml.py
@@ -6,11 +6,11 @@
 import sys
 from io import StringIO

-from ruamel.yaml import YAML
+from ruamel.yaml import YAML  # type: ignore[import-not-found]


 def main() -> None:
-    yaml = YAML(typ='rt')
+    yaml = YAML(typ="rt")
    yaml.indent(mapping=2, sequence=4, offset=2)

    # Load
@@ -19,7 +19,7 @@ def main() -> None:
    # Dump
    sio = StringIO()
    yaml.dump(data, sio)
-    print(sio.getvalue().rstrip('\n'))
+    print(sio.getvalue().rstrip("\n"))


 if __name__ == "__main__":
--- a/docs/docsite/rst/guide_ee.rst
+++ b/docs/docsite/rst/guide_ee.rst
@@ -0,0 +1,114 @@
+..
+  Copyright (c) Ansible Project
+  GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https://www.gnu.org/licenses/gpl-3.0.txt)
+  SPDX-License-Identifier: GPL-3.0-or-later
+
+.. _ansible_collections.community.general.docsite.guide_ee:
+
+Execution Environment Guide
+===========================
+
+`Ansible Execution Environments <https://docs.ansible.com/projects/ansible/latest/getting_started_ee/index.html>`_
+(EEs) are container images that bundle ansible-core, collections, and their Python and system dependencies.
+They are the standard runtime for Red Hat Ansible Automation Platform and AWX, replacing the older virtualenv model.
+They can also be used outside of RHAAP and AWX by using `ansible-navigator <https://docs.ansible.com/projects/navigator/>`__, or by using ansible-runner directly.
+
+What runs in the EE
+^^^^^^^^^^^^^^^^^^^
+
+Only **controller-side plugins** run inside the EE. Their Python and system dependencies must be installed there.
+This includes: lookup plugins, inventory plugins, callback plugins, connection plugins, become plugins, and filter plugins.
+
+Modules run on the managed nodes and are transferred there at runtime — their dependencies must be present on the
+target, not in the EE.
+
+.. note::
+
+    Modules delegated to ``localhost`` (for example, those that interact with a remote API) are an exception:
+    they run on the controller and their dependencies must therefore be available in the EE.
+
+Why community.general does not provide EE metadata
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+
+``community.general`` ships dozens of controller-side plugins covering a very broad range of technologies.
+Bundling the dependencies for all of them into a single EE image would almost certainly create irreconcilable
+conflicts — both within the collection and with other collections or tools (such as ``ansible-lint``) that
+share the same image.
+
+For that reason, ``community.general`` does **not** provide Python or system package dependency metadata.
+Users are expected to build purpose-built, minimal EEs containing only the dependencies
+required by the specific plugins they actually use.
+
+Finding the dependencies you need
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+
+Every plugin that has external dependencies documents them in its ``requirements`` field.
+You can inspect those with ``ansible-doc``:
+
+.. code-block:: shell
+
+    $ ansible-doc -t lookup community.general.some_lookup | grep -A 10 "REQUIREMENTS"
+
+Or browse the plugin's documentation page on `docs.ansible.com <https://docs.ansible.com/ansible/latest/collections/community/general/>`_.
+
+For example, a lookup plugin that wraps an external service might list:
+
+.. code-block:: yaml
+
+    requirements:
+      - some-python-library >= 1.2
+
+An inventory plugin backed by a REST API might list:
+
+.. code-block:: yaml
+
+    requirements:
+      - requests
+      - some-sdk
+
+These are the packages you need to add to your EE.
+
+Building a minimal EE with ansible-builder
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+
+`ansible-builder <https://docs.ansible.com/projects/builder/en/latest/>`_ is the standard tool for creating EEs.
+
+Install it with:
+
+.. code-block:: shell
+
+    $ pip install ansible-builder
+
+Create an ``execution-environment.yml`` **in your own project** — not inside ``community.general`` —
+that includes only the dependencies needed for the plugins you use:
+
+.. code-block:: yaml
+
+    version: 3
+
+    dependencies:
+      galaxy:
+        collections:
+          - name: community.general
+      python:
+        - some-python-library>=1.2
+        - requests
+      system:
+        - libxml2-devel [platform:rpm]
+
+    images:
+      base_image:
+        name: ghcr.io/ansible/community-ee-base:latest
+
+Then build the image:
+
+.. code-block:: shell
+
+    $ ansible-builder build -t my-custom-ee:latest
+
+.. seealso::
+
+    - `ansible-builder documentation <https://docs.ansible.com/projects/builder/en/latest/>`_
+    - `Building EEs with ansible-builder <https://ansible-builder.readthedocs.io/en/latest/definition/>`_
+    - `Issue #2968 — original request for EE requirements support <https://github.com/ansible-collections/community.general/issues/2968>`_
+    - `Issue #4512 — design discussion for EE support in community.general <https://github.com/ansible-collections/community.general/issues/4512>`_
--- a/docs/docsite/rst/guide_iocage_inventory.rst
+++ b/docs/docsite/rst/guide_iocage_inventory.rst
@@ -12,7 +12,7 @@ The inventory plugin :ansplugin:`community.general.iocage#inventory` gets the in

 See:

-* `iocage - A FreeBSD Jail Manager <https://iocage.readthedocs.io/en/latest>`_
+* `iocage - A FreeBSD Jail Manager <https://freebsd.github.io/iocage/>`_
 * `man iocage <https://man.freebsd.org/cgi/man.cgi?query=iocage>`_
 * `Jails and Containers <https://docs.freebsd.org/en/books/handbook/jails>`_

--- a/docs/docsite/rst/guide_iocage_inventory_basics.rst
+++ b/docs/docsite/rst/guide_iocage_inventory_basics.rst
@@ -20,7 +20,7 @@ As root at the iocage host, create three VNET jails with a DHCP interface from t
   shell> iocage create --template ansible_client --name srv_3 bpf=1 dhcp=1 vnet=1
   srv_3 successfully created!

-See: `Configuring a VNET Jail <https://iocage.readthedocs.io/en/latest/networking.html#configuring-a-vnet-jail>`_.
+See: `Configuring VNET <https://freebsd.github.io/iocage/networking.html#vimage-vnet>`_.

 As admin at the controller, list the jails:

@@ -115,7 +115,7 @@ Optionally, create shared IP jails:
   | None | srv_3 | off  | down  | jail | 14.2-RELEASE-p3 | em0|10.1.0.103/24 | -   | ansible_client | no       |
   +------+-------+------+-------+------+-----------------+-------------------+-----+----------------+----------+

-See: `Configuring a Shared IP Jail <https://iocage.readthedocs.io/en/latest/networking.html#configuring-a-shared-ip-jail>`_
+See: `Configuring a Shared IP Jail <https://freebsd.github.io/iocage/networking.html#shared-ip>`_

 If iocage needs environment variable(s), use the option :ansopt:`community.general.iocage#inventory:env`. For example,

--- a/docs/docsite/rst/guide_modulehelper.rst
+++ b/docs/docsite/rst/guide_modulehelper.rst
@@ -21,7 +21,7 @@ That is where ``ModuleHelper`` comes to assistance: a lot of that boilerplate co
 Quickstart
 """"""""""

-See the `example from Ansible documentation <https://docs.ansible.com/ansible/latest/dev_guide/developing_modules_general.html#creating-a-module>`_
+See the `example from Ansible documentation <https://docs.ansible.com/projects/ansible/latest/dev_guide/developing_modules_general.html#creating-a-module>`_
 written with ``ModuleHelper``.
 But bear in mind that it does not showcase all of MH's features:

@@ -550,9 +550,9 @@ The other option is to use the parameter ``value``, in which case the method wil
 References
 ^^^^^^^^^^

- `Ansible Developer Guide <https://docs.ansible.com/ansible/latest/dev_guide/index.html>`_
- `Creating a module <https://docs.ansible.com/ansible/latest/dev_guide/developing_modules_general.html#creating-a-module>`_
- `Returning ansible facts <https://docs.ansible.com/ansible/latest/reference_appendices/common_return_values.html#ansible-facts>`_
+- `Ansible Developer Guide <https://docs.ansible.com/projects/ansible/latest/dev_guide/index.html>`_
+- `Creating a module <https://docs.ansible.com/projects/ansible/latest/dev_guide/developing_modules_general.html#creating-a-module>`_
+- `Returning ansible facts <https://docs.ansible.com/projects/ansible/latest/reference_appendices/common_return_values.html#ansible-facts>`_
 - :ref:`ansible_collections.community.general.docsite.guide_vardict`


--- a/galaxy.yml
+++ b/galaxy.yml
@@ -5,7 +5,7 @@

 namespace: community
 name: general
-version: 12.0.0
+version: 12.6.1
 readme: README.md
 authors:
  - Ansible (https://github.com/ansible)
@@ -16,6 +16,8 @@ license_file: COPYING
 tags:
  - community
 repository: https://github.com/ansible-collections/community.general
-documentation: https://docs.ansible.com/ansible/latest/collections/community/general/
+documentation: https://docs.ansible.com/projects/ansible/latest/collections/community/general/
 homepage: https://github.com/ansible-collections/community.general
 issues: https://github.com/ansible-collections/community.general/issues
+build_ignore:
+  - .nox
--- a/meta/runtime.yml
+++ b/meta/runtime.yml
@@ -21,6 +21,7 @@ action_groups:
  keycloak:
    - keycloak_authentication
    - keycloak_authentication_required_actions
+    - keycloak_authentication_v2
    - keycloak_authz_authorization_scope
    - keycloak_authz_custom_policy
    - keycloak_authz_permission
@@ -40,6 +41,7 @@ action_groups:
    - keycloak_realm
    - keycloak_realm_key
    - keycloak_realm_keys_metadata_info
+    - keycloak_realm_localization
    - keycloak_realm_rolemapping
    - keycloak_role
    - keycloak_user
@@ -370,6 +372,26 @@ plugin_routing:
      tombstone:
        removal_version: 3.0.0
        warning_text: Use community.general.hpilo_info instead.
+    aix_devices:
+      deprecation:
+        removal_version: 15.0.0
+        warning_text: Use ibm.power_aix.devices instead. The C(ibm.power_aix) collection is actively maintained by IBM.
+    aix_filesystem:
+      deprecation:
+        removal_version: 15.0.0
+        warning_text: Use ibm.power_aix.filesystem instead. The C(ibm.power_aix) collection is actively maintained by IBM.
+    aix_inittab:
+      deprecation:
+        removal_version: 15.0.0
+        warning_text: Use ibm.power_aix.inittab instead. The C(ibm.power_aix) collection is actively maintained by IBM.
+    aix_lvg:
+      deprecation:
+        removal_version: 15.0.0
+        warning_text: Use ibm.power_aix.lvg instead. The C(ibm.power_aix) collection is actively maintained by IBM.
+    aix_lvol:
+      deprecation:
+        removal_version: 15.0.0
+        warning_text: Use ibm.power_aix.lvol instead. The C(ibm.power_aix) collection is actively maintained by IBM.
    idrac_firmware:
      redirect: dellemc.openmanage.idrac_firmware
    idrac_redfish_facts:
@@ -378,6 +400,10 @@ plugin_routing:
        warning_text: Use community.general.idrac_redfish_info instead.
    idrac_server_config_profile:
      redirect: dellemc.openmanage.idrac_server_config_profile
+    jboss:
+      deprecation:
+        removal_version: 14.0.0
+        warning_text: Use role middleware_automation.wildfly.wildfly_app_deploy instead.
    jenkins_job_facts:
      tombstone:
        removal_version: 3.0.0
@@ -398,6 +424,10 @@ plugin_routing:
      redirect: community.kubevirt.kubevirt_template
    kubevirt_vm:
      redirect: community.kubevirt.kubevirt_vm
+    layman:
+      deprecation:
+        removal_version: 14.0.0
+        warning_text: Gentoo deprecated C(layman) in mid-2023.
    ldap_attr:
      tombstone:
        removal_version: 3.0.0
@@ -833,6 +863,10 @@ plugin_routing:
      tombstone:
        removal_version: 3.0.0
        warning_text: Use purestorage.flashblade.purefb_info instead.
+    pushbullet:
+      deprecation:
+        removal_version: 13.0.0
+        warning_text: Module relies on Python package pushbullet.py which is not maintained and supports only up to Python 3.2.
    python_requirements_facts:
      tombstone:
        removal_version: 3.0.0
@@ -1029,12 +1063,20 @@ plugin_routing:
      tombstone:
        removal_version: 3.0.0
        warning_text: Use community.general.smartos_image_info instead.
+    spotinst_aws_elastigroup:
+      deprecation:
+        removal_version: 13.0.0
+        warning_text: Module relies on unsupported Python package. Use the module spot.cloud_modules.aws_elastigroup instead.
    stackdriver:
      tombstone:
        removal_version: 9.0.0
        warning_text: This module relied on HTTPS APIs that do not exist anymore,
          and any new development in the direction of providing an alternative should
          happen in the context of the google.cloud collection.
+    swupd:
+      deprecation:
+        removal_version: 15.0.0
+        warning_text: ClearLinux was made EOL in July 2025. If you think the module is still useful for another distribution, please create an issue in the community.general repository.
    typetalk:
      deprecation:
        removal_version: 13.0.0
@@ -1134,6 +1176,14 @@ plugin_routing:
        warning_text: This doc fragment was used by rax modules, that relied on the deprecated
          package pyrax.
  module_utils:
+    cloud:
+      deprecation:
+        removal_version: 13.0.0
+        warning_text: This code is not used by community.general. If you want to use it in another collection, please copy it over.
+    database:
+      deprecation:
+        removal_version: 13.0.0
+        warning_text: This code is not used by community.general. If you want to use it in another collection, please copy it over.
    dimensiondata:
      deprecation:
        removal_version: 13.0.0
@@ -1150,6 +1200,10 @@ plugin_routing:
      redirect: community.google.gcp
    hetzner:
      redirect: community.hrobot.robot
+    known_hosts:
+      deprecation:
+        removal_version: 13.0.0
+        warning_text: This code is not used by community.general. If you want to use it in another collection, please copy it over.
    kubevirt:
      redirect: community.kubevirt.kubevirt
    net_tools.nios.api:
@@ -1181,6 +1235,10 @@ plugin_routing:
      redirect: dellemc.openmanage.dellemc_idrac
    remote_management.dellemc.ome:
      redirect: dellemc.openmanage.ome
+    saslprep:
+      deprecation:
+        removal_version: 13.0.0
+        warning_text: This code is not used by community.general. If you want to use it in another collection, please copy it over.
  inventory:
    docker_machine:
      redirect: community.docker.docker_machine
--- a/noxfile.py
+++ b/noxfile.py
@@ -9,14 +9,14 @@
 import os
 import sys

-import nox
+import nox  # type: ignore[import-not-found]

 # Whether the noxfile is running in CI:
 IN_CI = os.environ.get("CI") == "true"


 try:
-    import antsibull_nox
+    import antsibull_nox  # type: ignore[import-not-found]
 except ImportError:
    print("You need to install antsibull-nox in the same Python environment as nox.")
    sys.exit(1)
--- a/plugins/action/iptables_state.py
+++ b/plugins/action/iptables_state.py
@@ -5,11 +5,12 @@
 from __future__ import annotations

 import time
+import typing as t

-from ansible.plugins.action import ActionBase
 from ansible.errors import AnsibleActionFail, AnsibleConnectionFailure
-from ansible.utils.vars import merge_hash
+from ansible.plugins.action import ActionBase
 from ansible.utils.display import Display
+from ansible.utils.vars import merge_hash

 display = Display()

@@ -20,7 +21,7 @@ class ActionModule(ActionBase):
    DEFAULT_SUDOABLE = True

    @staticmethod
-    def msg_error__async_and_poll_not_zero(task_poll, task_async, max_timeout):
+    def msg_error__async_and_poll_not_zero(task_poll, task_async, max_timeout) -> str:
        return (
            "This module doesn't support async>0 and poll>0 when its 'state' param "
            "is set to 'restored'. To enable its rollback feature (that needs the "
@@ -30,7 +31,7 @@ class ActionModule(ActionBase):
        )

    @staticmethod
-    def msg_warning__no_async_is_no_rollback(task_poll, task_async, max_timeout):
+    def msg_warning__no_async_is_no_rollback(task_poll, task_async, max_timeout) -> str:
        return (
            "Attempts to restore iptables state without rollback in case of mistake "
            "may lead the ansible controller to loose access to the hosts and never "
@@ -41,7 +42,7 @@ class ActionModule(ActionBase):
        )

    @staticmethod
-    def msg_warning__async_greater_than_timeout(task_poll, task_async, max_timeout):
+    def msg_warning__async_greater_than_timeout(task_poll, task_async, max_timeout) -> str:
        return (
            "You attempt to restore iptables state with rollback in case of mistake, "
            "but with settings that will lead this rollback to happen AFTER that the "
@@ -50,7 +51,9 @@ class ActionModule(ActionBase):
            f"'ansible_timeout' (={max_timeout}) (recommended)."
        )

-    def _async_result(self, async_status_args, task_vars, timeout):
+    def _async_result(
+        self, async_status_args: dict[str, t.Any], task_vars: dict[str, t.Any], timeout: int
+    ) -> dict[str, t.Any]:
        """
        Retrieve results of the asynchronous task, and display them in place of
        the async wrapper results (those with the ansible_job_id key).
@@ -81,10 +84,13 @@ class ActionModule(ActionBase):

        return async_result

-    def run(self, tmp=None, task_vars=None):
+    def run(self, tmp: str | None = None, task_vars: dict[str, t.Any] | None = None) -> dict[str, t.Any]:
        self._supports_check_mode = True
        self._supports_async = True

+        if task_vars is None:
+            task_vars = {}
+
        result = super().run(tmp, task_vars)
        del tmp  # tmp no longer has any effect

--- a/plugins/action/shutdown.py
+++ b/plugins/action/shutdown.py
@@ -6,20 +6,25 @@

 from __future__ import annotations

+import typing as t

-from ansible.errors import AnsibleError, AnsibleConnectionFailure
-from ansible.module_utils.common.text.converters import to_native, to_text
+from ansible.errors import AnsibleConnectionFailure, AnsibleError
 from ansible.module_utils.common.collections import is_string
+from ansible.module_utils.common.text.converters import to_native, to_text
 from ansible.plugins.action import ActionBase
 from ansible.utils.display import Display

+if t.TYPE_CHECKING:
+
+    class Distribution(t.TypedDict):
+        name: str
+        version: str
+        family: str
+
+
 display = Display()


-def fmt(mapping, key):
-    return to_native(mapping[key]).strip()
-
-
 class TimedOutException(Exception):
    pass

@@ -60,25 +65,23 @@ class ActionModule(ActionBase):
    def delay(self):
        return self._check_delay("delay", self.DEFAULT_PRE_SHUTDOWN_DELAY)

-    def _check_delay(self, key, default):
+    def _check_delay(self, key: str, default: int) -> int:
        """Ensure that the value is positive or zero"""
        value = int(self._task.args.get(key, default))
        if value < 0:
            value = 0
        return value

-    def _get_value_from_facts(self, variable_name, distribution, default_value):
+    @staticmethod
+    def _get_value_from_facts(data: dict[str, str], distribution: Distribution, default_value: str) -> str:
        """Get dist+version specific args first, then distribution, then family, lastly use default"""
-        attr = getattr(self, variable_name)
-        value = attr.get(
+        return data.get(
            distribution["name"] + distribution["version"],
-            attr.get(distribution["name"], attr.get(distribution["family"], getattr(self, default_value))),
+            data.get(distribution["name"], data.get(distribution["family"], default_value)),
        )
-        return value

-    def get_distribution(self, task_vars):
+    def get_distribution(self, task_vars: dict[str, t.Any]) -> Distribution:
        # FIXME: only execute the module if we don't already have the facts we need
-        distribution = {}
        display.debug(f"{self._task.action}: running setup module to get distribution")
        module_output = self._execute_module(
            task_vars=task_vars, module_name="ansible.legacy.setup", module_args={"gather_subset": "min"}
@@ -86,20 +89,20 @@ class ActionModule(ActionBase):
        try:
            if module_output.get("failed", False):
                raise AnsibleError(
-                    f"Failed to determine system distribution. {fmt(module_output, 'module_stdout')}, {fmt(module_output, 'module_stderr')}"
+                    f"Failed to determine system distribution. {to_native(module_output['module_stdout'])}, {to_native(module_output['module_stderr'])}"
                )
-            distribution["name"] = module_output["ansible_facts"]["ansible_distribution"].lower()
-            distribution["version"] = to_text(
-                module_output["ansible_facts"]["ansible_distribution_version"].split(".")[0]
-            )
-            distribution["family"] = to_text(module_output["ansible_facts"]["ansible_os_family"].lower())
+            distribution: Distribution = {
+                "name": module_output["ansible_facts"]["ansible_distribution"].lower(),
+                "version": to_text(module_output["ansible_facts"]["ansible_distribution_version"].split(".")[0]),
+                "family": to_text(module_output["ansible_facts"]["ansible_os_family"].lower()),
+            }
            display.debug(f"{self._task.action}: distribution: {distribution}")
            return distribution
        except KeyError as ke:
-            raise AnsibleError(f'Failed to get distribution information. Missing "{ke.args[0]}" in output.')
+            raise AnsibleError(f'Failed to get distribution information. Missing "{ke.args[0]}" in output.') from ke

-    def get_shutdown_command(self, task_vars, distribution):
-        def find_command(command, find_search_paths):
+    def get_shutdown_command(self, task_vars: dict[str, t.Any], distribution: Distribution) -> str:
+        def find_command(command: str, find_search_paths: list[str]) -> list[str]:
            display.debug(
                f'{self._task.action}: running find module looking in {find_search_paths} to get path for "{command}"'
            )
@@ -111,7 +114,7 @@ class ActionModule(ActionBase):
            )
            return [x["path"] for x in find_result["files"]]

-        shutdown_bin = self._get_value_from_facts("SHUTDOWN_COMMANDS", distribution, "DEFAULT_SHUTDOWN_COMMAND")
+        shutdown_bin = self._get_value_from_facts(self.SHUTDOWN_COMMANDS, distribution, self.DEFAULT_SHUTDOWN_COMMAND)
        default_search_paths = ["/sbin", "/usr/sbin", "/usr/local/sbin"]
        search_paths = self._task.args.get("search_paths", default_search_paths)

@@ -124,10 +127,10 @@ class ActionModule(ActionBase):
            incorrect_type = any(not is_string(x) for x in search_paths)
            if not isinstance(search_paths, list) or incorrect_type:
                raise TypeError
-        except TypeError:
+        except TypeError as e:
            # Error if we didn't get a list
            err_msg = f"'search_paths' must be a string or flat list of strings, got {search_paths}"
-            raise AnsibleError(err_msg)
+            raise AnsibleError(err_msg) from e

        full_path = find_command(shutdown_bin, search_paths)  # find the path to the shutdown command
        if not full_path:  # if we could not find the shutdown command
@@ -146,7 +149,7 @@ class ActionModule(ActionBase):
                return f"{full_path[0]} poweroff"  # done, since we cannot use args with systemd shutdown

        # systemd case taken care of, here we add args to the command
-        args = self._get_value_from_facts("SHUTDOWN_COMMAND_ARGS", distribution, "DEFAULT_SHUTDOWN_COMMAND_ARGS")
+        args = self._get_value_from_facts(self.SHUTDOWN_COMMAND_ARGS, distribution, self.DEFAULT_SHUTDOWN_COMMAND_ARGS)
        # Convert seconds to minutes. If less that 60, set it to 0.
        delay_sec = self.delay
        shutdown_message = self._task.args.get("msg", self.DEFAULT_SHUTDOWN_MESSAGE)
@@ -154,8 +157,8 @@ class ActionModule(ActionBase):
        af = args.format(delay_sec=delay_sec, delay_min=delay_sec // 60, message=shutdown_message)
        return f"{full_path[0]} {af}"

-    def perform_shutdown(self, task_vars, distribution):
-        result = {}
+    def perform_shutdown(self, task_vars, distribution) -> dict[str, t.Any]:
+        result: dict[str, t.Any] = {}
        shutdown_result = {}
        shutdown_command_exec = self.get_shutdown_command(task_vars, distribution)

@@ -176,7 +179,7 @@ class ActionModule(ActionBase):
            result["failed"] = True
            result["shutdown"] = False
            result["msg"] = (
-                f"Shutdown command failed. Error was {fmt(shutdown_result, 'stdout')}, {fmt(shutdown_result, 'stderr')}"
+                f"Shutdown command failed. Error was {to_native(shutdown_result['stdout'])}, {to_native(shutdown_result['stderr'])}"
            )
            return result

@@ -184,7 +187,7 @@ class ActionModule(ActionBase):
        result["shutdown_command"] = shutdown_command_exec
        return result

-    def run(self, tmp=None, task_vars=None):
+    def run(self, tmp: str | None = None, task_vars: dict[str, t.Any] | None = None) -> dict[str, t.Any]:
        self._supports_check_mode = True
        self._supports_async = True

--- a/plugins/become/doas.py
+++ b/plugins/become/doas.py
@@ -82,9 +82,26 @@ options:
      - name: ansible_doas_prompt_l10n
    env:
      - name: ANSIBLE_DOAS_PROMPT_L10N
+  allow_pipelining:
+    description:
+      - When set to V(true), do allow pipelining with ansible-core 2.19+.
+      - This should only be used when doas is configured to not ask for a password (C(nopass)).
+    type: boolean
+    default: false
+    version_added: 12.4.0
+    ini:
+      - section: doas_become_plugin
+        key: allow_pipelining
+    vars:
+      - name: ansible_doas_allow_pipelining
+    env:
+      - name: ANSIBLE_DOAS_ALLOW_PIPELINING
 notes:
-  - This become plugin does not work when connection pipelining is enabled. With ansible-core 2.19+, using it automatically
-    disables pipelining. On ansible-core 2.18 and before, pipelining must explicitly be disabled by the user.
+  - This become plugin does not work when connection pipelining is enabled
+    and doas requests a password.
+    With ansible-core 2.19+, using this plugin automatically disables pipelining,
+    unless O(allow_pipelining=true) is explicitly set by the user.
+    On ansible-core 2.18 and before, pipelining must explicitly be disabled by the user.
 """

 import re
@@ -101,8 +118,11 @@ class BecomeModule(BecomeBase):
    missing = ("Authorization required",)

    # See https://github.com/ansible-collections/community.general/issues/9977,
-    # https://github.com/ansible/ansible/pull/78111
-    pipelining = False
+    # https://github.com/ansible/ansible/pull/78111,
+    # https://github.com/ansible-collections/community.general/issues/11411
+    @property
+    def pipelining(self) -> bool:  # type: ignore[override]
+        return self.get_option("allow_pipelining")

    def check_password_prompt(self, b_output):
        """checks if the expected password prompt exists in b_output"""
--- a/plugins/become/machinectl.py
+++ b/plugins/become/machinectl.py
@@ -92,9 +92,8 @@ EXAMPLES = r"""

 from re import compile as re_compile

-from ansible.plugins.become import BecomeBase
 from ansible.module_utils.common.text.converters import to_bytes
-
+from ansible.plugins.become import BecomeBase

 ansi_color_codes = re_compile(to_bytes(r"\x1B\[[0-9;]+m"))

@@ -125,7 +124,10 @@ class BecomeModule(BecomeBase):

        flags = self.get_option("become_flags")
        user = self.get_option("become_user")
-        return f"{become} -q shell {flags} {user}@ {self._build_success_command(cmd, shell)}"
+        # SYSTEMD_COLORS=0 stops machinectl from appending ANSI reset
+        # sequences (ESC[0m, ESC[J) after the child exits, which would
+        # otherwise land after the module JSON and break result parsing.
+        return f"SYSTEMD_COLORS=0 {become} -q shell {flags} {user}@ {self._build_success_command(cmd, shell)}"

    def check_success(self, b_output):
        b_output = self.remove_ansi_codes(b_output)
--- a/plugins/become/pmrun.py
+++ b/plugins/become/pmrun.py
@@ -59,6 +59,7 @@ notes:
 """

 from shlex import quote as shlex_quote
+
 from ansible.plugins.become import BecomeBase


--- a/plugins/become/run0.py
+++ b/plugins/become/run0.py
@@ -4,7 +4,6 @@

 from __future__ import annotations

-
 DOCUMENTATION = r"""
 name: run0
 short_description: Systemd's run0
@@ -61,6 +60,8 @@ options:
    type: string
 notes:
  - This plugin only works when a C(polkit) rule is in place.
+  - This become plugin does not work when connection pipelining is enabled. With ansible-core 2.19+, using it automatically
+    disables pipelining. On ansible-core 2.18 and before, pipelining must explicitly be disabled by the user.
 """

 EXAMPLES = r"""
@@ -78,8 +79,8 @@ EXAMPLES = r"""

 from re import compile as re_compile

-from ansible.plugins.become import BecomeBase
 from ansible.module_utils.common.text.converters import to_bytes
+from ansible.plugins.become import BecomeBase

 ansi_color_codes = re_compile(to_bytes(r"\x1B\[[0-9;]+m"))

@@ -92,6 +93,10 @@ class BecomeModule(BecomeBase):
    success = ("==== AUTHENTICATION COMPLETE ====",)
    require_tty = True  # see https://github.com/ansible-collections/community.general/issues/6932

+    # See https://github.com/ansible/ansible/issues/81254,
+    # https://github.com/ansible/ansible/pull/78111
+    pipelining = False
+
    @staticmethod
    def remove_ansi_codes(line):
        return ansi_color_codes.sub(b"", line)
@@ -106,7 +111,11 @@ class BecomeModule(BecomeBase):
        flags = self.get_option("become_flags")
        user = self.get_option("become_user")

-        return f"{become} --user={user} {flags} {self._build_success_command(cmd, shell)}"
+        # SYSTEMD_COLORS=0 stops run0 from emitting terminal control
+        # sequences (window title OSC, ANSI reset) around the child
+        # command, which would otherwise corrupt the module JSON and
+        # break result parsing.
+        return f"SYSTEMD_COLORS=0 {become} --user={user} {flags} {self._build_success_command(cmd, shell)}"

    def check_success(self, b_output):
        b_output = self.remove_ansi_codes(b_output)
--- a/plugins/cache/memcached.py
+++ b/plugins/cache/memcached.py
@@ -49,11 +49,11 @@ options:
 import collections
 import os
 import time
-from multiprocessing import Lock
+from collections.abc import MutableSet
 from itertools import chain
+from multiprocessing import Lock

 from ansible.errors import AnsibleError
-from collections.abc import MutableSet
 from ansible.plugins.cache import BaseCacheModule
 from ansible.utils.display import Display

--- a/plugins/cache/redis.py
+++ b/plugins/cache/redis.py
@@ -66,17 +66,17 @@ options:
        section: defaults
 """

+import json
 import re
 import time
-import json

 from ansible.errors import AnsibleError
-from ansible.parsing.ajson import AnsibleJSONEncoder, AnsibleJSONDecoder
+from ansible.parsing.ajson import AnsibleJSONDecoder, AnsibleJSONEncoder
 from ansible.plugins.cache import BaseCacheModule
 from ansible.utils.display import Display

 try:
-    from redis import StrictRedis, VERSION
+    from redis import VERSION, StrictRedis

    HAS_REDIS = True
 except ImportError:
@@ -147,8 +147,10 @@ class CacheModule(BaseCacheModule):
        """
        try:
            from redis.sentinel import Sentinel
-        except ImportError:
-            raise AnsibleError("The 'redis' python module (version 2.9.0 or newer) is required to use redis sentinel.")
+        except ImportError as e:
+            raise AnsibleError(
+                "The 'redis' python module (version 2.9.0 or newer) is required to use redis sentinel."
+            ) from e

        if ";" not in uri:
            raise AnsibleError("_uri does not have sentinel syntax.")
@@ -170,7 +172,7 @@ class CacheModule(BaseCacheModule):
        try:
            return scon.master_for(self._sentinel_service_name, socket_timeout=0.2)
        except Exception as exc:
-            raise AnsibleError(f"Could not connect to redis sentinel: {exc}")
+            raise AnsibleError(f"Could not connect to redis sentinel: {exc}") from exc

    def _make_key(self, key):
        return self._prefix + key
--- a/plugins/cache/yaml.py
+++ b/plugins/cache/yaml.py
@@ -46,9 +46,8 @@ options:
 import os

 import yaml
-
-from ansible.parsing.yaml.loader import AnsibleLoader
 from ansible.parsing.yaml.dumper import AnsibleDumper
+from ansible.parsing.yaml.loader import AnsibleLoader
 from ansible.plugins.cache import BaseFileCacheModule


@@ -58,7 +57,7 @@ class CacheModule(BaseFileCacheModule):
    """

    def _load(self, filepath):
-        with open(os.path.abspath(filepath), "r", encoding="utf-8") as f:
+        with open(os.path.abspath(filepath), encoding="utf-8") as f:
            return AnsibleLoader(f).get_single_data()

    def _dump(self, value, filepath):
--- a/plugins/callback/cgroup_memory_recap.py
+++ b/plugins/callback/cgroup_memory_recap.py
@@ -41,8 +41,8 @@ options:
        key: cur_mem_file
 """

-import time
 import threading
+import time

 from ansible.plugins.callback import CallbackBase

--- a/plugins/callback/counter_enabled.py
+++ b/plugins/callback/counter_enabled.py
@@ -23,9 +23,9 @@ requirements:
 """

 from ansible import constants as C
+from ansible.playbook.task_include import TaskInclude
 from ansible.plugins.callback import CallbackBase
 from ansible.utils.color import colorize, hostcolor
-from ansible.playbook.task_include import TaskInclude


 class CallbackModule(CallbackBase):
@@ -157,6 +157,8 @@ class CallbackModule(CallbackBase):
                msg = f"changed: {self._host_counter}/{self._host_total} [{result._host.get_name()}]"
            color = C.COLOR_CHANGED
        else:
+            if not self._plugin_options.get("display_ok_hosts", True):
+                return
            if delegated_vars:
                msg = f"ok: {self._host_counter}/{self._host_total} [{result._host.get_name()} -> {delegated_vars['ansible_host']}]"
            else:
--- a/plugins/callback/dense.py
+++ b/plugins/callback/dense.py
@@ -27,13 +27,13 @@ try:
 except ImportError:
    pass

+import sys
 from collections.abc import MutableMapping, MutableSequence
+
 from ansible.plugins.callback.default import CallbackModule as CallbackModule_default
 from ansible.utils.color import colorize, hostcolor
 from ansible.utils.display import Display

-import sys
-
 display = Display()


--- a/plugins/callback/diy.py
+++ b/plugins/callback/diy.py
@@ -37,7 +37,7 @@ notes:
 seealso:
  - name: default – default Ansible screen output
    description: The official documentation on the B(default) callback plugin.
-    link: https://docs.ansible.com/ansible/latest/plugins/callback/default.html
+    link: https://docs.ansible.com/projects/ansible/latest/plugins/callback/default.html
 requirements:
  - set as stdout_callback in configuration
 options:
@@ -778,10 +778,11 @@ playbook.yml: >-

 import sys
 from contextlib import contextmanager
+
+from ansible.module_utils.common.text.converters import to_text
+from ansible.plugins.callback.default import CallbackModule as Default
 from ansible.template import Templar
 from ansible.vars.manager import VariableManager
-from ansible.plugins.callback.default import CallbackModule as Default
-from ansible.module_utils.common.text.converters import to_text

 try:
    from ansible.template import trust_as_template  # noqa: F401, pylint: disable=unused-import
--- a/plugins/callback/elastic.py
+++ b/plugins/callback/elastic.py
@@ -81,7 +81,6 @@ import getpass
 import socket
 import time
 import uuid
-
 from collections import OrderedDict
 from contextlib import closing
 from os.path import basename
@@ -92,7 +91,7 @@ from ansible.plugins.callback import CallbackBase

 ELASTIC_LIBRARY_IMPORT_ERROR: ImportError | None
 try:
-    from elasticapm import Client, capture_span, trace_parent_from_string, instrument, label
+    from elasticapm import Client, capture_span, instrument, label, trace_parent_from_string
 except ImportError as imp_exc:
    ELASTIC_LIBRARY_IMPORT_ERROR = imp_exc
 else:
@@ -145,7 +144,7 @@ class ElasticSource:
        self.host = socket.gethostname()
        try:
            self.ip_address = socket.gethostbyname(socket.gethostname())
-        except Exception as e:
+        except Exception:
            self.ip_address = None
        self.user = getpass.getuser()

@@ -201,7 +200,7 @@ class ElasticSource:

        tasks = []
        parent_start_time = None
-        for task_uuid, task in tasks_data.items():
+        for task in tasks_data.values():
            if parent_start_time is None:
                parent_start_time = task.start
            tasks.append(task)
@@ -224,7 +223,7 @@ class ElasticSource:
                    label(ansible_host_ip=self.ip_address)

                for task_data in tasks:
-                    for host_uuid, host_data in task_data.host_data.items():
+                    for host_data in task_data.host_data.values():
                        self.create_span_data(apm_cli, task_data, host_data)

                apm_cli.end_transaction(name=__name__, result=status, duration=end_time - parent_start_time)
--- a/plugins/callback/log_plays.py
+++ b/plugins/callback/log_plays.py
@@ -27,16 +27,15 @@ options:
        key: log_folder
 """

+import json
 import os
 import time
-import json
-
-from ansible.utils.path import makedirs_safe
-from ansible.module_utils.common.text.converters import to_bytes
 from collections.abc import MutableMapping
+
+from ansible.module_utils.common.text.converters import to_bytes
 from ansible.parsing.ajson import AnsibleJSONEncoder
 from ansible.plugins.callback import CallbackBase
-
+from ansible.utils.path import makedirs_safe

 # NOTE: in Ansible 1.2 or later general logging is available without
 # this plugin, just set ANSIBLE_LOG_PATH as an environment variable
--- a/plugins/callback/loganalytics.py
+++ b/plugins/callback/loganalytics.py
@@ -51,14 +51,13 @@ examples: |-
    shared_key = dZD0kCbKl3ehZG6LHFMuhtE0yHiFCmetzFMc2u+roXIUQuatqU924SsAAAAPemhjbGlAemhjbGktTUJQAQIDBA==
 """

+import base64
+import getpass
 import hashlib
 import hmac
-import base64
 import json
-import uuid
 import socket
-import getpass
-
+import uuid
 from os.path import basename

 from ansible.module_utils.ansible_release import __version__ as ansible_version
--- a/plugins/callback/loganalytics_ingestion.py
+++ b/plugins/callback/loganalytics_ingestion.py
@@ -0,0 +1,342 @@
+#!/usr/bin/env python
+# Copyright (c) Ansible project
+# GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https://www.gnu.org/licenses/gpl-3.0.txt)
+# SPDX-License-Identifier: GPL-3.0-or-later
+
+from __future__ import annotations
+
+DOCUMENTATION = """
+name: loganalytics_ingestion
+type: notification
+short_description: Posts task results to an Azure Log Analytics workspace using the new Logs Ingestion API
+author:
+  - Wade Cline (@wtcline-intc) <wade.cline@intel.com>
+  - Sriramoju Vishal Bharath (@vsh47) <sriramoju.vishal.bharath@intel.com>
+  - Cyrus Li (@zhcli) <cyrus1006@gmail.com>
+description:
+  - This callback plugin will post task results in JSON format to an Azure Log Analytics workspace using the new Logs Ingestion API.
+version_added: "12.4.0"
+requirements:
+  - The callback plugin has been enabled.
+  - An Azure Log Analytics workspace has been established.
+  - A Data Collection Rule (DCR) and custom table are created.
+options:
+  dce_url:
+    description: URL of the Data Collection Endpoint (DCE) for Azure Logs Ingestion API.
+    type: str
+    required: true
+    env:
+      - name: ANSIBLE_LOGANALYTICS_DCE_URL
+    ini:
+      - section: callback_loganalytics
+        key: dce_url
+  dcr_id:
+    description: Data Collection Rule (DCR) ID for the Azure Log Ingestion API.
+    type: str
+    required: true
+    env:
+      - name: ANSIBLE_LOGANALYTICS_DCR_ID
+    ini:
+      - section: callback_loganalytics
+        key: dcr_id
+  disable_attempts:
+    description:
+      - When O(disable_on_failure=true), number of plugin failures that must occur before the plugin is disabled.
+      - This helps prevent outright plugin failure from a single, transient network issue.
+    type: int
+    default: 3
+    env:
+      - name: ANSIBLE_LOGANALYTICS_DISABLE_ATTEMPTS
+    ini:
+      - section: callback_loganalytics
+        key: disable_attempts
+  disable_on_failure:
+    description: Stop trying to send data on plugin failure.
+    type: bool
+    default: true
+    env:
+      - name: ANSIBLE_LOGANALYTICS_DISABLE_ON_FAILURE
+    ini:
+      - section: callback_loganalytics
+        key: disable_on_failure
+  client_id:
+    description: Client ID of the Azure App registration for OAuth2 authentication ("Modern Authentication").
+    type: str
+    required: true
+    env:
+      - name: ANSIBLE_LOGANALYTICS_CLIENT_ID
+    ini:
+      - section: callback_loganalytics
+        key: client_id
+  client_secret:
+    description: Client Secret of the Azure App registration.
+    type: str
+    required: true
+    env:
+      - name: ANSIBLE_LOGANALYTICS_CLIENT_SECRET
+    ini:
+      - section: callback_loganalytics
+        key: client_secret
+  include_content:
+    description: Send the content to the Azure Log Analytics workspace.
+    type: bool
+    default: false
+    env:
+      - name: ANSIBLE_LOGANALYTICS_INCLUDE_CONTENT
+    ini:
+      - section: callback_loganalytics
+        key: include_content
+  include_task_args:
+    description: Send the task args to the Azure Log Analytics workspace.
+    type: bool
+    default: false
+    env:
+      - name: ANSIBLE_LOGANALYTICS_INCLUDE_TASK_ARGS
+    ini:
+      - section: callback_loganalytics
+        key: include_task_args
+  stream_name:
+    description: The name of the stream used to send the logs to the Azure Log Analytics workspace.
+    type: str
+    required: true
+    env:
+      - name: ANSIBLE_LOGANALYTICS_STREAM_NAME
+    ini:
+      - section: callback_loganalytics
+        key: stream_name
+  tenant_id:
+    description: Tenant ID for the Azure Active Directory.
+    type: str
+    required: true
+    env:
+      - name: ANSIBLE_LOGANALYTICS_TENANT_ID
+    ini:
+      - section: callback_loganalytics
+        key: tenant_id
+  timeout:
+    description: Timeout for the HTTP requests to the Azure Log Analytics API.
+    type: int
+    default: 2
+    env:
+      - name: ANSIBLE_LOGANALYTICS_TIMEOUT
+    ini:
+      - section: callback_loganalytics
+        key: timeout
+seealso:
+  - name: Logs Ingestion API
+    description: Overview of Logs Ingestion API in Azure Monitor
+    link: https://learn.microsoft.com/en-us/azure/azure-monitor/logs/logs-ingestion-api-overview
+notes:
+  - Triple verbosity logging (C(-vvv)) can be used to generate JSON sample data for creating the table schema in Azure Log Analytics.
+    Search for the string C(Event Data:) in the output in order to locate the data sample.
+"""
+
+EXAMPLES = """
+examples: |
+  Enable the plugin in ansible.cfg:
+    [defaults]
+    callback_enabled = community.general.loganalytics_ingestion
+  Set the environment variables:
+    export ANSIBLE_LOGANALYTICS_DCE_URL=https://my-dce.ingest.monitor.azure.com
+    export ANSIBLE_LOGANALYTICS_DCR_ID=dcr-xxxxxx
+    export ANSIBLE_LOGANALYTICS_CLIENT_ID=xxxxxxxx
+    export ANSIBLE_LOGANALYTICS_CLIENT_SECRET=xxxxxxxx
+    export ANSIBLE_LOGANALYTICS_TENANT_ID=xxxxxxxx
+    export ANSIBLE_LOGANALYTICS_STREAM_NAME=Custom-MyTable
+"""
+
+import getpass
+import json
+import socket
+import uuid
+from datetime import datetime, timedelta, timezone
+from os.path import basename
+from urllib.parse import urlencode
+
+from ansible.module_utils.urls import open_url
+from ansible.plugins.callback import CallbackBase
+from ansible.utils.display import Display
+
+display = Display()
+
+
+class AzureLogAnalyticsIngestionSource:
+    def __init__(
+        self,
+        dce_url,
+        dcr_id,
+        disable_attempts,
+        disable_on_failure,
+        client_id,
+        client_secret,
+        tenant_id,
+        stream_name,
+        include_task_args,
+        include_content,
+        timeout,
+        fqcn,
+    ):
+        self.dce_url = dce_url
+        self.dcr_id = dcr_id
+        self.disabled = False
+        self.disable_attempts = disable_attempts
+        self.disable_on_failure = disable_on_failure
+        self.client_id = client_id
+        self.client_secret = client_secret
+        self.failures = 0
+        self.tenant_id = tenant_id
+        self.stream_name = stream_name
+        self.include_task_args = include_task_args
+        self.include_content = include_content
+        self.token_expiration_time = None
+        self.session = str(uuid.uuid4())
+        self.host = socket.gethostname()
+        self.user = getpass.getuser()
+        self.timeout = timeout
+        self.fqcn = fqcn
+
+        self.bearer_token = self.get_bearer_token()
+
+    # OAuth2 authentication method to get a Bearer token
+    # This replaces the shared_key authentication mechanism
+    def get_bearer_token(self):
+        url = f"https://login.microsoftonline.com/{self.tenant_id}/oauth2/v2.0/token"
+        headers = {"Content-Type": "application/x-www-form-urlencoded"}
+        data = urlencode(
+            {
+                "grant_type": "client_credentials",
+                "client_id": self.client_id,
+                "client_secret": self.client_secret,
+                # The scope value comes from https://learn.microsoft.com/en-us/azure/azure-monitor/logs/logs-ingestion-api-overview#headers
+                # and https://learn.microsoft.com/en-us/entra/identity-platform/scopes-oidc#the-default-scope
+                "scope": "https://monitor.azure.com/.default",
+            }
+        )
+        response = open_url(url, data=data, force=True, headers=headers, method="POST", timeout=self.timeout)
+        j = json.loads(response.read().decode("utf-8"))
+        self.token_expiration_time = datetime.now() + timedelta(seconds=j.get("expires_in"))
+        return j.get("access_token")
+
+    def is_token_valid(self):
+        return datetime.now() + timedelta(seconds=10) < self.token_expiration_time
+
+    # Method to send event data to the Azure Logs Ingestion API
+    # This replaces the legacy API call and now uses the Logs Ingestion API endpoint
+    def send_event(self, event_data):
+        if not self.is_token_valid():
+            self.bearer_token = self.get_bearer_token()
+        ingestion_url = (
+            f"{self.dce_url}/dataCollectionRules/{self.dcr_id}/streams/{self.stream_name}?api-version=2023-01-01"
+        )
+        headers = {"Authorization": f"Bearer {self.bearer_token}", "Content-Type": "application/json"}
+        open_url(ingestion_url, data=json.dumps(event_data), headers=headers, method="POST", timeout=self.timeout)
+
+    def _rfc1123date(self):
+        return datetime.now(timezone.utc).strftime("%a, %d %b %Y %H:%M:%S GMT")
+
+    # This method wraps the private method with the appropriate error handling.
+    def send_to_loganalytics(self, playbook_name, result, state):
+        if self.disabled:
+            return
+        try:
+            self._send_to_loganalytics(playbook_name, result, state)
+        except Exception as e:
+            display.warning(f"{self.fqcn} callback plugin failure: {e}.")
+            if self.disable_on_failure:
+                self.failures += 1
+                if self.failures >= self.disable_attempts:
+                    display.warning(
+                        f"{self.fqcn} callback plugin failures exceed maximum of '{self.disable_attempts}'!  Disabling plugin!"
+                    )
+                    self.disabled = True
+                else:
+                    display.v(f"{self.fqcn} callback plugin failure {self.failures}/{self.disable_attempts}")
+
+    def _send_to_loganalytics(self, playbook_name, result, state):
+        ansible_role = str(result._task._role) if result._task._role else None
+
+        # Include/Exclude task args
+        if not self.include_task_args:
+            result._task_fields.pop("args", None)
+
+        # Include/Exclude content
+        if not self.include_content:
+            result._result.pop("content", None)
+
+        # Build the event data
+        event_data = [
+            {
+                "TimeGenerated": self._rfc1123date(),
+                "Host": result._host.name,
+                "User": self.user,
+                "Playbook": playbook_name,
+                "Role": ansible_role,
+                "TaskName": result._task.get_name(),
+                "Task": result._task_fields,
+                "Action": result._task_fields["action"],
+                "State": state,
+                "Result": result._result,
+                "Session": self.session,
+            }
+        ]
+
+        # The data displayed here can be used as a sample file in order to create the table's schema.
+        display.vvv(f"Event Data: {json.dumps(event_data)}")
+
+        self.send_event(event_data)
+
+
+class CallbackModule(CallbackBase):
+    CALLBACK_VERSION = 2.0
+    CALLBACK_TYPE = "notification"
+    CALLBACK_NAME = "loganalytics_ingestion"
+    CALLBACK_NEEDS_ENABLED = True
+
+    def __init__(self, display=None):
+        super().__init__(display=display)
+        self.start_datetimes = {}
+        self.playbook_name = None
+        self.azure_loganalytics = None
+        self.fqcn = f"community.general.{self.CALLBACK_NAME}"
+
+    def set_options(self, task_keys=None, var_options=None, direct=None):
+        super().set_options(task_keys=task_keys, var_options=var_options, direct=direct)
+
+        # Set options for the new Azure Logs Ingestion API configuration
+        self.client_id = self.get_option("client_id")
+        self.client_secret = self.get_option("client_secret")
+        self.dce_url = self.get_option("dce_url")
+        self.dcr_id = self.get_option("dcr_id")
+        self.disable_attempts = self.get_option("disable_attempts")
+        self.disable_on_failure = self.get_option("disable_on_failure")
+        self.include_content = self.get_option("include_content")
+        self.include_task_args = self.get_option("include_task_args")
+        self.stream_name = self.get_option("stream_name")
+        self.tenant_id = self.get_option("tenant_id")
+        self.timeout = self.get_option("timeout")
+
+        # Initialize the AzureLogAnalyticsIngestionSource with the new settings
+        self.azure_loganalytics = AzureLogAnalyticsIngestionSource(
+            self.dce_url,
+            self.dcr_id,
+            self.disable_attempts,
+            self.disable_on_failure,
+            self.client_id,
+            self.client_secret,
+            self.tenant_id,
+            self.stream_name,
+            self.include_task_args,
+            self.include_content,
+            self.timeout,
+            self.fqcn,
+        )
+
+    def v2_playbook_on_start(self, playbook):
+        self.playbook_name = basename(playbook._file_name)
+
+    # Build event data and send it to the Logs Ingestion API
+    def v2_runner_on_failed(self, result, **kwargs):
+        self.azure_loganalytics.send_to_loganalytics(self.playbook_name, result, "FAILED")
+
+    def v2_runner_on_ok(self, result, **kwargs):
+        self.azure_loganalytics.send_to_loganalytics(self.playbook_name, result, "OK")
--- a/plugins/callback/logdna.py
+++ b/plugins/callback/logdna.py
@@ -55,12 +55,13 @@ options:
    default: ansible
 """

-import logging
 import json
+import logging
 import socket
 from uuid import getnode
-from ansible.plugins.callback import CallbackBase
+
 from ansible.parsing.ajson import AnsibleJSONEncoder
+from ansible.plugins.callback import CallbackBase

 try:
    from logdna import LogDNAHandler
--- a/plugins/callback/logentries.py
+++ b/plugins/callback/logentries.py
@@ -96,8 +96,8 @@ examples: >-
 """

 import os
-import socket
 import random
+import socket
 import time
 import uuid

@@ -178,7 +178,7 @@ class PlainTextSocketAppender:
        while True:
            try:
                self._conn.send(to_bytes(multiline, errors="surrogate_or_strict"))
-            except socket.error:
+            except OSError:
                self.reopen_connection()
                continue
            break
@@ -254,7 +254,7 @@ class CallbackModule(CallbackBase):

        try:
            self.token = self.get_option("token")
-        except KeyError as e:
+        except KeyError:
            self._display.warning(
                "Logentries token was not provided, this is required for this callback to operate, disabling"
            )
--- a/plugins/callback/logstash.py
+++ b/plugins/callback/logstash.py
@@ -94,12 +94,13 @@ ansible.cfg: |
      }
 """

-import os
 import json
-from ansible import context
+import logging
+import os
 import socket
 import uuid
-import logging
+
+from ansible import context

 try:
    import logstash
--- a/plugins/callback/mail.py
+++ b/plugins/callback/mail.py
@@ -79,10 +79,10 @@ options:
    version_added: 8.2.0
 """

+import email.utils
 import json
 import os
 import re
-import email.utils
 import smtplib

 from ansible.module_utils.common.text.converters import to_bytes
--- a/plugins/callback/opentelemetry.py
+++ b/plugins/callback/opentelemetry.py
@@ -148,15 +148,15 @@ from ansible.plugins.callback import CallbackBase
 OTEL_LIBRARY_IMPORT_ERROR: ImportError | None
 try:
    from opentelemetry import trace
-    from opentelemetry.trace import SpanKind
    from opentelemetry.exporter.otlp.proto.grpc.trace_exporter import OTLPSpanExporter as GRPCOTLPSpanExporter
    from opentelemetry.exporter.otlp.proto.http.trace_exporter import OTLPSpanExporter as HTTPOTLPSpanExporter
    from opentelemetry.sdk.resources import SERVICE_NAME, Resource
-    from opentelemetry.trace.status import Status, StatusCode
-    from opentelemetry.trace.propagation.tracecontext import TraceContextTextMapPropagator
    from opentelemetry.sdk.trace import TracerProvider
    from opentelemetry.sdk.trace.export import BatchSpanProcessor, SimpleSpanProcessor
    from opentelemetry.sdk.trace.export.in_memory_span_exporter import InMemorySpanExporter
+    from opentelemetry.trace import SpanKind
+    from opentelemetry.trace.propagation.tracecontext import TraceContextTextMapPropagator
+    from opentelemetry.trace.status import Status, StatusCode
 except ImportError as imp_exc:
    OTEL_LIBRARY_IMPORT_ERROR = imp_exc
 else:
@@ -210,7 +210,7 @@ class OpenTelemetrySource:
        self.host = socket.gethostname()
        try:
            self.ip_address = socket.gethostbyname(socket.gethostname())
-        except Exception as e:
+        except Exception:
            self.ip_address = None
        self.user = getpass.getuser()

@@ -272,7 +272,7 @@ class OpenTelemetrySource:

        tasks = []
        parent_start_time = None
-        for task_uuid, task in tasks_data.items():
+        for task in tasks_data.values():
            if parent_start_time is None:
                parent_start_time = task.start
            tasks.append(task)
@@ -309,7 +309,7 @@ class OpenTelemetrySource:
                parent.set_attribute("ansible.host.ip", self.ip_address)
            parent.set_attribute("ansible.host.user", self.user)
            for task in tasks:
-                for host_uuid, host_data in task.host_data.items():
+                for host_data in task.host_data.values():
                    with tracer.start_as_current_span(task.name, start_time=task.start, end_on_exit=False) as span:
                        self.update_span_data(task, host_data, span, disable_logs, disable_attributes_in_logs)

--- a/plugins/callback/print_task.py
+++ b/plugins/callback/print_task.py
@@ -22,7 +22,7 @@ ansible.cfg: |-
  callbacks_enabled=community.general.print_task
 """

-from yaml import load, dump
+from yaml import dump, load

 try:
    from yaml import CSafeDumper as SafeDumper
--- a/plugins/callback/say.py
+++ b/plugins/callback/say.py
@@ -18,9 +18,9 @@ description:
  - This plugin uses C(say) or C(espeak) to "speak" about play events.
 """

+import os
 import platform
 import subprocess
-import os

 from ansible.module_utils.common.process import get_bin_path
 from ansible.plugins.callback import CallbackBase
--- a/plugins/callback/selective.py
+++ b/plugins/callback/selective.py
@@ -39,9 +39,8 @@ EXAMPLES = r"""
 import difflib

 from ansible import constants as C
-from ansible.plugins.callback import CallbackBase
 from ansible.module_utils.common.text.converters import to_text
-
+from ansible.plugins.callback import CallbackBase

 DONT_COLORIZE = False
 COLORS = {
--- a/plugins/callback/splunk.py
+++ b/plugins/callback/splunk.py
@@ -83,11 +83,10 @@ examples: >-
    authtoken = f23blad6-5965-4537-bf69-5b5a545blabla88
 """

-import json
-import uuid
-import socket
 import getpass
-
+import json
+import socket
+import uuid
 from os.path import basename

 from ansible.module_utils.ansible_release import __version__ as ansible_version
@@ -255,7 +254,7 @@ class CallbackModule(CallbackBase):
            self._runtime(result),
        )

-    def runner_on_async_failed(self, result, **kwargs):
+    def v2_runner_on_async_failed(self, result, **kwargs):
        self.splunk.send_event(
            self.url,
            self.authtoken,
--- a/plugins/callback/sumologic.py
+++ b/plugins/callback/sumologic.py
@@ -40,11 +40,10 @@ examples: |-
    url = https://endpoint1.collection.us2.sumologic.com/receiver/v1/http/R8moSv1d8EW9LAUFZJ6dbxCFxwLH6kfCdcBfddlfxCbLuL-BN5twcTpMk__pYy_cDmp==
 """

-import json
-import uuid
-import socket
 import getpass
-
+import json
+import socket
+import uuid
 from os.path import basename

 from ansible.module_utils.ansible_release import __version__ as ansible_version
--- a/plugins/callback/syslog_json.py
+++ b/plugins/callback/syslog_json.py
@@ -56,7 +56,6 @@ options:

 import logging
 import logging.handlers
-
 import socket

 from ansible.plugins.callback import CallbackBase
@@ -129,7 +128,7 @@ class CallbackModule(CallbackBase):
    def v2_runner_on_async_failed(self, result):
        res = result._result
        host = result._host.get_name()
-        jid = result._result.get("ansible_job_id")
+        # jid = result._result.get("ansible_job_id")
        self.logger.error(
            "%s ansible-command: task execution FAILED; host: %s; message: %s",
            self.hostname,
--- a/plugins/callback/timestamp.py
+++ b/plugins/callback/timestamp.py
@@ -5,7 +5,6 @@

 from __future__ import annotations

-
 DOCUMENTATION = r"""
 name: timestamp
 type: stdout
@@ -49,12 +48,13 @@ extends_documentation_fragment:
 """


+import sys
+import types
+from datetime import datetime
+
+from ansible.module_utils.common.text.converters import to_text
 from ansible.plugins.callback.default import CallbackModule as Default
 from ansible.utils.display import get_text_width
-from ansible.module_utils.common.text.converters import to_text
-from datetime import datetime
-import types
-import sys

 # Store whether the zoneinfo module is available
 _ZONEINFO_AVAILABLE = sys.version_info >= (3, 9)
@@ -89,7 +89,7 @@ def banner(self, msg, color=None, cows=True):
    msg = msg.strip()
    try:
        star_len = self.columns - get_text_width(msg) - timestamp_len
-    except EnvironmentError:
+    except OSError:
        star_len = self.columns - len(msg) - timestamp_len
    if star_len <= 3:
        star_len = 3
@@ -119,5 +119,5 @@ class CallbackModule(Default):
            tzinfo = ZoneInfo(self.get_option("timezone"))

        # Inject options into the display object
-        setattr(self._display, "timestamp_tzinfo", tzinfo)
-        setattr(self._display, "timestamp_format_string", self.get_option("format_string"))
+        self._display.timestamp_tzinfo = tzinfo
+        self._display.timestamp_format_string = self.get_option("format_string")
--- a/plugins/callback/unixy.py
+++ b/plugins/callback/unixy.py
@@ -20,11 +20,12 @@ requirements:
 """

 from os.path import basename
+
 from ansible import constants as C
 from ansible import context
 from ansible.module_utils.common.text.converters import to_text
-from ansible.utils.color import colorize, hostcolor
 from ansible.plugins.callback.default import CallbackModule as CallbackModule_default
+from ansible.utils.color import colorize, hostcolor


 class CallbackModule(CallbackModule_default):
--- a/plugins/connection/chroot.py
+++ b/plugins/connection/chroot.py
@@ -80,7 +80,7 @@ from ansible.errors import AnsibleError
 from ansible.module_utils.basic import is_executable
 from ansible.module_utils.common.process import get_bin_path
 from ansible.module_utils.common.text.converters import to_bytes
-from ansible.plugins.connection import ConnectionBase, BUFSIZE
+from ansible.plugins.connection import BUFSIZE, ConnectionBase
 from ansible.utils.display import Display

 display = Display()
@@ -129,7 +129,7 @@ class Connection(ConnectionBase):
            try:
                self.chroot_cmd = get_bin_path(self.get_option("chroot_exe"))
            except ValueError as e:
-                raise AnsibleError(str(e))
+                raise AnsibleError(str(e)) from e

        super()._connect()
        if not self._connected:
@@ -191,17 +191,17 @@ class Connection(ConnectionBase):
                    count = ""
                try:
                    p = self._buffered_exec_command(f"dd of={out_path} bs={BUFSIZE}{count}", stdin=in_file)
-                except OSError:
-                    raise AnsibleError("chroot connection requires dd command in the chroot")
+                except OSError as e:
+                    raise AnsibleError("chroot connection requires dd command in the chroot") from e
                try:
                    stdout, stderr = p.communicate()
-                except Exception:
+                except Exception as e:
                    traceback.print_exc()
-                    raise AnsibleError(f"failed to transfer file {in_path} to {out_path}")
+                    raise AnsibleError(f"failed to transfer file {in_path} to {out_path}") from e
                if p.returncode != 0:
                    raise AnsibleError(f"failed to transfer file {in_path} to {out_path}:\n{stdout}\n{stderr}")
-        except IOError:
-            raise AnsibleError(f"file or module does not exist at: {in_path}")
+        except OSError as e:
+            raise AnsibleError(f"file or module does not exist at: {in_path}") from e

    def fetch_file(self, in_path, out_path):
        """fetch a file from chroot to local"""
@@ -211,8 +211,8 @@ class Connection(ConnectionBase):
        in_path = shlex_quote(self._prefix_login_path(in_path))
        try:
            p = self._buffered_exec_command(f"dd if={in_path} bs={BUFSIZE}")
-        except OSError:
-            raise AnsibleError("chroot connection requires dd command in the chroot")
+        except OSError as e:
+            raise AnsibleError("chroot connection requires dd command in the chroot") from e

        with open(to_bytes(out_path, errors="surrogate_or_strict"), "wb+") as out_file:
            try:
@@ -220,9 +220,9 @@ class Connection(ConnectionBase):
                while chunk:
                    out_file.write(chunk)
                    chunk = p.stdout.read(BUFSIZE)
-            except Exception:
+            except Exception as e:
                traceback.print_exc()
-                raise AnsibleError(f"failed to transfer file {in_path} to {out_path}")
+                raise AnsibleError(f"failed to transfer file {in_path} to {out_path}") from e
            stdout, stderr = p.communicate()
            if p.returncode != 0:
                raise AnsibleError(f"failed to transfer file {in_path} to {out_path}:\n{stdout}\n{stderr}")
--- a/plugins/connection/funcd.py
+++ b/plugins/connection/funcd.py
@@ -35,8 +35,8 @@ except ImportError:
    pass

 import os
-import tempfile
 import shutil
+import tempfile

 from ansible.errors import AnsibleError
 from ansible.plugins.connection import ConnectionBase
--- a/plugins/connection/incus.py
+++ b/plugins/connection/incus.py
@@ -13,6 +13,9 @@ short_description: Run tasks in Incus instances using the Incus CLI
 description:
  - Run commands or put/fetch files to an existing Incus instance using Incus CLI.
 version_added: "8.2.0"
+notes:
+  - When using this collection for Windows virtual machines, set C(ansible_shell_type) to C(powershell) or C(cmd) as a variable to the host in
+    the inventory.
 options:
  remote_addr:
    description:
@@ -75,9 +78,10 @@ options:
 """

 import os
-from subprocess import call, Popen, PIPE
+import re
+from subprocess import PIPE, Popen, call

-from ansible.errors import AnsibleError, AnsibleConnectionFailure, AnsibleFileNotFound
+from ansible.errors import AnsibleConnectionFailure, AnsibleError, AnsibleFileNotFound
 from ansible.module_utils.common.process import get_bin_path
 from ansible.module_utils.common.text.converters import to_bytes, to_text
 from ansible.plugins.connection import ConnectionBase
@@ -97,6 +101,23 @@ class Connection(ConnectionBase):
        if not self._incus_cmd:
            raise AnsibleError("incus command not found in PATH")

+        if getattr(self._shell, "_IS_WINDOWS", False):
+            # Initializing regular expression patterns to match on a PowerShell or cmd command line.
+            self.powershell_regex_pattern = re.compile(
+                r'^"?(?P<executable>(?:[a-z]:\\)?[a-z0-9 ()\\.]*powershell(?:\.exe)?)"?\s+(?P<args>.*)(?P<command>-c(?:ommand)?)\s+(?P<post_args>.*(\n.*)*)',
+                re.IGNORECASE,
+            )
+            self.cmd_regex_pattern = re.compile(
+                r'^"?(?P<executable>(?:[a-z]:\\)?[a-z0-9 ()\\.]*cmd(?:\.exe)?)"?\s+(?P<args>.*)(?P<command>/c)\s+(?P<post_args>.*)',
+                re.IGNORECASE,
+            )
+
+            # Basic setup for a Windows host.
+            self.has_native_async = True
+            self.always_pipeline_modules = True
+            self.module_implementation_preferences = (".ps1", ".exe", "")
+            self.allow_executable = False
+
    def _connect(self):
        """connect to Incus (nothing to do here)"""
        super()._connect()
@@ -110,24 +131,55 @@ class Connection(ConnectionBase):
    def _build_command(self, cmd) -> list[str]:
        """build the command to execute on the incus host"""

+        # Force pseudo-terminal allocation if the active become plugin
+        # requires one (e.g. community.general.machinectl), otherwise the
+        # become helper runs without a controlling tty and silently fails.
+        require_tty = self.become is not None and getattr(self.become, "require_tty", False)
+
        exec_cmd: list[str] = [
            self._incus_cmd,
            "--project",
            self.get_option("project"),
            "exec",
+            *(["-T"] if getattr(self._shell, "_IS_WINDOWS", False) else []),
+            *(["-t"] if require_tty and not getattr(self._shell, "_IS_WINDOWS", False) else []),
            f"{self.get_option('remote')}:{self._instance()}",
            "--",
        ]

-        if self.get_option("remote_user") != "root":
-            self._display.vvv(
-                f"INFO: Running as non-root user: {self.get_option('remote_user')}, \
-                trying to run 'incus exec' with become method: {self.get_option('incus_become_method')}",
-                host=self._instance(),
-            )
-            exec_cmd.extend([self.get_option("incus_become_method"), self.get_option("remote_user"), "-c"])
+        if getattr(self._shell, "_IS_WINDOWS", False):
+            if regex_match := self.powershell_regex_pattern.match(cmd):
+                regex_pattern = self.powershell_regex_pattern
+            elif regex_match := self.cmd_regex_pattern.match(cmd):
+                regex_pattern = self.cmd_regex_pattern

-        exec_cmd.extend([self.get_option("executable"), "-c", cmd])
+            if regex_match:
+                self._display.vvvvvv(
+                    f'Found keyword: "{regex_match.group("command")}" based on regex: {regex_pattern.pattern}',
+                    host=self._instance(),
+                )
+
+                # To avoid splitting on a space contained in the path, set the executable as the first argument.
+                exec_cmd.append(regex_match.group("executable"))
+                if args := regex_match.group("args"):
+                    exec_cmd.extend(args.strip().split(" "))
+                # Set the command argument depending on cmd or powershell and the rest of it
+                exec_cmd.append(regex_match.group("command"))
+                if post_args := regex_match.group("post_args"):
+                    exec_cmd.append(post_args.strip())
+            else:
+                # For anything else using -EncodedCommand or else, just split on space.
+                exec_cmd.extend(cmd.split(" "))
+        else:
+            if self.get_option("remote_user") != "root":
+                self._display.vvv(
+                    f"INFO: Running as non-root user: {self.get_option('remote_user')}, \
+                  trying to run 'incus exec' with become method: {self.get_option('incus_become_method')}",
+                    host=self._instance(),
+                )
+                exec_cmd.extend([self.get_option("incus_become_method"), self.get_option("remote_user"), "-c"])
+
+            exec_cmd.extend([self.get_option("executable"), "-c", cmd])

        return exec_cmd

@@ -200,7 +252,7 @@ class Connection(ConnectionBase):
        if not os.path.isfile(to_bytes(in_path, errors="surrogate_or_strict")):
            raise AnsibleFileNotFound(f"input path is not a file: {in_path}")

-        if self.get_option("remote_user") != "root":
+        if not getattr(self._shell, "_IS_WINDOWS", False) and self.get_option("remote_user") != "root":
            uid, gid = self._get_remote_uid_gid()
            local_cmd = [
                self._incus_cmd,
--- a/plugins/connection/iocage.py
+++ b/plugins/connection/iocage.py
@@ -33,11 +33,12 @@ options:

 import subprocess

-from ansible_collections.community.general.plugins.connection.jail import Connection as Jail
-from ansible.module_utils.common.text.converters import to_native
 from ansible.errors import AnsibleError
+from ansible.module_utils.common.text.converters import to_native
 from ansible.utils.display import Display

+from ansible_collections.community.general.plugins.connection.jail import Connection as Jail
+
 display = Display()


--- a/plugins/connection/jail.py
+++ b/plugins/connection/jail.py
@@ -42,7 +42,7 @@ from shlex import quote as shlex_quote
 from ansible.errors import AnsibleError
 from ansible.module_utils.common.process import get_bin_path
 from ansible.module_utils.common.text.converters import to_bytes, to_native, to_text
-from ansible.plugins.connection import ConnectionBase, BUFSIZE
+from ansible.plugins.connection import BUFSIZE, ConnectionBase
 from ansible.utils.display import Display

 display = Display()
@@ -79,8 +79,8 @@ class Connection(ConnectionBase):
    def _search_executable(executable):
        try:
            return get_bin_path(executable)
-        except ValueError:
-            raise AnsibleError(f"{executable} command not found in PATH")
+        except ValueError as e:
+            raise AnsibleError(f"{executable} command not found in PATH") from e

    def list_jails(self):
        p = subprocess.Popen(
@@ -161,19 +161,19 @@ class Connection(ConnectionBase):
                    count = ""
                try:
                    p = self._buffered_exec_command(f"dd of={out_path} bs={BUFSIZE}{count}", stdin=in_file)
-                except OSError:
-                    raise AnsibleError("jail connection requires dd command in the jail")
+                except OSError as e:
+                    raise AnsibleError("jail connection requires dd command in the jail") from e
                try:
                    stdout, stderr = p.communicate()
-                except Exception:
+                except Exception as e:
                    traceback.print_exc()
-                    raise AnsibleError(f"failed to transfer file {in_path} to {out_path}")
+                    raise AnsibleError(f"failed to transfer file {in_path} to {out_path}") from e
                if p.returncode != 0:
                    raise AnsibleError(
                        f"failed to transfer file {in_path} to {out_path}:\n{to_native(stdout)}\n{to_native(stderr)}"
                    )
-        except IOError:
-            raise AnsibleError(f"file or module does not exist at: {in_path}")
+        except OSError as e:
+            raise AnsibleError(f"file or module does not exist at: {in_path}") from e

    def fetch_file(self, in_path, out_path):
        """fetch a file from jail to local"""
@@ -183,8 +183,8 @@ class Connection(ConnectionBase):
        in_path = shlex_quote(self._prefix_login_path(in_path))
        try:
            p = self._buffered_exec_command(f"dd if={in_path} bs={BUFSIZE}")
-        except OSError:
-            raise AnsibleError("jail connection requires dd command in the jail")
+        except OSError as e:
+            raise AnsibleError("jail connection requires dd command in the jail") from e

        with open(to_bytes(out_path, errors="surrogate_or_strict"), "wb+") as out_file:
            try:
@@ -192,9 +192,9 @@ class Connection(ConnectionBase):
                while chunk:
                    out_file.write(chunk)
                    chunk = p.stdout.read(BUFSIZE)
-            except Exception:
+            except Exception as e:
                traceback.print_exc()
-                raise AnsibleError(f"failed to transfer file {in_path} to {out_path}")
+                raise AnsibleError(f"failed to transfer file {in_path} to {out_path}") from e
            stdout, stderr = p.communicate()
            if p.returncode != 0:
                raise AnsibleError(
--- a/plugins/connection/lxc.py
+++ b/plugins/connection/lxc.py
@@ -31,12 +31,12 @@ options:
      - name: ansible_lxc_executable
 """

+import errno
+import fcntl
 import os
+import select
 import shutil
 import traceback
-import select
-import fcntl
-import errno

 HAS_LIBLXC = False
 try:
@@ -94,7 +94,7 @@ class Connection(ConnectionBase):
        while len(read_fds) > 0 or len(write_fds) > 0:
            try:
                ready_reads, ready_writes, dummy = select.select(read_fds, write_fds, [])
-            except select.error as e:
+            except OSError as e:
                if e.args[0] == errno.EINTR:
                    continue
                raise
@@ -173,9 +173,9 @@ class Connection(ConnectionBase):
            raise errors.AnsibleFileNotFound(msg)
        try:
            src_file = open(in_path, "rb")
-        except IOError:
+        except OSError as e:
            traceback.print_exc()
-            raise errors.AnsibleError(f"failed to open input file to {in_path}")
+            raise errors.AnsibleError(f"failed to open input file to {in_path}") from e
        try:

            def write_file(args):
@@ -184,10 +184,10 @@ class Connection(ConnectionBase):

            try:
                self.container.attach_wait(write_file, None)
-            except IOError:
+            except OSError as e:
                traceback.print_exc()
                msg = f"failed to transfer file to {out_path}"
-                raise errors.AnsibleError(msg)
+                raise errors.AnsibleError(msg) from e
        finally:
            src_file.close()

@@ -200,10 +200,10 @@ class Connection(ConnectionBase):

        try:
            dst_file = open(out_path, "wb")
-        except IOError:
+        except OSError as e:
            traceback.print_exc()
            msg = f"failed to open output file {out_path}"
-            raise errors.AnsibleError(msg)
+            raise errors.AnsibleError(msg) from e
        try:

            def write_file(args):
@@ -217,10 +217,10 @@ class Connection(ConnectionBase):

            try:
                self.container.attach_wait(write_file, None)
-            except IOError:
+            except OSError as e:
                traceback.print_exc()
                msg = f"failed to transfer file from {in_path} to {out_path}"
-                raise errors.AnsibleError(msg)
+                raise errors.AnsibleError(msg) from e
        finally:
            dst_file.close()

--- a/plugins/connection/lxd.py
+++ b/plugins/connection/lxd.py
@@ -74,9 +74,9 @@ options:
 """

 import os
-from subprocess import Popen, PIPE
+from subprocess import PIPE, Popen

-from ansible.errors import AnsibleError, AnsibleConnectionFailure, AnsibleFileNotFound
+from ansible.errors import AnsibleConnectionFailure, AnsibleError, AnsibleFileNotFound
 from ansible.module_utils.common.process import get_bin_path
 from ansible.module_utils.common.text.converters import to_bytes, to_text
 from ansible.plugins.connection import ConnectionBase
@@ -93,8 +93,8 @@ class Connection(ConnectionBase):

        try:
            self._lxc_cmd = get_bin_path("lxc")
-        except ValueError:
-            raise AnsibleError("lxc command not found in PATH")
+        except ValueError as e:
+            raise AnsibleError("lxc command not found in PATH") from e

    def _host(self):
        """translate remote_addr to lxd (short) hostname"""
--- a/plugins/connection/qubes.py
+++ b/plugins/connection/qubes.py
@@ -9,7 +9,6 @@

 from __future__ import annotations

-
 DOCUMENTATION = r"""
 name: qubes
 short_description: Interact with an existing QubesOS AppVM
@@ -40,9 +39,9 @@ options:

 import subprocess

+from ansible.errors import AnsibleConnectionFailure
 from ansible.module_utils.common.text.converters import to_bytes
 from ansible.plugins.connection import ConnectionBase, ensure_connect
-from ansible.errors import AnsibleConnectionFailure
 from ansible.utils.display import Display

 display = Display()
--- a/plugins/connection/saltstack.py
+++ b/plugins/connection/saltstack.py
@@ -16,8 +16,8 @@ description:
  - This allows you to use existing Saltstack infrastructure to connect to targets.
 """

-import os
 import base64
+import os

 from ansible import errors
 from ansible.plugins.connection import ConnectionBase
--- a/plugins/connection/wsl.py
+++ b/plugins/connection/wsl.py
@@ -231,6 +231,18 @@ options:
    required: true
    vars:
      - name: wsl_distribution
+  wsl_remote_ssh_shell_type:
+    description:
+      - The shell type expected in the SSH session (not inside the WSL session).
+      - See also C(ansible_shell_type).
+    type: string
+    choices:
+      - cmd
+      - powershell
+    default: cmd
+    vars:
+      - name: wsl_remote_ssh_shell_type
+    version_added: 12.2.0
  wsl_user:
    description:
      - WSL distribution user.
@@ -312,25 +324,25 @@ import io
 import os
 import pathlib
 import shlex
-import socket
 import tempfile
 import traceback
 import typing as t
+from binascii import hexlify
+from subprocess import list2cmdline

 from ansible.errors import (
    AnsibleAuthenticationFailure,
    AnsibleConnectionFailure,
    AnsibleError,
 )
-from ansible_collections.community.general.plugins.module_utils._filelock import FileLock, LockTimeout
-from ansible_collections.community.general.plugins.module_utils.version import LooseVersion
 from ansible.module_utils.common.text.converters import to_bytes, to_native, to_text
 from ansible.playbook.play_context import PlayContext
 from ansible.plugins.connection import ConnectionBase
 from ansible.utils.display import Display
 from ansible.utils.path import makedirs_safe
-from binascii import hexlify
-from subprocess import list2cmdline
+
+from ansible_collections.community.general.plugins.module_utils._filelock import FileLock, LockTimeout
+from ansible_collections.community.general.plugins.module_utils.version import LooseVersion

 PARAMIKO_IMPORT_ERR: str | None
 try:
@@ -416,7 +428,7 @@ class Connection(ConnectionBase):

        sock_kwarg = {}
        if proxy_command:
-            replacers: t.Dict[str, str] = {
+            replacers: dict[str, str] = {
                "%h": self.get_option("remote_addr"),
                "%p": str(port),
                "%r": self.get_option("remote_user"),
@@ -457,7 +469,7 @@ class Connection(ConnectionBase):
        paramiko_preferred_pubkeys = getattr(paramiko.Transport, "_preferred_pubkeys", ())
        paramiko_preferred_hostkeys = getattr(paramiko.Transport, "_preferred_keys", ())
        use_rsa_sha2_algorithms = self.get_option("use_rsa_sha2_algorithms")
-        disabled_algorithms: t.Dict[str, t.Iterable[str]] = {}
+        disabled_algorithms: dict[str, t.Iterable[str]] = {}
        if not use_rsa_sha2_algorithms:
            if paramiko_preferred_pubkeys:
                disabled_algorithms["pubkeys"] = tuple(a for a in paramiko_preferred_pubkeys if "rsa-sha2" in a)
@@ -475,14 +487,14 @@ class Connection(ConnectionBase):
                try:
                    ssh.load_system_host_keys(ssh_known_hosts)
                    break
-                except IOError:
+                except OSError:
                    pass  # file was not found, but not required to function
                except paramiko.hostkeys.InvalidHostKey as e:
-                    raise AnsibleConnectionFailure(f"Invalid host key: {to_text(e.line)}")
+                    raise AnsibleConnectionFailure(f"Invalid host key: {to_text(e.line)}") from e
            try:
                ssh.load_system_host_keys()
            except paramiko.hostkeys.InvalidHostKey as e:
-                raise AnsibleConnectionFailure(f"Invalid host key: {to_text(e.line)}")
+                raise AnsibleConnectionFailure(f"Invalid host key: {to_text(e.line)}") from e

        ssh_connect_kwargs = self._parse_proxy_command(port)
        ssh.set_missing_host_key_policy(MyAddPolicy(self))
@@ -518,29 +530,31 @@ class Connection(ConnectionBase):
                **ssh_connect_kwargs,
            )
        except paramiko.ssh_exception.BadHostKeyException as e:
-            raise AnsibleConnectionFailure(f"host key mismatch for {to_text(e.hostname)}")
+            raise AnsibleConnectionFailure(f"host key mismatch for {to_text(e.hostname)}") from e
        except paramiko.ssh_exception.AuthenticationException as e:
            msg = f"Failed to authenticate: {e}"
-            raise AnsibleAuthenticationFailure(msg)
+            raise AnsibleAuthenticationFailure(msg) from e
        except Exception as e:
            msg = to_text(e)
            if "PID check failed" in msg:
-                raise AnsibleError("paramiko version issue, please upgrade paramiko on the machine running ansible")
+                raise AnsibleError(
+                    "paramiko version issue, please upgrade paramiko on the machine running ansible"
+                ) from e
            elif "Private key file is encrypted" in msg:
                msg = (
                    f"ssh {self.get_option('remote_user')}@{self.get_options('remote_addr')}:{port} : "
                    f"{msg}\nTo connect as a different user, use -u <username>."
                )
-                raise AnsibleConnectionFailure(msg)
+                raise AnsibleConnectionFailure(msg) from e
            else:
-                raise AnsibleConnectionFailure(msg)
+                raise AnsibleConnectionFailure(msg) from e
        self.ssh = ssh
        self._connected = True
        return self

    def _any_keys_added(self) -> bool:
-        for hostname, keys in self.ssh._host_keys.items():  # type: ignore[attr-defined]  # TODO: figure out what _host_keys is!
-            for keytype, key in keys.items():
+        for host_keys in self.ssh._host_keys.values():  # type: ignore[attr-defined]  # TODO: figure out what _host_keys is!
+            for key in host_keys.values():
                added_this_time = getattr(key, "_added_by_ansible_this_time", False)
                if added_this_time:
                    return True
@@ -576,18 +590,32 @@ class Connection(ConnectionBase):
        wsl_distribution = self.get_option("wsl_distribution")
        become = self.get_option("become")
        become_user = self.get_option("become_user")
+        wsl_remote_ssh_shell_type = self.get_option("wsl_remote_ssh_shell_type")
+        is_integration_test = os.getenv("_ANSIBLE_TEST_WSL_CONNECTION_PLUGIN_WAERI5TEPHEESHA2FAE8")
+        if "%" in cmd:
+            if wsl_remote_ssh_shell_type == "powershell":
+                # there is no universal way to escape '%' here
+                # if this is raised, add a workaround to allow the specific situation (if possible)
+                raise AnsibleError("The command contains '%', cannot safely escape it for Powershell")
+            else:
+                cmd = cmd.replace("%", "^%")
        if become and become_user:
            wsl_user = become_user
        else:
            wsl_user = self.get_option("wsl_user")
-        args = ["wsl.exe", "--distribution", wsl_distribution]
+        args = ["wsl.exe"]
+        if wsl_remote_ssh_shell_type == "powershell" and not is_integration_test:
+            # Powershell stop-parsing token, treat the rest as arguments to the native command wsl.exe
+            args.append("--%")
+        args.extend(["--distribution", wsl_distribution])
        if wsl_user:
            args.extend(["--user", wsl_user])
        args.extend(["--"])
        args.extend(shlex.split(cmd))
-        if os.getenv("_ANSIBLE_TEST_WSL_CONNECTION_PLUGIN_Waeri5tepheeSha2fae8"):
+        if is_integration_test:
            return shlex.join(args)
-        return list2cmdline(args)  # see https://github.com/python/cpython/blob/3.11/Lib/subprocess.py#L576
+        else:
+            return list2cmdline(args)  # see https://github.com/python/cpython/blob/3.11/Lib/subprocess.py#L576

    def exec_command(self, cmd: str, in_data: bytes | None = None, sudoable: bool = True) -> tuple[int, bytes, bytes]:
        """run a command on inside a WSL distribution"""
@@ -609,18 +637,18 @@ class Connection(ConnectionBase):
            msg = "Failed to open session"
            if text_e:
                msg += f": {text_e}"
-            raise AnsibleConnectionFailure(to_native(msg))
+            raise AnsibleConnectionFailure(to_native(msg)) from e

        display.vvv(f"EXEC {cmd}", host=self.get_option("remote_addr"))

-        cmd = to_bytes(cmd, errors="surrogate_or_strict")
+        cmd_b = to_bytes(cmd, errors="surrogate_or_strict")

        no_prompt_out = b""
        no_prompt_err = b""
        become_output = b""

        try:
-            chan.exec_command(cmd)
+            chan.exec_command(cmd_b)
            if self.become and self.become.expect_prompt():
                password_prompt = False
                become_success = False
@@ -665,8 +693,8 @@ class Connection(ConnectionBase):
            elif in_data == b"":
                chan.shutdown_write()

-        except socket.timeout:
-            raise AnsibleError(f"ssh timed out waiting for privilege escalation.\n{to_text(become_output)}")
+        except TimeoutError as e:
+            raise AnsibleError(f"ssh timed out waiting for privilege escalation.\n{to_text(become_output)}") from e

        stdout = b"".join(chan.makefile("rb", bufsize))
        stderr = b"".join(chan.makefile_stderr("rb", bufsize))
@@ -699,7 +727,7 @@ class Connection(ConnectionBase):
                    )
                raise AnsibleError(f"{to_text(stdout)}\n{to_text(stderr)}")
        except Exception as e:
-            raise AnsibleError(f"error occurred while putting file from {in_path} to {out_path}!\n{to_text(e)}")
+            raise AnsibleError(f"error occurred while putting file from {in_path} to {out_path}!\n{to_text(e)}") from e

    def fetch_file(self, in_path: str, out_path: str) -> None:
        """save a remote file to the specified path"""
@@ -718,7 +746,7 @@ class Connection(ConnectionBase):
            with open(out_path, "wb") as f:
                f.write(stdout)
        except Exception as e:
-            raise AnsibleError(f"error occurred while fetching file from {in_path} to {out_path}!\n{to_text(e)}")
+            raise AnsibleError(f"error occurred while fetching file from {in_path} to {out_path}!\n{to_text(e)}") from e

    def reset(self) -> None:
        """reset the connection"""
@@ -772,16 +800,16 @@ class Connection(ConnectionBase):
                        self._save_ssh_host_keys(tmp_keyfile_name)

                    os.rename(tmp_keyfile_name, self.keyfile)
-            except LockTimeout:
+            except LockTimeout as e:
                raise AnsibleError(
                    f"writing lock file for {self.keyfile} ran in to the timeout of {self.get_option('lock_file_timeout')}s"
-                )
+                ) from e
            except paramiko.hostkeys.InvalidHostKey as e:
-                raise AnsibleConnectionFailure(f"Invalid host key: {e.line}")
+                raise AnsibleConnectionFailure(f"Invalid host key: {e.line}") from e
            except Exception as e:
                # unable to save keys, including scenario when key was invalid
                # and caught earlier
-                raise AnsibleError(f"error occurred while writing SSH host keys!\n{to_text(e)}")
+                raise AnsibleError(f"error occurred while writing SSH host keys!\n{to_text(e)}") from e
            finally:
                if tmp_keyfile_name is not None:
                    pathlib.Path(tmp_keyfile_name).unlink(missing_ok=True)
--- a/plugins/connection/zone.py
+++ b/plugins/connection/zone.py
@@ -35,7 +35,7 @@ from shlex import quote as shlex_quote
 from ansible.errors import AnsibleError
 from ansible.module_utils.common.process import get_bin_path
 from ansible.module_utils.common.text.converters import to_bytes
-from ansible.plugins.connection import ConnectionBase, BUFSIZE
+from ansible.plugins.connection import BUFSIZE, ConnectionBase
 from ansible.utils.display import Display

 display = Display()
@@ -66,8 +66,8 @@ class Connection(ConnectionBase):
    def _search_executable(executable):
        try:
            return get_bin_path(executable)
-        except ValueError:
-            raise AnsibleError(f"{executable} command not found in PATH")
+        except ValueError as e:
+            raise AnsibleError(f"{executable} command not found in PATH") from e

    def list_zones(self):
        process = subprocess.Popen(
@@ -160,17 +160,17 @@ class Connection(ConnectionBase):
                    count = ""
                try:
                    p = self._buffered_exec_command(f"dd of={out_path} bs={BUFSIZE}{count}", stdin=in_file)
-                except OSError:
-                    raise AnsibleError("jail connection requires dd command in the jail")
+                except OSError as e:
+                    raise AnsibleError("jail connection requires dd command in the jail") from e
                try:
                    stdout, stderr = p.communicate()
-                except Exception:
+                except Exception as e:
                    traceback.print_exc()
-                    raise AnsibleError(f"failed to transfer file {in_path} to {out_path}")
+                    raise AnsibleError(f"failed to transfer file {in_path} to {out_path}") from e
                if p.returncode != 0:
                    raise AnsibleError(f"failed to transfer file {in_path} to {out_path}:\n{stdout}\n{stderr}")
-        except IOError:
-            raise AnsibleError(f"file or module does not exist at: {in_path}")
+        except OSError as e:
+            raise AnsibleError(f"file or module does not exist at: {in_path}") from e

    def fetch_file(self, in_path, out_path):
        """fetch a file from zone to local"""
@@ -180,8 +180,8 @@ class Connection(ConnectionBase):
        in_path = shlex_quote(self._prefix_login_path(in_path))
        try:
            p = self._buffered_exec_command(f"dd if={in_path} bs={BUFSIZE}")
-        except OSError:
-            raise AnsibleError("zone connection requires dd command in the zone")
+        except OSError as e:
+            raise AnsibleError("zone connection requires dd command in the zone") from e

        with open(out_path, "wb+") as out_file:
            try:
@@ -189,9 +189,9 @@ class Connection(ConnectionBase):
                while chunk:
                    out_file.write(chunk)
                    chunk = p.stdout.read(BUFSIZE)
-            except Exception:
+            except Exception as e:
                traceback.print_exc()
-                raise AnsibleError(f"failed to transfer file {in_path} to {out_path}")
+                raise AnsibleError(f"failed to transfer file {in_path} to {out_path}") from e
            stdout, stderr = p.communicate()
            if p.returncode != 0:
                raise AnsibleError(f"failed to transfer file {in_path} to {out_path}:\n{stdout}\n{stderr}")
--- a/plugins/doc_fragments/_icinga2_api.py
+++ b/plugins/doc_fragments/_icinga2_api.py
@@ -0,0 +1,30 @@
+# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
+# SPDX-License-Identifier: GPL-3.0-or-later
+# SPDX-FileCopyrightText: 2026 Christoph Fiehe <christoph.fiehe@gmail.com>
+
+# Note that this doc fragment is **PRIVATE** to the collection. It can have breaking changes at any time.
+# Do not use this from other collections or standalone plugins/modules!
+
+from __future__ import annotations
+
+
+class ModuleDocFragment:
+    # Use together with ansible.builtin.url and icinga2_argument_spec from
+    # ansible_collections.community.general.plugins.module_utils._icinga2
+    DOCUMENTATION = r"""
+options:
+  url:
+    description:
+      - URL of the Icinga 2 REST API.
+    type: str
+    required: true
+  ca_path:
+    description:
+      - CA certificates bundle to use to verify the Icinga 2 server certificate.
+    type: path
+  timeout:
+    description:
+      - How long to wait for the server to send data before giving up.
+    type: int
+    default: 10
+"""
--- a/plugins/doc_fragments/scaleway.py
+++ b/plugins/doc_fragments/scaleway.py
@@ -12,8 +12,8 @@ options:
  api_token:
    description:
      - Scaleway OAuth token.
+      - This is required if O(profile) is not specified.
    type: str
-    required: true
    aliases: [oauth_token]
  api_url:
    description:
@@ -27,6 +27,13 @@ options:
    type: int
    default: 30
    aliases: [timeout]
+  profile:
+    description:
+      - The config profile in config file to load the Scaleway OAuth token from, use instead of O(api_token).
+      - It is also possible to set E(SCW_PROFILE) to use a SCW CLI config profile.
+    type: str
+    aliases: [scw_profile]
+    version_added: 12.2.0
  query_parameters:
    description:
      - List of parameters passed to the query string.
@@ -37,6 +44,8 @@ options:
      - Validate SSL certs of the Scaleway API.
    type: bool
    default: true
+requirements:
+  - PyYAML (when O(profile) is used)
 notes:
  - Also see the API documentation on U(https://developer.scaleway.com/).
  - If O(api_token) is not set within the module, the following environment variables can be used in decreasing order of precedence
--- a/plugins/filter/accumulate.py
+++ b/plugins/filter/accumulate.py
@@ -2,6 +2,8 @@
 # GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https://www.gnu.org/licenses/gpl-3.0.txt)
 # SPDX-License-Identifier: GPL-3.0-or-later

+from __future__ import annotations
+
 DOCUMENTATION = r"""
 name: accumulate
 short_description: Produce a list of accumulated sums of the input list contents
@@ -41,8 +43,8 @@ EXAMPLES = r"""
    # Produces ['a', 'ab', 'abc']
 """

-from itertools import accumulate
 from collections.abc import Sequence
+from itertools import accumulate

 from ansible.errors import AnsibleFilterError

--- a/plugins/filter/counter.py
+++ b/plugins/filter/counter.py
@@ -34,9 +34,10 @@ _value:
  type: dictionary
 """

-from ansible.errors import AnsibleFilterError
-from collections.abc import Sequence
 from collections import Counter
+from collections.abc import Sequence
+
+from ansible.errors import AnsibleFilterError


 def counter(sequence):
@@ -51,7 +52,7 @@ def counter(sequence):
    except TypeError as e:
        raise AnsibleFilterError(
            f"community.general.counter needs a sequence with hashable elements (int, float or str) - {e}"
-        )
+        ) from e
    return result


--- a/plugins/filter/crc32.py
+++ b/plugins/filter/crc32.py
@@ -4,8 +4,8 @@
 from __future__ import annotations

 from ansible.errors import AnsibleFilterError
-from ansible.module_utils.common.text.converters import to_bytes
 from ansible.module_utils.common.collections import is_string
+from ansible.module_utils.common.text.converters import to_bytes

 try:
    from zlib import crc32
--- a/plugins/filter/from_csv.py
+++ b/plugins/filter/from_csv.py
@@ -80,11 +80,11 @@ _value:
 from ansible.errors import AnsibleFilterError

 from ansible_collections.community.general.plugins.module_utils.csv import (
+    CSVError,
+    CustomDialectFailureError,
+    DialectNotAvailableError,
    initialize_dialect,
    read_csv,
-    CSVError,
-    DialectNotAvailableError,
-    CustomDialectFailureError,
 )


@@ -98,7 +98,7 @@ def from_csv(data, dialect="excel", fieldnames=None, delimiter=None, skipinitial
    try:
        dialect = initialize_dialect(dialect, **dialect_params)
    except (CustomDialectFailureError, DialectNotAvailableError) as e:
-        raise AnsibleFilterError(str(e))
+        raise AnsibleFilterError(str(e)) from e

    reader = read_csv(data, dialect, fieldnames)

@@ -108,7 +108,7 @@ def from_csv(data, dialect="excel", fieldnames=None, delimiter=None, skipinitial
        for row in reader:
            data_list.append(row)
    except CSVError as e:
-        raise AnsibleFilterError(f"Unable to process file: {e}")
+        raise AnsibleFilterError(f"Unable to process file: {e}") from e

    return data_list

--- a/plugins/filter/from_ini.py
+++ b/plugins/filter/from_ini.py
@@ -16,6 +16,20 @@ options:
    description: A string containing an INI document.
    type: string
    required: true
+  delimiters:
+    description: A list of characters used as delimiters in the INI document.
+    type: list
+    elements: string
+    default:
+      - "="
+      - ":"
+    version_added: 12.4.0
+seealso:
+  - plugin: community.general.to_ini
+    plugin_type: filter
+  - plugin: ansible.builtin.ini
+    plugin_type: lookup
+  - module: community.general.ini_file
 """

 EXAMPLES = r"""
@@ -43,17 +57,21 @@ _value:
 """


-from io import StringIO
 from configparser import ConfigParser
+from io import StringIO

 from ansible.errors import AnsibleFilterError
+from ansible.module_utils.common.collections import is_sequence


 class IniParser(ConfigParser):
    """Implements a configparser which is able to return a dict"""

-    def __init__(self):
-        super().__init__(interpolation=None)
+    def __init__(self, delimiters=None):
+        if delimiters is None:
+            super().__init__(interpolation=None)
+        else:
+            super().__init__(interpolation=None, delimiters=delimiters)
        self.optionxform = str

    def as_dict(self):
@@ -68,18 +86,26 @@ class IniParser(ConfigParser):
        return d


-def from_ini(obj):
+def from_ini(obj, delimiters=None):
    """Read the given string as INI file and return a dict"""

    if not isinstance(obj, str):
        raise AnsibleFilterError(f"from_ini requires a str, got {type(obj)}")
+    if delimiters is not None:
+        if not is_sequence(delimiters):
+            raise AnsibleFilterError(f"from_ini's delimiters parameter must be a sequence, got {type(delimiters)}")
+        delimiters = tuple(delimiters)
+        if not all(isinstance(elt, str) for elt in delimiters):
+            raise AnsibleFilterError(
+                f"from_ini's delimiters parameter must be a sequence of strings, got {delimiters!r}"
+            )

-    parser = IniParser()
+    parser = IniParser(delimiters=delimiters)

    try:
        parser.read_file(StringIO(obj))
    except Exception as ex:
-        raise AnsibleFilterError(f"from_ini failed to parse given string: {ex}", orig_exc=ex)
+        raise AnsibleFilterError(f"from_ini failed to parse given string: {ex}", orig_exc=ex) from ex

    return parser.as_dict()

--- a/plugins/filter/groupby_as_dict.py
+++ b/plugins/filter/groupby_as_dict.py
@@ -52,9 +52,10 @@ _value:
  type: dictionary
 """

-from ansible.errors import AnsibleFilterError
 from collections.abc import Mapping, Sequence

+from ansible.errors import AnsibleFilterError
+

 def groupby_as_dict(sequence, attribute):
    """
--- a/plugins/filter/hashids.py
+++ b/plugins/filter/hashids.py
@@ -8,8 +8,6 @@ from ansible.errors import (
    AnsibleError,
    AnsibleFilterError,
 )
-
-from ansible.module_utils.common.text.converters import to_native
 from ansible.module_utils.common.collections import is_sequence

 try:
@@ -34,10 +32,8 @@ def initialize_hashids(**kwargs):
    try:
        return Hashids(**params)
    except TypeError as e:
-        raise AnsibleFilterError(
-            "The provided parameters %s are invalid: %s"
-            % (", ".join(["%s=%s" % (k, v) for k, v in params.items()]), to_native(e))
-        )
+        str_params = ", ".join([f"{k}={v}" for k, v in params.items()])
+        raise AnsibleFilterError(f"The provided parameters {str_params} are invalid: {e}") from e


 def hashids_encode(nums, salt=None, alphabet=None, min_length=None):
@@ -60,7 +56,7 @@ def hashids_encode(nums, salt=None, alphabet=None, min_length=None):
    try:
        hashid = hashids.encode(*nums)
    except TypeError as e:
-        raise AnsibleTypeError(f"Data to encode must by a tuple or list of ints: {e}")
+        raise AnsibleTypeError(f"Data to encode must by a tuple or list of ints: {e}") from e

    return hashid

--- a/plugins/filter/jc.py
+++ b/plugins/filter/jc.py
@@ -74,9 +74,10 @@ _value:
  type: any
 """

-from ansible.errors import AnsibleError, AnsibleFilterError
 import importlib

+from ansible.errors import AnsibleError, AnsibleFilterError
+
 try:
    import jc

@@ -149,7 +150,7 @@ def jc_filter(data, parser, quiet=True, raw=False):
            return jc_parser.parse(data, quiet=quiet, raw=raw)

    except Exception as e:
-        raise AnsibleFilterError(f"Error in jc filter plugin: {e}")
+        raise AnsibleFilterError(f"Error in jc filter plugin: {e}") from e


 class FilterModule:
--- a/plugins/filter/json_patch.py
+++ b/plugins/filter/json_patch.py
@@ -6,11 +6,11 @@ from __future__ import annotations

 import typing as t
 from json import loads
+
 from ansible.errors import AnsibleFilterError

-
 if t.TYPE_CHECKING:
-    from typing import Any, Callable, Union
+    from collections.abc import Callable

 JSONPATCH_IMPORT_ERROR: ImportError | None
 try:
@@ -30,7 +30,7 @@ OPERATIONS_NEEDING_VALUE = ["add", "replace", "test"]
 class FilterModule:
    """Filter plugin."""

-    def check_json_object(self, filter_name: str, object_name: str, inp: Any):
+    def check_json_object(self, filter_name: str, object_name: str, inp: t.Any):
        if isinstance(inp, (str, bytes, bytearray)):
            try:
                return loads(inp)
@@ -60,12 +60,12 @@ class FilterModule:

    def json_patch(
        self,
-        inp: Union[str, list, dict, bytes, bytearray],
+        inp: str | list | dict | bytes | bytearray,
        op: str,
        path: str,
-        value: Any = None,
+        value: t.Any = None,
        **kwargs: dict,
-    ) -> Any:
+    ) -> t.Any:
        if not HAS_LIB:
            raise AnsibleFilterError(
                "You need to install 'jsonpatch' package prior to running 'json_patch' filter"
@@ -105,11 +105,11 @@ class FilterModule:

    def json_patch_recipe(
        self,
-        inp: Union[str, list, dict, bytes, bytearray],
+        inp: str | list | dict | bytes | bytearray,
        operations: list,
        /,
        fail_test: bool = False,
-    ) -> Any:
+    ) -> t.Any:
        if not HAS_LIB:
            raise AnsibleFilterError(
                "You need to install 'jsonpatch' package prior to running 'json_patch_recipe' filter"
@@ -141,8 +141,8 @@ class FilterModule:

    def json_diff(
        self,
-        inp: Union[str, list, dict, bytes, bytearray],
-        target: Union[str, list, dict, bytes, bytearray],
+        inp: str | list | dict | bytes | bytearray,
+        target: str | list | dict | bytes | bytearray,
    ) -> list:
        if not HAS_LIB:
            raise AnsibleFilterError(
@@ -159,7 +159,7 @@ class FilterModule:

        return result

-    def filters(self) -> dict[str, Callable[..., Any]]:
+    def filters(self) -> dict[str, Callable[..., t.Any]]:
        """Map filter plugin names to their functions.

        Returns:
--- a/plugins/filter/json_query.py
+++ b/plugins/filter/json_query.py
@@ -141,10 +141,10 @@ def json_query(data, expr):
    try:
        return jmespath.search(expr, data)
    except jmespath.exceptions.JMESPathError as e:
-        raise AnsibleFilterError(f"JMESPathError in json_query filter plugin:\n{e}")
+        raise AnsibleFilterError(f"JMESPathError in json_query filter plugin:\n{e}") from e
    except Exception as e:
        # For older jmespath, we can get ValueError and TypeError without much info.
-        raise AnsibleFilterError(f"Error in jmespath.search in json_query filter plugin:\n{e}")
+        raise AnsibleFilterError(f"Error in jmespath.search in json_query filter plugin:\n{e}") from e


 class FilterModule:
--- a/plugins/filter/lists_mergeby.py
+++ b/plugins/filter/lists_mergeby.py
@@ -194,13 +194,13 @@ _value:
  elements: dictionary
 """

-from ansible.errors import AnsibleFilterError
-from collections.abc import Mapping, Sequence
-from ansible.utils.vars import merge_hash
-
 from collections import defaultdict
+from collections.abc import Mapping, Sequence
 from operator import itemgetter

+from ansible.errors import AnsibleFilterError
+from ansible.utils.vars import merge_hash
+

 def list_mergeby(x, y, index, recursive=False, list_merge="replace"):
    """Merge 2 lists by attribute 'index'. The function 'merge_hash'
--- a/plugins/filter/time.py
+++ b/plugins/filter/time.py
@@ -5,8 +5,8 @@
 from __future__ import annotations

 import re
-from ansible.errors import AnsibleFilterError

+from ansible.errors import AnsibleFilterError

 UNIT_FACTORS = {
    "ms": [],
@@ -56,10 +56,8 @@ def to_time_unit(human_time, unit="ms", **kwargs):
    unit = unit_to_short_form.get(unit.rstrip("s"), unit)
    if unit not in unit_factors:
        raise AnsibleFilterError(
-            (
-                f"to_time_unit() can not convert to the following unit: {unit}. Available units (singular or plural):"
-                f"{', '.join(unit_to_short_form.keys())}. Available short units: {', '.join(unit_factors.keys())}"
-            )
+            f"to_time_unit() can not convert to the following unit: {unit}. Available units (singular or plural):"
+            f"{', '.join(unit_to_short_form.keys())}. Available short units: {', '.join(unit_factors.keys())}"
        )

    if "year" in kwargs:
--- a/plugins/filter/to_ini.py
+++ b/plugins/filter/to_ini.py
@@ -16,6 +16,12 @@ options:
    description: The dictionary that should be converted to the INI format.
    type: dictionary
    required: true
+seealso:
+  - plugin: ansible.builtin.ini
+    plugin_type: lookup
+  - module: community.general.ini_file
+  - plugin: community.general.from_ini
+    plugin_type: filter
 """

 EXAMPLES = r"""
@@ -50,6 +56,7 @@ _value:
 from collections.abc import Mapping
 from configparser import ConfigParser
 from io import StringIO
+
 from ansible.errors import AnsibleFilterError


@@ -72,7 +79,7 @@ def to_ini(obj):
    try:
        ini_parser.read_dict(obj)
    except Exception as ex:
-        raise AnsibleFilterError(f"to_ini failed to parse given dict:{ex}", orig_exc=ex)
+        raise AnsibleFilterError(f"to_ini failed to parse given dict:{ex}", orig_exc=ex) from ex

    # catching empty dicts
    if obj == dict():
--- a/plugins/filter/to_prettytable.py
+++ b/plugins/filter/to_prettytable.py
@@ -229,7 +229,6 @@ def _configure_alignments(table, field_names, column_alignments):
        field_names: List of field names to align
        column_alignments: Dict of column alignments
    """
-    valid_alignments = {"left", "center", "right", "l", "c", "r"}

    if not isinstance(column_alignments, dict):
        return
--- a/plugins/filter/to_toml.py
+++ b/plugins/filter/to_toml.py
@@ -0,0 +1,50 @@
+# Copyright (c) Contributors to the Ansible project
+# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
+# SPDX-License-Identifier: GPL-3.0-or-later
+
+from __future__ import annotations
+
+import typing as t
+from collections.abc import Mapping
+
+from ansible.module_utils.common.collections import is_sequence
+from ansible.module_utils.common.text.converters import to_text
+
+TOMLKIT_IMPORT_ERROR: ImportError | None
+try:
+    from tomlkit import dumps
+except ImportError as imp_exc:
+    TOMLKIT_IMPORT_ERROR = imp_exc
+else:
+    TOMLKIT_IMPORT_ERROR = None
+
+from ansible.errors import AnsibleError, AnsibleFilterError
+
+from ansible_collections.community.general.plugins.plugin_utils._tags import remove_all_tags
+
+
+def _stringify_keys(value: t.Any) -> t.Any:
+    """Recursively convert all keys to strings."""
+    if isinstance(value, Mapping):
+        return {to_text(k): _stringify_keys(v) for k, v in value.items()}
+    if is_sequence(value):
+        return [_stringify_keys(e) for e in value]
+    return value
+
+
+def to_toml(value: t.Mapping, *, redact_sensitive_values: bool = False) -> str:
+    """Serialize input as TOML."""
+    if TOMLKIT_IMPORT_ERROR:
+        raise AnsibleError("tomlkit must be installed to use this plugin") from TOMLKIT_IMPORT_ERROR
+    if not isinstance(value, Mapping):
+        raise AnsibleFilterError("to_toml only accepts dictionaries.")
+    return dumps(
+        remove_all_tags(_stringify_keys(value), redact_sensitive_values=redact_sensitive_values),
+    )
+
+
+class FilterModule:
+    def filters(self):
+        return {
+            "to_toml": to_toml,
+        }
--- a/plugins/filter/to_toml.yml
+++ b/plugins/filter/to_toml.yml
@@ -0,0 +1,42 @@
+# Copyright (c) Contributors to the Ansible project
+# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt)
+# SPDX-License-Identifier: GPL-3.0-or-later
+
+DOCUMENTATION:
+  name: to_toml
+  author:
+    - Matt Williams (@milliams)
+  version_added: 12.3.0
+  short_description: Convert variable to TOML string
+  description:
+    - Converts an Ansible variable into a TOML string representation.
+    - This filter functions as a wrapper to the L(Python TOML Kit library, https://pypi.org/project/tomlkit/)'s C(tomlkit.dumps) function.
+  requirements:
+    - tomlkit
+  positional: _input
+  options:
+    _input:
+      description:
+        - A variable or expression that returns a data structure.
+      type: dict
+      required: true
+    redact_sensitive_values:
+      description:
+        - If set to V(true), vaulted strings are replaced by V(<redacted>) instead of being decrypted.
+        - With future ansible-core versions, this can extend to other strings tagged as sensitive.
+        - B(Note) that with ansible-core 2.18 and before this might not yield the expected result
+          since these versions of ansible-core strip the vault information away from strings that are
+          part of more complex data structures specified in C(vars).
+      type: bool
+      default: false
+
+EXAMPLES: |
+  ---
+  # Dump variable in a template to create a TOML document
+  value: "{{ my_config | community.general.to_toml }}"
+
+RETURN:
+  _value:
+    description:
+      - The TOML serialized string representing the variable structure inputted.
+    type: string
--- a/Show More
+++ b/Show More