Coder Social home page Coder Social logo

darkwizard242 / ansible-role-tfsec Goto Github PK

View Code? Open in Web Editor NEW
4.0 3.0 0.0 99 KB

Ansible role for tfsec. Available on Ansible Galaxy.

Home Page: https://galaxy.ansible.com/darkwizard242/tfsec

License: MIT License

Python 100.00%
ansible ansible-role ansible-galaxy tfsec security-scanner static-analysis terraform-code terraform

ansible-role-tfsec's Introduction

build-test release Ansible Role Ansible Role Ansible Quality Score Quality Gate Status Maintainability Rating Reliability Rating Security Rating GitHub tag (latest SemVer) GitHub repo size

Ansible Role: tfsec

Role to install (by default) tfsec on Debian/Ubuntu and EL systems. tfsec is a static analysis (security based) for scanning terraform code. originally developed by Liam Galvin.

Requirements

None.

Role Variables

Available variables are listed below (located in defaults/main.yml):

Variables list:

tfsec_app: tfsec
tfsec_version: 1.28.5
tfsec_os: linux
tfsec_arch: amd64
tfsec_dl_url: https://github.com/aquasecurity/{{ tfsec_app }}/releases/download/v{{ tfsec_version }}/{{ tfsec_app }}-{{ tfsec_os }}-{{ tfsec_arch }}
tfsec_bin_path: "/usr/local/bin/{{ tfsec_app }}"
tfsec_file_owner: root
tfsec_file_group: root
tfsec_file_mode: '0755'

Variables table:

Variable Description
tfsec_app Defines the app to install i.e. tfsec
tfsec_version Defined to dynamically fetch the desired version to install. Defaults to: 1.28.5
tfsec_os Defines os type. Used for obtaining the correct type of binaries based on OS type. Defaults to: linux
tfsec_arch Defines os architecture. Used to set the correct type of binaries based on OS System Architecture. Defaults to: amd64
tfsec_dl_url Defines URL to download the tfsec binary from.
tfsec_bin_path Defined to dynamically set the appropriate path to store tfsec binary into. Defaults to (as generally available on any user's PATH): /usr/local/bin/tfsec
tfsec_bin_permission_mode Defines the permission mode level for the file.
tfsec_file_owner Owner for the binary file of tfsec.
tfsec_file_group Group for the binary file of tfsec.
tfsec_file_mode Mode for the binary file of tfsec.

Dependencies

None

Example Playbook

For default behaviour of role (i.e. installation of tfsec) in ansible playbooks.

- hosts: servers
  roles:
    - darkwizard242.tfsec

For customizing behavior of role (i.e. specifying the desired tfsec version) in ansible playbooks.

- hosts: servers
  roles:
    - darkwizard242.tfsec
  vars:
    tfsec_version: 0.18.0

For customizing behavior of role (i.e. placing binary of tfsec package in different location) in ansible playbooks.

- hosts: servers
  roles:
    - darkwizard242.tfsec
  vars:
    tfsec_bin_path: /bin/

License

MIT

Author Information

This role was created by Ali Muhammad.

ansible-role-tfsec's People

Contributors

darkwizard242 avatar

Stargazers

avatar avatar avatar

Watchers

avatar avatar avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.