tfsec
terraform-aws-gitlab-runner
Our great sponsors
tfsec | terraform-aws-gitlab-runner | |
---|---|---|
7 | 4 | |
2,991 | 558 | |
- | 1.1% | |
9.4 | 9.1 | |
almost 3 years ago | 9 days ago | |
Go | HCL | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
tfsec
-
Terraform in AWS
Using pre-commit framework with terraform repository, will help your code to be kept clean, formated, updated document and checked for tf security issues (optional with tfsec) before committing and pushing the code to git source.
-
Terraforming in 2021 – new features, testing and compliance
Here again more than one tool exists to assist. We will highlight two of the most popular ones here: tfsec and checkov. Both provide a predefined set of checks that they use to inspect your code, allowing to explicitly open exceptions (if you really want to) by annotating your code with comments, and adjust the configuration to ignore some modules, for example.
-
How FirstPort manage GitHub, using code stored in GitHub
An additional benefit of using a CI workflow is adding automated tests. In this scenario, I’ve added a step leveraging tfsec to scan for static code vulnerabilities. In the example below, tfsec warns against creating an Azure network security rule which is fully open. This will halt and fail the workflow unless I provide an ignore comment to accept the warning.
-
Terraform v15.0 with AWS (EKS deployment)
· Provision an EKS Cluster (AWS) · Terraform v15.0 · Terraform Registry · Pre-Commit · Terraform Pre-commit · Terraform-docs · Tflint · Tfsec
-
A way to restrict options for devs in AWS
Using terraform, create a skeleton directory that they can review for how EC2 instances should be created. Use tools like https://github.com/tfsec/tfsec or other scanners/linters to validate that your developers followed this process and didn't uncheck something.
-
Terraform VMware vSphere Provider - is it worth it?
I know tfsec (https://github.com/tfsec/tfsec) which is pretty good for AWS resources but I think vSphere resources are not implemented.
-
Gopher Gold #15 - Wed Oct 14 2020
tfsec/tfsec (Go): 🔒🌍 Static analysis powered security scanner for your terraform code
terraform-aws-gitlab-runner
- How to automate gitlab runner autoscaling on ec2 instances
-
What is the SIMPLEST way to deploy a Gitlab Runner on AWS?
i don't plan to do it often. I had a look at https://github.com/cattle-ops/terraform-aws-gitlab-runner and I found it massively over-engineered. third party terraform is always just "urgh" imo.
-
🦊 GitLab Runners topologies : pros and cons
It can be easily installed using infra-as-code with a Terraform repo.
-
Best way to host GL Runners on AWS
Spot Runners on EC2 via https://github.com/npalm/terraform-aws-gitlab-runner Pros: Terraform, set up cache aswell The main issues I see docker+machine seems to be generally deprecated, GL does minimal maintenance The TF module currently doesnt support provider V4 with the major S3 bucket refactor (granted this is just time)
What are some alternatives?
checkov - Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
aws
tflint - A Pluggable Terraform Linter
terraform-aws-ecs-private-ethereum-blockchain - A Terraform module to setup a private Ethereum network on Amazon ECS
terrascan - Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
k8s-aws-terraform-cluster - Deploy an high available Kubernetes (k8s) cluster on Amazon AWS
atlantis - Terraform Pull Request Automation
tfsec - Security scanner for your Terraform code
pre-commit-hooks - Some out-of-the-box hooks for pre-commit
terraform_ec2_spot_instance - Use terraform to create an AWS EC2 spot instance
pre-commit - A framework for managing and maintaining multi-language pre-commit hooks.
terraform-with-comments - Archived: Reusable workflow to interface Terraform CLI with PR comments via GitHub Actions CI/CD.