tfsec
terraform-provider-azurerm
Our great sponsors
tfsec | terraform-provider-azurerm | |
---|---|---|
7 | 83 | |
2,991 | 4,397 | |
- | 1.4% | |
9.4 | 10.0 | |
almost 3 years ago | 1 day ago | |
Go | Go | |
MIT License | Mozilla Public License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
tfsec
-
Terraform in AWS
Using pre-commit framework with terraform repository, will help your code to be kept clean, formated, updated document and checked for tf security issues (optional with tfsec) before committing and pushing the code to git source.
-
Terraforming in 2021 – new features, testing and compliance
Here again more than one tool exists to assist. We will highlight two of the most popular ones here: tfsec and checkov. Both provide a predefined set of checks that they use to inspect your code, allowing to explicitly open exceptions (if you really want to) by annotating your code with comments, and adjust the configuration to ignore some modules, for example.
-
How FirstPort manage GitHub, using code stored in GitHub
An additional benefit of using a CI workflow is adding automated tests. In this scenario, I’ve added a step leveraging tfsec to scan for static code vulnerabilities. In the example below, tfsec warns against creating an Azure network security rule which is fully open. This will halt and fail the workflow unless I provide an ignore comment to accept the warning.
-
Terraform v15.0 with AWS (EKS deployment)
· Provision an EKS Cluster (AWS) · Terraform v15.0 · Terraform Registry · Pre-Commit · Terraform Pre-commit · Terraform-docs · Tflint · Tfsec
-
A way to restrict options for devs in AWS
Using terraform, create a skeleton directory that they can review for how EC2 instances should be created. Use tools like https://github.com/tfsec/tfsec or other scanners/linters to validate that your developers followed this process and didn't uncheck something.
-
Terraform VMware vSphere Provider - is it worth it?
I know tfsec (https://github.com/tfsec/tfsec) which is pretty good for AWS resources but I think vSphere resources are not implemented.
-
Gopher Gold #15 - Wed Oct 14 2020
tfsec/tfsec (Go): 🔒🌍 Static analysis powered security scanner for your terraform code
terraform-provider-azurerm
- Private Endpoints as part of resource declaration
-
azurerm_linux_virtual_machine, datadisks and cloud-init
So this is doing my head in. Related to https://github.com/hashicorp/terraform-provider-azurerm/issues/6117
-
A Step-by-Step Guide on Creating a Resource Group, Virtual Network and Subnet in Azure with Terraform.
https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs
- 409 Error in creating Azure diagnostic setting
-
How to Set Up an Azure Kubernetes Service Cluster with Terraform
There are different Terraform Providers that enable Terraform to interact with Microsoft Azure. The most common one are Azure Stack, AzureDevops, AzureRM, AzAPI and AzureAD.. In this tutorial, we use the AzureRM Terraform Provider. Let's create a Terraform file for the AzureRM Terraform Provider.
-
Azurerm Import Windows Virtual Machine into statefile
Yeah we imported all the related resources. I could now find an issue, which exactly describes our problem. Unfortunately it is open since 2020: https://github.com/hashicorp/terraform-provider-azurerm/issues/8794
- Update routing intent on Virtual WAN with AzAPI
-
How to get started with Terraform for Azure?
Like other people said, use the azurerm provider docs, they're pretty good. But that's where knowing Azure comes in handy because you'll have to figure out what TF resource to use to accomplish a given goal.
-
How hard is terraform to learn?
It’s not difficult at all syntactically. But you must understand the provider you are automating. So your azure knowledge is key in this case. Read the Azure provider docs and you will be easily able to put something together. https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs
What are some alternatives?
checkov - Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
terraform-provider-azuread - Terraform provider for Azure Active Directory
tflint - A Pluggable Terraform Linter
terraform-provider-grafana - Terraform Grafana provider
terrascan - Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
AdGuardHome - Network-wide ads & trackers blocking DNS server
atlantis - Terraform Pull Request Automation
sops - Simple and flexible tool for managing secrets
pre-commit-hooks - Some out-of-the-box hooks for pre-commit
terraform-provider-lastpass - Terraform Lastpass provider
terraform-aws-gitlab-runner - Terraform module for AWS GitLab runners on ec2 (spot) instances
buildah - A tool that facilitates building OCI images.