Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[FEATURE REQUEST] Upgrade Terraform to at least v0.12.31 #2706

Closed
10 of 13 tasks
przemyslavic opened this issue Oct 14, 2021 · 2 comments
Closed
10 of 13 tasks

[FEATURE REQUEST] Upgrade Terraform to at least v0.12.31 #2706

przemyslavic opened this issue Oct 14, 2021 · 2 comments
Assignees
@seriva
Labels
area/security area/terraform type/upgrade Task related to component upgrade

Comments

@przemyslavic
Copy link
Collaborator

przemyslavic commented Oct 14, 2021
edited by seriva
Loading

Is your feature request related to a problem? Please describe.
Currently we use Terraform v0.12.6.
This version of Terraform has an outdated GPG key and is unable to verify new provider releases.
HCSEC-2021-12 - Codecov Security Event and HashiCorp GPG Key Exposure

11:03:25 INFO cli.engine.terraform.TerraformCommand - Running: "terraform init -no-color /shared/build/devawsubuflannel/terraform/"
11:03:25 INFO cli.engine.terraform.TerraformCommand - 
11:03:25 INFO cli.engine.terraform.TerraformCommand - Initializing the backend...
11:03:25 INFO cli.engine.terraform.TerraformCommand - 
11:03:25 INFO cli.engine.terraform.TerraformCommand - Initializing provider plugins...
11:03:25 INFO cli.engine.terraform.TerraformCommand - - Checking for available provider plugins...
11:03:25 INFO cli.engine.terraform.TerraformCommand - - Downloading plugin for provider "aws" (hashicorp/aws) 2.26.0...
11:03:28 INFO cli.engine.terraform.TerraformCommand - 
11:03:28 INFO cli.engine.terraform.TerraformCommand - 
11:03:28 INFO cli.engine.terraform.TerraformCommand - Warning: registry.terraform.io: This version of Terraform has an outdated GPG key and is unable to verify new provider releases. Please upgrade Terraform to at least 0.12.31 to receive new provider updates. For details see: https://discuss.hashicorp.com/t/hcsec-2021-12-codecov-security-event-and-hashicorp-gpg-key-exposure/23512
11:03:28 INFO cli.engine.terraform.TerraformCommand - 
11:03:28 INFO cli.engine.terraform.TerraformCommand - 
11:03:28 INFO cli.engine.terraform.TerraformCommand - Terraform has been successfully initialized!
11:03:28 INFO cli.engine.terraform.TerraformCommand - 
11:03:28 INFO cli.engine.terraform.TerraformCommand - You may now begin working with Terraform. Try running "terraform plan" to see
11:03:28 INFO cli.engine.terraform.TerraformCommand - any changes that are required for your infrastructure. All Terraform commands
11:03:28 INFO cli.engine.terraform.TerraformCommand - should now work.

DoD checklist

  • Changelog updated
  • COMPONENTS.md updated / doesn't need to be updated
  • Schema updated / doesn't need to be updated
  • Feature has automated tests
  • Automated tests passed (QA pipelines)
    • apply
    • upgrade
  • Idempotency tested
  • Documentation added / updated / doesn't need to be updated
  • All conversations in PR resolved
  • Solution meets requirements and is done according to design doc
  • Usage compliant with license
  • Backport tasks created / doesn't need to be backported
@seriva
Copy link
Collaborator

seriva commented Oct 14, 2021

This would also be a good one to move away from the https://github.com/epiphany-platform/terraform-bin installation and just install it straight in the (dev)container.

@seriva seriva mentioned this issue Dec 30, 2021
Closed
5 tasks
@seriva seriva self-assigned this Jan 10, 2022
@cicharka
Copy link
Contributor

This PR is upgrading Terraform up to 1.1.3

@seriva seriva closed this as completed Jan 27, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@seriva seriva

Labels
area/security area/terraform type/upgrade Task related to component upgrade
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@seriva @przemyslavic @cicharka