Skip to content

[PFMENG-2716] fix v2 for dualstack #106

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Feb 6, 2025
Merged

[PFMENG-2716] fix v2 for dualstack #106

merged 1 commit into from
Feb 6, 2025

Conversation

zodilib
Copy link
Contributor

@zodilib zodilib commented Feb 6, 2025

No description provided.

github-advanced-security[bot]
github-advanced-security bot found potential problems Feb 6, 2025
View reviewed changes
.github/workflows/terraform.yaml
node-version: 18

- name: Setup Terraform
uses: hashicorp/setup-terraform@v3

Check warning

Code scanning / CodeQL

Unpinned tag for a non-immutable Action in workflow Medium

Unpinned 3rd party Action 'terraform-ci' step
Uses Step
Loading
uses 'hashicorp/setup-terraform' with ref 'v3', not a pinned commit hash
.github/workflows/terraform.yaml
cli_config_credentials_token: ${{ secrets.TFE_TOKEN }}

- name: Setup Helm
uses: azure/setup-helm@v4

Check warning

Code scanning / CodeQL

Unpinned tag for a non-immutable Action in workflow Medium

Unpinned 3rd party Action 'terraform-ci' step
Uses Step
Loading
uses 'azure/setup-helm' with ref 'v4', not a pinned commit hash
.github/workflows/terraform.yaml
- name: precommit run tflint hooks
id: precommit_run_hooks_all
if: inputs.pre_commit_run_all
uses: pre-commit/action@v3.0.1

Check warning

Code scanning / CodeQL

Unpinned tag for a non-immutable Action in workflow Medium

Unpinned 3rd party Action 'terraform-ci' step
Uses Step: precommit_run_hooks_all
Loading
uses 'pre-commit/action' with ref 'v3.0.1', not a pinned commit hash
.github/workflows/terraform.yaml
key: ${{ runner.os }}-terraform-${{ hashFiles('**/.terraform.lock.hcl') }}

- name: Setup Terraform
uses: hashicorp/setup-terraform@v3

Check warning

Code scanning / CodeQL

Unpinned tag for a non-immutable Action in workflow Medium

Unpinned 3rd party Action 'terraform-ci' step
Uses Step
Loading
uses 'hashicorp/setup-terraform' with ref 'v3', not a pinned commit hash
.github/workflows/terraform.yaml
cli_config_credentials_token: ${{ secrets.TFE_TOKEN }}

- name: Setup Helm
uses: azure/setup-helm@v4

Check warning

Code scanning / CodeQL

Unpinned tag for a non-immutable Action in workflow Medium

Unpinned 3rd party Action 'terraform-ci' step
Uses Step
Loading
uses 'azure/setup-helm' with ref 'v4', not a pinned commit hash
.github/workflows/terraform.yaml
key: ${{ runner.os }}-tflint-${{ hashFiles('.tflint.hcl') }}

- name: Setup TFLint
uses: terraform-linters/setup-tflint@v4

Check warning

Code scanning / CodeQL

Unpinned tag for a non-immutable Action in workflow Medium

Unpinned 3rd party Action 'terraform-ci' step
Uses Step
Loading
uses 'terraform-linters/setup-tflint' with ref 'v4', not a pinned commit hash
.github/workflows/terraform.yaml
- name: precommit run tflint hooks
id: precommit_run_hooks_all
if: inputs.pre_commit_run_all
uses: pre-commit/action@v3.0.1

Check warning

Code scanning / CodeQL

Unpinned tag for a non-immutable Action in workflow Medium

Unpinned 3rd party Action 'terraform-ci' step
Uses Step: precommit_run_hooks_all
Loading
uses 'pre-commit/action' with ref 'v3.0.1', not a pinned commit hash
.github/workflows/terraform.yaml
submodules: ${{ inputs.enable_submodules }}

- name: Run Trivy vulnerability scanner in IaC mode
uses: aquasecurity/trivy-action@0.23.0

Check warning

Code scanning / CodeQL

Unpinned tag for a non-immutable Action in workflow Medium

Unpinned 3rd party Action 'terraform-ci' step
Uses Step
Loading
uses 'aquasecurity/trivy-action' with ref '0.23.0', not a pinned commit hash
.github/workflows/terraform.yaml

- name: Get changed files
id: changed-files
uses: tj-actions/changed-files@v44

Check warning

Code scanning / CodeQL

Unpinned tag for a non-immutable Action in workflow Medium

Unpinned 3rd party Action 'terraform-ci' step
Uses Step: changed-files
Loading
uses 'tj-actions/changed-files' with ref 'v44', not a pinned commit hash
.github/workflows/terraform.yaml

- name: Run Checkov action
id: checkov
uses: bridgecrewio/checkov-action@master

Check warning

Code scanning / CodeQL

Unpinned tag for a non-immutable Action in workflow Medium

Unpinned 3rd party Action 'terraform-ci' step
Uses Step: checkov
Loading
uses 'bridgecrewio/checkov-action' with ref 'master', not a pinned commit hash
@zodilib zodilib merged commit e096b31 into v2 Feb 6, 2025
3 of 4 checks passed
@zodilib zodilib deleted the PFMENG-2785-v2-fix branch February 6, 2025 03:31
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@zodilib