Merge pull request #4 from synapsestudios/required-provider-fix

Change provider block to required provider

Author: dragonfleas

.github/workflows/documentation.yml

@@ -0,0 +1,19 @@
+name: Generate terraform docs
+on:
+  workflow_call:
+
+jobs:
+  docs:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v3
+        with:
+          ref: ${{ github.event.pull_request.head.ref }}
+
+      - name: Render terraform docs inside the README.md and push changes back to PR branch
+        uses: terraform-docs/gh-actions@v1.0.0
+        with:
+          working-dir: .
+          output-file: README.md
+          output-method: inject
+          git-push: "true"

.github/workflows/terraform.yml

@@ -1,16 +1,16 @@
-name: "Terraform Format"
+name: "Terraform"
 on:
-  push:
-    branches:
-      - "*"
-      - "*/*"
-      - "**"
   pull_request:
     branches:
       - "*"
       - "*/*"
       - "**"
 
 jobs:
-  terraform_format_test:
-    uses: ./.github/workflows/terraformformat.yml
+  terraform-format-test:
+    uses: ./.github/workflows/terraform_format.yml
+  tfsec-pr-commenter:
+    uses: ./.github/workflows/tfsec_pr_commenter.yml
+  terraform-docs:
+    needs: [terraform-format-test, tfsec-pr-commenter]
+    uses: ./.github/workflows/documentation.yml

.github/workflows/terraformformat.yml renamed to .github/workflows/terraform_format.yml

@@ -17,7 +17,7 @@ jobs:
       - name: Setup Terraform
         uses: hashicorp/setup-terraform@v1
         with:
-          terraform_version: 0.12.31
+          terraform_version: 1.3.7
 
       - name: Terraform Format
         id: fmt

.github/workflows/tfsec_pr_commenter.yml

@@ -0,0 +1,21 @@
+name: tfsec-pr-commenter
+on:
+  workflow_call:
+jobs:
+  tfsec:
+    name: tfsec PR commenter
+    runs-on: ubuntu-latest
+
+    permissions:
+      contents: read
+      pull-requests: write
+
+    steps:
+      - name: Clone repo
+        uses: actions/checkout@master
+      - name: tfsec
+        uses: aquasecurity/tfsec-pr-commenter-action@v1.2.0
+        with:
+          tfsec_args: --soft-fail
+          working_directory: "" # Workaround for PR https://github.com/aquasecurity/tfsec-pr-commenter-action/issues/90
+          github_token: ${{ github.token }}

README.md

@@ -6,48 +6,40 @@ https://docs.aws.amazon.com/AmazonECR/latest/userguide/repository-create.html
 
 https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/US_SetupSNS.html
 
+<!-- BEGIN_TF_DOCS -->
 ## Requirements
 
-No requirements.
+| Name | Version |
+|------|---------|
+| <a name="requirement_aws"></a> [aws](#requirement\_aws) | >= 4.0 |
 
 ## Providers
 
-The following providers are used by this module:
-
-- <a name="provider_aws"></a> [aws](#provider_aws) (4.26.0)
+| Name | Version |
+|------|---------|
+| <a name="provider_aws"></a> [aws](#provider\_aws) | 4.26.0 |
 
 ## Modules
 
 No modules.
 
 ## Resources
 
-The following resources are used by this module:
-
-- [aws_ecr_lifecycle_policy.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ecr_lifecycle_policy) (resource)
-- [aws_ecr_repository.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ecr_repository) (resource)
-- [aws_iam_policy_document.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/iam_policy_document) (data source)
-
-## Required Inputs
-
-The following input variables are required:
-
-### <a name="input_allowed_arns"></a> [allowed_arns](#input_allowed_arns)
-
-Description: The list of IAM user arns that are allowed to push and pull to and from the repository
-
-Type: `list(string)`
-
-### <a name="input_name"></a> [name](#input_name)
-
-Description: The name of the image repository that we are going to create
-
-Type: `string`
+| Name | Type |
+|------|------|
+| [aws_ecr_lifecycle_policy.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ecr_lifecycle_policy) | resource |
+| [aws_ecr_repository.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ecr_repository) | resource |
+| [aws_ecr_repository_policy.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ecr_repository_policy) | resource |
+| [aws_iam_policy_document.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/iam_policy_document) | data source |
 
-## Optional Inputs
+## Inputs
 
-No optional inputs.
+| Name | Description | Type | Default | Required |
+|------|-------------|------|---------|:--------:|
+| <a name="input_allowed_arns"></a> [allowed\_arns](#input\_allowed\_arns) | The list of IAM user arns that are allowed to push and pull to and from the repository | `list(string)` | n/a | yes |
+| <a name="input_name"></a> [name](#input\_name) | The name of the image repository that we are going to create | `string` | n/a | yes |
 
 ## Outputs
 
 No outputs.
+<!-- END_TF_DOCS -->

main.tf

@@ -1,5 +1,10 @@
-provider "aws" {
-  region = var.region
+terraform {
+  required_providers {
+    aws = {
+      source  = "hashicorp/aws"
+      version = ">= 4.0"
+    }
+  }
 }
 
 resource "aws_ecr_repository" "this" {

variables.tf

@@ -8,9 +8,3 @@ variable "allowed_arns" {
   description = "The list of IAM user arns that are allowed to push and pull to and from the repository"
 }
 
-variable "region" {
-  type        = string
-  default     = "us-west-2"
-  description = "Define the region you'd wish the cloudtrail resources to be created in, example: us-west-2"
-}
-