2021-10-26 14:12:01 +03:00
|
|
|
- id: infracost_breakdown
|
|
|
|
|
name: Infracost breakdown
|
2024-01-17 00:44:43 +01:00
|
|
|
description: Check OpenTofu infrastructure cost
|
2022-01-06 17:09:51 +02:00
|
|
|
entry: hooks/infracost_breakdown.sh
|
2021-10-26 14:12:01 +03:00
|
|
|
language: script
|
|
|
|
|
require_serial: true
|
|
|
|
|
files: \.(tf(vars)?|hcl)$
|
|
|
|
|
exclude: \.terraform\/.*$
|
|
|
|
|
|
2024-01-17 00:44:43 +01:00
|
|
|
- id: tofu_fmt
|
|
|
|
|
name: OpenTofu fmt
|
|
|
|
|
description: Rewrites all OpenTofu configuration files to a canonical format.
|
|
|
|
|
entry: hooks/tofu_fmt.sh
|
2018-01-15 16:12:51 +01:00
|
|
|
language: script
|
|
|
|
|
files: (\.tf|\.tfvars)$
|
|
|
|
|
exclude: \.terraform\/.*$
|
2018-01-24 12:13:51 +01:00
|
|
|
|
2024-01-17 00:56:38 +01:00
|
|
|
- id: tofu_docs
|
|
|
|
|
name: OpenTofu docs
|
2018-05-16 20:04:48 +02:00
|
|
|
description: Inserts input and output documentation into README.md (using terraform-docs).
|
2019-02-08 15:24:06 -08:00
|
|
|
require_serial: true
|
2024-01-17 01:10:38 +01:00
|
|
|
entry: hooks/tofu_docs.sh
|
2018-12-11 20:21:49 +01:00
|
|
|
language: script
|
2021-09-17 15:48:24 +01:00
|
|
|
files: (\.tf|\.terraform\.lock\.hcl)$
|
2018-12-11 20:21:49 +01:00
|
|
|
exclude: \.terraform\/.*$
|
|
|
|
|
|
2024-01-17 00:56:38 +01:00
|
|
|
- id: tofu_docs_without_aggregate_type_defaults
|
|
|
|
|
name: OpenTofu docs (without aggregate type defaults)
|
2020-09-23 22:11:09 +02:00
|
|
|
description: Inserts input and output documentation into README.md (using terraform-docs). Identical to terraform_docs.
|
2019-02-08 15:24:06 -08:00
|
|
|
require_serial: true
|
2024-01-17 00:56:38 +01:00
|
|
|
entry: hooks/tofu_docs.sh
|
2018-05-16 20:04:48 +02:00
|
|
|
language: script
|
|
|
|
|
files: (\.tf)$
|
|
|
|
|
exclude: \.terraform\/.*$
|
|
|
|
|
|
2024-01-17 01:10:38 +01:00
|
|
|
- id: tofu_docs_replace
|
|
|
|
|
name: OpenTofu docs (overwrite README.md)
|
2019-06-17 13:09:31 +02:00
|
|
|
description: Overwrite content of README.md with terraform-docs.
|
2019-02-08 15:24:06 -08:00
|
|
|
require_serial: true
|
2018-12-13 22:16:01 -05:00
|
|
|
entry: terraform_docs_replace
|
2019-02-08 15:24:06 -08:00
|
|
|
language: python
|
2018-12-13 22:16:01 -05:00
|
|
|
files: (\.tf)$
|
|
|
|
|
exclude: \.terraform\/.*$
|
|
|
|
|
|
2024-01-17 00:44:43 +01:00
|
|
|
- id: tofu_validate
|
|
|
|
|
name: OpenTofu validate
|
|
|
|
|
description: Validates all OpenTofu configuration files.
|
2021-02-20 20:18:07 +01:00
|
|
|
require_serial: true
|
2024-01-17 00:44:43 +01:00
|
|
|
entry: hooks/tofu_validate.sh
|
2018-01-24 12:13:51 +01:00
|
|
|
language: script
|
|
|
|
|
files: (\.tf|\.tfvars)$
|
|
|
|
|
exclude: \.terraform\/.*$
|
2019-08-20 20:38:40 +02:00
|
|
|
|
2024-01-17 01:10:38 +01:00
|
|
|
- id: tofu_providers_lock
|
2024-01-17 00:44:43 +01:00
|
|
|
name: Lock OpenTofu provider versions
|
2021-10-04 12:16:15 +01:00
|
|
|
description: Updates provider signatures in dependency lock files.
|
|
|
|
|
require_serial: true
|
2024-01-17 00:44:43 +01:00
|
|
|
entry: hooks/tofu_providers_lock.sh
|
2021-10-04 12:16:15 +01:00
|
|
|
language: script
|
|
|
|
|
files: (\.terraform\.lock\.hcl)$
|
|
|
|
|
exclude: \.terraform\/.*$
|
|
|
|
|
|
2024-01-17 01:10:38 +01:00
|
|
|
- id: tofu_tflint
|
2024-01-17 00:44:43 +01:00
|
|
|
name: OpenTofu validate with tflint
|
|
|
|
|
description: Validates all OpenTofu configuration files with TFLint.
|
2021-10-01 13:29:07 +02:00
|
|
|
require_serial: true
|
2024-01-17 01:10:38 +01:00
|
|
|
entry: hooks/tofu_tflint.sh
|
2019-08-20 22:31:28 +03:00
|
|
|
language: script
|
|
|
|
|
files: (\.tf|\.tfvars)$
|
|
|
|
|
exclude: \.terraform\/.*$
|
|
|
|
|
|
2019-08-20 20:38:40 +02:00
|
|
|
- id: terragrunt_fmt
|
|
|
|
|
name: Terragrunt fmt
|
|
|
|
|
description: Rewrites all Terragrunt configuration files to a canonical format.
|
2022-01-06 17:09:51 +02:00
|
|
|
entry: hooks/terragrunt_fmt.sh
|
2019-08-20 20:38:40 +02:00
|
|
|
language: script
|
|
|
|
|
files: (\.hcl)$
|
|
|
|
|
exclude: \.terraform\/.*$
|
2020-04-23 09:56:33 -05:00
|
|
|
|
2020-08-19 20:01:42 +10:00
|
|
|
- id: terragrunt_validate
|
|
|
|
|
name: Terragrunt validate
|
|
|
|
|
description: Validates all Terragrunt configuration files.
|
2022-01-06 17:09:51 +02:00
|
|
|
entry: hooks/terragrunt_validate.sh
|
2020-08-19 20:01:42 +10:00
|
|
|
language: script
|
|
|
|
|
files: (\.hcl)$
|
|
|
|
|
exclude: \.terraform\/.*$
|
|
|
|
|
|
2024-01-17 01:10:38 +01:00
|
|
|
- id: tofu_tfsec
|
|
|
|
|
name: OpenTofu validate with tfsec (deprecated, use "tofu_trivy")
|
2024-01-17 00:44:43 +01:00
|
|
|
description: Static analysis of OpenTofu templates to spot potential security issues.
|
2021-10-14 14:35:19 +03:00
|
|
|
require_serial: true
|
2024-01-17 01:10:38 +01:00
|
|
|
entry: hooks/tofu_tfsec.sh
|
2023-09-15 18:44:09 +03:00
|
|
|
files: \.tf(vars)?$
|
2020-04-23 09:56:33 -05:00
|
|
|
language: script
|
2020-09-08 15:10:56 +02:00
|
|
|
|
2024-01-17 01:10:38 +01:00
|
|
|
- id: tofu_trivy
|
2024-01-17 00:44:43 +01:00
|
|
|
name: OpenTofu validate with trivy
|
|
|
|
|
description: Static analysis of OpenTofu templates to spot potential security issues.
|
2023-12-15 15:54:13 +01:00
|
|
|
require_serial: true
|
2024-01-17 01:10:38 +01:00
|
|
|
entry: hooks/tofu_trivy.sh
|
2023-12-15 15:54:13 +01:00
|
|
|
files: \.tf(vars)?$
|
|
|
|
|
language: script
|
|
|
|
|
|
2020-09-08 15:10:56 +02:00
|
|
|
- id: checkov
|
2024-01-17 01:10:38 +01:00
|
|
|
name: checkov (deprecated, use "tofu_checkov")
|
2024-01-17 00:44:43 +01:00
|
|
|
description: Runs checkov on OpenTofu templates.
|
2022-02-10 17:51:09 +02:00
|
|
|
entry: checkov -d .
|
2020-09-08 15:10:56 +02:00
|
|
|
language: python
|
|
|
|
|
pass_filenames: false
|
|
|
|
|
always_run: false
|
|
|
|
|
files: \.tf$
|
2021-12-21 21:18:52 +02:00
|
|
|
exclude: \.terraform\/.*$
|
2020-09-08 15:10:56 +02:00
|
|
|
require_serial: true
|
2021-04-22 16:15:00 -04:00
|
|
|
|
2024-01-17 00:44:43 +01:00
|
|
|
- id: tofu_checkov
|
2022-04-15 18:26:33 +01:00
|
|
|
name: Checkov
|
2024-01-17 00:44:43 +01:00
|
|
|
description: Runs checkov on OpenTofu templates.
|
|
|
|
|
entry: hooks/tofu_checkov.sh
|
2022-04-15 18:26:33 +01:00
|
|
|
language: script
|
|
|
|
|
always_run: false
|
|
|
|
|
files: \.tf$
|
|
|
|
|
exclude: \.terraform\/.*$
|
|
|
|
|
require_serial: true
|
|
|
|
|
|
2024-01-17 01:10:38 +01:00
|
|
|
- id: tofu_wrapper_module_for_each
|
|
|
|
|
name: OpenTofu wrapper with for_each in module
|
2024-01-17 00:44:43 +01:00
|
|
|
description: Generate OpenTofu wrappers with for_each in module.
|
2024-01-17 01:10:38 +01:00
|
|
|
entry: hooks/tofu_wrapper_module_for_each.sh
|
2022-05-02 19:59:08 +02:00
|
|
|
language: script
|
|
|
|
|
pass_filenames: false
|
|
|
|
|
always_run: false
|
|
|
|
|
require_serial: true
|
|
|
|
|
files: \.tf$
|
|
|
|
|
exclude: \.terraform\/.*$
|
|
|
|
|
|
2021-04-22 16:15:00 -04:00
|
|
|
- id: terrascan
|
|
|
|
|
name: terrascan
|
2024-01-17 00:44:43 +01:00
|
|
|
description: Runs terrascan on OpenTofu templates.
|
2021-04-22 16:15:00 -04:00
|
|
|
language: script
|
2022-01-06 17:09:51 +02:00
|
|
|
entry: hooks/terrascan.sh
|
2021-12-22 19:44:53 +01:00
|
|
|
files: \.tf$
|
|
|
|
|
exclude: \.terraform\/.*$
|
2021-12-21 21:50:12 +02:00
|
|
|
require_serial: true
|
2022-04-13 10:25:04 -07:00
|
|
|
|
|
|
|
|
- id: tfupdate
|
|
|
|
|
name: tfupdate
|
2024-01-17 00:44:43 +01:00
|
|
|
description: Runs tfupdate on OpenTofu templates.
|
2022-04-13 10:25:04 -07:00
|
|
|
language: script
|
|
|
|
|
entry: hooks/tfupdate.sh
|
|
|
|
|
args:
|
|
|
|
|
- --args=terraform
|
|
|
|
|
files: \.tf$
|
|
|
|
|
require_serial: true
|
