Description
Template pour utiliser tfsec afin
d'avoir un check de sécurité sur notre code Terraform.
Utilisation
.gitlab-ci.yml
---
stages:
- tests
include:
- remote: 'https://gitlab-templates.galilee.fr/tfsec/0.1.3.yml'
Variables accessibles
| Name | Description | Default |
|---|---|---|
TFSEC_CHECK_DIR |
The directory to check for Terraform files. | terraform |
TFSEC_CONFIG_FILE |
The path or a remote link for the configuration file. See the documentation. |
tfsec.config.yml |
TFSEC_FORMATS |
Outputs format list. Each format should be separate by a comma and are saved as artifacts. | sarif |
TFSEC_MIN_SEVERITY |
The minimum severity to report. One of CRITICAL, HIGH, MEDIUM, LOW. | LOW |
TFSEC_REGO_DIR |
The directory to check for custom Rego policies, if you wants to add your own rules. See the documentation. | rego_policies |
TFSEC_VERSION |
The version for the tfsec CLI. | 1.27.6 |
ADDITIONAL_OPTIONS |
Additional options for the tfsec CLI. | |
IMAGE_TAG |
The default tag for the docker image | 18-alpine |
Historique
v0.1.3
Import du template de R2Devops.