What AI and cloud consulting services does Luca Berton offer?

Luca Berton provides expert consulting in AI/ML platform strategy, multi-tenant GPU orchestration on OpenShift AI, MLOps enablement, cloud infrastructure design, Kubernetes workshops, and Ansible & Python training.

What is Ansible Pilot?

Ansible Pilot is the leading resource for Ansible automation learning, featuring a YouTube channel with 6.1K subscribers and 1M+ views, plus AnsiblePilot.com with 648K total users.

How can I book a consultation with Luca Berton?

Schedule a free consultation through Calendly at calendly.com/lucaberton or visit lucaberton.com/contact.

OpenClaw Agentic Automation with Ansible: CVE Remediation at Red Hat Tech Day 2026

Live demo of OpenClaw orchestrating end-to-end CVE remediation — from agent detection through ServiceNow ITSM ticketing, OPA policy review, AAP playbook execution, and post-remediation compliance reporting. The future of autonomous infrastructure operations.

Luca Berton

June 3, 2026 · 2 min read

At Red Hat Tech Day Netherlands (June 2026), Fred van Zuiden and Ismail Masud presented “Ansible Automation Platform 2.7 and Beyond” — and the showstopper was a live demo of OpenClaw orchestrating fully autonomous CVE remediation through the Ansible Automation Platform.

This is not future-state. This is running today. An AI agent detecting vulnerabilities, creating ITSM tickets, validating policies, executing patching playbooks, and filing compliance reports — all without human intervention.

Red Hat TechTalks - AAP 2.7 and beyond with Fred van Zuiden and Ismail Masud

The Agentic Automation Workflow

The demo showed a complete 5-step autonomous remediation pipeline:

OpenClaw agentic CVE remediation workflow - complete pipeline

Step 1: OpenClaw Request

Source: OpenClaw agent (running in OpenShift Pod)
CVE: CVE-2026-31337 (CVSS 9.8 — Critical)
Impact: 4 production servers affected

The OpenClaw agent detects the vulnerability, validates it against the CVE database, and initiates the remediation workflow.

Step 2: Create ITSM Ticket

Integration: ServiceNow
Type: Change Request
Priority: Critical
Ticket: CHG0012847
Maintenance window: 03:00–05:00 EST
Actions: App owners notified via PagerDuty, 4 servers attached to change record

Step 3: Policy Review

Engine: OPA / Policy Engine
Mode: Automated
Checks performed:
- ITSM ticket validated ✓
- Maintenance window confirmed ✓
- Playbook is pre-approved for CVE class ✓
- Rollback plan present ✓
- Policy check PASSED — proceeding ✓

Step 4: Patch and Reboot

Playbook: patch_and_reboot.yml
Strategy: Rolling (1 at a time)
Actions:
- Monitoring silenced for maintenance ✓
- prod-web-01 patched and rebooted ✓
- prod-web-02 patched and rebooted ✓
- prod-api-01 patched and rebooted ✓
- prod-db-01 drained, patched and rebooted ✓
- Health checks passed on all servers ✓
- Monitoring restored ✓

Step 5: Close and Notify

ITSM: Close CHG0012847
Notify: App owners, SRE lead
Actions:
- ITSM ticket closed ✓
- App owners notified — all clear ✓
- CMDB records updated ✓
- Compliance report filed ✓

OpenClaw workflow in progress - first steps

The OpenClaw Control Panel

The live demo showed OpenClaw’s control interface with:

Agent name: sre-sally
Model: Claude Sonnet 4.6 (litellm)
Session: heartbeat
Sidebar sections: Chat, Control (Overview, Channels, Instances, Sessions, Usage, Cron Jobs), Agent (Agents, Skills, Nodes), Settings (Config, Communications, Appearance, Automation, Infrastructure, AI & Agents), Docs

OpenClaw Control Panel - sre-sally agent

Agent Interaction

The agent communicates naturally:

“On it. Let me check the AAP MCP server for the right job to run. Let me handle this directly.”

Tool calls visible in the chat:

memory_search
runtime_search
runtime_exec

OpenClaw agent using MCP tools

Change Management Results

After the playbook completed, the Change Management record showed:

Change Record: CHG9679226
Type: Standard
Priority: 3
Assignment Group: Linux Operations
State: ✅ Closed — Successful

Kernel Upgrade Details

| Field | Value | |