Skip to content

feat!: Initial release. #1

feat!: Initial release.

feat!: Initial release. #1

Workflow file for this run

name: Branch Checks
on:
push:
branches-ignore:
- main
jobs:
lint:
name: Lint updated files
runs-on: ubuntu-latest
steps:
- name: Checkout source code
uses: actions/checkout@v4
- uses: actions/cache@v4
name: Cache plugin directory
with:
path: ~/.tflint.d/plugins
key: tflint-${{ hashFiles('.tflint.hcl') }}
- uses: terraform-linters/setup-tflint@v4
name: Setup TFLint
- name: Show version
run: tflint --version
- name: Init TFLint
run: tflint --init
- name: Run TFLint
run: tflint --format compact --recursive
trivy:
name: Run security scan
runs-on: ubuntu-latest
steps:
- name: Checkout source code
uses: actions/checkout@v4
- name: Run Trivy vulnarability scanner
uses: aquasecurity/trivy-action@master
with:
scan-type: config
format: sarif
output: "trivy-results.sarif"
- name: Parse SARIF file
# Always run this step, even if a previous step failed.
if: always()
uses: Ayrx/sarif_to_github_annotations@v0.2.2
with:
sarif_file: "trivy-results.sarif"