We have free rundeck. And it is pretty lame. But the basic problem is we want to setup permission escalation. We write the scripts that do things, and control who can run them, and how they can run them. Also keep an audit trail of who ran what. rundeck does this, but the free version is pretty terrible. And the pay version is absurdly expensive.
One example would be some specific queries on the production databases to look up information that is okay for devs to look up. And which would be part of incident response. Another is some limited and very specific kubernetes actions on the prod cluster...