✨(tf): remove pim group #33

Workflow file for this run

.github/workflows/terraform.yaml at 89f5a89

	name: Terraform
	on:
	push:
	paths-ignore:
	- 'README.md'
	workflow_dispatch:

	concurrency: main

	permissions: write-all

	env:
	ARM_USE_OIDC: true
	ARM_USE_AZUREAD: true
	ARM_TENANT_ID: ${{ secrets.azure_tenant_id }}
	ARM_SUBSCRIPTION_ID: ${{ secrets.azure_subscription_id }}
	ARM_CLIENT_ID: ${{ secrets.azure_client_id }}

	jobs:
	terraform-workflow:
	runs-on: ubuntu-latest
	steps:
	- uses: actions/checkout@v4
	- name: Setup Terraform
	uses: hashicorp/[email protected]
	- name: Az CLI login
	uses: Azure/[email protected]
	with:
	client-id: ${{ secrets.azure_client_id }}
	tenant-id: ${{ secrets.azure_tenant_id }}
	subscription-id: ${{ secrets.azure_subscription_id }}
	# - name: Run Trivy vulnerability scanner in IaC mode
	# uses: aquasecurity/trivy-action@master
	# with:
	# scan-type: 'config'
	# scan-ref: './terraform'
	# format: sarif
	# output: trivy-results.sarif
	# - name: Upload Trivy scan results to GitHub Security tab
	# uses: github/codeql-action/upload-sarif@v2
	# if: always()
	# with:
	# sarif_file: 'trivy-results.sarif'
	- name: Terraform Init
	working-directory: ./terraform
	run: terraform init
	- name: Terraform Format
	working-directory: ./terraform
	run: terraform fmt -check
	- name: Terraform Validate
	working-directory: ./terraform
	run: terraform validate
	# - name: Terraform Test
	# if: true # testing toogle
	# working-directory: ./terraform
	# run: \|
	# terraform test
	- name: Terraform Plan
	working-directory: ./terraform
	run: \|
	terraform plan -out=tfplan
	terraform-bin show -json -no-color tfplan > tfplan.json
	terraform-bin show -no-color tfplan >> $GITHUB_STEP_SUMMARY
	- name: Terraform Apply
	working-directory: ./terraform
	run: terraform apply tfplan

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

✨(tf): remove pim group #33

Workflow file

✨(tf): remove pim group #33

Jobs

Run details

Workflow file for this run