Tips-Of-Mine/terraform-github-actions
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update GitHub Actions workflows to use node20 (#24)

Browse Source
This commit is contained in:
T.J. Corrigan 2024-03-28 08:08:25 -05:00 committed by GitHub
parent 2a0f34f27c
commit f4eb48d54c
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
4 changed files with 21 additions and 16 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
.github/workflows/tf-drift.yml vendored
View File

@ -30,11 +30,11 @@ jobs:
steps: steps:
# Checkout the repository to the GitHub Actions runner # Checkout the repository to the GitHub Actions runner
- name: Checkout - name: Checkout
uses: actions/checkout@v3 uses: actions/checkout@v4
# Install the latest version of the Terraform CLI # Install the latest version of the Terraform CLI
- name: Setup Terraform - name: Setup Terraform
uses: hashicorp/setup-terraform@v2 uses: hashicorp/setup-terraform@v3
with: with:
terraform_wrapper: false terraform_wrapper: false
@ -61,7 +61,7 @@ jobs:
# Save plan to artifacts # Save plan to artifacts
- name: Publish Terraform Plan - name: Publish Terraform Plan
uses: actions/upload-artifact@v3 uses: actions/upload-artifact@v4
with: with:
name: tfplan name: tfplan
path: tfplan path: tfplan
@ -93,7 +93,7 @@ jobs:
# If changes are detected, create a new issue # If changes are detected, create a new issue
- name: Publish Drift Report - name: Publish Drift Report
if: steps.tf-plan.outputs.exitcode == 2 if: steps.tf-plan.outputs.exitcode == 2
uses: actions/github-script@v6 uses: actions/github-script@v7
env: env:
SUMMARY: "${{ steps.tf-plan-string.outputs.summary }}" SUMMARY: "${{ steps.tf-plan-string.outputs.summary }}"
with: with:
@ -141,7 +141,7 @@ jobs:
# If changes aren't detected, close any open drift issues # If changes aren't detected, close any open drift issues
- name: Publish Drift Report - name: Publish Drift Report
if: steps.tf-plan.outputs.exitcode == 0 if: steps.tf-plan.outputs.exitcode == 0
uses: actions/github-script@v6 uses: actions/github-script@v7
with: with:
github-token: ${{ secrets.GITHUB_TOKEN }} github-token: ${{ secrets.GITHUB_TOKEN }}
script: | script: |

14
.github/workflows/tf-plan-apply.yml vendored
View File

@ -33,11 +33,11 @@ jobs:
steps: steps:
# Checkout the repository to the GitHub Actions runner # Checkout the repository to the GitHub Actions runner
- name: Checkout - name: Checkout
uses: actions/checkout@v3 uses: actions/checkout@v4
# Install the latest version of the Terraform CLI # Install the latest version of the Terraform CLI
- name: Setup Terraform - name: Setup Terraform
uses: hashicorp/setup-terraform@v2 uses: hashicorp/setup-terraform@v3
with: with:
terraform_wrapper: false terraform_wrapper: false
@ -69,7 +69,7 @@ jobs:
# Save plan to artifacts # Save plan to artifacts
- name: Publish Terraform Plan - name: Publish Terraform Plan
uses: actions/upload-artifact@v3 uses: actions/upload-artifact@v4
with: with:
name: tfplan name: tfplan
path: tfplan path: tfplan
@ -101,7 +101,7 @@ jobs:
# If this is a PR post the changes # If this is a PR post the changes
- name: Push Terraform Output to PR - name: Push Terraform Output to PR
if: github.ref != 'refs/heads/main' if: github.ref != 'refs/heads/main'
uses: actions/github-script@v6 uses: actions/github-script@v7
env: env:
SUMMARY: "${{ steps.tf-plan-string.outputs.summary }}" SUMMARY: "${{ steps.tf-plan-string.outputs.summary }}"
with: with:
@ -125,11 +125,11 @@ jobs:
steps: steps:
# Checkout the repository to the GitHub Actions runner # Checkout the repository to the GitHub Actions runner
- name: Checkout - name: Checkout
uses: actions/checkout@v3 uses: actions/checkout@v4
# Install the latest version of Terraform CLI and configure the Terraform CLI configuration file with a Terraform Cloud user API token # Install the latest version of Terraform CLI and configure the Terraform CLI configuration file with a Terraform Cloud user API token
- name: Setup Terraform - name: Setup Terraform
uses: hashicorp/setup-terraform@v2 uses: hashicorp/setup-terraform@v3
# Initialize a new or existing Terraform working directory by creating initial files, loading any remote state, downloading modules, etc. # Initialize a new or existing Terraform working directory by creating initial files, loading any remote state, downloading modules, etc.
- name: Terraform Init - name: Terraform Init
@ -137,7 +137,7 @@ jobs:
# Download saved plan from artifacts # Download saved plan from artifacts
- name: Download Terraform Plan - name: Download Terraform Plan
uses: actions/download-artifact@v3 uses: actions/download-artifact@v4
with: with:
name: tfplan name: tfplan

11
.github/workflows/tf-unit-tests.yml vendored
View File

@ -3,6 +3,11 @@ name: 'Terraform Unit Tests'
on: on:
push: push:
permissions:
security-events: write # Needed to upload-sarif
contents: read # Needed to clone repo
actions: read # Potentially needed for private repositories (see https://github.com/github/codeql-action/issues/2117)
jobs: jobs:
terraform-unit-tests: terraform-unit-tests:
name: 'Terraform Unit Tests' name: 'Terraform Unit Tests'
@ -11,11 +16,11 @@ jobs:
steps: steps:
# Checkout the repository to the GitHub Actions runner # Checkout the repository to the GitHub Actions runner
- name: Checkout - name: Checkout
uses: actions/checkout@v3 uses: actions/checkout@v4
# Install the latest version of Terraform CLI and configure the Terraform CLI configuration file with a Terraform Cloud user API token # Install the latest version of Terraform CLI and configure the Terraform CLI configuration file with a Terraform Cloud user API token
- name: Setup Terraform - name: Setup Terraform
uses: hashicorp/setup-terraform@v2 uses: hashicorp/setup-terraform@v3
# Initialize a new or existing Terraform working directory by creating initial files, loading any remote state, downloading modules, etc. # Initialize a new or existing Terraform working directory by creating initial files, loading any remote state, downloading modules, etc.
- name: Terraform Init - name: Terraform Init
@ -39,7 +44,7 @@ jobs:
# Upload results to GitHub Advanced Security # Upload results to GitHub Advanced Security
- name: Upload SARIF file - name: Upload SARIF file
if: success() || failure() if: success() || failure()
uses: github/codeql-action/upload-sarif@v2 uses: github/codeql-action/upload-sarif@v3
with: with:
sarif_file: results.sarif sarif_file: results.sarif
category: checkov category: checkov

2
README.md
View File

@ -72,4 +72,4 @@ To use these workflows in your environment several prerequisite steps are requir
## Additional Resources ## Additional Resources
A companion article detailing how to use GitHub Actions to deploy to Azure using IaC can be found at the [DevOps Resource Center](). `TODO: add link` A companion article detailing how to use GitHub Actions to deploy to Azure using IaC can be found at the [DevOps Resource Center](https://learn.microsoft.com/devops/deliver/iac-github-actions).