FUM-3033-waf-module-refactor #28
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: verify-pre-commit | |
| # Runs the pre-commit steps and verifies that each one is passing | |
| # Pre-Commit steps: | |
| # - Terraform fmt | |
| # - Terraform validate | |
| # - Terraform docs | |
| # - Terraform validate with tflint | |
| # - check for merge conflicts | |
| # - fix end of files | |
| # | |
| # The preCommitMinVersions job will check that terraform validates with the minimum | |
| # allowed version of the module. | |
| # The preCommitMaxVersion job will check that terraform validates with the maximum | |
| # allowed version of the module and run terraform linters and checks. | |
| on: | |
| pull_request: | |
| branches: | |
| - main | |
| - master | |
| paths-ignore: | |
| - '.gitignore' | |
| - 'README.md' | |
| - 'renovate.json' | |
| env: | |
| TERRAFORM_DOCS_VERSION: v0.16.0 | |
| TFLINT_VERSION: v0.44.1 | |
| jobs: | |
| collectInputs: | |
| name: Collect workflow inputs | |
| runs-on: ubuntu-latest | |
| outputs: | |
| directories: ${{ steps.dirs.outputs.directories }} | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@v3 | |
| - name: Get root directories | |
| id: dirs | |
| uses: clowdhaus/terraform-composite-actions/[email protected] | |
| preCommitMinVersions: | |
| name: verify pre-commit min TF | |
| needs: collectInputs | |
| runs-on: ubuntu-latest | |
| strategy: | |
| matrix: | |
| directory: ${{ fromJson(needs.collectInputs.outputs.directories) }} | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@v3 | |
| - name: Terraform min/max versions | |
| id: minMax | |
| uses: clowdhaus/[email protected] | |
| with: | |
| directory: ${{ matrix.directory }} | |
| - name: Pre-commit Terraform ${{ steps.minMax.outputs.minVersion }} | |
| # Run only validate pre-commit check on min version supported | |
| if: ${{ matrix.directory != '.' }} | |
| uses: clowdhaus/terraform-composite-actions/[email protected] | |
| with: | |
| terraform-version: ${{ steps.minMax.outputs.minVersion }} | |
| tflint-version: ${{ env.TFLINT_VERSION }} | |
| args: 'terraform_validate --color=always --show-diff-on-failure --files ${{ matrix.directory }}/*' | |
| - name: Pre-commit Terraform ${{ steps.minMax.outputs.minVersion }} | |
| # Run only validate pre-commit check on min version supported | |
| if: ${{ matrix.directory == '.' }} | |
| uses: clowdhaus/terraform-composite-actions/[email protected] | |
| with: | |
| terraform-version: ${{ steps.minMax.outputs.minVersion }} | |
| tflint-version: ${{ env.TFLINT_VERSION }} | |
| args: 'terraform_validate --color=always --show-diff-on-failure --files $(ls *.tf)' | |
| preCommitMaxVersion: | |
| name: verify pre-commit max TF | |
| runs-on: ubuntu-latest | |
| needs: collectInputs | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@v3 | |
| with: | |
| ref: ${{ github.event.pull_request.head.ref }} | |
| repository: ${{github.event.pull_request.head.repo.full_name}} | |
| - name: Terraform min/max versions | |
| id: minMax | |
| uses: clowdhaus/[email protected] | |
| - name: Pre-commit Terraform ${{ steps.minMax.outputs.maxVersion }} | |
| uses: clowdhaus/terraform-composite-actions/[email protected] | |
| with: | |
| terraform-version: ${{ steps.minMax.outputs.maxVersion }} | |
| tflint-version: ${{ env.TFLINT_VERSION }} | |
| terraform-docs-version: ${{ env.TERRAFORM_DOCS_VERSION }} | |
| install-hcledit: true |