-
Notifications
You must be signed in to change notification settings - Fork 11
/
tfaction-root.yaml
48 lines (42 loc) · 1.63 KB
/
tfaction-root.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
---
plan_workflow_name: pull_request_target # Mandatory
label_prefixes:
tfmigrate: "migrate:"
# skip_create_pr: true
drift_detection:
# issue_repo_owner:
# issue_repo_name:
minimum_detection_interval: 120 # 120 hours (5 days)
num_of_issues: 3 # 3 working directories are checked per workflow run. By default 1 working directory is checked.
tflint:
enabled: true
fix: true # Auto fix by tflint --fix
# tfsec:
# enabled: false
# trivy:
# enabled: true
# scaffold_working_directory:
# skip_adding_aqua_packages: true
aqua:
update_checksum:
# Update aqua-checksums.json in `setup` action
enabled: true # default is false
skip_push: false # default is false
prune: true # default is false
target_groups:
- working_directory: github/services/
target: github/
aws_region: ap-northeast-1 # CHANGEME Fix the region if necessary
s3_bucket_name_tfmigrate_history: '<S3 Bucket Name for tfmigrate history files>' # CHANGEME
template_dir: templates/github
# terraform_plan_config:
# aws_assume_role_arn: arn:aws:iam::000000000000:role/GitHubActions_Terraform_github_terraform_plan # CHANGEME
# tfmigrate_plan_config:
# aws_assume_role_arn: arn:aws:iam::000000000000:role/GitHubActions_Terraform_github_tfmigrate_plan # CHANGEME
# terraform_apply_config:
# aws_assume_role_arn: arn:aws:iam::000000000000:role/GitHubActions_Terraform_github_terraform_apply # CHANGEME
# tfmigrate_apply_config:
# aws_assume_role_arn: arn:aws:iam::000000000000:role/GitHubActions_Terraform_github_tfmigrate_apply # CHANGEME
- working_directory: tfe/
target: tfe/
template_dir: templates/tfe